Oval Definition:oval:org.opensuse.security:def:57109
Revision Date:2021-10-18Version:1
Title:Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP3) (Important)
Description:

This update for the Linux Kernel 4.4.180-94_144 fixes several issues.

The following security issues were fixed:

- CVE-2021-3715: Fixed a user-after-free in the Linux kernel's Traffic Control networking subsystem which could lead to local privilege escalation. (bsc#1190350). - CVE-2021-38160: Fixed a bug that could lead to a data corruption or loss. This can be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size in drivers/char/virtio_console.c (bsc#1190118) - CVE-2021-3640: Fixed a user-after-free bug in the function sco_sock_sendmsg which could lead to local privilege escalation. (bsc#1188613) - CVE-2021-3573: Fixed a user-after-free bug in the function hci_sock_bound_ioctl which could lead to local privilege escalation. (bsc#1187054).
Family:unixClass:patch
Status:Reference(s):1000677
1001912
1004499
1005591
1005878
1009254
1010845
1019021
1019334
1021641
1022085
1022271
1024076
1024079
1035371
1035905
1038078
1038785
1039348
1042292
1043652
1048914
1050241
1052311
1052365
1056094
1071853
1088268
1090036
1090338
1093536
1094462
1096740
1106989
1106996
1107609
1107832
1107874
1108963
1109845
1110233
1120381
1122033
1124365
1124366
1124368
1128649
1130330
1131317
1132053
1132054
1132060
1139073
1140120
1141035
1154043
1155988
1165471
1168422
1187054
1188613
1190118
1190350
934119
952474
CVE-2015-7995
CVE-2015-9019
CVE-2016-1856
CVE-2016-1857
CVE-2016-2108
CVE-2016-4590
CVE-2016-4591
CVE-2016-4622
CVE-2016-4624
CVE-2016-4738
CVE-2016-7056
CVE-2016-8610
CVE-2016-9401
CVE-2016-9587
CVE-2017-0861
CVE-2017-1000111
CVE-2017-1000112
CVE-2017-1000364
CVE-2017-3731
CVE-2017-5029
CVE-2017-5837
CVE-2017-5844
CVE-2017-7466
CVE-2017-7481
CVE-2017-7890
CVE-2018-1000199
CVE-2018-10811
CVE-2018-14553
CVE-2018-14633
CVE-2018-14634
CVE-2018-16151
CVE-2018-16152
CVE-2018-16412
CVE-2018-16413
CVE-2018-16644
CVE-2018-17182
CVE-2018-17540
CVE-2018-20467
CVE-2018-3665
CVE-2018-5388
CVE-2019-10650
CVE-2019-11007
CVE-2019-11008
CVE-2019-11009
CVE-2019-11038
CVE-2019-11135
CVE-2019-11139
CVE-2019-7175
CVE-2019-7395
CVE-2019-7397
CVE-2019-7398
CVE-2019-9956
CVE-2020-3898
CVE-2021-3573
CVE-2021-3640
CVE-2021-3715
CVE-2021-38160
SUSE-SU-2017:0461-1
SUSE-SU-2017:1003-1
SUSE-SU-2017:1313-1
SUSE-SU-2017:1317-1
SUSE-SU-2017:1615-1
SUSE-SU-2017:2131-1
SUSE-SU-2017:3029-1
SUSE-SU-2018:1259-1
SUSE-SU-2018:2097-1
SUSE-SU-2019:1033-1
SUSE-SU-2019:2959-1
SUSE-SU-2019:3266-1
SUSE-SU-2020:0623-1
SUSE-SU-2020:1045-1
SUSE-SU-2021:3459-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • PackageKit-1.1.10-lp150.2 is installed
  • OR PackageKit-backend-zypp-1.1.10-lp150.2 is installed
  • OR PackageKit-gstreamer-plugin-1.1.10-lp150.2 is installed
  • OR PackageKit-gtk3-module-1.1.10-lp150.2 is installed
  • OR PackageKit-lang-1.1.10-lp150.2 is installed
  • OR libpackagekit-glib2-18-1.1.10-lp150.2 is installed
  • OR typelib-1_0-PackageKitGlib-1_0-1.1.10-lp150.2 is installed
  • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • gnome-shell-3.26.2+20180130.0d9c74212-lp151.7.3 is installed
  • OR gnome-shell-browser-plugin-3.26.2+20180130.0d9c74212-lp151.7.3 is installed
  • OR gnome-shell-calendar-3.26.2+20180130.0d9c74212-lp151.7.3 is installed
  • OR gnome-shell-devel-3.26.2+20180130.0d9c74212-lp151.7.3 is installed
  • OR gnome-shell-lang-3.26.2+20180130.0d9c74212-lp151.7.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • strongswan-5.1.3-26.13 is installed
  • OR strongswan-doc-5.1.3-26.13 is installed
  • OR strongswan-ipsec-5.1.3-26.13 is installed
  • OR strongswan-libs0-5.1.3-26.13 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libopenssl1_0_0-1.0.1i-54.5 is installed
  • OR libopenssl1_0_0-32bit-1.0.1i-54.5 is installed
  • OR libopenssl1_0_0-hmac-1.0.1i-54.5 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.1i-54.5 is installed
  • OR openssl-1.0.1i-54.5 is installed
  • OR openssl-doc-1.0.1i-54.5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kernel-default-3.12.74-60.64.45 is installed
  • OR kernel-default-base-3.12.74-60.64.45 is installed
  • OR kernel-default-devel-3.12.74-60.64.45 is installed
  • OR kernel-default-man-3.12.74-60.64.45 is installed
  • OR kernel-devel-3.12.74-60.64.45 is installed
  • OR kernel-macros-3.12.74-60.64.45 is installed
  • OR kernel-source-3.12.74-60.64.45 is installed
  • OR kernel-syms-3.12.74-60.64.45 is installed
  • OR kernel-xen-3.12.74-60.64.45 is installed
  • OR kernel-xen-base-3.12.74-60.64.45 is installed
  • OR kernel-xen-devel-3.12.74-60.64.45 is installed
  • OR kgraft-patch-3_12_74-60_64_45-default-1-4 is installed
  • OR kgraft-patch-3_12_74-60_64_45-xen-1-4 is installed
  • OR kgraft-patch-SLE12-SP1_Update_16-1-4 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.12.5-1 is installed
  • OR libwebkit2gtk-4_0-37-2.12.5-1 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.12.5-1 is installed
  • OR typelib-1_0-WebKit2-4_0-2.12.5-1 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.12.5-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libvirt-2.0.0-27.45 is installed
  • OR libvirt-client-2.0.0-27.45 is installed
  • OR libvirt-daemon-2.0.0-27.45 is installed
  • OR libvirt-daemon-config-network-2.0.0-27.45 is installed
  • OR libvirt-daemon-config-nwfilter-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-interface-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-libxl-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-lxc-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-network-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-nodedev-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-nwfilter-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-qemu-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-secret-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-storage-2.0.0-27.45 is installed
  • OR libvirt-daemon-hooks-2.0.0-27.45 is installed
  • OR libvirt-daemon-lxc-2.0.0-27.45 is installed
  • OR libvirt-daemon-qemu-2.0.0-27.45 is installed
  • OR libvirt-daemon-xen-2.0.0-27.45 is installed
  • OR libvirt-doc-2.0.0-27.45 is installed
  • OR libvirt-lock-sanlock-2.0.0-27.45 is installed
  • OR libvirt-nss-2.0.0-27.45 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • perl-5.18.2-12.14 is installed
  • OR perl-32bit-5.18.2-12.14 is installed
  • OR perl-base-5.18.2-12.14 is installed
  • OR perl-doc-5.18.2-12.14 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_120-92_70-default-9-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_20-9-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • crash-7.1.8-3 is installed
  • OR crash-kmp-default-7.1.8_k4.4.73_5-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_162-94_72-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_22-7-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND kgraft-patch-4_4_180-94_144-default-7-2.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • python3-rpm-4.11.2-16.21 is installed
  • OR rpm-4.11.2-16.21 is installed
  • OR rpm-32bit-4.11.2-16.21 is installed
  • OR rpm-build-4.11.2-16.21 is installed
  • OR rpm-python-4.11.2-16.21 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND nmap-6.46-3.3 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • ansible-2.2.3.0-5 is installed
  • OR monasca-installer-20170912_10.45-5 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.241-43.30 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.241-43.30 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.241-43.30 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.241-43.30 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • LibVNCServer-0.9.9-17.19 is installed
  • OR libvncclient0-0.9.9-17.19 is installed
  • OR libvncserver0-0.9.9-17.19 is installed
  • BACK