Oval Definition:	oval:org.opensuse.security:def:58101
Revision Date: 2021-03-17 Version: 1 Title: Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important) Description: This update for the Linux Kernel 4.4.180-94_127 fixes several issues. The following security issues were fixed: - CVE-2021-3347: Fixed a use-after-free in the PI futexes during fault handling, allowing local users to execute code in the kernel (bsc#1181553). - CVE-2020-27786: Fixed a potential user after free which could have led to memory corruption or privilege escalation (bsc#1179616). - CVE-2020-28374: Fixed insufficient identifier checking in the LIO SCSI target code which could have been used by remote attackers to read or write files via directory traversal in an XCOPY request (bsc#1178684). Family: unix Class: patch Status: Reference(s): 1005258 1012382 1015203 1021669 1022804 1034273 1068664 1075697 1077330 1082943 1090036 1094291 1098599 1102682 1102959 1103203 1105323 1105402 1106191 1107829 1108145 1109137 1109330 1110286 1117645 1119019 1120691 1121571 1121698 1121805 1121816 1121818 1121821 1122821 1124728 1124732 1124735 1125315 1127155 1127758 1127961 1128166 1128481 1129080 1129179 1136570 1149294 1149295 1149296 1149297 1149298 1149299 1149303 1149304 1149324 1149496 1152856 1153451 1153459 1154212 1159208 1159623 1160467 1160468 1163927 1163959 1163969 1167890 1168930 1174421 1176579 1178684 1179616 1181553 CVE-2012-0876 CVE-2016-0718 CVE-2016-1245 CVE-2016-4472 CVE-2016-9063 CVE-2017-1000158 CVE-2017-5495 CVE-2017-9233 CVE-2018-0739 CVE-2018-1000199 CVE-2018-10902 CVE-2018-10938 CVE-2018-14633 CVE-2018-20685 CVE-2018-5390 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11752 CVE-2019-11753 CVE-2019-14559 CVE-2019-14563 CVE-2019-14575 CVE-2019-14896 CVE-2019-14897 CVE-2019-17041 CVE-2019-17042 CVE-2019-2024 CVE-2019-2894 CVE-2019-2933 CVE-2019-2945 CVE-2019-2949 CVE-2019-2958 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2987 CVE-2019-2988 CVE-2019-2989 CVE-2019-2992 CVE-2019-2999 CVE-2019-3860 CVE-2019-5482 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2019-6974 CVE-2019-7221 CVE-2019-7222 CVE-2019-9213 CVE-2019-9812 CVE-2020-1472 CVE-2020-15705 CVE-2020-27786 CVE-2020-28374 CVE-2020-5260 CVE-2021-3347 SUSE-SU-2017:2294-1 SUSE-SU-2018:1239-1 SUSE-SU-2019:0132-1 SUSE-SU-2019:0828-1 SUSE-SU-2019:1606-1 SUSE-SU-2019:2339-2 SUSE-SU-2019:2436-1 SUSE-SU-2019:3084-1 SUSE-SU-2020:0424-1 SUSE-SU-2020:0495-1 SUSE-SU-2020:0497-1 SUSE-SU-2020:0992-1 SUSE-SU-2020:2308-1 SUSE-SU-2020:2724-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND libopenjp2-7-2.3.0-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND haproxy-2.0.10+git0.ac198b92-lp151.2.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information rsyslog-8.4.0-13.8 is installed OR rsyslog-diag-tools-8.4.0-13.8 is installed OR rsyslog-doc-8.4.0-13.8 is installed OR rsyslog-module-gssapi-8.4.0-13.8 is installed OR rsyslog-module-gtls-8.4.0-13.8 is installed OR rsyslog-module-mysql-8.4.0-13.8 is installed OR rsyslog-module-pgsql-8.4.0-13.8 is installed OR rsyslog-module-relp-8.4.0-13.8 is installed OR rsyslog-module-snmp-8.4.0-13.8 is installed OR rsyslog-module-udpspoof-8.4.0-13.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libfpm_pb0-1.1.1-17.3 is installed OR libospf0-1.1.1-17.3 is installed OR libospfapiclient0-1.1.1-17.3 is installed OR libquagga_pb0-1.1.1-17.3 is installed OR libzebra1-1.1.1-17.3 is installed OR quagga-1.1.1-17.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information curl-7.37.0-37.43 is installed OR libcurl4-7.37.0-37.43 is installed OR libcurl4-32bit-7.37.0-37.43 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_7_0-openjdk-1.7.0.221-43.22 is installed OR java-1_7_0-openjdk-demo-1.7.0.221-43.22 is installed OR java-1_7_0-openjdk-devel-1.7.0.221-43.22 is installed OR java-1_7_0-openjdk-headless-1.7.0.221-43.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_85-default-3-2 is installed OR kgraft-patch-SLE12-SP2_Update_23-3-2 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cpp48-4.8.5-30 is installed OR gcc48-4.8.5-30 is installed OR gcc48-32bit-4.8.5-30 is installed OR gcc48-c++-4.8.5-30 is installed OR gcc48-info-4.8.5-30 is installed OR gcc48-locale-4.8.5-30 is installed OR libasan0-4.8.5-30 is installed OR libasan0-32bit-4.8.5-30 is installed OR libstdc++48-devel-4.8.5-30 is installed OR libstdc++48-devel-32bit-4.8.5-30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information dpdk-16.11.9-8.15 is installed OR dpdk-kmp-default-16.11.9_k4.4.180_94.127-8.15 is installed OR dpdk-tools-16.11.9-8.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND kgraft-patch-4_4_180-94_127-default-7-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kernel-default-4.4.180-94.116 is installed OR kernel-default-base-4.4.180-94.116 is installed OR kernel-default-devel-4.4.180-94.116 is installed OR kernel-default-kgraft-4.4.180-94.116 is installed OR kernel-default-man-4.4.180-94.116 is installed OR kernel-devel-4.4.180-94.116 is installed OR kernel-macros-4.4.180-94.116 is installed OR kernel-source-4.4.180-94.116 is installed OR kernel-syms-4.4.180-94.116 is installed OR kgraft-patch-4_4_180-94_116-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_31-1-4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND xrdp-0.9.0~git.1456906198.f422461-21.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND supportutils-3.0-95.18 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information openssh-7.2p2-74.35 is installed OR openssh-askpass-gnome-7.2p2-74.35 is installed OR openssh-fips-7.2p2-74.35 is installed OR openssh-helpers-7.2p2-74.35 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information kernel-default-4.4.180-94.103 is installed OR kernel-default-base-4.4.180-94.103 is installed OR kernel-default-devel-4.4.180-94.103 is installed OR kernel-devel-4.4.180-94.103 is installed OR kernel-macros-4.4.180-94.103 is installed OR kernel-source-4.4.180-94.103 is installed OR kernel-syms-4.4.180-94.103 is installed OR kgraft-patch-4_4_180-94_103-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_28-1-4.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-loofah-2.0.2-3.8 is installed OR rubygem-loofah-2.0.2-3.8 is installed
BACK