openSUSE Leap 15.2: 2021:0579-1 Important Kernel Security Fixes
opensuse
April 19, 2021
An update that solves 12 vulnerabilities and has 15 fixes is now available
Description
The openSUSE Linux Leap 15.2 kernel was updated to receive various
security and bugfixes.
The following security bugs were fixed:
- CVE-2021-3483: Fixed a use-after-free in nosy.c (bsc#1184393).
- CVE-2021-30002: Fixed a memory leak for large arguments in
video_usercopy (bsc#1184120).
- CVE-2021-29154: Fixed incorrect computation of branch displacements,
allowing arbitrary code execution (bsc#1184391).
- CVE-2021-28950: Fixed an issue in fs/fuse/fuse_i.h due to a retry loop
continually was finding the same bad inode (bsc#1184194).
- CVE-2020-36312: Fixed a memory leak upon a kmalloc failure (bsc#1184509
).
- CVE-2020-36311: Fixed a denial of service (soft lockup) by triggering
destruction of a large SEV VM (bsc#1184511).
- CVE-2020-36310: Fixed infinite loop for certain nested page faults
(bsc#1184512).
- CVE-2020-25670, CVE-2020-25671, CVE-2020-25672, CVE-2020-25673: Fixed
multiple bugs in NFC subsytem...
Read the Full Advisory
Patch
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.2:
zypper in -t patch openSUSE-2021-579=1
Package List
- openSUSE Leap 15.2 (x86_64):
kernel-debug-5.3.18-lp152.72.1
kernel-debug-debuginfo-5.3.18-lp152.72.1
kernel-debug-debugsource-5.3.18-lp152.72.1
kernel-debug-devel-5.3.18-lp152.72.1
kernel-debug-devel-debuginfo-5.3.18-lp152.72.1
kernel-default-5.3.18-lp152.72.1
kernel-default-base-5.3.18-lp152.72.1.lp152.8.30.1
kernel-default-base-rebuild-5.3.18-lp152.72.1.lp152.8.30.1
kernel-default-debuginfo-5.3.18-lp152.72.1
kernel-default-debugsource-5.3.18-lp152.72.1
kernel-default-devel-5.3.18-lp152.72.1
kernel-default-devel-debuginfo-5.3.18-lp152.72.1
kernel-kvmsmall-5.3.18-lp152.72.1
kernel-kvmsmall-debuginfo-5.3.18-lp152.72.1
kernel-kvmsmall-debugsource-5.3.18-lp152.72.1
kernel-kvmsmall-devel-5.3.18-lp152.72.1
kernel-kvmsmall-devel-debuginfo-5.3.18-lp152.72.1
kernel-obs-build-5.3.18-lp152.72.1
kernel-obs-build-debugsource-5.3.18-lp152.72.1
kernel-obs-qa-5.3.18-lp152.72.1
kernel-preempt-5.3.18-lp152.72.1
kernel-preempt-debuginfo-5.3.18-lp152.72.1
kernel-preempt-debugsource-5.3.18-lp152.72.1
kernel-preempt-devel-5.3.1...
Read the Full AdvisoryReferences
https://www.suse.com/security/cve/CVE-2020-25670.html
https://www.suse.com/security/cve/CVE-2020-25671.html
https://www.suse.com/security/cve/CVE-2020-25672.html
https://www.suse.com/security/cve/CVE-2020-25673.html
https://www.suse.com/security/cve/CVE-2020-36310.html
https://www.suse.com/security/cve/CVE-2020-36311.html
https://www.suse.com/security/cve/CVE-2020-36312.html
https://www.suse.com/security/cve/CVE-2020-36322.html
https://www.suse.com/security/cve/CVE-2021-28950.html
https://www.suse.com/security/cve/CVE-2021-29154.html
https://www.suse.com/security/cve/CVE-2021-30002.html
https://www.suse.com/security/cve/CVE-2021-3483.html
https://bugzilla.suse.com/1047233
https://bugzilla.suse.com/1065729
https://bugzilla.suse.com/1113295
https://bugzilla.suse.com/1152489
https://bugzilla.suse.com/1154353
https://bugzilla.suse.com/1155518
https://bugzilla.suse.com/1156395
https://bugzilla.suse.com/1167574
https://bugzilla.suse.com/1175995
https://bugzilla.suse.com/1178181
https://bugzilla.suse.com/1181507
ht...
Read the Full Advisory
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: openSUSE-SU-2021:0579-1
Rating: important
Affected Products:
openSUSE Leap 15.2
ble.
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!