OVAL Reference oval:org.opensuse.security:def:7246

Oval Definition:

oval:org.opensuse.security:def:7246

Revision Date:	2021-03-17	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP2) (Important)
Description:	This update for the Linux Kernel 5.3.18-22 fixes several issues. The following security issues were fixed: - CVE-2020-29368: Fixed an issue in copy-on-write implementation which could have granted unintended write access because of a race condition in a THP mapcount check (bsc#1179664). - Fixed an issue where NFS client filesystems got unmounted on fail-over (bsc#1182468). - CVE-2021-3347: Fixed a use-after-free in the PI futexes during fault handling, allowing local users to execute code in the kernel (bsc#1181553). - CVE-2020-28374: Fixed insufficient identifier checking in the LIO SCSI target code which could have been used by remote attackers to read or write files via directory traversal in an XCOPY request (bsc#1178684). - CVE-2021-0342: Fixed a potential memory corruption due to a use after free which could have led to local escalation of privilege with System execution privileges required (bsc#1180859).
Family:	unix	Class:	patch
Status:		Reference(s):	1178684 1179664 1180859 1181553 1182468 CVE-2008-4225 CVE-2008-4226 CVE-2008-4409 CVE-2010-0405 CVE-2010-1163 CVE-2010-1646 CVE-2010-2240 CVE-2010-2242 CVE-2010-2761 CVE-2010-4410 CVE-2010-4411 CVE-2010-4777 CVE-2011-0010 CVE-2011-1146 CVE-2011-2511 CVE-2011-3602 CVE-2011-4600 CVE-2012-2150 CVE-2012-2337 CVE-2012-3445 CVE-2012-5134 CVE-2013-0170 CVE-2013-1775 CVE-2013-1776 CVE-2013-1940 CVE-2013-1962 CVE-2013-1983 CVE-2013-1992 CVE-2013-2218 CVE-2013-2230 CVE-2013-4153 CVE-2013-4154 CVE-2013-4239 CVE-2013-4296 CVE-2013-4297 CVE-2013-4311 CVE-2013-4396 CVE-2013-4399 CVE-2013-4400 CVE-2013-4401 CVE-2013-6401 CVE-2013-6424 CVE-2013-6436 CVE-2013-6457 CVE-2013-6458 CVE-2014-0011 CVE-2014-0028 CVE-2014-0179 CVE-2014-0467 CVE-2014-1447 CVE-2014-1829 CVE-2014-1830 CVE-2014-3618 CVE-2014-3633 CVE-2014-3657 CVE-2014-7823 CVE-2014-8136 CVE-2014-8240 CVE-2015-0236 CVE-2015-0255 CVE-2015-2296 CVE-2015-5247 CVE-2020-28374 CVE-2020-29368 CVE-2021-0342 CVE-2021-3347 SUSE-SU-2021:0849-1
Platform(s):	openSUSE 13.2 openSUSE Leap 42.1 SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Build System Kit 12 SP4 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 11 SP2 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability Extension 11 SP2 SUSE Linux Enterprise High Availability Extension 11 SP3 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SP2 SUSE Linux Enterprise Point of Sale 11 SP3 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information dnsmasq-2.71-4.1 is installed OR dnsmasq-utils-2.71-4.1 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 is installed AND Package Information libtidy-0_99-0-devel-1.0.20100204cvs-25 is installed OR tidy-1.0.20100204cvs-25 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND kernel-zfcpdump-3.12.51-60.20 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND Package Information libreoffice-5.3.5.2-43.5 is installed OR libreoffice-sdk-5.3.5.2-43.5 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP4 is installed AND kernel-zfcpdump-4.12.14-95.19 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND cifs-utils-5.1-0.7.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-31.8.0esr-0.10.1 is installed OR MozillaFirefox-translations-31.8.0esr-0.10.1 is installed OR libfreebl3-3.19.2_CKBI_1.98-0.10.1 is installed OR libfreebl3-32bit-3.19.2_CKBI_1.98-0.10.1 is installed OR libsoftokn3-3.19.2_CKBI_1.98-0.10.1 is installed OR libsoftokn3-32bit-3.19.2_CKBI_1.98-0.10.1 is installed OR mozilla-nspr-4.10.8-0.5.1 is installed OR mozilla-nspr-32bit-4.10.8-0.5.1 is installed OR mozilla-nss-3.19.2_CKBI_1.98-0.10.1 is installed OR mozilla-nss-32bit-3.19.2_CKBI_1.98-0.10.1 is installed OR mozilla-nss-tools-3.19.2_CKBI_1.98-0.10.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information MozillaFirefox-31.8.0esr-0.13.2 is installed OR MozillaFirefox-translations-31.8.0esr-0.13.2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information java-1_7_0-openjdk-1.7.0.71-6 is installed OR java-1_7_0-openjdk-headless-1.7.0.71-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information kernel-default-4.4.59-92.17 is installed OR kernel-default-devel-4.4.59-92.17 is installed OR kernel-default-extra-4.4.59-92.17 is installed OR kernel-devel-4.4.59-92.17 is installed OR kernel-macros-4.4.59-92.17 is installed OR kernel-source-4.4.59-92.17 is installed OR kernel-syms-4.4.59-92.17 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND puppet-3.8.5-15.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND xfsprogs-4.15.0-1 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 11 SP2 is installed AND Package Information java-1_4_2-ibm-sap-1.4.2_sr13.13-0.3.1 is installed OR java-1_4_2-ibm-sap-devel-1.4.2_sr13.13-0.3.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 is installed AND Package Information ctdb-4.2.4-18.17 is installed OR samba-4.2.4-18.17 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP1 is installed AND Package Information libpcreposix0-8.39-7 is installed OR pcre-8.39-7 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND python-requests-2.8.1-6.11 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability Extension 11 SP2 is installed AND Package Information hawk-0.5.2-0.38.16 is installed OR hawk-templates-0.5.2-0.38.16 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability Extension 11 SP3 is installed AND Package Information cluster-network-kmp-bigsmp-1.4_3.0.101_0.40-2.27.98 is installed OR drbd-kmp-bigsmp-8.4.4_3.0.101_0.40-0.22.64 is installed OR gfs2-kmp-bigsmp-2_3.0.101_0.40-0.16.104 is installed OR ocfs2-kmp-bigsmp-1.6_3.0.101_0.40-0.20.98 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed AND kernel-livepatch-5_3_18-22-default-8-5.2 is installed
Definition Synopsis
SUSE Linux Enterprise Point of Sale 11 SP3 is installed AND Package Information MozillaFirefox-45.3.0esr-50.1 is installed OR MozillaFirefox-translations-45.3.0esr-50.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 is installed AND Package Information OpenEXR-1.6.1-83.17.1 is installed OR OpenEXR-32bit-1.6.1-83.17.1 is installed OR OpenEXR-x86-1.6.1-83.17.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND MozillaFirefox-38.5.0esr-28.2 is installed OR MozillaFirefox-translations-38.5.0esr-28.2 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND MozillaFirefox-38.5.0esr-28.2 is installed OR MozillaFirefox-translations-38.5.0esr-28.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3-LTSS is installed AND Package Information java-1_7_0-ibm-1.7.0_sr9.30-47.1 is installed OR java-1_7_0-ibm-alsa-1.7.0_sr9.30-47.1 is installed OR java-1_7_0-ibm-jdbc-1.7.0_sr9.30-47.1 is installed OR java-1_7_0-ibm-plugin-1.7.0_sr9.30-47.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information libecpg6-9.4.4-0.6.2 is installed OR libpq5-9.4.4-0.6.2 is installed OR libpq5-32bit-9.4.4-0.6.2 is installed OR postgresql94-9.4.4-0.6.2 is installed OR postgresql94-contrib-9.4.4-0.6.2 is installed OR postgresql94-docs-9.4.4-0.6.2 is installed OR postgresql94-server-9.4.4-0.6.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11-SECURITY is installed AND Package Information libldap-openssl1-2_4-2-2.4.26-0.62.3 is installed OR libldap-openssl1-2_4-2-32bit-2.4.26-0.62.3 is installed OR libldap-openssl1-2_4-2-x86-2.4.26-0.62.3 is installed OR openldap2-client-openssl1-2.4.26-0.62.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND mutt-1.5.21-44 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information bzip2-1.0.6-27 is installed OR bzip2-doc-1.0.6-27 is installed OR libbz2-1-1.0.6-27 is installed OR libbz2-1-32bit-1.0.6-27 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information xen-4.5.5_12-22.18.1 is installed OR xen-doc-html-4.5.5_12-22.18.1 is installed OR xen-kmp-default-4.5.5_12_k3.12.74_60.64.45-22.18.1 is installed OR xen-libs-4.5.5_12-22.18.1 is installed OR xen-libs-32bit-4.5.5_12-22.18.1 is installed OR xen-tools-4.5.5_12-22.18.1 is installed OR xen-tools-domU-4.5.5_12-22.18.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information colord-gtk-lang-0.1.26-6 is installed OR libcolord-gtk1-0.1.26-6 is installed OR libcolord2-1.3.3-10 is installed OR libcolord2-32bit-1.3.3-10 is installed OR libcolorhug2-1.3.3-10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP5 is installed AND Package Information MozillaFirefox-68.1.0-109.92 is installed OR MozillaFirefox-translations-common-68.1.0-109.92 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_51-52_39-default-4-2.2 is installed OR kgraft-patch-3_12_51-52_39-xen-4-2.2 is installed OR kgraft-patch-SLE12_Update_11-4-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information avahi-0.6.32-30 is installed OR avahi-lang-0.6.32-30 is installed OR avahi-utils-0.6.32-30 is installed OR libavahi-client3-0.6.32-30 is installed OR libavahi-common3-0.6.32-30 is installed OR libavahi-core7-0.6.32-30 is installed OR libdns_sd-0.6.32-30 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 is installed AND Package Information ntp-4.2.8p9-46.18 is installed OR ntp-doc-4.2.8p9-46.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND Package Information compat-openssl098-0.9.8j-102 is installed OR libopenssl0_9_8-0.9.8j-102 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND Package Information kgraft-patch-4_4_121-92_73-default-2-2 is installed OR kgraft-patch-SLE12-SP2_Update_21-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND Package Information git-1.7.12.4-0.5.1 is installed OR git-arch-1.7.12.4-0.5.1 is installed OR git-core-1.7.12.4-0.5.1 is installed OR git-cvs-1.7.12.4-0.5.1 is installed OR git-daemon-1.7.12.4-0.5.1 is installed OR git-email-1.7.12.4-0.5.1 is installed OR git-gui-1.7.12.4-0.5.1 is installed OR git-svn-1.7.12.4-0.5.1 is installed OR git-web-1.7.12.4-0.5.1 is installed OR gitk-1.7.12.4-0.5.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information apache2-2.2.12-1.46.1 is installed OR apache2-devel-2.2.12-1.46.1 is installed OR apache2-doc-2.2.12-1.46.1 is installed OR apache2-example-pages-2.2.12-1.46.1 is installed OR apache2-prefork-2.2.12-1.46.1 is installed OR apache2-utils-2.2.12-1.46.1 is installed OR apache2-worker-2.2.12-1.46.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information ghostscript-devel-8.62-32.44.1 is installed OR ghostscript-ijs-devel-8.62-32.44.1 is installed OR ghostscript-library-8.62-32.44.1 is installed OR libgimpprint-devel-4.2.7-32.44.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information freetype2-2.5.3-5 is installed OR freetype2-devel-2.5.3-5 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information wireshark-2.2.12-48.18 is installed OR wireshark-devel-2.2.12-48.18 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information ncurses-5.9-50 is installed OR ncurses-devel-5.9-50 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND libgme-devel-0.6.0-5 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND java-1_7_0-openjdk-plugin-1.5.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information finch-2.10.9-8 is installed OR libpurple-2.10.9-8 is installed OR libpurple-lang-2.10.9-8 is installed OR libpurple-meanwhile-2.10.9-8 is installed OR libpurple-tcl-2.10.9-8 is installed OR pidgin-2.10.9-8 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information gcc48-gij-4.8.5-30 is installed OR gcc48-gij-32bit-4.8.5-30 is installed OR libgcj48-4.8.5-30 is installed OR libgcj48-32bit-4.8.5-30 is installed OR libgcj48-jar-4.8.5-30 is installed OR libgcj_bc1-4.8.5-30 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information empathy-3.12.12-7 is installed OR empathy-lang-3.12.12-7 is installed OR telepathy-mission-control-plugin-goa-3.12.12-7 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND Package Information colord-1.3.3-12 is installed OR colord-lang-1.3.3-12 is installed

BACK