SUSE: 2020:3230-1 Important: Linux Kernel Memory Overflow & DoS

suse

November 6, 2020

An update that solves four vulnerabilities and has 20 fixes is now available

Summary

The SUSE Linux Enterprise 15 SP2 kernel RT was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-25212: Fixed getxattr kernel panic and memory overflow (bsc#1176381). - CVE-2020-25643: Added range checks in ppp_cp_parse_cr() (bsc#1177206). - CVE-2020-25641: Allowed for_each_bvec to support zero len bvec (bsc#1177121). - CVE-2020-25645: Added transport ports in route lookup for geneve (bsc#1177511). The following non-security bugs were fixed: - 9p: Fix memory leak in v9fs_mount (git-fixes). - ACPI: EC: Reference count query handlers under lock (git-fixes). - airo: Fix read overflows sending packets (git-fixes). - ar5523: Add USB ID of SMCWUSBT-G2 wireless adapter (git-fixes). - ASoC: img-i2s-out: Fix runtime PM imbalance on error (git-fixes).

Topics Covered

security advisory DoS patch important SUSE memory overflow linux kernel

References

#1065600 #1155798 #1168468 #1171675 #1175599

#1175718 #1176019 #1176381 #1176588 #1176979

#1177027 #1177121 #1177193 #1177194 #1177206

#1177258 #1177283 #1177284 #1177285 #1177286

#1177297 #1177384 #1177511 #954532

Cross- CVE-2020-25212 CVE-2020-25641 CVE-2020-25643

CVE-2020-25645

Affected Products:

SUSE Linux Enterprise Module for Realtime 15-SP2

https://www.suse.com/security/cve/CVE-2020-25212.html

https://www.suse.com/security/cve/CVE-2020-25641.html

https://www.suse.com/security/cve/CVE-2020-25643.html

https://www.suse.com/security/cve/CVE-2020-25645.html

https://bugzilla.suse.com/1065600

https://bugzilla.suse.com/1155798

https://bugzilla.suse.com/1168468

https://bugzilla.suse.com/1171675

https://bugzilla.suse.com/1175599

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2020:3230-1

Rating: important

Topics Covered

security advisory DoS patch important SUSE memory overflow linux kernel

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2020:3230-1 Important: Linux Kernel Memory Overflow & DoS

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2020:3230-1 Important: Linux Kernel Memory Overflow & DoS

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!