Oval Definition:	oval:org.opensuse.security:def:59180
Revision Date: 2020-12-01 Version: 1 Title: Security update for the Linux Kernel (Live Patch 21 for SLE 12 SP2) (Important) Description: This update for the Linux Kernel 4.4.121-92_73 fixes several issues. The following security issues were fixed: - CVE-2019-9213: Expand_downwards in mm/mmap.c lacked a check for the mmap minimum address, which made it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. This is related to a capability check for the wrong task (bsc#1128378). - CVE-2019-7221: Fixed a user-after-free vulnerability in the KVM hypervisor related to the emulation of a preemption timer, allowing an guest user/process to crash the host kernel. (bsc#1124734). - CVE-2019-6974: kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandled reference counting because of a race condition, leading to a use-after-free (bsc#1124729). Family: unix Class: patch Status: Reference(s): 1054429 1076958 1099310 1124729 1124734 1128378 1133375 1136446 1137597 1138034 1140747 1141322 1141670 1144504 1149458 1151839 1158527 1159819 1159913 1163933 1165631 1170643 1170715 1172140 1172437 1172698 1172704 1172798 1172846 1173972 1174157 1174753 1174817 1175168 1175259 CVE-2015-1545 CVE-2015-1546 CVE-2015-6908 CVE-2015-9542 CVE-2016-6252 CVE-2017-15107 CVE-2017-9287 CVE-2019-10164 CVE-2019-11477 CVE-2019-11478 CVE-2019-11745 CVE-2019-12625 CVE-2019-12900 CVE-2019-15666 CVE-2019-17006 CVE-2019-17639 CVE-2019-3846 CVE-2019-5108 CVE-2019-6974 CVE-2019-7221 CVE-2019-9213 CVE-2019-9928 CVE-2020-10757 CVE-2020-13844 CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-1749 CVE-2020-3899 CVE-2020-8023 SUSE-SU-2018:1997-2 SUSE-SU-2019:1600-1 SUSE-SU-2019:1721-1 SUSE-SU-2019:1783-2 SUSE-SU-2019:3066-1 SUSE-SU-2020:0088-1 SUSE-SU-2020:1117-1 SUSE-SU-2020:1211-1 SUSE-SU-2020:1859-1 SUSE-SU-2020:2461-1 SUSE-SU-2020:3263-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND libXrandr2-1.5.1-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND ucode-intel-20191112-lp151.2.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND shadow-4.2.1-27.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_92-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_24-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_73-default-10-2 is installed OR kgraft-patch-SLE12-SP2_Update_21-10-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libldap-2_4-2-2.4.41-18.29 is installed OR libldap-2_4-2-32bit-2.4.41-18.29 is installed OR openldap2-2.4.41-18.29 is installed OR openldap2-back-meta-2.4.41-18.29 is installed OR openldap2-client-2.4.41-18.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libopenssl-devel-1.0.2j-60.55 is installed OR libopenssl1_0_0-1.0.2j-60.55 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed OR openssl-1.0.2j-60.55 is installed OR openssl-doc-1.0.2j-60.55 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND mailman-2.1.17-3.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed OR libwebkit2gtk3-lang-2.24.4-2.47 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed OR webkit2gtk3-2.24.4-2.47 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libjavascriptcoregtk-4_0-18-2.20.3-2.23 is installed OR libwebkit2gtk-4_0-37-2.20.3-2.23 is installed OR typelib-1_0-JavaScriptCore-4_0-2.20.3-2.23 is installed OR typelib-1_0-WebKit2-4_0-2.20.3-2.23 is installed OR webkit2gtk-4_0-injected-bundles-2.20.3-2.23 is installed OR webkit2gtk3-2.20.3-2.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information dovecot22-2.2.31-19.11 is installed OR dovecot22-backend-mysql-2.2.31-19.11 is installed OR dovecot22-backend-pgsql-2.2.31-19.11 is installed OR dovecot22-backend-sqlite-2.2.31-19.11 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND clamav-0.100.3-33.26 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-requests-2.20.1-4.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information dnsmasq-2.78-18.6 is installed OR dnsmasq-utils-2.78-18.6 is installed
BACK