Oval Definition:	oval:org.opensuse.security:def:55859
Revision Date: 2021-03-09 Version: 1 Title: Security update for the Linux Kernel (Important) Description: The SUSE Linux Enterprise 12 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-26930: Fixed an improper error handling in blkback's grant mapping (XSA-365 bsc#1181843). - CVE-2021-26931: Fixed an issue where Linux kernel was treating grant mapping errors as bugs (XSA-362 bsc#1181753). - CVE-2021-26932: Fixed improper error handling issues in Linux grant mapping (XSA-361 bsc#1181747). - CVE-2020-28374: Fixed insufficient identifier checking in the LIO SCSI target code which could have been used by remote attackers to read or write files via directory traversal in an XCOPY request (bsc#178372). The following non-security bug was fixed: - xen/netback: fix spurious event detection for common event case (bsc#1182175). Family: unix Class: patch Status: Reference(s): 1000345 1001151 1002116 1002550 1002557 1003878 1003893 1003894 1004702 1004707 1006536 1006538 1007391 1007450 1007454 1007493 1007494 1007495 1021227 1029320 1032287 1045628 1046024 1046779 1048046 1051429 1053532 1055676 1057743 1058173 1059011 1064926 1065109 1066210 1066801 1069468 1069758 1072798 1076537 1082299 1083125 1083242 1083275 1084536 1085207 1085279 1085331 1086162 1086194 1087088 1087260 1088147 1088260 1088261 1088268 1089608 1089752 1090036 1090643 1099310 1178372 1181747 1181753 1181843 1182175 790140 859055 861847 864845 864846 864847 864850 864851 864852 864853 940918 942628 969522 969785 972335 975131 975947 981566 986228 986869 991564 996524 998516 999661 CVE-2012-4201 CVE-2012-4202 CVE-2012-4203 CVE-2012-4204 CVE-2012-4205 CVE-2012-4206 CVE-2012-4207 CVE-2012-4208 CVE-2012-4209 CVE-2012-4210 CVE-2012-4212 CVE-2012-4213 CVE-2012-4214 CVE-2012-4215 CVE-2012-4216 CVE-2012-4217 CVE-2012-4218 CVE-2012-5829 CVE-2012-5830 CVE-2012-5833 CVE-2012-5835 CVE-2012-5836 CVE-2012-5837 CVE-2012-5838 CVE-2012-5839 CVE-2012-5840 CVE-2012-5841 CVE-2012-5842 CVE-2012-5843 CVE-2014-0060 CVE-2014-0061 CVE-2014-0062 CVE-2014-0063 CVE-2014-0064 CVE-2014-0065 CVE-2014-0066 CVE-2014-1477 CVE-2014-1479 CVE-2014-1480 CVE-2014-1481 CVE-2014-1482 CVE-2014-1483 CVE-2014-1484 CVE-2014-1485 CVE-2014-1486 CVE-2014-1487 CVE-2014-1488 CVE-2014-1489 CVE-2014-1490 CVE-2014-1491 CVE-2015-4495 CVE-2015-5185 CVE-2015-7236 CVE-2016-2119 CVE-2016-2851 CVE-2016-3627 CVE-2016-6252 CVE-2016-7161 CVE-2016-7170 CVE-2016-7421 CVE-2016-7466 CVE-2016-7908 CVE-2016-7909 CVE-2016-8576 CVE-2016-8577 CVE-2016-8578 CVE-2016-8667 CVE-2016-8669 CVE-2016-8909 CVE-2016-8910 CVE-2016-9101 CVE-2016-9102 CVE-2016-9103 CVE-2016-9104 CVE-2016-9105 CVE-2016-9106 CVE-2017-0861 CVE-2017-11089 CVE-2017-13220 CVE-2017-14992 CVE-2017-16539 CVE-2017-18203 CVE-2017-5715 CVE-2017-7506 CVE-2018-1000199 CVE-2018-10087 CVE-2018-10124 CVE-2018-1087 CVE-2018-7757 CVE-2018-8781 CVE-2018-8822 CVE-2018-8897 CVE-2020-28374 CVE-2021-26930 CVE-2021-26931 CVE-2021-26932 SUSE-SU-2015:1380-1 SUSE-SU-2015:2218-1 SUSE-SU-2016:0706-1 SUSE-SU-2016:1204-1 SUSE-SU-2016:2306-1 SUSE-SU-2016:2988-1 SUSE-SU-2017:1832-1 SUSE-SU-2018:0386-1 SUSE-SU-2018:0708-1 SUSE-SU-2018:1220-1 SUSE-SU-2018:1255-1 SUSE-SU-2018:1995-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information firewall-macros-0.5.3-lp150.1 is installed OR firewalld-0.5.3-lp150.1 is installed OR firewalld-lang-0.5.3-lp150.1 is installed OR python3-firewall-0.5.3-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libxslt-1.1.32-lp151.3.3 is installed OR libxslt-devel-1.1.32-lp151.3.3 is installed OR libxslt-devel-32bit-1.1.32-lp151.3.3 is installed OR libxslt-python-1.1.32-lp151.3.3 is installed OR libxslt-tools-1.1.32-lp151.3.3 is installed OR libxslt1-1.1.32-lp151.3.3 is installed OR libxslt1-32bit-1.1.32-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information MozillaFirefox-10.0.11-0.3 is installed OR MozillaFirefox-translations-10.0.11-0.3 is installed OR libfreebl3-3.14-0.3 is installed OR libfreebl3-32bit-3.14-0.3 is installed OR mozilla-nss-3.14-0.3 is installed OR mozilla-nss-32bit-3.14-0.3 is installed OR mozilla-nss-tools-3.14-0.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-31.8.0esr-0.13 is installed OR MozillaFirefox-translations-31.8.0esr-0.13 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information libotr-3.2.0-10.5 is installed OR libotr2-3.2.0-10.5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information qemu-2.3.1-24 is installed OR qemu-block-curl-2.3.1-24 is installed OR qemu-ipxe-1.0.0-24 is installed OR qemu-kvm-2.3.1-24 is installed OR qemu-seabios-1.8.1-24 is installed OR qemu-sgabios-8-24 is installed OR qemu-tools-2.3.1-24 is installed OR qemu-vgabios-1.8.1-24 is installed OR qemu-x86-2.3.1-24 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND rpcbind-0.2.1_rc4-16 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information libspice-server1-0.12.5-10 is installed OR spice-0.12.5-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.30-38.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kernel-default-4.4.121-92.152.2 is installed OR kernel-default-base-4.4.121-92.152.2 is installed OR kernel-default-devel-4.4.121-92.152.2 is installed OR kernel-devel-4.4.121-92.152.2 is installed OR kernel-macros-4.4.121-92.152.2 is installed OR kernel-source-4.4.121-92.152.2 is installed OR kernel-syms-4.4.121-92.152.2 is installed OR kgraft-patch-4_4_121-92_152-default-1-3.3.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_50-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_15-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information jakarta-taglibs-standard-1.1.1-255 is installed OR jakarta-taglibs-standard-javadoc-1.1.1-255 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.1-2.50 is installed OR libwebkit2gtk-4_0-37-2.28.1-2.50 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.1-2.50 is installed OR typelib-1_0-WebKit2-4_0-2.28.1-2.50 is installed OR webkit2gtk-4_0-injected-bundles-2.28.1-2.50 is installed OR webkit2gtk3-2.28.1-2.50 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libsqlite3-0-3.8.10.2-9.15 is installed OR libsqlite3-0-32bit-3.8.10.2-9.15 is installed OR sqlite3-3.8.10.2-9.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information curl-7.37.0-37.26 is installed OR libcurl4-7.37.0-37.26 is installed OR libcurl4-32bit-7.37.0-37.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information containerd-0.2.9+gitr706_06b9cb351610-16.8 is installed OR docker-17.09.1_ce-98.8 is installed OR docker-libnetwork-0.7.0.1+gitr2066_7b2b1feb1de4-10 is installed OR docker-runc-1.0.0rc4+gitr3338_3f2f8b84a77f-1.3 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2066_7b2b1feb1de4-10 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information libsystemd0-228-150.66 is installed OR libsystemd0-32bit-228-150.66 is installed OR libudev-devel-228-150.66 is installed OR libudev1-228-150.66 is installed OR libudev1-32bit-228-150.66 is installed OR systemd-228-150.66 is installed OR systemd-32bit-228-150.66 is installed OR systemd-bash-completion-228-150.66 is installed OR systemd-sysvinit-228-150.66 is installed OR udev-228-150.66 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information git-2.12.3-27.22 is installed OR git-core-2.12.3-27.22 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information dnsmasq-2.78-18.6 is installed OR dnsmasq-utils-2.78-18.6 is installed
BACK