Oval Definition:oval:org.opensuse.security:def:60032
Revision Date:2020-12-01Version:1
Title:Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP2) (Important)
Description:

This update for the Linux Kernel 4.4.121-92_98 fixes several issues.

The following security issues were fixed:

- CVE-2019-9213: Expand_downwards in mm/mmap.c lacked a check for the mmap minimum address, which made it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. This is related to a capability check for the wrong task (bsc#1128378). - CVE-2019-7221: Fixed a user-after-free vulnerability in the KVM hypervisor related to the emulation of a preemption timer, allowing an guest user/process to crash the host kernel. (bsc#1124734). - CVE-2019-6974: kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandled reference counting because of a race condition, leading to a use-after-free (bsc#1124729).
Family:unixClass:patch
Status:Reference(s):1023616
1043055
1048576
1086001
1088004
1088009
1107030
1124729
1124734
1125401
1128378
1128525
1135824
1144524
1146848
1160968
1166847
1168422
1169511
1170643
1171352
1172277
1173455
1177158
1178512
CVE-2006-2607
CVE-2010-0424
CVE-2011-1018
CVE-2013-1990
CVE-2013-1999
CVE-2016-7953
CVE-2017-9788
CVE-2018-1060
CVE-2018-1061
CVE-2019-11691
CVE-2019-11692
CVE-2019-11693
CVE-2019-11694
CVE-2019-11698
CVE-2019-13456
CVE-2019-17185
CVE-2019-2949
CVE-2019-6974
CVE-2019-7221
CVE-2019-7317
CVE-2019-8936
CVE-2019-9213
CVE-2019-9800
CVE-2019-9815
CVE-2019-9816
CVE-2019-9817
CVE-2019-9818
CVE-2019-9819
CVE-2019-9820
CVE-2020-14355
CVE-2020-15049
CVE-2020-2583
CVE-2020-2590
CVE-2020-2593
CVE-2020-2601
CVE-2020-2604
CVE-2020-2654
CVE-2020-2654
CVE-2020-2659
CVE-2020-2754
CVE-2020-2755
CVE-2020-2756
CVE-2020-2757
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-28196
CVE-2020-2830
CVE-2020-3898
CVE-2020-3899
SUSE-SU-2017:1961-1
SUSE-SU-2018:2696-1
SUSE-SU-2019:0789-1
SUSE-SU-2019:1388-1
SUSE-SU-2020:1018-1
SUSE-SU-2020:1045-1
SUSE-SU-2020:1685-1
SUSE-SU-2020:3085-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND perl-HTML-Parser-3.72-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • docker-18.09.6_ce-lp151.2.6 is installed
  • OR docker-bash-completion-18.09.6_ce-lp151.2.6 is installed
  • OR docker-test-18.09.6_ce-lp151.2.6 is installed
  • OR docker-zsh-completion-18.09.6_ce-lp151.2.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_98-default-4-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_26-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • cron-4.2-58 is installed
  • OR cronie-1.4.11-58 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.28.1-2.50 is installed
  • OR libwebkit2gtk-4_0-37-2.28.1-2.50 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.28.1-2.50 is installed
  • OR typelib-1_0-WebKit2-4_0-2.28.1-2.50 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.28.1-2.50 is installed
  • OR webkit2gtk3-2.28.1-2.50 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_107-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_29-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • freeradius-server-3.0.15-2.14 is installed
  • OR freeradius-server-doc-3.0.15-2.14 is installed
  • OR freeradius-server-krb5-3.0.15-2.14 is installed
  • OR freeradius-server-ldap-3.0.15-2.14 is installed
  • OR freeradius-server-libs-3.0.15-2.14 is installed
  • OR freeradius-server-mysql-3.0.15-2.14 is installed
  • OR freeradius-server-perl-3.0.15-2.14 is installed
  • OR freeradius-server-postgresql-3.0.15-2.14 is installed
  • OR freeradius-server-python-3.0.15-2.14 is installed
  • OR freeradius-server-sqlite-3.0.15-2.14 is installed
  • OR freeradius-server-utils-3.0.15-2.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND clamav-0.100.1-33.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • at-3.1.14-8.6 is installed
  • OR flex-2.5.37-8 is installed
  • OR flex-32bit-2.5.37-8 is installed
  • OR libQtWebKit4-4.8.7+2.3.4-4.7 is installed
  • OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed
  • OR libbonobo-2.32.1-16 is installed
  • OR libbonobo-32bit-2.32.1-16 is installed
  • OR libbonobo-doc-2.32.1-16 is installed
  • OR libbonobo-lang-2.32.1-16 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libspice-client-glib-2_0-8-0.33-3.9 is installed
  • OR libspice-client-glib-helper-0.33-3.9 is installed
  • OR libspice-client-gtk-3_0-5-0.33-3.9 is installed
  • OR libspice-controller0-0.33-3.9 is installed
  • OR spice-gtk-0.33-3.9 is installed
  • OR typelib-1_0-SpiceClientGlib-2_0-0.33-3.9 is installed
  • OR typelib-1_0-SpiceClientGtk-3_0-0.33-3.9 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND python-ecdsa-0.13.3-5.10 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr6.10-30.69 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr6.10-30.69 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr6.10-30.69 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr6.10-30.69 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • xen-4.11.4_04-2.30 is installed
  • OR xen-doc-html-4.11.4_04-2.30 is installed
  • OR xen-libs-4.11.4_04-2.30 is installed
  • OR xen-libs-32bit-4.11.4_04-2.30 is installed
  • OR xen-tools-4.11.4_04-2.30 is installed
  • OR xen-tools-domU-4.11.4_04-2.30 is installed
    • BACK