Oval Definition:	oval:org.opensuse.security:def:58012
Revision Date: 2021-09-23 Version: 1 Title: Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP3) (Important) Description: This update for the Linux Kernel 4.4.180-94_144 fixes several issues. The following security issues were fixed: - CVE-2021-3653: Fixed missing validation of the KVM `int_ctl` VMCB field that would have allowed a malicious L1 guest to enable AVIC support for the L2 guest (bsc#1189420). - CVE-2021-38198: Fixed KVM MMU to use the correct inherited permissions to get shadow page (bsc#1189278). Family: unix Class: patch Status: Reference(s): 1002998 1027519 1040311 1040312 1040313 1047044 1047898 1050120 1050577 1050578 1050579 1050581 1050606 1051446 1052468 1052550 1052710 1052720 1052731 1052732 1055065 1055323 1055434 1055855 1055960 1058640 1059751 1074123 1074969 1074973 1074975 1083125 1085447 1090368 1090646 1090869 1091107 1097356 1103276 1104205 1106923 1108835 1109209 1109252 1110445 1111278 1112024 1113083 1113632 1113665 1117632 1122292 1122293 1122299 1124937 1125401 1128158 1128525 1144524 1145092 1153108 1156334 1166847 1169659 1170313 1170423 1171186 1189278 1189420 CVE-2016-7945 CVE-2016-7946 CVE-2017-10800 CVE-2017-11141 CVE-2017-11529 CVE-2017-11624 CVE-2017-11625 CVE-2017-11626 CVE-2017-11627 CVE-2017-11644 CVE-2017-11724 CVE-2017-12434 CVE-2017-12564 CVE-2017-12595 CVE-2017-12667 CVE-2017-12670 CVE-2017-12672 CVE-2017-12675 CVE-2017-13060 CVE-2017-13146 CVE-2017-13166 CVE-2017-13648 CVE-2017-13658 CVE-2017-14326 CVE-2017-14533 CVE-2017-17881 CVE-2017-18022 CVE-2017-9208 CVE-2017-9209 CVE-2017-9210 CVE-2018-1087 CVE-2018-11212 CVE-2018-14526 CVE-2018-15686 CVE-2018-15688 CVE-2018-16476 CVE-2018-1890 CVE-2018-3646 CVE-2018-5246 CVE-2018-5247 CVE-2018-5848 CVE-2018-8781 CVE-2018-8897 CVE-2019-10208 CVE-2019-10220 CVE-2019-12519 CVE-2019-12520 CVE-2019-12521 CVE-2019-12524 CVE-2019-13456 CVE-2019-15917 CVE-2019-17185 CVE-2019-2422 CVE-2019-2449 CVE-2019-6212 CVE-2019-6215 CVE-2019-6216 CVE-2019-6217 CVE-2019-6226 CVE-2019-6227 CVE-2019-6229 CVE-2019-6233 CVE-2019-6234 CVE-2019-8936 CVE-2020-11945 CVE-2020-12387 CVE-2020-12388 CVE-2020-12389 CVE-2020-12392 CVE-2020-12393 CVE-2020-12395 CVE-2020-6831 CVE-2021-3653 CVE-2021-38198 SUSE-SU-2016:3047-1 SUSE-SU-2018:0130-1 SUSE-SU-2018:1545-1 SUSE-SU-2018:2410-1 SUSE-SU-2018:3066-1 SUSE-SU-2018:3767-1 SUSE-SU-2018:4127-1 SUSE-SU-2019:0152-1 SUSE-SU-2019:0511-1 SUSE-SU-2019:0617-1 SUSE-SU-2019:0789-1 SUSE-SU-2019:1088-1 SUSE-SU-2019:2159-1 SUSE-SU-2019:3233-1 SUSE-SU-2020:1218-1 SUSE-SU-2020:1227-1 SUSE-SU-2020:2391-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information libFLAC++6-1.3.2-lp150.1 is installed OR libFLAC8-1.3.2-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.4-lp151.2.6 is installed OR libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp151.2.6 is installed OR libwebkit2gtk-4_0-37-2.24.4-lp151.2.6 is installed OR libwebkit2gtk-4_0-37-32bit-2.24.4-lp151.2.6 is installed OR libwebkit2gtk3-lang-2.24.4-lp151.2.6 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.4-lp151.2.6 is installed OR typelib-1_0-WebKit2-4_0-2.24.4-lp151.2.6 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp151.2.6 is installed OR webkit-jsc-4-2.24.4-lp151.2.6 is installed OR webkit2gtk-4_0-injected-bundles-2.24.4-lp151.2.6 is installed OR webkit2gtk3-2.24.4-lp151.2.6 is installed OR webkit2gtk3-devel-2.24.4-lp151.2.6 is installed OR webkit2gtk3-minibrowser-2.24.4-lp151.2.6 is installed OR webkit2gtk3-plugin-process-gtk2-2.24.4-lp151.2.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_110-default-7-2 is installed OR kgraft-patch-3_12_74-60_64_110-xen-7-2 is installed OR kgraft-patch-SLE12-SP1_Update_33-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libXi-1.7.4-17 is installed OR libXi6-1.7.4-17 is installed OR libXi6-32bit-1.7.4-17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libsystemd0-228-150.53 is installed OR libsystemd0-32bit-228-150.53 is installed OR libudev1-228-150.53 is installed OR libudev1-32bit-228-150.53 is installed OR systemd-228-150.53 is installed OR systemd-32bit-228-150.53 is installed OR systemd-bash-completion-228-150.53 is installed OR systemd-sysvinit-228-150.53 is installed OR udev-228-150.53 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information openslp-2.0.0-18.17 is installed OR openslp-32bit-2.0.0-18.17 is installed OR openslp-server-2.0.0-18.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_38-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_13-9-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_perl-2.0.8-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libpcap-1.8.1-10.3 is installed OR libpcap1-1.8.1-10.3 is installed OR tcpdump-4.9.2-14.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND kgraft-patch-4_4_180-94_144-default-6-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libssh2-1-1.4.3-20.14 is installed OR libssh2-1-32bit-1.4.3-20.14 is installed OR libssh2_org-1.4.3-20.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libncurses5-5.9-61 is installed OR libncurses5-32bit-5.9-61 is installed OR libncurses6-5.9-61 is installed OR libncurses6-32bit-5.9-61 is installed OR ncurses-5.9-61 is installed OR ncurses-devel-5.9-61 is installed OR ncurses-devel-32bit-5.9-61 is installed OR ncurses-utils-5.9-61 is installed OR tack-5.9-61 is installed OR terminfo-5.9-61 is installed OR terminfo-base-5.9-61 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libvorbis-doc-1.3.3-10.14 is installed OR libvorbis0-1.3.3-10.14 is installed OR libvorbis0-32bit-1.3.3-10.14 is installed OR libvorbisenc2-1.3.3-10.14 is installed OR libvorbisenc2-32bit-1.3.3-10.14 is installed OR libvorbisfile3-1.3.3-10.14 is installed OR libvorbisfile3-32bit-1.3.3-10.14 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information xen-4.7.6_04-43.39 is installed OR xen-doc-html-4.7.6_04-43.39 is installed OR xen-libs-4.7.6_04-43.39 is installed OR xen-libs-32bit-4.7.6_04-43.39 is installed OR xen-tools-4.7.6_04-43.39 is installed OR xen-tools-domU-4.7.6_04-43.39 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information curl-7.37.0-37.43 is installed OR libcurl4-7.37.0-37.43 is installed OR libcurl4-32bit-7.37.0-37.43 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-Twisted-15.2.1-9.8 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information tomcat-8.0.53-29.27 is installed OR tomcat-admin-webapps-8.0.53-29.27 is installed OR tomcat-docs-webapp-8.0.53-29.27 is installed OR tomcat-el-3_0-api-8.0.53-29.27 is installed OR tomcat-javadoc-8.0.53-29.27 is installed OR tomcat-jsp-2_3-api-8.0.53-29.27 is installed OR tomcat-lib-8.0.53-29.27 is installed OR tomcat-servlet-3_1-api-8.0.53-29.27 is installed OR tomcat-webapps-8.0.53-29.27 is installed
BACK