Oval Definition:	oval:org.opensuse.security:def:57145
Revision Date: 2021-02-10 Version: 1 Title: Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important) Description: This update for the Linux Kernel 4.4.180-94_135 fixes several issues. The following security issues were fixed: - CVE-2020-36158: Fixed a potential remote code execution in the Marvell mwifiex driver (bsc#1180562). - CVE-2020-0465: Fixed multiple missing bounds checks in hid-multitouch.c that could have led to local privilege escalation (bnc#1180030). - CVE-2020-0466: Fixed a use-after-free due to a logic error in do_epoll_ctl and ep_loop_check_proc of eventpoll.c (bnc#1180032. - CVE-2020-29569: Fixed a use after free due to a logic error (bsc#1180008). - CVE-2020-29660: Fixed a locking inconsistency in the tty subsystem that may have allowed a read-after-free attack against TIOCGSID (bsc#1179877). - CVE-2020-29661: Fixed a locking issue in the tty subsystem that allowed a use-after-free attack against TIOCSPGRP (bsc#1179877). Family: unix Class: patch Status: Reference(s): 1013721 1013732 1013877 1015173 1015565 1024051 1026652 1037824 1049485 1049491 1056993 1057342 1069708 1071471 1076957 1083125 1090338 1090368 1090646 1090869 1096740 1099658 1106284 1110785 1110949 1113769 1120843 1120885 1128503 1130267 1131543 1131565 1132374 1132472 1133375 1134537 1134596 1134848 1135281 1135603 1136424 1136446 1136586 1136935 1137586 1172405 1179877 1180008 1180030 1180032 1180562 691365 779320 791928 801246 811979 813121 818628 819347 822210 827811 828235 828637 830268 834594 839870 934920 CVE-2012-4412 CVE-2013-0242 CVE-2013-1914 CVE-2013-4237 CVE-2013-4332 CVE-2013-4788 CVE-2014-8080 CVE-2014-8090 CVE-2015-3238 CVE-2016-10708 CVE-2016-7837 CVE-2016-9800 CVE-2016-9801 CVE-2016-9804 CVE-2016-9918 CVE-2017-1000198 CVE-2017-1000199 CVE-2017-1000250 CVE-2017-15868 CVE-2017-16939 CVE-2017-5838 CVE-2017-6362 CVE-2018-1087 CVE-2018-12181 CVE-2018-17456 CVE-2018-17972 CVE-2018-3665 CVE-2018-7191 CVE-2018-8781 CVE-2018-8897 CVE-2019-0160 CVE-2019-11190 CVE-2019-11477 CVE-2019-11478 CVE-2019-11479 CVE-2019-11815 CVE-2019-11833 CVE-2019-11884 CVE-2019-12382 CVE-2019-3846 CVE-2019-5489 CVE-2019-9928 CVE-2020-0465 CVE-2020-0466 CVE-2020-29569 CVE-2020-29660 CVE-2020-29661 CVE-2020-36158 CVE-2020-8022 SUSE-SU-2017:0967-1 SUSE-SU-2017:1398-1 SUSE-SU-2017:2601-1 SUSE-SU-2018:0135-1 SUSE-SU-2018:0270-1 SUSE-SU-2018:1523-1 SUSE-SU-2018:2093-1 SUSE-SU-2018:2530-1 SUSE-SU-2018:4088-1 SUSE-SU-2019:0510-1 SUSE-SU-2019:0766-1 SUSE-SU-2019:1508-1 SUSE-SU-2019:1534-1 SUSE-SU-2020:1791-1 SUSE-SU-2021:0408-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information NetworkManager-1.10.6-lp150.3 is installed OR NetworkManager-lang-1.10.6-lp150.3 is installed OR libnm-glib-vpn1-1.10.6-lp150.3 is installed OR libnm-glib4-1.10.6-lp150.3 is installed OR libnm-util2-1.10.6-lp150.3 is installed OR libnm0-1.10.6-lp150.3 is installed OR typelib-1_0-NM-1_0-1.10.6-lp150.3 is installed OR typelib-1_0-NMClient-1_0-1.10.6-lp150.3 is installed OR typelib-1_0-NetworkManager-1_0-1.10.6-lp150.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information exim-4.88-lp151.4.3 is installed OR eximon-4.88-lp151.4.3 is installed OR eximstats-html-4.88-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information glibc-2.11.3-17.45.49 is installed OR glibc-32bit-2.11.3-17.45.49 is installed OR glibc-devel-2.11.3-17.45.49 is installed OR glibc-devel-32bit-2.11.3-17.45.49 is installed OR glibc-i18ndata-2.11.3-17.45.49 is installed OR glibc-locale-2.11.3-17.45.49 is installed OR glibc-locale-32bit-2.11.3-17.45.49 is installed OR nscd-2.11.3-17.45.49 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information ovmf-2017+git1510945757.b2662641d5-3.13 is installed OR qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-3.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information gstreamer-1.2.4-2.3 is installed OR gstreamer-lang-1.2.4-2.3 is installed OR gstreamer-utils-1.2.4-2.3 is installed OR libgstreamer-1_0-0-1.2.4-2.3 is installed OR libgstreamer-1_0-0-32bit-1.2.4-2.3 is installed OR typelib-1_0-Gst-1_0-1.2.4-2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_85-default-5-2 is installed OR kgraft-patch-3_12_74-60_64_85-xen-5-2 is installed OR kgraft-patch-SLE12-SP1_Update_26-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libruby2_1-2_1-2.1.2-12 is installed OR ruby2.1-2.1.2-12 is installed OR ruby2.1-stdlib-2.1.2-12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information git-2.12.3-27.17 is installed OR git-core-2.12.3-27.17 is installed OR git-doc-2.12.3-27.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-devel-52.9.0esr-109.38 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_120-92_70-default-3-2 is installed OR kgraft-patch-SLE12-SP2_Update_20-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache2-mod_apparmor-2.8.2-49 is installed OR apparmor-docs-2.8.2-49 is installed OR apparmor-parser-2.8.2-49 is installed OR apparmor-profiles-2.8.2-49 is installed OR apparmor-utils-2.8.2-49 is installed OR libapparmor1-2.8.2-49 is installed OR libapparmor1-32bit-2.8.2-49 is installed OR pam_apparmor-2.8.2-49 is installed OR pam_apparmor-32bit-2.8.2-49 is installed OR perl-apparmor-2.8.2-49 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.1-2.50 is installed OR libwebkit2gtk-4_0-37-2.28.1-2.50 is installed OR libwebkit2gtk3-lang-2.28.1-2.50 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.1-2.50 is installed OR typelib-1_0-WebKit2-4_0-2.28.1-2.50 is installed OR webkit2gtk-4_0-injected-bundles-2.28.1-2.50 is installed OR webkit2gtk3-2.28.1-2.50 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND kgraft-patch-4_4_180-94_135-default-3-2.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND libcares2-1.9.1-9.4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND dnsmasq-2.78-18.6 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information openssh-7.2p2-74.25 is installed OR openssh-askpass-gnome-7.2p2-74.25 is installed OR openssh-fips-7.2p2-74.25 is installed OR openssh-helpers-7.2p2-74.25 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information gvim-7.4.326-17.6 is installed OR vim-7.4.326-17.6 is installed OR vim-data-7.4.326-17.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND couchdb-1.7.2-3.3 is installed
BACK