Oval Definition:oval:org.opensuse.security:def:69239
Revision Date:2020-12-01Version:1
Title:Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP1) (Important)
Description:

This update for the Linux Kernel 4.12.14-197_40 fixes several issues.

The following security issues were fixed:

- CVE-2020-12653: Fixed a buffer overflow in mwifiex_cmd_append_vsie_tlv() which could have allowed local users to gain privileges or cause a denial of service (bsc#1171254). - CVE-2020-12654: Fixed a heap-based buffer overflow in mwifiex_ret_wmm_get_status() which could have been triggered by a remote AP to trigger (bsc#1171252). - CVE-2020-1749: Fixed an improper implementation in some IPsec protocols where the data were sent unencrypted allowing an attacker to read them (bsc#1165631).
Family:unixClass:patch
Status:Reference(s):1165631
1171252
1171254
1173477
1173691
1173694
1173700
1173701
1173743
1173874
1173875
1173876
1173880
CVE-2017-18922
CVE-2018-21247
CVE-2019-20839
CVE-2019-20840
CVE-2020-12653
CVE-2020-12654
CVE-2020-14397
CVE-2020-14398
CVE-2020-14399
CVE-2020-14400
CVE-2020-14401
CVE-2020-14402
CVE-2020-1749
SUSE-SU-2020:1452-1
SUSE-SU-2020:1922-1
Platform(s):SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1
SUSE Linux Enterprise Module for Live Patching 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-197_40-default-2-2 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_11-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed
  • AND Package Information
  • LibVNCServer-0.9.10-4.22 is installed
  • OR libvncserver0-0.9.10-4.22 is installed
    • BACK