Oval Definition:	oval:org.opensuse.security:def:67780
Revision Date: 2021-07-27 Version: 1 Title: Security update for the Linux Kernel (Live Patch 23 for SLE 15) (Important) Description: This update for the Linux Kernel 4.12.14-150_69 fixes several issues. The following security issues were fixed: - CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to andobtain full root privileges. (bsc#1188062) - CVE-2021-22555: Fixed an heap out-of-bounds write in net/netfilter/x_tables.c that could allow local provilege escalation. (bsc#1188116) - CVE-2020-36385: Fixed a use-after-free vulnerability reached via the ctx_list in some ucma_migrate_id situations where ucma_close is called. (bnc#1187050) Family: unix Class: patch Status: Reference(s): 1187052 1188117 1188257 CVE-2013-7447 CVE-2016-1246 CVE-2016-1249 CVE-2016-1251 CVE-2017-10788 CVE-2017-10789 CVE-2020-36385 CVE-2021-22555 CVE-2021-33909 Platform(s): SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server for SAP Applications 15 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND perl-DBD-mysql-4.046-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information gtk2-data-2.24.32-2 is installed OR gtk2-tools-32bit-2.24.32-2 is installed OR libgtk-2_0-0-32bit-2.24.32-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND kernel-livepatch-4_12_14-150_69-default-7-2.2 is installed
BACK