Oval Definition:	oval:org.opensuse.security:def:55868
Revision Date: 2021-03-17 Version: 1 Title: Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP2) (Important) Description: This update for the Linux Kernel 4.4.121-92_135 fixes several issues. The following security issues were fixed: - CVE-2021-3347: Fixed a use-after-free in the PI futexes during fault handling, allowing local users to execute code in the kernel (bsc#1181553). - CVE-2020-27786: Fixed a potential user after free which could have led to memory corruption or privilege escalation (bsc#1179616). - CVE-2020-28374: Fixed insufficient identifier checking in the LIO SCSI target code which could have been used by remote attackers to read or write files via directory traversal in an XCOPY request (bsc#1178684). Family: unix Class: patch Status: Reference(s): 1002982 1031481 1031660 1039496 1076017 1076366 1083488 1085114 1085447 1088268 1090036 1090338 1096740 1178684 1179616 1181553 779700 898346 898603 898604 909214 914442 926826 947003 948516 948686 949520 953110 959094 960305 961173 979422 998309 CVE-2012-4405 CVE-2013-3571 CVE-2014-0019 CVE-2014-7169 CVE-2014-7186 CVE-2014-7187 CVE-2014-8139 CVE-2014-9636 CVE-2015-4500 CVE-2015-4501 CVE-2015-4506 CVE-2015-4509 CVE-2015-4511 CVE-2015-4517 CVE-2015-4519 CVE-2015-4520 CVE-2015-4521 CVE-2015-4522 CVE-2015-5313 CVE-2015-7174 CVE-2015-7175 CVE-2015-7176 CVE-2015-7177 CVE-2015-7180 CVE-2016-1006 CVE-2016-1011 CVE-2016-1012 CVE-2016-1013 CVE-2016-1014 CVE-2016-1015 CVE-2016-1016 CVE-2016-1017 CVE-2016-1018 CVE-2016-1019 CVE-2016-1020 CVE-2016-1021 CVE-2016-1022 CVE-2016-1023 CVE-2016-1024 CVE-2016-1025 CVE-2016-1026 CVE-2016-1027 CVE-2016-1028 CVE-2016-1029 CVE-2016-1030 CVE-2016-1031 CVE-2016-1032 CVE-2016-1033 CVE-2016-1096 CVE-2016-1097 CVE-2016-1098 CVE-2016-1099 CVE-2016-1100 CVE-2016-1101 CVE-2016-1102 CVE-2016-1103 CVE-2016-1104 CVE-2016-1105 CVE-2016-1106 CVE-2016-1107 CVE-2016-1108 CVE-2016-1109 CVE-2016-1110 CVE-2016-4108 CVE-2016-4109 CVE-2016-4110 CVE-2016-4111 CVE-2016-4112 CVE-2016-4113 CVE-2016-4114 CVE-2016-4115 CVE-2016-4116 CVE-2016-4117 CVE-2016-6662 CVE-2016-7969 CVE-2016-7970 CVE-2016-7971 CVE-2016-7972 CVE-2017-0861 CVE-2017-1000364 CVE-2017-13166 CVE-2018-1000004 CVE-2018-1000199 CVE-2018-1068 CVE-2018-2579 CVE-2018-2582 CVE-2018-2588 CVE-2018-2599 CVE-2018-2602 CVE-2018-2603 CVE-2018-2618 CVE-2018-2629 CVE-2018-2633 CVE-2018-2634 CVE-2018-2637 CVE-2018-2641 CVE-2018-2663 CVE-2018-2677 CVE-2018-2678 CVE-2018-3665 CVE-2018-7566 CVE-2020-27786 CVE-2020-28374 CVE-2021-3347 SUSE-SU-2015:0377-1 SUSE-SU-2015:1703-1 SUSE-SU-2016:0008-1 SUSE-SU-2016:0931-1 SUSE-SU-2016:1305-1 SUSE-SU-2016:2404-1 SUSE-SU-2016:3107-1 SUSE-SU-2017:1944-1 SUSE-SU-2018:0663-1 SUSE-SU-2018:0992-1 SUSE-SU-2018:1231-1 SUSE-SU-2018:1266-1 SUSE-SU-2018:2104-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.1 NonFree SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information gegl-0_3-0.3.34-lp150.1 is installed OR gegl-0_3-lang-0.3.34-lp150.1 is installed OR libgegl-0_3-0-0.3.34-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information gnutls-3.6.7-lp151.2.3 is installed OR gnutls-guile-3.6.7-lp151.2.3 is installed OR libgnutls-dane-devel-3.6.7-lp151.2.3 is installed OR libgnutls-dane0-3.6.7-lp151.2.3 is installed OR libgnutls-devel-3.6.7-lp151.2.3 is installed OR libgnutls-devel-32bit-3.6.7-lp151.2.3 is installed OR libgnutls30-3.6.7-lp151.2.3 is installed OR libgnutls30-32bit-3.6.7-lp151.2.3 is installed OR libgnutlsxx-devel-3.6.7-lp151.2.3 is installed OR libgnutlsxx28-3.6.7-lp151.2.3 is installed Definition Synopsis openSUSE Leap 15.1 NonFree is installed AND opera-63.0.3368.66-lp151.2.6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information ghostscript-fonts-other-8.62-32.34 is installed OR ghostscript-fonts-rus-8.62-32.34 is installed OR ghostscript-fonts-std-8.62-32.34 is installed OR ghostscript-library-8.62-32.34 is installed OR ghostscript-omni-8.62-32.34 is installed OR ghostscript-x11-8.62-32.34 is installed OR libgimpprint-4.2.7-32.34 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information bash-3.2-147.22 is installed OR bash-doc-3.2-147.22 is installed OR libreadline5-5.2-147.22 is installed OR libreadline5-32bit-5.2-147.22 is installed OR readline-doc-5.2-147.22 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information libvirt-1.2.5-12 is installed OR libvirt-client-1.2.5-12 is installed OR libvirt-client-32bit-1.2.5-12 is installed OR libvirt-doc-1.2.5-12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libass-0.10.2-3 is installed OR libass5-0.10.2-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND socat-1.7.2.4-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_35-default-3-3 is installed OR kgraft-patch-3_12_69-60_64_35-xen-3-3 is installed OR kgraft-patch-SLE12-SP1_Update_14-3-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information dbus-1-1.8.16-19 is installed OR dbus-1-x11-1.8.16-19 is installed OR libdbus-1-3-1.8.16-19 is installed OR libdbus-1-3-32bit-1.8.16-19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libopenssl-devel-1.0.2j-60.39 is installed OR libopenssl1_0_0-1.0.2j-60.39 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.39 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.39 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.39 is installed OR openssl-1.0.2j-60.39 is installed OR openssl-doc-1.0.2j-60.39 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND kgraft-patch-4_4_121-92_135-default-7-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_64-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_18-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information krb5-appl-clients-1.0.3-1 is installed OR krb5-appl-servers-1.0.3-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND squid-3.5.21-26.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_103-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_28-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libtiff5-4.0.9-44.21 is installed OR libtiff5-32bit-4.0.9-44.21 is installed OR tiff-4.0.9-44.21 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND apache2-mod_nss-1.0.14-19.3 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information java-1_8_0-openjdk-1.8.0.161-27.13 is installed OR java-1_8_0-openjdk-demo-1.8.0.161-27.13 is installed OR java-1_8_0-openjdk-devel-1.8.0.161-27.13 is installed OR java-1_8_0-openjdk-headless-1.8.0.161-27.13 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information openstack-glance-13.0.1~a0~dev6-4.3 is installed OR openstack-glance-api-13.0.1~a0~dev6-4.3 is installed OR openstack-glance-doc-13.0.1~a0~dev6-4.3 is installed OR openstack-glance-glare-13.0.1~a0~dev6-4.3 is installed OR openstack-glance-registry-13.0.1~a0~dev6-4.3 is installed OR python-glance-13.0.1~a0~dev6-4.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information pam_radius-1.3.16-239.4 is installed OR pam_radius-32bit-1.3.16-239.4 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed
BACK