Oval Definition:	oval:org.opensuse.security:def:54778
Revision Date: 2021-03-17 Version: 1 Title: Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP2) (Important) Description: This update for the Linux Kernel 4.4.121-92_146 fixes several issues. The following security issues were fixed: - CVE-2021-3347: Fixed a use-after-free in the PI futexes during fault handling, allowing local users to execute code in the kernel (bsc#1181553). - CVE-2020-27786: Fixed a potential user after free which could have led to memory corruption or privilege escalation (bsc#1179616). - CVE-2020-28374: Fixed insufficient identifier checking in the LIO SCSI target code which could have been used by remote attackers to read or write files via directory traversal in an XCOPY request (bsc#1178684). Family: unix Class: patch Status: Reference(s): 1001600 1003581 1004003 1010977 1010979 1011044 1011830 1012060 1012382 1012422 1012452 1012530 1012829 1012910 1012985 1013561 1013887 1015342 1015452 1015993 1017461 1018885 1020108 1020412 1021424 1022266 1022595 1023287 1025461 1026570 1027101 1027512 1027974 1028075 1028217 1028310 1028340 1028883 1029607 1030057 1030070 1031040 1031142 1031147 1031470 1031500 1031512 1031555 1031717 1031796 1032141 1032339 1032345 1032400 1032581 1032803 1033091 1033117 1033281 1033336 1033340 1033885 1034048 1034419 1034635 1034670 1034671 1034762 1034870 1034872 1034876 1034902 1034995 1035024 1035866 1035887 1035920 1035922 1036214 1036638 1036752 1036763 1036976 1036977 1036978 1036980 1036981 1036982 1036983 1036984 1036985 1036986 1036987 1036988 1036989 1036990 1036991 1037177 1037186 1037384 1037483 1037527 1037669 1037840 1037871 1037969 1038000 1038033 1038043 1038085 1038142 1038143 1038297 1038458 1038544 1038842 1038843 1038846 1038847 1038848 1038879 1038981 1038982 1039214 1039348 1039354 1039700 1039864 1039882 1039883 1039885 1039900 1040025 1040069 1040125 1040182 1040279 1040303 1040304 1040306 1040332 1040351 1040364 1040395 1040425 1040463 1040567 1040609 1040855 1040929 1040941 1041087 1041160 1041168 1041242 1041431 1041810 1042286 1042356 1042421 1042517 1042535 1042536 1042863 1042886 1043014 1043231 1043236 1043347 1043371 1043467 1043488 1043598 1043912 1043935 1043990 1044015 1044082 1044120 1044125 1044532 1044767 1044772 1044854 1044880 1044912 1045154 1045235 1045286 1045307 1045467 1045568 1046105 1046434 1046589 1096745 1111331 1129346 1130847 1141853 1149955 1178684 1179616 1181553 799133 847708 863764 864391 864655 864673 864678 864682 864769 864805 864811 877642 897654 900914 901488 901508 902737 907514 910258 915410 918984 922871 923967 924018 928393 932267 939801 944463 944697 945167 945404 945989 947165 949138 949549 950367 950703 950705 950706 954872 956829 957162 957988 958007 958009 958491 958523 958917 959005 959387 959695 959928 960334 960707 960725 960835 960861 960862 961332 961358 961642 961645 961691 962320 963448 963782 963923 964413 965315 965317 966170 966172 966191 966321 966339 967012 967013 967630 967969 969121 969122 969350 971975 974655 980722 988065 989311 990058 990682 993832 994989 995542 CVE-2011-3146 CVE-2013-1739 CVE-2013-1881 CVE-2013-4527 CVE-2013-4529 CVE-2013-4530 CVE-2013-4533 CVE-2013-4534 CVE-2013-4537 CVE-2013-4538 CVE-2013-4539 CVE-2014-0222 CVE-2014-3640 CVE-2014-3689 CVE-2014-7815 CVE-2014-8242 CVE-2014-9512 CVE-2014-9718 CVE-2015-1779 CVE-2015-4037 CVE-2015-5239 CVE-2015-5278 CVE-2015-6815 CVE-2015-6855 CVE-2015-7311 CVE-2015-7512 CVE-2015-7549 CVE-2015-7835 CVE-2015-7969 CVE-2015-7971 CVE-2015-8345 CVE-2015-8504 CVE-2015-8550 CVE-2015-8554 CVE-2015-8555 CVE-2015-8558 CVE-2015-8567 CVE-2015-8568 CVE-2015-8613 CVE-2015-8619 CVE-2015-8743 CVE-2015-8744 CVE-2015-8745 CVE-2015-8817 CVE-2015-8818 CVE-2016-0777 CVE-2016-0778 CVE-2016-1568 CVE-2016-1570 CVE-2016-1571 CVE-2016-1714 CVE-2016-1922 CVE-2016-1981 CVE-2016-2037 CVE-2016-2198 CVE-2016-2270 CVE-2016-2271 CVE-2016-2391 CVE-2016-2392 CVE-2016-2538 CVE-2016-2841 CVE-2016-4912 CVE-2016-5180 CVE-2016-7567 CVE-2016-8654 CVE-2016-9395 CVE-2016-9398 CVE-2016-9560 CVE-2016-9591 CVE-2017-1000365 CVE-2017-1000380 CVE-2017-6502 CVE-2017-7346 CVE-2017-7487 CVE-2017-7606 CVE-2017-7616 CVE-2017-7618 CVE-2017-7941 CVE-2017-7942 CVE-2017-7943 CVE-2017-8343 CVE-2017-8344 CVE-2017-8345 CVE-2017-8346 CVE-2017-8347 CVE-2017-8348 CVE-2017-8349 CVE-2017-8350 CVE-2017-8351 CVE-2017-8352 CVE-2017-8353 CVE-2017-8354 CVE-2017-8355 CVE-2017-8356 CVE-2017-8357 CVE-2017-8765 CVE-2017-8830 CVE-2017-8890 CVE-2017-8924 CVE-2017-8925 CVE-2017-9074 CVE-2017-9075 CVE-2017-9076 CVE-2017-9077 CVE-2017-9098 CVE-2017-9141 CVE-2017-9142 CVE-2017-9143 CVE-2017-9144 CVE-2017-9150 CVE-2017-9242 CVE-2018-12020 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-20852 CVE-2019-11091 CVE-2019-16056 CVE-2019-9636 CVE-2019-9948 CVE-2020-27786 CVE-2020-28374 CVE-2021-3347 SUSE-SU-2015:1894-1 SUSE-SU-2016:0120-1 SUSE-SU-2016:0176-1 SUSE-SU-2016:0955-1 SUSE-SU-2017:0084-1 SUSE-SU-2017:0366-1 SUSE-SU-2017:1489-1 SUSE-SU-2017:1853-1 SUSE-SU-2018:0100-1 SUSE-SU-2018:1698-1 SUSE-SU-2019:1296-1 SUSE-SU-2019:1439-1 SUSE-SU-2019:2798-1 SUSE-SU-2021:0870-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 6-LTSS SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information gnome-settings-daemon-3.26.2-lp150.5 is installed OR gnome-settings-daemon-lang-3.26.2-lp150.5 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information ncat-7.70-lp151.3.3 is installed OR ndiff-7.70-lp151.3.3 is installed OR nmap-7.70-lp151.3.3 is installed OR nping-7.70-lp151.3.3 is installed OR zenmap-7.70-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libfreebl3-3.15.2-0.3 is installed OR libfreebl3-32bit-3.15.2-0.3 is installed OR mozilla-nspr-4.10.1-0.3 is installed OR mozilla-nspr-32bit-4.10.1-0.3 is installed OR mozilla-nss-3.15.2-0.3 is installed OR mozilla-nss-32bit-3.15.2-0.3 is installed OR mozilla-nss-tools-3.15.2-0.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND rsync-3.0.4-2.49 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information openssh-6.6p1-16 is installed OR openssh-askpass-gnome-6.6p1-16 is installed OR openssh-helpers-6.6p1-16 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information kernel-default-4.4.74-92.29 is installed OR kernel-default-devel-4.4.74-92.29 is installed OR kernel-default-extra-4.4.74-92.29 is installed OR kernel-devel-4.4.74-92.29 is installed OR kernel-macros-4.4.74-92.29 is installed OR kernel-source-4.4.74-92.29 is installed OR kernel-syms-4.4.74-92.29 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information gdk-pixbuf-loader-rsvg-2.40.15-4 is installed OR librsvg-2-2-2.40.15-4 is installed OR librsvg-2-2-32bit-2.40.15-4 is installed OR rsvg-view-2.40.15-4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libpython2_7-1_0-2.7.13-28.26 is installed OR libpython2_7-1_0-32bit-2.7.13-28.26 is installed OR python-2.7.13-28.26 is installed OR python-base-2.7.13-28.26 is installed OR python-curses-2.7.13-28.26 is installed OR python-devel-2.7.13-28.26 is installed OR python-tk-2.7.13-28.26 is installed OR python-xml-2.7.13-28.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND apache2-mod_jk-1.2.40-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_67-60_64_24-default-6-3 is installed OR kgraft-patch-3_12_67-60_64_24-xen-6-3 is installed OR kgraft-patch-SLE12-SP1_Update_11-6-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information elfutils-0.158-6 is installed OR libasm1-0.158-6 is installed OR libasm1-32bit-0.158-6 is installed OR libdw1-0.158-6 is installed OR libdw1-32bit-0.158-6 is installed OR libebl1-0.158-6 is installed OR libebl1-32bit-0.158-6 is installed OR libelf1-0.158-6 is installed OR libelf1-32bit-0.158-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information ghostscript-9.26-23.16 is installed OR ghostscript-x11-9.26-23.16 is installed OR libspectre-0.2.7-12.4 is installed OR libspectre1-0.2.7-12.4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND atftp-0.7.0-160.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND kgraft-patch-4_4_121-92_146-default-4-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information ibus-1.5.13-15.11 is installed OR ibus-gtk-1.5.13-15.11 is installed OR ibus-gtk3-1.5.13-15.11 is installed OR ibus-lang-1.5.13-15.11 is installed OR libibus-1_0-5-1.5.13-15.11 is installed OR typelib-1_0-IBus-1_0-1.5.13-15.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.50-38.41 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.1-2.50 is installed OR libwebkit2gtk-4_0-37-2.28.1-2.50 is installed OR libwebkit2gtk3-lang-2.28.1-2.50 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.1-2.50 is installed OR typelib-1_0-WebKit2-4_0-2.28.1-2.50 is installed OR webkit2gtk-4_0-injected-bundles-2.28.1-2.50 is installed OR webkit2gtk3-2.28.1-2.50 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ovmf-2017+git1492060560.b6d11d7c46-4.12 is installed OR ovmf-tools-2017+git1492060560.b6d11d7c46-4.12 is installed OR qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-4.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND apache2-mod_perl-2.0.8-11 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND conntrack-tools-1.4.2-5 is installed Definition Synopsis SUSE OpenStack Cloud 6-LTSS is installed AND python-cryptography-2.1.4-3.15 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information ansible-2.2.3.0-5 is installed OR monasca-installer-20170912_10.45-5 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND ucode-intel-20191112-13.53 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed
BACK