Oval Definition:oval:org.opensuse.security:def:69219
Revision Date:2020-12-01Version:1
Title:Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP1) (Important)
Description:

This update for the Linux Kernel 4.12.14-195 fixes several issues.

The following security issue was fixed:

- CVE-2019-14835: A buffer overflow flaw was found in the way vhost functionality, that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host (bsc#1151021).
Family:unixClass:patch
Status:Reference(s):1109412
1109413
1109414
1111996
1112534
1112535
1113247
1113252
1113255
1116827
1118644
1118830
1118831
1120640
1121034
1121035
1121056
1133131
1133232
1141913
1142772
1149841
1151021
1152590
1154016
1154025
CVE-2018-1000876
CVE-2018-17358
CVE-2018-17359
CVE-2018-17360
CVE-2018-17985
CVE-2018-18309
CVE-2018-18483
CVE-2018-18484
CVE-2018-18605
CVE-2018-18606
CVE-2018-18607
CVE-2018-19931
CVE-2018-19932
CVE-2018-20623
CVE-2018-20651
CVE-2018-20671
CVE-2018-6323
CVE-2018-6543
CVE-2018-6759
CVE-2018-6872
CVE-2018-7208
CVE-2018-7568
CVE-2018-7569
CVE-2018-7570
CVE-2018-7642
CVE-2018-7643
CVE-2018-8945
CVE-2019-1010180
CVE-2019-14835
SUSE-SU-2019:2779-1
Platform(s):SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1
SUSE Linux Enterprise Module for Live Patching 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed
  • AND Package Information
  • binutils-2.32-7.5 is installed
  • OR binutils-gold-2.32-7.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-195-default-6-16 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_0-6-16 is installed
    • BACK