SUSE: 2020:2972-1 Critical: Linux Kernel Bugfix and Security Issues

suse

October 20, 2020

An update that solves three vulnerabilities and has 10 fixes is now available

Summary

The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-12351: Fixed a type confusion while processing AMP packets aka "BleedingTooth" aka "BadKarma" (bsc#1177724). - CVE-2020-12352: Fixed an information leak when processing certain AMP packets aka "BleedingTooth" aka "BadChoice" (bsc#1177725). - CVE-2020-25645: Fixed an issue which traffic between two Geneve endpoints may be unencrypted when IPsec is configured to encrypt traffic for the specific UDP port used by the GENEVE tunnel allowing anyone between the two endpoints to read the traffic unencrypted (bsc#1177511). The following non-security bugs were fixed: - drm/sun4i: mixer: Extend regmap max_register (git-fixes).

Topics Covered

security advisory security issue critical DoS SUSE bugfix Linux Kernel

References

#1065729 #1140683 #1172538 #1174748 #1175520

#1176400 #1176946 #1177027 #1177340 #1177511

#1177685 #1177724 #1177725

Cross- CVE-2020-12351 CVE-2020-12352 CVE-2020-25645

Affected Products:

SUSE Linux Enterprise Module for Live Patching 15-SP1

https://www.suse.com/security/cve/CVE-2020-12351.html

https://www.suse.com/security/cve/CVE-2020-12352.html

https://www.suse.com/security/cve/CVE-2020-25645.html

https://bugzilla.suse.com/1065729

https://bugzilla.suse.com/1140683

https://bugzilla.suse.com/1172538

https://bugzilla.suse.com/1174748

https://bugzilla.suse.com/1175520

https://bugzilla.suse.com/1176400

https://bugzilla.suse.com/1176946

https://bugzilla.suse.com/1177027

https://bugzilla.suse.com/1177340

Severity

critical

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2020:2972-1

Rating: critical

Topics Covered

security advisory security issue critical DoS SUSE bugfix Linux Kernel

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2020:2972-1 Critical: Linux Kernel Bugfix and Security Issues

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2020:2972-1 Critical: Linux Kernel Bugfix and Security Issues

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!