openSUSE: 2021:0758-1 Important Kernel Enhancements and Fixes
opensuse
May 22, 2021
An update that solves 32 vulnerabilities and has 85 fixes is now available
Description
The SUSE Linux Enterprise 15 SP2 kernel RT was updated to receive various
security and bugfixes.
The following security bugs were fixed:
- CVE-2021-3444: Fixed an issue with the bpf verifier which did not
properly handle mod32 destination register truncation when the source
register was known to be 0 leading to out of bounds read (bsc#1184170).
- CVE-2021-3428: Fixed an integer overflow in ext4_es_cache_extent
(bsc#1173485).
- CVE-2021-29647: Fixed an issue in qrtr_recvmsg which could have allowed
attackers to obtain sensitive information from kernel memory because of
a partially uninitialized data structure (bsc#1184192 ).
- CVE-2021-29265: Fixed an issue in usbip_sockfd_store which could have
allowed attackers to cause a denial of service due to race conditions
during an update of the local and shared status (bsc#1184167).
- CVE-2021-29264: Fixed an issue in the Freescale Gianfar Ethernet driver
which could have...
Read the Full Advisory
Patch
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.2:
zypper in -t patch openSUSE-2021-758=1
Package List
- openSUSE Leap 15.2 (x86_64):
cluster-md-kmp-rt-5.3.18-lp152.3.8.1
cluster-md-kmp-rt-debuginfo-5.3.18-lp152.3.8.1
cluster-md-kmp-rt_debug-5.3.18-lp152.3.8.1
cluster-md-kmp-rt_debug-debuginfo-5.3.18-lp152.3.8.1
dlm-kmp-rt-5.3.18-lp152.3.8.1
dlm-kmp-rt-debuginfo-5.3.18-lp152.3.8.1
dlm-kmp-rt_debug-5.3.18-lp152.3.8.1
dlm-kmp-rt_debug-debuginfo-5.3.18-lp152.3.8.1
gfs2-kmp-rt-5.3.18-lp152.3.8.1
gfs2-kmp-rt-debuginfo-5.3.18-lp152.3.8.1
gfs2-kmp-rt_debug-5.3.18-lp152.3.8.1
gfs2-kmp-rt_debug-debuginfo-5.3.18-lp152.3.8.1
kernel-rt-5.3.18-lp152.3.8.1
kernel-rt-debuginfo-5.3.18-lp152.3.8.1
kernel-rt-debugsource-5.3.18-lp152.3.8.1
kernel-rt-devel-5.3.18-lp152.3.8.1
kernel-rt-devel-debuginfo-5.3.18-lp152.3.8.1
kernel-rt-extra-5.3.18-lp152.3.8.1
kernel-rt-extra-debuginfo-5.3.18-lp152.3.8.1
kernel-rt_debug-5.3.18-lp152.3.8.1
kernel-rt_debug-debuginfo-5.3.18-lp152.3.8.1
kernel-rt_debug-debugsource-5.3.18-lp152.3.8.1
kernel-rt_debug-devel-5.3.18-lp152.3.8.1
kernel-rt_debug-devel-debuginfo-5.3.18-lp152.3.8.1
kernel-rt_debug-ex...
Read the Full AdvisoryReferences
bsc#1183015,bsc#1182595
- crypto: aesni - prevent misaligned buffers on the stack (git-fixes).
- crypto: arm64/sha - add missing module aliases (git-fixes).
- crypto: bcm - Rename struct device_private to bcm_device_private
(git-fixes).
- crypto: Kconfig - CRYPTO_MANAGER_EXTRA_TESTS requires the manager
(git-fixes).
- crypto: tcrypt - avoid signed overflow in byte count (git-fixes).
- Delete patches.suse/sched-Reenable-interrupts-in-do_sched_yield.patch
(bsc#1183530)
- drivers/misc/vmw_vmci: restrict too big queue size in
qp_host_alloc_queue (git-fixes).
- drivers: video: fbcon: fix NULL dereference in fbcon_cursor()
(git-fixes).
- drm/amd/display: Guard against NULL pointer deref when get_i2c_info
fails (git-fixes).
- drm/amdgpu: Add check to prevent IH overflow (git-fixes).
- drm/amdgpu: check alignment on CPU page for bo map (git-fixes).
- drm/amdgpu: fix offset calculation in amdgpu_vm_bo_clear_mappings()
(git-fixes).
- drm/amdgpu: fix parameter error of RREG32_PCIE() in amdgpu_regs_pcie
(git-fixes).
-...
Read the Full Advisory
PREVIOUS 
NEXT Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: openSUSE-SU-2021:0758-1
Rating: important
Affected Products: openSUSE Leap 15.2 ble.
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!