Oval Definition:oval:org.opensuse.security:def:57009
Revision Date:2021-06-04Version:1
Title:Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)
Description:

This update for the Linux Kernel 4.4.180-94_127 fixes several issues.

The following security issues were fixed:

- Fix a kernel warning during sysfs read (bsc#1186235) - CVE-2020-36322: An issue was discovered in the FUSE filesystem implementation in the Linux kernel aka CID-5d069dbe8aaf. fuse_do_getattr() calls make_bad_inode() in inappropriate situations, causing a system crash. NOTE: the original fix for this vulnerability was incomplete, and its incompleteness is tracked as CVE-2021-28950 (bsc#1184952). - CVE-2021-29154: BPF JIT compilers in the Linux kernel have incorrect computation of branch displacements, allowing them to execute arbitrary code within the kernel context. This affects arch/x86/net/bpf_jit_comp.c and arch/x86/net/bpf_jit_comp32.c (bsc#1184710)
Family:unixClass:patch
Status:Reference(s):1005179
1006796
1007216
1007600
1008501
1008894
1011057
1013496
1013712
1014338
1020108
1024200
1024328
1030406
1032322
1049302
1049305
1049306
1049307
1049308
1049309
1049310
1049311
1049312
1049313
1049314
1049315
1049316
1049317
1049318
1049319
1049320
1049321
1049322
1049323
1049324
1049325
1049326
1049327
1049328
1049329
1049330
1049331
1049332
1053153
1061041
1069708
1083125
1085447
1090368
1090646
1108308
1132549
1132664
1140095
1140101
1142880
1142882
1142883
1142885
1168630
1184710
1184952
1186235
913727
938593
941384
963448
971031
977940
978424
982141
985110
985232
987144
990438
994598
999688
CVE-2010-2640
CVE-2010-2641
CVE-2010-2642
CVE-2010-2643
CVE-2011-1018
CVE-2015-5191
CVE-2016-2037
CVE-2016-5009
CVE-2016-9798
CVE-2017-10053
CVE-2017-10067
CVE-2017-10074
CVE-2017-10078
CVE-2017-10081
CVE-2017-10086
CVE-2017-10087
CVE-2017-10089
CVE-2017-10090
CVE-2017-10096
CVE-2017-10101
CVE-2017-10102
CVE-2017-10105
CVE-2017-10107
CVE-2017-10108
CVE-2017-10109
CVE-2017-10110
CVE-2017-10111
CVE-2017-10114
CVE-2017-10115
CVE-2017-10116
CVE-2017-10118
CVE-2017-10125
CVE-2017-10135
CVE-2017-10176
CVE-2017-10193
CVE-2017-10198
CVE-2017-10243
CVE-2017-10661
CVE-2017-13166
CVE-2017-14867
CVE-2017-16939
CVE-2017-7214
CVE-2017-7400
CVE-2018-8781
CVE-2018-8897
CVE-2019-11234
CVE-2019-11235
CVE-2019-13117
CVE-2019-13118
CVE-2019-14232
CVE-2019-14233
CVE-2019-14234
CVE-2019-14235
CVE-2020-36322
CVE-2020-6819
CVE-2020-6820
CVE-2021-29154
SUSE-SU-2017:0366-1
SUSE-SU-2017:0367-1
SUSE-SU-2017:0701-1
SUSE-SU-2017:1443-1
SUSE-SU-2017:2175-1
SUSE-SU-2017:2747-1
SUSE-SU-2017:3320-1
SUSE-SU-2018:1532-1
SUSE-SU-2018:3074-1
SUSE-SU-2019:1039-1
SUSE-SU-2019:1867-1
SUSE-SU-2019:2180-1
SUSE-SU-2019:2915-1
SUSE-SU-2020:0928-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • libpulse-mainloop-glib0-11.1-lp150.4 is installed
  • OR libpulse0-11.1-lp150.4 is installed
  • OR pulseaudio-11.1-lp150.4 is installed
  • OR pulseaudio-bash-completion-11.1-lp150.4 is installed
  • OR pulseaudio-lang-11.1-lp150.4 is installed
  • OR pulseaudio-module-bluetooth-11.1-lp150.4 is installed
  • OR pulseaudio-module-gconf-11.1-lp150.4 is installed
  • OR pulseaudio-module-jack-11.1-lp150.4 is installed
  • OR pulseaudio-module-lirc-11.1-lp150.4 is installed
  • OR pulseaudio-module-x11-11.1-lp150.4 is installed
  • OR pulseaudio-module-zeroconf-11.1-lp150.4 is installed
  • OR pulseaudio-utils-11.1-lp150.4 is installed
  • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • python-Werkzeug-0.14.1-lp151.2.3 is installed
  • OR python-Werkzeug-doc-0.14.1-lp151.2.3 is installed
  • OR python2-Werkzeug-0.14.1-lp151.2.3 is installed
  • OR python3-Werkzeug-0.14.1-lp151.2.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • libxslt-1.1.28-17.6 is installed
  • OR libxslt-tools-1.1.28-17.6 is installed
  • OR libxslt1-1.1.28-17.6 is installed
  • OR libxslt1-32bit-1.1.28-17.6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libvmtools0-10.1.0-5.3 is installed
  • OR open-vm-tools-10.1.0-5.3 is installed
  • OR open-vm-tools-desktop-10.1.0-5.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.144-27.5 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.144-27.5 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.144-27.5 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.144-27.5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • evince-3.20.1-5 is installed
  • OR evince-browser-plugin-3.20.1-5 is installed
  • OR evince-lang-3.20.1-5 is installed
  • OR evince-plugin-djvudocument-3.20.1-5 is installed
  • OR evince-plugin-dvidocument-3.20.1-5 is installed
  • OR evince-plugin-pdfdocument-3.20.1-5 is installed
  • OR evince-plugin-psdocument-3.20.1-5 is installed
  • OR evince-plugin-tiffdocument-3.20.1-5 is installed
  • OR evince-plugin-xpsdocument-3.20.1-5 is installed
  • OR libevdocument3-4-3.20.1-5 is installed
  • OR libevview3-3-3.20.1-5 is installed
  • OR nautilus-evince-3.20.1-5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • kernel-default-4.4.121-92.73 is installed
  • OR kernel-default-base-4.4.121-92.73 is installed
  • OR kernel-default-devel-4.4.121-92.73 is installed
  • OR kernel-devel-4.4.121-92.73 is installed
  • OR kernel-macros-4.4.121-92.73 is installed
  • OR kernel-source-4.4.121-92.73 is installed
  • OR kernel-syms-4.4.121-92.73 is installed
  • OR kgraft-patch-4_4_121-92_73-default-1-3.3 is installed
  • OR kgraft-patch-SLE12-SP2_Update_21-1-3.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kernel-firmware-20170530-21.22 is installed
  • OR ucode-amd-20170530-21.22 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • git-2.12.3-27.14 is installed
  • OR git-core-2.12.3-27.14 is installed
  • OR git-doc-2.12.3-27.14 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • automake-1.13.4-6 is installed
  • OR m4-1.4.16-15 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • python-certifi-2018.4.16-3.6 is installed
  • OR python-chardet-3.0.4-5.6 is installed
  • OR python-urllib3-1.22-3.20 is installed
  • OR python3-certifi-2018.4.16-3.6 is installed
  • OR python3-chardet-3.0.4-5.6 is installed
  • OR python3-requests-2.20.1-5 is installed
  • OR python3-urllib3-1.22-3.20 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • pam_radius-1.3.16-239.4 is installed
  • OR pam_radius-32bit-1.3.16-239.4 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND kgraft-patch-4_4_180-94_127-default-10-2.2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • ceph-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR ceph-common-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR libcephfs2-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR librados2-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR libradosstriper1-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR librbd1-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR librgw2-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR python-cephfs-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR python-rados-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR python-rbd-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR python-rgw-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • MozillaFirefox-60.3.0-109.50 is installed
  • OR MozillaFirefox-translations-common-60.3.0-109.50 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • openstack-ceilometer-7.0.4~a0~dev7-3 is installed
  • OR openstack-ceilometer-agent-central-7.0.4~a0~dev7-3 is installed
  • OR openstack-ceilometer-agent-compute-7.0.4~a0~dev7-3 is installed
  • OR openstack-ceilometer-agent-ipmi-7.0.4~a0~dev7-3 is installed
  • OR openstack-ceilometer-agent-notification-7.0.4~a0~dev7-3 is installed
  • OR openstack-ceilometer-api-7.0.4~a0~dev7-3 is installed
  • OR openstack-ceilometer-collector-7.0.4~a0~dev7-3 is installed
  • OR openstack-ceilometer-doc-7.0.4~a0~dev7-3 is installed
  • OR openstack-ceilometer-polling-7.0.4~a0~dev7-3 is installed
  • OR openstack-cinder-9.1.5~a0~dev1-3 is installed
  • OR openstack-cinder-api-9.1.5~a0~dev1-3 is installed
  • OR openstack-cinder-backup-9.1.5~a0~dev1-3 is installed
  • OR openstack-cinder-doc-9.1.5~a0~dev1-3 is installed
  • OR openstack-cinder-scheduler-9.1.5~a0~dev1-3 is installed
  • OR openstack-cinder-volume-9.1.5~a0~dev1-3 is installed
  • OR openstack-dashboard-10.0.4~a0~dev2-3 is installed
  • OR openstack-glance-13.0.1~a0~dev6-3 is installed
  • OR openstack-glance-api-13.0.1~a0~dev6-3 is installed
  • OR openstack-glance-doc-13.0.1~a0~dev6-3 is installed
  • OR openstack-glance-glare-13.0.1~a0~dev6-3 is installed
  • OR openstack-glance-registry-13.0.1~a0~dev6-3 is installed
  • OR openstack-heat-7.0.4~a0~dev4-4 is installed
  • OR openstack-heat-api-7.0.4~a0~dev4-4 is installed
  • OR openstack-heat-api-cfn-7.0.4~a0~dev4-4 is installed
  • OR openstack-heat-api-cloudwatch-7.0.4~a0~dev4-4 is installed
  • OR openstack-heat-doc-7.0.4~a0~dev4-4 is installed
  • OR openstack-heat-engine-7.0.4~a0~dev4-4 is installed
  • OR openstack-heat-plugin-heat_docker-7.0.4~a0~dev4-4 is installed
  • OR openstack-heat-test-7.0.4~a0~dev4-4 is installed
  • OR openstack-keystone-10.0.2~a0~dev2-6 is installed
  • OR openstack-keystone-doc-10.0.2~a0~dev2-6 is installed
  • OR openstack-magnum-3.1.2~a0~dev22-13 is installed
  • OR openstack-magnum-api-3.1.2~a0~dev22-13 is installed
  • OR openstack-magnum-conductor-3.1.2~a0~dev22-13 is installed
  • OR openstack-magnum-doc-3.1.2~a0~dev22-13 is installed
  • OR openstack-manila-3.0.1~a0~dev27-3 is installed
  • OR openstack-manila-api-3.0.1~a0~dev27-3 is installed
  • OR openstack-manila-data-3.0.1~a0~dev27-3 is installed
  • OR openstack-manila-doc-3.0.1~a0~dev27-3 is installed
  • OR openstack-manila-scheduler-3.0.1~a0~dev27-3 is installed
  • OR openstack-manila-share-3.0.1~a0~dev27-3 is installed
  • OR openstack-nova-14.0.6~a0~dev16-3 is installed
  • OR openstack-nova-api-14.0.6~a0~dev16-3 is installed
  • OR openstack-nova-cells-14.0.6~a0~dev16-3 is installed
  • OR openstack-nova-cert-14.0.6~a0~dev16-3 is installed
  • OR openstack-nova-compute-14.0.6~a0~dev16-3 is installed
  • OR openstack-nova-conductor-14.0.6~a0~dev16-3 is installed
  • OR openstack-nova-console-14.0.6~a0~dev16-3 is installed
  • OR openstack-nova-consoleauth-14.0.6~a0~dev16-3 is installed
  • OR openstack-nova-doc-14.0.6~a0~dev16-3 is installed
  • OR openstack-nova-novncproxy-14.0.6~a0~dev16-3 is installed
  • OR openstack-nova-placement-api-14.0.6~a0~dev16-3 is installed
  • OR openstack-nova-scheduler-14.0.6~a0~dev16-3 is installed
  • OR openstack-nova-serialproxy-14.0.6~a0~dev16-3 is installed
  • OR openstack-nova-vncproxy-14.0.6~a0~dev16-3 is installed
  • OR python-ceilometer-7.0.4~a0~dev7-3 is installed
  • OR python-cinder-9.1.5~a0~dev1-3 is installed
  • OR python-glance-13.0.1~a0~dev6-3 is installed
  • OR python-heat-7.0.4~a0~dev4-4 is installed
  • OR python-horizon-10.0.4~a0~dev2-3 is installed
  • OR python-keystone-10.0.2~a0~dev2-6 is installed
  • OR python-magnum-3.1.2~a0~dev22-13 is installed
  • OR python-manila-3.0.1~a0~dev27-3 is installed
  • OR python-nova-14.0.6~a0~dev16-3 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND haproxy-1.6.11-11.3 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND Package Information
  • openstack-manila-7.3.1~dev15-4.18 is installed
  • OR openstack-manila-api-7.3.1~dev15-4.18 is installed
  • OR openstack-manila-data-7.3.1~dev15-4.18 is installed
  • OR openstack-manila-scheduler-7.3.1~dev15-4.18 is installed
  • OR openstack-manila-share-7.3.1~dev15-4.18 is installed
  • OR python-manila-7.3.1~dev15-4.18 is installed
  • OR venv-openstack-manila-7.3.1~dev15-3.17 is installed
  • OR venv-openstack-manila-x86_64-7.3.1~dev15-3.17 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • grafana-4.5.1-4.3 is installed
  • OR kafka-0.9.0.1-5.3 is installed
  • OR logstash-2.4.1-5.4 is installed
  • OR openstack-monasca-installer-20180622_15.06-3.6 is installed
  • BACK