Oval Definition:	oval:org.opensuse.security:def:57097
Revision Date: 2021-09-23 Version: 1 Title: Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important) Description: This update for the Linux Kernel 4.4.180-94_141 fixes several issues. The following security issues were fixed: - CVE-2021-3653: Fixed missing validation of the KVM `int_ctl` VMCB field that would have allowed a malicious L1 guest to enable AVIC support for the L2 guest (bsc#1189420). - CVE-2021-38198: Fixed KVM MMU to use the correct inherited permissions to get shadow page (bsc#1189278). Family: unix Class: patch Status: Reference(s): 1002626 1010457 1012382 1012546 1019416 1020940 1022805 1024416 1027147 1031717 1035686 1038505 1046610 1053153 1053911 1057734 1058297 1068003 1069708 1070536 1075428 1075697 1076537 1076847 1077560 1082153 1082299 1082943 1083125 1083242 1083275 1083745 1083836 1084353 1084536 1084610 1084721 1084829 1085042 1085185 1085224 1085279 1085331 1085402 1085404 1086162 1086194 1087088 1087260 1087845 1088147 1088241 1088242 1088260 1088261 1088600 1088684 1089198 1089608 1089644 1089752 1090638 1090643 1096449 1098599 1102959 1105402 1107829 1108145 1109137 1109330 1110286 1117645 1119019 1120691 1121698 1121805 1122821 1124728 1124732 1124735 1125315 1127155 1127758 1127961 1128166 1129080 1129179 1146358 1146359 1153674 1160571 1189278 1189420 905870 905871 905872 922220 922221 922222 922223 927637 993692 993707 CVE-2011-3177 CVE-2014-8767 CVE-2014-8768 CVE-2014-8769 CVE-2015-0261 CVE-2015-2153 CVE-2015-2154 CVE-2015-2155 CVE-2015-3138 CVE-2016-1246 CVE-2016-1249 CVE-2016-1251 CVE-2016-1521 CVE-2016-1523 CVE-2016-1526 CVE-2016-2399 CVE-2016-7922 CVE-2016-7923 CVE-2016-7924 CVE-2016-7925 CVE-2016-7926 CVE-2016-7927 CVE-2016-7928 CVE-2016-7929 CVE-2016-7930 CVE-2016-7931 CVE-2016-7932 CVE-2016-7933 CVE-2016-7934 CVE-2016-7935 CVE-2016-7936 CVE-2016-7937 CVE-2016-7938 CVE-2016-7939 CVE-2016-7940 CVE-2016-7973 CVE-2016-7974 CVE-2016-7975 CVE-2016-7983 CVE-2016-7984 CVE-2016-7985 CVE-2016-7986 CVE-2016-7992 CVE-2016-7993 CVE-2016-8574 CVE-2016-8575 CVE-2016-9840 CVE-2016-9841 CVE-2016-9842 CVE-2016-9843 CVE-2017-0861 CVE-2017-10661 CVE-2017-11089 CVE-2017-1289 CVE-2017-13220 CVE-2017-16939 CVE-2017-17833 CVE-2017-18203 CVE-2017-18257 CVE-2017-2619 CVE-2017-3509 CVE-2017-3511 CVE-2017-3533 CVE-2017-3539 CVE-2017-3544 CVE-2017-5202 CVE-2017-5203 CVE-2017-5204 CVE-2017-5205 CVE-2017-5341 CVE-2017-5342 CVE-2017-5482 CVE-2017-5483 CVE-2017-5484 CVE-2017-5485 CVE-2017-5486 CVE-2018-10087 CVE-2018-10087 CVE-2018-10124 CVE-2018-10124 CVE-2018-1087 CVE-2018-1087 CVE-2018-14633 CVE-2018-6126 CVE-2018-7740 CVE-2018-7757 CVE-2018-8043 CVE-2018-8781 CVE-2018-8781 CVE-2018-8822 CVE-2018-8822 CVE-2018-8897 CVE-2018-8897 CVE-2019-14287 CVE-2019-2024 CVE-2019-5188 CVE-2019-6974 CVE-2019-7221 CVE-2019-7222 CVE-2019-8675 CVE-2019-8696 CVE-2019-9213 CVE-2021-3653 CVE-2021-38198 SUSE-SU-2017:0123-1 SUSE-SU-2017:0859-1 SUSE-SU-2017:1110-1 SUSE-SU-2017:1386-1 SUSE-SU-2017:1986-1 SUSE-SU-2017:3323-1 SUSE-SU-2018:1173-1 SUSE-SU-2018:1220-1 SUSE-SU-2018:1783-1 SUSE-SU-2018:2991-1 SUSE-SU-2019:0828-1 SUSE-SU-2019:2668-1 SUSE-SU-2019:3057-1 SUSE-SU-2020:0360-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND rtkit-0.11+git.20130926-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libtasn1-4.13-lp151.4.3 is installed OR libtasn1-6-4.13-lp151.4.3 is installed OR libtasn1-6-32bit-4.13-lp151.4.3 is installed OR libtasn1-devel-4.13-lp151.4.3 is installed OR libtasn1-devel-32bit-4.13-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information cups-1.7.5-20.26 is installed OR cups-client-1.7.5-20.26 is installed OR cups-libs-1.7.5-20.26 is installed OR cups-libs-32bit-1.7.5-20.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr4.5-29 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr4.5-29 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr4.5-29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_67-60_64_24-default-11-2 is installed OR kgraft-patch-3_12_67-60_64_24-xen-11-2 is installed OR kgraft-patch-SLE12-SP1_Update_11-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libgraphite2-3-1.3.1-6 is installed OR libgraphite2-3-32bit-1.3.1-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND ucode-intel-20180703-13.25 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information res-signingkeys-3.0.37-52.23 is installed OR smt-3.0.37-52.23 is installed OR smt-support-3.0.37-52.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND binutils-2.26.1-9.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_103-default-2-2 is installed OR kgraft-patch-SLE12-SP3_Update_28-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND kgraft-patch-4_4_180-94_141-default-9-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information audiofile-0.3.6-11.3 is installed OR libaudiofile1-0.3.6-11.3 is installed OR libaudiofile1-32bit-0.3.6-11.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information mariadb-10.2.21-3.7 is installed OR mariadb-client-10.2.21-3.7 is installed OR mariadb-errormessages-10.2.21-3.7 is installed OR mariadb-tools-10.2.21-3.7 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information kernel-default-4.4.121-92.73 is installed OR kernel-default-base-4.4.121-92.73 is installed OR kernel-default-devel-4.4.121-92.73 is installed OR kernel-default-man-4.4.121-92.73 is installed OR kernel-devel-4.4.121-92.73 is installed OR kernel-macros-4.4.121-92.73 is installed OR kernel-source-4.4.121-92.73 is installed OR kernel-syms-4.4.121-92.73 is installed OR kgraft-patch-4_4_121-92_73-default-1-3.3 is installed OR kgraft-patch-SLE12-SP2_Update_21-1-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libssh2-1-1.4.3-20.14 is installed OR libssh2-1-32bit-1.4.3-20.14 is installed OR libssh2_org-1.4.3-20.14 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.16.0-11.21 is installed
BACK