OVAL Reference oval:org.opensuse.security:def:7025

Oval Definition:

oval:org.opensuse.security:def:7025

Revision Date:	2021-03-17	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 12 for SLE 15 SP1) (Important)
Description:	This update for the Linux Kernel 4.12.14-197_45 fixes several issues. The following security issues were fixed: - CVE-2020-29368: Fixed an issue in copy-on-write implementation which could have granted unintended write access because of a race condition in a THP mapcount check (bsc#1179664). - Fixed an issue where NFS client filesystems got unmounted on fail-over (bsc#1182468). - Fixed an issue where NFS client hanged on write errors (bsc#1182108). - CVE-2021-3347: Fixed a use-after-free in the PI futexes during fault handling, allowing local users to execute code in the kernel (bsc#1181553). - CVE-2020-27786: Fixed a potential user after free which could have led to memory corruption or privilege escalation (bsc#1179616). - CVE-2020-28374: Fixed insufficient identifier checking in the LIO SCSI target code which could have been used by remote attackers to read or write files via directory traversal in an XCOPY request (bsc#1178684). - CVE-2021-0342: Fixed a potential memory corruption due to a use after free which could have led to local escalation of privilege with System execution privileges required (bsc#1180859).
Family:	unix	Class:	patch
Status:		Reference(s):	1178684 1179616 1179664 1180859 1181553 1182108 1182468 CVE-2007-3999 CVE-2007-5970 CVE-2008-7247 CVE-2009-0946 CVE-2009-4019 CVE-2009-4028 CVE-2009-4030 CVE-2010-0624 CVE-2010-2497 CVE-2010-2805 CVE-2010-3053 CVE-2010-3054 CVE-2010-3311 CVE-2010-3814 CVE-2010-3855 CVE-2010-4352 CVE-2011-0226 CVE-2011-0461 CVE-2011-0904 CVE-2011-0905 CVE-2011-1164 CVE-2011-3177 CVE-2011-3256 CVE-2011-3439 CVE-2011-4349 CVE-2011-4405 CVE-2012-1126 CVE-2012-1127 CVE-2012-1128 CVE-2012-1129 CVE-2012-1130 CVE-2012-1131 CVE-2012-1132 CVE-2012-1133 CVE-2012-1134 CVE-2012-1135 CVE-2012-1136 CVE-2012-1137 CVE-2012-1138 CVE-2012-1139 CVE-2012-1140 CVE-2012-1141 CVE-2012-1142 CVE-2012-1143 CVE-2012-1144 CVE-2012-3524 CVE-2012-4510 CVE-2012-5668 CVE-2012-5669 CVE-2012-5670 CVE-2012-5783 CVE-2013-0157 CVE-2013-1976 CVE-2013-2168 CVE-2014-2240 CVE-2014-2241 CVE-2014-3477 CVE-2014-3532 CVE-2014-3533 CVE-2014-3635 CVE-2014-3636 CVE-2014-3637 CVE-2014-3638 CVE-2014-3639 CVE-2014-4910 CVE-2014-9114 CVE-2015-5218 CVE-2015-8803 CVE-2015-8804 CVE-2015-8805 CVE-2016-2779 CVE-2016-5011 CVE-2016-6321 CVE-2016-6489 CVE-2017-2616 CVE-2018-7738 CVE-2020-27786 CVE-2020-28374 CVE-2020-29368 CVE-2021-0342 CVE-2021-3347
Platform(s):	openSUSE 13.1 openSUSE 13.2 openSUSE Leap 42.1 SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Real Time Extension 12 SP1 SUSE Linux Enterprise Real Time Extension 12 SP2 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4	Product(s):
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 is installed AND Package Information cups-1.7.5-5 is installed OR cups-ddk-1.7.5-5 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND kernel-zfcpdump-3.12.51-60.20 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND kernel-zfcpdump-4.4.59-92.24 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND Package Information ghostscript-mini-9.26-23.16 is installed OR ghostscript-mini-devel-9.26-23.16 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information bytefx-data-mysql-2.6.7-0.9.1 is installed OR ibm-data-db2-2.6.7-0.9.1 is installed OR mono-core-2.6.7-0.9.1 is installed OR mono-data-2.6.7-0.9.1 is installed OR mono-data-firebird-2.6.7-0.9.1 is installed OR mono-data-oracle-2.6.7-0.9.1 is installed OR mono-data-postgresql-2.6.7-0.9.1 is installed OR mono-data-sqlite-2.6.7-0.9.1 is installed OR mono-data-sybase-2.6.7-0.9.1 is installed OR mono-devel-2.6.7-0.9.1 is installed OR mono-extras-2.6.7-0.9.1 is installed OR mono-jscript-2.6.7-0.9.1 is installed OR mono-locale-extras-2.6.7-0.9.1 is installed OR mono-nunit-2.6.7-0.9.1 is installed OR mono-wcf-2.6.7-0.9.1 is installed OR mono-web-2.6.7-0.9.1 is installed OR mono-winforms-2.6.7-0.9.1 is installed OR monodoc-core-2.6.7-0.9.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND a2ps-4.13-1326.37.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information MozillaFirefox-31.8.0esr-0.10.1 is installed OR MozillaFirefox-translations-31.8.0esr-0.10.1 is installed OR libfreebl3-3.19.2_CKBI_1.98-0.10.1 is installed OR libfreebl3-32bit-3.19.2_CKBI_1.98-0.10.1 is installed OR libsoftokn3-3.19.2_CKBI_1.98-0.10.1 is installed OR libsoftokn3-32bit-3.19.2_CKBI_1.98-0.10.1 is installed OR mozilla-nspr-4.10.8-0.5.1 is installed OR mozilla-nspr-32bit-4.10.8-0.5.1 is installed OR mozilla-nss-3.19.2_CKBI_1.98-0.10.1 is installed OR mozilla-nss-32bit-3.19.2_CKBI_1.98-0.10.1 is installed OR mozilla-nss-tools-3.19.2_CKBI_1.98-0.10.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information file-5.19-9 is installed OR file-magic-5.19-9 is installed OR libmagic1-5.19-9 is installed OR libmagic1-32bit-5.19-9 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND w3m-0.5.3.git20161120-160 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libical-1.0.1-16.3 is installed OR libical1-1.0.1-16.3 is installed OR libical1-32bit-1.0.1-16.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libblkid1-2.29.2-7 is installed OR libblkid1-32bit-2.29.2-7 is installed OR libfdisk1-2.29.2-7 is installed OR libmount1-2.29.2-7 is installed OR libmount1-32bit-2.29.2-7 is installed OR libsmartcols1-2.29.2-7 is installed OR libuuid-devel-2.29.2-7 is installed OR libuuid1-2.29.2-7 is installed OR libuuid1-32bit-2.29.2-7 is installed OR python-libmount-2.29.2-7 is installed OR util-linux-2.29.2-7 is installed OR util-linux-lang-2.29.2-7 is installed OR util-linux-systemd-2.29.2-7 is installed OR uuidd-2.29.2-7 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information kgraft-patch-3_12_69-60_64_29-default-11-2 is installed OR kgraft-patch-3_12_69-60_64_29-xen-11-2 is installed OR kgraft-patch-SLE12-SP1_Update_12-11-2 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information tar-1.27.1-15.3 is installed OR tar-lang-1.27.1-15.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND kernel-livepatch-4_12_14-197_45-default-7-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Real Time Extension 12 SP1 is installed AND Package Information kernel-compute-3.12.58-14 is installed OR kernel-compute-base-3.12.58-14 is installed OR kernel-compute-devel-3.12.58-14 is installed OR kernel-compute_debug-3.12.58-14 is installed OR kernel-compute_debug-devel-3.12.58-14 is installed OR kernel-devel-rt-3.12.58-14 is installed OR kernel-rt-3.12.58-14 is installed OR kernel-rt-base-3.12.58-14 is installed OR kernel-rt-devel-3.12.58-14 is installed OR kernel-rt_debug-3.12.58-14 is installed OR kernel-rt_debug-devel-3.12.58-14 is installed OR kernel-source-rt-3.12.58-14 is installed OR kernel-syms-rt-3.12.58-14 is installed
Definition Synopsis
SUSE Linux Enterprise Real Time Extension 12 SP2 is installed AND Package Information cluster-md-kmp-rt-4.4.95-21 is installed OR cluster-network-kmp-rt-4.4.95-21 is installed OR dlm-kmp-rt-4.4.95-21 is installed OR gfs2-kmp-rt-4.4.95-21 is installed OR kernel-devel-rt-4.4.95-21 is installed OR kernel-rt-4.4.95-21 is installed OR kernel-rt-base-4.4.95-21 is installed OR kernel-rt-devel-4.4.95-21 is installed OR kernel-rt_debug-4.4.95-21 is installed OR kernel-rt_debug-devel-4.4.95-21 is installed OR kernel-source-rt-4.4.95-21 is installed OR kernel-syms-rt-4.4.95-21 is installed OR ocfs2-kmp-rt-4.4.95-21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP1-LTSS is installed AND Package Information xorg-x11-libXt-7.4-1.19.8 is installed OR xorg-x11-libXt-32bit-7.4-1.19.8 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND ruby-1.8.7.p357-0.9.13.1 is installed OR ruby-doc-html-1.8.7.p357-0.9.13.1 is installed OR ruby-tk-1.8.7.p357-0.9.13.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP2-LTSS is installed AND ruby-1.8.7.p357-0.9.13.1 is installed OR ruby-doc-html-1.8.7.p357-0.9.13.1 is installed OR ruby-tk-1.8.7.p357-0.9.13.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP2 is installed AND ruby-1.8.7.p357-0.9.13.1 is installed OR ruby-doc-html-1.8.7.p357-0.9.13.1 is installed OR ruby-tk-1.8.7.p357-0.9.13.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND dhcp-4.2.4.P2-0.11.13.1 is installed OR dhcp-client-4.2.4.P2-0.11.13.1 is installed OR dhcp-relay-4.2.4.P2-0.11.13.1 is installed OR dhcp-server-4.2.4.P2-0.11.13.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP2 is installed AND dhcp-4.2.4.P2-0.11.13.1 is installed OR dhcp-client-4.2.4.P2-0.11.13.1 is installed OR dhcp-relay-4.2.4.P2-0.11.13.1 is installed OR dhcp-server-4.2.4.P2-0.11.13.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2-LTSS is installed AND Package Information bsdtar-2.5.5-9.1 is installed OR libarchive2-2.5.5-9.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND MozillaFirefox-17.0.9esr-0.7.1 is installed OR MozillaFirefox-translations-17.0.9esr-0.7.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND MozillaFirefox-17.0.9esr-0.7.1 is installed OR MozillaFirefox-translations-17.0.9esr-0.7.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information libnewt0_52-0.52.10-1.35.113 is installed OR newt-0.52.10-1.35.113 is installed OR python-newt-0.52.10-1.35.113 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information libjasper-1.900.1-134.17.1 is installed OR libjasper-32bit-1.900.1-134.17.1 is installed OR libjasper-x86-1.900.1-134.17.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11-SECURITY is installed AND Package Information libopenssl1-devel-1.0.1g-0.47.1 is installed OR libopenssl1_0_0-1.0.1g-0.47.1 is installed OR libopenssl1_0_0-32bit-1.0.1g-0.47.1 is installed OR libopenssl1_0_0-x86-1.0.1g-0.47.1 is installed OR openssl1-1.0.1g-0.47.1 is installed OR openssl1-doc-1.0.1g-0.47.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND apache-commons-httpclient-3.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-9 is installed OR aaa_base-extras-13.2+git20140911.61c1681-9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND apache-commons-httpclient-3.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND ant-1.9.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information cracklib-2.9.0-7 is installed OR libcrack2-2.9.0-7 is installed OR libcrack2-32bit-2.9.0-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP5 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_60-52_49-default-2-2.2 is installed OR kgraft-patch-3_12_60-52_49-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_14-2-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND ant-1.9.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 is installed AND Package Information compat-libldap-2_3-0-2.3.37-16 is installed OR openldap2-2.4.39-16 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND Package Information libsoup-2.44.2-2.3 is installed OR libsoup-2_4-1-2.44.2-2.3 is installed OR libsoup-2_4-1-32bit-2.44.2-2.3 is installed OR libsoup-lang-2.44.2-2.3 is installed OR typelib-1_0-Soup-2_4-2.44.2-2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND Package Information php53-devel-5.3.8-0.43.1 is installed OR php53-imap-5.3.8-0.43.1 is installed OR php53-posix-5.3.8-0.43.1 is installed OR php53-readline-5.3.8-0.43.1 is installed OR php53-sockets-5.3.8-0.43.1 is installed OR php53-sqlite-5.3.8-0.43.1 is installed OR php53-tidy-5.3.8-0.43.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information libvirt-devel-1.0.5.9-0.19.3 is installed OR libvirt-devel-32bit-1.0.5.9-0.19.3 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information fileshareset-2.0-20.31 is installed OR kdebase3-3.5.10-20.31 is installed OR kdebase3-32bit-3.5.10-20.31 is installed OR kdebase3-devel-3.5.10-20.31 is installed OR kdebase3-runtime-32bit-3.5.10-20.31 is installed OR misc-console-font-3.5.10-20.31 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information libtiff-devel-4.0.7-43 is installed OR tiff-4.0.7-43 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information libquicktime-1.2.4-13 is installed OR libquicktime-devel-1.2.4-13 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND libpoppler44-0.24.4-14.3 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND Package Information avahi-compat-howl-devel-0.6.32-30 is installed OR avahi-compat-mDNSResponder-devel-0.6.32-30 is installed OR libavahi-devel-0.6.32-30 is installed OR libhowl0-0.6.32-30 is installed OR python-avahi-0.6.32-30 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information gnome-online-accounts-3.10.5-1 is installed OR gnome-online-accounts-lang-3.10.5-1 is installed OR typelib-1_0-Goa-1_0-3.10.5-1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information empathy-3.10.3-1 is installed OR empathy-lang-3.10.3-1 is installed OR telepathy-mission-control-plugin-goa-3.10.3-1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND argyllcms-1.6.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND libssh4-0.6.3-11 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND Package Information gegl-0_2-0.2.0-14 is installed OR gegl-0_2-lang-0.2.0-14 is installed OR libgegl-0_2-0-0.2.0-14 is installed

BACK