Oval Definition:oval:org.opensuse.security:def:67799
Revision Date:2021-10-13Version:1
Title:Security update for the Linux Kernel (Live Patch 23 for SLE 15) (Important)
Description:

This update for the Linux Kernel 4.12.14-150_69 fixes several issues.

The following security issues were fixed:

- CVE-2021-3715: Fixed a user-after-free in the Linux kernel's Traffic Control networking subsystem which could lead to local privilege escalation. (bsc#1190350). - CVE-2021-38160: Fixed a bug that could lead to a data corruption or loss. This can be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size in drivers/char/virtio_console.c (bsc#1190118) - CVE-2021-3640: Fixed a user-after-free bug in the function sco_sock_sendmsg which could lead to local privilege escalation. (bsc#1188613) - CVE-2021-3573: Fixed a user-after-free bug in the function hci_sock_bound_ioctl which could lead to local privilege escalation. (bsc#1187054).
Family:unixClass:patch
Status:Reference(s):1187054
1188613
1190118
1190350
CVE-2015-2296
CVE-2015-8216
CVE-2015-8217
CVE-2015-8218
CVE-2015-8219
CVE-2015-8363
CVE-2015-8364
CVE-2015-8365
CVE-2015-8661
CVE-2015-8662
CVE-2015-8663
CVE-2016-10190
CVE-2016-10191
CVE-2016-10192
CVE-2016-1897
CVE-2016-1898
CVE-2017-11399
CVE-2017-11665
CVE-2017-14054
CVE-2017-14055
CVE-2017-14056
CVE-2017-14057
CVE-2017-14058
CVE-2017-14059
CVE-2017-14169
CVE-2017-14170
CVE-2017-14171
CVE-2017-14222
CVE-2017-14223
CVE-2017-14225
CVE-2017-15186
CVE-2017-15672
CVE-2017-16840
CVE-2017-17081
CVE-2017-17555
CVE-2017-7859
CVE-2017-7862
CVE-2017-7863
CVE-2017-7865
CVE-2017-7866
CVE-2018-12458
CVE-2018-13300
CVE-2018-13302
CVE-2018-13305
CVE-2018-15822
CVE-2018-18074
CVE-2018-1999010
CVE-2018-1999011
CVE-2018-1999012
CVE-2018-1999013
CVE-2018-6392
CVE-2018-6621
CVE-2021-3573
CVE-2021-3640
CVE-2021-3715
CVE-2021-38160
SUSE-SU-2021:3401-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Server 15
SUSE Linux Enterprise Server for SAP Applications 15
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND python3-requests-2.20.0-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • libavcodec57-3.4.2-4.12 is installed
  • OR libavutil-devel-3.4.2-4.12 is installed
  • OR libavutil55-3.4.2-4.12 is installed
  • OR libpostproc-devel-3.4.2-4.12 is installed
  • OR libpostproc54-3.4.2-4.12 is installed
  • OR libswresample-devel-3.4.2-4.12 is installed
  • OR libswresample2-3.4.2-4.12 is installed
  • OR libswscale-devel-3.4.2-4.12 is installed
  • OR libswscale4-3.4.2-4.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND kernel-livepatch-4_12_14-150_69-default-10-2.2 is installed
    • BACK