Oval Definition:	oval:org.opensuse.security:def:57056
Revision Date: 2021-07-27 Version: 1 Title: Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important) Description: This update for the Linux Kernel 4.4.180-94_141 fixes several issues. The following security issues were fixed: - CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to andobtain full root privileges. (bsc#1188062) - CVE-2021-22555: Fixed an heap out-of-bounds write in net/netfilter/x_tables.c that could allow local provilege escalation. (bsc#1188116) - CVE-2020-36385: Fixed a use-after-free vulnerability reached via the ctx_list in some ucma_migrate_id situations where ucma_close is called. (bnc#1187050) Family: unix Class: patch Status: Reference(s): 1000092 1000195 1000619 1002496 1003077 1004220 1005028 1005918 1006469 1006472 1007728 1007729 1008742 1009546 1009674 1009718 1009911 1010612 1010675 1010690 1010933 1011176 1011602 1011660 1011913 1012382 1012422 1012651 1012829 1012910 1013000 1013001 1013273 1013540 1013792 1013930 1013994 1014120 1014298 1014300 1014410 1014873 1015038 1015169 1015367 1015840 1016250 1016340 1016403 1016517 1016884 1016979 1017164 1017170 1017410 1017497 1017646 1018100 1018316 1018358 1018446 1018813 1018913 1019061 1019148 1019168 1019260 1019351 1019594 1019630 1019631 1019784 1019851 1020048 1020214 1020488 1020602 1020685 1020817 1020945 1020975 1021082 1021248 1021251 1021258 1021260 1021294 1021455 1021474 1022304 1022429 1022476 1022547 1022559 1022871 1022971 1023004 1023101 1023175 1023762 1023884 1023888 1024081 1024234 1024508 1024834 1024938 1025235 1037811 1045327 1057950 1071905 1071906 1087320 1096564 1097108 1097560 1098377 1099306 1102340 1112824 1118319 1118320 1120852 1121759 1124847 1130159 1133190 1134395 1135603 1136922 1137194 1138293 1139751 1141093 1146358 1146359 1187052 1188117 1188257 876652 921494 959709 964944 969476 969477 969479 971975 974215 977043 981709 982783 985561 987192 987576 989056 991273 998106 CVE-2010-2947 CVE-2013-4326 CVE-2014-0191 CVE-2015-8709 CVE-2016-10087 CVE-2016-5180 CVE-2016-7117 CVE-2016-9318 CVE-2016-9597 CVE-2016-9806 CVE-2016-9921 CVE-2016-9922 CVE-2017-1000251 CVE-2017-11600 CVE-2017-15274 CVE-2017-2583 CVE-2017-2584 CVE-2017-2615 CVE-2017-2620 CVE-2017-3737 CVE-2017-3738 CVE-2017-5551 CVE-2017-5576 CVE-2017-5577 CVE-2017-5897 CVE-2017-5970 CVE-2017-5986 CVE-2018-10852 CVE-2018-10853 CVE-2018-20836 CVE-2018-3646 CVE-2018-5390 CVE-2018-7191 CVE-2018-9568 CVE-2019-11487 CVE-2019-12456 CVE-2019-12614 CVE-2019-12818 CVE-2019-13050 CVE-2019-3811 CVE-2019-8675 CVE-2019-8696 CVE-2020-36385 CVE-2021-22555 CVE-2021-33909 SUSE-SU-2016:3286-1 SUSE-SU-2017:0571-1 SUSE-SU-2017:0575-1 SUSE-SU-2017:0853-1 SUSE-SU-2017:1366-1 SUSE-SU-2017:2793-1 SUSE-SU-2017:3343-1 SUSE-SU-2018:2355-1 SUSE-SU-2018:2902-1 SUSE-SU-2019:0556-1 SUSE-SU-2019:1870-1 SUSE-SU-2019:2480-1 SUSE-SU-2019:3057-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information libxml2-2-2.9.7-lp150.1 is installed OR libxml2-2-32bit-2.9.7-lp150.1 is installed OR libxml2-tools-2.9.7-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information lighttpd-1.4.54-lp151.3.3 is installed OR lighttpd-mod_authn_gssapi-1.4.54-lp151.3.3 is installed OR lighttpd-mod_authn_ldap-1.4.54-lp151.3.3 is installed OR lighttpd-mod_authn_mysql-1.4.54-lp151.3.3 is installed OR lighttpd-mod_authn_pam-1.4.54-lp151.3.3 is installed OR lighttpd-mod_authn_sasl-1.4.54-lp151.3.3 is installed OR lighttpd-mod_cml-1.4.54-lp151.3.3 is installed OR lighttpd-mod_geoip-1.4.54-lp151.3.3 is installed OR lighttpd-mod_magnet-1.4.54-lp151.3.3 is installed OR lighttpd-mod_maxminddb-1.4.54-lp151.3.3 is installed OR lighttpd-mod_mysql_vhost-1.4.54-lp151.3.3 is installed OR lighttpd-mod_rrdtool-1.4.54-lp151.3.3 is installed OR lighttpd-mod_trigger_b4_dl-1.4.54-lp151.3.3 is installed OR lighttpd-mod_vhostdb_dbi-1.4.54-lp151.3.3 is installed OR lighttpd-mod_vhostdb_ldap-1.4.54-lp151.3.3 is installed OR lighttpd-mod_vhostdb_mysql-1.4.54-lp151.3.3 is installed OR lighttpd-mod_vhostdb_pgsql-1.4.54-lp151.3.3 is installed OR lighttpd-mod_webdav-1.4.54-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gpg2-2.0.24-9.8 is installed OR gpg2-lang-2.0.24-9.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libpng16-1.6.8-14 is installed OR libpng16-16-1.6.8-14 is installed OR libpng16-16-32bit-1.6.8-14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_48-default-4-4 is installed OR kgraft-patch-3_12_74-60_64_48-xen-4-4 is installed OR kgraft-patch-SLE12-SP1_Update_17-4-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libHX28-3.18-1 is installed OR libHX28-32bit-3.18-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libopenssl-devel-1.0.2j-60.30 is installed OR libopenssl1_0_0-1.0.2j-60.30 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.30 is installed OR openssl-1.0.2j-60.30 is installed OR openssl-doc-1.0.2j-60.30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND ucode-intel-20180807-13.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cups-filters-1.0.58-17 is installed OR cups-filters-cups-browsed-1.0.58-17 is installed OR cups-filters-foomatic-rip-1.0.58-17 is installed OR cups-filters-ghostscript-1.0.58-17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information perl-Mail-SpamAssassin-3.4.2-44.8 is installed OR spamassassin-3.4.2-44.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_103-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_28-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND kgraft-patch-4_4_180-94_141-default-7-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND gd-2.1.0-24.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information exiv2-0.23-12.5 is installed OR libexiv2-12-0.23-12.5 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND yast2-smt-3.0.14-17.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libpolkit0-0.113-5.18 is installed OR polkit-0.113-5.18 is installed OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ibus-1.5.13-15.11 is installed OR ibus-gtk-1.5.13-15.11 is installed OR ibus-gtk3-1.5.13-15.11 is installed OR ibus-lang-1.5.13-15.11 is installed OR libibus-1_0-5-1.5.13-15.11 is installed OR typelib-1_0-IBus-1_0-1.5.13-15.11 is installed
BACK