OVAL Reference oval:org.opensuse.security:def:6997

Oval Definition:

oval:org.opensuse.security:def:6997

Revision Date:	2021-02-10	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP1) (Important)
Description:	This update for the Linux Kernel 4.12.14-197_56 fixes several issues. The following security issues were fixed: - CVE-2020-36158: Fixed a potential remote code execution in the Marvell mwifiex driver (bsc#1180562). - CVE-2020-0465: Fixed multiple missing bounds checks in hid-multitouch.c that could have led to local privilege escalation (bnc#1180030). - CVE-2020-0466: Fixed a use-after-free due to a logic error in do_epoll_ctl and ep_loop_check_proc of eventpoll.c (bnc#1180032. - CVE-2020-29569: Fixed a use after free due to a logic error (bsc#1180008). - CVE-2020-29660: Fixed a locking inconsistency in the tty subsystem that may have allowed a read-after-free attack against TIOCGSID (bsc#1179877). - CVE-2020-29661: Fixed a locking issue in the tty subsystem that allowed a use-after-free attack against TIOCSPGRP (bsc#1179877). - CVE-2020-29368: Fixed an issue in copy-on-write implementation which could grant unintended write access because of a race condition in a THP mapcount check (bsc#1179664).
Family:	unix	Class:	patch
Status:		Reference(s):	1179664 1179877 1180008 1180030 1180032 1180562 CVE-2009-0035 CVE-2009-1720 CVE-2009-1721 CVE-2009-2412 CVE-2010-2240 CVE-2011-0419 CVE-2011-1018 CVE-2011-1928 CVE-2011-2199 CVE-2012-0247 CVE-2012-0248 CVE-2012-1174 CVE-2012-1185 CVE-2012-1186 CVE-2013-1571 CVE-2013-1762 CVE-2013-1940 CVE-2013-4288 CVE-2013-4396 CVE-2013-6424 CVE-2014-0011 CVE-2014-0016 CVE-2014-10070 CVE-2014-10071 CVE-2014-10072 CVE-2014-3566 CVE-2014-3675 CVE-2014-3676 CVE-2014-3677 CVE-2014-8240 CVE-2015-0255 CVE-2016-10714 CVE-2016-1602 CVE-2017-12596 CVE-2017-18205 CVE-2017-9110 CVE-2017-9114 CVE-2018-1071 CVE-2018-1083 CVE-2018-12470 CVE-2018-12471 CVE-2018-12472 CVE-2018-19636 CVE-2018-19637 CVE-2018-19638 CVE-2018-19639 CVE-2018-19640 CVE-2018-7549 CVE-2020-0465 CVE-2020-0466 CVE-2020-29368 CVE-2020-29569 CVE-2020-29660 CVE-2020-29661 CVE-2020-36158
Platform(s):	openSUSE 13.1 openSUSE 13.1 NonFree openSUSE 13.2 openSUSE 13.2 NonFree openSUSE Leap 42.1 SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Build System Kit 12 SP4 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Real Time Extension 12 SP2 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4	Product(s):
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 is installed AND Package Information krb5-mini-1.12.1-16 is installed OR krb5-mini-devel-1.12.1-16 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND kernel-zfcpdump-3.12.59-60.45 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND kernel-zfcpdump-4.4.21-84 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND kernel-zfcpdump-4.4.82-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP4 is installed AND Package Information mariadb-10.2.21-3.7 is installed OR mariadb-bench-10.2.21-3.7 is installed OR mariadb-test-10.2.21-3.7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libxml2-2.7.6-0.25.1 is installed OR libxml2-32bit-2.7.6-0.25.1 is installed OR libxml2-python-2.7.6-0.25.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information bind-libs-9.9.4P2-0.6.1 is installed OR bind-libs-32bit-9.9.4P2-0.6.1 is installed OR bind-utils-9.9.4P2-0.6.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information MozillaFirefox-38.7.0esr-37.3 is installed OR MozillaFirefox-translations-38.7.0esr-37.3 is installed OR libfreebl3-3.20.2-28.1 is installed OR libfreebl3-32bit-3.20.2-28.1 is installed OR libsoftokn3-3.20.2-28.1 is installed OR libsoftokn3-32bit-3.20.2-28.1 is installed OR mozilla-nspr-4.12-24.1 is installed OR mozilla-nspr-32bit-4.12-24.1 is installed OR mozilla-nss-3.20.2-28.1 is installed OR mozilla-nss-32bit-3.20.2-28.1 is installed OR mozilla-nss-tools-3.20.2-28.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information cpio-2.11-29 is installed OR cpio-lang-2.11-29 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information java-1_7_0-openjdk-1.7.0.141-42 is installed OR java-1_7_0-openjdk-headless-1.7.0.141-42 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libmysqlclient18-10.0.28-17 is installed OR libmysqlclient18-32bit-10.0.28-17 is installed OR libmysqlclient_r18-10.0.28-17 is installed OR libmysqlclient_r18-32bit-10.0.28-17 is installed OR mariadb-10.0.28-17 is installed OR mariadb-client-10.0.28-17 is installed OR mariadb-errormessages-10.0.28-17 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libquicktime-1.2.4-14.3 is installed OR libquicktime0-1.2.4-14.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libIlmImf-Imf_2_1-21-2.1.0-6.3 is installed OR libIlmImf-Imf_2_1-21-32bit-2.1.0-6.3 is installed OR openexr-2.1.0-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information kgraft-patch-3_12_74-60_64_45-default-11-2 is installed OR kgraft-patch-3_12_74-60_64_45-xen-11-2 is installed OR kgraft-patch-SLE12-SP1_Update_16-11-2 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information res-signingkeys-3.0.42-52.38 is installed OR smt-3.0.42-52.38 is installed OR smt-support-3.0.42-52.38 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND kernel-livepatch-4_12_14-197_56-default-5-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Real Time Extension 12 SP2 is installed AND Package Information cluster-md-kmp-rt-4.4.88-18 is installed OR cluster-network-kmp-rt-4.4.88-18 is installed OR dlm-kmp-rt-4.4.88-18 is installed OR gfs2-kmp-rt-4.4.88-18 is installed OR kernel-devel-rt-4.4.88-18 is installed OR kernel-rt-4.4.88-18 is installed OR kernel-rt-base-4.4.88-18 is installed OR kernel-rt-devel-4.4.88-18 is installed OR kernel-rt_debug-4.4.88-18 is installed OR kernel-rt_debug-devel-4.4.88-18 is installed OR kernel-source-rt-4.4.88-18 is installed OR kernel-syms-rt-4.4.88-18 is installed OR ocfs2-kmp-rt-4.4.88-18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP1-LTSS is installed AND Package Information libxml2-2.7.6-0.25.1 is installed OR libxml2-32bit-2.7.6-0.25.1 is installed OR libxml2-doc-2.7.6-0.25.1 is installed OR libxml2-python-2.7.6-0.25.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND strongswan-4.4.0-6.21.1 is installed OR strongswan-doc-4.4.0-6.21.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP2-LTSS is installed AND strongswan-4.4.0-6.21.1 is installed OR strongswan-doc-4.4.0-6.21.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP2 is installed AND strongswan-4.4.0-6.21.1 is installed OR strongswan-doc-4.4.0-6.21.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND dhcp-4.2.4.P2-0.11.13.1 is installed OR dhcp-client-4.2.4.P2-0.11.13.1 is installed OR dhcp-relay-4.2.4.P2-0.11.13.1 is installed OR dhcp-server-4.2.4.P2-0.11.13.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP2 is installed AND dhcp-4.2.4.P2-0.11.13.1 is installed OR dhcp-client-4.2.4.P2-0.11.13.1 is installed OR dhcp-relay-4.2.4.P2-0.11.13.1 is installed OR dhcp-server-4.2.4.P2-0.11.13.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2-LTSS is installed AND Package Information ImageMagick-6.4.3.6-7.34.1 is installed OR libMagickCore1-6.4.3.6-7.34.1 is installed OR libMagickCore1-32bit-6.4.3.6-7.34.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information krb5-1.6.3-133.49.54.1 is installed OR krb5-32bit-1.6.3-133.49.54.1 is installed OR krb5-apps-clients-1.6.3-133.49.54.1 is installed OR krb5-apps-servers-1.6.3-133.49.54.1 is installed OR krb5-client-1.6.3-133.49.54.1 is installed OR krb5-server-1.6.3-133.49.54.1 is installed OR krb5-x86-1.6.3-133.49.54.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information krb5-1.6.3-133.49.66.1 is installed OR krb5-32bit-1.6.3-133.49.66.1 is installed OR krb5-apps-clients-1.6.3-133.49.66.1 is installed OR krb5-apps-servers-1.6.3-133.49.66.1 is installed OR krb5-client-1.6.3-133.49.66.1 is installed OR krb5-server-1.6.3-133.49.66.1 is installed OR krb5-x86-1.6.3-133.49.66.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11-SECURITY is installed AND Package Information curl-openssl1-7.19.7-1.61.1 is installed OR libcurl4-openssl1-7.19.7-1.61.1 is installed OR libcurl4-openssl1-32bit-7.19.7-1.61.1 is installed OR libcurl4-openssl1-x86-7.19.7-1.61.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND ant-1.9.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information alsa-1.0.27.2-11 is installed OR alsa-docs-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information glibc-2.19-40.6.1 is installed OR glibc-32bit-2.19-40.6.1 is installed OR glibc-devel-2.19-40.6.1 is installed OR glibc-devel-32bit-2.19-40.6.1 is installed OR glibc-html-2.19-40.6.1 is installed OR glibc-i18ndata-2.19-40.6.1 is installed OR glibc-info-2.19-40.6.1 is installed OR glibc-locale-2.19-40.6.1 is installed OR glibc-locale-32bit-2.19-40.6.1 is installed OR glibc-profile-2.19-40.6.1 is installed OR glibc-profile-32bit-2.19-40.6.1 is installed OR nscd-2.19-40.6.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information apache-commons-daemon-1.0.15-4 is installed OR apache-commons-daemon-javadoc-1.0.15-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND apache-commons-httpclient-3.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP5 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-38.13 is installed OR aaa_base-extras-13.2+git20140911.61c1681-38.13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information MozillaFirefox-45.3.0esr-78.1 is installed OR MozillaFirefox-translations-45.3.0esr-78.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information apache-commons-daemon-1.0.15-4 is installed OR apache-commons-daemon-javadoc-1.0.15-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 is installed AND Package Information kgraft-patch-3_12_51-52_39-default-4-2 is installed OR kgraft-patch-3_12_51-52_39-xen-4-2 is installed OR kgraft-patch-SLE12_Update_11-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND unrar-5.0.14-3 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND Package Information bind-devel-9.9.4P2-0.6.1 is installed OR bind-devel-32bit-9.9.4P2-0.6.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information glibc-2.11.3-17.95.2 is installed OR glibc-html-2.11.3-17.95.2 is installed OR glibc-info-2.11.3-17.95.2 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND augeas-devel-0.9.0-3.15.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information xen-4.5.5_06-22.11 is installed OR xen-devel-4.5.5_06-22.11 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information gd-2.1.0-20 is installed OR gd-devel-2.1.0-20 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND libjbig-devel-2.0-12 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND Package Information FastCGI-2.4.0-168 is installed OR FastCGI-devel-2.4.0-168 is installed OR perl-FastCGI-2.4.0-168 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information ImageMagick-6.8.8.1-5 is installed OR libMagick++-6_Q16-3-6.8.8.1-5 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND argyllcms-1.6.3-1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information ImageMagick-6.8.8.1-33 is installed OR libMagick++-6_Q16-3-6.8.8.1-33 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-33 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information java-1_7_0-openjdk-plugin-1.6.2-2.8 is installed OR java-1_8_0-openjdk-plugin-1.6.2-2.10 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND lcms-1.19-17 is installed

BACK