SUSE: 2020:2580-1 Important: Local Privilege Escalation Fix

suse

September 9, 2020

An update that solves one vulnerability and has 30 fixes is now available

Summary

The SUSE Linux Enterprise 15 SP2 Azure kernel was updated to receive various security and bugfixes. The following security bug was fixed: - CVE-2020-14386: Fixed a potential local privilege escalation via memory corruption (bsc#1176069). The following non-security bugs were fixed: - bcache: allocate meta data pages as compound pages (bsc#1172873). - block: check queue's limits.discard_granularity in __blkdev_issue_discard() (bsc#1152148). - block: improve discard bio alignment in __blkdev_issue_discard() (bsc#1152148). - char: virtio: Select VIRTIO from VIRTIO_CONSOLE (bsc#1175667). - dax: do not print error message for non-persistent memory block device (bsc#1171073). - dax: print error message by pr_info() in __generic_fsdax_supported() (bsc#1171073).

Topics Covered

security advisory local privilege escalation memory corruption important SUSE system reboot Linux Kernel

References

#1065600 #1136666 #1152148 #1155798 #1156395

#1170232 #1171000 #1171073 #1171558 #1172419

#1172873 #1173060 #1173267 #1174029 #1174110

#1174111 #1174484 #1174486 #1175263 #1175667

#1175787 #1175952 #1175996 #1175997 #1175998

#1175999 #1176000 #1176001 #1176022 #1176063

#1176069

Cross- CVE-2020-14386

Affected Products:

SUSE Linux Enterprise Module for Public Cloud 15-SP2

- kabi/severities: ignore kABI for net/ethernet/mscc/

bsc#1176001,bsc#1175999 Exported symbols from drivers/net/ethernet/mscc/

are only used by drivers/net/dsa/ocelot/

- mei: fix CNL itouch device number to match the spec (bsc#1175952).

- mei: me: disable mei interface on LBG servers (bsc#1175952).

- mei: me: disable mei interface on Mehlow server platforms (bsc#1175952).

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2020:2580-1

Rating: important

Topics Covered

security advisory local privilege escalation memory corruption important SUSE system reboot Linux Kernel

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2020:2580-1 Important: Local Privilege Escalation Fix

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2020:2580-1 Important: Local Privilege Escalation Fix

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!