Oval Definition:oval:org.opensuse.security:def:68264
Revision Date:2021-09-16Version:1
Title:Security update for the Linux Kernel (Live Patch 16 for SLE 15 SP2) (Important)
Description:

This update for the Linux Kernel 5.3.18-24_70 fixes several issues.

The following security issues were fixed:

- CVE-2021-3653: Fixed missing validation of the KVM `int_ctl` VMCB field that would have allowed a malicious L1 guest to enable AVIC support for the L2 guest (bsc#1189420). - CVE-2021-3656: Fixed KVM nSVM nested VMLOAD/VMSAVE interception (bsc#1189418). - CVE-2021-38198: Fixed KVM MMU to use the correct inherited permissions to get shadow page (bsc#1189278).
Family:unixClass:patch
Status:Reference(s):1013712
1027282
1041090
1042670
1068664
1073269
1073748
1078326
1078485
1079300
1081750
1083507
1084650
1086001
1088004
1088009
1109847
1111793
1113755
1122191
1129346
1130840
1130847
1138459
1141853
1149792
1149955
1153238
1153830
1159035
1189278
1189418
1189420
214983
298378
346490
367853
379534
380942
399190
406051
425138
426563
430761
432677
436966
437293
441088
462375
525295
534721
551715
572673
577032
581765
603255
617751
637176
638233
658604
673071
682554
697251
707667
718009
747125
747794
751718
754447
766778
794139
804978
827982
831442
834601
836739
856835
856836
857470
863741
885882
898572
901715
935856
945401
964182
984751
985177
985348
989523
997436
CVE-2007-2052
CVE-2008-1721
CVE-2008-2315
CVE-2008-2316
CVE-2008-3142
CVE-2008-3143
CVE-2008-3144
CVE-2011-1521
CVE-2011-3389
CVE-2011-4944
CVE-2012-0845
CVE-2012-1150
CVE-2013-1752
CVE-2013-1753
CVE-2013-4238
CVE-2014-1912
CVE-2014-4650
CVE-2014-7185
CVE-2016-0772
CVE-2016-1000110
CVE-2016-5636
CVE-2016-5699
CVE-2016-9798
CVE-2017-1000158
CVE-2017-18207
CVE-2018-1000030
CVE-2018-1000802
CVE-2018-1060
CVE-2018-1061
CVE-2018-14647
CVE-2018-20852
CVE-2019-10160
CVE-2019-16056
CVE-2019-16935
CVE-2019-5010
CVE-2019-9636
CVE-2019-9947
CVE-2019-9948
CVE-2021-3653
CVE-2021-3656
CVE-2021-38198
SUSE-SU-2019:3046-1
SUSE-SU-2020:0234-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Live Patching 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • bluez-5.48-5.19 is installed
  • OR libbluetooth3-5.48-5.19 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed
  • AND kernel-livepatch-5_3_18-24_70-default-4-2.3 is installed
  • BACK