Oval Definition:oval:org.opensuse.security:def:60084
Revision Date:2020-12-01Version:1
Title:Security update for the Linux Kernel (Important)
Description:

The SUSE Linux Enterprise 12 SP2 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

- CVE-2020-0543: Fixed a side channel attack against special registers which could have resulted in leaking of read values to cores other than the one which called it. This attack is known as Special Register Buffer Data Sampling (SRBDS) or 'CrossTalk' (bsc#1154824). - CVE-2020-12656: Fixed an improper handling of certain domain_release calls leadingch could have led to a memory leak (bsc#1171219). - CVE-2020-12654: Fixed an issue in he wifi driver which could have allowed a remote AP to trigger a heap-based buffer overflow (bsc#1171202). - CVE-2020-12653: Fixed an issue in the wifi driver which could have allowed local users to gain privileges or cause a denial of service (bsc#1171195). - CVE-2020-12652: Fixed an issue which could have allowed local users to hold an incorrect lock during the ioctl operation and trigger a race condition (bsc#1171218). - CVE-2020-12114: Fixed A pivot_root race condition which could have allowed local users to cause a denial of service (panic) by corrupting a mountpoint reference counter (bsc#1171098). - CVE-2020-10757: Fixed an issue where remaping hugepage DAX to anon mmap could have caused user PTE access (bsc#1172317).

The following non-security bugs were fixed:

- can, slip: Protect tty->disc_data in write_wakeup and close with RCU (bsc#1171698). - KEYS: allow reaching the keys quotas exactly (bsc#1171689). - KEYS: reaching the keys quotas correctly (bsc#1171689). - Revert 'ipc,sem: remove uneeded sem_undo_list lock usage in exit_sem()' (bsc#1172221). - random: always use batched entropy for get_random_u{32,64} (bsc#1164871).
Family:unixClass:patch
Status:Reference(s):1054413
1060445
1061005
1073879
1083424
1098531
1111622
1111853
1120629
1120630
1120631
1121826
1122668
1127155
1131823
1137977
1154824
1160467
1160468
1160968
1162972
1164871
1168874
1171098
1171195
1171202
1171218
1171219
1171689
1171698
1172221
1172317
1172402
1172405
1173902
1173994
761500
922448
929736
935252
945455
947357
961596
967128
CVE-2013-1571
CVE-2013-2124
CVE-2013-2131
CVE-2013-4419
CVE-2014-9474
CVE-2015-2296
CVE-2017-7793
CVE-2017-7805
CVE-2017-7810
CVE-2017-7814
CVE-2017-7818
CVE-2017-7819
CVE-2017-7823
CVE-2017-7824
CVE-2017-7825
CVE-2018-12327
CVE-2018-18074
CVE-2018-20532
CVE-2018-20533
CVE-2018-20534
CVE-2018-7170
CVE-2019-14896
CVE-2019-14897
CVE-2019-6133
CVE-2020-0543
CVE-2020-10757
CVE-2020-12114
CVE-2020-12405
CVE-2020-12406
CVE-2020-12410
CVE-2020-12652
CVE-2020-12653
CVE-2020-12654
CVE-2020-12656
CVE-2020-14318
CVE-2020-14323
CVE-2020-2583
CVE-2020-2593
CVE-2020-2604
CVE-2020-2659
CVE-2020-6821
CVE-2020-6822
CVE-2020-6825
CVE-2020-6827
CVE-2020-6828
CVE-2020-8022
SUSE-SU-2017:2688-1
SUSE-SU-2018:3342-1
SUSE-SU-2019:2035-1
SUSE-SU-2020:0978-1
SUSE-SU-2020:1563-1
SUSE-SU-2020:1791-1
SUSE-SU-2020:1792-1
SUSE-SU-2020:2660-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND xf86-video-intel-2.99.917+git781.c8990575-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • chromedriver-76.0.3809.87-lp151.2.15 is installed
  • OR chromium-76.0.3809.87-lp151.2.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kernel-default-4.4.121-92.135 is installed
  • OR kernel-default-base-4.4.121-92.135 is installed
  • OR kernel-default-devel-4.4.121-92.135 is installed
  • OR kernel-devel-4.4.121-92.135 is installed
  • OR kernel-macros-4.4.121-92.135 is installed
  • OR kernel-source-4.4.121-92.135 is installed
  • OR kernel-syms-4.4.121-92.135 is installed
  • OR kgraft-patch-4_4_121-92_135-default-1-3.5 is installed
  • OR kgraft-patch-SLE12-SP2_Update_35-1-3.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND ant-1.9.4-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • strongswan-5.1.3-26.13 is installed
  • OR strongswan-doc-5.1.3-26.13 is installed
  • OR strongswan-hmac-5.1.3-26.13 is installed
  • OR strongswan-ipsec-5.1.3-26.13 is installed
  • OR strongswan-libs0-5.1.3-26.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libecpg6-10.9-1.12 is installed
  • OR libpq5-10.9-1.12 is installed
  • OR libpq5-32bit-10.9-1.12 is installed
  • OR postgresql10-10.9-1.12 is installed
  • OR postgresql10-contrib-10.9-1.12 is installed
  • OR postgresql10-docs-10.9-1.12 is installed
  • OR postgresql10-libs-10.9-1.12 is installed
  • OR postgresql10-plperl-10.9-1.12 is installed
  • OR postgresql10-plpython-10.9-1.12 is installed
  • OR postgresql10-pltcl-10.9-1.12 is installed
  • OR postgresql10-server-10.9-1.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libpolkit0-0.113-5.18 is installed
  • OR polkit-0.113-5.18 is installed
  • OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND mutt-1.10.1-55.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • automake-1.13.4-6 is installed
  • OR m4-1.4.16-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND Package Information
  • apache2-2.4.23-29.63 is installed
  • OR apache2-doc-2.4.23-29.63 is installed
  • OR apache2-example-pages-2.4.23-29.63 is installed
  • OR apache2-prefork-2.4.23-29.63 is installed
  • OR apache2-utils-2.4.23-29.63 is installed
  • OR apache2-worker-2.4.23-29.63 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • MozillaFirefox-68.7.0-109.116 is installed
  • OR MozillaFirefox-translations-common-68.7.0-109.116 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libsolv-0.6.36-2.30 is installed
  • OR libsolv-devel-0.6.36-2.30 is installed
  • OR libsolv-tools-0.6.36-2.30 is installed
  • OR perl-solv-0.6.36-2.30 is installed
  • OR python-solv-0.6.36-2.30 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • crowbar-core-6.0+git.1566321308.1de18b9a4-3.7 is installed
  • OR crowbar-core-branding-upstream-6.0+git.1566321308.1de18b9a4-3.7 is installed
  • OR crowbar-ha-6.0+git.1566406179.7549de2-3.7 is installed
  • OR crowbar-openstack-6.0+git.1566404979.41279a88e-3.7 is installed
  • OR crowbar-ui-1.3.0+git.1563181545.65360af5-8 is installed
  • OR openstack-ceilometer-11.0.2~dev14-3.7 is installed
  • OR openstack-ceilometer-agent-central-11.0.2~dev14-3.7 is installed
  • OR openstack-ceilometer-agent-compute-11.0.2~dev14-3.7 is installed
  • OR openstack-ceilometer-agent-ipmi-11.0.2~dev14-3.7 is installed
  • OR openstack-ceilometer-agent-notification-11.0.2~dev14-3.7 is installed
  • OR openstack-ceilometer-polling-11.0.2~dev14-3.7 is installed
  • OR openstack-cinder-13.0.7~dev3-3.7 is installed
  • OR openstack-cinder-api-13.0.7~dev3-3.7 is installed
  • OR openstack-cinder-backup-13.0.7~dev3-3.7 is installed
  • OR openstack-cinder-scheduler-13.0.7~dev3-3.7 is installed
  • OR openstack-cinder-volume-13.0.7~dev3-3.7 is installed
  • OR openstack-designate-7.0.1~dev21-3.7 is installed
  • OR openstack-designate-agent-7.0.1~dev21-3.7 is installed
  • OR openstack-designate-api-7.0.1~dev21-3.7 is installed
  • OR openstack-designate-central-7.0.1~dev21-3.7 is installed
  • OR openstack-designate-producer-7.0.1~dev21-3.7 is installed
  • OR openstack-designate-sink-7.0.1~dev21-3.7 is installed
  • OR openstack-designate-worker-7.0.1~dev21-3.7 is installed
  • OR openstack-heat-11.0.3~dev19-3.7 is installed
  • OR openstack-heat-api-11.0.3~dev19-3.7 is installed
  • OR openstack-heat-api-cfn-11.0.3~dev19-3.7 is installed
  • OR openstack-heat-engine-11.0.3~dev19-3.7 is installed
  • OR openstack-heat-plugin-heat_docker-11.0.3~dev19-3.7 is installed
  • OR openstack-horizon-plugin-neutron-fwaas-ui-1.5.1~dev6-8 is installed
  • OR openstack-horizon-plugin-neutron-lbaas-ui-5.0.1~dev7-8 is installed
  • OR openstack-horizon-plugin-neutron-vpnaas-ui-1.4.1~dev7-8 is installed
  • OR openstack-ironic-11.1.4~dev9-3.7 is installed
  • OR openstack-ironic-api-11.1.4~dev9-3.7 is installed
  • OR openstack-ironic-conductor-11.1.4~dev9-3.7 is installed
  • OR openstack-ironic-python-agent-3.3.3~dev4-3.7 is installed
  • OR openstack-keystone-14.1.1~dev8-3.7 is installed
  • OR openstack-magnum-7.1.1~dev28-3.7 is installed
  • OR openstack-magnum-api-7.1.1~dev28-3.7 is installed
  • OR openstack-magnum-conductor-7.1.1~dev28-3.7 is installed
  • OR openstack-manila-7.3.1~dev3-4.7 is installed
  • OR openstack-manila-api-7.3.1~dev3-4.7 is installed
  • OR openstack-manila-data-7.3.1~dev3-4.7 is installed
  • OR openstack-manila-scheduler-7.3.1~dev3-4.7 is installed
  • OR openstack-manila-share-7.3.1~dev3-4.7 is installed
  • OR openstack-monasca-notification-1.14.2~dev1-6.7 is installed
  • OR openstack-monasca-persister-1.12.1~dev9-9 is installed
  • OR openstack-monasca-persister-java-1.12.1~dev9-9 is installed
  • OR openstack-neutron-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-dhcp-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-gbp-5.0.1~dev459-3.7 is installed
  • OR openstack-neutron-ha-tool-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-l3-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-lbaas-13.0.1~dev14-3.7 is installed
  • OR openstack-neutron-lbaas-agent-13.0.1~dev14-3.7 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-macvtap-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-metadata-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-metering-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-server-13.0.5~dev22-3.7 is installed
  • OR openstack-nova-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-api-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-cells-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-compute-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-conductor-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-console-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-novncproxy-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-placement-api-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-scheduler-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-serialproxy-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-vncproxy-18.2.2~dev9-3.7 is installed
  • OR openstack-octavia-3.1.2~dev8-3.7 is installed
  • OR openstack-octavia-amphora-agent-3.1.2~dev8-3.7 is installed
  • OR openstack-octavia-api-3.1.2~dev8-3.7 is installed
  • OR openstack-octavia-health-manager-3.1.2~dev8-3.7 is installed
  • OR openstack-octavia-housekeeping-3.1.2~dev8-3.7 is installed
  • OR openstack-octavia-worker-3.1.2~dev8-3.7 is installed
  • OR openstack-tempest-19.0.0-12 is installed
  • OR openstack-tempest-test-19.0.0-12 is installed
  • OR python-ceilometer-11.0.2~dev14-3.7 is installed
  • OR python-cinder-13.0.7~dev3-3.7 is installed
  • OR python-cinder-tempest-plugin-0.1.0-8 is installed
  • OR python-designate-7.0.1~dev21-3.7 is installed
  • OR python-heat-11.0.3~dev19-3.7 is installed
  • OR python-horizon-plugin-neutron-fwaas-ui-1.5.1~dev6-8 is installed
  • OR python-horizon-plugin-neutron-lbaas-ui-5.0.1~dev7-8 is installed
  • OR python-horizon-plugin-neutron-vpnaas-ui-1.4.1~dev7-8 is installed
  • OR python-ironic-11.1.4~dev9-3.7 is installed
  • OR python-ironicclient-2.5.3-4.7 is installed
  • OR python-ironicclient-doc-2.5.3-4.7 is installed
  • OR python-keystone-14.1.1~dev8-3.7 is installed
  • OR python-keystonemiddleware-5.2.0-8 is installed
  • OR python-magnum-7.1.1~dev28-3.7 is installed
  • OR python-manila-7.3.1~dev3-4.7 is installed
  • OR python-monasca-notification-1.14.2~dev1-6.7 is installed
  • OR python-monasca-persister-1.12.1~dev9-9 is installed
  • OR python-monasca-tempest-plugin-0.3.0-8 is installed
  • OR python-neutron-13.0.5~dev22-3.7 is installed
  • OR python-neutron-gbp-5.0.1~dev459-3.7 is installed
  • OR python-neutron-lbaas-13.0.1~dev14-3.7 is installed
  • OR python-nova-18.2.2~dev9-3.7 is installed
  • OR python-octavia-3.1.2~dev8-3.7 is installed
  • OR python-openstackclient-3.16.2-8 is installed
  • OR python-openstacksdk-0.17.3-8 is installed
  • OR python-proliantutils-2.8.4-8 is installed
  • OR python-tempest-19.0.0-12 is installed
  • OR python-vmware-nsx-13.0.1~dev146-9 is installed
  • OR python-vmware-nsxlib-13.0.1~dev24-8 is installed
  • OR yast2-crowbar-3.4.2-8 is installed
    • BACK