Oval Definition:oval:org.opensuse.security:def:68293
Revision Date:2021-02-10Version:1
Title:Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP2) (Important)
Description:

This update for the Linux Kernel 5.3.18-24_9 fixes several issues.

The following security issues were fixed:

- CVE-2020-29373: Fixed an issue where kernel unsafely handles the root directory during path lookups, and thus a process inside a mount namespace can escape to unintended filesystem locations (bsc#1179779). - CVE-2020-36158: Fixed a potential remote code execution in the Marvell mwifiex driver (bsc#1180562). - CVE-2020-0465: Fixed multiple missing bounds checks in hid-multitouch.c that could have led to local privilege escalation (bnc#1180030). - CVE-2020-0466: Fixed a use-after-free due to a logic error in do_epoll_ctl and ep_loop_check_proc of eventpoll.c (bnc#1180032. - CVE-2020-29569: Fixed a use after free due to a logic error (bsc#1180008). - CVE-2020-29660: Fixed a locking inconsistency in the tty subsystem that may have allowed a read-after-free attack against TIOCGSID (bsc#1179877). - CVE-2020-29661: Fixed a locking issue in the tty subsystem that allowed a use-after-free attack against TIOCSPGRP (bsc#1179877). - CVE-2020-29368: Fixed an issue in copy-on-write implementation which could grant unintended write access because of a race condition in a THP mapcount check (bsc#1179664).
Family:unixClass:patch
Status:Reference(s):1051510
1055186
1065600
1065729
1071995
1083647
1085030
1094244
1109911
1111666
1112178
1113956
1114279
1118338
1120386
1137325
1142685
1145051
1145929
1148868
1154366
1157424
1158983
1159037
1159198
1159199
1161561
1161951
1162171
1163403
1163897
1164284
1164777
1164780
1164893
1165019
1165182
1165185
1165211
1165823
1165949
1166780
1166860
1166861
1166862
1166864
1166866
1166867
1166868
1166870
1166940
1166982
1167005
1167216
1167288
1167290
1167316
1167421
1167423
1167527
1167627
1167629
1168075
1168202
1168273
1168276
1168295
1168367
1168424
1168443
1168468
1168486
1168552
1168760
1168762
1168763
1168764
1168765
1168829
1168854
1168881
1168884
1168952
1169013
1169057
1169307
1169308
1169390
1169514
1169625
1169972
1171675
1171688
1171742
1173115
1174899
1175228
1175749
1175882
1176011
1176022
1176038
1176235
1176242
1176278
1176316
1176317
1176318
1176319
1176320
1176321
1176381
1176395
1176410
1176423
1176482
1176507
1176536
1176544
1176545
1176546
1176548
1176659
1176698
1176699
1176700
1176721
1176722
1176725
1176732
1176788
1176789
1176869
1176877
1176935
1176950
1176962
1176966
1176990
1177027
1177030
1177041
1177042
1177043
1177044
1177121
1177206
1177258
1177291
1177293
1177294
1177295
1177296
1179664
1179779
1179877
1180008
1180030
1180032
1180562
CVE-2019-19770
CVE-2019-3701
CVE-2019-9458
CVE-2020-0404
CVE-2020-0427
CVE-2020-0431
CVE-2020-0432
CVE-2020-0465
CVE-2020-0466
CVE-2020-10942
CVE-2020-11494
CVE-2020-11669
CVE-2020-14381
CVE-2020-14390
CVE-2020-25212
CVE-2020-25284
CVE-2020-25641
CVE-2020-25643
CVE-2020-26088
CVE-2020-29368
CVE-2020-29373
CVE-2020-29569
CVE-2020-29660
CVE-2020-29661
CVE-2020-36158
CVE-2020-8834
SUSE-SU-2020:1146-1
SUSE-SU-2020:2905-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Live Patching 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.40 is installed
  • OR kernel-default-base-4.12.14-197.40 is installed
  • OR kernel-default-devel-4.12.14-197.40 is installed
  • OR kernel-default-man-4.12.14-197.40 is installed
  • OR kernel-devel-4.12.14-197.40 is installed
  • OR kernel-macros-4.12.14-197.40 is installed
  • OR kernel-source-4.12.14-197.40 is installed
  • OR kernel-zfcpdump-4.12.14-197.40 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed
  • AND kernel-livepatch-5_3_18-24_9-default-6-2.1 is installed
  • BACK