Oval Definition:	oval:org.opensuse.security:def:59158
Revision Date: 2020-12-01 Version: 1 Title: Security update for the Linux Kernel (Live Patch 18 for SLE 12 SP2) (Important) Description: This update for the Linux Kernel 4.4.114-92_64 fixes one issue. The following security issue was fixed: - CVE-2018-16884: A flaw was found in the Linux kernel's NFS41+ subsystem. NFS41+ shares mounted in different network namespaces at the same time could make bc_svc_process() use wrong back-channel IDs and cause a use-after-free vulnerability. Thus a malicious container user could cause a host kernel memory corruption and a system panic. Due to the nature of the flaw, privilege escalation cannot be fully ruled out (bsc#1119947). Family: unix Class: patch Status: Reference(s): 1065237 1090671 1119183 1119947 1121816 1121821 1122293 1122299 1124729 1124734 1128378 1129180 1129186 1131709 1131863 1132728 1132729 1132732 1133135 1134156 1140359 1141322 1146882 1146884 1154162 1154609 1158527 1159819 1160467 1160468 1165631 1167976 1169511 1171252 1171254 1173986 1174420 1176756 CVE-2016-9957 CVE-2016-9958 CVE-2016-9959 CVE-2016-9960 CVE-2016-9961 CVE-2018-11212 CVE-2018-16884 CVE-2018-3639 CVE-2019-11745 CVE-2019-12973 CVE-2019-14811 CVE-2019-14812 CVE-2019-14813 CVE-2019-14817 CVE-2019-14896 CVE-2019-14897 CVE-2019-17006 CVE-2019-18197 CVE-2019-18197 CVE-2019-2422 CVE-2019-2426 CVE-2019-2602 CVE-2019-2684 CVE-2019-2698 CVE-2019-2974 CVE-2019-3835 CVE-2019-3838 CVE-2019-3839 CVE-2019-6109 CVE-2019-6111 CVE-2019-6974 CVE-2019-7221 CVE-2019-9213 CVE-2020-12653 CVE-2020-12654 CVE-2020-15673 CVE-2020-15676 CVE-2020-15677 CVE-2020-15678 CVE-2020-1749 CVE-2020-2756 CVE-2020-2757 CVE-2020-2773 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 SUSE-SU-2019:0709-1 SUSE-SU-2019:0719-1 SUSE-SU-2019:1219-1 SUSE-SU-2019:2478-1 SUSE-SU-2020:0050-1 SUSE-SU-2020:0088-1 SUSE-SU-2020:0920-2 SUSE-SU-2020:1571-1 SUSE-SU-2020:2759-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information kscreenlocker-5.12.5-lp150.1 is installed OR kscreenlocker-lang-5.12.5-lp150.1 is installed OR libKScreenLocker5-5.12.5-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libzzip-0-13-0.13.69-lp151.4.3 is installed OR libzzip-0-13-32bit-0.13.69-lp151.4.3 is installed OR zziplib-0.13.69-lp151.4.3 is installed OR zziplib-devel-0.13.69-lp151.4.3 is installed OR zziplib-devel-32bit-0.13.69-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-openjdk-1.8.0.212-27.32 is installed OR java-1_8_0-openjdk-demo-1.8.0.212-27.32 is installed OR java-1_8_0-openjdk-devel-1.8.0.212-27.32 is installed OR java-1_8_0-openjdk-headless-1.8.0.212-27.32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information openssh-7.2p2-74.42 is installed OR openssh-askpass-gnome-7.2p2-74.42 is installed OR openssh-fips-7.2p2-74.42 is installed OR openssh-helpers-7.2p2-74.42 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_64-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_18-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND libgme0-0.6.0-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_176-94_88-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_24-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_176-94_88-default-3-2 is installed OR kgraft-patch-SLE12-SP3_Update_24-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ghostscript-9.25-23.13 is installed OR ghostscript-x11-9.25-23.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND clamav-0.100.2-33.18 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information ghostscript-9.27-23.28 is installed OR ghostscript-x11-9.27-23.28 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information mariadb-10.2.29-3.22 is installed OR mariadb-galera-10.2.29-3.22 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information kafka-0.10.2.2-5.6 is installed OR openstack-monasca-api-2.2.1~dev24-3.6 is installed OR python-monasca-api-2.2.1~dev24-3.6 is installed
BACK