Oval Definition:	oval:org.opensuse.security:def:57978
Revision Date: 2021-07-27 Version: 1 Title: Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important) Description: This update for the Linux Kernel 4.4.180-94_130 fixes several issues. The following security issues were fixed: - CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to andobtain full root privileges. (bsc#1188062) - CVE-2021-22555: Fixed an heap out-of-bounds write in net/netfilter/x_tables.c that could allow local provilege escalation. (bsc#1188116) - CVE-2020-36385: Fixed a use-after-free vulnerability reached via the ctx_list in some ucma_migrate_id situations where ucma_close is called. (bnc#1187050) Family: unix Class: patch Status: Reference(s): 1019531 1021610 1023807 1023822 1023848 1029631 1035312 1048688 1059463 1068565 1073230 1076017 1082216 1082233 1082234 1082318 1082858 1083488 1084604 1085114 1085447 1096718 1101410 1101412 1101644 1101645 1101651 1101654 1101656 1102840 1103040 1106989 1106996 1107609 1111647 1112142 1112143 1112144 1112146 1112147 1112152 1112153 1113231 1116717 1117275 1119493 1120381 1122033 1123156 1124365 1124366 1124368 1128649 1128828 1129180 1130330 1131317 1131863 1132053 1132054 1132060 1134156 1137832 1140359 1142614 1146882 1146884 1153108 1156275 1156321 1156331 1160039 1163985 1170601 1171863 1171864 1171866 1187052 1188117 1188257 943457 CVE-2017-13166 CVE-2017-13672 CVE-2017-13673 CVE-2017-5209 CVE-2017-5545 CVE-2017-5834 CVE-2017-5835 CVE-2017-5836 CVE-2017-6440 CVE-2017-7500 CVE-2017-7501 CVE-2017-7982 CVE-2017-9799 CVE-2018-0360 CVE-2018-0361 CVE-2018-1000004 CVE-2018-1000085 CVE-2018-1068 CVE-2018-12015 CVE-2018-12086 CVE-2018-13785 CVE-2018-14679 CVE-2018-16412 CVE-2018-16413 CVE-2018-16435 CVE-2018-16644 CVE-2018-16872 CVE-2018-18227 CVE-2018-19364 CVE-2018-19489 CVE-2018-20467 CVE-2018-20856 CVE-2018-2938 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3214 CVE-2018-3639 CVE-2018-6797 CVE-2018-6798 CVE-2018-6913 CVE-2018-7566 CVE-2018-7858 CVE-2019-10220 CVE-2019-10650 CVE-2019-11007 CVE-2019-11008 CVE-2019-11009 CVE-2019-12749 CVE-2019-12973 CVE-2019-13272 CVE-2019-14811 CVE-2019-14812 CVE-2019-14813 CVE-2019-14817 CVE-2019-14869 CVE-2019-3835 CVE-2019-3839 CVE-2019-6778 CVE-2019-7175 CVE-2019-7395 CVE-2019-7397 CVE-2019-7398 CVE-2019-9893 CVE-2019-9956 CVE-2020-10543 CVE-2020-10878 CVE-2020-12723 CVE-2020-1720 CVE-2020-36385 CVE-2021-22555 CVE-2021-33909 SUSE-SU-2017:1379-1 SUSE-SU-2017:3000-1 SUSE-SU-2018:1031-1 SUSE-SU-2018:1972-1 SUSE-SU-2018:2323-2 SUSE-SU-2018:3590-1 SUSE-SU-2018:3884-1 SUSE-SU-2019:0049-1 SUSE-SU-2019:0489-1 SUSE-SU-2019:1033-1 SUSE-SU-2019:1591-1 SUSE-SU-2019:2478-1 SUSE-SU-2019:2941-1 SUSE-SU-2019:2983-1 SUSE-SU-2019:3232-1 SUSE-SU-2020:0715-1 SUSE-SU-2020:1662-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information groff-1.22.3-lp150.3 is installed OR groff-full-1.22.3-lp150.3 is installed OR gxditview-1.22.3-lp150.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libsrt1-1.3.4-lp151.2.3 is installed OR srt-1.3.4-lp151.2.3 is installed OR srt-devel-1.3.4-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information ghostscript-9.27-23.28 is installed OR ghostscript-x11-9.27-23.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libplist-1.12-19 is installed OR libplist3-1.12-19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND clamav-0.100.1-33.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information xen-4.7.5_04-43.33 is installed OR xen-doc-html-4.7.5_04-43.33 is installed OR xen-libs-4.7.5_04-43.33 is installed OR xen-libs-32bit-4.7.5_04-43.33 is installed OR xen-tools-4.7.5_04-43.33 is installed OR xen-tools-domU-4.7.5_04-43.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information libwireshark9-2.4.10-48.32 is installed OR libwiretap7-2.4.10-48.32 is installed OR libwscodecs1-2.4.10-48.32 is installed OR libwsutil8-2.4.10-48.32 is installed OR wireshark-2.4.10-48.32 is installed OR wireshark-gtk-2.4.10-48.32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libXfixes3-5.0.1-7 is installed OR libXfixes3-32bit-5.0.1-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.2-2.53 is installed OR libwebkit2gtk-4_0-37-2.28.2-2.53 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.2-2.53 is installed OR typelib-1_0-WebKit2-4_0-2.28.2-2.53 is installed OR webkit2gtk-4_0-injected-bundles-2.28.2-2.53 is installed OR webkit2gtk3-2.28.2-2.53 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND kgraft-patch-4_4_180-94_130-default-12-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information dovecot22-2.2.31-19.17 is installed OR dovecot22-backend-mysql-2.2.31-19.17 is installed OR dovecot22-backend-pgsql-2.2.31-19.17 is installed OR dovecot22-backend-sqlite-2.2.31-19.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information pam_pkcs11-0.6.8-7.5 is installed OR pam_pkcs11-32bit-0.6.8-7.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libpython3_4m1_0-3.4.6-25.16 is installed OR python3-base-3.4.6-25.16 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information storm-1.0.5-5 is installed OR storm-nimbus-1.0.5-5 is installed OR storm-supervisor-1.0.5-5 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND ansible-2.4.6.0-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information java-1_7_0-openjdk-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-demo-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-devel-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-headless-1.7.0.241-43.30 is installed
BACK