Oval Definition:oval:org.opensuse.security:def:58063
Revision Date:2021-12-14Version:1
Title:Security update for the Linux Kernel (Live Patch 41 for SLE 12 SP3) (Important)
Description:

This update for the Linux Kernel 4.4.180-94_150 fixes several issues.

The following security issues were fixed:

- CVE-2021-0935: In ip6_xmit of ip6_output.c, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. (bsc#1192032) - CVE-2021-28688: The fix for XSA-365 includes initialization of pointers such that subsequent cleanup code wouldn't use uninitialized or stale values. This initialization went too far and may under certain conditions also overwrite pointers which are in need of cleaning up. The lack of cleanup would result in leaking persistent grants. The leak in turn would prevent fully cleaning up after a respective guest has died, leaving around zombie domains. (bsc#1183646)
Family:unixClass:patch
Status:Reference(s):1046607
1059809
1059811
1086730
1106222
1110910
1111006
1111010
1111013
1111331
1114422
1124593
1131493
1133114
1133145
1137443
1138872
1152856
1154212
1165787
1169511
1169740
1171355
1172651
1173160
1173334
1174120
1174633
1174635
1174638
1178666
1178667
1178668
1182294
1192042
CVE-2017-14632
CVE-2017-14633
CVE-2017-7526
CVE-2018-1000140
CVE-2018-10839
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2018-15746
CVE-2018-17958
CVE-2018-17962
CVE-2018-17963
CVE-2018-18849
CVE-2018-8956
CVE-2019-11091
CVE-2019-11365
CVE-2019-11366
CVE-2019-11708
CVE-2019-12735
CVE-2019-2894
CVE-2019-2933
CVE-2019-2945
CVE-2019-2949
CVE-2019-2958
CVE-2019-2962
CVE-2019-2964
CVE-2019-2973
CVE-2019-2978
CVE-2019-2981
CVE-2019-2983
CVE-2019-2987
CVE-2019-2988
CVE-2019-2989
CVE-2019-2992
CVE-2019-2999
CVE-2019-5953
CVE-2019-7164
CVE-2019-7548
CVE-2020-10188
CVE-2020-10745
CVE-2020-11868
CVE-2020-13817
CVE-2020-14345
CVE-2020-14346
CVE-2020-14347
CVE-2020-15025
CVE-2020-25694
CVE-2020-25695
CVE-2020-25696
CVE-2020-2756
CVE-2020-2757
CVE-2020-2773
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2830
CVE-2021-0935
CVE-2021-28688
SUSE-SU-2017:1794-1
SUSE-SU-2018:0015-1
SUSE-SU-2018:0828-1
SUSE-SU-2018:4237-1
SUSE-SU-2019:0956-1
SUSE-SU-2019:1091-1
SUSE-SU-2019:1456-1
SUSE-SU-2019:1684-1
SUSE-SU-2019:1954-1
SUSE-SU-2019:2350-1
SUSE-SU-2019:3084-1
SUSE-SU-2020:1533-1
SUSE-SU-2020:1571-1
SUSE-SU-2020:1805-1
SUSE-SU-2020:2312-1
SUSE-SU-2020:2331-1
SUSE-SU-2020:3464-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libgif7-5.1.4-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • python-ecdsa-0.13.3-lp151.3.3 is installed
  • OR python2-ecdsa-0.13.3-lp151.3.3 is installed
  • OR python3-ecdsa-0.13.3-lp151.3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND wget-1.14-21.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libgcrypt-1.6.1-16.42 is installed
  • OR libgcrypt20-1.6.1-16.42 is installed
  • OR libgcrypt20-32bit-1.6.1-16.42 is installed
  • OR libgcrypt20-hmac-1.6.1-16.42 is installed
  • OR libgcrypt20-hmac-32bit-1.6.1-16.42 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • gvim-7.4.326-17.3 is installed
  • OR vim-7.4.326-17.3 is installed
  • OR vim-data-7.4.326-17.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_114-92_67-default-10-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_19-10-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • MozillaFirefox-60.7.2-109.80 is installed
  • OR MozillaFirefox-devel-60.7.2-109.80 is installed
  • OR MozillaFirefox-translations-common-60.7.2-109.80 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND coolkey-1.1.0-147 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.261-43.38 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.261-43.38 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.261-43.38 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.261-43.38 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND kgraft-patch-4_4_180-94_150-default-2-2.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • dpdk-16.11.9-8.15 is installed
  • OR dpdk-kmp-default-16.11.9_k4.4.180_94.127-8.15 is installed
  • OR dpdk-thunderx-16.11.9-8.15 is installed
  • OR dpdk-thunderx-kmp-default-16.11.9_k4.4.180_94.127-8.15 is installed
  • OR dpdk-tools-16.11.9-8.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libsystemd0-228-150.58 is installed
  • OR libsystemd0-32bit-228-150.58 is installed
  • OR libudev1-228-150.58 is installed
  • OR libudev1-32bit-228-150.58 is installed
  • OR systemd-228-150.58 is installed
  • OR systemd-32bit-228-150.58 is installed
  • OR systemd-bash-completion-228-150.58 is installed
  • OR systemd-sysvinit-228-150.58 is installed
  • OR udev-228-150.58 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND powerpc-utils-1.3.5-3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • qemu-2.6.2-41.46 is installed
  • OR qemu-block-curl-2.6.2-41.46 is installed
  • OR qemu-block-rbd-2.6.2-41.46 is installed
  • OR qemu-block-ssh-2.6.2-41.46 is installed
  • OR qemu-guest-agent-2.6.2-41.46 is installed
  • OR qemu-ipxe-1.0.0-41.46 is installed
  • OR qemu-kvm-2.6.2-41.46 is installed
  • OR qemu-lang-2.6.2-41.46 is installed
  • OR qemu-s390-2.6.2-41.46 is installed
  • OR qemu-seabios-1.9.1-41.46 is installed
  • OR qemu-sgabios-8-41.46 is installed
  • OR qemu-tools-2.6.2-41.46 is installed
  • OR qemu-vgabios-1.9.1-41.46 is installed
  • OR qemu-x86-2.6.2-41.46 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND slf4j-1.7.12-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • perl-5.18.2-12.20 is installed
  • OR perl-32bit-5.18.2-12.20 is installed
  • OR perl-base-5.18.2-12.20 is installed
  • OR perl-doc-5.18.2-12.20 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-ipaddress-1.0.22-3.3 is installed
    • BACK