Oval Definition:oval:org.opensuse.security:def:54777
Revision Date:2021-03-17Version:1
Title:Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP2) (Important)
Description:

This update for the Linux Kernel 4.4.121-92_149 fixes several issues.

The following security issues were fixed:

- CVE-2020-27786: Fixed a potential user after free which could have led to memory corruption or privilege escalation (bsc#1179616). - CVE-2020-28374: Fixed insufficient identifier checking in the LIO SCSI target code which could have been used by remote attackers to read or write files via directory traversal in an XCOPY request (bsc#1178684). - CVE-2020-25645: Fixed an issue where the traffic between two Geneve endpoints may have been unencrypted when IPsec was configured to encrypt traffic for the specific UDP port used by the GENEVE tunnel allowing anyone between the two endpoints to read the traffic unencrypted (bsc#1177513). - CVE-2020-0429: Fixed a potential memory corruption due to a use after free which could have led local escalation of privilege with System execution privileges needed (bsc#1176931). - CVE-2020-1749: Fixed an issue in some networking protocols in IPsec, such as VXLAN and GENEVE tunnels over IPv6 where the kernel was not correctly routing tunneled data over the encrypted link rather sending the data unencrypted (bsc#1165631).
Family:unixClass:patch
Status:Reference(s):1020905
1032647
1038425
1039034
1046779
1049399
1049404
1049417
1052009
1054591
1064069
1064070
1064071
1064072
1064073
1064075
1064077
1064078
1064079
1064080
1064081
1064082
1064083
1064084
1064085
1064086
1072665
1091610
1122293
1122299
1132728
1132729
1132732
1134297
1146068
1146211
1146212
1146213
1151781
1151782
1151783
1151784
1151785
1151786
1165631
1176931
1177513
1178684
1179616
849019
877642
901488
903649
907514
910258
918984
923967
925466
932267
932483
935634
936695
938344
938746
939932
940191
943006
943010
944463
944697
945167
945484
945493
946204
947165
947458
949138
949549
950367
950703
950705
950706
991464
CVE-2011-2485
CVE-2011-3970
CVE-2012-2825
CVE-2012-6139
CVE-2014-0222
CVE-2015-3259
CVE-2015-4000
CVE-2015-4037
CVE-2015-4491
CVE-2015-5154
CVE-2015-5239
CVE-2015-5352
CVE-2015-5600
CVE-2015-6563
CVE-2015-6564
CVE-2015-6815
CVE-2015-7236
CVE-2015-7311
CVE-2015-7552
CVE-2015-7673
CVE-2015-7674
CVE-2015-7835
CVE-2015-7969
CVE-2015-7971
CVE-2016-10165
CVE-2016-2183
CVE-2016-5546
CVE-2016-5547
CVE-2016-5548
CVE-2016-5549
CVE-2016-5552
CVE-2016-6352
CVE-2016-6489
CVE-2016-9082
CVE-2016-9840
CVE-2016-9841
CVE-2016-9842
CVE-2016-9843
CVE-2017-10274
CVE-2017-10281
CVE-2017-10285
CVE-2017-10295
CVE-2017-10345
CVE-2017-10346
CVE-2017-10347
CVE-2017-10348
CVE-2017-10349
CVE-2017-10350
CVE-2017-10355
CVE-2017-10356
CVE-2017-10357
CVE-2017-10388
CVE-2017-3231
CVE-2017-3241
CVE-2017-3252
CVE-2017-3253
CVE-2017-3259
CVE-2017-3260
CVE-2017-3261
CVE-2017-3272
CVE-2017-3289
CVE-2017-3636
CVE-2017-3641
CVE-2017-3653
CVE-2017-7475
CVE-2017-7506
CVE-2018-1115
CVE-2018-11212
CVE-2019-14980
CVE-2019-15139
CVE-2019-15140
CVE-2019-15141
CVE-2019-16708
CVE-2019-16709
CVE-2019-16710
CVE-2019-16711
CVE-2019-16712
CVE-2019-16713
CVE-2019-2422
CVE-2019-2426
CVE-2019-2602
CVE-2019-2684
CVE-2019-2698
CVE-2020-0429
CVE-2020-1749
CVE-2020-25645
CVE-2020-27786
CVE-2020-28374
SUSE-SU-2015:1299-1
SUSE-SU-2015:1695-1
SUSE-SU-2015:1706-1
SUSE-SU-2015:1894-1
SUSE-SU-2017:0490-1
SUSE-SU-2017:1481-1
SUSE-SU-2017:1836-1
SUSE-SU-2017:2989-1
SUSE-SU-2018:0079-1
SUSE-SU-2018:1695-1
SUSE-SU-2019:0128-1
SUSE-SU-2019:1392-1
SUSE-SU-2019:2785-1
SUSE-SU-2021:0835-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 6-LTSS
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • gnome-photos-3.26.3-lp150.2 is installed
  • OR gnome-photos-lang-3.26.3-lp150.2 is installed
  • OR gnome-shell-search-provider-gnome-photos-3.26.3-lp150.2 is installed
  • OR gtk2-data-2.24.32-lp150.2 is installed
  • OR gtk2-immodule-amharic-2.24.32-lp150.2 is installed
  • OR gtk2-immodule-inuktitut-2.24.32-lp150.2 is installed
  • OR gtk2-immodule-thai-2.24.32-lp150.2 is installed
  • OR gtk2-immodule-vietnamese-2.24.32-lp150.2 is installed
  • OR gtk2-immodule-xim-2.24.32-lp150.2 is installed
  • OR gtk2-lang-2.24.32-lp150.2 is installed
  • OR gtk2-tools-2.24.32-lp150.2 is installed
  • OR libgtk-2_0-0-2.24.32-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • chromedriver-74.0.3729.157-lp151.2.3 is installed
  • OR chromium-74.0.3729.157-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • libxslt-1.1.24-19.23 is installed
  • OR libxslt-32bit-1.1.24-19.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND rpcbind-0.1.6+git20080930-6.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • openssh-6.6p1-13 is installed
  • OR openssh-askpass-gnome-6.6p1-13 is installed
  • OR openssh-helpers-6.6p1-13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • libspice-server1-0.12.7-10.3 is installed
  • OR spice-0.12.7-10.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • gdk-pixbuf-lang-2.34.0-18 is installed
  • OR gdk-pixbuf-query-loaders-2.34.0-18 is installed
  • OR gdk-pixbuf-query-loaders-32bit-2.34.0-18 is installed
  • OR libgdk_pixbuf-2_0-0-2.34.0-18 is installed
  • OR libgdk_pixbuf-2_0-0-32bit-2.34.0-18 is installed
  • OR typelib-1_0-GdkPixbuf-2_0-2.34.0-18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.221-43.22 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.221-43.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • apache2-2.4.16-5 is installed
  • OR apache2-doc-2.4.16-5 is installed
  • OR apache2-example-pages-2.4.16-5 is installed
  • OR apache2-prefork-2.4.16-5 is installed
  • OR apache2-utils-2.4.16-5 is installed
  • OR apache2-worker-2.4.16-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libXRes1-1.0.7-3 is installed
  • OR libXRes1-32bit-1.0.7-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.25-30.39 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.25-30.39 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.25-30.39 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.25-30.39 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND wpa_supplicant-2.6-15.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND kgraft-patch-4_4_121-92_149-default-2-2.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-36 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libsolv-0.6.36-2.27.19 is installed
  • OR libsolv-tools-0.6.36-2.27.19 is installed
  • OR libzypp-16.20.2-27.60 is installed
  • OR perl-solv-0.6.36-2.27.19 is installed
  • OR python-solv-0.6.36-2.27.19 is installed
  • OR zypper-1.13.54-18.40 is installed
  • OR zypper-log-1.13.54-18.40 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND squid-3.5.21-26.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libQtWebKit4-4.8.7+2.3.4-4.7 is installed
  • OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed
  • OR libqca2-2.0.3-17.7 is installed
  • OR libqca2-32bit-2.0.3-17.7 is installed
  • OR libqt4-4.8.7-8.8 is installed
  • OR libqt4-32bit-4.8.7-8.8 is installed
  • OR libqt4-devel-doc-4.8.7-8.8 is installed
  • OR libqt4-qt3support-4.8.7-8.8 is installed
  • OR libqt4-qt3support-32bit-4.8.7-8.8 is installed
  • OR libqt4-sql-4.8.7-8.8 is installed
  • OR libqt4-sql-32bit-4.8.7-8.8 is installed
  • OR libqt4-sql-mysql-4.8.7-8.8 is installed
  • OR libqt4-sql-plugins-4.8.7-8.8 is installed
  • OR libqt4-sql-sqlite-4.8.7-8.8 is installed
  • OR libqt4-x11-4.8.7-8.8 is installed
  • OR libqt4-x11-32bit-4.8.7-8.8 is installed
  • OR qt4-x11-tools-4.8.7-8.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND apache2-mod_nss-1.0.14-19.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND apache2-mod_wsgi-4.4.13-1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6-LTSS is installed
  • AND python-pip-10.0.1-11.9 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • ruby2.1-rubygem-actionmailer-4_2-4.2.9-3.3 is installed
  • OR ruby2.1-rubygem-actionpack-4_2-4.2.9-7.3 is installed
  • OR ruby2.1-rubygem-actionview-4_2-4.2.9-9.3 is installed
  • OR ruby2.1-rubygem-activejob-4_2-4.2.9-3.3 is installed
  • OR ruby2.1-rubygem-activemodel-4_2-4.2.9-6.3 is installed
  • OR ruby2.1-rubygem-activerecord-4_2-4.2.9-6.3 is installed
  • OR ruby2.1-rubygem-activesupport-4_2-4.2.9-7.3 is installed
  • OR ruby2.1-rubygem-rails-4_2-4.2.9-3.3 is installed
  • OR ruby2.1-rubygem-rails-html-sanitizer-1.0.3-8.3 is installed
  • OR ruby2.1-rubygem-railties-4_2-4.2.9-3.3 is installed
  • OR rubygem-actionmailer-4_2-4.2.9-3.3 is installed
  • OR rubygem-actionpack-4_2-4.2.9-7.3 is installed
  • OR rubygem-actionview-4_2-4.2.9-9.3 is installed
  • OR rubygem-activejob-4_2-4.2.9-3.3 is installed
  • OR rubygem-activemodel-4_2-4.2.9-6.3 is installed
  • OR rubygem-activerecord-4_2-4.2.9-6.3 is installed
  • OR rubygem-activesupport-4_2-4.2.9-7.3 is installed
  • OR rubygem-rails-4_2-4.2.9-3.3 is installed
  • OR rubygem-rails-html-sanitizer-1.0.3-8.3 is installed
  • OR rubygem-railties-4_2-4.2.9-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • kernel-default-4.4.180-94.107 is installed
  • OR kernel-default-base-4.4.180-94.107 is installed
  • OR kernel-default-devel-4.4.180-94.107 is installed
  • OR kernel-default-kgraft-4.4.180-94.107 is installed
  • OR kernel-devel-4.4.180-94.107 is installed
  • OR kernel-macros-4.4.180-94.107 is installed
  • OR kernel-source-4.4.180-94.107 is installed
  • OR kernel-syms-4.4.180-94.107 is installed
  • OR kgraft-patch-4_4_180-94_107-default-1-4.3 is installed
  • OR kgraft-patch-SLE12-SP3_Update_29-1-4.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • dnsmasq-2.78-18.6 is installed
  • OR dnsmasq-utils-2.78-18.6 is installed
    • BACK