SUSE 12-SP5: 2020:3717-1 High Severity: Kernel Privilege Escalation Fixes

suse

December 9, 2020

An update that solves 10 vulnerabilities and has 43 fixes is now available

Summary

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-15436: Fixed a use after free vulnerability in fs/block_dev.c which could have allowed local users to gain privileges or cause a denial of service (bsc#1179141). - CVE-2020-15437: Fixed a null pointer dereference which could have allowed local users to cause a denial of service(bsc#1179140). - CVE-2020-25668: Fixed a concurrency use-after-free in con_font_op (bsc#1178123). - CVE-2020-25669: Fixed a use-after-free read in sunkbd_reinit() (bsc#1178182). - CVE-2020-25704: Fixed a leak in perf_event_parse_addr_filter() (bsc#1178393). - CVE-2020-27777: Restrict RTAS requests from userspace (bsc#1179107)

Topics Covered

security advisory high severity update privilege escalation security fix vulnerability patch important kernel SUSE escalation privilege

References

#1050549 #1067665 #1111666 #1112178 #1158775

#1170139 #1170630 #1172542 #1172873 #1174726

#1175306 #1175721 #1175916 #1176109 #1176855

#1176983 #1177304 #1177397 #1177703 #1177805

#1177808 #1177809 #1177819 #1177820 #1178123

#1178182 #1178393 #1178589 #1178607 #1178635

#1178669 #1178686 #1178765 #1178782 #1178838

#1178853 #1178854 #1178878 #1178886 #1178897

#1178940 #1178962 #1179107 #1179140 #1179141

#1179211 #1179213 #1179259 #1179424 #1179426

#1179427 #1179429 #927455

Cross- CVE-2020-15436 CVE-2020-15437 CVE-2020-25668

CVE-2020-25669 CVE-2020-25704 CVE-2020-25705

CVE-2020-27777 CVE-2020-28915 CVE-2020-28974

CVE-2020-29371

Affected Products:

SUSE Linux Enterprise Workstation Extension 12-SP5

...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2020:3717-1

Rating: important

Topics Covered

security advisory high severity update privilege escalation security fix vulnerability patch important kernel SUSE escalation privilege

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE 12-SP5: 2020:3717-1 High Severity: Kernel Privilege Escalation Fixes

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE 12-SP5: 2020:3717-1 High Severity: Kernel Privilege Escalation Fixes

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!