Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 546
Alerts This Week
Warning Icon 1 546

SUSE: 2021:0094-1 Moderate: Linux Kernel Security Update

suse
Calendar Grey January 12, 2021
Scroller Suse Esm H88
Important security update released for SUSE Linux Kernel, addressing eight vulnerabilities along with multiple fixes. Immediate action recommended.
An update that solves 8 vulnerabilities and has 46 fixes is now available

Summary

The SUSE Linux Enterprise 12 SP5 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-27825: Fixed a race in the trace_open and buffer resize calls (bsc#1179960). - CVE-2020-0466: Fixed a use-after-free due to a logic error in do_epoll_ctl and ep_loop_check_proc of eventpoll.c (bnc#1180031). - CVE-2020-27068: Fixed an out-of-bounds read due to a missing bounds check in the nl80211_policy policy of nl80211.c (bnc#1180086). - CVE-2020-0465: Fixed multiple missing bounds checks in hid-multitouch.c that could have led to local privilege escalation (bnc#1180029). - CVE-2020-0444: Fixed a bad kfree due to a logic error in audit_data_to_entry (bnc#1180027). - CVE-2020-29660: Fixed a locking inconsistency in the tty subsystem that

References

#1040855 #1044120 #1044767 #1055117 #1065729

#1094840 #1109695 #1112178 #1114648 #1115431

#1138374 #1152457 #1164780 #1171078 #1172538

#1172694 #1174784 #1178401 #1178762 #1179014

#1179015 #1179045 #1179082 #1179107 #1179142

#1179419 #1179444 #1179670 #1179671 #1179672

#1179673 #1179711 #1179713 #1179714 #1179715

#1179716 #1179722 #1179723 #1179724 #1179745

#1179810 #1179888 #1179895 #1179896 #1179960

#1179963 #1180027 #1180029 #1180031 #1180052

#1180086 #1180117 #1180258 #1180506

Cross- CVE-2020-0444 CVE-2020-0465 CVE-2020-0466

CVE-2020-27068 CVE-2020-27777 CVE-2020-27825

CVE-2020-29660 CVE-2020-29661

Affected Products:

SUSE Linux Enterprise Real Time Extension 12-SP5

https://www.suse.com/security/cve/CVE-2020-0444.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2021:0094-1
Rating: moderate

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.