Oval Definition:	oval:org.opensuse.security:def:58014
Revision Date: 2021-09-23 Version: 1 Title: Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important) Description: This update for the Linux Kernel 4.4.180-94_138 fixes several issues. The following security issues were fixed: - CVE-2021-3653: Fixed missing validation of the KVM `int_ctl` VMCB field that would have allowed a malicious L1 guest to enable AVIC support for the L2 guest (bsc#1189420). - CVE-2021-38198: Fixed KVM MMU to use the correct inherited permissions to get shadow page (bsc#1189278). Family: unix Class: patch Status: Reference(s): 1012382 1012964 1034674 1034678 1037216 1042286 1062604 1064232 1065364 1067203 1072193 1075091 1075697 1075994 1077999 1082519 1082863 1082943 1083125 1084536 1085042 1085447 1086909 1087082 1087813 1087932 1088810 1089066 1090192 1090343 1090368 1090646 1090849 1090869 1091041 1092903 1094448 1094466 1095344 1095603 1096547 1096985 1097104 1097356 1098599 1099279 1099597 1099658 1099811 1099813 1099844 1099845 1099846 1099849 1099863 1099864 1099922 1099993 1099999 1100000 1100001 1100152 1102517 1102715 1102870 1102920 1102959 1103445 1104319 1104495 1105292 1105296 1105322 1105348 1105396 1105402 1105536 1106016 1106095 1106284 1106369 1106509 1106511 1106512 1106594 1107689 1107735 1107829 1107966 1108145 1108239 1108399 1109137 1109330 1109333 1110286 1110785 1112142 1112143 1112144 1112146 1112147 1112148 1112152 1112153 1113769 1117645 1119019 1120386 1120489 1120691 1120843 1120885 1121698 1121805 1122821 1124728 1124729 1124732 1124734 1124735 1125315 1127155 1127758 1127961 1128166 1128378 1129080 1129179 1131107 1131543 1131565 1132374 1132472 1133147 1134537 1134596 1134848 1135281 1135603 1136424 1136446 1136449 1136586 1136935 1137325 1137586 1140290 1146519 1146544 1146612 1149591 1153108 1153811 1154844 1155311 1155897 1156060 1156334 1157038 1157042 1157070 1157143 1157155 1157157 1157158 1157303 1157324 1157333 1157464 1157804 1157923 1158021 1158132 1158381 1158394 1158398 1158410 1158413 1158417 1158427 1158445 1158819 1158823 1158824 1158827 1158834 1158900 1158903 1158904 1159199 1159285 1159297 1159841 1159908 1159910 1159911 1159912 1160195 1162227 1162298 1162928 1162929 1162931 1163971 1164069 1164078 1164846 1165111 1165311 1165873 1165881 1165984 1165985 1167629 1168075 1168295 1168404 1168407 1168424 1168829 1168854 1169066 1170056 1170345 1170778 1174910 1174913 1189278 1189420 929629 943457 990636 CVE-2014-8146 CVE-2014-8147 CVE-2016-6293 CVE-2016-9079 CVE-2017-13166 CVE-2017-14952 CVE-2017-15422 CVE-2017-17484 CVE-2017-18255 CVE-2017-7500 CVE-2017-7501 CVE-2017-7867 CVE-2017-7868 CVE-2018-10853 CVE-2018-1087 CVE-2018-10876 CVE-2018-10877 CVE-2018-10878 CVE-2018-10879 CVE-2018-10880 CVE-2018-10881 CVE-2018-10882 CVE-2018-10883 CVE-2018-10902 CVE-2018-10938 CVE-2018-10940 CVE-2018-12099 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-1288 CVE-2018-12896 CVE-2018-13093 CVE-2018-13094 CVE-2018-13095 CVE-2018-13785 CVE-2018-14617 CVE-2018-14633 CVE-2018-14678 CVE-2018-15572 CVE-2018-15594 CVE-2018-16276 CVE-2018-16435 CVE-2018-16658 CVE-2018-17182 CVE-2018-17972 CVE-2018-20217 CVE-2018-21008 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3183 CVE-2018-3214 CVE-2018-3817 CVE-2018-5848 CVE-2018-6554 CVE-2018-6555 CVE-2018-7191 CVE-2018-7480 CVE-2018-7757 CVE-2018-8781 CVE-2018-8897 CVE-2018-9363 CVE-2019-10220 CVE-2019-11091 CVE-2019-11190 CVE-2019-11477 CVE-2019-11478 CVE-2019-11479 CVE-2019-11815 CVE-2019-11833 CVE-2019-11884 CVE-2019-12382 CVE-2019-13173 CVE-2019-14615 CVE-2019-14895 CVE-2019-14896 CVE-2019-14897 CVE-2019-14901 CVE-2019-15213 CVE-2019-15917 CVE-2019-18660 CVE-2019-18675 CVE-2019-18683 CVE-2019-19052 CVE-2019-19062 CVE-2019-19066 CVE-2019-19073 CVE-2019-19074 CVE-2019-19319 CVE-2019-19332 CVE-2019-19447 CVE-2019-19523 CVE-2019-19524 CVE-2019-19525 CVE-2019-19527 CVE-2019-19530 CVE-2019-19531 CVE-2019-19532 CVE-2019-19533 CVE-2019-19534 CVE-2019-19535 CVE-2019-19536 CVE-2019-19537 CVE-2019-19767 CVE-2019-19768 CVE-2019-19965 CVE-2019-19966 CVE-2019-20054 CVE-2019-20096 CVE-2019-2024 CVE-2019-3701 CVE-2019-3846 CVE-2019-5108 CVE-2019-5489 CVE-2019-6974 CVE-2019-7221 CVE-2019-7222 CVE-2019-9213 CVE-2019-9455 CVE-2019-9458 CVE-2020-10690 CVE-2020-10720 CVE-2020-10942 CVE-2020-11494 CVE-2020-11608 CVE-2020-11609 CVE-2020-14361 CVE-2020-14362 CVE-2020-1927 CVE-2020-1934 CVE-2020-1938 CVE-2020-2732 CVE-2020-8647 CVE-2020-8648 CVE-2020-8649 CVE-2020-8992 CVE-2020-9383 CVE-2021-3653 CVE-2021-38198 SUSE-SU-2016:3048-1 SUSE-SU-2018:1401-1 SUSE-SU-2018:1511-1 SUSE-SU-2018:2536-1 SUSE-SU-2018:3084-1 SUSE-SU-2018:3884-1 SUSE-SU-2019:0057-1 SUSE-SU-2019:0111-1 SUSE-SU-2019:0683-1 SUSE-SU-2019:0828-1 SUSE-SU-2019:1534-1 SUSE-SU-2019:2181-1 SUSE-SU-2020:1255-1 SUSE-SU-2020:1272-1 SUSE-SU-2020:2401-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND libHX28-3.22-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libmodplug-devel-0.3.17-lp151.2.3 is installed OR libmodplug1-0.3.17-lp151.2.3 is installed OR libmodplug1-32bit-0.3.17-lp151.2.3 is installed OR libopenmpt-0.3.17-lp151.2.3 is installed OR libopenmpt-devel-0.3.17-lp151.2.3 is installed OR libopenmpt0-0.3.17-lp151.2.3 is installed OR libopenmpt0-32bit-0.3.17-lp151.2.3 is installed OR libopenmpt_modplug1-0.3.17-lp151.2.3 is installed OR libopenmpt_modplug1-32bit-0.3.17-lp151.2.3 is installed OR openmpt123-0.3.17-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_118-default-4-2 is installed OR kgraft-patch-3_12_74-60_64_118-xen-4-2 is installed OR kgraft-patch-SLE12-SP1_Update_35-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information MozillaFirefox-45.5.1esr-93 is installed OR MozillaFirefox-translations-45.5.1esr-93 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information python3-rpm-4.11.2-16.21 is installed OR rpm-4.11.2-16.21 is installed OR rpm-32bit-4.11.2-16.21 is installed OR rpm-build-4.11.2-16.21 is installed OR rpm-python-4.11.2-16.21 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information cups-filters-1.0.58-15.2 is installed OR cups-filters-cups-browsed-1.0.58-15.2 is installed OR cups-filters-foomatic-rip-1.0.58-15.2 is installed OR cups-filters-ghostscript-1.0.58-15.2 is installed OR libqpdf18-7.1.1-3.3 is installed OR qpdf-7.1.1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_67-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_19-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information nfs-client-1.3.0-34.22 is installed OR nfs-doc-1.3.0-34.22 is installed OR nfs-kernel-server-1.3.0-34.22 is installed OR nfs-utils-1.3.0-34.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND kgraft-patch-4_4_180-94_138-default-10-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kernel-default-4.4.180-94.107 is installed OR kernel-default-base-4.4.180-94.107 is installed OR kernel-default-devel-4.4.180-94.107 is installed OR kernel-default-kgraft-4.4.180-94.107 is installed OR kernel-default-man-4.4.180-94.107 is installed OR kernel-devel-4.4.180-94.107 is installed OR kernel-macros-4.4.180-94.107 is installed OR kernel-source-4.4.180-94.107 is installed OR kernel-syms-4.4.180-94.107 is installed OR kgraft-patch-4_4_180-94_107-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_29-1-4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information python-cryptography-1.3.1-7.13 is installed OR python-pyOpenSSL-16.0.0-4.11 is installed OR python-setuptools-18.0.1-4.8 is installed OR python3-cryptography-1.3.1-7.13 is installed OR python3-pyOpenSSL-16.0.0-4.11 is installed OR python3-setuptools-18.0.1-4.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libvte9-0.28.2-19 is installed OR python-vte-0.28.2-19 is installed OR vte2-lang-0.28.2-19 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information grafana-4.5.1-1.8 is installed OR kafka-0.10.2.2-5 is installed OR logstash-2.4.1-5 is installed OR monasca-installer-20180608_12.47-9 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND python-Werkzeug-0.12.2-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information ardana-ansible-9.0+git.1568821007.4e73730-3.13 is installed OR ardana-horizon-9.0+git.1569869028.8edfc22-3.10 is installed OR ardana-keystone-9.0+git.1570035317.78077ac-3.10 is installed OR ardana-manila-9.0+git.1569444107.add6a40-3.9 is installed OR ardana-neutron-9.0+git.1571328680.3a89cb8-3.13 is installed OR grafana-6.2.5-3.9 is installed OR openstack-cinder-13.0.8~dev8-3.13 is installed OR openstack-cinder-api-13.0.8~dev8-3.13 is installed OR openstack-cinder-backup-13.0.8~dev8-3.13 is installed OR openstack-cinder-scheduler-13.0.8~dev8-3.13 is installed OR openstack-cinder-volume-13.0.8~dev8-3.13 is installed OR openstack-dashboard-14.0.5~dev1-3.9 is installed OR openstack-horizon-plugin-manila-ui-2.16.2~dev2-3.3 is installed OR openstack-keystone-14.1.1~dev26-3.13 is installed OR openstack-manila-7.3.1~dev15-4.13 is installed OR openstack-manila-api-7.3.1~dev15-4.13 is installed OR openstack-manila-data-7.3.1~dev15-4.13 is installed OR openstack-manila-scheduler-7.3.1~dev15-4.13 is installed OR openstack-manila-share-7.3.1~dev15-4.13 is installed OR openstack-neutron-13.0.6~dev3-3.13 is installed OR openstack-neutron-dhcp-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-fwaas-13.0.3~dev2-3.6 is installed OR openstack-neutron-ha-tool-13.0.6~dev3-3.13 is installed OR openstack-neutron-l3-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-lbaas-13.0.1~dev15-3.10 is installed OR openstack-neutron-lbaas-agent-13.0.1~dev15-3.10 is installed OR openstack-neutron-linuxbridge-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-macvtap-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-metadata-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-metering-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-openvswitch-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-server-13.0.6~dev3-3.13 is installed OR openstack-nova-18.2.4~dev18-3.13 is installed OR openstack-nova-api-18.2.4~dev18-3.13 is installed OR openstack-nova-cells-18.2.4~dev18-3.13 is installed OR openstack-nova-compute-18.2.4~dev18-3.13 is installed OR openstack-nova-conductor-18.2.4~dev18-3.13 is installed OR openstack-nova-console-18.2.4~dev18-3.13 is installed OR openstack-nova-novncproxy-18.2.4~dev18-3.13 is installed OR openstack-nova-placement-api-18.2.4~dev18-3.13 is installed OR openstack-nova-scheduler-18.2.4~dev18-3.13 is installed OR openstack-nova-serialproxy-18.2.4~dev18-3.13 is installed OR openstack-nova-vncproxy-18.2.4~dev18-3.13 is installed OR openstack-octavia-3.2.1~dev1-3.13 is installed OR openstack-octavia-amphora-agent-3.2.1~dev1-3.13 is installed OR openstack-octavia-amphora-image-0.1.1-7.3 is installed OR openstack-octavia-amphora-image-x86_64-0.1.1-7.3 is installed OR openstack-octavia-api-3.2.1~dev1-3.13 is installed OR openstack-octavia-health-manager-3.2.1~dev1-3.13 is installed OR openstack-octavia-housekeeping-3.2.1~dev1-3.13 is installed OR openstack-octavia-worker-3.2.1~dev1-3.13 is installed OR pdns-4.1.8-3.3 is installed OR pdns-backend-mysql-4.1.8-3.3 is installed OR python-Django1-1.11.24-3.12 is installed OR python-cinder-13.0.8~dev8-3.13 is installed OR python-horizon-14.0.5~dev1-3.9 is installed OR python-horizon-plugin-manila-ui-2.16.2~dev2-3.3 is installed OR python-keystone-14.1.1~dev26-3.13 is installed OR python-keystonemiddleware-5.2.1-11 is installed OR python-manila-7.3.1~dev15-4.13 is installed OR python-neutron-13.0.6~dev3-3.13 is installed OR python-neutron-fwaas-13.0.3~dev2-3.6 is installed OR python-neutron-lbaas-13.0.1~dev15-3.10 is installed OR python-nova-18.2.4~dev18-3.13 is installed OR python-octavia-3.2.1~dev1-3.13 is installed OR python-octaviaclient-1.6.1-3.3 is installed OR python-openstack_auth-14.0.5~dev1-3.9 is installed OR python-os-brick-2.5.8-3.6 is installed OR python-os-brick-common-2.5.8-3.6 is installed OR python-oslo.cache-1.30.4-3.3 is installed OR python-oslo.messaging-8.1.4-3.3 is installed OR venv-openstack-barbican-7.0.1~dev18-3.11 is installed OR venv-openstack-barbican-x86_64-7.0.1~dev18-3.11 is installed OR venv-openstack-cinder-13.0.8~dev8-3.11 is installed OR venv-openstack-cinder-x86_64-13.0.8~dev8-3.11 is installed OR venv-openstack-designate-7.0.1~dev22-3.11 is installed OR venv-openstack-designate-x86_64-7.0.1~dev22-3.11 is installed OR venv-openstack-glance-17.0.1~dev30-3.11 is installed OR venv-openstack-glance-x86_64-17.0.1~dev30-3.11 is installed OR venv-openstack-heat-11.0.3~dev23-3.11 is installed OR venv-openstack-heat-x86_64-11.0.3~dev23-3.11 is installed OR venv-openstack-horizon-14.0.5~dev1-4.11 is installed OR venv-openstack-horizon-x86_64-14.0.5~dev1-4.11 is installed OR venv-openstack-keystone-14.1.1~dev26-3.11 is installed OR venv-openstack-keystone-x86_64-14.1.1~dev26-3.11 is installed OR venv-openstack-magnum-7.1.1~dev28-4.11 is installed OR venv-openstack-magnum-x86_64-7.1.1~dev28-4.11 is installed OR venv-openstack-manila-7.3.1~dev15-3.11 is installed OR venv-openstack-manila-x86_64-7.3.1~dev15-3.11 is installed OR venv-openstack-monasca-2.7.1~dev10-3.11 is installed OR venv-openstack-monasca-ceilometer-1.8.2~dev3-3.11 is installed OR venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.11 is installed OR venv-openstack-monasca-x86_64-2.7.1~dev10-3.11 is installed OR venv-openstack-neutron-13.0.6~dev3-6.11 is installed OR venv-openstack-neutron-x86_64-13.0.6~dev3-6.11 is installed OR venv-openstack-nova-18.2.4~dev18-3.11 is installed OR venv-openstack-nova-x86_64-18.2.4~dev18-3.11 is installed OR venv-openstack-octavia-3.2.1~dev1-4.11 is installed OR venv-openstack-octavia-x86_64-3.2.1~dev1-4.11 is installed OR venv-openstack-sahara-9.0.2~dev12-3.11 is installed OR venv-openstack-sahara-x86_64-9.0.2~dev12-3.11 is installed OR venv-openstack-swift-2.19.2~dev1-2.8 is installed OR venv-openstack-swift-x86_64-2.19.2~dev1-2.8 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information krb5-appl-1.0.3-3.3 is installed OR krb5-appl-clients-1.0.3-3.3 is installed OR krb5-appl-servers-1.0.3-3.3 is installed
BACK