Oval Definition:	oval:org.opensuse.security:def:60113
Revision Date: 2020-12-01 Version: 1 Title: Security update for the Linux Kernel (Live Patch 28 for SLE 12 SP2) (Important) Description: This update for the Linux Kernel 4.4.121-92_104 fixes several issues. The following security issues were fixed: - CVE-2019-14896: A heap-based buffer overflow vulnerability was found in the Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP (bsc#1157157). - CVE-2019-14897: A stack-based buffer overflow was found in the Marvell WiFi chip driver. An attacker was able to cause a denial of service (system crash) or, possibly execute arbitrary code, when a STA works in IBSS mode (allows connecting stations together without the use of an AP) and connects to another STA (bsc#1157155). Family: unix Class: patch Status: Reference(s): 1013882 1055825 1056058 1065363 1066242 1101676 1101677 1101678 1103342 1112368 1112397 1112417 1112421 1112432 1114837 1116686 1118754 1132666 1136037 1145604 1151021 1154609 1160467 1160468 1173100 1173274 1173477 1173659 1173661 1173691 1173694 1173700 1173701 1173743 1173869 1173874 1173875 1173876 1173880 1173942 1173963 1174247 1175193 1175194 1177943 1178666 1178667 1178668 CVE-2010-2891 CVE-2011-0904 CVE-2011-0905 CVE-2011-1164 CVE-2013-1981 CVE-2013-1997 CVE-2013-2004 CVE-2014-2524 CVE-2016-7942 CVE-2016-9843 CVE-2017-18379 CVE-2017-18922 CVE-2017-3735 CVE-2017-3736 CVE-2018-16850 CVE-2018-21247 CVE-2018-3058 CVE-2018-3063 CVE-2018-3064 CVE-2018-3066 CVE-2018-3143 CVE-2018-3156 CVE-2018-3174 CVE-2018-3251 CVE-2018-3282 CVE-2019-14835 CVE-2019-14895 CVE-2019-14896 CVE-2019-14896 CVE-2019-14897 CVE-2019-14897 CVE-2019-14901 CVE-2019-16746 CVE-2019-18197 CVE-2019-19447 CVE-2019-20839 CVE-2019-20840 CVE-2019-2529 CVE-2019-2537 CVE-2019-9458 CVE-2020-11668 CVE-2020-14331 CVE-2020-14349 CVE-2020-14350 CVE-2020-14397 CVE-2020-14398 CVE-2020-14399 CVE-2020-14400 CVE-2020-14401 CVE-2020-14402 CVE-2020-14403 CVE-2020-14404 CVE-2020-14422 CVE-2020-14779 CVE-2020-14781 CVE-2020-14782 CVE-2020-14792 CVE-2020-14796 CVE-2020-14797 CVE-2020-14798 CVE-2020-14803 CVE-2020-25694 CVE-2020-25695 CVE-2020-25696 SUSE-SU-2017:3169-1 SUSE-SU-2018:3770-1 SUSE-SU-2019:2048-1 SUSE-SU-2020:2157-1 SUSE-SU-2020:2167-1 SUSE-SU-2020:3310-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-LTSS SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND yast2-rmt-1.1.2-lp150.2.12 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information containerd-1.2.6-lp151.2.6 is installed OR containerd-ctr-1.2.6-lp151.2.6 is installed OR docker-19.03.1_ce-lp151.2.12 is installed OR docker-bash-completion-19.03.1_ce-lp151.2.12 is installed OR docker-libnetwork-0.7.0.1+gitr2800_fc5a7d91d54c-lp151.2.6 is installed OR docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp151.3.6 is installed OR docker-test-19.03.1_ce-lp151.2.12 is installed OR docker-zsh-completion-19.03.1_ce-lp151.2.12 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2800_fc5a7d91d54c-lp151.2.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_104-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_28-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information crash-7.1.8-3 is installed OR crash-kmp-default-7.1.8_k4.4.73_5-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information MozillaFirefox-68.9.0-109.123 is installed OR MozillaFirefox-translations-common-68.9.0-109.123 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_162-94_72-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_22-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_156-94_64-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_20-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information rsyslog-8.24.0-3.7 is installed OR rsyslog-diag-tools-8.24.0-3.7 is installed OR rsyslog-doc-8.24.0-3.7 is installed OR rsyslog-module-gssapi-8.24.0-3.7 is installed OR rsyslog-module-gtls-8.24.0-3.7 is installed OR rsyslog-module-mysql-8.24.0-3.7 is installed OR rsyslog-module-pgsql-8.24.0-3.7 is installed OR rsyslog-module-relp-8.24.0-3.7 is installed OR rsyslog-module-snmp-8.24.0-3.7 is installed OR rsyslog-module-udpspoof-8.24.0-3.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND apache-commons-httpclient-3.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information xorg-x11-server-1.19.6-4.11 is installed OR xorg-x11-server-extra-1.19.6-4.11 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libmysqlclient18-10.0.38-29.27 is installed OR mariadb-10.0.38-29.27 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information grub2-2.02-12.31 is installed OR grub2-i386-pc-2.02-12.31 is installed OR grub2-snapper-plugin-2.02-12.31 is installed OR grub2-systemd-sleep-plugin-2.02-12.31 is installed OR grub2-x86_64-efi-2.02-12.31 is installed OR grub2-x86_64-xen-2.02-12.31 is installed
BACK