openSUSE Leap 15.3: 2021:2427-1 Important: Local Privilege Escalation
opensuse
July 21, 2021
An update that solves 13 vulnerabilities and has 5 fixes is now available
Description
The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various
security and bugfixes.
The following security bugs were fixed:
- CVE-2021-22555: Fixed an heap out-of-bounds write in
net/netfilter/x_tables.c that could allow local provilege escalation.
(bsc#1188116)
- CVE-2021-33624: Fixed a bug which allows unprivileged BPF program to
leak the contents of arbitrary kernel memory (and therefore, of all
physical memory) via a side-channel. (bsc#1187554)
- CVE-2021-0605: Fixed an out-of-bounds read which could lead to local
information disclosure in the kernel with System execution privileges
needed. (bsc#1187601)
- CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to
local escalation of privilege with no additional execution privileges
needed. (bsc#1187595)
- CVE-2020-26558: Fixed a flaw in the Bluetooth LE and BR/EDR secure
pairing that could permit a nearby man-in-the-middle attacker to
...
Read the Full Advisory
Patch
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.3:
zypper in -t patch openSUSE-SLE-15.3-2021-2427=1
Package List
- openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):
kernel-default-base-debuginfo-4.12.14-197.99.1
kernel-vanilla-4.12.14-197.99.1
kernel-vanilla-base-4.12.14-197.99.1
kernel-vanilla-base-debuginfo-4.12.14-197.99.1
kernel-vanilla-debuginfo-4.12.14-197.99.1
kernel-vanilla-debugsource-4.12.14-197.99.1
kernel-vanilla-devel-4.12.14-197.99.1
kernel-vanilla-devel-debuginfo-4.12.14-197.99.1
kernel-vanilla-livepatch-devel-4.12.14-197.99.1
- openSUSE Leap 15.3 (ppc64le x86_64):
kernel-debug-base-4.12.14-197.99.1
kernel-debug-base-debuginfo-4.12.14-197.99.1
- openSUSE Leap 15.3 (x86_64):
kernel-kvmsmall-base-4.12.14-197.99.1
kernel-kvmsmall-base-debuginfo-4.12.14-197.99.1
- openSUSE Leap 15.3 (s390x):
kernel-default-man-4.12.14-197.99.1
kernel-zfcpdump-man-4.12.14-197.99.1
References
https://www.suse.com/security/cve/CVE-2020-24588.html
https://www.suse.com/security/cve/CVE-2020-26558.html
https://www.suse.com/security/cve/CVE-2020-36385.html
https://www.suse.com/security/cve/CVE-2020-36386.html
https://www.suse.com/security/cve/CVE-2021-0129.html
https://www.suse.com/security/cve/CVE-2021-0512.html
https://www.suse.com/security/cve/CVE-2021-0605.html
https://www.suse.com/security/cve/CVE-2021-22555.html
https://www.suse.com/security/cve/CVE-2021-33200.html
https://www.suse.com/security/cve/CVE-2021-33624.html
https://www.suse.com/security/cve/CVE-2021-33909.html
https://www.suse.com/security/cve/CVE-2021-34693.html
https://www.suse.com/security/cve/CVE-2021-3609.html
https://bugzilla.suse.com/1153720
https://bugzilla.suse.com/1174978
https://bugzilla.suse.com/1179610
https://bugzilla.suse.com/1181193
https://bugzilla.suse.com/1185428
https://bugzilla.suse.com/1185701
https://bugzilla.suse.com/1185861
https://bugzilla.suse.com/1186463
https://bugzilla.suse.com/1186484
https://bugzilla.s...
Read the Full Advisory
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: openSUSE-SU-2021:2427-1
Rating: important
Affected Products:
openSUSE Leap 15.3
ble.
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!