SUSE Linux 15-SP1: 2020:3484-1 Important: Kernel ICMP Flaw
suse
November 23, 2020
An update that solves 15 vulnerabilities and has 75 fixes is now available
Summary
The SUSE Linux Enterprise 15 SP1 Azure kernel was updated to receive various security and bug fixes. The following security bugs were fixed: - CVE-2020-25705: A flaw in the way reply ICMP packets are limited in was found that allowed to quickly scan open UDP ports. This flaw allowed an off-path remote user to effectively bypassing source port UDP randomization. The highest threat from this vulnerability is to confidentiality and possibly integrity, because software and services that rely on UDP source port randomization (like DNS) are indirectly affected as well. Kernel versions may be vulnerable to this issue (bsc#1175721, bsc#1178782). - CVE-2020-8694: Insufficient access control for some Intel(R) Processors may have allowed an authenticated user to potentially enable information
References
#1055014 #1058115 #1061843 #1065600 #1065729
#1066382 #1077428 #1112178 #1131277 #1134760
#1140683 #1163592 #1167030 #1168468 #1170415
#1170446 #1170630 #1171558 #1171675 #1172538
#1172873 #1173432 #1174748 #1175306 #1175520
#1175721 #1176354 #1176381 #1176382 #1176400
#1176485 #1176560 #1176713 #1176723 #1176855
#1176907 #1176946 #1176983 #1177027 #1177086
#1177101 #1177258 #1177271 #1177281 #1177340
#1177410 #1177411 #1177470 #1177511 #1177513
#1177685 #1177687 #1177703 #1177719 #1177724
#1177725 #1177740 #1177749 #1177750 #1177753
#1177754 #1177755 #1177766 #1177819 #1177820
#1177855 #1177856 #1177861 #1178003 #1178027
#1178123 #1178166 #1178182 #1178185 #1178187
#1178188 #117...
Read the Full Advisory
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: SUSE-SU-2020:3484-1
Rating: important
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!