Oval Definition:	oval:org.opensuse.security:def:57098
Revision Date: 2021-09-23 Version: 1 Title: Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important) Description: This update for the Linux Kernel 4.4.180-94_138 fixes several issues. The following security issues were fixed: - CVE-2021-3653: Fixed missing validation of the KVM `int_ctl` VMCB field that would have allowed a malicious L1 guest to enable AVIC support for the L2 guest (bsc#1189420). - CVE-2021-38198: Fixed KVM MMU to use the correct inherited permissions to get shadow page (bsc#1189278). Family: unix Class: patch Status: Reference(s): 1002626 1008846 1010457 1012546 1015964 1017646 1018128 1030263 1032114 1032120 1036453 1038505 1044995 1053153 1069708 1087082 1087083 1088268 1090036 1096141 1100147 1108399 1108606 1121626 1125113 1130324 1146608 1153332 1160903 1160904 1160905 1160906 1189278 1189420 958791 973786 983268 986631 986639 CVE-2011-2483 CVE-2011-2709 CVE-2011-3177 CVE-2015-8540 CVE-2016-10087 CVE-2016-10220 CVE-2016-1246 CVE-2016-1249 CVE-2016-1251 CVE-2016-3076 CVE-2016-5102 CVE-2016-5824 CVE-2016-5827 CVE-2016-9190 CVE-2016-9584 CVE-2016-9601 CVE-2016-9840 CVE-2016-9841 CVE-2016-9842 CVE-2016-9843 CVE-2017-0861 CVE-2017-10661 CVE-2017-1289 CVE-2017-16939 CVE-2017-3509 CVE-2017-3511 CVE-2017-3533 CVE-2017-3539 CVE-2017-3544 CVE-2017-5951 CVE-2017-7207 CVE-2017-8291 CVE-2018-1000199 CVE-2018-16301 CVE-2018-17000 CVE-2018-17182 CVE-2018-3639 CVE-2018-3640 CVE-2019-14973 CVE-2019-15165 CVE-2019-18902 CVE-2019-18903 CVE-2019-6128 CVE-2019-7663 CVE-2019-9924 CVE-2020-7216 CVE-2020-7217 CVE-2021-3653 CVE-2021-38198 SUSE-SU-2017:0123-1 SUSE-SU-2017:0860-1 SUSE-SU-2017:1138-1 SUSE-SU-2017:1385-1 SUSE-SU-2017:1989-1 SUSE-SU-2017:3332-1 SUSE-SU-2018:1174-1 SUSE-SU-2018:1255-1 SUSE-SU-2018:1935-1 SUSE-SU-2018:3032-1 SUSE-SU-2019:0838-2 SUSE-SU-2019:2669-1 SUSE-SU-2019:3058-1 SUSE-SU-2020:0369-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND rxvt-unicode-9.22-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information curl-7.60.0-lp151.5.3 is installed OR curl-mini-7.60.0-lp151.5.3 is installed OR libcurl-devel-7.60.0-lp151.5.3 is installed OR libcurl-devel-32bit-7.60.0-lp151.5.3 is installed OR libcurl-mini-devel-7.60.0-lp151.5.3 is installed OR libcurl4-7.60.0-lp151.5.3 is installed OR libcurl4-32bit-7.60.0-lp151.5.3 is installed OR libcurl4-mini-7.60.0-lp151.5.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libtiff5-4.0.9-44.42 is installed OR libtiff5-32bit-4.0.9-44.42 is installed OR tiff-4.0.9-44.42 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.5-37 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.5-37 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.5-37 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.5-37 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_35-default-8-2 is installed OR kgraft-patch-3_12_69-60_64_35-xen-8-2 is installed OR kgraft-patch-SLE12-SP1_Update_14-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libgssglue1-0.4-3 is installed OR libgssglue1-32bit-0.4-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information perl-5.18.2-12.14 is installed OR perl-32bit-5.18.2-12.14 is installed OR perl-base-5.18.2-12.14 is installed OR perl-doc-5.18.2-12.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_7_0-openjdk-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND yast2-smt-3.0.14-17.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND busybox-1.21.1-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_100-default-2-2 is installed OR kgraft-patch-SLE12-SP3_Update_27-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND kgraft-patch-4_4_180-94_138-default-10-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libwireshark9-2.4.10-48.32 is installed OR libwiretap7-2.4.10-48.32 is installed OR libwscodecs1-2.4.10-48.32 is installed OR libwsutil8-2.4.10-48.32 is installed OR wireshark-2.4.10-48.32 is installed OR wireshark-gtk-2.4.10-48.32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libsqlite3-0-3.8.10.2-9.6 is installed OR libsqlite3-0-32bit-3.8.10.2-9.6 is installed OR sqlite3-3.8.10.2-9.6 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND python-Pillow-2.8.1-4.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libseccomp-2.4.1-11.3 is installed OR libseccomp2-2.4.1-11.3 is installed OR libseccomp2-32bit-2.4.1-11.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND python-paramiko-2.2.4-4.3 is installed
BACK