Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

SUSE: 2020:2505-1 Important: Critical Linux Kernel Fixes Available

suse
Calendar Grey September 4, 2020
Dist Suse Esm H88
SUSE Security Notice addresses 9 vulnerabilities in the Linux Kernel Live Patch 14 for SLE 15. Ensure you update to enhance your system's security!
An update that fixes 9 vulnerabilities is now available

Summary

This update for the Linux Kernel 4.12.14-150_35 fixes several issues. The following security issues were fixed: - CVE-2020-14331: Fixed a buffer over-write in vgacon_scroll (bsc#1174247). - CVE-2020-15780: Fixed a lockdown bypass via injection of malicious ACPI tables via configfs (bsc#1174186). - CVE-2019-0155: Fixed a privilege escalation in the i915 graphics driver (bsc#1173663). - CVE-2019-16746: Fixed a buffer overflow in net/wireless/nl80211.c (bsc#1173659). - CVE-2019-9458: Fixed a use-after-free in media/v4l (bsc#1173963). - CVE-2020-11668: Fixed a memory corruption issue in the Xirlink camera USB driver (bsc#1173942). - CVE-2019-19447: Fixed a use-after-free in ext4_put_super (bsc#1173869). - CVE-2019-14901: Fixed a heap overflow in the Marvell WiFi driver (bsc#1173661).

Topics%20covered

Topics Covered

security advisory buffer overflow privilege escalation memory corruption important SUSE Linux Kernel

References

#1173100 #1173659 #1173661 #1173663 #1173869

#1173942 #1173963 #1174186 #1174247

Cross- CVE-2019-0155 CVE-2019-14895 CVE-2019-14901

CVE-2019-16746 CVE-2019-19447 CVE-2019-9458

CVE-2020-11668 CVE-2020-14331 CVE-2020-15780

Affected Products:

SUSE Linux Enterprise Module for Live Patching 15-SP1

SUSE Linux Enterprise Module for Live Patching 15

SUSE Linux Enterprise Live Patching 12-SP5

SUSE Linux Enterprise Live Patching 12-SP4

https://www.suse.com/security/cve/CVE-2019-0155.html

https://www.suse.com/security/cve/CVE-2019-14895.html

https://www.suse.com/security/cve/CVE-2019-14901.html

https://www.suse.com/security/cve/CVE-2019-16746.html

https://www.suse.com/security/cve/CVE-2019-19447.html

https://www.suse.com/security/cve/CVE-2019-9458.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2020:2505-1
Rating: important

Topics%20covered

Topics Covered

security advisory buffer overflow privilege escalation memory corruption important SUSE Linux Kernel

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here