Oval Definition:oval:org.opensuse.security:def:59181
Revision Date:2020-12-01Version:1
Title:Security update for the Linux Kernel (Live Patch 20 for SLE 12 SP2) (Important)
Description:

This update for the Linux Kernel 4.4.120-92_70 fixes several issues.

The following security issues were fixed:

- CVE-2019-9213: Expand_downwards in mm/mmap.c lacked a check for the mmap minimum address, which made it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. This is related to a capability check for the wrong task (bsc#1128378). - CVE-2019-7221: Fixed a user-after-free vulnerability in the KVM hypervisor related to the emulation of a preemption timer, allowing an guest user/process to crash the host kernel. (bsc#1124734). - CVE-2019-6974: kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandled reference counting because of a race condition, leading to a use-after-free (bsc#1124729).
Family:unixClass:patch
Status:Reference(s):1027519
1087289
1094725
1095242
1096224
1097521
1097522
1097523
1124729
1124734
1128378
1136446
1136976
1137597
1138034
1139959
1140122
1140747
1141322
1154328
1154609
1155321
1156318
1158527
1159329
1159819
1161719
1163809
1165528
1167231
1169658
1170446
1170603
1172140
1172437
1173576
1173594
1173613
1175664
1175665
1175671
CVE-2015-3223
CVE-2015-5330
CVE-2018-11806
CVE-2018-12891
CVE-2018-12892
CVE-2018-12893
CVE-2018-3665
CVE-2019-10164
CVE-2019-11477
CVE-2019-11478
CVE-2019-11745
CVE-2019-13012
CVE-2019-15666
CVE-2019-17006
CVE-2019-18197
CVE-2019-3693
CVE-2019-3846
CVE-2019-6974
CVE-2019-7221
CVE-2019-8457
CVE-2019-8625
CVE-2019-8710
CVE-2019-8720
CVE-2019-8743
CVE-2019-8764
CVE-2019-8766
CVE-2019-8769
CVE-2019-8771
CVE-2019-8782
CVE-2019-8783
CVE-2019-8808
CVE-2019-8811
CVE-2019-8812
CVE-2019-8813
CVE-2019-8814
CVE-2019-8815
CVE-2019-8816
CVE-2019-8819
CVE-2019-8820
CVE-2019-8823
CVE-2019-8835
CVE-2019-8844
CVE-2019-8846
CVE-2019-9213
CVE-2020-10018
CVE-2020-10757
CVE-2020-11793
CVE-2020-12268
CVE-2020-12402
CVE-2020-12415
CVE-2020-12416
CVE-2020-12417
CVE-2020-12418
CVE-2020-12419
CVE-2020-12420
CVE-2020-12421
CVE-2020-12422
CVE-2020-12423
CVE-2020-12424
CVE-2020-12425
CVE-2020-12426
CVE-2020-15810
CVE-2020-15811
CVE-2020-24606
CVE-2020-3862
CVE-2020-3864
CVE-2020-3865
CVE-2020-3867
CVE-2020-3868
CVE-2020-8695
CVE-2020-8698
SUSE-SU-2018:2081-2
SUSE-SU-2019:1601-1
SUSE-SU-2019:1783-2
SUSE-SU-2019:1830-2
SUSE-SU-2019:3076-1
SUSE-SU-2020:0920-2
SUSE-SU-2020:1135-1
SUSE-SU-2020:1212-1
SUSE-SU-2020:1899-1
SUSE-SU-2020:2471-1
SUSE-SU-2020:3279-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libXrender1-0.9.10-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • qemu-3.1.1.1-lp151.7.6 is installed
  • OR qemu-arm-3.1.1.1-lp151.7.6 is installed
  • OR qemu-audio-alsa-3.1.1.1-lp151.7.6 is installed
  • OR qemu-audio-oss-3.1.1.1-lp151.7.6 is installed
  • OR qemu-audio-pa-3.1.1.1-lp151.7.6 is installed
  • OR qemu-audio-sdl-3.1.1.1-lp151.7.6 is installed
  • OR qemu-block-curl-3.1.1.1-lp151.7.6 is installed
  • OR qemu-block-dmg-3.1.1.1-lp151.7.6 is installed
  • OR qemu-block-gluster-3.1.1.1-lp151.7.6 is installed
  • OR qemu-block-iscsi-3.1.1.1-lp151.7.6 is installed
  • OR qemu-block-nfs-3.1.1.1-lp151.7.6 is installed
  • OR qemu-block-rbd-3.1.1.1-lp151.7.6 is installed
  • OR qemu-block-ssh-3.1.1.1-lp151.7.6 is installed
  • OR qemu-extra-3.1.1.1-lp151.7.6 is installed
  • OR qemu-guest-agent-3.1.1.1-lp151.7.6 is installed
  • OR qemu-ipxe-1.0.0+-lp151.7.6 is installed
  • OR qemu-ksm-3.1.1.1-lp151.7.6 is installed
  • OR qemu-kvm-3.1.1.1-lp151.7.6 is installed
  • OR qemu-lang-3.1.1.1-lp151.7.6 is installed
  • OR qemu-linux-user-3.1.1.1-lp151.7.6 is installed
  • OR qemu-ppc-3.1.1.1-lp151.7.6 is installed
  • OR qemu-s390-3.1.1.1-lp151.7.6 is installed
  • OR qemu-seabios-1.12.0-lp151.7.6 is installed
  • OR qemu-sgabios-8-lp151.7.6 is installed
  • OR qemu-tools-3.1.1.1-lp151.7.6 is installed
  • OR qemu-ui-curses-3.1.1.1-lp151.7.6 is installed
  • OR qemu-ui-gtk-3.1.1.1-lp151.7.6 is installed
  • OR qemu-ui-sdl-3.1.1.1-lp151.7.6 is installed
  • OR qemu-vgabios-1.12.0-lp151.7.6 is installed
  • OR qemu-x86-3.1.1.1-lp151.7.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • xen-4.7.6_02-43.36 is installed
  • OR xen-doc-html-4.7.6_02-43.36 is installed
  • OR xen-libs-4.7.6_02-43.36 is installed
  • OR xen-libs-32bit-4.7.6_02-43.36 is installed
  • OR xen-tools-4.7.6_02-43.36 is installed
  • OR xen-tools-domU-4.7.6_02-43.36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_95-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_25-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_120-92_70-default-11-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_20-11-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libldb1-1.1.29-1 is installed
  • OR libldb1-32bit-1.1.29-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • MozillaFirefox-60.9.0-109.86 is installed
  • OR MozillaFirefox-translations-common-60.9.0-109.86 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • jakarta-commons-fileupload-1.1.1-122.3 is installed
  • OR jakarta-commons-fileupload-javadoc-1.1.1-122.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • dpdk-17.11.4-3 is installed
  • OR dpdk-kmp-default-17.11.4_k4.12.14_94.41-3 is installed
  • OR dpdk-thunderx-17.11.4-3 is installed
  • OR dpdk-thunderx-kmp-default-17.11.4_k4.12.14_94.41-3 is installed
  • OR dpdk-tools-17.11.4-3 is installed
  • OR libdpdk-17_11-17.11.4-3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND mailman-2.1.17-3.11 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND python-Twisted-15.2.1-9.5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libecpg6-10.9-1.12 is installed
  • OR libpq5-10.9-1.12 is installed
  • OR libpq5-32bit-10.9-1.12 is installed
  • OR postgresql10-10.9-1.12 is installed
  • OR postgresql10-contrib-10.9-1.12 is installed
  • OR postgresql10-docs-10.9-1.12 is installed
  • OR postgresql10-libs-10.9-1.12 is installed
  • OR postgresql10-plperl-10.9-1.12 is installed
  • OR postgresql10-plpython-10.9-1.12 is installed
  • OR postgresql10-pltcl-10.9-1.12 is installed
  • OR postgresql10-server-10.9-1.12 is installed
    • BACK