Oval Definition:oval:org.opensuse.security:def:68183
Revision Date:2021-05-25Version:1
Title:Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP2) (Important)
Description:

This update for the Linux Kernel 5.3.18-24_12 fixes several issues.

The following security issues were fixed:

- CVE-2020-36322: Fixed an issue inside the FUSE filesystem implementation where fuse_do_getattr() calls make_bad_inode() in inappropriate situations, could have caused a system crash. NOTE: the original fix for this vulnerability was incomplete, and its incompleteness is tracked as CVE-2021-28950 (bsc#1184952). - CVE-2021-29154: Fixed BPF JIT compilers that allowed to execute arbitrary code within the kernel context (bsc#1184710)
Family:unixClass:patch
Status:Reference(s):1133291
1135715
1148987
1155338
1155339
1184710
1184952
CVE-2019-13627
CVE-2019-6237
CVE-2019-8571
CVE-2019-8583
CVE-2019-8584
CVE-2019-8586
CVE-2019-8587
CVE-2019-8594
CVE-2019-8595
CVE-2019-8596
CVE-2019-8597
CVE-2019-8601
CVE-2019-8607
CVE-2019-8608
CVE-2019-8609
CVE-2019-8610
CVE-2019-8611
CVE-2019-8615
CVE-2019-8619
CVE-2019-8622
CVE-2019-8623
CVE-2020-36322
CVE-2021-29154
SUSE-SU-2019:3392-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Live Patching 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.24.2-3.27 is installed
  • OR libwebkit2gtk-4_0-37-2.24.2-3.27 is installed
  • OR libwebkit2gtk3-lang-2.24.2-3.27 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.24.2-3.27 is installed
  • OR webkit2gtk3-2.24.2-3.27 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed
  • AND kernel-livepatch-5_3_18-24_12-default-9-2.2 is installed
    • BACK