Oval Definition:oval:org.opensuse.security:def:7246
Revision Date:2021-03-17Version:1
Title:Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP2) (Important)
Description:

This update for the Linux Kernel 5.3.18-22 fixes several issues.

The following security issues were fixed:

- CVE-2020-29368: Fixed an issue in copy-on-write implementation which could have granted unintended write access because of a race condition in a THP mapcount check (bsc#1179664). - Fixed an issue where NFS client filesystems got unmounted on fail-over (bsc#1182468). - CVE-2021-3347: Fixed a use-after-free in the PI futexes during fault handling, allowing local users to execute code in the kernel (bsc#1181553). - CVE-2020-28374: Fixed insufficient identifier checking in the LIO SCSI target code which could have been used by remote attackers to read or write files via directory traversal in an XCOPY request (bsc#1178684). - CVE-2021-0342: Fixed a potential memory corruption due to a use after free which could have led to local escalation of privilege with System execution privileges required (bsc#1180859).
Family:unixClass:patch
Status:Reference(s):1178684
1179664
1180859
1181553
1182468
CVE-2008-4225
CVE-2008-4226
CVE-2008-4409
CVE-2010-0405
CVE-2010-1163
CVE-2010-1646
CVE-2010-2240
CVE-2010-2242
CVE-2010-2761
CVE-2010-4410
CVE-2010-4411
CVE-2010-4777
CVE-2011-0010
CVE-2011-1146
CVE-2011-2511
CVE-2011-3602
CVE-2011-4600
CVE-2012-2150
CVE-2012-2337
CVE-2012-3445
CVE-2012-5134
CVE-2013-0170
CVE-2013-1775
CVE-2013-1776
CVE-2013-1940
CVE-2013-1962
CVE-2013-1983
CVE-2013-1992
CVE-2013-2218
CVE-2013-2230
CVE-2013-4153
CVE-2013-4154
CVE-2013-4239
CVE-2013-4296
CVE-2013-4297
CVE-2013-4311
CVE-2013-4396
CVE-2013-4399
CVE-2013-4400
CVE-2013-4401
CVE-2013-6401
CVE-2013-6424
CVE-2013-6436
CVE-2013-6457
CVE-2013-6458
CVE-2014-0011
CVE-2014-0028
CVE-2014-0179
CVE-2014-0467
CVE-2014-1447
CVE-2014-1829
CVE-2014-1830
CVE-2014-3618
CVE-2014-3633
CVE-2014-3657
CVE-2014-7823
CVE-2014-8136
CVE-2014-8240
CVE-2015-0236
CVE-2015-0255
CVE-2015-2296
CVE-2015-5247
CVE-2020-28374
CVE-2020-29368
CVE-2021-0342
CVE-2021-3347
SUSE-SU-2021:0849-1
Platform(s):openSUSE 13.2
openSUSE Leap 42.1
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Build System Kit 12
SUSE Linux Enterprise Build System Kit 12 SP1
SUSE Linux Enterprise Build System Kit 12 SP3
SUSE Linux Enterprise Build System Kit 12 SP4
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise for SAP 11 SP2
SUSE Linux Enterprise High Availability 12
SUSE Linux Enterprise High Availability 12 SP1
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability Extension 11 SP2
SUSE Linux Enterprise High Availability Extension 11 SP3
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Live Patching 15 SP2
SUSE Linux Enterprise Point of Sale 11 SP3
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 11-SECURITY
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Software Development Kit 12 SP4
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE Linux Enterprise Workstation Extension 12 SP3
SUSE Linux Enterprise Workstation Extension 12 SP4
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND Package Information
  • dnsmasq-2.71-4.1 is installed
  • OR dnsmasq-utils-2.71-4.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 is installed
  • AND Package Information
  • libtidy-0_99-0-devel-1.0.20100204cvs-25 is installed
  • OR tidy-1.0.20100204cvs-25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP1 is installed
  • AND kernel-zfcpdump-3.12.51-60.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP3 is installed
  • AND Package Information
  • libreoffice-5.3.5.2-43.5 is installed
  • OR libreoffice-sdk-5.3.5.2-43.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP4 is installed
  • AND kernel-zfcpdump-4.12.14-95.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND cifs-utils-5.1-0.7.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-31.8.0esr-0.10.1 is installed
  • OR MozillaFirefox-translations-31.8.0esr-0.10.1 is installed
  • OR libfreebl3-3.19.2_CKBI_1.98-0.10.1 is installed
  • OR libfreebl3-32bit-3.19.2_CKBI_1.98-0.10.1 is installed
  • OR libsoftokn3-3.19.2_CKBI_1.98-0.10.1 is installed
  • OR libsoftokn3-32bit-3.19.2_CKBI_1.98-0.10.1 is installed
  • OR mozilla-nspr-4.10.8-0.5.1 is installed
  • OR mozilla-nspr-32bit-4.10.8-0.5.1 is installed
  • OR mozilla-nss-3.19.2_CKBI_1.98-0.10.1 is installed
  • OR mozilla-nss-32bit-3.19.2_CKBI_1.98-0.10.1 is installed
  • OR mozilla-nss-tools-3.19.2_CKBI_1.98-0.10.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • MozillaFirefox-31.8.0esr-0.13.2 is installed
  • OR MozillaFirefox-translations-31.8.0esr-0.13.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.71-6 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.71-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • kernel-default-4.4.59-92.17 is installed
  • OR kernel-default-devel-4.4.59-92.17 is installed
  • OR kernel-default-extra-4.4.59-92.17 is installed
  • OR kernel-devel-4.4.59-92.17 is installed
  • OR kernel-macros-4.4.59-92.17 is installed
  • OR kernel-source-4.4.59-92.17 is installed
  • OR kernel-syms-4.4.59-92.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND puppet-3.8.5-15.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND xfsprogs-4.15.0-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 11 SP2 is installed
  • AND Package Information
  • java-1_4_2-ibm-sap-1.4.2_sr13.13-0.3.1 is installed
  • OR java-1_4_2-ibm-sap-devel-1.4.2_sr13.13-0.3.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 is installed
  • AND Package Information
  • ctdb-4.2.4-18.17 is installed
  • OR samba-4.2.4-18.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP1 is installed
  • AND Package Information
  • libpcreposix0-8.39-7 is installed
  • OR pcre-8.39-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND python-requests-2.8.1-6.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability Extension 11 SP2 is installed
  • AND Package Information
  • hawk-0.5.2-0.38.16 is installed
  • OR hawk-templates-0.5.2-0.38.16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability Extension 11 SP3 is installed
  • AND Package Information
  • cluster-network-kmp-bigsmp-1.4_3.0.101_0.40-2.27.98 is installed
  • OR drbd-kmp-bigsmp-8.4.4_3.0.101_0.40-0.22.64 is installed
  • OR gfs2-kmp-bigsmp-2_3.0.101_0.40-0.16.104 is installed
  • OR ocfs2-kmp-bigsmp-1.6_3.0.101_0.40-0.20.98 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed
  • AND kernel-livepatch-5_3_18-22-default-8-5.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Point of Sale 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-45.3.0esr-50.1 is installed
  • OR MozillaFirefox-translations-45.3.0esr-50.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 is installed
  • AND Package Information
  • OpenEXR-1.6.1-83.17.1 is installed
  • OR OpenEXR-32bit-1.6.1-83.17.1 is installed
  • OR OpenEXR-x86-1.6.1-83.17.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • MozillaFirefox-38.5.0esr-28.2 is installed
  • OR MozillaFirefox-translations-38.5.0esr-28.2 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for VMWare 11 SP3 is installed
  • AND
  • MozillaFirefox-38.5.0esr-28.2 is installed
  • OR MozillaFirefox-translations-38.5.0esr-28.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3-LTSS is installed
  • AND Package Information
  • java-1_7_0-ibm-1.7.0_sr9.30-47.1 is installed
  • OR java-1_7_0-ibm-alsa-1.7.0_sr9.30-47.1 is installed
  • OR java-1_7_0-ibm-jdbc-1.7.0_sr9.30-47.1 is installed
  • OR java-1_7_0-ibm-plugin-1.7.0_sr9.30-47.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND Package Information
  • libecpg6-9.4.4-0.6.2 is installed
  • OR libpq5-9.4.4-0.6.2 is installed
  • OR libpq5-32bit-9.4.4-0.6.2 is installed
  • OR postgresql94-9.4.4-0.6.2 is installed
  • OR postgresql94-contrib-9.4.4-0.6.2 is installed
  • OR postgresql94-docs-9.4.4-0.6.2 is installed
  • OR postgresql94-server-9.4.4-0.6.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11-SECURITY is installed
  • AND Package Information
  • libldap-openssl1-2_4-2-2.4.26-0.62.3 is installed
  • OR libldap-openssl1-2_4-2-32bit-2.4.26-0.62.3 is installed
  • OR libldap-openssl1-2_4-2-x86-2.4.26-0.62.3 is installed
  • OR openldap2-client-openssl1-2.4.26-0.62.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND mutt-1.5.21-44 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • bzip2-1.0.6-27 is installed
  • OR bzip2-doc-1.0.6-27 is installed
  • OR libbz2-1-1.0.6-27 is installed
  • OR libbz2-1-32bit-1.0.6-27 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • xen-4.5.5_12-22.18.1 is installed
  • OR xen-doc-html-4.5.5_12-22.18.1 is installed
  • OR xen-kmp-default-4.5.5_12_k3.12.74_60.64.45-22.18.1 is installed
  • OR xen-libs-4.5.5_12-22.18.1 is installed
  • OR xen-libs-32bit-4.5.5_12-22.18.1 is installed
  • OR xen-tools-4.5.5_12-22.18.1 is installed
  • OR xen-tools-domU-4.5.5_12-22.18.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • colord-gtk-lang-0.1.26-6 is installed
  • OR libcolord-gtk1-0.1.26-6 is installed
  • OR libcolord2-1.3.3-10 is installed
  • OR libcolord2-32bit-1.3.3-10 is installed
  • OR libcolorhug2-1.3.3-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • accountsservice-0.6.42-16.3 is installed
  • OR accountsservice-lang-0.6.42-16.3 is installed
  • OR libaccountsservice0-0.6.42-16.3 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP5 is installed
  • AND Package Information
  • MozillaFirefox-68.1.0-109.92 is installed
  • OR MozillaFirefox-translations-common-68.1.0-109.92 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_51-52_39-default-4-2.2 is installed
  • OR kgraft-patch-3_12_51-52_39-xen-4-2.2 is installed
  • OR kgraft-patch-SLE12_Update_11-4-2.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • avahi-0.6.32-30 is installed
  • OR avahi-lang-0.6.32-30 is installed
  • OR avahi-utils-0.6.32-30 is installed
  • OR libavahi-client3-0.6.32-30 is installed
  • OR libavahi-common3-0.6.32-30 is installed
  • OR libavahi-core7-0.6.32-30 is installed
  • OR libdns_sd-0.6.32-30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 is installed
  • AND Package Information
  • ntp-4.2.8p9-46.18 is installed
  • OR ntp-doc-4.2.8p9-46.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed
  • AND Package Information
  • compat-openssl098-0.9.8j-102 is installed
  • OR libopenssl0_9_8-0.9.8j-102 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_73-default-2-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_21-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP2 is installed
  • AND Package Information
  • git-1.7.12.4-0.5.1 is installed
  • OR git-arch-1.7.12.4-0.5.1 is installed
  • OR git-core-1.7.12.4-0.5.1 is installed
  • OR git-cvs-1.7.12.4-0.5.1 is installed
  • OR git-daemon-1.7.12.4-0.5.1 is installed
  • OR git-email-1.7.12.4-0.5.1 is installed
  • OR git-gui-1.7.12.4-0.5.1 is installed
  • OR git-svn-1.7.12.4-0.5.1 is installed
  • OR git-web-1.7.12.4-0.5.1 is installed
  • OR gitk-1.7.12.4-0.5.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
  • AND Package Information
  • apache2-2.2.12-1.46.1 is installed
  • OR apache2-devel-2.2.12-1.46.1 is installed
  • OR apache2-doc-2.2.12-1.46.1 is installed
  • OR apache2-example-pages-2.2.12-1.46.1 is installed
  • OR apache2-prefork-2.2.12-1.46.1 is installed
  • OR apache2-utils-2.2.12-1.46.1 is installed
  • OR apache2-worker-2.2.12-1.46.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND Package Information
  • ghostscript-devel-8.62-32.44.1 is installed
  • OR ghostscript-ijs-devel-8.62-32.44.1 is installed
  • OR ghostscript-library-8.62-32.44.1 is installed
  • OR libgimpprint-devel-4.2.7-32.44.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND Package Information
  • freetype2-2.5.3-5 is installed
  • OR freetype2-devel-2.5.3-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND Package Information
  • wireshark-2.2.12-48.18 is installed
  • OR wireshark-devel-2.2.12-48.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • AND Package Information
  • ncurses-5.9-50 is installed
  • OR ncurses-devel-5.9-50 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
  • AND libgme-devel-0.6.0-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND java-1_7_0-openjdk-plugin-1.5.1-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND Package Information
  • finch-2.10.9-8 is installed
  • OR libpurple-2.10.9-8 is installed
  • OR libpurple-lang-2.10.9-8 is installed
  • OR libpurple-meanwhile-2.10.9-8 is installed
  • OR libpurple-tcl-2.10.9-8 is installed
  • OR pidgin-2.10.9-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND Package Information
  • gcc48-gij-4.8.5-30 is installed
  • OR gcc48-gij-32bit-4.8.5-30 is installed
  • OR libgcj48-4.8.5-30 is installed
  • OR libgcj48-32bit-4.8.5-30 is installed
  • OR libgcj48-jar-4.8.5-30 is installed
  • OR libgcj_bc1-4.8.5-30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP3 is installed
  • AND Package Information
  • empathy-3.12.12-7 is installed
  • OR empathy-lang-3.12.12-7 is installed
  • OR telepathy-mission-control-plugin-goa-3.12.12-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP4 is installed
  • AND Package Information
  • colord-1.3.3-12 is installed
  • OR colord-lang-1.3.3-12 is installed
    • BACK