Oval Definition:oval:org.opensuse.security:def:56916
Revision Date:2020-12-07Version:1
Title:Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)
Description:

This update for the Linux Kernel 4.4.180-94_135 fixes several issues.

The following security issues were fixed:

- CVE-2020-25645: Fixed an issue which traffic between two Geneve endpoints may be unencrypted when IPsec is configured to encrypt traffic for the specific UDP port used by the GENEVE tunnel allowing anyone between the two endpoints to read the traffic unencrypted (bsc#1177513). - CVE-2020-0429: Fixed a memory corruption due to a use after free which could have led to to local privilege escalation (bsc#1176931). - CVE-2020-11668: Fixed an issue where the Xirlink camera USB driver mishandled invalid descriptors (bsc#1173942). - CVE-2020-1749: Use ip6_dst_lookup_flow instead of ip6_dst_lookup (bsc#1165631).
Family:unixClass:patch
Status:Reference(s):1000677
1001912
1004499
1005878
1012102
1012103
1012104
1013653
1013655
1013663
1019334
1021578
1021641
1022085
1022271
1024288
1024291
1027575
1038564
1042892
1044000
1044002
1044006
1044008
1044009
1044077
1044122
1045986
1046191
1050751
1058425
1083125
1083424
1085447
1086777
1090368
1090646
1098531
1106222
1110910
1111006
1111010
1111013
1111634
1111635
1111853
1114422
1136936
1138954
1144327
1144379
1150584
1152711
1153471
1154212
1155789
1155952
1157860
1158442
1165631
1173580
1173942
1176931
1177513
933336
961964
967026
CVE-2015-1038
CVE-2015-5276
CVE-2016-0787
CVE-2016-2108
CVE-2016-2335
CVE-2016-7056
CVE-2016-8610
CVE-2016-9634
CVE-2016-9635
CVE-2016-9636
CVE-2016-9807
CVE-2016-9808
CVE-2016-9810
CVE-2017-1000368
CVE-2017-13166
CVE-2017-14482
CVE-2017-2579
CVE-2017-2580
CVE-2017-2636
CVE-2017-3731
CVE-2017-6967
CVE-2017-7533
CVE-2017-7645
CVE-2017-8890
CVE-2017-9122
CVE-2017-9123
CVE-2017-9124
CVE-2017-9125
CVE-2017-9126
CVE-2017-9127
CVE-2017-9128
CVE-2017-9242
CVE-2018-1000807
CVE-2018-1000808
CVE-2018-10839
CVE-2018-12327
CVE-2018-15746
CVE-2018-17958
CVE-2018-17962
CVE-2018-17963
CVE-2018-18849
CVE-2018-7170
CVE-2018-8781
CVE-2018-8897
CVE-2018-8975
CVE-2019-17631
CVE-2019-2933
CVE-2019-2945
CVE-2019-2958
CVE-2019-2962
CVE-2019-2964
CVE-2019-2973
CVE-2019-2975
CVE-2019-2978
CVE-2019-2981
CVE-2019-2983
CVE-2019-2988
CVE-2019-2989
CVE-2019-2992
CVE-2019-2996
CVE-2019-2999
CVE-2020-0429
CVE-2020-11668
CVE-2020-1749
CVE-2020-25645
CVE-2020-4044
SUSE-SU-2016:0718-1
SUSE-SU-2016:3303-1
SUSE-SU-2017:0461-1
SUSE-SU-2017:1769-1
SUSE-SU-2017:1771-1
SUSE-SU-2017:2061-1
SUSE-SU-2017:2529-1
SUSE-SU-2018:1531-1
SUSE-SU-2018:3342-1
SUSE-SU-2018:4063-1
SUSE-SU-2018:4237-1
SUSE-SU-2019:1645-1
SUSE-SU-2020:0024-1
SUSE-SU-2020:1943-1
SUSE-SU-2020:3656-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libXfixes3-5.0.3-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libzmq5-4.2.3-lp151.5.3 is installed
  • OR zeromq-4.2.3-lp151.5.3 is installed
  • OR zeromq-devel-4.2.3-lp151.5.3 is installed
  • OR zeromq-tools-4.2.3-lp151.5.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • python-cryptography-1.3.1-7.13 is installed
  • OR python-pyOpenSSL-16.0.0-4.11 is installed
  • OR python-setuptools-18.0.1-4.8 is installed
  • OR python3-cryptography-1.3.1-7.13 is installed
  • OR python3-pyOpenSSL-16.0.0-4.11 is installed
  • OR python3-setuptools-18.0.1-4.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libssh2-1-1.4.3-16 is installed
  • OR libssh2-1-32bit-1.4.3-16 is installed
  • OR libssh2_org-1.4.3-16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_67-60_64_18-default-9-2 is installed
  • OR kgraft-patch-3_12_67-60_64_18-xen-9-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_9-9-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libasan2-5.3.1+r233831-9 is installed
  • OR libasan2-32bit-5.3.1+r233831-9 is installed
  • OR libffi4-5.3.1+r233831-9 is installed
  • OR libffi4-32bit-5.3.1+r233831-9 is installed
  • OR libmpx0-5.3.1+r233831-9 is installed
  • OR libmpx0-32bit-5.3.1+r233831-9 is installed
  • OR libmpxwrappers0-5.3.1+r233831-9 is installed
  • OR libmpxwrappers0-32bit-5.3.1+r233831-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • glibc-2.22-62.13 is installed
  • OR glibc-32bit-2.22-62.13 is installed
  • OR glibc-devel-2.22-62.13 is installed
  • OR glibc-devel-32bit-2.22-62.13 is installed
  • OR glibc-html-2.22-62.13 is installed
  • OR glibc-i18ndata-2.22-62.13 is installed
  • OR glibc-info-2.22-62.13 is installed
  • OR glibc-locale-2.22-62.13 is installed
  • OR glibc-locale-32bit-2.22-62.13 is installed
  • OR glibc-profile-2.22-62.13 is installed
  • OR glibc-profile-32bit-2.22-62.13 is installed
  • OR nscd-2.22-62.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.30-38.26 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.30-38.26 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.30-38.26 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.30-38.26 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.30-38.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_74-92_38-default-10-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_13-10-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • apache-commons-daemon-1.0.15-6 is installed
  • OR apache-commons-daemon-javadoc-1.0.15-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND ucode-intel-20190618-13.47 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_100-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_27-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND kgraft-patch-4_4_180-94_135-default-2-2.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • liblouis-2.6.4-6.6 is installed
  • OR liblouis-data-2.6.4-6.6 is installed
  • OR liblouis9-2.6.4-6.6 is installed
  • OR python-louis-2.6.4-6.6 is installed
  • OR python3-louis-2.6.4-6.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND python-libxml2-2.9.4-46.15 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • qemu-2.6.2-41.46 is installed
  • OR qemu-block-curl-2.6.2-41.46 is installed
  • OR qemu-block-rbd-2.6.2-41.46 is installed
  • OR qemu-block-ssh-2.6.2-41.46 is installed
  • OR qemu-guest-agent-2.6.2-41.46 is installed
  • OR qemu-ipxe-1.0.0-41.46 is installed
  • OR qemu-kvm-2.6.2-41.46 is installed
  • OR qemu-lang-2.6.2-41.46 is installed
  • OR qemu-s390-2.6.2-41.46 is installed
  • OR qemu-seabios-1.9.1-41.46 is installed
  • OR qemu-sgabios-8-41.46 is installed
  • OR qemu-tools-2.6.2-41.46 is installed
  • OR qemu-vgabios-1.9.1-41.46 is installed
  • OR qemu-x86-2.6.2-41.46 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • kernel-default-4.4.180-94.121 is installed
  • OR kernel-default-base-4.4.180-94.121 is installed
  • OR kernel-default-devel-4.4.180-94.121 is installed
  • OR kernel-default-kgraft-4.4.180-94.121 is installed
  • OR kernel-devel-4.4.180-94.121 is installed
  • OR kernel-macros-4.4.180-94.121 is installed
  • OR kernel-source-4.4.180-94.121 is installed
  • OR kernel-syms-4.4.180-94.121 is installed
  • OR kgraft-patch-4_4_180-94_121-default-1-4.5 is installed
  • OR kgraft-patch-SLE12-SP3_Update_32-1-4.5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • bzip2-1.0.6-30.8 is installed
  • OR bzip2-doc-1.0.6-30.8 is installed
  • OR libbz2-1-1.0.6-30.8 is installed
  • OR libbz2-1-32bit-1.0.6-30.8 is installed
    • BACK