Oval Definition:	oval:org.opensuse.security:def:58104
Revision Date: 2021-03-17 Version: 1 Title: Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP3) (Important) Description: This update for the Linux Kernel 4.4.180-94_116 fixes several issues. The following security issues were fixed: - CVE-2021-3347: Fixed a use-after-free in the PI futexes during fault handling, allowing local users to execute code in the kernel (bsc#1181553). - CVE-2020-27786: Fixed a potential user after free which could have led to memory corruption or privilege escalation (bsc#1179616). - CVE-2020-28374: Fixed insufficient identifier checking in the LIO SCSI target code which could have been used by remote attackers to read or write files via directory traversal in an XCOPY request (bsc#1178684). Family: unix Class: patch Status: Reference(s): 1006592 1015203 1022804 1054429 1076958 1084632 1084682 1087920 1088268 1090036 1093414 1096723 1102682 1105323 1106191 1129180 1131233 1131237 1131239 1131241 1131245 1131863 1134156 1135170 1140359 1144524 1146882 1146884 1150011 1150734 1153451 1153459 1154212 1157198 1158442 1162610 1166847 1168994 1172205 1173378 1173380 1173812 1174463 1174570 1175534 1176343 1176344 1176345 1176346 1176347 1176348 1176349 1176350 1178684 1179616 1181553 929629 CVE-2013-5653 CVE-2014-8146 CVE-2014-8147 CVE-2017-0861 CVE-2017-15107 CVE-2018-1000026 CVE-2018-1000199 CVE-2018-10902 CVE-2018-10938 CVE-2018-5390 CVE-2019-0196 CVE-2019-0197 CVE-2019-0211 CVE-2019-0217 CVE-2019-0220 CVE-2019-12973 CVE-2019-13456 CVE-2019-14811 CVE-2019-14812 CVE-2019-14813 CVE-2019-14817 CVE-2019-14822 CVE-2019-17041 CVE-2019-17042 CVE-2019-17185 CVE-2019-2933 CVE-2019-2945 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2989 CVE-2019-2992 CVE-2019-2999 CVE-2019-3688 CVE-2019-3690 CVE-2019-3835 CVE-2019-3839 CVE-2019-5436 CVE-2020-0543 CVE-2020-10713 CVE-2020-14308 CVE-2020-14309 CVE-2020-14310 CVE-2020-14311 CVE-2020-14364 CVE-2020-15565 CVE-2020-15567 CVE-2020-15706 CVE-2020-15707 CVE-2020-25595 CVE-2020-25596 CVE-2020-25597 CVE-2020-25599 CVE-2020-25600 CVE-2020-25601 CVE-2020-25603 CVE-2020-25604 CVE-2020-27786 CVE-2020-28374 CVE-2020-8597 CVE-2021-3347 SUSE-SU-2016:2817-1 SUSE-SU-2017:2318-1 SUSE-SU-2018:1256-1 SUSE-SU-2019:0878-1 SUSE-SU-2019:1363-1 SUSE-SU-2019:1721-1 SUSE-SU-2019:2389-1 SUSE-SU-2019:2478-1 SUSE-SU-2019:3180-1 SUSE-SU-2020:0051-1 SUSE-SU-2020:0490-1 SUSE-SU-2020:0512-1 SUSE-SU-2020:2076-1 SUSE-SU-2020:2391-1 SUSE-SU-2020:2822-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information libopenssl1_1-1.1.0h-lp150.2 is installed OR libopenssl1_1-32bit-1.1.0h-lp150.2 is installed OR openssl-1_1-1.1.0h-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information clamav-0.100.3-lp151.2.6 is installed OR clamav-devel-0.100.3-lp151.2.6 is installed OR libclamav7-0.100.3-lp151.2.6 is installed OR libclammspack0-0.100.3-lp151.2.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND ppp-2.4.7-4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information ghostscript-9.15-17 is installed OR ghostscript-x11-9.15-17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information ibus-1.5.13-15.11 is installed OR ibus-gtk-1.5.13-15.11 is installed OR ibus-gtk3-1.5.13-15.11 is installed OR ibus-lang-1.5.13-15.11 is installed OR libibus-1_0-5-1.5.13-15.11 is installed OR typelib-1_0-IBus-1_0-1.5.13-15.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_85-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_23-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_103-92_56-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_17-9-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.4-2.59 is installed OR libwebkit2gtk-4_0-37-2.28.4-2.59 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.4-2.59 is installed OR typelib-1_0-WebKit2-4_0-2.28.4-2.59 is installed OR webkit2gtk-4_0-injected-bundles-2.28.4-2.59 is installed OR webkit2gtk3-2.28.4-2.59 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND kgraft-patch-4_4_180-94_116-default-8-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND mailman-2.1.17-3.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libxslt-1.1.28-17.6 is installed OR libxslt-tools-1.1.28-17.6 is installed OR libxslt1-1.1.28-17.6 is installed OR libxslt1-32bit-1.1.28-17.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information systemtap-3.0-15 is installed OR systemtap-runtime-3.0-15 is installed OR systemtap-server-3.0-15 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information curl-7.37.0-37.40 is installed OR libcurl4-7.37.0-37.40 is installed OR libcurl4-32bit-7.37.0-37.40 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND ansible-2.4.6.0-3.6 is installed
BACK