OVAL Reference oval:org.opensuse.security:def:60031

Oval Definition:

oval:org.opensuse.security:def:60031

Revision Date:	2020-12-01	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP2) (Important)
Description:	This update for the Linux Kernel 4.4.121-92_80 fixes several issues. The following security issues were fixed: - CVE-2019-9213: Expand_downwards in mm/mmap.c lacked a check for the mmap minimum address, which made it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. This is related to a capability check for the wrong task (bsc#1128378). - CVE-2019-7221: Fixed a user-after-free vulnerability in the KVM hypervisor related to the emulation of a preemption timer, allowing an guest user/process to crash the host kernel. (bsc#1124734). - CVE-2019-6974: kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandled reference counting because of a race condition, leading to a use-after-free (bsc#1124729).
Family:	unix	Class:	patch
Status:		Reference(s):	1077559 1077568 1077572 1104668 1112758 1124729 1124734 1128378 1131886 1134598 1138954 1144327 1144379 1144524 1146848 1150584 1152107 1152711 1153471 1155789 1155952 1157860 1158763 1166847 1167890 1168930 1169511 1169947 1170771 1172277 1173580 1173798 1174205 1174757 1175691 1176069 1177158 1178038 CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2012-5784 CVE-2013-1989 CVE-2013-2066 CVE-2014-2524 CVE-2014-3596 CVE-2016-5407 CVE-2017-6967 CVE-2018-12539 CVE-2018-1517 CVE-2018-1656 CVE-2018-16839 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-6196 CVE-2018-6197 CVE-2018-6198 CVE-2019-13456 CVE-2019-16746 CVE-2019-17185 CVE-2019-18900 CVE-2019-6974 CVE-2019-7221 CVE-2019-9213 CVE-2020-12243 CVE-2020-14314 CVE-2020-14331 CVE-2020-14355 CVE-2020-14386 CVE-2020-16166 CVE-2020-2654 CVE-2020-2756 CVE-2020-2757 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 CVE-2020-4044 CVE-2020-5260 SUSE-SU-2018:2649-1 SUSE-SU-2019:0776-1 SUSE-SU-2019:0996-1 SUSE-SU-2019:1382-1 SUSE-SU-2020:0992-1 SUSE-SU-2020:1018-1 SUSE-SU-2020:1683-1 SUSE-SU-2020:3084-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information perl-5.26.1-lp150.5 is installed OR perl-base-5.26.1-lp150.5 is installed OR perl-base-32bit-5.26.1-lp150.5 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information GraphicsMagick-1.3.29-lp151.4.6 is installed OR GraphicsMagick-devel-1.3.29-lp151.4.6 is installed OR libGraphicsMagick++-Q16-12-1.3.29-lp151.4.6 is installed OR libGraphicsMagick++-devel-1.3.29-lp151.4.6 is installed OR libGraphicsMagick-Q16-3-1.3.29-lp151.4.6 is installed OR libGraphicsMagick3-config-1.3.29-lp151.4.6 is installed OR libGraphicsMagickWand-Q16-2-1.3.29-lp151.4.6 is installed OR perl-GraphicsMagick-1.3.29-lp151.4.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_80-default-10-2 is installed OR kgraft-patch-SLE12-SP2_Update_22-10-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information crash-7.1.8-3 is installed OR crash-kmp-default-7.1.8_k4.4.73_5-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information pam_radius-1.3.16-239.4 is installed OR pam_radius-32bit-1.3.16-239.4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_113-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_30-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information freeradius-server-3.0.15-2.14 is installed OR freeradius-server-doc-3.0.15-2.14 is installed OR freeradius-server-krb5-3.0.15-2.14 is installed OR freeradius-server-ldap-3.0.15-2.14 is installed OR freeradius-server-libs-3.0.15-2.14 is installed OR freeradius-server-mysql-3.0.15-2.14 is installed OR freeradius-server-perl-3.0.15-2.14 is installed OR freeradius-server-postgresql-3.0.15-2.14 is installed OR freeradius-server-python-3.0.15-2.14 is installed OR freeradius-server-sqlite-3.0.15-2.14 is installed OR freeradius-server-utils-3.0.15-2.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND apache2-mod_perl-2.0.8-11 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libspice-server1-0.12.8-15 is installed OR spice-0.12.8-15 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND Package Information ardana-ansible-9.0+git.1568821007.4e73730-3.13 is installed OR ardana-horizon-9.0+git.1569869028.8edfc22-3.10 is installed OR ardana-keystone-9.0+git.1570035317.78077ac-3.10 is installed OR ardana-manila-9.0+git.1569444107.add6a40-3.9 is installed OR ardana-neutron-9.0+git.1571328680.3a89cb8-3.13 is installed OR grafana-6.2.5-3.9 is installed OR openstack-cinder-13.0.8~dev8-3.13 is installed OR openstack-cinder-api-13.0.8~dev8-3.13 is installed OR openstack-cinder-backup-13.0.8~dev8-3.13 is installed OR openstack-cinder-scheduler-13.0.8~dev8-3.13 is installed OR openstack-cinder-volume-13.0.8~dev8-3.13 is installed OR openstack-dashboard-14.0.5~dev1-3.9 is installed OR openstack-horizon-plugin-manila-ui-2.16.2~dev2-3.3 is installed OR openstack-keystone-14.1.1~dev26-3.13 is installed OR openstack-manila-7.3.1~dev15-4.13 is installed OR openstack-manila-api-7.3.1~dev15-4.13 is installed OR openstack-manila-data-7.3.1~dev15-4.13 is installed OR openstack-manila-scheduler-7.3.1~dev15-4.13 is installed OR openstack-manila-share-7.3.1~dev15-4.13 is installed OR openstack-neutron-13.0.6~dev3-3.13 is installed OR openstack-neutron-dhcp-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-fwaas-13.0.3~dev2-3.6 is installed OR openstack-neutron-ha-tool-13.0.6~dev3-3.13 is installed OR openstack-neutron-l3-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-lbaas-13.0.1~dev15-3.10 is installed OR openstack-neutron-lbaas-agent-13.0.1~dev15-3.10 is installed OR openstack-neutron-linuxbridge-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-macvtap-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-metadata-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-metering-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-openvswitch-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-server-13.0.6~dev3-3.13 is installed OR openstack-nova-18.2.4~dev18-3.13 is installed OR openstack-nova-api-18.2.4~dev18-3.13 is installed OR openstack-nova-cells-18.2.4~dev18-3.13 is installed OR openstack-nova-compute-18.2.4~dev18-3.13 is installed OR openstack-nova-conductor-18.2.4~dev18-3.13 is installed OR openstack-nova-console-18.2.4~dev18-3.13 is installed OR openstack-nova-novncproxy-18.2.4~dev18-3.13 is installed OR openstack-nova-placement-api-18.2.4~dev18-3.13 is installed OR openstack-nova-scheduler-18.2.4~dev18-3.13 is installed OR openstack-nova-serialproxy-18.2.4~dev18-3.13 is installed OR openstack-nova-vncproxy-18.2.4~dev18-3.13 is installed OR openstack-octavia-3.2.1~dev1-3.13 is installed OR openstack-octavia-amphora-agent-3.2.1~dev1-3.13 is installed OR openstack-octavia-amphora-image-0.1.1-7.3 is installed OR openstack-octavia-amphora-image-x86_64-0.1.1-7.3 is installed OR openstack-octavia-api-3.2.1~dev1-3.13 is installed OR openstack-octavia-health-manager-3.2.1~dev1-3.13 is installed OR openstack-octavia-housekeeping-3.2.1~dev1-3.13 is installed OR openstack-octavia-worker-3.2.1~dev1-3.13 is installed OR pdns-4.1.8-3.3 is installed OR pdns-backend-mysql-4.1.8-3.3 is installed OR python-Django1-1.11.24-3.12 is installed OR python-cinder-13.0.8~dev8-3.13 is installed OR python-horizon-14.0.5~dev1-3.9 is installed OR python-horizon-plugin-manila-ui-2.16.2~dev2-3.3 is installed OR python-keystone-14.1.1~dev26-3.13 is installed OR python-keystonemiddleware-5.2.1-11 is installed OR python-manila-7.3.1~dev15-4.13 is installed OR python-neutron-13.0.6~dev3-3.13 is installed OR python-neutron-fwaas-13.0.3~dev2-3.6 is installed OR python-neutron-lbaas-13.0.1~dev15-3.10 is installed OR python-nova-18.2.4~dev18-3.13 is installed OR python-octavia-3.2.1~dev1-3.13 is installed OR python-octaviaclient-1.6.1-3.3 is installed OR python-openstack_auth-14.0.5~dev1-3.9 is installed OR python-os-brick-2.5.8-3.6 is installed OR python-os-brick-common-2.5.8-3.6 is installed OR python-oslo.cache-1.30.4-3.3 is installed OR python-oslo.messaging-8.1.4-3.3 is installed OR venv-openstack-barbican-7.0.1~dev18-3.11 is installed OR venv-openstack-barbican-x86_64-7.0.1~dev18-3.11 is installed OR venv-openstack-cinder-13.0.8~dev8-3.11 is installed OR venv-openstack-cinder-x86_64-13.0.8~dev8-3.11 is installed OR venv-openstack-designate-7.0.1~dev22-3.11 is installed OR venv-openstack-designate-x86_64-7.0.1~dev22-3.11 is installed OR venv-openstack-glance-17.0.1~dev30-3.11 is installed OR venv-openstack-glance-x86_64-17.0.1~dev30-3.11 is installed OR venv-openstack-heat-11.0.3~dev23-3.11 is installed OR venv-openstack-heat-x86_64-11.0.3~dev23-3.11 is installed OR venv-openstack-horizon-14.0.5~dev1-4.11 is installed OR venv-openstack-horizon-x86_64-14.0.5~dev1-4.11 is installed OR venv-openstack-keystone-14.1.1~dev26-3.11 is installed OR venv-openstack-keystone-x86_64-14.1.1~dev26-3.11 is installed OR venv-openstack-magnum-7.1.1~dev28-4.11 is installed OR venv-openstack-magnum-x86_64-7.1.1~dev28-4.11 is installed OR venv-openstack-manila-7.3.1~dev15-3.11 is installed OR venv-openstack-manila-x86_64-7.3.1~dev15-3.11 is installed OR venv-openstack-monasca-2.7.1~dev10-3.11 is installed OR venv-openstack-monasca-ceilometer-1.8.2~dev3-3.11 is installed OR venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.11 is installed OR venv-openstack-monasca-x86_64-2.7.1~dev10-3.11 is installed OR venv-openstack-neutron-13.0.6~dev3-6.11 is installed OR venv-openstack-neutron-x86_64-13.0.6~dev3-6.11 is installed OR venv-openstack-nova-18.2.4~dev18-3.11 is installed OR venv-openstack-nova-x86_64-18.2.4~dev18-3.11 is installed OR venv-openstack-octavia-3.2.1~dev1-4.11 is installed OR venv-openstack-octavia-x86_64-3.2.1~dev1-4.11 is installed OR venv-openstack-sahara-9.0.2~dev12-3.11 is installed OR venv-openstack-sahara-x86_64-9.0.2~dev12-3.11 is installed OR venv-openstack-swift-2.19.2~dev1-2.8 is installed OR venv-openstack-swift-x86_64-2.19.2~dev1-2.8 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.65-38.53 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.65-38.53 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.65-38.53 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.65-38.53 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.65-38.53 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information libfreebl3-3.53.1-58.48 is installed OR libfreebl3-32bit-3.53.1-58.48 is installed OR libfreebl3-hmac-3.53.1-58.48 is installed OR libfreebl3-hmac-32bit-3.53.1-58.48 is installed OR libsoftokn3-3.53.1-58.48 is installed OR libsoftokn3-32bit-3.53.1-58.48 is installed OR libsoftokn3-hmac-3.53.1-58.48 is installed OR libsoftokn3-hmac-32bit-3.53.1-58.48 is installed OR mozilla-nspr-4.25-19.15 is installed OR mozilla-nspr-32bit-4.25-19.15 is installed OR mozilla-nspr-devel-4.25-19.15 is installed OR mozilla-nss-3.53.1-58.48 is installed OR mozilla-nss-32bit-3.53.1-58.48 is installed OR mozilla-nss-certs-3.53.1-58.48 is installed OR mozilla-nss-certs-32bit-3.53.1-58.48 is installed OR mozilla-nss-devel-3.53.1-58.48 is installed OR mozilla-nss-sysinit-3.53.1-58.48 is installed OR mozilla-nss-sysinit-32bit-3.53.1-58.48 is installed OR mozilla-nss-tools-3.53.1-58.48 is installed

BACK