OVAL Reference oval:org.opensuse.security:def:7020

Oval Definition:

oval:org.opensuse.security:def:7020

Revision Date:	2021-03-17	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 17 for SLE 15 SP1) (Important)
Description:	This update for the Linux Kernel 4.12.14-197_64 fixes several issues. The following security issues were fixed: - CVE-2020-29368: Fixed an issue in copy-on-write implementation which could have granted unintended write access because of a race condition in a THP mapcount check (bsc#1179664). - Fixed an issue where NFS client filesystems got unmounted on fail-over (bsc#1182468). - CVE-2021-3347: Fixed a use-after-free in the PI futexes during fault handling, allowing local users to execute code in the kernel (bsc#1181553). - CVE-2020-27786: Fixed a potential user after free which could have led to memory corruption or privilege escalation (bsc#1179616). - CVE-2020-28374: Fixed insufficient identifier checking in the LIO SCSI target code which could have been used by remote attackers to read or write files via directory traversal in an XCOPY request (bsc#1178684). - CVE-2021-0342: Fixed a potential memory corruption due to a use after free which could have led to local escalation of privilege with System execution privileges required (bsc#1180859).
Family:	unix	Class:	patch
Status:		Reference(s):	1178684 1179616 1179664 1180859 1181553 1182468 CVE-2010-0624 CVE-2010-2252 CVE-2011-0465 CVE-2011-3177 CVE-2011-4182 CVE-2012-1152 CVE-2012-2737 CVE-2012-4929 CVE-2013-1991 CVE-2013-1992 CVE-2013-2000 CVE-2013-6473 CVE-2013-6474 CVE-2013-6475 CVE-2013-6476 CVE-2014-2707 CVE-2014-3970 CVE-2014-4336 CVE-2014-4337 CVE-2014-4338 CVE-2014-4607 CVE-2014-4877 CVE-2014-8484 CVE-2014-8485 CVE-2014-8501 CVE-2014-8502 CVE-2014-8503 CVE-2014-8504 CVE-2014-8737 CVE-2014-8738 CVE-2014-9112 CVE-2015-2059 CVE-2016-4971 CVE-2016-7098 CVE-2016-9957 CVE-2016-9958 CVE-2016-9959 CVE-2016-9960 CVE-2016-9961 CVE-2017-13089 CVE-2017-13090 CVE-2017-5715 CVE-2017-6508 CVE-2018-0494 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-3639 CVE-2018-3640 CVE-2019-11091 CVE-2019-11135 CVE-2019-11139 CVE-2019-5953 CVE-2020-27786 CVE-2020-28374 CVE-2020-29368 CVE-2021-0342 CVE-2021-3347
Platform(s):	openSUSE 13.1 openSUSE 13.1 NonFree openSUSE 13.2 openSUSE Leap 42.1 SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Real Time Extension 12 SP1 SUSE Linux Enterprise Real Time Extension 12 SP3 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4	Product(s):
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 is installed AND Package Information flute-1.3.0-4 is installed OR libbase-1.1.3-4 is installed OR libfonts-1.1.3-4 is installed OR libformula-1.1.3-4 is installed OR liblayout-0.2.10-4 is installed OR libloader-1.1.3-3 is installed OR libreoffice-5.0.2.2-13 is installed OR libreoffice-sdk-5.0.2.2-13 is installed OR librepository-1.1.3-4 is installed OR librevenge-0.0.2-4 is installed OR librevenge-devel-0.0.2-4 is installed OR librevenge-generators-0_0-0-0.0.2-4 is installed OR libserializer-1.1.2-4 is installed OR mdds-0.12.1-3 is installed OR mdds-devel-0.12.1-3 is installed OR pentaho-libxml-1.1.3-4 is installed OR pentaho-reporting-flow-engine-0.9.4-4 is installed OR sac-1.3-4 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND Package Information libudev-mini-devel-210-114 is installed OR libudev-mini1-210-114 is installed OR systemd-mini-210-114 is installed OR systemd-mini-devel-210-114 is installed OR udev-mini-210-114 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND kernel-zfcpdump-4.4.74-92.32 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND Package Information texlive-2013.20130620-22.3 is installed OR texlive-cyrillic-bin-bin-2013.20130620.svn29741-22.3 is installed OR texlive-epstopdf-bin-2013.20130620.svn18336-22.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information Mesa-7.11.2-0.9.1 is installed OR Mesa-32bit-7.11.2-0.9.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-31.8.0esr-0.13.2 is installed OR MozillaFirefox-translations-31.8.0esr-0.13.2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information curl-7.19.7-1.46.1 is installed OR libcurl4-7.19.7-1.46.1 is installed OR libcurl4-32bit-7.19.7-1.46.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND openvpn-2.3.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libX11-1.6.2-11 is installed OR libX11-6-1.6.2-11 is installed OR libX11-6-32bit-1.6.2-11 is installed OR libX11-data-1.6.2-11 is installed OR libX11-xcb1-1.6.2-11 is installed OR libX11-xcb1-32bit-1.6.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libmysqlclient18-10.0.31-29.3 is installed OR libmysqlclient18-32bit-10.0.31-29.3 is installed OR libmysqlclient_r18-10.0.31-29.3 is installed OR libmysqlclient_r18-32bit-10.0.31-29.3 is installed OR mariadb-10.0.31-29.3 is installed OR mariadb-client-10.0.31-29.3 is installed OR mariadb-errormessages-10.0.31-29.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND libXxf86dga1-1.1.4-3 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 SP1 is installed AND clamav-0.99.3-33.5 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information sysconfig-0.84.0-13 is installed OR sysconfig-netconfig-0.84.0-13 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND kernel-livepatch-4_12_14-197_64-default-4-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Real Time Extension 12 SP1 is installed AND Package Information kernel-compute-3.12.61-60.18 is installed OR kernel-compute-base-3.12.61-60.18 is installed OR kernel-compute-devel-3.12.61-60.18 is installed OR kernel-compute_debug-3.12.61-60.18 is installed OR kernel-compute_debug-devel-3.12.61-60.18 is installed OR kernel-devel-rt-3.12.61-60.18 is installed OR kernel-rt-3.12.61-60.18 is installed OR kernel-rt-base-3.12.61-60.18 is installed OR kernel-rt-devel-3.12.61-60.18 is installed OR kernel-rt_debug-3.12.61-60.18 is installed OR kernel-rt_debug-devel-3.12.61-60.18 is installed OR kernel-source-rt-3.12.61-60.18 is installed OR kernel-syms-rt-3.12.61-60.18 is installed
Definition Synopsis
SUSE Linux Enterprise Real Time Extension 12 SP3 is installed AND Package Information cluster-md-kmp-rt-4.4.139-3.17 is installed OR dlm-kmp-rt-4.4.139-3.17 is installed OR gfs2-kmp-rt-4.4.139-3.17 is installed OR kernel-devel-rt-4.4.139-3.17 is installed OR kernel-rt-4.4.139-3.17 is installed OR kernel-rt-base-4.4.139-3.17 is installed OR kernel-rt-devel-4.4.139-3.17 is installed OR kernel-rt_debug-4.4.139-3.17 is installed OR kernel-rt_debug-devel-4.4.139-3.17 is installed OR kernel-source-rt-4.4.139-3.17 is installed OR kernel-syms-rt-4.4.139-3.17 is installed OR ocfs2-kmp-rt-4.4.139-3.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP1-LTSS is installed AND Package Information xorg-x11-libX11-7.4-5.11.15.1 is installed OR xorg-x11-libX11-32bit-7.4-5.11.15.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND clamav-0.97.8-0.2.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP2-LTSS is installed AND clamav-0.97.8-0.2.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP2 is installed AND clamav-0.97.8-0.2.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND MozillaFirefox-10.0.11-0.3.1 is installed OR MozillaFirefox-translations-10.0.11-0.3.1 is installed OR libfreebl3-3.14-0.3.1 is installed OR libfreebl3-32bit-3.14-0.3.1 is installed OR libfreebl3-x86-3.14-0.3.1 is installed OR mozilla-nss-3.14-0.3.1 is installed OR mozilla-nss-32bit-3.14-0.3.1 is installed OR mozilla-nss-tools-3.14-0.3.1 is installed OR mozilla-nss-x86-3.14-0.3.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP2 is installed AND MozillaFirefox-10.0.11-0.3.1 is installed OR MozillaFirefox-translations-10.0.11-0.3.1 is installed OR libfreebl3-3.14-0.3.1 is installed OR libfreebl3-32bit-3.14-0.3.1 is installed OR libfreebl3-x86-3.14-0.3.1 is installed OR mozilla-nss-3.14-0.3.1 is installed OR mozilla-nss-32bit-3.14-0.3.1 is installed OR mozilla-nss-tools-3.14-0.3.1 is installed OR mozilla-nss-x86-3.14-0.3.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2-LTSS is installed AND Package Information bind-9.9.6P1-0.22.1 is installed OR bind-chrootenv-9.9.6P1-0.22.1 is installed OR bind-devel-9.9.6P1-0.22.1 is installed OR bind-doc-9.9.6P1-0.22.1 is installed OR bind-libs-9.9.6P1-0.22.1 is installed OR bind-libs-32bit-9.9.6P1-0.22.1 is installed OR bind-utils-9.9.6P1-0.22.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND libMagickCore1-6.4.3.6-7.30.1 is installed OR libMagickCore1-32bit-6.4.3.6-7.30.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND libMagickCore1-6.4.3.6-7.30.1 is installed OR libMagickCore1-32bit-6.4.3.6-7.30.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information libltdl7-2.2.6-2.131.1 is installed OR libltdl7-32bit-2.2.6-2.131.1 is installed OR libltdl7-x86-2.2.6-2.131.1 is installed OR libtool-2.2.6-2.131.1 is installed OR libtool-32bit-2.2.6-2.131.1 is installed OR libtool-x86-2.2.6-2.131.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3-LTSS is installed AND apache2-mod_nss-1.0.14-0.4.25.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information libgcrypt11-1.5.0-0.17.1 is installed OR libgcrypt11-32bit-1.5.0-0.17.1 is installed OR libgcrypt11-x86-1.5.0-0.17.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11-SECURITY is installed AND Package Information libldap-openssl1-2_4-2-2.4.26-0.62.3 is installed OR libldap-openssl1-2_4-2-32bit-2.4.26-0.62.3 is installed OR libldap-openssl1-2_4-2-x86-2.4.26-0.62.3 is installed OR openldap2-client-openssl1-2.4.26-0.62.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information accountsservice-0.6.35-1 is installed OR accountsservice-lang-0.6.35-1 is installed OR libaccountsservice0-0.6.35-1 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND binutils-2.25.0-13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kernel-default-3.12.74-60.64.45.1 is installed OR kernel-default-base-3.12.74-60.64.45.1 is installed OR kernel-default-devel-3.12.74-60.64.45.1 is installed OR kernel-default-man-3.12.74-60.64.45.1 is installed OR kernel-devel-3.12.74-60.64.45.1 is installed OR kernel-macros-3.12.74-60.64.45.1 is installed OR kernel-source-3.12.74-60.64.45.1 is installed OR kernel-syms-3.12.74-60.64.45.1 is installed OR kernel-xen-3.12.74-60.64.45.1 is installed OR kernel-xen-base-3.12.74-60.64.45.1 is installed OR kernel-xen-devel-3.12.74-60.64.45.1 is installed OR kgraft-patch-3_12_74-60_64_45-default-1-4.1 is installed OR kgraft-patch-3_12_74-60_64_45-xen-1-4.1 is installed OR kgraft-patch-SLE12-SP1_Update_16-1-4.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information colord-gtk-lang-0.1.26-6 is installed OR libcolord-gtk1-0.1.26-6 is installed OR libcolord2-1.3.3-12 is installed OR libcolord2-32bit-1.3.3-12 is installed OR libcolorhug2-1.3.3-12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP5 is installed AND Package Information ImageMagick-config-6-SUSE-6.8.8.1-71.126 is installed OR ImageMagick-config-6-upstream-6.8.8.1-71.126 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.126 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.126 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_60-52_49-default-2-2.2 is installed OR kgraft-patch-3_12_60-52_49-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_14-2-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 is installed AND Package Information kgraft-patch-3_12_55-52_45-default-2-2 is installed OR kgraft-patch-3_12_55-52_45-xen-2-2 is installed OR kgraft-patch-SLE12_Update_13-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND Package Information kgraft-patch-3_12_74-60_64_40-default-3-2 is installed OR kgraft-patch-3_12_74-60_64_40-xen-3-2 is installed OR kgraft-patch-SLE12-SP1_Update_15-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND Package Information ImageMagick-6.4.3.6-7.26.1 is installed OR ImageMagick-devel-6.4.3.6-7.26.1 is installed OR libMagick++-devel-6.4.3.6-7.26.1 is installed OR libMagick++1-6.4.3.6-7.26.1 is installed OR libMagickWand1-6.4.3.6-7.26.1 is installed OR libMagickWand1-32bit-6.4.3.6-7.26.1 is installed OR perl-PerlMagick-6.4.3.6-7.26.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information krb5-1.6.3-133.49.97.1 is installed OR krb5-devel-1.6.3-133.49.97.1 is installed OR krb5-devel-32bit-1.6.3-133.49.97.1 is installed OR krb5-server-1.6.3-133.49.97.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND evince-devel-2.28.2-0.7.2 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information bind-9.9.9P1-59 is installed OR bind-devel-9.9.9P1-59 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information libunrar-devel-5.0.14-3 is installed OR libunrar5_0_14-5.0.14-3 is installed OR unrar-5.0.14-3 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information libpcscspy0-1.8.10-6 is installed OR pcsc-lite-devel-1.8.10-6 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND apache2-devel-2.4.23-29.24 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information flash-player-11.2.202.406-1 is installed OR flash-player-gnome-11.2.202.406-1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND bash-lang-4.2-75 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND cyrus-sasl-digestmd5-32bit-2.1.26-7 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND libproxy1-networkmanager-32bit-0.4.13-16 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND Package Information empathy-3.12.13-8.3 is installed OR empathy-lang-3.12.13-8.3 is installed OR telepathy-mission-control-plugin-goa-3.12.13-8.3 is installed

BACK