Oval Definition:	oval:org.opensuse.security:def:59107
Revision Date: 2020-12-01 Version: 1 Title: Security update for the Linux Kernel (Live Patch 30 for SLE 12 SP2) (Important) Description: This update for the Linux Kernel 4.4.121-92_114 fixes one issue. The following security issue was fixed: - CVE-2019-14835: A buffer overflow flaw was found in the way vhost functionality, that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host (bsc#1151021). Family: unix Class: patch Status: Reference(s): 1037216 1075091 1075994 1087082 1087813 1089039 1090336 1090849 1091041 1094448 1095603 1096985 1097356 1097847 1099279 1101246 1101366 1101470 1104662 1104789 1106197 1120386 1120813 1124729 1124734 1127458 1128378 1131107 1133147 1136449 1137325 1146519 1146544 1146612 1149294 1149295 1149296 1149297 1149298 1149299 1149303 1149304 1149324 1149591 1151021 1153811 1154844 1155311 1155897 1156060 1156275 1157038 1157042 1157070 1157143 1157155 1157157 1157158 1157303 1157324 1157333 1157464 1157804 1157923 1158021 1158132 1158381 1158394 1158398 1158410 1158413 1158417 1158427 1158445 1158819 1158823 1158824 1158827 1158834 1158900 1158903 1158904 1159199 1159285 1159297 1159841 1159908 1159910 1159911 1159912 1160195 1162227 1162298 1162928 1162929 1162931 1163971 1164069 1164078 1164846 1165111 1165311 1165873 1165881 1165984 1165985 1167629 1168075 1168295 1168424 1168829 1168854 1169740 1170056 1170345 1170778 1171355 1172651 1173334 1174120 1174316 1174628 1174910 1174913 1176535 1176579 1177943 997043 CVE-2014-3065 CVE-2014-3566 CVE-2014-4288 CVE-2014-6456 CVE-2014-6457 CVE-2014-6458 CVE-2014-6466 CVE-2014-6476 CVE-2014-6492 CVE-2014-6493 CVE-2014-6502 CVE-2014-6503 CVE-2014-6506 CVE-2014-6511 CVE-2014-6512 CVE-2014-6513 CVE-2014-6515 CVE-2014-6527 CVE-2014-6531 CVE-2014-6532 CVE-2014-6558 CVE-2014-8891 CVE-2014-8892 CVE-2015-0204 CVE-2015-0458 CVE-2015-0459 CVE-2015-0469 CVE-2015-0477 CVE-2015-0478 CVE-2015-0480 CVE-2015-0486 CVE-2015-0488 CVE-2015-0491 CVE-2015-1931 CVE-2015-2590 CVE-2015-2601 CVE-2015-2613 CVE-2015-2619 CVE-2015-2621 CVE-2015-2625 CVE-2015-2632 CVE-2015-2637 CVE-2015-2638 CVE-2015-2664 CVE-2015-2808 CVE-2015-4000 CVE-2015-4729 CVE-2015-4731 CVE-2015-4732 CVE-2015-4733 CVE-2015-4734 CVE-2015-4748 CVE-2015-4749 CVE-2015-4760 CVE-2015-4803 CVE-2015-4805 CVE-2015-4806 CVE-2015-4810 CVE-2015-4835 CVE-2015-4840 CVE-2015-4842 CVE-2015-4843 CVE-2015-4844 CVE-2015-4860 CVE-2015-4871 CVE-2015-4872 CVE-2015-4882 CVE-2015-4883 CVE-2015-4893 CVE-2015-4902 CVE-2015-4903 CVE-2015-4911 CVE-2015-5006 CVE-2015-5041 CVE-2015-7575 CVE-2015-8126 CVE-2015-8472 CVE-2016-0264 CVE-2016-0363 CVE-2016-0376 CVE-2016-0402 CVE-2016-0448 CVE-2016-0466 CVE-2016-0475 CVE-2016-0483 CVE-2016-0494 CVE-2016-0686 CVE-2016-0687 CVE-2016-2183 CVE-2016-3422 CVE-2016-3426 CVE-2016-3427 CVE-2016-3443 CVE-2016-3449 CVE-2016-3485 CVE-2016-3511 CVE-2016-3598 CVE-2016-5542 CVE-2016-5547 CVE-2016-5548 CVE-2016-5549 CVE-2016-5552 CVE-2016-5554 CVE-2016-5556 CVE-2016-5568 CVE-2016-5573 CVE-2016-5597 CVE-2016-9840 CVE-2016-9841 CVE-2016-9842 CVE-2016-9843 CVE-2017-1289 CVE-2017-18255 CVE-2017-3231 CVE-2017-3241 CVE-2017-3252 CVE-2017-3253 CVE-2017-3259 CVE-2017-3261 CVE-2017-3272 CVE-2017-3289 CVE-2017-3509 CVE-2017-3511 CVE-2017-3512 CVE-2017-3514 CVE-2017-3533 CVE-2017-3539 CVE-2017-3544 CVE-2018-0737 CVE-2018-12099 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-21008 CVE-2018-3817 CVE-2018-5848 CVE-2018-8956 CVE-2019-11091 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11752 CVE-2019-11753 CVE-2019-14615 CVE-2019-14835 CVE-2019-14869 CVE-2019-14895 CVE-2019-14896 CVE-2019-14897 CVE-2019-14901 CVE-2019-15213 CVE-2019-18660 CVE-2019-18675 CVE-2019-18683 CVE-2019-19052 CVE-2019-19062 CVE-2019-19066 CVE-2019-19073 CVE-2019-19074 CVE-2019-19319 CVE-2019-19332 CVE-2019-19447 CVE-2019-19523 CVE-2019-19524 CVE-2019-19525 CVE-2019-19527 CVE-2019-19530 CVE-2019-19531 CVE-2019-19532 CVE-2019-19533 CVE-2019-19534 CVE-2019-19535 CVE-2019-19536 CVE-2019-19537 CVE-2019-19767 CVE-2019-19768 CVE-2019-19965 CVE-2019-19966 CVE-2019-20054 CVE-2019-20096 CVE-2019-3701 CVE-2019-3840 CVE-2019-5108 CVE-2019-6974 CVE-2019-7221 CVE-2019-9213 CVE-2019-9455 CVE-2019-9458 CVE-2019-9812 CVE-2020-10690 CVE-2020-10720 CVE-2020-10942 CVE-2020-11494 CVE-2020-11608 CVE-2020-11609 CVE-2020-11868 CVE-2020-13817 CVE-2020-14344 CVE-2020-14361 CVE-2020-14362 CVE-2020-1472 CVE-2020-14779 CVE-2020-14781 CVE-2020-14782 CVE-2020-14792 CVE-2020-14796 CVE-2020-14797 CVE-2020-14798 CVE-2020-14803 CVE-2020-15025 CVE-2020-17482 CVE-2020-2732 CVE-2020-8647 CVE-2020-8648 CVE-2020-8649 CVE-2020-8992 CVE-2020-9383 SUSE-SU-2018:2317-1 SUSE-SU-2018:2928-2 SUSE-SU-2019:2436-1 SUSE-SU-2019:2983-1 SUSE-SU-2020:1255-1 SUSE-SU-2020:1805-1 SUSE-SU-2020:2196-1 SUSE-SU-2020:2718-1 SUSE-SU-2020:2721-1 SUSE-SU-2020:3310-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information ft2demos-2.9-lp150.2 is installed OR ftbench-2.9-lp150.2 is installed OR ftdiff-2.9-lp150.2 is installed OR ftdump-2.9-lp150.2 is installed OR ftgamma-2.9-lp150.2 is installed OR ftgrid-2.9-lp150.2 is installed OR ftinspect-2.9-lp150.2 is installed OR ftlint-2.9-lp150.2 is installed OR ftmulti-2.9-lp150.2 is installed OR ftstring-2.9-lp150.2 is installed OR ftvalid-2.9-lp150.2 is installed OR ftview-2.9-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libldap-2_4-2-2.4.46-lp151.10.3 is installed OR libldap-2_4-2-32bit-2.4.46-lp151.10.3 is installed OR libldap-data-2.4.46-lp151.10.3 is installed OR openldap2-2.4.46-lp151.10.3 is installed OR openldap2-back-meta-2.4.46-lp151.10.3 is installed OR openldap2-back-perl-2.4.46-lp151.10.3 is installed OR openldap2-back-sock-2.4.46-lp151.10.3 is installed OR openldap2-back-sql-2.4.46-lp151.10.3 is installed OR openldap2-client-2.4.46-lp151.10.3 is installed OR openldap2-contrib-2.4.46-lp151.10.3 is installed OR openldap2-devel-2.4.46-lp151.10.3 is installed OR openldap2-devel-32bit-2.4.46-lp151.10.3 is installed OR openldap2-devel-static-2.4.46-lp151.10.3 is installed OR openldap2-doc-2.4.46-lp151.10.3 is installed OR openldap2-ppolicy-check-password-1.2-lp151.10.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libopenssl-devel-1.0.2j-60.39 is installed OR libopenssl1_0_0-1.0.2j-60.39 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.39 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.39 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.39 is installed OR openssl-1.0.2j-60.39 is installed OR openssl-doc-1.0.2j-60.39 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_73-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_21-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_114-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_30-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr4.5-29 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr4.5-29 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr4.5-29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND sudo-1.8.20p2-3.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information MozillaFirefox-60.9.0-109.86 is installed OR MozillaFirefox-translations-common-60.9.0-109.86 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information MozillaFirefox-60.8.0-109.83 is installed OR MozillaFirefox-translations-common-60.8.0-109.83 is installed OR libfreebl3-3.44.1-58.28 is installed OR libfreebl3-32bit-3.44.1-58.28 is installed OR libfreebl3-hmac-3.44.1-58.28 is installed OR libfreebl3-hmac-32bit-3.44.1-58.28 is installed OR libsoftokn3-3.44.1-58.28 is installed OR libsoftokn3-32bit-3.44.1-58.28 is installed OR libsoftokn3-hmac-3.44.1-58.28 is installed OR libsoftokn3-hmac-32bit-3.44.1-58.28 is installed OR mozilla-nss-3.44.1-58.28 is installed OR mozilla-nss-32bit-3.44.1-58.28 is installed OR mozilla-nss-certs-3.44.1-58.28 is installed OR mozilla-nss-certs-32bit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-32bit-3.44.1-58.28 is installed OR mozilla-nss-tools-3.44.1-58.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information gvim-7.4.326-16 is installed OR vim-7.4.326-16 is installed OR vim-data-7.4.326-16 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information grafana-4.5.1-4.3 is installed OR kafka-0.9.0.1-5.3 is installed OR logstash-2.4.1-5.4 is installed OR openstack-monasca-installer-20180622_15.06-3.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information icu-52.1-8.10 is installed OR libicu-doc-52.1-8.10 is installed OR libicu52_1-52.1-8.10 is installed OR libicu52_1-32bit-52.1-8.10 is installed OR libicu52_1-data-52.1-8.10 is installed
BACK