Oval Definition:oval:org.opensuse.security:def:58013
Revision Date:2021-09-23Version:1
Title:Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)
Description:

This update for the Linux Kernel 4.4.180-94_141 fixes several issues.

The following security issues were fixed:

- CVE-2021-3653: Fixed missing validation of the KVM `int_ctl` VMCB field that would have allowed a malicious L1 guest to enable AVIC support for the L2 guest (bsc#1189420). - CVE-2021-38198: Fixed KVM MMU to use the correct inherited permissions to get shadow page (bsc#1189278).
Family:unixClass:patch
Status:Reference(s):1000396
1001299
1009280
1037216
1065237
1075091
1075994
1076957
1083125
1085447
1086247
1087082
1087813
1090368
1090646
1090671
1090869
1091041
1091236
1097356
1099279
1100078
1104662
1108308
1112209
1113534
1113652
1113742
1113975
1117951
1119183
1120386
1120813
1121816
1121821
1127080
1127458
1128471
1128472
1128474
1128476
1128480
1128481
1128490
1128492
1128493
1131107
1131709
1133114
1133145
1133147
1136449
1137325
1142880
1142882
1142883
1142885
1146519
1146544
1146612
1149591
1153108
1153811
1154212
1154844
1155311
1155897
1156060
1156334
1157038
1157042
1157070
1157143
1157155
1157157
1157158
1157303
1157324
1157333
1157464
1157804
1157923
1158021
1158132
1158381
1158394
1158398
1158410
1158413
1158417
1158427
1158442
1158445
1158819
1158823
1158824
1158827
1158834
1158900
1158903
1158904
1159199
1159285
1159297
1159841
1159908
1159910
1159911
1159912
1160195
1162227
1162298
1162928
1162929
1162931
1163971
1164069
1164078
1164846
1165111
1165311
1165873
1165881
1165984
1165985
1167629
1168075
1168295
1168424
1168829
1168854
1169659
1170056
1170313
1170345
1170423
1170778
1189278
1189420
CVE-2016-0634
CVE-2016-10708
CVE-2016-5542
CVE-2016-5554
CVE-2016-5556
CVE-2016-5568
CVE-2016-5573
CVE-2016-5597
CVE-2016-7543
CVE-2017-13166
CVE-2017-18255
CVE-2018-0734
CVE-2018-1087
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2018-21008
CVE-2018-5407
CVE-2018-5848
CVE-2018-8781
CVE-2018-8897
CVE-2019-10220
CVE-2019-11091
CVE-2019-11365
CVE-2019-11366
CVE-2019-12519
CVE-2019-12520
CVE-2019-12521
CVE-2019-12524
CVE-2019-14232
CVE-2019-14233
CVE-2019-14234
CVE-2019-14235
CVE-2019-14615
CVE-2019-14895
CVE-2019-14896
CVE-2019-14897
CVE-2019-14901
CVE-2019-15213
CVE-2019-1559
CVE-2019-15917
CVE-2019-17631
CVE-2019-18660
CVE-2019-18675
CVE-2019-18683
CVE-2019-19052
CVE-2019-19062
CVE-2019-19066
CVE-2019-19073
CVE-2019-19074
CVE-2019-19319
CVE-2019-19332
CVE-2019-19447
CVE-2019-19523
CVE-2019-19524
CVE-2019-19525
CVE-2019-19527
CVE-2019-19530
CVE-2019-19531
CVE-2019-19532
CVE-2019-19533
CVE-2019-19534
CVE-2019-19535
CVE-2019-19536
CVE-2019-19537
CVE-2019-19767
CVE-2019-19768
CVE-2019-19965
CVE-2019-19966
CVE-2019-20054
CVE-2019-20096
CVE-2019-2933
CVE-2019-2945
CVE-2019-2958
CVE-2019-2962
CVE-2019-2964
CVE-2019-2973
CVE-2019-2975
CVE-2019-2978
CVE-2019-2981
CVE-2019-2983
CVE-2019-2988
CVE-2019-2989
CVE-2019-2992
CVE-2019-2996
CVE-2019-2999
CVE-2019-3701
CVE-2019-3840
CVE-2019-3855
CVE-2019-3856
CVE-2019-3857
CVE-2019-3858
CVE-2019-3859
CVE-2019-3860
CVE-2019-3861
CVE-2019-3862
CVE-2019-3863
CVE-2019-5108
CVE-2019-6109
CVE-2019-6111
CVE-2019-9455
CVE-2019-9458
CVE-2020-10690
CVE-2020-10720
CVE-2020-10942
CVE-2020-11494
CVE-2020-11608
CVE-2020-11609
CVE-2020-11945
CVE-2020-2732
CVE-2020-8647
CVE-2020-8648
CVE-2020-8649
CVE-2020-8992
CVE-2020-9383
CVE-2021-3653
CVE-2021-38198
SUSE-SU-2016:3043-1
SUSE-SU-2018:1398-1
SUSE-SU-2018:1534-1
SUSE-SU-2018:2530-1
SUSE-SU-2018:3074-1
SUSE-SU-2018:3866-1
SUSE-SU-2019:0553-1
SUSE-SU-2019:0655-1
SUSE-SU-2019:0803-1
SUSE-SU-2019:1091-1
SUSE-SU-2019:1524-1
SUSE-SU-2019:2180-1
SUSE-SU-2020:0024-1
SUSE-SU-2020:1227-1
SUSE-SU-2020:1255-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libFS6-1.0.7-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND phpMyAdmin-4.9.1-34 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_115-default-6-2 is installed
  • OR kgraft-patch-3_12_74-60_64_115-xen-6-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_34-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr3.60-31 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr3.60-31 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr3.60-31 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr3.60-31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libopenssl-devel-1.0.2j-60.46 is installed
  • OR libopenssl1_0_0-1.0.2j-60.46 is installed
  • OR libopenssl1_0_0-32bit-1.0.2j-60.46 is installed
  • OR libopenssl1_0_0-hmac-1.0.2j-60.46 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.46 is installed
  • OR openssl-1.0.2j-60.46 is installed
  • OR openssl-doc-1.0.2j-60.46 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.181-27.26 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.181-27.26 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.181-27.26 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.181-27.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_74-92_35-default-10-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_12-10-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • at-3.1.14-7 is installed
  • OR flex-2.5.37-8 is installed
  • OR flex-32bit-2.5.37-8 is installed
  • OR libQtWebKit4-4.8.6+2.3.3-3 is installed
  • OR libQtWebKit4-32bit-4.8.6+2.3.3-3 is installed
  • OR libbonobo-2.32.1-16 is installed
  • OR libbonobo-32bit-2.32.1-16 is installed
  • OR libbonobo-doc-2.32.1-16 is installed
  • OR libbonobo-lang-2.32.1-16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • xen-4.9.4_04-3.56 is installed
  • OR xen-doc-html-4.9.4_04-3.56 is installed
  • OR xen-libs-4.9.4_04-3.56 is installed
  • OR xen-libs-32bit-4.9.4_04-3.56 is installed
  • OR xen-tools-4.9.4_04-3.56 is installed
  • OR xen-tools-domU-4.9.4_04-3.56 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND kgraft-patch-4_4_180-94_141-default-9-2.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libseccomp-2.4.1-11.3 is installed
  • OR libseccomp2-2.4.1-11.3 is installed
  • OR libseccomp2-32bit-2.4.1-11.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-71.93 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-71.93 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-71.93 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND libvpx1-1.3.0-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • openssh-7.2p2-74.25 is installed
  • OR openssh-askpass-gnome-7.2p2-74.25 is installed
  • OR openssh-fips-7.2p2-74.25 is installed
  • OR openssh-helpers-7.2p2-74.25 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed
  • OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed
  • OR libwebkit2gtk3-lang-2.24.4-2.47 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed
  • OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed
  • OR webkit2gtk3-2.24.4-2.47 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND Package Information
  • ansible1-1.9.6-9.3 is installed
  • OR ardana-ansible-9.0+git.1568385829.54601ac-3.10 is installed
  • OR ardana-cluster-9.0+git.1568150980.027f167-3.10 is installed
  • OR ardana-db-9.0+git.1568382922.6f2cea4-3.10 is installed
  • OR ardana-extensions-nsx-9.0+git.1568830037.2eea267-11 is installed
  • OR ardana-glance-9.0+git.1567000146.4569d10-3.10 is installed
  • OR ardana-input-model-9.0+git.1566409257.eec6360-3.10 is installed
  • OR ardana-installer-ui-9.0+git.1569535129.ca87ef0-3.10 is installed
  • OR ardana-manila-9.0+git.1568835830.10c9689-3.6 is installed
  • OR ardana-monasca-9.0+git.1567695427.5974ab2-3.10 is installed
  • OR ardana-neutron-9.0+git.1568817582.a4813e2-3.10 is installed
  • OR ardana-nova-9.0+git.1567630824.aa6dc2d-3.10 is installed
  • OR ardana-octavia-9.0+git.1568362662.7fba216-3.10 is installed
  • OR ardana-opsconsole-ui-9.0+git.1566593422.813e56c-4.10 is installed
  • OR ardana-osconfig-9.0+git.1567630791.5ca70a6-3.10 is installed
  • OR ardana-service-9.0+git.1569439941.6800991-3.10 is installed
  • OR ardana-tls-9.0+git.1569257240.456c4fc-3.6 is installed
  • OR grafana-6.2.5-3.6 is installed
  • OR grafana-monasca-ui-drilldown-1.14.1~dev9-3.6 is installed
  • OR novnc-1.1.0-3.3 is installed
  • OR openstack-cinder-13.0.7~dev16-3.10 is installed
  • OR openstack-cinder-api-13.0.7~dev16-3.10 is installed
  • OR openstack-cinder-backup-13.0.7~dev16-3.10 is installed
  • OR openstack-cinder-scheduler-13.0.7~dev16-3.10 is installed
  • OR openstack-cinder-volume-13.0.7~dev16-3.10 is installed
  • OR openstack-dashboard-14.0.4~dev11-3.6 is installed
  • OR openstack-designate-7.0.1~dev22-3.10 is installed
  • OR openstack-designate-agent-7.0.1~dev22-3.10 is installed
  • OR openstack-designate-api-7.0.1~dev22-3.10 is installed
  • OR openstack-designate-central-7.0.1~dev22-3.10 is installed
  • OR openstack-designate-producer-7.0.1~dev22-3.10 is installed
  • OR openstack-designate-sink-7.0.1~dev22-3.10 is installed
  • OR openstack-designate-worker-7.0.1~dev22-3.10 is installed
  • OR openstack-glance-17.0.1~dev30-3.3 is installed
  • OR openstack-glance-api-17.0.1~dev30-3.3 is installed
  • OR openstack-heat-11.0.3~dev23-3.10 is installed
  • OR openstack-heat-api-11.0.3~dev23-3.10 is installed
  • OR openstack-heat-api-cfn-11.0.3~dev23-3.10 is installed
  • OR openstack-heat-engine-11.0.3~dev23-3.10 is installed
  • OR openstack-heat-plugin-heat_docker-11.0.3~dev23-3.10 is installed
  • OR openstack-horizon-plugin-heat-ui-1.4.1~dev4-4.6 is installed
  • OR openstack-horizon-plugin-monasca-ui-1.14.1~dev9-3.6 is installed
  • OR openstack-ironic-11.1.4~dev15-3.10 is installed
  • OR openstack-ironic-api-11.1.4~dev15-3.10 is installed
  • OR openstack-ironic-conductor-11.1.4~dev15-3.10 is installed
  • OR openstack-ironic-python-agent-3.3.3~dev5-3.10 is installed
  • OR openstack-keystone-14.1.1~dev16-3.10 is installed
  • OR openstack-manila-7.3.1~dev6-4.10 is installed
  • OR openstack-manila-api-7.3.1~dev6-4.10 is installed
  • OR openstack-manila-data-7.3.1~dev6-4.10 is installed
  • OR openstack-manila-scheduler-7.3.1~dev6-4.10 is installed
  • OR openstack-manila-share-7.3.1~dev6-4.10 is installed
  • OR openstack-neutron-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-dhcp-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-gbp-5.0.1~dev472-3.10 is installed
  • OR openstack-neutron-ha-tool-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-l3-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-macvtap-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-metadata-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-metering-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-server-13.0.5~dev50-3.10 is installed
  • OR openstack-nova-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-api-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-cells-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-compute-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-conductor-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-console-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-novncproxy-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-placement-api-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-scheduler-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-serialproxy-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-vncproxy-18.2.3~dev22-3.10 is installed
  • OR openstack-octavia-3.1.2~dev45-3.10 is installed
  • OR openstack-octavia-amphora-agent-3.1.2~dev45-3.10 is installed
  • OR openstack-octavia-api-3.1.2~dev45-3.10 is installed
  • OR openstack-octavia-health-manager-3.1.2~dev45-3.10 is installed
  • OR openstack-octavia-housekeeping-3.1.2~dev45-3.10 is installed
  • OR openstack-octavia-worker-3.1.2~dev45-3.10 is installed
  • OR openstack-sahara-9.0.2~dev12-3.3 is installed
  • OR openstack-sahara-api-9.0.2~dev12-3.3 is installed
  • OR openstack-sahara-engine-9.0.2~dev12-3.3 is installed
  • OR openstack-tempest-19.0.0-15 is installed
  • OR openstack-tempest-test-19.0.0-15 is installed
  • OR openstack-watcher-1.12.1~dev19-4.3 is installed
  • OR openstack-watcher-doc-1.12.1~dev19-4.3 is installed
  • OR python-ardana-configurationprocessor-9.0+git.1568955483.5f039e4-3.11 is installed
  • OR python-cinder-13.0.7~dev16-3.10 is installed
  • OR python-cinder-tempest-plugin-0.1.0-11 is installed
  • OR python-designate-7.0.1~dev22-3.10 is installed
  • OR python-glance-17.0.1~dev30-3.3 is installed
  • OR python-heat-11.0.3~dev23-3.10 is installed
  • OR python-horizon-14.0.4~dev11-3.6 is installed
  • OR python-horizon-plugin-heat-ui-1.4.1~dev4-4.6 is installed
  • OR python-horizon-plugin-monasca-ui-1.14.1~dev9-3.6 is installed
  • OR python-ironic-11.1.4~dev15-3.10 is installed
  • OR python-keystone-14.1.1~dev16-3.10 is installed
  • OR python-manila-7.3.1~dev6-4.10 is installed
  • OR python-neutron-13.0.5~dev50-3.10 is installed
  • OR python-neutron-gbp-5.0.1~dev472-3.10 is installed
  • OR python-nova-18.2.3~dev22-3.10 is installed
  • OR python-octavia-3.1.2~dev45-3.10 is installed
  • OR python-openstack_auth-14.0.4~dev11-3.6 is installed
  • OR python-sahara-9.0.2~dev12-3.3 is installed
  • OR python-tempest-19.0.0-15 is installed
  • OR python-urllib3-1.23-3.9 is installed
  • OR python-watcher-1.12.1~dev19-4.3 is installed
  • OR venv-openstack-barbican-7.0.1~dev18-3.9 is installed
  • OR venv-openstack-barbican-x86_64-7.0.1~dev18-3.9 is installed
  • OR venv-openstack-cinder-13.0.7~dev16-3.9 is installed
  • OR venv-openstack-cinder-x86_64-13.0.7~dev16-3.9 is installed
  • OR venv-openstack-designate-7.0.1~dev22-3.9 is installed
  • OR venv-openstack-designate-x86_64-7.0.1~dev22-3.9 is installed
  • OR venv-openstack-glance-17.0.1~dev30-3.9 is installed
  • OR venv-openstack-glance-x86_64-17.0.1~dev30-3.9 is installed
  • OR venv-openstack-heat-11.0.3~dev23-3.9 is installed
  • OR venv-openstack-heat-x86_64-11.0.3~dev23-3.9 is installed
  • OR venv-openstack-horizon-14.0.4~dev11-4.9 is installed
  • OR venv-openstack-horizon-x86_64-14.0.4~dev11-4.9 is installed
  • OR venv-openstack-ironic-11.1.4~dev15-4.9 is installed
  • OR venv-openstack-ironic-x86_64-11.1.4~dev15-4.9 is installed
  • OR venv-openstack-keystone-14.1.1~dev16-3.9 is installed
  • OR venv-openstack-keystone-x86_64-14.1.1~dev16-3.9 is installed
  • OR venv-openstack-magnum-7.1.1~dev28-4.9 is installed
  • OR venv-openstack-magnum-x86_64-7.1.1~dev28-4.9 is installed
  • OR venv-openstack-manila-7.3.1~dev6-3.9 is installed
  • OR venv-openstack-manila-x86_64-7.3.1~dev6-3.9 is installed
  • OR venv-openstack-monasca-2.7.1~dev10-3.9 is installed
  • OR venv-openstack-monasca-ceilometer-1.8.2~dev3-3.9 is installed
  • OR venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.9 is installed
  • OR venv-openstack-monasca-x86_64-2.7.1~dev10-3.9 is installed
  • OR venv-openstack-neutron-13.0.5~dev50-6.9 is installed
  • OR venv-openstack-neutron-x86_64-13.0.5~dev50-6.9 is installed
  • OR venv-openstack-nova-18.2.3~dev22-3.9 is installed
  • OR venv-openstack-nova-x86_64-18.2.3~dev22-3.9 is installed
  • OR venv-openstack-octavia-3.1.2~dev45-4.9 is installed
  • OR venv-openstack-octavia-x86_64-3.1.2~dev45-4.9 is installed
  • OR venv-openstack-sahara-9.0.2~dev12-3.9 is installed
  • OR venv-openstack-sahara-x86_64-9.0.2~dev12-3.9 is installed
  • OR venv-openstack-swift-2.19.2~dev1-2.6 is installed
  • OR venv-openstack-swift-x86_64-2.19.2~dev1-2.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libpython2_7-1_0-2.7.17-28.42 is installed
  • OR libpython2_7-1_0-32bit-2.7.17-28.42 is installed
  • OR python-2.7.17-28.42 is installed
  • OR python-32bit-2.7.17-28.42 is installed
  • OR python-base-2.7.17-28.42 is installed
  • OR python-base-32bit-2.7.17-28.42 is installed
  • OR python-curses-2.7.17-28.42 is installed
  • OR python-demo-2.7.17-28.42 is installed
  • OR python-devel-2.7.17-28.42 is installed
  • OR python-doc-2.7.17-28.42 is installed
  • OR python-doc-pdf-2.7.17-28.42 is installed
  • OR python-gdbm-2.7.17-28.42 is installed
  • OR python-idle-2.7.17-28.42 is installed
  • OR python-rpm-macros-20200207.5feb6c1-3.19 is installed
  • OR python-tk-2.7.17-28.42 is installed
  • OR python-xml-2.7.17-28.42 is installed
  • OR shared-python-startup-0.1-1.3 is installed
    • BACK