Oval Definition:oval:org.opensuse.security:def:59956
Revision Date:2020-12-01Version:1
Title:Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP2) (Important)
Description:

This update for the Linux Kernel 4.4.121-92_120 fixes several issues.

The following security issues were fixed:

- CVE-2019-14835: A buffer overflow flaw was found in the way vhost functionality, that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host (bsc#1151021). - CVE-2018-5390: Fixed a denial of service ('SegmentSmack') in tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet (bsc#1102682).
Family:unixClass:patch
Status:Reference(s):1045939
1059066
1059101
1059155
1060220
1061092
1061263
1061264
1061265
1064593
1074453
1082885
1082975
1082977
1082991
1082998
1083002
1083250
1084656
1087026
1087200
1102682
1109465
1115034
1117473
1123482
1124525
1124729
1124734
1128378
1133810
1138954
1140868
1142772
1144327
1144379
1145604
1145665
1145692
1149323
1150584
1151021
1152711
1153471
1154824
1154862
1155789
1155952
1156275
1156353
1157860
1171252
1171254
1172466
1173580
1174157
1175259
1177513
896914
CVE-2012-0035
CVE-2013-6370
CVE-2013-6371
CVE-2014-10070
CVE-2014-10071
CVE-2014-10072
CVE-2014-3421
CVE-2014-3422
CVE-2014-3423
CVE-2014-3424
CVE-2016-10714
CVE-2017-1000456
CVE-2017-14517
CVE-2017-14518
CVE-2017-14520
CVE-2017-14617
CVE-2017-14928
CVE-2017-14975
CVE-2017-14976
CVE-2017-14977
CVE-2017-15565
CVE-2017-18205
CVE-2017-18206
CVE-2017-18379
CVE-2017-6967
CVE-2017-9865
CVE-2018-1071
CVE-2018-1083
CVE-2018-5390
CVE-2018-7549
CVE-2019-1010180
CVE-2019-11709
CVE-2019-11710
CVE-2019-11711
CVE-2019-11712
CVE-2019-11713
CVE-2019-11714
CVE-2019-11715
CVE-2019-11716
CVE-2019-11717
CVE-2019-11718
CVE-2019-11719
CVE-2019-11720
CVE-2019-11721
CVE-2019-11723
CVE-2019-11724
CVE-2019-11725
CVE-2019-11727
CVE-2019-11728
CVE-2019-11729
CVE-2019-11730
CVE-2019-11733
CVE-2019-11735
CVE-2019-11736
CVE-2019-11738
CVE-2019-11740
CVE-2019-11742
CVE-2019-11743
CVE-2019-11744
CVE-2019-11746
CVE-2019-11747
CVE-2019-11748
CVE-2019-11749
CVE-2019-11750
CVE-2019-11751
CVE-2019-11752
CVE-2019-11753
CVE-2019-14835
CVE-2019-14835
CVE-2019-14869
CVE-2019-17498
CVE-2019-17639
CVE-2019-6974
CVE-2019-7221
CVE-2019-9213
CVE-2019-9811
CVE-2019-9812
CVE-2020-0543
CVE-2020-0548
CVE-2020-0549
CVE-2020-12653
CVE-2020-12654
CVE-2020-14556
CVE-2020-14577
CVE-2020-14578
CVE-2020-14579
CVE-2020-14581
CVE-2020-14583
CVE-2020-14593
CVE-2020-14621
CVE-2020-25645
CVE-2020-4044
SUSE-SU-2018:1072-1
SUSE-SU-2018:1662-1
SUSE-SU-2019:2620-1
SUSE-SU-2019:2916-1
SUSE-SU-2019:2936-1
SUSE-SU-2020:1595-1
SUSE-SU-2020:2461-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • libpcsclite1-1.8.23-lp150.2 is installed
  • OR pcsc-lite-1.8.23-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • ImageMagick-7.0.7.34-lp151.7.9 is installed
  • OR ImageMagick-config-7-SUSE-7.0.7.34-lp151.7.9 is installed
  • OR ImageMagick-config-7-upstream-7.0.7.34-lp151.7.9 is installed
  • OR ImageMagick-devel-7.0.7.34-lp151.7.9 is installed
  • OR ImageMagick-devel-32bit-7.0.7.34-lp151.7.9 is installed
  • OR ImageMagick-doc-7.0.7.34-lp151.7.9 is installed
  • OR ImageMagick-extra-7.0.7.34-lp151.7.9 is installed
  • OR libMagick++-7_Q16HDRI4-7.0.7.34-lp151.7.9 is installed
  • OR libMagick++-7_Q16HDRI4-32bit-7.0.7.34-lp151.7.9 is installed
  • OR libMagick++-devel-7.0.7.34-lp151.7.9 is installed
  • OR libMagick++-devel-32bit-7.0.7.34-lp151.7.9 is installed
  • OR libMagickCore-7_Q16HDRI6-7.0.7.34-lp151.7.9 is installed
  • OR libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-lp151.7.9 is installed
  • OR libMagickWand-7_Q16HDRI6-7.0.7.34-lp151.7.9 is installed
  • OR libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-lp151.7.9 is installed
  • OR perl-PerlMagick-7.0.7.34-lp151.7.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_120-default-2-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_32-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • emacs-24.3-19 is installed
  • OR emacs-el-24.3-19 is installed
  • OR emacs-info-24.3-19 is installed
  • OR emacs-nox-24.3-19 is installed
  • OR emacs-x11-24.3-19 is installed
  • OR etags-24.3-19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libshibsp-lite6-2.5.5-6.6 is installed
  • OR libshibsp6-2.5.5-6.6 is installed
  • OR shibboleth-sp-2.5.5-6.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_100-default-3-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_27-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_103-default-2-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_28-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libsnmp30-5.7.3-6.3 is installed
  • OR libsnmp30-32bit-5.7.3-6.3 is installed
  • OR net-snmp-5.7.3-6.3 is installed
  • OR perl-SNMP-5.7.3-6.3 is installed
  • OR snmp-mibs-5.7.3-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • krb5-appl-clients-1.0.3-1 is installed
  • OR krb5-appl-servers-1.0.3-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND Package Information
  • libX11-1.6.2-12.12 is installed
  • OR libX11-6-1.6.2-12.12 is installed
  • OR libX11-6-32bit-1.6.2-12.12 is installed
  • OR libX11-data-1.6.2-12.12 is installed
  • OR libX11-xcb1-1.6.2-12.12 is installed
  • OR libX11-xcb1-32bit-1.6.2-12.12 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND ucode-intel-20200602-13.68 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND Package Information
  • mariadb-10.2.25-3.19 is installed
  • OR mariadb-galera-10.2.25-3.19 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • MozillaFirefox-68.1.0-109.89 is installed
  • OR MozillaFirefox-branding-SLE-68-32.8 is installed
  • OR MozillaFirefox-translations-common-68.1.0-109.89 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • crowbar-core-6.0+git.1569587091.3f083d63c-3.10 is installed
  • OR crowbar-core-branding-upstream-6.0+git.1569587091.3f083d63c-3.10 is installed
  • OR crowbar-ha-6.0+git.1567673476.1342c3d-3.10 is installed
  • OR crowbar-openstack-6.0+git.1569805311.a94583476-3.10 is installed
  • OR crowbar-ui-1.3.0+git.1568396400.0344a727-11 is installed
  • OR grafana-6.2.5-3.6 is installed
  • OR grafana-monasca-ui-drilldown-1.14.1~dev9-3.6 is installed
  • OR novnc-1.1.0-3.3 is installed
  • OR openstack-cinder-13.0.7~dev16-3.10 is installed
  • OR openstack-cinder-api-13.0.7~dev16-3.10 is installed
  • OR openstack-cinder-backup-13.0.7~dev16-3.10 is installed
  • OR openstack-cinder-scheduler-13.0.7~dev16-3.10 is installed
  • OR openstack-cinder-volume-13.0.7~dev16-3.10 is installed
  • OR openstack-dashboard-14.0.4~dev11-3.6 is installed
  • OR openstack-designate-7.0.1~dev22-3.10 is installed
  • OR openstack-designate-agent-7.0.1~dev22-3.10 is installed
  • OR openstack-designate-api-7.0.1~dev22-3.10 is installed
  • OR openstack-designate-central-7.0.1~dev22-3.10 is installed
  • OR openstack-designate-producer-7.0.1~dev22-3.10 is installed
  • OR openstack-designate-sink-7.0.1~dev22-3.10 is installed
  • OR openstack-designate-worker-7.0.1~dev22-3.10 is installed
  • OR openstack-glance-17.0.1~dev30-3.3 is installed
  • OR openstack-glance-api-17.0.1~dev30-3.3 is installed
  • OR openstack-heat-11.0.3~dev23-3.10 is installed
  • OR openstack-heat-api-11.0.3~dev23-3.10 is installed
  • OR openstack-heat-api-cfn-11.0.3~dev23-3.10 is installed
  • OR openstack-heat-engine-11.0.3~dev23-3.10 is installed
  • OR openstack-heat-plugin-heat_docker-11.0.3~dev23-3.10 is installed
  • OR openstack-horizon-plugin-heat-ui-1.4.1~dev4-4.6 is installed
  • OR openstack-horizon-plugin-monasca-ui-1.14.1~dev9-3.6 is installed
  • OR openstack-ironic-11.1.4~dev15-3.10 is installed
  • OR openstack-ironic-api-11.1.4~dev15-3.10 is installed
  • OR openstack-ironic-conductor-11.1.4~dev15-3.10 is installed
  • OR openstack-ironic-python-agent-3.3.3~dev5-3.10 is installed
  • OR openstack-keystone-14.1.1~dev16-3.10 is installed
  • OR openstack-manila-7.3.1~dev6-4.10 is installed
  • OR openstack-manila-api-7.3.1~dev6-4.10 is installed
  • OR openstack-manila-data-7.3.1~dev6-4.10 is installed
  • OR openstack-manila-scheduler-7.3.1~dev6-4.10 is installed
  • OR openstack-manila-share-7.3.1~dev6-4.10 is installed
  • OR openstack-neutron-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-dhcp-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-gbp-5.0.1~dev472-3.10 is installed
  • OR openstack-neutron-ha-tool-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-l3-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-macvtap-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-metadata-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-metering-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.5~dev50-3.10 is installed
  • OR openstack-neutron-server-13.0.5~dev50-3.10 is installed
  • OR openstack-nova-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-api-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-cells-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-compute-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-conductor-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-console-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-novncproxy-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-placement-api-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-scheduler-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-serialproxy-18.2.3~dev22-3.10 is installed
  • OR openstack-nova-vncproxy-18.2.3~dev22-3.10 is installed
  • OR openstack-octavia-3.1.2~dev45-3.10 is installed
  • OR openstack-octavia-amphora-agent-3.1.2~dev45-3.10 is installed
  • OR openstack-octavia-api-3.1.2~dev45-3.10 is installed
  • OR openstack-octavia-health-manager-3.1.2~dev45-3.10 is installed
  • OR openstack-octavia-housekeeping-3.1.2~dev45-3.10 is installed
  • OR openstack-octavia-worker-3.1.2~dev45-3.10 is installed
  • OR openstack-sahara-9.0.2~dev12-3.3 is installed
  • OR openstack-sahara-api-9.0.2~dev12-3.3 is installed
  • OR openstack-sahara-engine-9.0.2~dev12-3.3 is installed
  • OR openstack-tempest-19.0.0-15 is installed
  • OR openstack-tempest-test-19.0.0-15 is installed
  • OR openstack-watcher-1.12.1~dev19-4.3 is installed
  • OR openstack-watcher-doc-1.12.1~dev19-4.3 is installed
  • OR python-cinder-13.0.7~dev16-3.10 is installed
  • OR python-cinder-tempest-plugin-0.1.0-11 is installed
  • OR python-designate-7.0.1~dev22-3.10 is installed
  • OR python-glance-17.0.1~dev30-3.3 is installed
  • OR python-heat-11.0.3~dev23-3.10 is installed
  • OR python-horizon-14.0.4~dev11-3.6 is installed
  • OR python-horizon-plugin-heat-ui-1.4.1~dev4-4.6 is installed
  • OR python-horizon-plugin-monasca-ui-1.14.1~dev9-3.6 is installed
  • OR python-ironic-11.1.4~dev15-3.10 is installed
  • OR python-keystone-14.1.1~dev16-3.10 is installed
  • OR python-manila-7.3.1~dev6-4.10 is installed
  • OR python-neutron-13.0.5~dev50-3.10 is installed
  • OR python-neutron-gbp-5.0.1~dev472-3.10 is installed
  • OR python-nova-18.2.3~dev22-3.10 is installed
  • OR python-octavia-3.1.2~dev45-3.10 is installed
  • OR python-openstack_auth-14.0.4~dev11-3.6 is installed
  • OR python-sahara-9.0.2~dev12-3.3 is installed
  • OR python-tempest-19.0.0-15 is installed
  • OR python-urllib3-1.23-3.9 is installed
  • OR python-watcher-1.12.1~dev19-4.3 is installed
  • OR ruby2.1-rubygem-easy_diff-1.0.0-4.3 is installed
  • OR rubygem-easy_diff-1.0.0-4.3 is installed
    • BACK