OVAL Reference oval:org.opensuse.security:def:7203

Oval Definition:

oval:org.opensuse.security:def:7203

Revision Date:	2021-02-10	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP2) (Important)
Description:	This update for the Linux Kernel 5.3.18-24_12 fixes several issues. The following security issues were fixed: - CVE-2020-29373: Fixed an issue where kernel unsafely handles the root directory during path lookups, and thus a process inside a mount namespace can escape to unintended filesystem locations (bsc#1179779). - CVE-2020-36158: Fixed a potential remote code execution in the Marvell mwifiex driver (bsc#1180562). - CVE-2020-0465: Fixed multiple missing bounds checks in hid-multitouch.c that could have led to local privilege escalation (bnc#1180030). - CVE-2020-0466: Fixed a use-after-free due to a logic error in do_epoll_ctl and ep_loop_check_proc of eventpoll.c (bnc#1180032. - CVE-2020-29569: Fixed a use after free due to a logic error (bsc#1180008). - CVE-2020-29660: Fixed a locking inconsistency in the tty subsystem that may have allowed a read-after-free attack against TIOCGSID (bsc#1179877). - CVE-2020-29661: Fixed a locking issue in the tty subsystem that allowed a use-after-free attack against TIOCSPGRP (bsc#1179877). - CVE-2020-29368: Fixed an issue in copy-on-write implementation which could grant unintended write access because of a race condition in a THP mapcount check (bsc#1179664).
Family:	unix	Class:	patch
Status:		Reference(s):	1179664 1179779 1179877 1180008 1180030 1180032 1180562 CVE-2009-0186 CVE-2009-0799 CVE-2009-0800 CVE-2009-1179 CVE-2009-1180 CVE-2009-1181 CVE-2009-1182 CVE-2009-1183 CVE-2009-1187 CVE-2009-1188 CVE-2009-2911 CVE-2009-3297 CVE-2009-3607 CVE-2009-3608 CVE-2009-3627 CVE-2009-4273 CVE-2010-0411 CVE-2010-0412 CVE-2010-0624 CVE-2010-2242 CVE-2011-0541 CVE-2011-1146 CVE-2011-2511 CVE-2011-2696 CVE-2011-3172 CVE-2011-3630 CVE-2011-3631 CVE-2011-3632 CVE-2011-4600 CVE-2012-3445 CVE-2013-0170 CVE-2013-1788 CVE-2013-1789 CVE-2013-1790 CVE-2013-1962 CVE-2013-2064 CVE-2013-2218 CVE-2013-2230 CVE-2013-4153 CVE-2013-4154 CVE-2013-4239 CVE-2013-4296 CVE-2013-4297 CVE-2013-4311 CVE-2013-4399 CVE-2013-4400 CVE-2013-4401 CVE-2013-4473 CVE-2013-4474 CVE-2013-6436 CVE-2013-6457 CVE-2013-6458 CVE-2014-0028 CVE-2014-0179 CVE-2014-1447 CVE-2014-3158 CVE-2014-3633 CVE-2014-4607 CVE-2014-8962 CVE-2014-9028 CVE-2014-9092 CVE-2015-3202 CVE-2015-7236 CVE-2016-6321 CVE-2017-8779 CVE-2020-0465 CVE-2020-0466 CVE-2020-29368 CVE-2020-29373 CVE-2020-29569 CVE-2020-29660 CVE-2020-29661 CVE-2020-36158
Platform(s):	openSUSE 13.2 openSUSE 13.2 NonFree openSUSE Leap 42.1 SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Build System Kit 12 SP4 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SP2 SUSE Linux Enterprise Point of Sale 11 SP3 SUSE Linux Enterprise Real Time Extension 11 SP1 SUSE Linux Enterprise Real Time Extension 11 SP4 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-CLIENT-TOOLS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4	Product(s):
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 is installed AND kernel-zfcpdump-3.12.38-44 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND kernel-zfcpdump-4.4.21-84 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND kernel-zfcpdump-4.4.82-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP4 is installed AND Package Information mariadb-10.2.22-3.14 is installed OR mariadb-bench-10.2.22-3.14 is installed OR mariadb-test-10.2.22-3.14 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information MozillaFirefox-17.0.5esr-0.4.1 is installed OR MozillaFirefox-branding-SLED-7-0.6.9.17 is installed OR MozillaFirefox-translations-17.0.5esr-0.4.1 is installed OR libfreebl3-3.14.3-0.4.3.1 is installed OR libfreebl3-32bit-3.14.3-0.4.3.1 is installed OR mozilla-nspr-4.9.6-0.3.1 is installed OR mozilla-nspr-32bit-4.9.6-0.3.1 is installed OR mozilla-nss-3.14.3-0.4.3.1 is installed OR mozilla-nss-32bit-3.14.3-0.4.3.1 is installed OR mozilla-nss-tools-3.14.3-0.4.3.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information acroread-9.5.5-0.5.5.1 is installed OR acroread-cmaps-9.4.6-0.4.5.1 is installed OR acroread-fonts-ja-9.4.6-0.4.5.1 is installed OR acroread-fonts-ko-9.4.6-0.4.5.1 is installed OR acroread-fonts-zh_CN-9.4.6-0.4.5.1 is installed OR acroread-fonts-zh_TW-9.4.6-0.4.5.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information bind-9.9.6P1-0.19.1 is installed OR bind-libs-9.9.6P1-0.19.1 is installed OR bind-libs-32bit-9.9.6P1-0.19.1 is installed OR bind-utils-9.9.6P1-0.19.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND openvpn-2.3.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libXvnc1-1.6.0-16 is installed OR tigervnc-1.6.0-16 is installed OR xorg-x11-Xvnc-1.6.0-16 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libwireshark8-2.2.8-48.6 is installed OR libwiretap6-2.2.8-48.6 is installed OR libwscodecs1-2.2.8-48.6 is installed OR libwsutil7-2.2.8-48.6 is installed OR wireshark-2.2.8-48.6 is installed OR wireshark-gtk-2.2.8-48.6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND rpcbind-0.2.3-23 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 is installed AND Package Information ctdb-4.2.4-18.17 is installed OR samba-4.2.4-18.17 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP1 is installed AND hawk2-1.0.1+git.1456406635.49e230d-12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed AND kernel-livepatch-5_3_18-24_12-default-5-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Point of Sale 11 SP3 is installed AND Package Information bind-9.9.6P1-0.30.1 is installed OR bind-chrootenv-9.9.6P1-0.30.1 is installed OR bind-doc-9.9.6P1-0.30.1 is installed OR bind-libs-9.9.6P1-0.30.1 is installed OR bind-utils-9.9.6P1-0.30.1 is installed
Definition Synopsis
SUSE Linux Enterprise Real Time Extension 11 SP1 is installed AND iscsitarget-kmp-rt-1.4.19_2.6.33.5_rt23_0.4-0.7.6 is installed
Definition Synopsis
SUSE Linux Enterprise Real Time Extension 11 SP4 is installed AND Package Information kernel-rt-3.0.101.rt130-48.1 is installed OR kernel-rt-base-3.0.101.rt130-48.1 is installed OR kernel-rt-devel-3.0.101.rt130-48.1 is installed OR kernel-rt_trace-3.0.101.rt130-48.1 is installed OR kernel-rt_trace-base-3.0.101.rt130-48.1 is installed OR kernel-rt_trace-devel-3.0.101.rt130-48.1 is installed OR kernel-source-rt-3.0.101.rt130-48.1 is installed OR kernel-syms-rt-3.0.101.rt130-48.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 is installed AND procps-3.2.7-151.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP1-CLIENT-TOOLS is installed AND Package Information rhn-virtualization-common-5.4.15-0.15.2 is installed OR rhn-virtualization-host-5.4.15-0.15.2 is installed OR rhncfg-5.9.33-0.20.1 is installed OR rhncfg-actions-5.9.33-0.20.1 is installed OR rhncfg-client-5.9.33-0.20.1 is installed OR rhncfg-management-5.9.33-0.20.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND tomcat6-6.0.18-20.35.42.1 is installed OR tomcat6-admin-webapps-6.0.18-20.35.42.1 is installed OR tomcat6-docs-webapp-6.0.18-20.35.42.1 is installed OR tomcat6-javadoc-6.0.18-20.35.42.1 is installed OR tomcat6-jsp-2_1-api-6.0.18-20.35.42.1 is installed OR tomcat6-lib-6.0.18-20.35.42.1 is installed OR tomcat6-servlet-2_5-api-6.0.18-20.35.42.1 is installed OR tomcat6-webapps-6.0.18-20.35.42.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP2 is installed AND tomcat6-6.0.18-20.35.42.1 is installed OR tomcat6-admin-webapps-6.0.18-20.35.42.1 is installed OR tomcat6-docs-webapp-6.0.18-20.35.42.1 is installed OR tomcat6-javadoc-6.0.18-20.35.42.1 is installed OR tomcat6-jsp-2_1-api-6.0.18-20.35.42.1 is installed OR tomcat6-lib-6.0.18-20.35.42.1 is installed OR tomcat6-servlet-2_5-api-6.0.18-20.35.42.1 is installed OR tomcat6-webapps-6.0.18-20.35.42.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND MozillaFirefox-38.5.0esr-28.2 is installed OR MozillaFirefox-translations-38.5.0esr-28.2 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND MozillaFirefox-38.5.0esr-28.2 is installed OR MozillaFirefox-translations-38.5.0esr-28.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3-LTSS is installed AND Package Information bind-9.9.6P1-0.33.1 is installed OR bind-chrootenv-9.9.6P1-0.33.1 is installed OR bind-doc-9.9.6P1-0.33.1 is installed OR bind-libs-9.9.6P1-0.33.1 is installed OR bind-libs-32bit-9.9.6P1-0.33.1 is installed OR bind-utils-9.9.6P1-0.33.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information gnutls-2.4.1-24.39.55.1 is installed OR libgnutls-extra26-2.4.1-24.39.55.1 is installed OR libgnutls26-2.4.1-24.39.55.1 is installed OR libgnutls26-32bit-2.4.1-24.39.55.1 is installed OR libgnutls26-x86-2.4.1-24.39.55.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11-SECURITY is installed AND Package Information libldap-openssl1-2_4-2-2.4.26-0.62.3 is installed OR libldap-openssl1-2_4-2-32bit-2.4.26-0.62.3 is installed OR libldap-openssl1-2_4-2-x86-2.4.26-0.62.3 is installed OR openldap2-client-openssl1-2.4.26-0.62.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information liblzo2-2-2.08-1 is installed OR liblzo2-2-32bit-2.08-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information fuse-2.9.3-5 is installed OR libfuse2-2.9.3-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_40-default-3-2.1 is installed OR kgraft-patch-3_12_74-60_64_40-xen-3-2.1 is installed OR kgraft-patch-SLE12-SP1_Update_15-3-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_jk-1.2.40-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND apache2-mod_perl-2.0.8-11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP5 is installed AND ant-1.9.4-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_55-52_42-default-2-2.2 is installed OR kgraft-patch-3_12_55-52_42-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_12-2-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 is installed AND Package Information kgraft-patch-3_12_51-52_31-default-5-2 is installed OR kgraft-patch-3_12_51-52_31-xen-5-2 is installed OR kgraft-patch-SLE12_Update_9-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-branding-SLE-52-31 is installed OR MozillaFirefox-devel-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND Package Information kgraft-patch-4_4_120-92_70-default-3-2 is installed OR kgraft-patch-SLE12-SP2_Update_20-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND cups-devel-1.3.9-8.46.48.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information Mesa-devel-9.0.3-0.19.1 is installed OR Mesa-devel-32bit-9.0.3-0.19.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND vte-devel-0.22.5-0.2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information ImageMagick-6.8.8.1-8 is installed OR ImageMagick-devel-6.8.8.1-8 is installed OR libMagick++-6_Q16-3-6.8.8.1-8 is installed OR libMagick++-devel-6.8.8.1-8 is installed OR perl-PerlMagick-6.8.8.1-8 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information firebird-classic-2.5.2.26539-15 is installed OR libfbembed-devel-2.5.2.26539-15 is installed OR libfbembed2_5-2.5.2.26539-15 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information libquicktime-1.2.4-14.3 is installed OR libquicktime-devel-1.2.4-14.3 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND libX11-devel-1.6.2-12.5 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information gimp-2.8.10-1 is installed OR gimp-lang-2.8.10-1 is installed OR gimp-plugins-python-2.8.10-1 is installed OR libgimp-2_0-0-2.8.10-1 is installed OR libgimpui-2_0-0-2.8.10-1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND cyrus-sasl-digestmd5-32bit-2.1.26-7 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND bogofilter-1.2.4-5 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information empathy-3.12.12-7 is installed OR empathy-lang-3.12.12-7 is installed OR telepathy-mission-control-plugin-goa-3.12.12-7 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND bluez-cups-5.13-5.4 is installed

BACK