OVAL Reference oval:org.opensuse.security:def:57152

Oval Definition:

oval:org.opensuse.security:def:57152

Revision Date:	2021-02-10	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)
Description:	This update for the Linux Kernel 4.4.180-94_127 fixes several issues. The following security issues were fixed: - CVE-2020-36158: Fixed a potential remote code execution in the Marvell mwifiex driver (bsc#1180562). - CVE-2020-0465: Fixed multiple missing bounds checks in hid-multitouch.c that could have led to local privilege escalation (bnc#1180030). - CVE-2020-0466: Fixed a use-after-free due to a logic error in do_epoll_ctl and ep_loop_check_proc of eventpoll.c (bnc#1180032. - CVE-2020-29569: Fixed a use after free due to a logic error (bsc#1180008). - CVE-2020-29660: Fixed a locking inconsistency in the tty subsystem that may have allowed a read-after-free attack against TIOCGSID (bsc#1179877). - CVE-2020-29661: Fixed a locking issue in the tty subsystem that allowed a use-after-free attack against TIOCSPGRP (bsc#1179877).
Family:	unix	Class:	patch
Status:		Reference(s):	1015332 1026236 1027519 1027712 1032309 1039063 1039064 1039066 1039069 1039661 1047536 1069468 1069708 1071471 1083125 1085447 1090338 1090368 1090646 1090869 1091236 1096740 1104668 1118319 1118320 1119161 1120067 1123157 1126140 1126141 1126192 1126195 1126196 1126197 1126198 1126201 1126325 1127400 1127620 1128471 1128472 1128474 1128476 1128480 1128481 1128490 1128492 1128493 1129623 1132728 1132729 1132732 1132734 1134718 1167231 1173576 1173613 1179877 1180008 1180030 1180032 1180562 794958 796306 814241 879138 981114 CVE-2012-5656 CVE-2012-6076 CVE-2016-1839 CVE-2016-6153 CVE-2016-9586 CVE-2017-13166 CVE-2017-15868 CVE-2017-16939 CVE-2017-7407 CVE-2017-9047 CVE-2017-9048 CVE-2017-9049 CVE-2017-9050 CVE-2018-1087 CVE-2018-12539 CVE-2018-1517 CVE-2018-1656 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-3665 CVE-2018-8781 CVE-2018-8897 CVE-2018-9568 CVE-2019-10245 CVE-2019-10245 CVE-2019-2602 CVE-2019-2602 CVE-2019-2684 CVE-2019-2684 CVE-2019-2697 CVE-2019-2697 CVE-2019-2698 CVE-2019-2698 CVE-2019-3855 CVE-2019-3856 CVE-2019-3857 CVE-2019-3858 CVE-2019-3859 CVE-2019-3860 CVE-2019-3861 CVE-2019-3862 CVE-2019-3863 CVE-2019-6778 CVE-2019-9824 CVE-2020-0465 CVE-2020-0466 CVE-2020-12402 CVE-2020-12415 CVE-2020-12416 CVE-2020-12417 CVE-2020-12418 CVE-2020-12419 CVE-2020-12420 CVE-2020-12421 CVE-2020-12422 CVE-2020-12423 CVE-2020-12424 CVE-2020-12425 CVE-2020-12426 CVE-2020-29569 CVE-2020-29660 CVE-2020-29661 CVE-2020-36158 SUSE-SU-2017:1042-1 SUSE-SU-2017:1454-1 SUSE-SU-2017:2744-1 SUSE-SU-2018:0275-1 SUSE-SU-2018:1505-1 SUSE-SU-2018:1545-1 SUSE-SU-2018:2100-1 SUSE-SU-2018:2649-1 SUSE-SU-2019:0655-1 SUSE-SU-2019:0891-1 SUSE-SU-2019:1644-1 SUSE-SU-2020:1899-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information apache2-mod_php7-7.2.5-lp150.1 is installed OR php7-7.2.5-lp150.1 is installed OR php7-ctype-7.2.5-lp150.1 is installed OR php7-dom-7.2.5-lp150.1 is installed OR php7-iconv-7.2.5-lp150.1 is installed OR php7-json-7.2.5-lp150.1 is installed OR php7-mysql-7.2.5-lp150.1 is installed OR php7-pdo-7.2.5-lp150.1 is installed OR php7-pgsql-7.2.5-lp150.1 is installed OR php7-sqlite-7.2.5-lp150.1 is installed OR php7-tokenizer-7.2.5-lp150.1 is installed OR php7-xmlreader-7.2.5-lp150.1 is installed OR php7-xmlwriter-7.2.5-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information kernel-debug-4.12.14-lp151.28.7 is installed OR kernel-debug-base-4.12.14-lp151.28.7 is installed OR kernel-debug-devel-4.12.14-lp151.28.7 is installed OR kernel-default-4.12.14-lp151.28.7 is installed OR kernel-default-base-4.12.14-lp151.28.7 is installed OR kernel-default-devel-4.12.14-lp151.28.7 is installed OR kernel-devel-4.12.14-lp151.28.7 is installed OR kernel-docs-4.12.14-lp151.28.7 is installed OR kernel-docs-html-4.12.14-lp151.28.7 is installed OR kernel-kvmsmall-4.12.14-lp151.28.7 is installed OR kernel-kvmsmall-base-4.12.14-lp151.28.7 is installed OR kernel-kvmsmall-devel-4.12.14-lp151.28.7 is installed OR kernel-macros-4.12.14-lp151.28.7 is installed OR kernel-obs-build-4.12.14-lp151.28.7 is installed OR kernel-obs-qa-4.12.14-lp151.28.7 is installed OR kernel-source-4.12.14-lp151.28.7 is installed OR kernel-source-vanilla-4.12.14-lp151.28.7 is installed OR kernel-syms-4.12.14-lp151.28.7 is installed OR kernel-vanilla-4.12.14-lp151.28.7 is installed OR kernel-vanilla-base-4.12.14-lp151.28.7 is installed OR kernel-vanilla-devel-4.12.14-lp151.28.7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information inkscape-0.46-62.38 is installed OR inkscape-extensions-dia-0.46-62.38 is installed OR inkscape-extensions-extra-0.46-62.38 is installed OR inkscape-extensions-fig-0.46-62.38 is installed OR inkscape-extensions-gimp-0.46-62.38 is installed OR inkscape-lang-0.46-62.38 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information xen-4.11.1_04-2.6 is installed OR xen-libs-4.11.1_04-2.6 is installed OR xen-libs-32bit-4.11.1_04-2.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information curl-7.37.0-36 is installed OR libcurl4-7.37.0-36 is installed OR libcurl4-32bit-7.37.0-36 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_51-default-10-2 is installed OR kgraft-patch-3_12_74-60_64_51-xen-10-2 is installed OR kgraft-patch-SLE12-SP1_Update_18-10-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libsqlite3-0-3.8.10.2-3 is installed OR libsqlite3-0-32bit-3.8.10.2-3 is installed OR sqlite3-3.8.10.2-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information xen-4.7.5_02-43.30 is installed OR xen-doc-html-4.7.5_02-43.30 is installed OR xen-libs-4.7.5_02-43.30 is installed OR xen-libs-32bit-4.7.5_02-43.30 is installed OR xen-tools-4.7.5_02-43.30 is installed OR xen-tools-domU-4.7.5_02-43.30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libvirt-2.0.0-27.45 is installed OR libvirt-client-2.0.0-27.45 is installed OR libvirt-daemon-2.0.0-27.45 is installed OR libvirt-daemon-config-network-2.0.0-27.45 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.45 is installed OR libvirt-daemon-driver-interface-2.0.0-27.45 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.45 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.45 is installed OR libvirt-daemon-driver-network-2.0.0-27.45 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.45 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.45 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.45 is installed OR libvirt-daemon-driver-secret-2.0.0-27.45 is installed OR libvirt-daemon-driver-storage-2.0.0-27.45 is installed OR libvirt-daemon-hooks-2.0.0-27.45 is installed OR libvirt-daemon-lxc-2.0.0-27.45 is installed OR libvirt-daemon-qemu-2.0.0-27.45 is installed OR libvirt-daemon-xen-2.0.0-27.45 is installed OR libvirt-doc-2.0.0-27.45 is installed OR libvirt-lock-sanlock-2.0.0-27.45 is installed OR libvirt-nss-2.0.0-27.45 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_29-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_10-11-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND autofs-5.0.9-27 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information ghostscript-9.52-23.34 is installed OR ghostscript-x11-9.52-23.34 is installed OR libspectre-0.2.7-12.10 is installed OR libspectre1-0.2.7-12.10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND kgraft-patch-4_4_180-94_127-default-6-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libspice-client-glib-2_0-8-0.33-3.6 is installed OR libspice-client-glib-helper-0.33-3.6 is installed OR libspice-client-gtk-3_0-5-0.33-3.6 is installed OR libspice-controller0-0.33-3.6 is installed OR spice-gtk-0.33-3.6 is installed OR typelib-1_0-SpiceClientGlib-2_0-0.33-3.6 is installed OR typelib-1_0-SpiceClientGtk-3_0-0.33-3.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information glib2-2.48.2-12.15 is installed OR glib2-lang-2.48.2-12.15 is installed OR glib2-tools-2.48.2-12.15 is installed OR libgio-2_0-0-2.48.2-12.15 is installed OR libgio-2_0-0-32bit-2.48.2-12.15 is installed OR libglib-2_0-0-2.48.2-12.15 is installed OR libglib-2_0-0-32bit-2.48.2-12.15 is installed OR libgmodule-2_0-0-2.48.2-12.15 is installed OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed OR libgobject-2_0-0-2.48.2-12.15 is installed OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed OR libgthread-2_0-0-2.48.2-12.15 is installed OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.30-38.26 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libvirglrenderer0-0.5.0-12.3 is installed OR virglrenderer-0.5.0-12.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-rack-1.6.11-3.3 is installed OR rubygem-rack-1.6.11-3.3 is installed

BACK