Oval Definition:	oval:org.opensuse.security:def:59064
Revision Date: 2020-12-01 Version: 1 Title: Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP2) (Important) Description: This update for the Linux Kernel 4.4.121-92_98 fixes several issues. The following security issues were fixed: - CVE-2019-11477: Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an integer overflow when handling TCP Selective Acknowledgments (SACKs). A remote attacker could use this to cause a denial of service. (bsc#1137586) - CVE-2019-11478: Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment could be fragmented when handling certain TCP Selective Acknowledgment (SACK) sequences. A remote attacker could use this to cause a denial of service. (bsc#1137586) - CVE-2019-3846: A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network (bsc#1136424). This update contains a regression fix for CVE-2019-11477 and CVE-2019-11478 (bsc#1140747). Family: unix Class: patch Status: Reference(s): 1012382 1042286 1043983 1048072 1055265 1056286 1056782 1058754 1058755 1058757 1062452 1062604 1064232 1065364 1069607 1069632 1073002 1078782 1082007 1082008 1082009 1082010 1082011 1082014 1082058 1082519 1082863 1084536 1085042 1087433 1087434 1087436 1087437 1087440 1087441 1088810 1089066 1092903 1094466 1095344 1096547 1097104 1099597 1099811 1099813 1099844 1099845 1099846 1099849 1099863 1099864 1099922 1099993 1099999 1100000 1100001 1100152 1102517 1102715 1102870 1103445 1104319 1104495 1104662 1105292 1105296 1105322 1105348 1105396 1105536 1106016 1106095 1106369 1106509 1106511 1106512 1106594 1107689 1107735 1107966 1108239 1108399 1109333 1112530 1112532 1115034 1119553 1119554 1119555 1119556 1119557 1119558 1120813 1122706 1127458 1130611 1130617 1130620 1130622 1130623 1130627 1136446 1137597 1140747 1142772 1145692 1152856 1152990 1152992 1152994 1152995 1154212 1154609 1170715 1170771 1171517 1172275 1172698 1172704 1173027 1173377 1173378 1173380 1174910 1174913 CVE-2009-0790 CVE-2009-2666 CVE-2010-1167 CVE-2011-1947 CVE-2011-3389 CVE-2012-2388 CVE-2012-3482 CVE-2013-2944 CVE-2013-5018 CVE-2013-6075 CVE-2013-6076 CVE-2014-2338 CVE-2014-9221 CVE-2015-4171 CVE-2015-8023 CVE-2015-9096 CVE-2016-2339 CVE-2016-7798 CVE-2017-0898 CVE-2017-0899 CVE-2017-0900 CVE-2017-0901 CVE-2017-0902 CVE-2017-0903 CVE-2017-10784 CVE-2017-14033 CVE-2017-14064 CVE-2017-17405 CVE-2017-17742 CVE-2017-17790 CVE-2017-9022 CVE-2017-9023 CVE-2017-9228 CVE-2017-9229 CVE-2018-1000073 CVE-2018-1000074 CVE-2018-1000075 CVE-2018-1000076 CVE-2018-1000077 CVE-2018-1000078 CVE-2018-1000079 CVE-2018-10853 CVE-2018-10876 CVE-2018-10877 CVE-2018-10878 CVE-2018-10879 CVE-2018-10880 CVE-2018-10881 CVE-2018-10882 CVE-2018-10883 CVE-2018-10902 CVE-2018-10938 CVE-2018-10940 CVE-2018-12896 CVE-2018-13093 CVE-2018-13094 CVE-2018-13095 CVE-2018-14617 CVE-2018-14678 CVE-2018-15572 CVE-2018-15594 CVE-2018-16276 CVE-2018-16395 CVE-2018-16396 CVE-2018-16658 CVE-2018-17182 CVE-2018-4437 CVE-2018-4438 CVE-2018-4441 CVE-2018-4442 CVE-2018-4443 CVE-2018-4464 CVE-2018-6554 CVE-2018-6555 CVE-2018-6914 CVE-2018-7480 CVE-2018-7757 CVE-2018-8777 CVE-2018-8778 CVE-2018-8779 CVE-2018-8780 CVE-2018-9363 CVE-2019-1010180 CVE-2019-11477 CVE-2019-11478 CVE-2019-15845 CVE-2019-16201 CVE-2019-16254 CVE-2019-16255 CVE-2019-18197 CVE-2019-2894 CVE-2019-2933 CVE-2019-2945 CVE-2019-2949 CVE-2019-2958 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2987 CVE-2019-2988 CVE-2019-2989 CVE-2019-2992 CVE-2019-2999 CVE-2019-3813 CVE-2019-3840 CVE-2019-3846 CVE-2019-8320 CVE-2019-8321 CVE-2019-8322 CVE-2019-8323 CVE-2019-8324 CVE-2019-8325 CVE-2020-10663 CVE-2020-12243 CVE-2020-14361 CVE-2020-14362 CVE-2020-15563 CVE-2020-15565 CVE-2020-15567 CVE-2020-8023 CVE-2020-8177 SUSE-SU-2019:0146-1 SUSE-SU-2019:0230-1 SUSE-SU-2019:0553-1 SUSE-SU-2019:3084-1 SUSE-SU-2020:0920-2 SUSE-SU-2020:1193-1 SUSE-SU-2020:1570-1 SUSE-SU-2020:1859-1 SUSE-SU-2020:1886-1 SUSE-SU-2020:2401-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information accountsservice-0.6.45-lp150.2 is installed OR accountsservice-lang-0.6.45-lp150.2 is installed OR libaccountsservice0-0.6.45-lp150.2 is installed OR typelib-1_0-AccountsService-1_0-0.6.45-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information ImageMagick-7.0.7.34-lp151.7.9 is installed OR ImageMagick-config-7-SUSE-7.0.7.34-lp151.7.9 is installed OR ImageMagick-config-7-upstream-7.0.7.34-lp151.7.9 is installed OR ImageMagick-devel-7.0.7.34-lp151.7.9 is installed OR ImageMagick-devel-32bit-7.0.7.34-lp151.7.9 is installed OR ImageMagick-doc-7.0.7.34-lp151.7.9 is installed OR ImageMagick-extra-7.0.7.34-lp151.7.9 is installed OR libMagick++-7_Q16HDRI4-7.0.7.34-lp151.7.9 is installed OR libMagick++-7_Q16HDRI4-32bit-7.0.7.34-lp151.7.9 is installed OR libMagick++-devel-7.0.7.34-lp151.7.9 is installed OR libMagick++-devel-32bit-7.0.7.34-lp151.7.9 is installed OR libMagickCore-7_Q16HDRI6-7.0.7.34-lp151.7.9 is installed OR libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-lp151.7.9 is installed OR libMagickWand-7_Q16HDRI6-7.0.7.34-lp151.7.9 is installed OR libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-lp151.7.9 is installed OR perl-PerlMagick-7.0.7.34-lp151.7.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libjavascriptcoregtk-4_0-18-2.22.5-2.32 is installed OR libwebkit2gtk-4_0-37-2.22.5-2.32 is installed OR libwebkit2gtk3-lang-2.22.5-2.32 is installed OR typelib-1_0-JavaScriptCore-4_0-2.22.5-2.32 is installed OR typelib-1_0-WebKit2-4_0-2.22.5-2.32 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.22.5-2.32 is installed OR webkit2gtk-4_0-injected-bundles-2.22.5-2.32 is installed OR webkit2gtk3-2.22.5-2.32 is installed OR webkit2gtk3-devel-2.22.5-2.32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kernel-default-4.4.121-92.95 is installed OR kernel-default-base-4.4.121-92.95 is installed OR kernel-default-devel-4.4.121-92.95 is installed OR kernel-devel-4.4.121-92.95 is installed OR kernel-macros-4.4.121-92.95 is installed OR kernel-source-4.4.121-92.95 is installed OR kernel-syms-4.4.121-92.95 is installed OR lttng-modules-2.7.1-9.6 is installed OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.95-9.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_98-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_26-6-2 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information fetchmail-6.3.26-12 is installed OR fetchmailconf-6.3.26-12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libpcap-1.8.1-10.3 is installed OR libpcap1-1.8.1-10.3 is installed OR tcpdump-4.9.2-14.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kernel-default-4.4.180-94.107 is installed OR kernel-default-base-4.4.180-94.107 is installed OR kernel-default-devel-4.4.180-94.107 is installed OR kernel-default-kgraft-4.4.180-94.107 is installed OR kernel-devel-4.4.180-94.107 is installed OR kernel-macros-4.4.180-94.107 is installed OR kernel-source-4.4.180-94.107 is installed OR kernel-syms-4.4.180-94.107 is installed OR kgraft-patch-4_4_180-94_107-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_29-1-4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_97-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_26-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information apache2-2.4.23-29.27 is installed OR apache2-doc-2.4.23-29.27 is installed OR apache2-example-pages-2.4.23-29.27 is installed OR apache2-prefork-2.4.23-29.27 is installed OR apache2-utils-2.4.23-29.27 is installed OR apache2-worker-2.4.23-29.27 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information dpdk-17.11.4-3 is installed OR dpdk-kmp-default-17.11.4_k4.12.14_94.41-3 is installed OR dpdk-thunderx-17.11.4-3 is installed OR dpdk-thunderx-kmp-default-17.11.4_k4.12.14_94.41-3 is installed OR dpdk-tools-17.11.4-3 is installed OR libdpdk-17_11-17.11.4-3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libruby2_1-2_1-2.1.9-19.3 is installed OR ruby2.1-2.1.9-19.3 is installed OR ruby2.1-stdlib-2.1.9-19.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libpcap-1.8.1-10.3 is installed OR libpcap1-1.8.1-10.3 is installed OR tcpdump-4.9.2-14.14 is installed
BACK