Oval Definition:	oval:org.opensuse.security:def:60010
Revision Date: 2020-12-01 Version: 1 Title: Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP2) (Important) Description: This update for the Linux Kernel 4.4.121-92_98 fixes one issue. The following security issue was fixed: - CVE-2018-16884: A flaw was found in the Linux kernel's NFS41+ subsystem. NFS41+ shares mounted in different network namespaces at the same time could make bc_svc_process() use wrong back-channel IDs and cause a use-after-free vulnerability. Thus a malicious container user could cause a host kernel memory corruption and a system panic. Due to the nature of the flaw, privilege escalation cannot be fully ruled out (bsc#1119947). Family: unix Class: patch Status: Reference(s): 1012382 1020413 1065600 1070767 1073748 1074014 1075697 1076861 1079150 1082943 1087092 1087416 1090435 1092885 1094325 1094480 1094725 1095556 1102840 1102959 1103429 1106929 1109137 1109248 1109847 1119019 1119843 1119947 1120691 1120902 1121713 1121805 1122191 1123886 1124235 1125315 1125401 1125446 1126389 1126772 1126773 1126805 1127082 1127155 1127561 1127725 1127731 1127961 1128166 1128452 1128525 1128565 1128696 1128756 1128829 1128893 1128963 1129080 1129179 1129237 1129238 1129239 1129240 1129241 1129413 1129414 1129415 1129416 1129417 1129418 1129419 1129581 1129770 1129923 1160039 1160594 1160764 1161779 1163922 1165439 1170601 1171863 1171864 1171866 1172524 1173991 1174284 1174628 1175686 959329 CVE-2009-4012 CVE-2013-1667 CVE-2014-0139 CVE-2016-1000031 CVE-2017-6318 CVE-2018-14647 CVE-2018-16884 CVE-2018-3639 CVE-2019-2024 CVE-2019-5010 CVE-2019-8936 CVE-2019-8936 CVE-2019-9213 CVE-2020-10543 CVE-2020-10878 CVE-2020-12723 CVE-2020-12861 CVE-2020-12862 CVE-2020-12863 CVE-2020-12864 CVE-2020-12865 CVE-2020-12866 CVE-2020-12867 CVE-2020-14344 CVE-2020-15663 CVE-2020-15664 CVE-2020-15670 CVE-2020-1747 CVE-2020-8013 SUSE-SU-2018:2304-1 SUSE-SU-2019:0482-1 SUSE-SU-2019:0789-1 SUSE-SU-2019:0801-1 SUSE-SU-2019:1214-1 SUSE-SU-2020:0545-1 SUSE-SU-2020:1285-1 SUSE-SU-2020:2544-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.1 NonFree SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information libxcb-composite0-1.13-lp150.1 is installed OR libxcb-damage0-1.13-lp150.1 is installed OR libxcb-dpms0-1.13-lp150.1 is installed OR libxcb-dri2-0-1.13-lp150.1 is installed OR libxcb-dri3-0-1.13-lp150.1 is installed OR libxcb-glx0-1.13-lp150.1 is installed OR libxcb-present0-1.13-lp150.1 is installed OR libxcb-randr0-1.13-lp150.1 is installed OR libxcb-record0-1.13-lp150.1 is installed OR libxcb-render0-1.13-lp150.1 is installed OR libxcb-res0-1.13-lp150.1 is installed OR libxcb-shape0-1.13-lp150.1 is installed OR libxcb-shm0-1.13-lp150.1 is installed OR libxcb-sync1-1.13-lp150.1 is installed OR libxcb-xfixes0-1.13-lp150.1 is installed OR libxcb-xinerama0-1.13-lp150.1 is installed OR libxcb-xinput0-1.13-lp150.1 is installed OR libxcb-xkb1-1.13-lp150.1 is installed OR libxcb-xv0-1.13-lp150.1 is installed OR libxcb1-1.13-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information curl-7.60.0-lp151.5.3 is installed OR curl-mini-7.60.0-lp151.5.3 is installed OR libcurl-devel-7.60.0-lp151.5.3 is installed OR libcurl-devel-32bit-7.60.0-lp151.5.3 is installed OR libcurl-mini-devel-7.60.0-lp151.5.3 is installed OR libcurl4-7.60.0-lp151.5.3 is installed OR libcurl4-32bit-7.60.0-lp151.5.3 is installed OR libcurl4-mini-7.60.0-lp151.5.3 is installed Definition Synopsis openSUSE Leap 15.1 NonFree is installed AND opera-68.0.3618.63-lp151.2.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_98-default-3-2 is installed OR kgraft-patch-SLE12-SP2_Update_26-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_perl-2.0.8-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libssh2-1-1.4.3-20.14 is installed OR libssh2-1-32bit-1.4.3-20.14 is installed OR libssh2_org-1.4.3-20.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information krb5-appl-1.0.3-3.3 is installed OR krb5-appl-clients-1.0.3-3.3 is installed OR krb5-appl-servers-1.0.3-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information java-1_7_0-openjdk-1.7.0.251-43.35 is installed OR java-1_7_0-openjdk-demo-1.7.0.251-43.35 is installed OR java-1_7_0-openjdk-devel-1.7.0.251-43.35 is installed OR java-1_7_0-openjdk-headless-1.7.0.251-43.35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information krb5-1.12.5-40.31 is installed OR krb5-32bit-1.12.5-40.31 is installed OR krb5-client-1.12.5-40.31 is installed OR krb5-doc-1.12.5-40.31 is installed OR krb5-plugin-kdb-ldap-1.12.5-40.31 is installed OR krb5-plugin-preauth-otp-1.12.5-40.31 is installed OR krb5-plugin-preauth-pkinit-1.12.5-40.31 is installed OR krb5-server-1.12.5-40.31 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information cracklib-2.9.0-7 is installed OR libcrack2-2.9.0-7 is installed OR libcrack2-32bit-2.9.0-7 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-78.2.0-112.19 is installed OR MozillaFirefox-devel-78.2.0-112.19 is installed OR MozillaFirefox-translations-common-78.2.0-112.19 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information python-PyYAML-5.1.2-26.12 is installed OR python3-PyYAML-5.1.2-26.12 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND python-Twisted-15.2.1-9.5 is installed
BACK