Oval Definition:	oval:org.opensuse.security:def:59062
Revision Date: 2020-12-01 Version: 1 Title: Security update for the Linux Kernel (Live Patch 24 for SLE 12 SP2) (Important) Description: This update for the Linux Kernel 4.4.121-92_92 fixes several issues. The following security issues were fixed: - CVE-2019-11477: Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an integer overflow when handling TCP Selective Acknowledgments (SACKs). A remote attacker could use this to cause a denial of service. (bsc#1137586) - CVE-2019-11478: Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment could be fragmented when handling certain TCP Selective Acknowledgment (SACK) sequences. A remote attacker could use this to cause a denial of service. (bsc#1137586) - CVE-2019-3846: A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network (bsc#1136424). This update contains a regression fix for CVE-2019-11477 and CVE-2019-11478 (bsc#1140747). Family: unix Class: patch Status: Reference(s): 1040311 1040312 1040313 1049825 1050577 1050578 1050579 1050581 1055960 1101644 1101645 1101651 1101656 1109893 1110542 1111319 1112142 1112143 1112144 1112146 1112147 1112152 1112153 1112911 1113296 1116995 1120629 1120630 1120631 1122319 1127155 1131823 1134226 1136446 1137597 1137977 1140039 1140747 1144504 1144524 1144902 1145521 1149458 1151839 1155419 1159819 1159913 1160471 1160968 1165631 1166847 1168669 1169511 1169740 1169746 1170441 1170908 1171352 1171355 1171978 1172031 1172225 1172277 1172651 1173022 1173334 CVE-2010-2640 CVE-2010-2641 CVE-2010-2642 CVE-2010-2643 CVE-2012-5643 CVE-2014-7141 CVE-2014-7142 CVE-2014-9749 CVE-2015-5400 CVE-2016-10002 CVE-2016-10003 CVE-2016-2390 CVE-2016-2569 CVE-2016-2570 CVE-2016-2571 CVE-2016-2572 CVE-2016-3947 CVE-2016-3948 CVE-2016-4051 CVE-2016-4052 CVE-2016-4053 CVE-2016-4054 CVE-2016-4553 CVE-2016-4554 CVE-2016-4555 CVE-2016-4556 CVE-2017-11624 CVE-2017-11625 CVE-2017-11626 CVE-2017-11627 CVE-2017-12595 CVE-2017-9208 CVE-2017-9209 CVE-2017-9210 CVE-2018-13785 CVE-2018-16435 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2018-2938 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3214 CVE-2018-3639 CVE-2018-8956 CVE-2019-10218 CVE-2019-11477 CVE-2019-11478 CVE-2019-12625 CVE-2019-12900 CVE-2019-13456 CVE-2019-15681 CVE-2019-15690 CVE-2019-17006 CVE-2019-17185 CVE-2019-20788 CVE-2019-20807 CVE-2019-2949 CVE-2019-3846 CVE-2019-5108 CVE-2019-6116 CVE-2020-11868 CVE-2020-12399 CVE-2020-12402 CVE-2020-13817 CVE-2020-15025 CVE-2020-1749 CVE-2020-2654 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 SUSE-SU-2019:0049-1 SUSE-SU-2019:0144-1 SUSE-SU-2019:1948-1 SUSE-SU-2019:2265-1 SUSE-SU-2019:3066-1 SUSE-SU-2020:1165-1 SUSE-SU-2020:1550-1 SUSE-SU-2020:1805-1 SUSE-SU-2020:1839-1 SUSE-SU-2020:2391-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information PackageKit-1.1.10-lp150.2 is installed OR PackageKit-backend-zypp-1.1.10-lp150.2 is installed OR PackageKit-gstreamer-plugin-1.1.10-lp150.2 is installed OR PackageKit-gtk3-module-1.1.10-lp150.2 is installed OR PackageKit-lang-1.1.10-lp150.2 is installed OR libpackagekit-glib2-18-1.1.10-lp150.2 is installed OR typelib-1_0-PackageKitGlib-1_0-1.1.10-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libwireshark9-2.4.16-lp151.2.6 is installed OR libwiretap7-2.4.16-lp151.2.6 is installed OR libwscodecs1-2.4.16-lp151.2.6 is installed OR libwsutil8-2.4.16-lp151.2.6 is installed OR wireshark-2.4.16-lp151.2.6 is installed OR wireshark-devel-2.4.16-lp151.2.6 is installed OR wireshark-ui-qt-2.4.16-lp151.2.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information ghostscript-9.26a-23.19 is installed OR ghostscript-x11-9.26a-23.19 is installed OR libspectre-0.2.7-12.6 is installed OR libspectre1-0.2.7-12.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information cups-filters-1.0.58-15.2 is installed OR cups-filters-cups-browsed-1.0.58-15.2 is installed OR cups-filters-foomatic-rip-1.0.58-15.2 is installed OR cups-filters-ghostscript-1.0.58-15.2 is installed OR libqpdf18-7.1.1-3.3 is installed OR qpdf-7.1.1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_92-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_24-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information evince-3.20.1-5 is installed OR evince-browser-plugin-3.20.1-5 is installed OR evince-lang-3.20.1-5 is installed OR evince-plugin-djvudocument-3.20.1-5 is installed OR evince-plugin-dvidocument-3.20.1-5 is installed OR evince-plugin-pdfdocument-3.20.1-5 is installed OR evince-plugin-psdocument-3.20.1-5 is installed OR evince-plugin-tiffdocument-3.20.1-5 is installed OR evince-plugin-xpsdocument-3.20.1-5 is installed OR libevdocument3-4-3.20.1-5 is installed OR libevview3-3-3.20.1-5 is installed OR nautilus-evince-3.20.1-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND binutils-2.32-9.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libssh2-1-1.4.3-20.14 is installed OR libssh2-1-32bit-1.4.3-20.14 is installed OR libssh2_org-1.4.3-20.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_176-94_88-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_24-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND libcares2-1.9.1-9.4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND dosfstools-3.0.26-6 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information gvim-7.4.326-17.6 is installed OR vim-7.4.326-17.6 is installed OR vim-data-7.4.326-17.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND binutils-2.32-9.33 is installed
BACK