Oval Definition:	oval:org.opensuse.security:def:57154
Revision Date: 2021-02-10 Version: 1 Title: Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important) Description: This update for the Linux Kernel 4.4.180-94_124 fixes several issues. The following security issues were fixed: - CVE-2020-36158: Fixed a potential remote code execution in the Marvell mwifiex driver (bsc#1180562). - CVE-2020-0465: Fixed multiple missing bounds checks in hid-multitouch.c that could have led to local privilege escalation (bnc#1180030). - CVE-2020-0466: Fixed a use-after-free due to a logic error in do_epoll_ctl and ep_loop_check_proc of eventpoll.c (bnc#1180032. - CVE-2020-29569: Fixed a use after free due to a logic error (bsc#1180008). - CVE-2020-29660: Fixed a locking inconsistency in the tty subsystem that may have allowed a read-after-free attack against TIOCGSID (bsc#1179877). - CVE-2020-29661: Fixed a locking issue in the tty subsystem that allowed a use-after-free attack against TIOCSPGRP (bsc#1179877). Family: unix Class: patch Status: Reference(s): 1014172 1030050 1051791 1054429 1056061 1064569 1064580 1064583 1076958 1083125 1085447 1090368 1090638 1090646 1090869 1094161 1097356 1103098 1115339 1118319 1118320 1124729 1124734 1124799 1124800 1124802 1124803 1124805 1124806 1124824 1124825 1124826 1124827 1125099 1128378 1133191 1136446 1137597 1138954 1144327 1144379 1150584 1152711 1153471 1155789 1155952 1157860 1173580 1179877 1180008 1180030 1180032 1180562 787520 991464 CVE-2012-4512 CVE-2012-4513 CVE-2012-4515 CVE-2015-1782 CVE-2016-0787 CVE-2016-6489 CVE-2016-9042 CVE-2017-12132 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081 CVE-2017-13087 CVE-2017-13088 CVE-2017-13166 CVE-2017-15107 CVE-2017-15670 CVE-2017-15671 CVE-2017-15804 CVE-2017-17833 CVE-2017-17833 CVE-2017-6451 CVE-2017-6458 CVE-2017-6460 CVE-2017-6462 CVE-2017-6463 CVE-2017-6464 CVE-2017-6967 CVE-2018-1087 CVE-2018-11236 CVE-2018-5391 CVE-2018-5848 CVE-2018-8781 CVE-2018-8897 CVE-2018-9568 CVE-2019-11477 CVE-2019-11478 CVE-2019-11487 CVE-2019-3846 CVE-2019-6974 CVE-2019-7221 CVE-2019-7572 CVE-2019-7573 CVE-2019-7574 CVE-2019-7575 CVE-2019-7576 CVE-2019-7577 CVE-2019-7578 CVE-2019-7635 CVE-2019-7636 CVE-2019-7637 CVE-2019-7638 CVE-2019-9213 CVE-2020-0465 CVE-2020-0466 CVE-2020-29569 CVE-2020-29660 CVE-2020-29661 CVE-2020-36158 CVE-2020-4044 SUSE-SU-2017:1048-1 SUSE-SU-2017:1481-1 SUSE-SU-2017:2745-1 SUSE-SU-2018:1511-1 SUSE-SU-2018:1534-1 SUSE-SU-2018:2185-1 SUSE-SU-2018:2779-1 SUSE-SU-2019:0899-1 SUSE-SU-2019:1721-1 SUSE-SU-2020:1943-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND argyllcms-1.9.2-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information gnome-shell-3.26.2+20180130.0d9c74212-lp151.7.3 is installed OR gnome-shell-browser-plugin-3.26.2+20180130.0d9c74212-lp151.7.3 is installed OR gnome-shell-calendar-3.26.2+20180130.0d9c74212-lp151.7.3 is installed OR gnome-shell-devel-3.26.2+20180130.0d9c74212-lp151.7.3 is installed OR gnome-shell-lang-3.26.2+20180130.0d9c74212-lp151.7.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information kdelibs4-4.3.5-0.12 is installed OR kdelibs4-core-4.3.5-0.12 is installed OR libkde4-4.3.5-0.12 is installed OR libkde4-32bit-4.3.5-0.12 is installed OR libkdecore4-4.3.5-0.12 is installed OR libkdecore4-32bit-4.3.5-0.12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information SDL-1.2.15-15.11 is installed OR libSDL-1_2-0-1.2.15-15.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information ntp-4.2.8p10-60 is installed OR ntp-doc-4.2.8p10-60 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information glibc-2.19-40.16 is installed OR glibc-32bit-2.19-40.16 is installed OR glibc-devel-2.19-40.16 is installed OR glibc-devel-32bit-2.19-40.16 is installed OR glibc-html-2.19-40.16 is installed OR glibc-i18ndata-2.19-40.16 is installed OR glibc-info-2.19-40.16 is installed OR glibc-locale-2.19-40.16 is installed OR glibc-locale-32bit-2.19-40.16 is installed OR glibc-profile-2.19-40.16 is installed OR glibc-profile-32bit-2.19-40.16 is installed OR nscd-2.19-40.16 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libssh2-1-1.4.3-19 is installed OR libssh2-1-32bit-1.4.3-19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information MozillaFirefox-52.8.0esr-109.31 is installed OR MozillaFirefox-devel-52.8.0esr-109.31 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.30-38.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_35-default-10-2 is installed OR kgraft-patch-SLE12-SP2_Update_12-10-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information avahi-0.6.32-30 is installed OR avahi-lang-0.6.32-30 is installed OR avahi-utils-0.6.32-30 is installed OR libavahi-client3-0.6.32-30 is installed OR libavahi-client3-32bit-0.6.32-30 is installed OR libavahi-common3-0.6.32-30 is installed OR libavahi-common3-32bit-0.6.32-30 is installed OR libavahi-core7-0.6.32-30 is installed OR libdns_sd-0.6.32-30 is installed OR libdns_sd-32bit-0.6.32-30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND squid-3.5.21-26.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND kgraft-patch-4_4_180-94_124-default-6-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information dovecot22-2.2.31-19.11 is installed OR dovecot22-backend-mysql-2.2.31-19.11 is installed OR dovecot22-backend-pgsql-2.2.31-19.11 is installed OR dovecot22-backend-sqlite-2.2.31-19.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND xrdp-0.9.0~git.1456906198.f422461-21.9 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information openslp-2.0.0-18.15 is installed OR openslp-32bit-2.0.0-18.15 is installed OR openslp-server-2.0.0-18.15 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libmysqlclient18-10.0.40.4-29.41 is installed OR mariadb-10.0.40.4-29.41 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed
BACK