Oval Definition:oval:org.opensuse.security:def:65905
Revision Date:2020-12-01Version:1
Title:Security update for the Linux Kernel (Live Patch 8 for SLE 15 SP1) (Important)
Description:

This update for the Linux Kernel 4.12.14-197_29 fixes several issues.

The following security issues were fixed:

- CVE-2019-14896: A heap-based buffer overflow vulnerability was found in the Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP (bsc#1157157). - CVE-2019-14897: A stack-based buffer overflow was found in the Marvell WiFi chip driver. An attacker was able to cause a denial of service (system crash) or, possibly execute arbitrary code, when a STA works in IBSS mode (allows connecting stations together without the use of an AP) and connects to another STA (bsc#1157155).
Family:unixClass:patch
Status:Reference(s):1160467
1160468
1173477
1173691
1173694
1173700
1173701
1173743
1173874
1173875
1173876
1173880
CVE-2017-18922
CVE-2018-21247
CVE-2019-14896
CVE-2019-14897
CVE-2019-20839
CVE-2019-20840
CVE-2020-14397
CVE-2020-14398
CVE-2020-14399
CVE-2020-14400
CVE-2020-14401
CVE-2020-14402
SUSE-SU-2020:0204-1
SUSE-SU-2020:1922-1
Platform(s):SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1
SUSE Linux Enterprise Module for Live Patching 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed
  • AND Package Information
  • LibVNCServer-0.9.10-4.22 is installed
  • OR libvncserver0-0.9.10-4.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-197_29-default-2-2 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_8-2-2 is installed
    • BACK