Oval Definition:	oval:org.opensuse.security:def:58011
Revision Date: 2021-09-23 Version: 1 Title: Security update for the Linux Kernel (Live Patch 40 for SLE 12 SP3) (Important) Description: This update for the Linux Kernel 4.4.180-94_147 fixes several issues. The following security issues were fixed: - CVE-2021-3653: Fixed missing validation of the KVM `int_ctl` VMCB field that would have allowed a malicious L1 guest to enable AVIC support for the L2 guest (bsc#1189420). - CVE-2021-38198: Fixed KVM MMU to use the correct inherited permissions to get shadow page (bsc#1189278). Family: unix Class: patch Status: Reference(s): 1009026 1010395 1010401 1010402 1010404 1010410 1010422 1010427 1010517 1056427 1064232 1068032 1075087 1076110 1080157 1083125 1083635 1085042 1085447 1086652 1087081 1087082 1089343 1090123 1090368 1090646 1090869 1090953 1091041 1091171 1092289 1093215 1094019 1094248 1096130 1096480 1096978 1097140 1097551 1098016 1098425 1098435 1099924 1100089 1100416 1100418 1100491 1101557 1101644 1101645 1101651 1101656 1102340 1102851 1103097 1103119 1103580 1106812 1110949 1112142 1112143 1112144 1112146 1112147 1112152 1112153 1112852 1119553 1119554 1119555 1119556 1119557 1119558 1122293 1122299 1129231 1130103 1133528 1145092 1157763 1170603 1171186 1174633 1174635 1174638 1189278 1189420 992549 CVE-2016-5285 CVE-2016-5290 CVE-2016-5291 CVE-2016-5296 CVE-2016-5297 CVE-2016-9064 CVE-2016-9066 CVE-2016-9074 CVE-2017-13166 CVE-2017-18344 CVE-2018-1087 CVE-2018-11212 CVE-2018-12389 CVE-2018-12390 CVE-2018-12392 CVE-2018-12393 CVE-2018-12395 CVE-2018-12396 CVE-2018-12397 CVE-2018-13053 CVE-2018-13405 CVE-2018-13406 CVE-2018-13785 CVE-2018-14734 CVE-2018-16435 CVE-2018-17456 CVE-2018-2938 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3214 CVE-2018-3620 CVE-2018-3639 CVE-2018-3639 CVE-2018-3646 CVE-2018-4437 CVE-2018-4438 CVE-2018-4441 CVE-2018-4442 CVE-2018-4443 CVE-2018-4464 CVE-2018-5390 CVE-2018-5391 CVE-2018-5814 CVE-2018-8781 CVE-2018-8897 CVE-2018-9385 CVE-2019-10208 CVE-2019-15961 CVE-2019-2422 CVE-2019-3859 CVE-2020-12268 CVE-2020-12387 CVE-2020-12388 CVE-2020-12389 CVE-2020-12392 CVE-2020-12393 CVE-2020-12395 CVE-2020-14345 CVE-2020-14346 CVE-2020-14347 CVE-2020-6831 CVE-2021-3653 CVE-2021-38198 SUSE-SU-2016:3014-1 SUSE-SU-2018:1377-1 SUSE-SU-2018:1505-1 SUSE-SU-2018:2344-1 SUSE-SU-2018:3064-1 SUSE-SU-2018:3749-1 SUSE-SU-2018:4088-1 SUSE-SU-2019:0049-1 SUSE-SU-2019:0146-1 SUSE-SU-2019:0604-1 SUSE-SU-2019:0736-1 SUSE-SU-2019:1060-1 SUSE-SU-2019:2158-1 SUSE-SU-2019:3177-1 SUSE-SU-2020:1212-1 SUSE-SU-2020:1218-1 SUSE-SU-2020:2331-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND lftp-4.8.3-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libmosquitto1-1.5.7-lp151.2.3 is installed OR libmosquittopp1-1.5.7-lp151.2.3 is installed OR mosquitto-1.5.7-lp151.2.3 is installed OR mosquitto-clients-1.5.7-lp151.2.3 is installed OR mosquitto-devel-1.5.7-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND clamav-0.100.3-33.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information MozillaFirefox-45.5.0esr-88 is installed OR MozillaFirefox-translations-45.5.0esr-88 is installed OR libfreebl3-3.21.3-50 is installed OR libfreebl3-32bit-3.21.3-50 is installed OR libfreebl3-hmac-3.21.3-50 is installed OR libfreebl3-hmac-32bit-3.21.3-50 is installed OR libsoftokn3-3.21.3-50 is installed OR libsoftokn3-32bit-3.21.3-50 is installed OR libsoftokn3-hmac-3.21.3-50 is installed OR libsoftokn3-hmac-32bit-3.21.3-50 is installed OR mozilla-nss-3.21.3-50 is installed OR mozilla-nss-32bit-3.21.3-50 is installed OR mozilla-nss-certs-3.21.3-50 is installed OR mozilla-nss-certs-32bit-3.21.3-50 is installed OR mozilla-nss-sysinit-3.21.3-50 is installed OR mozilla-nss-sysinit-32bit-3.21.3-50 is installed OR mozilla-nss-tools-3.21.3-50 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information MozillaFirefox-60.3.0-109.50 is installed OR MozillaFirefox-devel-60.3.0-109.50 is installed OR MozillaFirefox-translations-common-60.3.0-109.50 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information ghostscript-9.25-23.13 is installed OR ghostscript-x11-9.25-23.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_29-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_10-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_nss-1.0.14-18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND sudo-1.8.20p2-3.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND kgraft-patch-4_4_180-94_147-default-3-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND gdb-8.3.1-2.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ghostscript-9.26-23.16 is installed OR ghostscript-x11-9.26-23.16 is installed OR libspectre-0.2.7-12.4 is installed OR libspectre1-0.2.7-12.4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libvncclient0-0.9.9-17.5 is installed OR libvncserver0-0.9.9-17.5 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information kernel-default-4.4.121-92.92 is installed OR kernel-default-base-4.4.121-92.92 is installed OR kernel-default-devel-4.4.121-92.92 is installed OR kernel-default-man-4.4.121-92.92 is installed OR kernel-devel-4.4.121-92.92 is installed OR kernel-macros-4.4.121-92.92 is installed OR kernel-source-4.4.121-92.92 is installed OR kernel-syms-4.4.121-92.92 is installed OR kgraft-patch-4_4_121-92_92-default-1-3.7 is installed OR kgraft-patch-SLE12-SP2_Update_24-1-3.7 is installed OR lttng-modules-2.7.1-9.4 is installed OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.92-9.4 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.50-38.41 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-Werkzeug-0.14.1-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND mailman-2.1.17-3.20 is installed
BACK