OVAL Reference oval:org.opensuse.security:def:60030

Oval Definition:

oval:org.opensuse.security:def:60030

Revision Date:	2020-12-01	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 20 for SLE 12 SP2) (Important)
Description:	This update for the Linux Kernel 4.4.120-92_70 fixes several issues. The following security issues were fixed: - CVE-2019-9213: Expand_downwards in mm/mmap.c lacked a check for the mmap minimum address, which made it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. This is related to a capability check for the wrong task (bsc#1128378). - CVE-2019-7221: Fixed a user-after-free vulnerability in the KVM hypervisor related to the emulation of a preemption timer, allowing an guest user/process to crash the host kernel. (bsc#1124734). - CVE-2019-6974: kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandled reference counting because of a race condition, leading to a use-after-free (bsc#1124729).
Family:	unix	Class:	patch
Status:		Reference(s):	1082828 1102840 1112758 1121232 1121233 1121234 1121235 1123361 1123522 1124729 1124734 1128378 1129346 1131886 1160039 1160467 1160468 1166844 1168874 1170601 1171863 1171864 1171866 1173991 1174284 1175686 1176756 1177872 1178671 CVE-2011-0421 CVE-2012-1162 CVE-2012-1163 CVE-2013-2063 CVE-2015-2331 CVE-2016-6318 CVE-2016-7951 CVE-2016-7952 CVE-2017-15130 CVE-2018-16839 CVE-2019-14896 CVE-2019-14897 CVE-2019-5717 CVE-2019-5718 CVE-2019-5719 CVE-2019-5721 CVE-2019-6974 CVE-2019-6977 CVE-2019-6978 CVE-2019-7221 CVE-2019-9213 CVE-2019-9636 CVE-2020-10531 CVE-2020-10543 CVE-2020-10878 CVE-2020-12321 CVE-2020-12723 CVE-2020-15663 CVE-2020-15664 CVE-2020-15670 CVE-2020-15683 CVE-2020-15969 CVE-2020-6821 CVE-2020-6822 CVE-2020-6825 CVE-2020-6827 CVE-2020-6828 SUSE-SU-2018:2632-1 SUSE-SU-2019:0138-1 SUSE-SU-2019:0747-1 SUSE-SU-2019:0961-1 SUSE-SU-2019:0996-1 SUSE-SU-2020:0978-1 SUSE-SU-2020:1662-1 SUSE-SU-2020:3053-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information pam-1.3.0-lp150.4 is installed OR pam-32bit-1.3.0-lp150.4 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information aubio-0.4.6-lp151.6.3 is installed OR aubio-tools-0.4.6-lp151.6.3 is installed OR libaubio-devel-0.4.6-lp151.6.3 is installed OR libaubio5-0.4.6-lp151.6.3 is installed OR libaubio5-32bit-0.4.6-lp151.6.3 is installed OR python-aubio-0.4.6-lp151.6.3 is installed OR python2-aubio-0.4.6-lp151.6.3 is installed OR python3-aubio-0.4.6-lp151.6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_120-92_70-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_20-11-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cracklib-2.9.0-7 is installed OR libcrack2-2.9.0-7 is installed OR libcrack2-32bit-2.9.0-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information cups-1.7.5-20.29 is installed OR cups-client-1.7.5-20.29 is installed OR cups-libs-1.7.5-20.29 is installed OR cups-libs-32bit-1.7.5-20.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_116-default-2-2 is installed OR kgraft-patch-SLE12-SP3_Update_31-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kernel-default-4.4.180-94.116 is installed OR kernel-default-base-4.4.180-94.116 is installed OR kernel-default-devel-4.4.180-94.116 is installed OR kernel-default-kgraft-4.4.180-94.116 is installed OR kernel-default-man-4.4.180-94.116 is installed OR kernel-devel-4.4.180-94.116 is installed OR kernel-macros-4.4.180-94.116 is installed OR kernel-source-4.4.180-94.116 is installed OR kernel-syms-4.4.180-94.116 is installed OR kgraft-patch-4_4_180-94_116-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_31-1-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libdcerpc-binding0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libdcerpc-binding0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libdcerpc0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libdcerpc0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libndr-krb5pac0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libndr-krb5pac0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libndr-nbt0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libndr-nbt0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libndr-standard0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libndr-standard0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libndr0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libndr0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libnetapi0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libnetapi0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamba-credentials0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamba-credentials0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamba-errors0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamba-errors0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamba-hostconfig0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamba-hostconfig0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamba-passdb0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamba-passdb0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamba-util0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamba-util0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamdb0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsamdb0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsmbclient0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsmbclient0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsmbconf0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsmbconf0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsmbldap0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libsmbldap0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libtevent-util0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libtevent-util0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libwbclient0-4.6.14+git.157.c2d53c2b191-3.29 is installed OR libwbclient0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR samba-4.6.14+git.157.c2d53c2b191-3.29 is installed OR samba-client-4.6.14+git.157.c2d53c2b191-3.29 is installed OR samba-client-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR samba-doc-4.6.14+git.157.c2d53c2b191-3.29 is installed OR samba-libs-4.6.14+git.157.c2d53c2b191-3.29 is installed OR samba-libs-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed OR samba-winbind-4.6.14+git.157.c2d53c2b191-3.29 is installed OR samba-winbind-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND apache2-mod_nss-1.0.14-19.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-78.4.0-112.28 is installed OR MozillaFirefox-devel-78.4.0-112.28 is installed OR MozillaFirefox-translations-common-78.4.0-112.28 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND Package Information ansible1-1.9.6-9.3 is installed OR ardana-ansible-9.0+git.1568385829.54601ac-3.10 is installed OR ardana-cluster-9.0+git.1568150980.027f167-3.10 is installed OR ardana-db-9.0+git.1568382922.6f2cea4-3.10 is installed OR ardana-extensions-nsx-9.0+git.1568830037.2eea267-11 is installed OR ardana-glance-9.0+git.1567000146.4569d10-3.10 is installed OR ardana-input-model-9.0+git.1566409257.eec6360-3.10 is installed OR ardana-installer-ui-9.0+git.1569535129.ca87ef0-3.10 is installed OR ardana-manila-9.0+git.1568835830.10c9689-3.6 is installed OR ardana-monasca-9.0+git.1567695427.5974ab2-3.10 is installed OR ardana-neutron-9.0+git.1568817582.a4813e2-3.10 is installed OR ardana-nova-9.0+git.1567630824.aa6dc2d-3.10 is installed OR ardana-octavia-9.0+git.1568362662.7fba216-3.10 is installed OR ardana-opsconsole-ui-9.0+git.1566593422.813e56c-4.10 is installed OR ardana-osconfig-9.0+git.1567630791.5ca70a6-3.10 is installed OR ardana-service-9.0+git.1569439941.6800991-3.10 is installed OR ardana-tls-9.0+git.1569257240.456c4fc-3.6 is installed OR grafana-6.2.5-3.6 is installed OR grafana-monasca-ui-drilldown-1.14.1~dev9-3.6 is installed OR novnc-1.1.0-3.3 is installed OR openstack-cinder-13.0.7~dev16-3.10 is installed OR openstack-cinder-api-13.0.7~dev16-3.10 is installed OR openstack-cinder-backup-13.0.7~dev16-3.10 is installed OR openstack-cinder-scheduler-13.0.7~dev16-3.10 is installed OR openstack-cinder-volume-13.0.7~dev16-3.10 is installed OR openstack-dashboard-14.0.4~dev11-3.6 is installed OR openstack-designate-7.0.1~dev22-3.10 is installed OR openstack-designate-agent-7.0.1~dev22-3.10 is installed OR openstack-designate-api-7.0.1~dev22-3.10 is installed OR openstack-designate-central-7.0.1~dev22-3.10 is installed OR openstack-designate-producer-7.0.1~dev22-3.10 is installed OR openstack-designate-sink-7.0.1~dev22-3.10 is installed OR openstack-designate-worker-7.0.1~dev22-3.10 is installed OR openstack-glance-17.0.1~dev30-3.3 is installed OR openstack-glance-api-17.0.1~dev30-3.3 is installed OR openstack-heat-11.0.3~dev23-3.10 is installed OR openstack-heat-api-11.0.3~dev23-3.10 is installed OR openstack-heat-api-cfn-11.0.3~dev23-3.10 is installed OR openstack-heat-engine-11.0.3~dev23-3.10 is installed OR openstack-heat-plugin-heat_docker-11.0.3~dev23-3.10 is installed OR openstack-horizon-plugin-heat-ui-1.4.1~dev4-4.6 is installed OR openstack-horizon-plugin-monasca-ui-1.14.1~dev9-3.6 is installed OR openstack-ironic-11.1.4~dev15-3.10 is installed OR openstack-ironic-api-11.1.4~dev15-3.10 is installed OR openstack-ironic-conductor-11.1.4~dev15-3.10 is installed OR openstack-ironic-python-agent-3.3.3~dev5-3.10 is installed OR openstack-keystone-14.1.1~dev16-3.10 is installed OR openstack-manila-7.3.1~dev6-4.10 is installed OR openstack-manila-api-7.3.1~dev6-4.10 is installed OR openstack-manila-data-7.3.1~dev6-4.10 is installed OR openstack-manila-scheduler-7.3.1~dev6-4.10 is installed OR openstack-manila-share-7.3.1~dev6-4.10 is installed OR openstack-neutron-13.0.5~dev50-3.10 is installed OR openstack-neutron-dhcp-agent-13.0.5~dev50-3.10 is installed OR openstack-neutron-gbp-5.0.1~dev472-3.10 is installed OR openstack-neutron-ha-tool-13.0.5~dev50-3.10 is installed OR openstack-neutron-l3-agent-13.0.5~dev50-3.10 is installed OR openstack-neutron-linuxbridge-agent-13.0.5~dev50-3.10 is installed OR openstack-neutron-macvtap-agent-13.0.5~dev50-3.10 is installed OR openstack-neutron-metadata-agent-13.0.5~dev50-3.10 is installed OR openstack-neutron-metering-agent-13.0.5~dev50-3.10 is installed OR openstack-neutron-openvswitch-agent-13.0.5~dev50-3.10 is installed OR openstack-neutron-server-13.0.5~dev50-3.10 is installed OR openstack-nova-18.2.3~dev22-3.10 is installed OR openstack-nova-api-18.2.3~dev22-3.10 is installed OR openstack-nova-cells-18.2.3~dev22-3.10 is installed OR openstack-nova-compute-18.2.3~dev22-3.10 is installed OR openstack-nova-conductor-18.2.3~dev22-3.10 is installed OR openstack-nova-console-18.2.3~dev22-3.10 is installed OR openstack-nova-novncproxy-18.2.3~dev22-3.10 is installed OR openstack-nova-placement-api-18.2.3~dev22-3.10 is installed OR openstack-nova-scheduler-18.2.3~dev22-3.10 is installed OR openstack-nova-serialproxy-18.2.3~dev22-3.10 is installed OR openstack-nova-vncproxy-18.2.3~dev22-3.10 is installed OR openstack-octavia-3.1.2~dev45-3.10 is installed OR openstack-octavia-amphora-agent-3.1.2~dev45-3.10 is installed OR openstack-octavia-api-3.1.2~dev45-3.10 is installed OR openstack-octavia-health-manager-3.1.2~dev45-3.10 is installed OR openstack-octavia-housekeeping-3.1.2~dev45-3.10 is installed OR openstack-octavia-worker-3.1.2~dev45-3.10 is installed OR openstack-sahara-9.0.2~dev12-3.3 is installed OR openstack-sahara-api-9.0.2~dev12-3.3 is installed OR openstack-sahara-engine-9.0.2~dev12-3.3 is installed OR openstack-tempest-19.0.0-15 is installed OR openstack-tempest-test-19.0.0-15 is installed OR openstack-watcher-1.12.1~dev19-4.3 is installed OR openstack-watcher-doc-1.12.1~dev19-4.3 is installed OR python-ardana-configurationprocessor-9.0+git.1568955483.5f039e4-3.11 is installed OR python-cinder-13.0.7~dev16-3.10 is installed OR python-cinder-tempest-plugin-0.1.0-11 is installed OR python-designate-7.0.1~dev22-3.10 is installed OR python-glance-17.0.1~dev30-3.3 is installed OR python-heat-11.0.3~dev23-3.10 is installed OR python-horizon-14.0.4~dev11-3.6 is installed OR python-horizon-plugin-heat-ui-1.4.1~dev4-4.6 is installed OR python-horizon-plugin-monasca-ui-1.14.1~dev9-3.6 is installed OR python-ironic-11.1.4~dev15-3.10 is installed OR python-keystone-14.1.1~dev16-3.10 is installed OR python-manila-7.3.1~dev6-4.10 is installed OR python-neutron-13.0.5~dev50-3.10 is installed OR python-neutron-gbp-5.0.1~dev472-3.10 is installed OR python-nova-18.2.3~dev22-3.10 is installed OR python-octavia-3.1.2~dev45-3.10 is installed OR python-openstack_auth-14.0.4~dev11-3.6 is installed OR python-sahara-9.0.2~dev12-3.3 is installed OR python-tempest-19.0.0-15 is installed OR python-urllib3-1.23-3.9 is installed OR python-watcher-1.12.1~dev19-4.3 is installed OR venv-openstack-barbican-7.0.1~dev18-3.9 is installed OR venv-openstack-barbican-x86_64-7.0.1~dev18-3.9 is installed OR venv-openstack-cinder-13.0.7~dev16-3.9 is installed OR venv-openstack-cinder-x86_64-13.0.7~dev16-3.9 is installed OR venv-openstack-designate-7.0.1~dev22-3.9 is installed OR venv-openstack-designate-x86_64-7.0.1~dev22-3.9 is installed OR venv-openstack-glance-17.0.1~dev30-3.9 is installed OR venv-openstack-glance-x86_64-17.0.1~dev30-3.9 is installed OR venv-openstack-heat-11.0.3~dev23-3.9 is installed OR venv-openstack-heat-x86_64-11.0.3~dev23-3.9 is installed OR venv-openstack-horizon-14.0.4~dev11-4.9 is installed OR venv-openstack-horizon-x86_64-14.0.4~dev11-4.9 is installed OR venv-openstack-ironic-11.1.4~dev15-4.9 is installed OR venv-openstack-ironic-x86_64-11.1.4~dev15-4.9 is installed OR venv-openstack-keystone-14.1.1~dev16-3.9 is installed OR venv-openstack-keystone-x86_64-14.1.1~dev16-3.9 is installed OR venv-openstack-magnum-7.1.1~dev28-4.9 is installed OR venv-openstack-magnum-x86_64-7.1.1~dev28-4.9 is installed OR venv-openstack-manila-7.3.1~dev6-3.9 is installed OR venv-openstack-manila-x86_64-7.3.1~dev6-3.9 is installed OR venv-openstack-monasca-2.7.1~dev10-3.9 is installed OR venv-openstack-monasca-ceilometer-1.8.2~dev3-3.9 is installed OR venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.9 is installed OR venv-openstack-monasca-x86_64-2.7.1~dev10-3.9 is installed OR venv-openstack-neutron-13.0.5~dev50-6.9 is installed OR venv-openstack-neutron-x86_64-13.0.5~dev50-6.9 is installed OR venv-openstack-nova-18.2.3~dev22-3.9 is installed OR venv-openstack-nova-x86_64-18.2.3~dev22-3.9 is installed OR venv-openstack-octavia-3.1.2~dev45-4.9 is installed OR venv-openstack-octavia-x86_64-3.1.2~dev45-4.9 is installed OR venv-openstack-sahara-9.0.2~dev12-3.9 is installed OR venv-openstack-sahara-x86_64-9.0.2~dev12-3.9 is installed OR venv-openstack-swift-2.19.2~dev1-2.6 is installed OR venv-openstack-swift-x86_64-2.19.2~dev1-2.6 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information perl-5.18.2-12.23 is installed OR perl-32bit-5.18.2-12.23 is installed OR perl-base-5.18.2-12.23 is installed OR perl-doc-5.18.2-12.23 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information mariadb-10.2.32-3.28 is installed OR mariadb-galera-10.2.32-3.28 is installed

BACK