Oval Definition:oval:org.opensuse.security:def:68090
Revision Date:2021-02-10Version:1
Title:Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP1) (Important)
Description:

This update for the Linux Kernel 4.12.14-197_40 fixes several issues.

The following security issues were fixed:

- CVE-2020-36158: Fixed a potential remote code execution in the Marvell mwifiex driver (bsc#1180562). - CVE-2020-0465: Fixed multiple missing bounds checks in hid-multitouch.c that could have led to local privilege escalation (bnc#1180030). - CVE-2020-0466: Fixed a use-after-free due to a logic error in do_epoll_ctl and ep_loop_check_proc of eventpoll.c (bnc#1180032. - CVE-2020-29569: Fixed a use after free due to a logic error (bsc#1180008). - CVE-2020-29660: Fixed a locking inconsistency in the tty subsystem that may have allowed a read-after-free attack against TIOCGSID (bsc#1179877). - CVE-2020-29661: Fixed a locking issue in the tty subsystem that allowed a use-after-free attack against TIOCSPGRP (bsc#1179877). - CVE-2020-29368: Fixed an issue in copy-on-write implementation which could grant unintended write access because of a race condition in a THP mapcount check (bsc#1179664).
Family:unixClass:patch
Status:Reference(s):1051510
1071995
1088047
1098633
1103990
1103991
1103992
1106383
1109837
1111666
1112374
1114685
1119113
1119532
1120423
1125703
1128902
1130836
1131645
1132390
1133401
1133738
1134303
1134395
1135556
1135642
1135897
1136161
1136264
1136343
1136935
1137625
1137728
1138879
1139712
1139751
1139771
1139865
1140133
1140228
1140328
1140405
1140424
1140428
1140454
1140463
1140575
1140577
1140637
1140658
1140715
1140719
1140726
1140727
1140728
1140814
1140887
1140888
1140889
1140891
1140893
1140948
1140954
1140955
1140956
1140957
1140958
1140959
1140960
1140961
1140962
1140964
1140971
1140972
1140992
1179664
1179877
1180008
1180030
1180032
1180562
CVE-2011-3200
CVE-2013-4758
CVE-2013-6370
CVE-2013-6371
CVE-2014-3634
CVE-2014-3683
CVE-2015-3243
CVE-2018-20836
CVE-2019-10126
CVE-2019-10638
CVE-2019-10639
CVE-2019-11599
CVE-2019-13233
CVE-2020-0465
CVE-2020-0466
CVE-2020-29368
CVE-2020-29569
CVE-2020-29660
CVE-2020-29661
CVE-2020-36158
SUSE-SU-2019:1854-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.10 is installed
  • OR kernel-default-base-4.12.14-197.10 is installed
  • OR kernel-default-devel-4.12.14-197.10 is installed
  • OR kernel-default-man-4.12.14-197.10 is installed
  • OR kernel-devel-4.12.14-197.10 is installed
  • OR kernel-macros-4.12.14-197.10 is installed
  • OR kernel-source-4.12.14-197.10 is installed
  • OR kernel-zfcpdump-4.12.14-197.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • rsyslog-module-gssapi-8.33.1-3.9 is installed
  • OR rsyslog-module-gtls-8.33.1-3.9 is installed
  • OR rsyslog-module-mysql-8.33.1-3.9 is installed
  • OR rsyslog-module-pgsql-8.33.1-3.9 is installed
  • OR rsyslog-module-relp-8.33.1-3.9 is installed
  • OR rsyslog-module-snmp-8.33.1-3.9 is installed
  • OR rsyslog-module-udpspoof-8.33.1-3.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND kernel-livepatch-4_12_14-197_40-default-8-2.2 is installed
    • BACK