openSUSE 15.3: 2022:1065-1 Important: Kernel-Firmware Critical Threat
opensuse
March 31, 2022
An update that fixes 18 vulnerabilities is now available
Description
This update for kernel-firmware fixes the following issues:
Update Intel Wireless firmware for 9xxx (INTEL-SA-00539, bsc#1196333):
CVE-2021-0161: Improper input validation in firmware for Intel
PROSet/Wireless Wi-Fi and Killer Wi-Fi may allow a privileged user to
potentially enable escalation of privilege via local access.
CVE-2021-0164: Improper access control in firmware for Intel
PROSet/Wireless Wi-Fi and Killer Wi-Fi may allow an unauthenticated user
to potentially enable escalation of privilege via local access.
CVE-2021-0165: Improper input validation in firmware for Intel
PROSet/Wireless Wi-Fi and Killer Wi-Fi may allow an unauthenticated user
to potentially enable denial of service via adjacent access.
CVE-2021-0066: Improper input validation in firmware for Intel
PROSet/Wireless Wi-Fi and Killer Wi-Fi may allow an unauthenticated user
to potentially enable escalation of privilege via local access.
CVE-2021-0166: Exposure of...
Read the Full Advisory
Patch
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.3:
zypper in -t patch openSUSE-SLE-15.3-2022-1065=1
Package List
- openSUSE Leap 15.3 (noarch):
kernel-firmware-20210208-150300.4.7.1
kernel-firmware-all-20210208-150300.4.7.1
kernel-firmware-amdgpu-20210208-150300.4.7.1
kernel-firmware-ath10k-20210208-150300.4.7.1
kernel-firmware-ath11k-20210208-150300.4.7.1
kernel-firmware-atheros-20210208-150300.4.7.1
kernel-firmware-bluetooth-20210208-150300.4.7.1
kernel-firmware-bnx2-20210208-150300.4.7.1
kernel-firmware-brcm-20210208-150300.4.7.1
kernel-firmware-chelsio-20210208-150300.4.7.1
kernel-firmware-dpaa2-20210208-150300.4.7.1
kernel-firmware-i915-20210208-150300.4.7.1
kernel-firmware-intel-20210208-150300.4.7.1
kernel-firmware-iwlwifi-20210208-150300.4.7.1
kernel-firmware-liquidio-20210208-150300.4.7.1
kernel-firmware-marvell-20210208-150300.4.7.1
kernel-firmware-media-20210208-150300.4.7.1
kernel-firmware-mediatek-20210208-150300.4.7.1
kernel-firmware-mellanox-20210208-150300.4.7.1
kernel-firmware-mwifiex-20210208-150300.4.7.1
kernel-firmware-network-20210208-150300.4.7.1
kernel-firmware-nfp-20210208-150300.4.7.1
kernel-fi...
Read the Full AdvisoryReferences
https://www.suse.com/security/cve/CVE-2021-0066.html
https://www.suse.com/security/cve/CVE-2021-0071.html
https://www.suse.com/security/cve/CVE-2021-0072.html
https://www.suse.com/security/cve/CVE-2021-0076.html
https://www.suse.com/security/cve/CVE-2021-0161.html
https://www.suse.com/security/cve/CVE-2021-0164.html
https://www.suse.com/security/cve/CVE-2021-0165.html
https://www.suse.com/security/cve/CVE-2021-0166.html
https://www.suse.com/security/cve/CVE-2021-0168.html
https://www.suse.com/security/cve/CVE-2021-0170.html
https://www.suse.com/security/cve/CVE-2021-0172.html
https://www.suse.com/security/cve/CVE-2021-0173.html
https://www.suse.com/security/cve/CVE-2021-0174.html
https://www.suse.com/security/cve/CVE-2021-0175.html
https://www.suse.com/security/cve/CVE-2021-0176.html
https://www.suse.com/security/cve/CVE-2021-0183.html
https://www.suse.com/security/cve/CVE-2021-33139.html
https://www.suse.com/security/cve/CVE-2021-33155.html
https://bugzilla.suse.com/1186938
https://bugzilla.suse.com/118...
Read the Full Advisory
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: openSUSE-SU-2022:1065-1
Rating: important
Affected Products:
openSUSE Leap 15.3
.
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!