Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 437
Alerts This Week
Warning Icon 1 437

SUSE: 2021:0437-1 Important: Linux Kernel Update Fixes Critical Issues

suse
Calendar Grey February 11, 2021
Dist Suse Esm H88
Important SUSE Security Patch for Linux Kernel resolves 26 vulnerabilities with various corrections. Restart advised after installation.
An update that solves 26 vulnerabilities and has 16 fixes is now available

Summary

The SUSE Linux Enterprise 12 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3347: A use-after-free was discovered in the PI futexes during fault handling, allowing local users to execute code in the kernel (bnc#1181349). - CVE-2020-29569: Fixed a potential privilege escalation and information leaks related to the PV block backend, as used by Xen (bnc#1179509). - CVE-2020-29568: Fixed a denial of service issue, related to processing watch events (bnc#1179508). - CVE-2020-25211: Fixed a flaw where a local attacker was able to inject conntrack netlink configuration that could cause a denial of service or trigger the use of incorrect protocol numbers in ctnetlink_parse_tuple_filter (bnc#1176395).

References

#1070943 #1121826 #1121872 #1157298 #1168952

#1173942 #1176395 #1176485 #1177411 #1178123

#1178182 #1178589 #1178622 #1178886 #1179107

#1179140 #1179141 #1179204 #1179419 #1179508

#1179509 #1179601 #1179616 #1179663 #1179666

#1179745 #1179877 #1179960 #1179961 #1180008

#1180027 #1180028 #1180029 #1180030 #1180031

#1180032 #1180052 #1180086 #1180559 #1180562

#1181349 #969755

Cross- CVE-2019-19063 CVE-2019-20934 CVE-2019-6133

CVE-2020-0444 CVE-2020-0465 CVE-2020-0466

CVE-2020-11668 CVE-2020-15436 CVE-2020-15437

CVE-2020-25211 CVE-2020-25285 CVE-2020-25668

CVE-2020-25669 CVE-2020-27068 CVE-2020-27673

CVE-2020-27777 CVE-2020-27786 CVE-2020-27825

CVE-2020-28915 CVE-2020-28974 CVE-2020-29568

...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2021:0437-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.