openSUSE Leap 15.2: 2021:1142-1 Critical Kernel Update for DoS
opensuse
August 10, 2021
An update that solves 5 vulnerabilities and has 46 fixes is now available
Description
The openSUSE Leap 15.2 kernel was updated to receive various security and
bugfixes.
The following security bugs were fixed:
- CVE-2021-3679: A lack of CPU resource in the Linux kernel tracing module
functionality was found in the way user uses trace ring buffer in a
specific way. Only privileged local users (with CAP_SYS_ADMIN
capability) could use this flaw to starve the resources causing denial
of service (bnc#1189057).
- CVE-2021-3659: Fix general protection fault via NULL pointer dereference
in llsec_key_alloc() in net/mac802154/llsec.c (bsc#1188876).
- CVE-2021-37576: arch/powerpc/kvm/book3s_rtas.c on the powerpc platform
allowed KVM guest OS users to cause host OS memory corruption via
rtas_args.nargs, aka CID-f62f3c20647e (bnc#1188838 bnc#1188842).
- CVE-2021-22543: KVM through Improper handling of VM_IO|VM_PFNMAP vmas in
KVM could bypass RO checks and can lead to pages being freed while still
accessible by...
Read the Full Advisory
Patch
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.2:
zypper in -t patch openSUSE-2021-1142=1
Package List
- openSUSE Leap 15.2 (noarch):
kernel-devel-5.3.18-lp152.87.1
kernel-docs-5.3.18-lp152.87.1
kernel-docs-html-5.3.18-lp152.87.1
kernel-macros-5.3.18-lp152.87.1
kernel-source-5.3.18-lp152.87.1
kernel-source-vanilla-5.3.18-lp152.87.1
- openSUSE Leap 15.2 (x86_64):
kernel-debug-5.3.18-lp152.87.1
kernel-debug-debuginfo-5.3.18-lp152.87.1
kernel-debug-debugsource-5.3.18-lp152.87.1
kernel-debug-devel-5.3.18-lp152.87.1
kernel-debug-devel-debuginfo-5.3.18-lp152.87.1
kernel-default-5.3.18-lp152.87.1
kernel-default-base-5.3.18-lp152.87.1.lp152.8.40.1
kernel-default-base-rebuild-5.3.18-lp152.87.1.lp152.8.40.1
kernel-default-debuginfo-5.3.18-lp152.87.1
kernel-default-debugsource-5.3.18-lp152.87.1
kernel-default-devel-5.3.18-lp152.87.1
kernel-default-devel-debuginfo-5.3.18-lp152.87.1
kernel-kvmsmall-5.3.18-lp152.87.1
kernel-kvmsmall-debuginfo-5.3.18-lp152.87.1
kernel-kvmsmall-debugsource-5.3.18-lp152.87.1
kernel-kvmsmall-devel-5.3.18-lp152.87.1
kernel-kvmsmall-devel-debuginfo-5.3.18-lp152.87.1
kernel-obs-build-5.3.18-lp152.8...
Read the Full AdvisoryReferences
https://www.suse.com/security/cve/CVE-2021-21781.html
https://www.suse.com/security/cve/CVE-2021-22543.html
https://www.suse.com/security/cve/CVE-2021-3659.html
https://www.suse.com/security/cve/CVE-2021-3679.html
https://www.suse.com/security/cve/CVE-2021-37576.html
https://bugzilla.suse.com/1065729
https://bugzilla.suse.com/1085224
https://bugzilla.suse.com/1094840
https://bugzilla.suse.com/1113295
https://bugzilla.suse.com/1153274
https://bugzilla.suse.com/1154353
https://bugzilla.suse.com/1156395
https://bugzilla.suse.com/1179243
https://bugzilla.suse.com/1183871
https://bugzilla.suse.com/1184114
https://bugzilla.suse.com/1184350
https://bugzilla.suse.com/1184631
https://bugzilla.suse.com/1185377
https://bugzilla.suse.com/1185902
https://bugzilla.suse.com/1186194
https://bugzilla.suse.com/1186264
https://bugzilla.suse.com/1186482
https://bugzilla.suse.com/1187476
https://bugzilla.suse.com/1188101
https://bugzilla.suse.com/1188405
https://bugzilla.suse.com/1188445
https://bugzilla.suse.com/1188504
https://bug...
Read the Full Advisory
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: openSUSE-SU-2021:1142-1
Rating: important
Affected Products:
openSUSE Leap 15.2
ble.
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!