Oval Definition:	oval:org.opensuse.security:def:58062
Revision Date: 2021-02-10 Version: 1 Title: Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important) Description: This update for the Linux Kernel 4.4.180-94_130 fixes several issues. The following security issues were fixed: - CVE-2020-36158: Fixed a potential remote code execution in the Marvell mwifiex driver (bsc#1180562). - CVE-2020-0465: Fixed multiple missing bounds checks in hid-multitouch.c that could have led to local privilege escalation (bnc#1180030). - CVE-2020-0466: Fixed a use-after-free due to a logic error in do_epoll_ctl and ep_loop_check_proc of eventpoll.c (bnc#1180032. - CVE-2020-29569: Fixed a use after free due to a logic error (bsc#1180008). - CVE-2020-29660: Fixed a locking inconsistency in the tty subsystem that may have allowed a read-after-free attack against TIOCGSID (bsc#1179877). - CVE-2020-29661: Fixed a locking issue in the tty subsystem that allowed a use-after-free attack against TIOCSPGRP (bsc#1179877). Family: unix Class: patch Status: Reference(s): 1043983 1044000 1044002 1044006 1044008 1044009 1044077 1044122 1048072 1051042 1053188 1055265 1056286 1056782 1058754 1058755 1058757 1062452 1063675 1064569 1064580 1064583 1069607 1069632 1070905 1071319 1073002 1073231 1074293 1077001 1078782 1082007 1082008 1082009 1082010 1082011 1082014 1082058 1087433 1087434 1087436 1087437 1087440 1087441 1090671 1097410 1104205 1106873 1109209 1112530 1112532 1115550 1118277 1119069 1119105 1119183 1121816 1121821 1122319 1123156 1130611 1130617 1130620 1130622 1130623 1130627 1133191 1135715 1136446 1136935 1137597 1146873 1148931 1149811 1152990 1152992 1152994 1152995 1154328 1161066 1163018 1166240 1167373 1170940 1171517 1172275 1173160 1173304 1174120 1174421 1178512 1179877 1180008 1180030 1180032 1180562 CVE-2015-9096 CVE-2016-2339 CVE-2016-7798 CVE-2017-0898 CVE-2017-0899 CVE-2017-0900 CVE-2017-0901 CVE-2017-0902 CVE-2017-0903 CVE-2017-1000408 CVE-2017-1000409 CVE-2017-10784 CVE-2017-14033 CVE-2017-14064 CVE-2017-15670 CVE-2017-15671 CVE-2017-15804 CVE-2017-16997 CVE-2017-17405 CVE-2017-17742 CVE-2017-17790 CVE-2017-9122 CVE-2017-9123 CVE-2017-9124 CVE-2017-9125 CVE-2017-9126 CVE-2017-9127 CVE-2017-9128 CVE-2017-9228 CVE-2017-9229 CVE-2018-0495 CVE-2018-1000001 CVE-2018-1000007 CVE-2018-1000073 CVE-2018-1000074 CVE-2018-1000075 CVE-2018-1000076 CVE-2018-1000077 CVE-2018-1000078 CVE-2018-1000079 CVE-2018-12384 CVE-2018-12404 CVE-2018-12405 CVE-2018-14526 CVE-2018-16395 CVE-2018-16396 CVE-2018-17466 CVE-2018-18492 CVE-2018-18493 CVE-2018-18494 CVE-2018-18498 CVE-2018-19788 CVE-2018-6914 CVE-2018-8777 CVE-2018-8778 CVE-2018-8779 CVE-2018-8780 CVE-2019-11477 CVE-2019-11478 CVE-2019-11487 CVE-2019-12068 CVE-2019-15845 CVE-2019-15890 CVE-2019-16201 CVE-2019-16254 CVE-2019-16255 CVE-2019-18860 CVE-2019-3693 CVE-2019-3846 CVE-2019-6109 CVE-2019-6111 CVE-2019-6116 CVE-2019-6778 CVE-2019-8320 CVE-2019-8321 CVE-2019-8322 CVE-2019-8323 CVE-2019-8324 CVE-2019-8325 CVE-2019-8595 CVE-2019-8607 CVE-2019-8615 CVE-2019-8644 CVE-2019-8649 CVE-2019-8658 CVE-2019-8666 CVE-2019-8669 CVE-2019-8671 CVE-2019-8672 CVE-2019-8673 CVE-2019-8676 CVE-2019-8677 CVE-2019-8678 CVE-2019-8679 CVE-2019-8680 CVE-2019-8681 CVE-2019-8683 CVE-2019-8684 CVE-2019-8686 CVE-2019-8687 CVE-2019-8688 CVE-2019-8689 CVE-2019-8690 CVE-2020-0465 CVE-2020-0466 CVE-2020-10663 CVE-2020-10745 CVE-2020-14059 CVE-2020-15705 CVE-2020-1711 CVE-2020-1983 CVE-2020-28196 CVE-2020-29569 CVE-2020-29660 CVE-2020-29661 CVE-2020-36158 CVE-2020-7039 CVE-2020-8608 SUSE-SU-2017:1769-1 SUSE-SU-2018:0074-1 SUSE-SU-2018:0217-1 SUSE-SU-2018:4236-1 SUSE-SU-2019:0019-1 SUSE-SU-2019:0144-1 SUSE-SU-2019:0941-1 SUSE-SU-2019:1088-1 SUSE-SU-2019:2345-2 SUSE-SU-2019:3076-1 SUSE-SU-2020:1526-1 SUSE-SU-2020:1570-1 SUSE-SU-2020:1803-1 SUSE-SU-2020:2308-1 SUSE-SU-2020:2312-1 SUSE-SU-2020:3379-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND libgd3-2.2.5-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information gdal-2.4.3-lp151.3.3 is installed OR gdal-devel-2.4.3-lp151.3.3 is installed OR libgdal20-2.4.3-lp151.3.3 is installed OR perl-gdal-2.4.3-lp151.3.3 is installed OR python2-GDAL-2.4.3-lp151.3.3 is installed OR python3-GDAL-2.4.3-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information openssh-6.6p1-54.32 is installed OR openssh-askpass-gnome-6.6p1-54.32 is installed OR openssh-fips-6.6p1-54.32 is installed OR openssh-helpers-6.6p1-54.32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libquicktime-1.2.4-13 is installed OR libquicktime0-1.2.4-13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information ghostscript-9.26a-23.19 is installed OR ghostscript-x11-9.26a-23.19 is installed OR libspectre-0.2.7-12.6 is installed OR libspectre1-0.2.7-12.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_103-92_53-default-12-2 is installed OR kgraft-patch-SLE12-SP2_Update_16-12-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_101-default-3-2 is installed OR kgraft-patch-SLE12-SP2_Update_27-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information colord-gtk-lang-0.1.26-6 is installed OR libcolord-gtk1-0.1.26-6 is installed OR libcolord2-1.3.3-12 is installed OR libcolord2-32bit-1.3.3-12 is installed OR libcolorhug2-1.3.3-12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libruby2_1-2_1-2.1.9-19.3 is installed OR ruby2.1-2.1.9-19.3 is installed OR ruby2.1-stdlib-2.1.9-19.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND kgraft-patch-4_4_180-94_130-default-5-2.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information xen-4.9.4_10-3.71 is installed OR xen-doc-html-4.9.4_10-3.71 is installed OR xen-libs-4.9.4_10-3.71 is installed OR xen-libs-32bit-4.9.4_10-3.71 is installed OR xen-tools-4.9.4_10-3.71 is installed OR xen-tools-domU-4.9.4_10-3.71 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.45-38.37 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.45-38.37 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.45-38.37 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.45-38.37 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information policycoreutils-2.5-10.3 is installed OR policycoreutils-python-2.5-10.3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information MozillaFirefox-60.4.0esr-109.55 is installed OR MozillaFirefox-devel-60.4.0esr-109.55 is installed OR MozillaFirefox-translations-common-60.4.0esr-109.55 is installed OR libfreebl3-3.40.1-58.18 is installed OR libfreebl3-32bit-3.40.1-58.18 is installed OR libsoftokn3-3.40.1-58.18 is installed OR libsoftokn3-32bit-3.40.1-58.18 is installed OR mozilla-nspr-4.20-19.6 is installed OR mozilla-nspr-32bit-4.20-19.6 is installed OR mozilla-nss-3.40.1-58.18 is installed OR mozilla-nss-32bit-3.40.1-58.18 is installed OR mozilla-nss-certs-3.40.1-58.18 is installed OR mozilla-nss-certs-32bit-3.40.1-58.18 is installed OR mozilla-nss-sysinit-3.40.1-58.18 is installed OR mozilla-nss-sysinit-32bit-3.40.1-58.18 is installed OR mozilla-nss-tools-3.40.1-58.18 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information pdns-4.1.2-3.3 is installed OR pdns-backend-mysql-4.1.2-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information MozillaFirefox-78.0.1-112.3 is installed OR MozillaFirefox-branding-SLE-78-35.3 is installed OR MozillaFirefox-devel-78.0.1-112.3 is installed OR MozillaFirefox-translations-common-78.0.1-112.3 is installed
BACK