Oval Definition:oval:org.opensuse.security:def:57926
Revision Date:2021-06-04Version:1
Title:Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)
Description:

This update for the Linux Kernel 4.4.180-94_135 fixes several issues.

The following security issues were fixed:

- Fix a kernel warning during sysfs read (bsc#1186235) - CVE-2020-36322: An issue was discovered in the FUSE filesystem implementation in the Linux kernel aka CID-5d069dbe8aaf. fuse_do_getattr() calls make_bad_inode() in inappropriate situations, causing a system crash. NOTE: the original fix for this vulnerability was incomplete, and its incompleteness is tracked as CVE-2021-28950 (bsc#1184952). - CVE-2021-29154: BPF JIT compilers in the Linux kernel have incorrect computation of branch displacements, allowing them to execute arbitrary code within the kernel context. This affects arch/x86/net/bpf_jit_comp.c and arch/x86/net/bpf_jit_comp32.c (bsc#1184710)
Family:unixClass:patch
Status:Reference(s):1001374
1008047
1008050
1013311
1031450
1031451
1049825
1056284
1061599
1068664
1081557
1083304
1083305
1089039
1091764
1097375
1101246
1101470
1104668
1104789
1106197
1107116
1107121
1109893
1110542
1111319
1111331
1112911
1113296
1114674
1116995
1120629
1120630
1120631
1121826
1122292
1122293
1122299
1127155
1128158
1131823
1134226
1135273
1137001
1137977
1140039
1145521
1149496
1159208
1159623
1176496
1176764
1184710
1184952
1186235
911886
935573
951404
997043
CVE-2010-2074
CVE-2012-0876
CVE-2012-4929
CVE-2013-7490
CVE-2015-4680
CVE-2015-5185
CVE-2016-0705
CVE-2016-0718
CVE-2016-4472
CVE-2016-7401
CVE-2016-9013
CVE-2016-9014
CVE-2016-9063
CVE-2017-1000158
CVE-2017-12794
CVE-2017-18190
CVE-2017-3732
CVE-2017-3736
CVE-2017-7233
CVE-2017-7234
CVE-2017-9233
CVE-2018-0737
CVE-2018-11212
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2018-12539
CVE-2018-1517
CVE-2018-16428
CVE-2018-16429
CVE-2018-1656
CVE-2018-18311
CVE-2018-1890
CVE-2018-20532
CVE-2018-20533
CVE-2018-20534
CVE-2018-2940
CVE-2018-2952
CVE-2018-2964
CVE-2018-2973
CVE-2018-7167
CVE-2018-7536
CVE-2018-7537
CVE-2019-11091
CVE-2019-12450
CVE-2019-20919
CVE-2019-2422
CVE-2019-2449
CVE-2019-5482
CVE-2019-6133
CVE-2020-36322
CVE-2021-29154
SUSE-SU-2017:0102-1
SUSE-SU-2018:0604-1
SUSE-SU-2018:0973-1
SUSE-SU-2018:1892-1
SUSE-SU-2018:2839-1
SUSE-SU-2018:2928-1
SUSE-SU-2019:0617-1
SUSE-SU-2019:1452-1
SUSE-SU-2019:1722-1
SUSE-SU-2019:2035-1
SUSE-SU-2019:2264-1
SUSE-SU-2019:2265-1
SUSE-SU-2019:2339-2
SUSE-SU-2020:0497-1
SUSE-SU-2020:2856-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • bluez-5.48-lp150.3 is installed
  • OR libbluetooth3-5.48-lp150.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • proftpd-1.3.5e-lp151.3.3 is installed
  • OR proftpd-devel-1.3.5e-lp151.3.3 is installed
  • OR proftpd-doc-1.3.5e-lp151.3.3 is installed
  • OR proftpd-lang-1.3.5e-lp151.3.3 is installed
  • OR proftpd-ldap-1.3.5e-lp151.3.3 is installed
  • OR proftpd-mysql-1.3.5e-lp151.3.3 is installed
  • OR proftpd-pgsql-1.3.5e-lp151.3.3 is installed
  • OR proftpd-radius-1.3.5e-lp151.3.3 is installed
  • OR proftpd-sqlite-1.3.5e-lp151.3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • libvirt-1.2.18.4-22.10 is installed
  • OR libvirt-client-1.2.18.4-22.10 is installed
  • OR libvirt-daemon-1.2.18.4-22.10 is installed
  • OR libvirt-daemon-config-network-1.2.18.4-22.10 is installed
  • OR libvirt-daemon-config-nwfilter-1.2.18.4-22.10 is installed
  • OR libvirt-daemon-driver-interface-1.2.18.4-22.10 is installed
  • OR libvirt-daemon-driver-libxl-1.2.18.4-22.10 is installed
  • OR libvirt-daemon-driver-lxc-1.2.18.4-22.10 is installed
  • OR libvirt-daemon-driver-network-1.2.18.4-22.10 is installed
  • OR libvirt-daemon-driver-nodedev-1.2.18.4-22.10 is installed
  • OR libvirt-daemon-driver-nwfilter-1.2.18.4-22.10 is installed
  • OR libvirt-daemon-driver-qemu-1.2.18.4-22.10 is installed
  • OR libvirt-daemon-driver-secret-1.2.18.4-22.10 is installed
  • OR libvirt-daemon-driver-storage-1.2.18.4-22.10 is installed
  • OR libvirt-daemon-lxc-1.2.18.4-22.10 is installed
  • OR libvirt-daemon-qemu-1.2.18.4-22.10 is installed
  • OR libvirt-daemon-xen-1.2.18.4-22.10 is installed
  • OR libvirt-doc-1.2.18.4-22.10 is installed
  • OR libvirt-lock-sanlock-1.2.18.4-22.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND sblim-sfcb-1.4.8-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • glib2-2.48.2-12.12 is installed
  • OR glib2-lang-2.48.2-12.12 is installed
  • OR glib2-tools-2.48.2-12.12 is installed
  • OR libgio-2_0-0-2.48.2-12.12 is installed
  • OR libgio-2_0-0-32bit-2.48.2-12.12 is installed
  • OR libglib-2_0-0-2.48.2-12.12 is installed
  • OR libglib-2_0-0-32bit-2.48.2-12.12 is installed
  • OR libgmodule-2_0-0-2.48.2-12.12 is installed
  • OR libgmodule-2_0-0-32bit-2.48.2-12.12 is installed
  • OR libgobject-2_0-0-2.48.2-12.12 is installed
  • OR libgobject-2_0-0-32bit-2.48.2-12.12 is installed
  • OR libgthread-2_0-0-2.48.2-12.12 is installed
  • OR libgthread-2_0-0-32bit-2.48.2-12.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND ucode-intel-20180703-13.25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.20-30.36 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • gdm-3.10.0.1-52 is installed
  • OR gdm-lang-3.10.0.1-52 is installed
  • OR gdmflexiserver-3.10.0.1-52 is installed
  • OR libgdm1-3.10.0.1-52 is installed
  • OR typelib-1_0-Gdm-1_0-3.10.0.1-52 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • postgresql96-9.6.15-3.29 is installed
  • OR postgresql96-contrib-9.6.15-3.29 is installed
  • OR postgresql96-docs-9.6.15-3.29 is installed
  • OR postgresql96-libs-9.6.15-3.29 is installed
  • OR postgresql96-plperl-9.6.15-3.29 is installed
  • OR postgresql96-plpython-9.6.15-3.29 is installed
  • OR postgresql96-pltcl-9.6.15-3.29 is installed
  • OR postgresql96-server-9.6.15-3.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND kgraft-patch-4_4_180-94_135-default-7-2.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • xen-4.9.4_06-3.59 is installed
  • OR xen-doc-html-4.9.4_06-3.59 is installed
  • OR xen-libs-4.9.4_06-3.59 is installed
  • OR xen-libs-32bit-4.9.4_06-3.59 is installed
  • OR xen-tools-4.9.4_06-3.59 is installed
  • OR xen-tools-domU-4.9.4_06-3.59 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND mutt-1.10.1-55.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND libimobiledevice6-1.2.0-7 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND nodejs6-6.14.3-11.15 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • mariadb-10.2.22-4.11 is installed
  • OR mariadb-client-10.2.22-4.11 is installed
  • OR mariadb-errormessages-10.2.22-4.11 is installed
  • OR mariadb-galera-10.2.22-4.11 is installed
  • OR mariadb-tools-10.2.22-4.11 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • evince-3.20.2-6.27 is installed
  • OR evince-browser-plugin-3.20.2-6.27 is installed
  • OR evince-lang-3.20.2-6.27 is installed
  • OR evince-plugin-djvudocument-3.20.2-6.27 is installed
  • OR evince-plugin-dvidocument-3.20.2-6.27 is installed
  • OR evince-plugin-pdfdocument-3.20.2-6.27 is installed
  • OR evince-plugin-psdocument-3.20.2-6.27 is installed
  • OR evince-plugin-tiffdocument-3.20.2-6.27 is installed
  • OR evince-plugin-xpsdocument-3.20.2-6.27 is installed
  • OR libevdocument3-4-3.20.2-6.27 is installed
  • OR libevview3-3-3.20.2-6.27 is installed
  • OR nautilus-evince-3.20.2-6.27 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • ruby2.1-rubygem-loofah-2.0.2-3.8 is installed
  • OR rubygem-loofah-2.0.2-3.8 is installed
    • BACK