Oval Definition:oval:org.opensuse.security:def:60033
Revision Date:2020-12-01Version:1
Title:Security update for the Linux Kernel (Live Patch 24 for SLE 12 SP2) (Important)
Description:

This update for the Linux Kernel 4.4.121-92_92 fixes several issues.

The following security issues were fixed:

- CVE-2019-9213: Expand_downwards in mm/mmap.c lacked a check for the mmap minimum address, which made it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. This is related to a capability check for the wrong task (bsc#1128378). - CVE-2019-7221: Fixed a user-after-free vulnerability in the KVM hypervisor related to the emulation of a preemption timer, allowing an guest user/process to crash the host kernel. (bsc#1124734). - CVE-2019-6974: kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandled reference counting because of a race condition, leading to a use-after-free (bsc#1124729).
Family:unixClass:patch
Status:Reference(s):1012382
1020413
1022805
1065600
1067720
1070767
1075697
1082943
1087092
1090435
1093697
1095472
1102379
1102400
1102410
1102959
1103429
1106929
1109137
1109248
1119019
1119843
1120691
1120902
1121713
1121805
1124235
1124493
1124729
1124734
1125315
1125446
1126389
1126772
1126773
1126805
1127082
1127155
1127561
1127725
1127731
1127961
1128166
1128378
1128452
1128565
1128696
1128756
1128893
1129080
1129179
1129237
1129238
1129239
1129240
1129241
1129413
1129414
1129415
1129416
1129417
1129418
1129419
1129581
1129770
1129923
1141670
1160398
1160467
1160468
1163933
1164860
1168422
1169511
1170603
1173902
1173994
1174117
1177513
1177613
CVE-2011-0707
CVE-2014-0011
CVE-2014-7204
CVE-2014-8240
CVE-2015-0255
CVE-2015-9542
CVE-2016-2399
CVE-2018-1336
CVE-2018-8014
CVE-2018-8034
CVE-2018-8037
CVE-2019-14896
CVE-2019-14897
CVE-2019-2024
CVE-2019-3820
CVE-2019-6974
CVE-2019-7221
CVE-2019-9213
CVE-2019-9213
CVE-2020-12268
CVE-2020-13935
CVE-2020-14318
CVE-2020-14323
CVE-2020-14383
CVE-2020-1935
CVE-2020-25645
CVE-2020-2754
CVE-2020-2755
CVE-2020-2756
CVE-2020-2757
CVE-2020-2773
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2830
CVE-2020-3898
SUSE-SU-2017:1986-1
SUSE-SU-2018:2699-1
SUSE-SU-2019:0801-1
SUSE-SU-2019:1390-1
SUSE-SU-2020:1045-1
SUSE-SU-2020:1117-1
SUSE-SU-2020:1686-1
SUSE-SU-2020:3093-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND perl-LWP-Protocol-https-6.06-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • SDL2-2.0.8-lp151.4.3 is installed
  • OR libSDL2-2_0-0-2.0.8-lp151.4.3 is installed
  • OR libSDL2-2_0-0-32bit-2.0.8-lp151.4.3 is installed
  • OR libSDL2-devel-2.0.8-lp151.4.3 is installed
  • OR libSDL2-devel-32bit-2.0.8-lp151.4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_92-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_24-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND ctags-5.8-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libssh2-1-1.4.3-20.9 is installed
  • OR libssh2-1-32bit-1.4.3-20.9 is installed
  • OR libssh2_org-1.4.3-20.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_103-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_28-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • cups-1.7.5-20.29 is installed
  • OR cups-client-1.7.5-20.29 is installed
  • OR cups-libs-1.7.5-20.29 is installed
  • OR cups-libs-32bit-1.7.5-20.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND ucode-intel-20180807-13.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • audiofile-0.3.6-10 is installed
  • OR libaudiofile1-0.3.6-10 is installed
  • OR libaudiofile1-32bit-0.3.6-10 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libdcerpc-binding0-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libdcerpc-binding0-32bit-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libdcerpc0-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libdcerpc0-32bit-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libndr-krb5pac0-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libndr-krb5pac0-32bit-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libndr-nbt0-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libndr-nbt0-32bit-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libndr-standard0-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libndr-standard0-32bit-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libndr0-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libndr0-32bit-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libnetapi0-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libnetapi0-32bit-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libsamba-credentials0-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libsamba-credentials0-32bit-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libsamba-errors0-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libsamba-errors0-32bit-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libsamba-hostconfig0-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libsamba-hostconfig0-32bit-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libsamba-passdb0-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libsamba-passdb0-32bit-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libsamba-util0-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libsamba-util0-32bit-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libsamdb0-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libsamdb0-32bit-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libsmbclient0-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libsmbclient0-32bit-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libsmbconf0-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libsmbconf0-32bit-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libsmbldap0-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libsmbldap0-32bit-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libtevent-util0-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libtevent-util0-32bit-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libwbclient0-4.6.16+git.248.c833312e640-3.58 is installed
  • OR libwbclient0-32bit-4.6.16+git.248.c833312e640-3.58 is installed
  • OR samba-4.6.16+git.248.c833312e640-3.58 is installed
  • OR samba-client-4.6.16+git.248.c833312e640-3.58 is installed
  • OR samba-client-32bit-4.6.16+git.248.c833312e640-3.58 is installed
  • OR samba-doc-4.6.16+git.248.c833312e640-3.58 is installed
  • OR samba-libs-4.6.16+git.248.c833312e640-3.58 is installed
  • OR samba-libs-32bit-4.6.16+git.248.c833312e640-3.58 is installed
  • OR samba-winbind-4.6.16+git.248.c833312e640-3.58 is installed
  • OR samba-winbind-32bit-4.6.16+git.248.c833312e640-3.58 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND Package Information
  • ardana-db-9.0+git.1572311426.a6dc2fd-3.13 is installed
  • OR ardana-keystone-9.0+git.1573069087.15ffd1c-3.13 is installed
  • OR ardana-neutron-9.0+git.1572019823.6650494-3.16 is installed
  • OR ardana-nova-9.0+git.1572618171.4460843-3.13 is installed
  • OR openstack-barbican-7.0.1~dev21-3.3 is installed
  • OR openstack-barbican-api-7.0.1~dev21-3.3 is installed
  • OR openstack-barbican-keystone-listener-7.0.1~dev21-3.3 is installed
  • OR openstack-barbican-retry-7.0.1~dev21-3.3 is installed
  • OR openstack-barbican-worker-7.0.1~dev21-3.3 is installed
  • OR openstack-heat-templates-0.0.0+git.1553459627.948e8cc-3.3 is installed
  • OR openstack-keystone-14.1.1~dev28-3.16 is installed
  • OR openstack-neutron-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-dhcp-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-gbp-5.0.1~dev476-3.13 is installed
  • OR openstack-neutron-ha-tool-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-l3-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-lbaas-13.0.1~dev16-3.13 is installed
  • OR openstack-neutron-lbaas-agent-13.0.1~dev16-3.13 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-macvtap-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-metadata-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-metering-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-server-13.0.6~dev8-3.16 is installed
  • OR openstack-nova-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-api-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-cells-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-compute-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-conductor-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-console-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-novncproxy-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-placement-api-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-scheduler-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-serialproxy-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-vncproxy-18.2.4~dev22-3.16 is installed
  • OR openstack-octavia-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-amphora-agent-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-api-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-health-manager-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-housekeeping-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-worker-3.2.1~dev3-3.16 is installed
  • OR openstack-sahara-9.0.2~dev14-3.6 is installed
  • OR openstack-sahara-api-9.0.2~dev14-3.6 is installed
  • OR openstack-sahara-engine-9.0.2~dev14-3.6 is installed
  • OR python-barbican-7.0.1~dev21-3.3 is installed
  • OR python-keystone-14.1.1~dev28-3.16 is installed
  • OR python-neutron-13.0.6~dev8-3.16 is installed
  • OR python-neutron-gbp-5.0.1~dev476-3.13 is installed
  • OR python-neutron-lbaas-13.0.1~dev16-3.13 is installed
  • OR python-nova-18.2.4~dev22-3.16 is installed
  • OR python-octavia-3.2.1~dev3-3.16 is installed
  • OR python-psutil-5.4.6-3.3 is installed
  • OR python-sahara-9.0.2~dev14-3.6 is installed
  • OR release-notes-suse-openstack-cloud-9.20191025-3.15 is installed
  • OR venv-openstack-barbican-7.0.1~dev21-3.13 is installed
  • OR venv-openstack-barbican-x86_64-7.0.1~dev21-3.13 is installed
  • OR venv-openstack-cinder-13.0.8~dev8-3.13 is installed
  • OR venv-openstack-cinder-x86_64-13.0.8~dev8-3.13 is installed
  • OR venv-openstack-designate-7.0.1~dev22-3.13 is installed
  • OR venv-openstack-designate-x86_64-7.0.1~dev22-3.13 is installed
  • OR venv-openstack-heat-11.0.3~dev23-3.13 is installed
  • OR venv-openstack-heat-x86_64-11.0.3~dev23-3.13 is installed
  • OR venv-openstack-keystone-14.1.1~dev28-3.13 is installed
  • OR venv-openstack-keystone-x86_64-14.1.1~dev28-3.13 is installed
  • OR venv-openstack-magnum-7.1.1~dev28-4.13 is installed
  • OR venv-openstack-magnum-x86_64-7.1.1~dev28-4.13 is installed
  • OR venv-openstack-manila-7.3.1~dev15-3.13 is installed
  • OR venv-openstack-manila-x86_64-7.3.1~dev15-3.13 is installed
  • OR venv-openstack-monasca-ceilometer-1.8.2~dev3-3.13 is installed
  • OR venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.13 is installed
  • OR venv-openstack-neutron-13.0.6~dev8-6.13 is installed
  • OR venv-openstack-neutron-x86_64-13.0.6~dev8-6.13 is installed
  • OR venv-openstack-nova-18.2.4~dev22-3.13 is installed
  • OR venv-openstack-nova-x86_64-18.2.4~dev22-3.13 is installed
  • OR venv-openstack-octavia-3.2.1~dev3-4.13 is installed
  • OR venv-openstack-octavia-x86_64-3.2.1~dev3-4.13 is installed
  • OR venv-openstack-sahara-9.0.2~dev14-3.13 is installed
  • OR venv-openstack-sahara-x86_64-9.0.2~dev14-3.13 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.252-27.45 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.252-27.45 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.252-27.45 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.252-27.45 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • MozillaFirefox-78.0.1-112.3 is installed
  • OR MozillaFirefox-branding-SLE-78-35.3 is installed
  • OR MozillaFirefox-devel-78.0.1-112.3 is installed
  • OR MozillaFirefox-translations-common-78.0.1-112.3 is installed
    • BACK