Oval Definition:	oval:org.opensuse.security:def:53091
Revision Date: 2020-12-01 Version: 1 Title: Security update for the Linux Kernel (Important) Description: The SUSE Linux Enterprise 15 SP1 Azure kernel was updated to receive various security and bugfixes. The following security bug was fixed: - CVE-2020-14386: Fixed a potential local privilege escalation via memory corruption (bsc#1176069). The following non-security bugs were fixed: - EDAC: Fix reference count leaks (bsc#1112178). - KVM: SVM: fix svn_pin_memory()'s use of get_user_pages_fast() (bsc#1112178). - mm, vmstat: reduce zone->lock holding time by /proc/pagetypeinfo (bsc#1175691). - sched/deadline: Initialize ->dl_boosted (bsc#1112178). - scsi: lpfc: Add and rename a whole bunch of function parameter descriptions (bsc#1171558 bsc#1136666). - scsi: lpfc: Add description for lpfc_release_rpi()'s 'ndlpl param (bsc#1171558 bsc#1136666). - scsi: lpfc: Add missing misc_deregister() for lpfc_init() (bsc#1171558 bsc#1136666). - scsi: lpfc: Ensure variable has the same stipulations as code using it (bsc#1171558 bsc#1136666). - scsi: lpfc: Fix a bunch of kerneldoc misdemeanors (bsc#1171558 bsc#1136666). - scsi: lpfc: Fix FCoE speed reporting (bsc#1171558 bsc#1136666). - scsi: lpfc: Fix kerneldoc parameter formatting/misnaming/missing issues (bsc#1171558 bsc#1136666). - scsi: lpfc: Fix LUN loss after cable pull (bsc#1171558 bsc#1136666). - scsi: lpfc: Fix no message shown for lpfc_hdw_queue out of range value (bsc#1171558 bsc#1136666). - scsi: lpfc: Fix oops when unloading driver while running mds diags (bsc#1171558 bsc#1136666). - scsi: lpfc: Fix retry of PRLI when status indicates its unsupported (bsc#1171558 bsc#1136666). - scsi: lpfc: Fix RSCN timeout due to incorrect gidft counter (bsc#1171558 bsc#1136666). - scsi: lpfc: Fix some function parameter descriptions (bsc#1171558 bsc#1136666). - scsi: lpfc: Fix typo in comment for ULP (bsc#1171558 bsc#1136666). - scsi: lpfc: Fix-up around 120 documentation issues (bsc#1171558 bsc#1136666). - scsi: lpfc: Fix-up formatting/docrot where appropriate (bsc#1171558 bsc#1136666). - scsi: lpfc: Fix validation of bsg reply lengths (bsc#1171558 bsc#1136666). - scsi: lpfc: NVMe remote port devloss_tmo from lldd (bsc#1171558 bsc#1136666 bsc#1173060). - scsi: lpfc: nvmet: Avoid hang / use-after-free again when destroying targetport (bsc#1171558 bsc#1136666). - scsi: lpfc: Provide description for lpfc_mem_alloc()'s 'align' param (bsc#1171558 bsc#1136666). - scsi: lpfc: Quieten some printks (bsc#1171558 bsc#1136666). - scsi: lpfc: Remove unused variable 'pg_addr' (bsc#1171558 bsc#1136666). - scsi: lpfc: Update lpfc version to 12.8.0.3 (bsc#1171558 bsc#1136666). - scsi: lpfc: Use __printf() format notation (bsc#1171558 bsc#1136666). - x86/fsgsbase/64: Fix NULL deref in 86_fsgsbase_read_task (bsc#1112178). - x86/mce/inject: Fix a wrong assignment of i_mce.status (bsc#1112178). - x86/unwind/orc: Fix ORC for newly forked tasks (bsc#1058115). Family: unix Class: patch Status: Reference(s): 1012102 1012103 1012104 1013653 1013655 1013663 1013669 1058115 1112178 1136666 1171558 1173060 1175691 1176069 1177211 907809 949160 960319 979422 CVE-2006-2607 CVE-2007-3126 CVE-2010-0424 CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543 CVE-2011-2896 CVE-2012-2141 CVE-2012-3236 CVE-2012-5576 CVE-2013-1984 CVE-2013-1985 CVE-2013-1995 CVE-2013-1998 CVE-2014-1545 CVE-2014-2284 CVE-2014-2285 CVE-2014-3565 CVE-2014-9130 CVE-2015-5621 CVE-2015-7183 CVE-2015-7555 CVE-2015-7747 CVE-2016-1006 CVE-2016-1011 CVE-2016-1012 CVE-2016-1013 CVE-2016-1014 CVE-2016-1015 CVE-2016-1016 CVE-2016-1017 CVE-2016-1018 CVE-2016-1019 CVE-2016-1020 CVE-2016-1021 CVE-2016-1022 CVE-2016-1023 CVE-2016-1024 CVE-2016-1025 CVE-2016-1026 CVE-2016-1027 CVE-2016-1028 CVE-2016-1029 CVE-2016-1030 CVE-2016-1031 CVE-2016-1032 CVE-2016-1033 CVE-2016-1096 CVE-2016-1097 CVE-2016-1098 CVE-2016-1099 CVE-2016-1100 CVE-2016-1101 CVE-2016-1102 CVE-2016-1103 CVE-2016-1104 CVE-2016-1105 CVE-2016-1106 CVE-2016-1107 CVE-2016-1108 CVE-2016-1109 CVE-2016-1110 CVE-2016-1602 CVE-2016-1856 CVE-2016-1857 CVE-2016-4108 CVE-2016-4109 CVE-2016-4110 CVE-2016-4111 CVE-2016-4112 CVE-2016-4113 CVE-2016-4114 CVE-2016-4115 CVE-2016-4116 CVE-2016-4117 CVE-2016-4590 CVE-2016-4591 CVE-2016-4622 CVE-2016-4624 CVE-2016-4994 CVE-2016-7945 CVE-2016-7946 CVE-2016-9634 CVE-2016-9635 CVE-2016-9636 CVE-2016-9807 CVE-2016-9808 CVE-2016-9810 CVE-2016-9811 CVE-2017-6827 CVE-2017-6828 CVE-2017-6829 CVE-2017-6830 CVE-2017-6831 CVE-2017-6832 CVE-2017-6833 CVE-2017-6834 CVE-2017-6835 CVE-2017-6836 CVE-2017-6837 CVE-2017-6838 CVE-2017-6839 CVE-2018-18065 CVE-2020-14386 CVE-2020-26116 SUSE-SU-2016:0202-1 SUSE-SU-2016:1305-1 SUSE-SU-2017:0237-1 SUSE-SU-2017:0263-1 SUSE-SU-2020:2579-1 SUSE-SU-2020:3115-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Python2 packages 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information bind-9.11.2-lp150.7 is installed OR bind-chrootenv-9.11.2-lp150.7 is installed OR bind-utils-9.11.2-lp150.7 is installed OR libbind9-160-9.11.2-lp150.7 is installed OR libdns169-9.11.2-lp150.7 is installed OR libirs160-9.11.2-lp150.7 is installed OR libisc166-9.11.2-lp150.7 is installed OR libisccc160-9.11.2-lp150.7 is installed OR libisccfg160-9.11.2-lp150.7 is installed OR liblwres160-9.11.2-lp150.7 is installed OR python3-bind-9.11.2-lp150.7 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information apache2-2.4.33-lp151.8.6 is installed OR apache2-devel-2.4.33-lp151.8.6 is installed OR apache2-doc-2.4.33-lp151.8.6 is installed OR apache2-event-2.4.33-lp151.8.6 is installed OR apache2-example-pages-2.4.33-lp151.8.6 is installed OR apache2-prefork-2.4.33-lp151.8.6 is installed OR apache2-utils-2.4.33-lp151.8.6 is installed OR apache2-worker-2.4.33-lp151.8.6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libQtWebKit4-4.6.3-5.20.23 is installed OR libQtWebKit4-32bit-4.6.3-5.20.23 is installed OR libqt4-4.6.3-5.20.23 is installed OR libqt4-32bit-4.6.3-5.20.23 is installed OR libqt4-qt3support-4.6.3-5.20.23 is installed OR libqt4-qt3support-32bit-4.6.3-5.20.23 is installed OR libqt4-sql-4.6.3-5.20.23 is installed OR libqt4-sql-32bit-4.6.3-5.20.23 is installed OR libqt4-sql-mysql-4.6.3-5.20.23 is installed OR libqt4-sql-mysql-32bit-4.6.3-5.20.23 is installed OR libqt4-sql-postgresql-4.6.3-5.20.23 is installed OR libqt4-sql-postgresql-32bit-4.6.3-5.20.23 is installed OR libqt4-sql-sqlite-4.6.3-5.20.23 is installed OR libqt4-sql-sqlite-32bit-4.6.3-5.20.23 is installed OR libqt4-sql-unixODBC-4.6.3-5.20.23 is installed OR libqt4-sql-unixODBC-32bit-4.6.3-5.20.23 is installed OR libqt4-x11-4.6.3-5.20.23 is installed OR libqt4-x11-32bit-4.6.3-5.20.23 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information flash-player-11.2.202.491-0.11 is installed OR flash-player-gnome-11.2.202.491-0.11 is installed OR flash-player-kde4-11.2.202.491-0.11 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information MozillaFirefox-38.2.1esr-19 is installed OR MozillaFirefox-branding-SLED-31.0-0.12 is installed OR MozillaFirefox-translations-38.2.1esr-19 is installed OR libfreebl3-3.19.2.0-0.16 is installed OR libfreebl3-32bit-3.19.2.0-0.16 is installed OR libsoftokn3-3.19.2.0-0.16 is installed OR libsoftokn3-32bit-3.19.2.0-0.16 is installed OR mozilla-nss-3.19.2.0-0.16 is installed OR mozilla-nss-32bit-3.19.2.0-0.16 is installed OR mozilla-nss-tools-3.19.2.0-0.16 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libyaml-0.1.6-4 is installed OR libyaml-0-2-0.1.6-4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information giflib-5.0.5-7 is installed OR libgif6-5.0.5-7 is installed OR libgif6-32bit-5.0.5-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gimp-2.8.18-9.3 is installed OR gimp-lang-2.8.18-9.3 is installed OR gimp-plugins-python-2.8.18-9.3 is installed OR libgimp-2_0-0-2.8.18-9.3 is installed OR libgimpui-2_0-0-2.8.18-9.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information kernel-azure-4.12.14-8.44 is installed OR kernel-azure-base-4.12.14-8.44 is installed OR kernel-azure-devel-4.12.14-8.44 is installed OR kernel-devel-azure-4.12.14-8.44 is installed OR kernel-source-azure-4.12.14-8.44 is installed OR kernel-syms-azure-4.12.14-8.44 is installed Definition Synopsis SUSE Linux Enterprise Module for Python2 packages 15 SP2 is installed AND Package Information python-2.7.17-7.44 is installed OR python-base-2.7.17-7.44 is installed OR python-curses-2.7.17-7.44 is installed OR python-devel-2.7.17-7.44 is installed OR python-gdbm-2.7.17-7.44 is installed OR python-xml-2.7.17-7.44 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libexif12-0.6.21-6 is installed OR libexif12-32bit-0.6.21-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_32-default-7-4 is installed OR kgraft-patch-3_12_69-60_64_32-xen-7-4 is installed OR kgraft-patch-SLE12-SP1_Update_13-7-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information gpg2-2.0.24-3 is installed OR gpg2-lang-2.0.24-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-openjdk-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-demo-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-devel-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-headless-1.8.0.181-27.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_80-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_22-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_29-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_10-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libjasper1-1.900.14-194 is installed OR libjasper1-32bit-1.900.14-194 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.50-38.41 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_103-default-2-2 is installed OR kgraft-patch-SLE12-SP3_Update_28-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information bluez-5.13-5.7 is installed OR libbluetooth3-5.13-5.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information cups-1.7.5-20.17 is installed OR cups-client-1.7.5-20.17 is installed OR cups-libs-1.7.5-20.17 is installed OR cups-libs-32bit-1.7.5-20.17 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND unrar-5.0.14-3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND nodejs6-6.17.0-11.24 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libsolv-0.6.36-2.16 is installed OR libsolv-tools-0.6.36-2.16 is installed OR libzypp-16.20.0-2.39 is installed OR perl-solv-0.6.36-2.16 is installed OR python-solv-0.6.36-2.16 is installed OR zypper-1.13.51-21.26 is installed OR zypper-log-1.13.51-21.26 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-SQLAlchemy-1.2.10-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information MozillaFirefox-60.8.0-109.83 is installed OR MozillaFirefox-translations-common-60.8.0-109.83 is installed OR libfreebl3-3.44.1-58.28 is installed OR libfreebl3-32bit-3.44.1-58.28 is installed OR libfreebl3-hmac-3.44.1-58.28 is installed OR libfreebl3-hmac-32bit-3.44.1-58.28 is installed OR libsoftokn3-3.44.1-58.28 is installed OR libsoftokn3-32bit-3.44.1-58.28 is installed OR libsoftokn3-hmac-3.44.1-58.28 is installed OR libsoftokn3-hmac-32bit-3.44.1-58.28 is installed OR mozilla-nss-3.44.1-58.28 is installed OR mozilla-nss-32bit-3.44.1-58.28 is installed OR mozilla-nss-certs-3.44.1-58.28 is installed OR mozilla-nss-certs-32bit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-32bit-3.44.1-58.28 is installed OR mozilla-nss-tools-3.44.1-58.28 is installed
BACK