OVAL Reference oval:org.opensuse.security:def:6939

Oval Definition:

oval:org.opensuse.security:def:6939

Revision Date:	2021-07-27	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 16 for SLE 15 SP1) (Important)
Description:	This update for the Linux Kernel 4.12.14-197_61 fixes several issues. The following security issues were fixed: - CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to andobtain full root privileges. (bsc#1188062) - CVE-2021-22555: Fixed an heap out-of-bounds write in net/netfilter/x_tables.c that could allow local provilege escalation. (bsc#1188116) - CVE-2020-36385: Fixed a use-after-free vulnerability reached via the ctx_list in some ucma_migrate_id situations where ucma_close is called. (bnc#1187050)
Family:	unix	Class:	patch
Status:		Reference(s):	1187052 1188117 1188257 CVE-2007-4129 CVE-2009-0159 CVE-2009-1252 CVE-2009-5029 CVE-2011-0421 CVE-2011-2199 CVE-2011-2489 CVE-2011-2490 CVE-2011-3172 CVE-2012-0035 CVE-2012-1162 CVE-2012-1163 CVE-2012-2451 CVE-2012-2451 CVE-2012-4412 CVE-2013-0242 CVE-2013-1914 CVE-2013-1992 CVE-2013-2207 CVE-2013-4237 CVE-2013-4326 CVE-2013-4332 CVE-2013-4458 CVE-2013-5211 CVE-2014-0250 CVE-2014-0475 CVE-2014-0791 CVE-2014-3421 CVE-2014-3422 CVE-2014-3423 CVE-2014-3424 CVE-2014-3467 CVE-2014-3468 CVE-2014-3469 CVE-2014-4043 CVE-2014-5119 CVE-2014-6040 CVE-2014-9293 CVE-2014-9294 CVE-2014-9295 CVE-2014-9296 CVE-2014-9297 CVE-2014-9298 CVE-2015-1798 CVE-2015-1799 CVE-2015-2331 CVE-2015-3405 CVE-2015-5219 CVE-2015-5300 CVE-2015-7691 CVE-2015-7692 CVE-2015-7701 CVE-2015-7702 CVE-2015-7703 CVE-2015-7704 CVE-2015-7705 CVE-2015-7848 CVE-2015-7849 CVE-2015-7850 CVE-2015-7851 CVE-2015-7852 CVE-2015-7853 CVE-2015-7854 CVE-2015-7855 CVE-2015-7871 CVE-2015-7973 CVE-2015-7974 CVE-2015-7975 CVE-2015-7976 CVE-2015-7977 CVE-2015-7978 CVE-2015-7979 CVE-2015-8138 CVE-2015-8139 CVE-2015-8140 CVE-2015-8158 CVE-2015-8370 CVE-2016-1547 CVE-2016-1548 CVE-2016-1549 CVE-2016-1550 CVE-2016-1551 CVE-2016-2516 CVE-2016-2517 CVE-2016-2518 CVE-2016-2519 CVE-2016-4953 CVE-2016-4954 CVE-2016-4955 CVE-2016-4956 CVE-2016-4957 CVE-2016-7426 CVE-2016-7427 CVE-2016-7428 CVE-2016-7429 CVE-2016-7431 CVE-2016-7433 CVE-2016-7434 CVE-2016-9042 CVE-2016-9310 CVE-2016-9311 CVE-2017-14107 CVE-2017-2834 CVE-2017-2835 CVE-2017-2836 CVE-2017-2837 CVE-2017-2838 CVE-2017-2839 CVE-2017-6451 CVE-2017-6458 CVE-2017-6460 CVE-2017-6462 CVE-2017-6463 CVE-2017-6464 CVE-2018-12327 CVE-2018-7170 CVE-2018-7182 CVE-2018-7183 CVE-2018-7184 CVE-2018-7185 CVE-2019-8936 CVE-2020-36385 CVE-2021-22555 CVE-2021-33909
Platform(s):	openSUSE 13.1 openSUSE 13.1 NonFree openSUSE 13.2 openSUSE 13.2 NonFree openSUSE Leap 42.1 SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Real Time Extension 12 SP1 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4	Product(s):
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 is installed AND Package Information cups-1.7.5-9 is installed OR cups-ddk-1.7.5-9 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND Package Information krb5-mini-1.12.1-28 is installed OR krb5-mini-devel-1.12.1-28 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND kernel-zfcpdump-4.4.74-92.29 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND kernel-zfcpdump-4.4.92-6.18 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND bogofilter-1.1.1-174.27.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-31.8.0esr-0.10.1 is installed OR MozillaFirefox-translations-31.8.0esr-0.10.1 is installed OR libfreebl3-3.19.2_CKBI_1.98-0.10.1 is installed OR libfreebl3-32bit-3.19.2_CKBI_1.98-0.10.1 is installed OR libsoftokn3-3.19.2_CKBI_1.98-0.10.1 is installed OR libsoftokn3-32bit-3.19.2_CKBI_1.98-0.10.1 is installed OR mozilla-nspr-4.10.8-0.5.1 is installed OR mozilla-nspr-32bit-4.10.8-0.5.1 is installed OR mozilla-nss-3.19.2_CKBI_1.98-0.10.1 is installed OR mozilla-nss-32bit-3.19.2_CKBI_1.98-0.10.1 is installed OR mozilla-nss-tools-3.19.2_CKBI_1.98-0.10.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information MozillaFirefox-38.7.0esr-37.3 is installed OR MozillaFirefox-translations-38.7.0esr-37.3 is installed OR libfreebl3-3.20.2-28.1 is installed OR libfreebl3-32bit-3.20.2-28.1 is installed OR libsoftokn3-3.20.2-28.1 is installed OR libsoftokn3-32bit-3.20.2-28.1 is installed OR mozilla-nspr-4.12-24.1 is installed OR mozilla-nspr-32bit-4.12-24.1 is installed OR mozilla-nss-3.20.2-28.1 is installed OR mozilla-nss-32bit-3.20.2-28.1 is installed OR mozilla-nss-tools-3.20.2-28.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libz1-1.2.8-6.3 is installed OR libz1-32bit-1.2.8-6.3 is installed OR zlib-1.2.8-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information java-1_7_0-openjdk-1.7.0.121-36 is installed OR java-1_7_0-openjdk-headless-1.7.0.121-36 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libsystemd0-228-150.9 is installed OR libsystemd0-32bit-228-150.9 is installed OR libudev1-228-150.9 is installed OR libudev1-32bit-228-150.9 is installed OR systemd-228-150.9 is installed OR systemd-32bit-228-150.9 is installed OR systemd-bash-completion-228-150.9 is installed OR systemd-sysvinit-228-150.9 is installed OR udev-228-150.9 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information freerdp-2.0.0~git.1463131968.4e66df7-12.3 is installed OR libfreerdp2-2.0.0~git.1463131968.4e66df7-12.3 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information kgraft-patch-3_12_74-60_64_60-default-2-4 is installed OR kgraft-patch-3_12_74-60_64_60-xen-2-4 is installed OR kgraft-patch-SLE12-SP1_Update_21-2-4 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND libzip2-0.11.1-13.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND kernel-livepatch-4_12_14-197_61-default-11-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Real Time Extension 12 SP1 is installed AND Package Information kernel-compute-3.12.61-60.18 is installed OR kernel-compute-base-3.12.61-60.18 is installed OR kernel-compute-devel-3.12.61-60.18 is installed OR kernel-compute_debug-3.12.61-60.18 is installed OR kernel-compute_debug-devel-3.12.61-60.18 is installed OR kernel-devel-rt-3.12.61-60.18 is installed OR kernel-rt-3.12.61-60.18 is installed OR kernel-rt-base-3.12.61-60.18 is installed OR kernel-rt-devel-3.12.61-60.18 is installed OR kernel-rt_debug-3.12.61-60.18 is installed OR kernel-rt_debug-devel-3.12.61-60.18 is installed OR kernel-source-rt-3.12.61-60.18 is installed OR kernel-syms-rt-3.12.61-60.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 is installed AND sendmail-8.14.3-50.20.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP1-LTSS is installed AND Package Information MozillaFirefox-17.0.7esr-0.3.1 is installed OR MozillaFirefox-branding-SLED-7-0.6.9.31 is installed OR MozillaFirefox-translations-17.0.7esr-0.3.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND apache2-2.2.12-1.40.1 is installed OR apache2-doc-2.2.12-1.40.1 is installed OR apache2-example-pages-2.2.12-1.40.1 is installed OR apache2-prefork-2.2.12-1.40.1 is installed OR apache2-utils-2.2.12-1.40.1 is installed OR apache2-worker-2.2.12-1.40.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP2-LTSS is installed AND apache2-2.2.12-1.40.1 is installed OR apache2-doc-2.2.12-1.40.1 is installed OR apache2-example-pages-2.2.12-1.40.1 is installed OR apache2-prefork-2.2.12-1.40.1 is installed OR apache2-utils-2.2.12-1.40.1 is installed OR apache2-worker-2.2.12-1.40.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP2 is installed AND apache2-2.2.12-1.40.1 is installed OR apache2-doc-2.2.12-1.40.1 is installed OR apache2-example-pages-2.2.12-1.40.1 is installed OR apache2-prefork-2.2.12-1.40.1 is installed OR apache2-utils-2.2.12-1.40.1 is installed OR apache2-worker-2.2.12-1.40.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND Mesa-7.11.2-0.9.1 is installed OR Mesa-32bit-7.11.2-0.9.1 is installed OR Mesa-x86-7.11.2-0.9.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP2 is installed AND Mesa-7.11.2-0.9.1 is installed OR Mesa-32bit-7.11.2-0.9.1 is installed OR Mesa-x86-7.11.2-0.9.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2-LTSS is installed AND Package Information ImageMagick-6.4.3.6-7.40.1 is installed OR libMagickCore1-6.4.3.6-7.40.1 is installed OR libMagickCore1-32bit-6.4.3.6-7.40.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND clamav-0.97.7-0.3.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND syslog-ng-2.0.9-27.34.36.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND coolkey-1.1.0-147 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information apache2-2.4.16-5 is installed OR apache2-doc-2.4.16-5 is installed OR apache2-example-pages-2.4.16-5 is installed OR apache2-prefork-2.4.16-5 is installed OR apache2-utils-2.4.16-5 is installed OR apache2-worker-2.4.16-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_32-default-4-3.1 is installed OR kgraft-patch-3_12_69-60_64_32-xen-4-3.1 is installed OR kgraft-patch-SLE12-SP1_Update_13-4-3.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND ant-1.9.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND clamav-0.99.2-32 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND autofs-5.0.9-28.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP5 is installed AND Package Information PackageKit-1.1.3-24.9 is installed OR PackageKit-backend-zypp-1.1.3-24.9 is installed OR PackageKit-lang-1.1.3-24.9 is installed OR libpackagekit-glib2-18-1.1.3-24.9 is installed OR typelib-1_0-PackageKitGlib-1_0-1.1.3-24.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_55-52_45-default-2-2.3 is installed OR kgraft-patch-3_12_55-52_45-xen-2-2.3 is installed OR kgraft-patch-SLE12_Update_13-2-2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information krb5-1.12.5-40.13 is installed OR krb5-client-1.12.5-40.13 is installed OR krb5-doc-1.12.5-40.13 is installed OR krb5-plugin-kdb-ldap-1.12.5-40.13 is installed OR krb5-plugin-preauth-otp-1.12.5-40.13 is installed OR krb5-plugin-preauth-pkinit-1.12.5-40.13 is installed OR krb5-server-1.12.5-40.13 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 is installed AND Package Information compat-libldap-2_3-0-2.3.37-16 is installed OR openldap2-2.4.39-16 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND Package Information compat-openssl098-0.9.8j-102 is installed OR libopenssl0_9_8-0.9.8j-102 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND a2ps-devel-4.13-1326.37.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND PolicyKit-devel-0.9-14.43.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information libzzip-0-13-0.13.62-9 is installed OR zziplib-0.13.62-9 is installed OR zziplib-devel-0.13.62-9 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information gd-2.1.0-20 is installed OR gd-devel-2.1.0-20 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information lhasa-devel-0.2.0-5 is installed OR liblhasa0-0.2.0-5 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND Package Information ImageMagick-6.8.8.1-71.85 is installed OR ImageMagick-devel-6.8.8.1-71.85 is installed OR libMagick++-6_Q16-3-6.8.8.1-71.85 is installed OR libMagick++-devel-6.8.8.1-71.85 is installed OR perl-PerlMagick-6.8.8.1-71.85 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND java-1_7_0-openjdk-plugin-1.5.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND argyllcms-1.6.3-1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND libdirectfb-1_7-1-32bit-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information NetworkManager-1.0.12-12 is installed OR NetworkManager-lang-1.0.12-12 is installed OR typelib-1_0-NM-1_0-1.0.12-12 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND Package Information gstreamer-0_10-plugins-bad-0.10.23-25 is installed OR gstreamer-0_10-plugins-bad-lang-0.10.23-25 is installed OR libgstbasecamerabinsrc-0_10-23-0.10.23-25 is installed OR libgstbasecamerabinsrc-0_10-23-32bit-0.10.23-25 is installed OR libgstbasevideo-0_10-23-0.10.23-25 is installed OR libgstbasevideo-0_10-23-32bit-0.10.23-25 is installed OR libgstcodecparsers-0_10-23-0.10.23-25 is installed OR libgstphotography-0_10-23-0.10.23-25 is installed OR libgstphotography-0_10-23-32bit-0.10.23-25 is installed OR libgstsignalprocessor-0_10-23-0.10.23-25 is installed OR libgstsignalprocessor-0_10-23-32bit-0.10.23-25 is installed OR libgstvdp-0_10-23-0.10.23-25 is installed OR libgstvdp-0_10-23-32bit-0.10.23-25 is installed

BACK