OVAL Reference oval:org.opensuse.security:def:68068

Oval Definition:

oval:org.opensuse.security:def:68068

Revision Date:	2021-10-14	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 16 for SLE 15 SP1) (Important)
Description:	This update for the Linux Kernel 4.12.14-197_61 fixes several issues. The following security issues were fixed: - CVE-2021-38160: Fixed a bug that could lead to a data corruption or loss. This can be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size in drivers/char/virtio_console.c (bsc#1190118) - CVE-2021-3640: Fixed a user-after-free bug in the function sco_sock_sendmsg which could lead to local privilege escalation. (bsc#1188613) - CVE-2021-3573: Fixed a user-after-free bug in the function hci_sock_bound_ioctl which could lead to local privilege escalation. (bsc#1187054).
Family:	unix	Class:	patch
Status:		Reference(s):	1104129 1126068 1126069 1133185 1187054 1188613 1190118 CVE-2010-1674 CVE-2010-1675 CVE-2013-2236 CVE-2016-1245 CVE-2016-2342 CVE-2016-4049 CVE-2017-16227 CVE-2017-5495 CVE-2018-5378 CVE-2018-5379 CVE-2018-5380 CVE-2018-5381 CVE-2018-5740 CVE-2018-5743 CVE-2018-5745 CVE-2019-6465 CVE-2021-3573 CVE-2021-3640 CVE-2021-38160 SUSE-SU-2019:1407-1
Platform(s):	SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SP1	Product(s):
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information bind-9.11.2-12.11 is installed OR bind-devel-9.11.2-12.11 is installed OR bind-utils-9.11.2-12.11 is installed OR libbind9-160-9.11.2-12.11 is installed OR libdns169-9.11.2-12.11 is installed OR libirs-devel-9.11.2-12.11 is installed OR libirs160-9.11.2-12.11 is installed OR libisc166-9.11.2-12.11 is installed OR libisccc160-9.11.2-12.11 is installed OR libisccfg160-9.11.2-12.11 is installed OR liblwres160-9.11.2-12.11 is installed OR python3-bind-9.11.2-12.11 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information libfpm_pb0-1.1.1-2 is installed OR libospf0-1.1.1-2 is installed OR libospfapiclient0-1.1.1-2 is installed OR libquagga_pb0-1.1.1-2 is installed OR libzebra1-1.1.1-2 is installed OR quagga-1.1.1-2 is installed OR quagga-devel-1.1.1-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND kernel-livepatch-4_12_14-197_61-default-14-2.2 is installed

BACK