Oval Definition:	oval:org.opensuse.security:def:67788
Revision Date: 2021-08-17 Version: 1 Title: Security update for the Linux Kernel (Live Patch 22 for SLE 15) (Important) Description: This update for the Linux Kernel 4.12.14-150_66 fixes several issues. The following security issues were fixed: - CVE-2021-22543: Fixed an issue with KVM, related to the handling of VM_IO|VM_PFNMAP vmas, which allowed users with the ability to start and control a VM to read/write random pages of memory and could result in local privilege escalation (bsc#1186482). - CVE-2021-37576: On the powerpc platform KVM guest OS users could cause host OS memory corruption via rtas_args.nargs (bsc#1188838). - CVE-2021-3609: Fixed a local privilege escalation via a race condition in net/can/bcm.c (bsc#1187215). Family: unix Class: patch Status: Reference(s): 1186483 1188323 1188842 CVE-2014-3618 CVE-2017-16844 CVE-2019-7572 CVE-2019-7573 CVE-2019-7574 CVE-2019-7575 CVE-2019-7576 CVE-2019-7577 CVE-2019-7578 CVE-2019-7635 CVE-2019-7636 CVE-2019-7637 CVE-2019-7638 CVE-2021-22543 CVE-2021-3609 CVE-2021-37576 Platform(s): SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server for SAP Applications 15 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND procmail-3.22-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information libSDL-1_2-0-1.2.15-3.9 is installed OR libSDL-devel-1.2.15-3.9 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND kernel-livepatch-4_12_14-150_66-default-9-2.2 is installed
BACK