Oval Definition:	oval:org.opensuse.security:def:57110
Revision Date: 2021-10-18 Version: 1 Title: Security update for the Linux Kernel (Live Patch 40 for SLE 12 SP3) (Important) Description: This update for the Linux Kernel 4.4.180-94_147 fixes several issues. The following security issues were fixed: - CVE-2021-3715: Fixed a user-after-free in the Linux kernel's Traffic Control networking subsystem which could lead to local privilege escalation. (bsc#1190350). - CVE-2021-38160: Fixed a bug that could lead to a data corruption or loss. This can be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size in drivers/char/virtio_console.c (bsc#1190118) - CVE-2021-3640: Fixed a user-after-free bug in the function sco_sock_sendmsg which could lead to local privilege escalation. (bsc#1188613) - CVE-2021-3573: Fixed a user-after-free bug in the function hci_sock_bound_ioctl which could lead to local privilege escalation. (bsc#1187054). Family: unix Class: patch Status: Reference(s): 1010845 1020868 1020890 1020976 1022428 1024014 1024017 1024030 1024034 1024062 1024218 1034911 1035371 1048688 1051222 1059463 1083125 1086825 1090338 1090368 1090646 1092098 1096740 1107832 1108963 1110233 1132549 1132664 1141670 1156402 1158095 1160968 1163933 1187054 1188613 1190118 1190350 996821 CVE-2013-6369 CVE-2015-9542 CVE-2016-10198 CVE-2016-10199 CVE-2016-2183 CVE-2016-5547 CVE-2016-5548 CVE-2016-5549 CVE-2016-5552 CVE-2016-9401 CVE-2017-11185 CVE-2017-3231 CVE-2017-3241 CVE-2017-3252 CVE-2017-3253 CVE-2017-3259 CVE-2017-3261 CVE-2017-3272 CVE-2017-3289 CVE-2017-3302 CVE-2017-3313 CVE-2017-5840 CVE-2017-5841 CVE-2017-5845 CVE-2017-9799 CVE-2018-1000301 CVE-2018-14633 CVE-2018-14634 CVE-2018-17182 CVE-2018-3665 CVE-2018-8781 CVE-2018-8897 CVE-2019-11234 CVE-2019-11235 CVE-2019-14889 CVE-2019-2201 CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2654 CVE-2020-2659 CVE-2021-3573 CVE-2021-3640 CVE-2021-3715 CVE-2021-38160 SUSE-SU-2017:0460-1 SUSE-SU-2017:1010-1 SUSE-SU-2017:1315-1 SUSE-SU-2017:1317-1 SUSE-SU-2017:2143-1 SUSE-SU-2017:3000-1 SUSE-SU-2018:1327-1 SUSE-SU-2018:1513-1 SUSE-SU-2018:2104-1 SUSE-SU-2019:1039-1 SUSE-SU-2019:2972-1 SUSE-SU-2019:3308-1 SUSE-SU-2020:0628-1 SUSE-SU-2020:1117-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information aaa_base-84.87+git20180409.04c9dae-lp150.1 is installed OR aaa_base-extras-84.87+git20180409.04c9dae-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information MozillaThunderbird-60.7.0-lp151.2.4 is installed OR MozillaThunderbird-buildsymbols-60.7.0-lp151.2.4 is installed OR MozillaThunderbird-translations-common-60.7.0-lp151.2.4 is installed OR MozillaThunderbird-translations-other-60.7.0-lp151.2.4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libssh-0.6.3-12.9 is installed OR libssh4-0.6.3-12.9 is installed OR libssh4-32bit-0.6.3-12.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr4.0-23 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr4.0-23 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr4.0-23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_85-default-4-2 is installed OR kgraft-patch-3_12_74-60_64_85-xen-4-2 is installed OR kgraft-patch-SLE12-SP1_Update_26-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libjbig2-2.0-12 is installed OR libjbig2-32bit-2.0-12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information dovecot22-2.2.31-19.11 is installed OR dovecot22-backend-mysql-2.2.31-19.11 is installed OR dovecot22-backend-pgsql-2.2.31-19.11 is installed OR dovecot22-backend-sqlite-2.2.31-19.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND shadow-4.2.1-27.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_92-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_24-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND kgraft-patch-4_4_180-94_147-default-4-2.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information exiv2-0.23-12.5 is installed OR libexiv2-12-0.23-12.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND ucode-intel-20190514-13.44 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information storm-1.0.5-5 is installed OR storm-nimbus-1.0.5-5 is installed OR storm-supervisor-1.0.5-5 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND clamav-0.100.3-33.29 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information icu-52.1-8.10 is installed OR libicu-doc-52.1-8.10 is installed OR libicu52_1-52.1-8.10 is installed OR libicu52_1-32bit-52.1-8.10 is installed OR libicu52_1-data-52.1-8.10 is installed
BACK