OVAL Reference oval:org.opensuse.security:def:52938

Oval Definition:

oval:org.opensuse.security:def:52938

Revision Date:	2020-12-01	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP2) (Important)
Description:	This update for the Linux Kernel 5.3.18-24_9 fixes several issues. The following security issues were fixed: - CVE-2020-25212: A TOCTOU mismatch in the NFS client code could be used by local attackers to corrupt memory or possibly have unspecified other impact because a size check is in fs/nfs/nfs4proc.c instead of fs/nfs/nfs4xdr.c (bsc#1176381). - CVE-2020-14386: Fixed a memory corruption which could have lead to an attacker gaining root privileges from unprivileged processes. The highest threat from this vulnerability is to data confidentiality and integrity (bsc#1176069).
Family:	unix	Class:	patch
Status:		Reference(s):	1141132 1176072 1176382 915410 969820 973660 991344 993453 993454 999701 CVE-2007-5970 CVE-2008-7247 CVE-2009-4019 CVE-2009-4028 CVE-2009-4030 CVE-2010-1163 CVE-2010-1646 CVE-2010-5298 CVE-2011-0010 CVE-2012-0862 CVE-2012-2337 CVE-2012-5615 CVE-2013-0240 CVE-2013-1775 CVE-2013-1776 CVE-2013-1799 CVE-2013-1976 CVE-2013-4342 CVE-2014-0195 CVE-2014-0198 CVE-2014-0221 CVE-2014-0224 CVE-2014-0467 CVE-2014-1829 CVE-2014-1830 CVE-2014-2494 CVE-2014-2892 CVE-2014-3470 CVE-2014-3686 CVE-2014-4207 CVE-2014-4258 CVE-2014-4260 CVE-2014-4274 CVE-2014-4287 CVE-2014-6463 CVE-2014-6464 CVE-2014-6469 CVE-2014-6474 CVE-2014-6478 CVE-2014-6484 CVE-2014-6489 CVE-2014-6491 CVE-2014-6494 CVE-2014-6495 CVE-2014-6496 CVE-2014-6500 CVE-2014-6505 CVE-2014-6507 CVE-2014-6520 CVE-2014-6530 CVE-2014-6551 CVE-2014-6555 CVE-2014-6559 CVE-2014-6564 CVE-2014-6568 CVE-2014-8964 CVE-2014-9116 CVE-2014-9474 CVE-2014-9512 CVE-2014-9680 CVE-2015-0210 CVE-2015-0374 CVE-2015-0381 CVE-2015-0382 CVE-2015-0391 CVE-2015-0411 CVE-2015-0432 CVE-2015-0433 CVE-2015-0441 CVE-2015-0499 CVE-2015-0501 CVE-2015-0505 CVE-2015-1863 CVE-2015-2325 CVE-2015-2326 CVE-2015-2568 CVE-2015-2571 CVE-2015-2573 CVE-2015-3152 CVE-2015-4141 CVE-2015-4142 CVE-2015-4143 CVE-2015-5130 CVE-2015-5310 CVE-2015-8041 CVE-2016-2774 CVE-2016-5250 CVE-2016-5257 CVE-2016-5261 CVE-2016-5270 CVE-2016-5272 CVE-2016-5274 CVE-2016-5276 CVE-2016-5277 CVE-2016-5278 CVE-2016-5280 CVE-2016-5281 CVE-2016-5284 CVE-2016-5423 CVE-2016-5424 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081 CVE-2017-13087 CVE-2017-13088 CVE-2017-5838 CVE-2019-13508 CVE-2020-14386 CVE-2020-25212 SUSE-SU-2016:1692-1 SUSE-SU-2016:2151-1 SUSE-SU-2016:2415-1 SUSE-SU-2016:2434-1 SUSE-SU-2020:1417-2
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information gdk-pixbuf-lang-2.36.11-lp150.3 is installed OR gdk-pixbuf-query-loaders-2.36.11-lp150.3 is installed OR gdk-pixbuf-thumbnailer-2.36.11-lp150.3 is installed OR libgdk_pixbuf-2_0-0-2.36.11-lp150.3 is installed OR typelib-1_0-GdkPixbuf-2_0-2.36.11-lp150.3 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libwireshark9-2.4.15-lp151.2.3 is installed OR libwiretap7-2.4.15-lp151.2.3 is installed OR libwscodecs1-2.4.15-lp151.2.3 is installed OR libwsutil8-2.4.15-lp151.2.3 is installed OR wireshark-2.4.15-lp151.2.3 is installed OR wireshark-devel-2.4.15-lp151.2.3 is installed OR wireshark-ui-qt-2.4.15-lp151.2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information Mesa-7.11.2-0.9 is installed OR Mesa-32bit-7.11.2-0.9 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information bind-9.9.6P1-0.15 is installed OR bind-libs-9.9.6P1-0.15 is installed OR bind-libs-32bit-9.9.6P1-0.15 is installed OR bind-utils-9.9.6P1-0.15 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information libmysql55client18-5.5.46-0.14 is installed OR libmysql55client18-32bit-5.5.46-0.14 is installed OR libmysql55client_r18-5.5.46-0.14 is installed OR libmysql55client_r18-32bit-5.5.46-0.14 is installed OR mysql-5.5.46-0.14 is installed OR mysql-client-5.5.46-0.14 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information dhcp-4.2.6-14.6 is installed OR dhcp-client-4.2.6-14.6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libmysqlclient18-10.0.21-1 is installed OR libmysqlclient18-32bit-10.0.21-1 is installed OR libmysqlclient_r18-10.0.21-1 is installed OR libmysqlclient_r18-32bit-10.0.21-1 is installed OR mariadb-10.0.21-1 is installed OR mariadb-client-10.0.21-1 is installed OR mariadb-errormessages-10.0.21-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information gnome-online-accounts-3.20.4-7 is installed OR gnome-online-accounts-lang-3.20.4-7 is installed OR libgoa-1_0-0-3.20.4-7 is installed OR libgoa-1_0-0-32bit-3.20.4-7 is installed OR libgoa-backend-1_0-1-3.20.4-7 is installed OR typelib-1_0-Goa-1_0-3.20.4-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND mutt-1.6.0-54 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gstreamer-1.8.3-9 is installed OR gstreamer-lang-1.8.3-9 is installed OR gstreamer-utils-1.8.3-9 is installed OR libgstreamer-1_0-0-1.8.3-9 is installed OR libgstreamer-1_0-0-32bit-1.8.3-9 is installed OR typelib-1_0-Gst-1_0-1.8.3-9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information freetds-1.1.36-3.3 is installed OR libsybdb5-1.1.36-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed AND Package Information kernel-livepatch-5_3_18-24_9-default-3-2 is installed OR kernel-livepatch-SLE15-SP2_Update_1-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information gnome-keyring-3.10.1-11 is installed OR gnome-keyring-32bit-3.10.1-11 is installed OR gnome-keyring-lang-3.10.1-11 is installed OR gnome-keyring-pam-3.10.1-11 is installed OR gnome-keyring-pam-32bit-3.10.1-11 is installed OR libgck-modules-gnome-keyring-3.10.1-11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information libvirt-1.2.18.4-22.13 is installed OR libvirt-client-1.2.18.4-22.13 is installed OR libvirt-daemon-1.2.18.4-22.13 is installed OR libvirt-daemon-config-network-1.2.18.4-22.13 is installed OR libvirt-daemon-config-nwfilter-1.2.18.4-22.13 is installed OR libvirt-daemon-driver-interface-1.2.18.4-22.13 is installed OR libvirt-daemon-driver-libxl-1.2.18.4-22.13 is installed OR libvirt-daemon-driver-lxc-1.2.18.4-22.13 is installed OR libvirt-daemon-driver-network-1.2.18.4-22.13 is installed OR libvirt-daemon-driver-nodedev-1.2.18.4-22.13 is installed OR libvirt-daemon-driver-nwfilter-1.2.18.4-22.13 is installed OR libvirt-daemon-driver-qemu-1.2.18.4-22.13 is installed OR libvirt-daemon-driver-secret-1.2.18.4-22.13 is installed OR libvirt-daemon-driver-storage-1.2.18.4-22.13 is installed OR libvirt-daemon-lxc-1.2.18.4-22.13 is installed OR libvirt-daemon-qemu-1.2.18.4-22.13 is installed OR libvirt-daemon-xen-1.2.18.4-22.13 is installed OR libvirt-doc-1.2.18.4-22.13 is installed OR libvirt-lock-sanlock-1.2.18.4-22.13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information cracklib-2.9.0-7 is installed OR libcrack2-2.9.0-7 is installed OR libcrack2-32bit-2.9.0-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information res-signingkeys-3.0.37-52.23 is installed OR smt-3.0.37-52.23 is installed OR smt-support-3.0.37-52.23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_92-default-3-2 is installed OR kgraft-patch-SLE12-SP2_Update_24-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_perl-2.0.8-11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_103-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_28-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_140-94_42-default-10-2 is installed OR kgraft-patch-SLE12-SP3_Update_15-10-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libblkid1-2.29.2-3.12 is installed OR libblkid1-32bit-2.29.2-3.12 is installed OR libfdisk1-2.29.2-3.12 is installed OR libmount1-2.29.2-3.12 is installed OR libmount1-32bit-2.29.2-3.12 is installed OR libsmartcols1-2.29.2-3.12 is installed OR libuuid1-2.29.2-3.12 is installed OR libuuid1-32bit-2.29.2-3.12 is installed OR python-libmount-2.29.2-3.12 is installed OR util-linux-2.29.2-3.12 is installed OR util-linux-lang-2.29.2-3.12 is installed OR util-linux-systemd-2.29.2-3.12 is installed OR uuidd-2.29.2-3.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information colord-gtk-lang-0.1.26-6 is installed OR libcolord-gtk1-0.1.26-6 is installed OR libcolord2-1.3.3-12 is installed OR libcolord2-32bit-1.3.3-12 is installed OR libcolorhug2-1.3.3-12 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information openstack-glance-11.0.2~a0~dev2-1 is installed OR python-glance-11.0.2~a0~dev2-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information libopenssl-devel-1.0.2j-60.52 is installed OR libopenssl1_0_0-1.0.2j-60.52 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.52 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.52 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.52 is installed OR openssl-1.0.2j-60.52 is installed OR openssl-doc-1.0.2j-60.52 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information dnsmasq-2.78-18.6 is installed OR dnsmasq-utils-2.78-18.6 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libmysqlclient18-10.0.38-29.27 is installed OR mariadb-10.0.38-29.27 is installed

BACK