Oval Definition:	oval:org.opensuse.security:def:58061
Revision Date: 2021-02-10 Version: 1 Title: Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important) Description: This update for the Linux Kernel 4.4.180-94_135 fixes several issues. The following security issues were fixed: - CVE-2020-36158: Fixed a potential remote code execution in the Marvell mwifiex driver (bsc#1180562). - CVE-2020-0465: Fixed multiple missing bounds checks in hid-multitouch.c that could have led to local privilege escalation (bnc#1180030). - CVE-2020-0466: Fixed a use-after-free due to a logic error in do_epoll_ctl and ep_loop_check_proc of eventpoll.c (bnc#1180032. - CVE-2020-29569: Fixed a use after free due to a logic error (bsc#1180008). - CVE-2020-29660: Fixed a locking inconsistency in the tty subsystem that may have allowed a read-after-free attack against TIOCGSID (bsc#1179877). - CVE-2020-29661: Fixed a locking issue in the tty subsystem that allowed a use-after-free attack against TIOCSPGRP (bsc#1179877). Family: unix Class: patch Status: Reference(s): 1027282 1031702 1037396 1041090 1041764 1042670 1045986 1065083 1073269 1073313 1073748 1077080 1078326 1078485 1081750 1082692 1084650 1086001 1090338 1096740 1118595 1118596 1129346 1130103 1130847 1133191 1133528 1136446 1136935 1137597 1140868 1144504 1149458 1149496 1149792 1151839 1153830 1155094 1158763 1159035 1162224 1162367 1162825 1165894 1169947 1170411 1171561 1172402 1172906 1172935 1173197 1174421 1174922 1174923 1178038 1179877 1180008 1180030 1180032 1180562 945401 CVE-2017-1000368 CVE-2017-17740 CVE-2017-17997 CVE-2017-9287 CVE-2018-15518 CVE-2018-19873 CVE-2018-3665 CVE-2018-7320 CVE-2018-7321 CVE-2018-7322 CVE-2018-7323 CVE-2018-7324 CVE-2018-7325 CVE-2018-7326 CVE-2018-7327 CVE-2018-7328 CVE-2018-7329 CVE-2018-7330 CVE-2018-7331 CVE-2018-7332 CVE-2018-7333 CVE-2018-7334 CVE-2018-7335 CVE-2018-7336 CVE-2018-7337 CVE-2018-7417 CVE-2018-7418 CVE-2018-7419 CVE-2018-7420 CVE-2018-7421 CVE-2019-11477 CVE-2019-11478 CVE-2019-11487 CVE-2019-11709 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11719 CVE-2019-11729 CVE-2019-11730 CVE-2019-12625 CVE-2019-12900 CVE-2019-18348 CVE-2019-18900 CVE-2019-3846 CVE-2019-3859 CVE-2019-5482 CVE-2019-9636 CVE-2019-9674 CVE-2019-9811 CVE-2019-9948 CVE-2020-0465 CVE-2020-0466 CVE-2020-12405 CVE-2020-12406 CVE-2020-12410 CVE-2020-12673 CVE-2020-12674 CVE-2020-14093 CVE-2020-14154 CVE-2020-14954 CVE-2020-15705 CVE-2020-29569 CVE-2020-29660 CVE-2020-29661 CVE-2020-36158 CVE-2020-8492 SUSE-SU-2017:1771-1 SUSE-SU-2018:0811-1 SUSE-SU-2018:2091-1 SUSE-SU-2018:4183-1 SUSE-SU-2019:0931-1 SUSE-SU-2019:1060-1 SUSE-SU-2019:1439-1 SUSE-SU-2019:1861-1 SUSE-SU-2019:2339-2 SUSE-SU-2019:3066-1 SUSE-SU-2020:1524-1 SUSE-SU-2020:1563-1 SUSE-SU-2020:1794-1 SUSE-SU-2020:2274-1 SUSE-SU-2020:2308-1 SUSE-SU-2020:3367-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information libgcrypt20-1.8.2-lp150.4 is installed OR libgcrypt20-32bit-1.8.2-lp150.4 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information MozillaThunderbird-68.2.1-lp151.2.16 is installed OR MozillaThunderbird-translations-common-68.2.1-lp151.2.16 is installed OR MozillaThunderbird-translations-other-68.2.1-lp151.2.16 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information libldap-2_4-2-2.4.41-18.24.9 is installed OR libldap-2_4-2-32bit-2.4.41-18.24.9 is installed OR openldap2-2.4.41-18.24.9 is installed OR openldap2-back-meta-2.4.41-18.24.9 is installed OR openldap2-client-2.4.41-18.24.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND sudo-1.8.10p3-10.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libpython2_7-1_0-2.7.13-28.26 is installed OR libpython2_7-1_0-32bit-2.7.13-28.26 is installed OR python-2.7.13-28.26 is installed OR python-32bit-2.7.13-28.26 is installed OR python-base-2.7.13-28.26 is installed OR python-base-32bit-2.7.13-28.26 is installed OR python-curses-2.7.13-28.26 is installed OR python-demo-2.7.13-28.26 is installed OR python-doc-2.7.13-28.26 is installed OR python-doc-pdf-2.7.13-28.26 is installed OR python-gdbm-2.7.13-28.26 is installed OR python-idle-2.7.13-28.26 is installed OR python-tk-2.7.13-28.26 is installed OR python-xml-2.7.13-28.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_103-92_56-default-12-2 is installed OR kgraft-patch-SLE12-SP2_Update_17-12-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_35-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_12-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND clamav-0.99.2-32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information MozillaFirefox-68.9.0-109.123 is installed OR MozillaFirefox-translations-common-68.9.0-109.123 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND kgraft-patch-4_4_180-94_135-default-3-2.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information LibVNCServer-0.9.9-17.31 is installed OR libvncclient0-0.9.9-17.31 is installed OR libvncserver0-0.9.9-17.31 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information bluez-5.13-5.12 is installed OR libbluetooth3-5.13-5.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND pigz-2.3-5 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information libQt5Concurrent5-5.6.1-17.6 is installed OR libQt5Core5-5.6.1-17.6 is installed OR libQt5DBus5-5.6.1-17.6 is installed OR libQt5Gui5-5.6.1-17.6 is installed OR libQt5Network5-5.6.1-17.6 is installed OR libQt5OpenGL5-5.6.1-17.6 is installed OR libQt5PrintSupport5-5.6.1-17.6 is installed OR libQt5Sql5-5.6.1-17.6 is installed OR libQt5Sql5-mysql-5.6.1-17.6 is installed OR libQt5Sql5-postgresql-5.6.1-17.6 is installed OR libQt5Sql5-sqlite-5.6.1-17.6 is installed OR libQt5Sql5-unixODBC-5.6.1-17.6 is installed OR libQt5Test5-5.6.1-17.6 is installed OR libQt5Widgets5-5.6.1-17.6 is installed OR libQt5Xml5-5.6.1-17.6 is installed OR libqt5-qtbase-5.6.1-17.6 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND git-2.12.3-27.14 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND python-SQLAlchemy-1.1.12-3.5 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information xen-4.11.4_04-2.30 is installed OR xen-doc-html-4.11.4_04-2.30 is installed OR xen-libs-4.11.4_04-2.30 is installed OR xen-libs-32bit-4.11.4_04-2.30 is installed OR xen-tools-4.11.4_04-2.30 is installed OR xen-tools-domU-4.11.4_04-2.30 is installed
BACK