Oval Definition:	oval:org.opensuse.security:def:58027
Revision Date: 2021-10-18 Version: 1 Title: Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important) Description: This update for the Linux Kernel 4.4.180-94_135 fixes several issues. The following security issues were fixed: - CVE-2021-3715: Fixed a user-after-free in the Linux kernel's Traffic Control networking subsystem which could lead to local privilege escalation. (bsc#1190350). - CVE-2021-38160: Fixed a bug that could lead to a data corruption or loss. This can be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size in drivers/char/virtio_console.c (bsc#1190118) - CVE-2021-3640: Fixed a user-after-free bug in the function sco_sock_sendmsg which could lead to local privilege escalation. (bsc#1188613) - CVE-2021-3573: Fixed a user-after-free bug in the function hci_sock_bound_ioctl which could lead to local privilege escalation. (bsc#1187054). Family: unix Class: patch Status: Reference(s): 1012382 1015422 1027519 1035442 1051729 1056058 1061081 1066242 1068032 1070158 1070159 1070160 1070163 1072322 1074562 1075697 1076116 1076180 1082943 1086039 1087066 1089152 1089635 1090023 1090024 1090025 1090026 1090027 1090028 1090029 1090030 1090032 1090033 1090820 1090822 1090823 1096254 1098599 1102959 1105402 1107829 1108145 1108382 1109137 1109330 1110286 1112209 1113534 1113652 1113742 1117645 1119019 1119947 1120691 1121571 1121698 1121805 1121816 1121818 1121821 1122293 1122299 1122821 1124728 1124732 1124735 1125315 1127155 1127758 1127961 1128166 1129080 1129179 1132728 1132729 1132732 1133135 1133190 1133738 1134395 1134701 1136922 1136935 1137194 1138291 1139945 1140575 1154824 1155321 1156318 1156353 1159329 1159856 1159858 1159860 1160250 1160251 1160937 1161719 1163809 1165528 1169658 1172466 1176421 1187054 1188613 1190118 1190350 CVE-2016-9893 CVE-2016-9895 CVE-2016-9897 CVE-2016-9898 CVE-2016-9899 CVE-2016-9900 CVE-2016-9901 CVE-2016-9902 CVE-2016-9904 CVE-2016-9905 CVE-2017-14919 CVE-2017-15595 CVE-2017-15896 CVE-2017-17563 CVE-2017-17564 CVE-2017-17565 CVE-2017-17566 CVE-2017-18030 CVE-2017-3735 CVE-2017-3736 CVE-2017-3738 CVE-2017-5715 CVE-2017-5753 CVE-2017-5754 CVE-2018-0734 CVE-2018-10471 CVE-2018-10472 CVE-2018-11212 CVE-2018-14633 CVE-2018-14633 CVE-2018-16884 CVE-2018-20685 CVE-2018-20836 CVE-2018-2790 CVE-2018-2794 CVE-2018-2795 CVE-2018-2796 CVE-2018-2797 CVE-2018-2798 CVE-2018-2799 CVE-2018-2800 CVE-2018-2814 CVE-2018-2815 CVE-2018-3639 CVE-2018-5407 CVE-2018-5683 CVE-2018-8897 CVE-2019-10126 CVE-2019-10638 CVE-2019-10639 CVE-2019-11487 CVE-2019-11599 CVE-2019-12380 CVE-2019-12456 CVE-2019-12614 CVE-2019-12781 CVE-2019-12818 CVE-2019-12819 CVE-2019-15691 CVE-2019-15692 CVE-2019-15693 CVE-2019-15694 CVE-2019-15695 CVE-2019-2024 CVE-2019-2024 CVE-2019-2422 CVE-2019-2426 CVE-2019-2602 CVE-2019-2684 CVE-2019-2698 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2019-6974 CVE-2019-6974 CVE-2019-7221 CVE-2019-7221 CVE-2019-7222 CVE-2019-7222 CVE-2019-8625 CVE-2019-8710 CVE-2019-8720 CVE-2019-8743 CVE-2019-8764 CVE-2019-8766 CVE-2019-8769 CVE-2019-8771 CVE-2019-8782 CVE-2019-8783 CVE-2019-8808 CVE-2019-8811 CVE-2019-8812 CVE-2019-8813 CVE-2019-8814 CVE-2019-8815 CVE-2019-8816 CVE-2019-8819 CVE-2019-8820 CVE-2019-8823 CVE-2019-8835 CVE-2019-8844 CVE-2019-8846 CVE-2019-9213 CVE-2019-9213 CVE-2020-0543 CVE-2020-0548 CVE-2020-0549 CVE-2020-10018 CVE-2020-11793 CVE-2020-15169 CVE-2020-3862 CVE-2020-3864 CVE-2020-3865 CVE-2020-3867 CVE-2020-3868 CVE-2021-3573 CVE-2021-3640 CVE-2021-3715 CVE-2021-38160 SUSE-SU-2016:3222-1 SUSE-SU-2018:0293-1 SUSE-SU-2018:0472-1 SUSE-SU-2018:1690-1 SUSE-SU-2018:3230-1 SUSE-SU-2018:3866-1 SUSE-SU-2019:0132-1 SUSE-SU-2019:0828-1 SUSE-SU-2019:1219-1 SUSE-SU-2019:1823-1 SUSE-SU-2019:2379-1 SUSE-SU-2020:0159-1 SUSE-SU-2020:1135-1 SUSE-SU-2020:1595-1 SUSE-SU-2020:2686-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND libXi6-1.7.9-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information apache2-mod_php7-7.2.5-lp151.6.9 is installed OR php7-7.2.5-lp151.6.9 is installed OR php7-bcmath-7.2.5-lp151.6.9 is installed OR php7-bz2-7.2.5-lp151.6.9 is installed OR php7-calendar-7.2.5-lp151.6.9 is installed OR php7-ctype-7.2.5-lp151.6.9 is installed OR php7-curl-7.2.5-lp151.6.9 is installed OR php7-dba-7.2.5-lp151.6.9 is installed OR php7-devel-7.2.5-lp151.6.9 is installed OR php7-dom-7.2.5-lp151.6.9 is installed OR php7-embed-7.2.5-lp151.6.9 is installed OR php7-enchant-7.2.5-lp151.6.9 is installed OR php7-exif-7.2.5-lp151.6.9 is installed OR php7-fastcgi-7.2.5-lp151.6.9 is installed OR php7-fileinfo-7.2.5-lp151.6.9 is installed OR php7-firebird-7.2.5-lp151.6.9 is installed OR php7-fpm-7.2.5-lp151.6.9 is installed OR php7-ftp-7.2.5-lp151.6.9 is installed OR php7-gd-7.2.5-lp151.6.9 is installed OR php7-gettext-7.2.5-lp151.6.9 is installed OR php7-gmp-7.2.5-lp151.6.9 is installed OR php7-iconv-7.2.5-lp151.6.9 is installed OR php7-intl-7.2.5-lp151.6.9 is installed OR php7-json-7.2.5-lp151.6.9 is installed OR php7-ldap-7.2.5-lp151.6.9 is installed OR php7-mbstring-7.2.5-lp151.6.9 is installed OR php7-mysql-7.2.5-lp151.6.9 is installed OR php7-odbc-7.2.5-lp151.6.9 is installed OR php7-opcache-7.2.5-lp151.6.9 is installed OR php7-openssl-7.2.5-lp151.6.9 is installed OR php7-pcntl-7.2.5-lp151.6.9 is installed OR php7-pdo-7.2.5-lp151.6.9 is installed OR php7-pear-7.2.5-lp151.6.9 is installed OR php7-pear-Archive_Tar-7.2.5-lp151.6.9 is installed OR php7-pgsql-7.2.5-lp151.6.9 is installed OR php7-phar-7.2.5-lp151.6.9 is installed OR php7-posix-7.2.5-lp151.6.9 is installed OR php7-readline-7.2.5-lp151.6.9 is installed OR php7-shmop-7.2.5-lp151.6.9 is installed OR php7-snmp-7.2.5-lp151.6.9 is installed OR php7-soap-7.2.5-lp151.6.9 is installed OR php7-sockets-7.2.5-lp151.6.9 is installed OR php7-sodium-7.2.5-lp151.6.9 is installed OR php7-sqlite-7.2.5-lp151.6.9 is installed OR php7-sysvmsg-7.2.5-lp151.6.9 is installed OR php7-sysvsem-7.2.5-lp151.6.9 is installed OR php7-sysvshm-7.2.5-lp151.6.9 is installed OR php7-tidy-7.2.5-lp151.6.9 is installed OR php7-tokenizer-7.2.5-lp151.6.9 is installed OR php7-wddx-7.2.5-lp151.6.9 is installed OR php7-xmlreader-7.2.5-lp151.6.9 is installed OR php7-xmlrpc-7.2.5-lp151.6.9 is installed OR php7-xmlwriter-7.2.5-lp151.6.9 is installed OR php7-xsl-7.2.5-lp151.6.9 is installed OR php7-zip-7.2.5-lp151.6.9 is installed OR php7-zlib-7.2.5-lp151.6.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_88-default-9-2 is installed OR kgraft-patch-3_12_74-60_64_88-xen-9-2 is installed OR kgraft-patch-SLE12-SP1_Update_27-9-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information MozillaFirefox-45.6.0esr-96 is installed OR MozillaFirefox-translations-45.6.0esr-96 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information xen-4.7.5_02-43.30 is installed OR xen-doc-html-4.7.5_02-43.30 is installed OR xen-libs-4.7.5_02-43.30 is installed OR xen-libs-32bit-4.7.5_02-43.30 is installed OR xen-tools-4.7.5_02-43.30 is installed OR xen-tools-domU-4.7.5_02-43.30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_114-92_64-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_18-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-36 is installed OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND clamav-0.100.3-33.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND kgraft-patch-4_4_180-94_135-default-13-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_97-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_26-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ovmf-2017+git1492060560.b6d11d7c46-4.17 is installed OR ovmf-tools-2017+git1492060560.b6d11d7c46-4.17 is installed OR qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-4.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND logrotate-3.11.0-2.11 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND nodejs6-6.12.2-11.8 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libmariadb3-3.0.3-3.3 is installed OR mariadb-10.2.15-4.3 is installed OR mariadb-client-10.2.15-4.3 is installed OR mariadb-connector-c-3.0.3-3.3 is installed OR mariadb-errormessages-10.2.15-4.3 is installed OR mariadb-galera-10.2.15-4.3 is installed OR mariadb-tools-10.2.15-4.3 is installed OR xtrabackup-2.4.10-4.3 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information cobbler-2.6.6-49.26 is installed OR golang-github-prometheus-node_exporter-0.18.1-1.6 is installed
BACK