OVAL Reference oval:org.opensuse.security:def:52936

Oval Definition:

oval:org.opensuse.security:def:52936

Revision Date:	2020-12-01	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP2) (Important)
Description:	This update for the Linux Kernel 5.3.18-24_15 fixes one issue. The following security issue was fixed: - CVE-2020-25212: A TOCTOU mismatch in the NFS client code could be used by local attackers to corrupt memory or possibly have unspecified other impact because a size check is in fs/nfs/nfs4proc.c instead of fs/nfs/nfs4xdr.c (bsc#1176381).
Family:	unix	Class:	patch
Status:		Reference(s):	1000362 1166066 1176382 295284 773464 872912 901813 902421 910378 912457 913304 923374 931854 936909 939051 947552 949022 951660 953382 954658 958581 958582 958583 958584 958585 958586 958963 960155 991088 CVE-2009-5029 CVE-2009-5044 CVE-2009-5080 CVE-2009-5081 CVE-2010-2522 CVE-2010-2523 CVE-2010-2800 CVE-2010-2801 CVE-2011-1898 CVE-2012-0029 CVE-2012-0217 CVE-2012-2625 CVE-2012-3386 CVE-2012-3406 CVE-2012-3432 CVE-2012-3433 CVE-2012-4024 CVE-2012-4025 CVE-2012-4411 CVE-2012-4412 CVE-2012-4535 CVE-2012-4536 CVE-2012-4537 CVE-2012-4538 CVE-2012-4539 CVE-2012-4544 CVE-2012-5510 CVE-2012-5511 CVE-2012-5513 CVE-2012-5514 CVE-2012-5515 CVE-2012-5525 CVE-2012-5634 CVE-2012-6075 CVE-2013-0151 CVE-2013-0152 CVE-2013-0153 CVE-2013-0242 CVE-2013-1442 CVE-2013-1914 CVE-2013-1917 CVE-2013-1918 CVE-2013-1919 CVE-2013-1922 CVE-2013-1952 CVE-2013-2007 CVE-2013-2207 CVE-2013-3495 CVE-2013-4237 CVE-2013-4314 CVE-2013-4332 CVE-2013-4355 CVE-2013-4356 CVE-2013-4361 CVE-2013-4375 CVE-2013-4416 CVE-2013-4458 CVE-2013-4494 CVE-2013-4540 CVE-2013-4551 CVE-2013-4553 CVE-2013-4554 CVE-2013-7423 CVE-2014-0222 CVE-2014-0475 CVE-2014-2892 CVE-2014-3124 CVE-2014-3615 CVE-2014-4043 CVE-2014-4607 CVE-2014-5119 CVE-2014-5146 CVE-2014-5149 CVE-2014-6040 CVE-2014-6268 CVE-2014-7154 CVE-2014-7155 CVE-2014-7156 CVE-2014-7188 CVE-2014-7817 CVE-2014-8121 CVE-2014-8594 CVE-2014-8595 CVE-2014-8866 CVE-2014-8867 CVE-2014-9030 CVE-2014-9065 CVE-2014-9066 CVE-2014-9402 CVE-2014-9556 CVE-2014-9761 CVE-2015-0361 CVE-2015-1472 CVE-2015-1473 CVE-2015-1781 CVE-2015-2044 CVE-2015-2045 CVE-2015-2151 CVE-2015-2152 CVE-2015-2751 CVE-2015-2752 CVE-2015-2756 CVE-2015-3223 CVE-2015-3259 CVE-2015-3340 CVE-2015-3456 CVE-2015-4037 CVE-2015-4103 CVE-2015-4104 CVE-2015-4105 CVE-2015-4106 CVE-2015-5154 CVE-2015-5239 CVE-2015-5252 CVE-2015-5296 CVE-2015-5299 CVE-2015-5307 CVE-2015-5330 CVE-2015-6815 CVE-2015-7311 CVE-2015-7547 CVE-2015-7552 CVE-2015-7835 CVE-2015-7969 CVE-2015-7970 CVE-2015-7971 CVE-2015-7972 CVE-2015-8467 CVE-2015-8776 CVE-2015-8777 CVE-2015-8778 CVE-2015-8779 CVE-2016-1234 CVE-2016-2776 CVE-2016-3075 CVE-2016-3120 CVE-2016-3706 CVE-2016-4429 CVE-2020-0034 CVE-2020-25212 SUSE-SU-2015:2304-1 SUSE-SU-2016:0225-1 SUSE-SU-2016:2136-1 SUSE-SU-2016:2399-1 SUSE-SU-2020:1297-2
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information fuse-2.9.7-lp150.1 is installed OR libfuse2-2.9.7-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information chromedriver-75.0.3770.90-2 is installed OR chromium-75.0.3770.90-2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libvirt-0.9.6-0.29 is installed OR libvirt-client-0.9.6-0.29 is installed OR libvirt-client-32bit-0.9.6-0.29 is installed OR libvirt-doc-0.9.6-0.29 is installed OR libvirt-python-0.9.6-0.29 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information bind-libs-9.9.4P2-0.6 is installed OR bind-libs-32bit-9.9.4P2-0.6 is installed OR bind-utils-9.9.4P2-0.6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information libfreebl3-3.19.2.2-22 is installed OR libfreebl3-32bit-3.19.2.2-22 is installed OR libsoftokn3-3.19.2.2-22 is installed OR libsoftokn3-32bit-3.19.2.2-22 is installed OR mozilla-nss-3.19.2.2-22 is installed OR mozilla-nss-32bit-3.19.2.2-22 is installed OR mozilla-nss-tools-3.19.2.2-22 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information ldb-1.1.24-4.3 is installed OR libdcerpc-binding0-4.1.12-18.3 is installed OR libdcerpc-binding0-32bit-4.1.12-18.3 is installed OR libdcerpc0-4.1.12-18.3 is installed OR libdcerpc0-32bit-4.1.12-18.3 is installed OR libgensec0-4.1.12-18.3 is installed OR libgensec0-32bit-4.1.12-18.3 is installed OR libldb1-1.1.24-4.3 is installed OR libldb1-32bit-1.1.24-4.3 is installed OR libndr-krb5pac0-4.1.12-18.3 is installed OR libndr-krb5pac0-32bit-4.1.12-18.3 is installed OR libndr-nbt0-4.1.12-18.3 is installed OR libndr-nbt0-32bit-4.1.12-18.3 is installed OR libndr-standard0-4.1.12-18.3 is installed OR libndr-standard0-32bit-4.1.12-18.3 is installed OR libndr0-4.1.12-18.3 is installed OR libndr0-32bit-4.1.12-18.3 is installed OR libnetapi0-4.1.12-18.3 is installed OR libnetapi0-32bit-4.1.12-18.3 is installed OR libpdb0-4.1.12-18.3 is installed OR libpdb0-32bit-4.1.12-18.3 is installed OR libregistry0-4.1.12-18.3 is installed OR libsamba-credentials0-4.1.12-18.3 is installed OR libsamba-credentials0-32bit-4.1.12-18.3 is installed OR libsamba-hostconfig0-4.1.12-18.3 is installed OR libsamba-hostconfig0-32bit-4.1.12-18.3 is installed OR libsamba-util0-4.1.12-18.3 is installed OR libsamba-util0-32bit-4.1.12-18.3 is installed OR libsamdb0-4.1.12-18.3 is installed OR libsamdb0-32bit-4.1.12-18.3 is installed OR libsmbclient-raw0-4.1.12-18.3 is installed OR libsmbclient-raw0-32bit-4.1.12-18.3 is installed OR libsmbclient0-4.1.12-18.3 is installed OR libsmbclient0-32bit-4.1.12-18.3 is installed OR libsmbconf0-4.1.12-18.3 is installed OR libsmbconf0-32bit-4.1.12-18.3 is installed OR libsmbldap0-4.1.12-18.3 is installed OR libsmbldap0-32bit-4.1.12-18.3 is installed OR libtalloc2-2.1.5-3.4 is installed OR libtalloc2-32bit-2.1.5-3.4 is installed OR libtdb1-1.3.8-2.3 is installed OR libtdb1-32bit-1.3.8-2.3 is installed OR libtevent-util0-4.1.12-18.3 is installed OR libtevent-util0-32bit-4.1.12-18.3 is installed OR libtevent0-0.9.26-3.3 is installed OR libtevent0-32bit-0.9.26-3.3 is installed OR libwbclient0-4.1.12-18.3 is installed OR libwbclient0-32bit-4.1.12-18.3 is installed OR pytalloc-2.1.5-3.4 is installed OR pytalloc-32bit-2.1.5-3.4 is installed OR samba-4.1.12-18.3 is installed OR samba-32bit-4.1.12-18.3 is installed OR samba-client-4.1.12-18.3 is installed OR samba-client-32bit-4.1.12-18.3 is installed OR samba-doc-4.1.12-18.3 is installed OR samba-libs-4.1.12-18.3 is installed OR samba-libs-32bit-4.1.12-18.3 is installed OR samba-winbind-4.1.12-18.3 is installed OR samba-winbind-32bit-4.1.12-18.3 is installed OR talloc-2.1.5-3.4 is installed OR tdb-1.3.8-2.3 is installed OR tevent-0.9.26-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND libmspack0-0.4-10 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information glibc-2.22-49 is installed OR glibc-32bit-2.22-49 is installed OR glibc-devel-2.22-49 is installed OR glibc-devel-32bit-2.22-49 is installed OR glibc-i18ndata-2.22-49 is installed OR glibc-locale-2.22-49 is installed OR glibc-locale-32bit-2.22-49 is installed OR nscd-2.22-49 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND mipv6d-2.0.2.umip.0.4-19 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND groff-1.22.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information libvpx-1.6.1-6.6 is installed OR vpx-tools-1.6.1-6.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed AND Package Information kernel-livepatch-5_3_18-24_15-default-2-2 is installed OR kernel-livepatch-SLE15-SP2_Update_3-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information glib2-lang-2.38.2-5 is installed OR glib2-tools-2.38.2-5 is installed OR libgio-2_0-0-2.38.2-5 is installed OR libgio-2_0-0-32bit-2.38.2-5 is installed OR libglib-2_0-0-2.38.2-5 is installed OR libglib-2_0-0-32bit-2.38.2-5 is installed OR libgmodule-2_0-0-2.38.2-5 is installed OR libgmodule-2_0-0-32bit-2.38.2-5 is installed OR libgobject-2_0-0-2.38.2-5 is installed OR libgobject-2_0-0-32bit-2.38.2-5 is installed OR libgthread-2_0-0-2.38.2-5 is installed OR libgthread-2_0-0-32bit-2.38.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_107-default-7-2 is installed OR kgraft-patch-3_12_74-60_64_107-xen-7-2 is installed OR kgraft-patch-SLE12-SP1_Update_32-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information cpio-2.11-29 is installed OR cpio-lang-2.11-29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information MozillaFirefox-60.7.2-109.80 is installed OR MozillaFirefox-devel-60.7.2-109.80 is installed OR MozillaFirefox-translations-common-60.7.2-109.80 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information MozillaFirefox-52.8.1esr-109.34 is installed OR MozillaFirefox-devel-52.8.1esr-109.34 is installed OR MozillaFirefox-translations-52.8.1esr-109.34 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND kernel-default-4.4.180-94.100 is installed OR kernel-default-base-4.4.180-94.100 is installed OR kernel-default-devel-4.4.180-94.100 is installed OR kernel-default-man-4.4.180-94.100 is installed OR kernel-devel-4.4.180-94.100 is installed OR kernel-macros-4.4.180-94.100 is installed OR kernel-source-4.4.180-94.100 is installed OR kernel-syms-4.4.180-94.100 is installed OR kgraft-patch-4_4_180-94_100-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_27-1-4.3 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND kernel-default-4.4.180-94.100 is installed OR kernel-default-base-4.4.180-94.100 is installed OR kernel-default-devel-4.4.180-94.100 is installed OR kernel-default-man-4.4.180-94.100 is installed OR kernel-devel-4.4.180-94.100 is installed OR kernel-macros-4.4.180-94.100 is installed OR kernel-source-4.4.180-94.100 is installed OR kernel-syms-4.4.180-94.100 is installed OR kgraft-patch-4_4_180-94_100-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_27-1-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_jk-1.2.40-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_113-default-2-2 is installed OR kgraft-patch-SLE12-SP3_Update_30-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information MozillaFirefox-60.8.0-109.83 is installed OR MozillaFirefox-translations-common-60.8.0-109.83 is installed OR libfreebl3-3.44.1-58.28 is installed OR libfreebl3-32bit-3.44.1-58.28 is installed OR libfreebl3-hmac-3.44.1-58.28 is installed OR libfreebl3-hmac-32bit-3.44.1-58.28 is installed OR libsoftokn3-3.44.1-58.28 is installed OR libsoftokn3-32bit-3.44.1-58.28 is installed OR libsoftokn3-hmac-3.44.1-58.28 is installed OR libsoftokn3-hmac-32bit-3.44.1-58.28 is installed OR mozilla-nss-3.44.1-58.28 is installed OR mozilla-nss-32bit-3.44.1-58.28 is installed OR mozilla-nss-certs-3.44.1-58.28 is installed OR mozilla-nss-certs-32bit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-32bit-3.44.1-58.28 is installed OR mozilla-nss-tools-3.44.1-58.28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libsndfile-1.0.25-36.16 is installed OR libsndfile1-1.0.25-36.16 is installed OR libsndfile1-32bit-1.0.25-36.16 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND cifs-utils-6.5-9.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information openstack-cinder-7.0.2~a0~dev1-1 is installed OR openstack-cinder-api-7.0.2~a0~dev1-1 is installed OR openstack-cinder-backup-7.0.2~a0~dev1-1 is installed OR openstack-cinder-scheduler-7.0.2~a0~dev1-1 is installed OR openstack-cinder-volume-7.0.2~a0~dev1-1 is installed OR python-cinder-7.0.2~a0~dev1-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information krb5-1.12.5-40.31 is installed OR krb5-32bit-1.12.5-40.31 is installed OR krb5-client-1.12.5-40.31 is installed OR krb5-doc-1.12.5-40.31 is installed OR krb5-plugin-kdb-ldap-1.12.5-40.31 is installed OR krb5-plugin-preauth-otp-1.12.5-40.31 is installed OR krb5-plugin-preauth-pkinit-1.12.5-40.31 is installed OR krb5-server-1.12.5-40.31 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libpolkit0-0.113-5.18 is installed OR polkit-0.113-5.18 is installed OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed

BACK