Oval Definition:oval:org.opensuse.security:def:59960
Revision Date:2020-12-01Version:1
Title:Security update for the Linux Kernel (Live Patch 28 for SLE 12 SP2) (Important)
Description:

This update for the Linux Kernel 4.4.121-92_104 fixes one issue.

The following security issue was fixed:

- CVE-2019-14835: A buffer overflow flaw was found in the way vhost functionality, that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host (bsc#1151021).
Family:unixClass:patch
Status:Reference(s):1027282
1041090
1042670
1065600
1073269
1073748
1078326
1078485
1080918
1080951
1081750
1083244
1084650
1086001
1087200
1088420
1090023
1090024
1090025
1090026
1090027
1090028
1090029
1090030
1090032
1090033
1092493
1105988
1109465
1117473
1118021
1118024
1118099
1123482
1124525
1125401
1126140
1126141
1126192
1126195
1126196
1126197
1126198
1126201
1127400
1128525
1131277
1133810
1133818
1139073
1140868
1141035
1143797
1145665
1146358
1146359
1146874
1149323
1149792
1149813
1151021
1153830
1154043
1155094
1155988
1156402
1159035
1160467
1160468
1162224
1162367
1162825
1165894
1170411
1170415
1171550
1171561
1175721
1175749
1176011
1176235
1176253
1176278
1176381
1176382
1176423
1176482
1176721
1176722
1176725
1176896
1176922
1176990
1177027
1177086
1177165
1177206
1177226
1177410
1177411
1177511
1177513
1177725
1177766
1178782
945401
CVE-2009-2666
CVE-2010-1167
CVE-2011-1947
CVE-2011-3389
CVE-2012-3482
CVE-2015-1545
CVE-2015-1546
CVE-2015-6908
CVE-2016-10713
CVE-2017-18204
CVE-2017-9287
CVE-2018-1000156
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2018-15869
CVE-2018-2790
CVE-2018-2794
CVE-2018-2795
CVE-2018-2796
CVE-2018-2797
CVE-2018-2798
CVE-2018-2799
CVE-2018-2800
CVE-2018-2814
CVE-2018-2815
CVE-2018-6951
CVE-2019-11091
CVE-2019-11135
CVE-2019-11139
CVE-2019-11709
CVE-2019-11710
CVE-2019-11711
CVE-2019-11712
CVE-2019-11713
CVE-2019-11714
CVE-2019-11715
CVE-2019-11716
CVE-2019-11717
CVE-2019-11718
CVE-2019-11719
CVE-2019-11720
CVE-2019-11721
CVE-2019-11723
CVE-2019-11724
CVE-2019-11725
CVE-2019-11727
CVE-2019-11728
CVE-2019-11729
CVE-2019-11730
CVE-2019-11733
CVE-2019-11735
CVE-2019-11736
CVE-2019-11738
CVE-2019-11740
CVE-2019-11742
CVE-2019-11743
CVE-2019-11744
CVE-2019-11746
CVE-2019-11747
CVE-2019-11748
CVE-2019-11749
CVE-2019-11750
CVE-2019-11751
CVE-2019-11752
CVE-2019-11753
CVE-2019-12068
CVE-2019-14378
CVE-2019-14835
CVE-2019-14896
CVE-2019-14897
CVE-2019-15890
CVE-2019-17340
CVE-2019-17341
CVE-2019-17342
CVE-2019-17343
CVE-2019-17344
CVE-2019-17345
CVE-2019-17346
CVE-2019-17347
CVE-2019-17348
CVE-2019-18348
CVE-2019-2201
CVE-2019-8675
CVE-2019-8696
CVE-2019-8936
CVE-2019-9674
CVE-2019-9811
CVE-2019-9812
CVE-2020-0404
CVE-2020-0427
CVE-2020-0431
CVE-2020-0432
CVE-2020-12352
CVE-2020-14351
CVE-2020-14381
CVE-2020-14390
CVE-2020-25212
CVE-2020-25284
CVE-2020-25643
CVE-2020-25645
CVE-2020-25656
CVE-2020-25705
CVE-2020-26088
CVE-2020-2752
CVE-2020-2812
CVE-2020-8492
CVE-2020-8694
SUSE-SU-2018:1128-1
SUSE-SU-2018:1692-1
SUSE-SU-2019:2620-1
SUSE-SU-2019:2769-1
SUSE-SU-2019:2959-1
SUSE-SU-2019:2972-1
SUSE-SU-2020:0251-1
SUSE-SU-2020:1625-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • libpoppler-glib8-0.62.0-lp150.2 is installed
  • OR libpoppler-qt5-1-0.62.0-lp150.2 is installed
  • OR libpoppler73-0.62.0-lp150.2 is installed
  • OR poppler-tools-0.62.0-lp150.2 is installed
  • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • go1.12-1.12.9-lp151.2.9 is installed
  • OR go1.12-doc-1.12.9-lp151.2.9 is installed
  • OR go1.12-race-1.12.9-lp151.2.9 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_104-default-5-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_28-5-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • fetchmail-6.3.26-12 is installed
  • OR fetchmailconf-6.3.26-12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libldap-2_4-2-2.4.41-18.68 is installed
  • OR libldap-2_4-2-32bit-2.4.41-18.68 is installed
  • OR openldap2-2.4.41-18.68 is installed
  • OR openldap2-back-meta-2.4.41-18.68 is installed
  • OR openldap2-client-2.4.41-18.68 is installed
  • OR openldap2-doc-2.4.41-18.68 is installed
  • OR openldap2-ppolicy-check-password-1.2-18.68 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND gdb-8.3.1-2.14 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • MozillaFirefox-68.1.0-109.89 is installed
  • OR MozillaFirefox-branding-SLE-68-32.8 is installed
  • OR MozillaFirefox-translations-common-68.1.0-109.89 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • apache2-2.4.23-29.27 is installed
  • OR apache2-doc-2.4.23-29.27 is installed
  • OR apache2-example-pages-2.4.23-29.27 is installed
  • OR apache2-prefork-2.4.23-29.27 is installed
  • OR apache2-utils-2.4.23-29.27 is installed
  • OR apache2-worker-2.4.23-29.27 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libHX28-3.18-1 is installed
  • OR libHX28-32bit-3.18-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND Package Information
  • grub2-2.02-12.39 is installed
  • OR grub2-arm64-efi-2.02-12.39 is installed
  • OR grub2-i386-pc-2.02-12.39 is installed
  • OR grub2-snapper-plugin-2.02-12.39 is installed
  • OR grub2-systemd-sleep-plugin-2.02-12.39 is installed
  • OR grub2-x86_64-efi-2.02-12.39 is installed
  • OR grub2-x86_64-xen-2.02-12.39 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libmysqlclient18-10.0.40.4-29.41 is installed
  • OR mariadb-10.0.40.4-29.41 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND python-Werkzeug-0.14.1-3.3 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • xen-4.9.4_04-3.56 is installed
  • OR xen-doc-html-4.9.4_04-3.56 is installed
  • OR xen-libs-4.9.4_04-3.56 is installed
  • OR xen-libs-32bit-4.9.4_04-3.56 is installed
  • OR xen-tools-4.9.4_04-3.56 is installed
  • OR xen-tools-domU-4.9.4_04-3.56 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • crowbar-core-6.0+git.1573825081.b1caf60f1-3.16 is installed
  • OR crowbar-core-branding-upstream-6.0+git.1573825081.b1caf60f1-3.16 is installed
  • OR crowbar-openstack-6.0+git.1573754820.dd036ef77-3.16 is installed
  • OR crowbar-ui-1.3.0+git.1572871359.50fc6087-14 is installed
  • OR openstack-barbican-7.0.1~dev21-3.3 is installed
  • OR openstack-barbican-api-7.0.1~dev21-3.3 is installed
  • OR openstack-barbican-keystone-listener-7.0.1~dev21-3.3 is installed
  • OR openstack-barbican-retry-7.0.1~dev21-3.3 is installed
  • OR openstack-barbican-worker-7.0.1~dev21-3.3 is installed
  • OR openstack-heat-templates-0.0.0+git.1553459627.948e8cc-3.3 is installed
  • OR openstack-keystone-14.1.1~dev28-3.16 is installed
  • OR openstack-neutron-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-dhcp-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-gbp-5.0.1~dev476-3.13 is installed
  • OR openstack-neutron-ha-tool-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-l3-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-lbaas-13.0.1~dev16-3.13 is installed
  • OR openstack-neutron-lbaas-agent-13.0.1~dev16-3.13 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-macvtap-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-metadata-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-metering-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-server-13.0.6~dev8-3.16 is installed
  • OR openstack-nova-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-api-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-cells-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-compute-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-conductor-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-console-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-novncproxy-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-placement-api-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-scheduler-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-serialproxy-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-vncproxy-18.2.4~dev22-3.16 is installed
  • OR openstack-octavia-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-amphora-agent-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-api-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-health-manager-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-housekeeping-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-worker-3.2.1~dev3-3.16 is installed
  • OR openstack-sahara-9.0.2~dev14-3.6 is installed
  • OR openstack-sahara-api-9.0.2~dev14-3.6 is installed
  • OR openstack-sahara-engine-9.0.2~dev14-3.6 is installed
  • OR python-barbican-7.0.1~dev21-3.3 is installed
  • OR python-keystone-14.1.1~dev28-3.16 is installed
  • OR python-neutron-13.0.6~dev8-3.16 is installed
  • OR python-neutron-gbp-5.0.1~dev476-3.13 is installed
  • OR python-neutron-lbaas-13.0.1~dev16-3.13 is installed
  • OR python-nova-18.2.4~dev22-3.16 is installed
  • OR python-octavia-3.2.1~dev3-3.16 is installed
  • OR python-psutil-5.4.6-3.3 is installed
  • OR python-sahara-9.0.2~dev14-3.6 is installed
  • OR release-notes-suse-openstack-cloud-9.20191025-3.15 is installed
  • BACK