Oval Definition:	oval:org.opensuse.security:def:57010
Revision Date: 2021-06-04 Version: 1 Title: Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important) Description: This update for the Linux Kernel 4.4.180-94_124 fixes several issues. The following security issues were fixed: - Fix a kernel warning during sysfs read (bsc#1186235) - CVE-2020-36322: An issue was discovered in the FUSE filesystem implementation in the Linux kernel aka CID-5d069dbe8aaf. fuse_do_getattr() calls make_bad_inode() in inappropriate situations, causing a system crash. NOTE: the original fix for this vulnerability was incomplete, and its incompleteness is tracked as CVE-2021-28950 (bsc#1184952). - CVE-2021-29154: BPF JIT compilers in the Linux kernel have incorrect computation of branch displacements, allowing them to execute arbitrary code within the kernel context. This affects arch/x86/net/bpf_jit_comp.c and arch/x86/net/bpf_jit_comp32.c (bsc#1184710) Family: unix Class: patch Status: Reference(s): 1005179 1007216 1008501 1008894 1010675 1014338 1019016 1028391 1040039 1042910 1047184 1053153 1053352 1053431 1056061 1059554 1069708 1076118 1086690 1090036 1094150 1094154 1094161 1110146 1115034 1126613 1130103 1133528 1140290 1142772 1145692 1167240 1184710 1184952 1186235 977410 977940 982141 985232 987144 990438 999688 CVE-2009-2625 CVE-2009-3560 CVE-2009-3720 CVE-2011-0707 CVE-2012-0876 CVE-2012-1147 CVE-2012-1148 CVE-2015-1283 CVE-2016-0718 CVE-2016-5009 CVE-2016-9318 CVE-2017-10053 CVE-2017-10067 CVE-2017-10074 CVE-2017-10078 CVE-2017-10081 CVE-2017-10087 CVE-2017-10089 CVE-2017-10090 CVE-2017-10096 CVE-2017-10101 CVE-2017-10102 CVE-2017-10105 CVE-2017-10107 CVE-2017-10108 CVE-2017-10109 CVE-2017-10110 CVE-2017-10111 CVE-2017-10115 CVE-2017-10116 CVE-2017-10125 CVE-2017-10243 CVE-2017-10661 CVE-2017-12617 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081 CVE-2017-13087 CVE-2017-13088 CVE-2017-16939 CVE-2017-18269 CVE-2017-3145 CVE-2017-5398 CVE-2017-5400 CVE-2017-5401 CVE-2017-5402 CVE-2017-5404 CVE-2017-5405 CVE-2017-5407 CVE-2017-5408 CVE-2017-5409 CVE-2017-5410 CVE-2017-5664 CVE-2017-7674 CVE-2018-1000199 CVE-2018-11236 CVE-2018-11237 CVE-2019-1010180 CVE-2019-13173 CVE-2019-3859 CVE-2020-36322 CVE-2020-5267 CVE-2021-29154 SUSE-SU-2017:0367-1 SUSE-SU-2017:0714-1 SUSE-SU-2017:2263-1 SUSE-SU-2017:2745-1 SUSE-SU-2017:3039-1 SUSE-SU-2017:3313-1 SUSE-SU-2018:0303-1 SUSE-SU-2018:1551-1 SUSE-SU-2018:1562-1 SUSE-SU-2019:1060-1 SUSE-SU-2019:1896-1 SUSE-SU-2019:2181-1 SUSE-SU-2019:2916-1 SUSE-SU-2020:0954-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information libpurple-2.13.0-lp150.3 is installed OR libpurple-lang-2.13.0-lp150.3 is installed OR libpurple-tcl-2.13.0-lp150.3 is installed OR pidgin-2.13.0-lp150.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information curl-7.60.0-lp151.5.6 is installed OR curl-mini-7.60.0-lp151.5.6 is installed OR libcurl-devel-7.60.0-lp151.5.6 is installed OR libcurl-devel-32bit-7.60.0-lp151.5.6 is installed OR libcurl-mini-devel-7.60.0-lp151.5.6 is installed OR libcurl4-7.60.0-lp151.5.6 is installed OR libcurl4-32bit-7.60.0-lp151.5.6 is installed OR libcurl4-mini-7.60.0-lp151.5.6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libxml2-2.9.4-46.20 is installed OR libxml2-2-2.9.4-46.20 is installed OR libxml2-2-32bit-2.9.4-46.20 is installed OR libxml2-tools-2.9.4-46.20 is installed OR python-libxml2-2.9.4-46.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information MozillaFirefox-45.8.0esr-102 is installed OR MozillaFirefox-translations-45.8.0esr-102 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr4.10-30.5 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr4.10-30.5 is installed OR java-1_8_0-ibm-devel-1.8.0_sr4.10-30.5 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr4.10-30.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information expat-2.1.0-17 is installed OR libexpat1-2.1.0-17 is installed OR libexpat1-32bit-2.1.0-17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information xen-4.7.5_02-43.30 is installed OR xen-doc-html-4.7.5_02-43.30 is installed OR xen-libs-4.7.5_02-43.30 is installed OR xen-libs-32bit-4.7.5_02-43.30 is installed OR xen-tools-4.7.5_02-43.30 is installed OR xen-tools-domU-4.7.5_02-43.30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libvirt-2.0.0-27.42 is installed OR libvirt-client-2.0.0-27.42 is installed OR libvirt-daemon-2.0.0-27.42 is installed OR libvirt-daemon-config-network-2.0.0-27.42 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed OR libvirt-daemon-driver-network-2.0.0-27.42 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed OR libvirt-daemon-hooks-2.0.0-27.42 is installed OR libvirt-daemon-lxc-2.0.0-27.42 is installed OR libvirt-daemon-qemu-2.0.0-27.42 is installed OR libvirt-daemon-xen-2.0.0-27.42 is installed OR libvirt-doc-2.0.0-27.42 is installed OR libvirt-lock-sanlock-2.0.0-27.42 is installed OR libvirt-nss-2.0.0-27.42 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kernel-firmware-20170530-21.22 is installed OR ucode-amd-20170530-21.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information avahi-0.6.32-30 is installed OR avahi-lang-0.6.32-30 is installed OR avahi-utils-0.6.32-30 is installed OR libavahi-client3-0.6.32-30 is installed OR libavahi-client3-32bit-0.6.32-30 is installed OR libavahi-common3-0.6.32-30 is installed OR libavahi-common3-32bit-0.6.32-30 is installed OR libavahi-core7-0.6.32-30 is installed OR libdns_sd-0.6.32-30 is installed OR libdns_sd-32bit-0.6.32-30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND mutt-1.10.1-55.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.1-2.50 is installed OR libwebkit2gtk-4_0-37-2.28.1-2.50 is installed OR libwebkit2gtk3-lang-2.28.1-2.50 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.1-2.50 is installed OR typelib-1_0-WebKit2-4_0-2.28.1-2.50 is installed OR webkit2gtk-4_0-injected-bundles-2.28.1-2.50 is installed OR webkit2gtk3-2.28.1-2.50 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND kgraft-patch-4_4_180-94_124-default-10-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libsoup-2.62.2-5.7 is installed OR libsoup-2_4-1-2.62.2-5.7 is installed OR libsoup-2_4-1-32bit-2.62.2-5.7 is installed OR libsoup-lang-2.62.2-5.7 is installed OR typelib-1_0-Soup-2_4-2.62.2-5.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libsystemd0-228-150.53 is installed OR libsystemd0-32bit-228-150.53 is installed OR libudev1-228-150.53 is installed OR libudev1-32bit-228-150.53 is installed OR systemd-228-150.53 is installed OR systemd-32bit-228-150.53 is installed OR systemd-bash-completion-228-150.53 is installed OR systemd-sysvinit-228-150.53 is installed OR udev-228-150.53 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information glibc-2.22-62.13 is installed OR glibc-32bit-2.22-62.13 is installed OR glibc-devel-2.22-62.13 is installed OR glibc-devel-32bit-2.22-62.13 is installed OR glibc-html-2.22-62.13 is installed OR glibc-i18ndata-2.22-62.13 is installed OR glibc-info-2.22-62.13 is installed OR glibc-locale-2.22-62.13 is installed OR glibc-locale-32bit-2.22-62.13 is installed OR glibc-profile-2.22-62.13 is installed OR glibc-profile-32bit-2.22-62.13 is installed OR nscd-2.22-62.13 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information xen-4.9.4_06-3.59 is installed OR xen-doc-html-4.9.4_06-3.59 is installed OR xen-libs-4.9.4_06-3.59 is installed OR xen-libs-32bit-4.9.4_06-3.59 is installed OR xen-tools-4.9.4_06-3.59 is installed OR xen-tools-domU-4.9.4_06-3.59 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information crowbar-5.0+git.1528696845.81a7b5d0-3.3 is installed OR crowbar-core-5.0+git.1533887407.6e9b0412d-3.8 is installed OR crowbar-core-branding-upstream-5.0+git.1533887407.6e9b0412d-3.8 is installed OR crowbar-devel-5.0+git.1528696845.81a7b5d0-3.3 is installed OR crowbar-ha-5.0+git.1530177874.35b9099-3.3 is installed OR crowbar-init-5.0+git.1520420379.d5bbb35-3.3 is installed OR crowbar-openstack-5.0+git.1534167599.d325ef804-4.8 is installed OR crowbar-ui-1.2.0+git.1533844061.4ac8e723-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND python-Django1-1.11.20-3.3 is installed
BACK