Oval Definition:	oval:org.opensuse.security:def:59961
Revision Date: 2020-12-01 Version: 1 Title: Security update for the Linux Kernel (Live Patch 27 for SLE 12 SP2) (Important) Description: This update for the Linux Kernel 4.4.121-92_101 fixes one issue. The following security issue was fixed: - CVE-2019-14835: A buffer overflow flaw was found in the way vhost functionality, that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host (bsc#1151021). Family: unix Class: patch Status: Reference(s): 1068032 1091610 1102682 1107832 1109412 1109413 1109414 1111996 1112534 1112535 1113247 1113252 1113255 1116827 1118830 1118831 1120640 1121034 1121035 1121056 1123156 1124729 1124734 1128378 1133131 1133232 1141913 1142772 1144504 1146873 1149458 1149811 1150733 1151021 1151839 1156275 1156402 1157888 1158003 1158004 1158005 1158006 1158007 1160467 1160468 1161066 1161181 1161799 1163018 1166240 1167152 1168140 1168142 1169392 1170940 1172205 1173991 1174284 1175686 CVE-2012-1571 CVE-2014-3710 CVE-2014-8116 CVE-2014-8117 CVE-2015-3223 CVE-2015-5330 CVE-2017-5715 CVE-2018-1000876 CVE-2018-1115 CVE-2018-14633 CVE-2018-17358 CVE-2018-17359 CVE-2018-17360 CVE-2018-17985 CVE-2018-18309 CVE-2018-18483 CVE-2018-18484 CVE-2018-18605 CVE-2018-18606 CVE-2018-18607 CVE-2018-19931 CVE-2018-19932 CVE-2018-20623 CVE-2018-20651 CVE-2018-20671 CVE-2018-5390 CVE-2019-1010180 CVE-2019-12068 CVE-2019-12625 CVE-2019-12900 CVE-2019-14835 CVE-2019-14869 CVE-2019-14896 CVE-2019-14897 CVE-2019-15890 CVE-2019-19577 CVE-2019-19578 CVE-2019-19579 CVE-2019-19580 CVE-2019-19581 CVE-2019-19583 CVE-2019-2201 CVE-2019-3689 CVE-2019-6778 CVE-2019-6974 CVE-2019-7221 CVE-2019-9213 CVE-2020-0543 CVE-2020-11739 CVE-2020-11740 CVE-2020-11741 CVE-2020-11742 CVE-2020-15663 CVE-2020-15664 CVE-2020-15670 CVE-2020-1711 CVE-2020-1983 CVE-2020-6796 CVE-2020-6797 CVE-2020-6798 CVE-2020-6799 CVE-2020-6800 CVE-2020-7039 CVE-2020-7211 CVE-2020-8608 SUSE-SU-2018:0008-1 SUSE-SU-2018:1695-1 SUSE-SU-2019:2650-1 SUSE-SU-2019:2781-1 SUSE-SU-2019:2972-1 SUSE-SU-2019:2983-1 SUSE-SU-2020:1630-1 SUSE-SU-2020:2544-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND libpotrace0-1.15-lp150.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information qbittorrent-4.1.5-lp151.2.3 is installed OR qbittorrent-nox-4.1.5-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_101-default-5-2 is installed OR kgraft-patch-SLE12-SP2_Update_27-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information file-5.19-9 is installed OR file-magic-5.19-9 is installed OR libmagic1-5.19-9 is installed OR libmagic1-32bit-5.19-9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.2-2.53 is installed OR libwebkit2gtk-4_0-37-2.28.2-2.53 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.2-2.53 is installed OR typelib-1_0-WebKit2-4_0-2.28.2-2.53 is installed OR webkit2gtk-4_0-injected-bundles-2.28.2-2.53 is installed OR webkit2gtk3-2.28.2-2.53 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libssh2-1-1.4.3-20.14 is installed OR libssh2-1-32bit-1.4.3-20.14 is installed OR libssh2_org-1.4.3-20.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND binutils-2.32-9.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information lcms2-2.7-9.7 is installed OR liblcms2-2-2.7-9.7 is installed OR liblcms2-2-32bit-2.7-9.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libICE6-1.0.8-12 is installed OR libICE6-32bit-1.0.8-12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information xorg-x11-server-1.19.6-4.8 is installed OR xorg-x11-server-extra-1.19.6-4.8 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information xen-4.9.4_06-3.62 is installed OR xen-doc-html-4.9.4_06-3.62 is installed OR xen-libs-4.9.4_06-3.62 is installed OR xen-libs-32bit-4.9.4_06-3.62 is installed OR xen-tools-4.9.4_06-3.62 is installed OR xen-tools-domU-4.9.4_06-3.62 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-Twisted-15.2.1-9.8 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information nfs-client-1.3.0-34.22 is installed OR nfs-doc-1.3.0-34.22 is installed OR nfs-kernel-server-1.3.0-34.22 is installed OR nfs-utils-1.3.0-34.22 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND haproxy-1.6.11-11.3 is installed
BACK