Oval Definition:	oval:org.opensuse.security:def:7028
Revision Date: 2021-03-17 Version: 1 Title: Security update for the Linux Kernel (Live Patch 9 for SLE 15 SP1) (Important) Description: This update for the Linux Kernel 4.12.14-197_34 fixes several issues. The following security issues were fixed: - CVE-2020-29368: Fixed an issue in copy-on-write implementation which could have granted unintended write access because of a race condition in a THP mapcount check (bsc#1179664). - Fixed an issue where NFS client filesystems got unmounted on fail-over (bsc#1182468). - CVE-2021-3347: Fixed a use-after-free in the PI futexes during fault handling, allowing local users to execute code in the kernel (bsc#1181553). - CVE-2020-27786: Fixed a potential user after free which could have led to memory corruption or privilege escalation (bsc#1179616). - CVE-2020-28374: Fixed insufficient identifier checking in the LIO SCSI target code which could have been used by remote attackers to read or write files via directory traversal in an XCOPY request (bsc#1178684). - CVE-2021-0342: Fixed a potential memory corruption due to a use after free which could have led to local escalation of privilege with System execution privileges required (bsc#1180859). Family: unix Class: patch Status: Reference(s): 1178684 1179616 1179664 1180859 1181553 1182468 CVE-2009-0688 CVE-2010-0624 CVE-2010-2074 CVE-2011-0020 CVE-2011-0064 CVE-2011-1946 CVE-2011-2199 CVE-2012-2141 CVE-2012-4929 CVE-2013-1571 CVE-2013-4143 CVE-2013-4314 CVE-2013-4566 CVE-2014-2284 CVE-2014-2285 CVE-2014-3499 CVE-2014-3565 CVE-2014-9112 CVE-2015-2059 CVE-2015-8948 CVE-2016-6261 CVE-2016-6262 CVE-2016-6263 CVE-2016-9434 CVE-2016-9435 CVE-2016-9436 CVE-2016-9437 CVE-2016-9438 CVE-2016-9439 CVE-2016-9440 CVE-2016-9441 CVE-2016-9442 CVE-2016-9443 CVE-2016-9621 CVE-2016-9622 CVE-2016-9623 CVE-2016-9624 CVE-2016-9625 CVE-2016-9626 CVE-2016-9627 CVE-2016-9628 CVE-2016-9629 CVE-2016-9630 CVE-2016-9631 CVE-2016-9632 CVE-2016-9633 CVE-2017-14062 CVE-2017-15631 CVE-2017-18201 CVE-2018-6196 CVE-2018-6197 CVE-2018-6198 CVE-2020-27786 CVE-2020-28374 CVE-2020-29368 CVE-2021-0342 CVE-2021-3347 Platform(s): openSUSE 13.1 openSUSE 13.1 NonFree openSUSE 13.2 openSUSE 13.2 NonFree openSUSE Leap 42.1 SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Build System Kit 12 SP4 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Real Time Extension 12 SP1 SUSE Linux Enterprise Real Time Extension 12 SP2 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 Product(s): Definition Synopsis SUSE Linux Enterprise Build System Kit 12 is installed AND kernel-zfcpdump-3.12.32-33 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND kernel-zfcpdump-3.12.51-60.20 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND kernel-zfcpdump-4.4.74-92.29 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND Package Information libudev-mini-devel-228-150.32 is installed OR libudev-mini1-228-150.32 is installed OR systemd-mini-228-150.32 is installed OR systemd-mini-devel-228-150.32 is installed OR udev-mini-228-150.32 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP4 is installed AND Package Information libudev-mini-devel-228-150.53 is installed OR libudev-mini1-228-150.53 is installed OR systemd-mini-228-150.53 is installed OR systemd-mini-devel-228-150.53 is installed OR udev-mini-228-150.53 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND clamav-0.97.8-0.2.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information augeas-0.9.0-3.17.2 is installed OR libaugeas0-0.9.0-3.17.2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information augeas-0.9.0-3.17.2 is installed OR libaugeas0-0.9.0-3.17.2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND rsyslog-8.4.0-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libass-0.10.2-3 is installed OR libass5-0.10.2-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libmysqlclient18-10.0.31-29.3 is installed OR libmysqlclient18-32bit-10.0.31-29.3 is installed OR libmysqlclient_r18-10.0.31-29.3 is installed OR libmysqlclient_r18-32bit-10.0.31-29.3 is installed OR mariadb-10.0.31-29.3 is installed OR mariadb-client-10.0.31-29.3 is installed OR mariadb-errormessages-10.0.31-29.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libcdio14-0.90-6.3 is installed OR libcdio14-32bit-0.90-6.3 is installed OR libiso9660-8-0.90-6.3 is installed Definition Synopsis SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information kgraft-patch-3_12_74-60_64_51-default-6-2 is installed OR kgraft-patch-3_12_74-60_64_51-xen-6-2 is installed OR kgraft-patch-SLE12-SP1_Update_18-6-2 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND tftp-5.2-11.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND kernel-livepatch-4_12_14-197_34-default-10-2.2 is installed Definition Synopsis SUSE Linux Enterprise Real Time Extension 12 SP1 is installed AND Package Information kernel-compute-3.12.58-14 is installed OR kernel-compute-base-3.12.58-14 is installed OR kernel-compute-devel-3.12.58-14 is installed OR kernel-compute_debug-3.12.58-14 is installed OR kernel-compute_debug-devel-3.12.58-14 is installed OR kernel-devel-rt-3.12.58-14 is installed OR kernel-rt-3.12.58-14 is installed OR kernel-rt-base-3.12.58-14 is installed OR kernel-rt-devel-3.12.58-14 is installed OR kernel-rt_debug-3.12.58-14 is installed OR kernel-rt_debug-devel-3.12.58-14 is installed OR kernel-source-rt-3.12.58-14 is installed OR kernel-syms-rt-3.12.58-14 is installed Definition Synopsis SUSE Linux Enterprise Real Time Extension 12 SP2 is installed AND Package Information crash-7.1.5-15.3 is installed OR crash-kmp-rt-7.1.5_k4.4.21_6-15.3 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND gnutls-2.4.1-24.39.47.1 is installed OR libgnutls-extra26-2.4.1-24.39.47.1 is installed OR libgnutls26-2.4.1-24.39.47.1 is installed OR libgnutls26-32bit-2.4.1-24.39.47.1 is installed OR libgnutls26-x86-2.4.1-24.39.47.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP2-LTSS is installed AND gnutls-2.4.1-24.39.47.1 is installed OR libgnutls-extra26-2.4.1-24.39.47.1 is installed OR libgnutls26-2.4.1-24.39.47.1 is installed OR libgnutls26-32bit-2.4.1-24.39.47.1 is installed OR libgnutls26-x86-2.4.1-24.39.47.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP2 is installed AND gnutls-2.4.1-24.39.47.1 is installed OR libgnutls-extra26-2.4.1-24.39.47.1 is installed OR libgnutls26-2.4.1-24.39.47.1 is installed OR libgnutls26-32bit-2.4.1-24.39.47.1 is installed OR libgnutls26-x86-2.4.1-24.39.47.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND kvm-0.15.1-0.27.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP2-LTSS is installed AND kvm-0.15.1-0.27.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND cifs-utils-5.1-0.7.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP2 is installed AND cifs-utils-5.1-0.7.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2-LTSS is installed AND Package Information MozillaFirefox-24.6.0esr-0.3.1 is installed OR MozillaFirefox-branding-SLED-24-0.4.10.24 is installed OR MozillaFirefox-translations-24.6.0esr-0.3.1 is installed OR libfreebl3-3.16.1-0.3.1 is installed OR libfreebl3-32bit-3.16.1-0.3.1 is installed OR mozilla-nspr-4.10.6-0.3.1 is installed OR mozilla-nspr-32bit-4.10.6-0.3.1 is installed OR mozilla-nspr-devel-4.10.6-0.3.1 is installed OR mozilla-nss-3.16.1-0.3.1 is installed OR mozilla-nss-32bit-3.16.1-0.3.1 is installed OR mozilla-nss-devel-3.16.1-0.3.1 is installed OR mozilla-nss-tools-3.16.1-0.3.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND bind-9.9.6P1-0.12.1 is installed OR bind-chrootenv-9.9.6P1-0.12.1 is installed OR bind-doc-9.9.6P1-0.12.1 is installed OR bind-libs-9.9.6P1-0.12.1 is installed OR bind-libs-32bit-9.9.6P1-0.12.1 is installed OR bind-libs-x86-9.9.6P1-0.12.1 is installed OR bind-utils-9.9.6P1-0.12.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND bind-9.9.6P1-0.12.1 is installed OR bind-chrootenv-9.9.6P1-0.12.1 is installed OR bind-doc-9.9.6P1-0.12.1 is installed OR bind-libs-9.9.6P1-0.12.1 is installed OR bind-libs-32bit-9.9.6P1-0.12.1 is installed OR bind-libs-x86-9.9.6P1-0.12.1 is installed OR bind-utils-9.9.6P1-0.12.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND libotr2-3.2.0-10.3.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3-LTSS is installed AND Package Information MozillaFirefox-38.8.0esr-40.5 is installed OR MozillaFirefox-translations-38.8.0esr-40.5 is installed OR libfreebl3-3.20.2-30.1 is installed OR libfreebl3-32bit-3.20.2-30.1 is installed OR libsoftokn3-3.20.2-30.1 is installed OR libsoftokn3-32bit-3.20.2-30.1 is installed OR mozilla-nspr-4.12-26.1 is installed OR mozilla-nspr-32bit-4.12-26.1 is installed OR mozilla-nss-3.20.2-30.1 is installed OR mozilla-nss-32bit-3.20.2-30.1 is installed OR mozilla-nss-tools-3.20.2-30.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information liblzo2-2-2.03-12.3.1 is installed OR liblzo2-2-32bit-2.03-12.3.1 is installed OR liblzo2-2-x86-2.03-12.3.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11-SECURITY is installed AND wget-openssl1-1.11.4-1.32.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND apache2-mod_nss-1.0.8-9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND ant-1.9.4-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information MozillaFirefox-52.2.0esr-108.3 is installed OR MozillaFirefox-branding-SLE-52-31.1 is installed OR MozillaFirefox-devel-52.2.0esr-108.3 is installed OR MozillaFirefox-translations-52.2.0esr-108.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND apache2-mod_nss-1.0.14-18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND apache-commons-httpclient-3.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND ctags-5.8-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP5 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_51-52_39-default-4-2.2 is installed OR kgraft-patch-3_12_51-52_39-xen-4-2.2 is installed OR kgraft-patch-SLE12_Update_11-4-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND apache-commons-httpclient-3.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 is installed AND Package Information kgraft-patch-3_12_55-52_45-default-2-2 is installed OR kgraft-patch-3_12_55-52_45-xen-2-2 is installed OR kgraft-patch-SLE12_Update_13-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr4.10-30.5 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr4.10-30.5 is installed OR java-1_8_0-ibm-devel-1.8.0_sr4.10-30.5 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr4.10-30.5 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND Package Information bind-devel-9.9.4P2-0.6.1 is installed OR bind-devel-32bit-9.9.4P2-0.6.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information libQtWebKit-devel-4.6.3-5.29.2 is installed OR libQtWebKit4-32bit-4.6.3-5.29.2 is installed OR libQtWebKit4-x86-4.6.3-5.29.2 is installed OR libqt4-devel-4.6.3-5.29.2 is installed OR libqt4-devel-doc-4.6.3-5.29.2 is installed OR libqt4-devel-doc-data-4.6.3-5.29.2 is installed OR libqt4-sql-mysql-32bit-4.6.3-5.29.2 is installed OR libqt4-sql-mysql-x86-4.6.3-5.29.2 is installed OR libqt4-sql-postgresql-4.6.3-5.29.2 is installed OR libqt4-sql-postgresql-32bit-4.6.3-5.29.2 is installed OR libqt4-sql-postgresql-x86-4.6.3-5.29.2 is installed OR libqt4-sql-sqlite-32bit-4.6.3-5.29.2 is installed OR libqt4-sql-sqlite-x86-4.6.3-5.29.2 is installed OR libqt4-sql-unixODBC-4.6.3-5.29.2 is installed OR libqt4-sql-unixODBC-32bit-4.6.3-5.29.2 is installed OR libqt4-sql-unixODBC-x86-4.6.3-5.29.2 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information freeradius-server-devel-2.1.1-7.18.1 is installed OR freeradius-server-libs-2.1.1-7.18.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information libpcap-1.8.1-9 is installed OR libpcap-devel-1.8.1-9 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information ncurses-5.9-44 is installed OR ncurses-devel-5.9-44 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information libqt4-devel-4.8.6-7 is installed OR libqt4-devel-doc-4.8.6-7 is installed OR libqt4-devel-doc-data-4.8.6-7 is installed OR libqt4-linguist-4.8.6-7 is installed OR libqt4-private-headers-devel-4.8.6-7 is installed OR libqt4-sql-postgresql-4.8.6-7 is installed OR libqt4-sql-postgresql-32bit-4.8.6-7 is installed OR libqt4-sql-unixODBC-4.8.6-7 is installed OR libqt4-sql-unixODBC-32bit-4.8.6-7 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND Package Information binutils-devel-2.31-9.26 is installed OR binutils-gold-2.31-9.26 is installed OR cross-ppc-binutils-2.31-9.26 is installed OR cross-spu-binutils-2.31-9.26 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 is installed AND kernel-default-extra-3.12.28-4 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information ImageMagick-6.8.8.1-8 is installed OR libMagick++-6_Q16-3-6.8.8.1-8 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-8 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information colord-1.3.3-10 is installed OR colord-lang-1.3.3-10 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND libvdpau1-32bit-1.1.1-6 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND Package Information ImageMagick-6.8.8.1-71.85 is installed OR libMagick++-6_Q16-3-6.8.8.1-71.85 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-71.85 is installed
BACK