Oval Definition:	oval:org.opensuse.security:def:74073
Revision Date: 2020-12-01 Version: 1 Title: Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP2) (Important) Description: This update for the Linux Kernel 5.3.18-24_24 fixes one issue. The following security issue was fixed: - CVE-2020-25212: A TOCTOU mismatch in the NFS client code could be used by local attackers to corrupt memory or possibly have unspecified other impact because a size check is in fs/nfs/nfs4proc.c instead of fs/nfs/nfs4xdr.c (bsc#1176381). Family: unix Class: patch Status: Reference(s): 1173674 1176382 CVE-2020-15503 CVE-2020-25212 SUSE-SU-2020:2029-1 SUSE-SU-2020:3181-1 Platform(s): SUSE Linux Enterprise Module for Live Patching 15 SP2 SUSE Linux Enterprise Workstation Extension 15 SP2 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed AND Package Information kernel-livepatch-5_3_18-24_24-default-2-2 is installed OR kernel-livepatch-SLE15-SP2_Update_4-2-2 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information libraw-0.18.9-3.11 is installed OR libraw-devel-0.18.9-3.11 is installed OR libraw16-0.18.9-3.11 is installed
BACK