SUSE Linux Enterprise 15 Kernel Patch: Important Security Fixes 2021

suse

February 11, 2021

An update that solves 29 vulnerabilities and has 24 fixes is now available

Summary

The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3348: Fixed a use-after-free in nbd_add_socket that could be triggered by local attackers (with access to the nbd device) via an I/O request at a certain point during device setup (bnc#1181504). - CVE-2021-3347: A use-after-free was discovered in the PI futexes during fault handling, allowing local users to execute code in the kernel (bnc#1181349). - CVE-2020-25211: Fixed a buffer overflow in ctnetlink_parse_tuple_filter() which could be triggered by a local attackers by injecting conntrack netlink configuration (bnc#1176395). - CVE-2020-27835: A use-after-free in the infiniband hfi1 driver was found, specifically in the way user calls Ioctl after open dev file and

Topics Covered

security advisory denial of service information leak kernel update SUSE Linux security fixes use-after-free

References

#1144912 #1149032 #1163840 #1168952 #1172199

#1173074 #1173942 #1176395 #1176846 #1177666

#1178182 #1178272 #1178372 #1178589 #1178590

#1178684 #1178886 #1179071 #1179107 #1179140

#1179141 #1179419 #1179429 #1179508 #1179509

#1179601 #1179616 #1179663 #1179666 #1179745

#1179877 #1179878 #1179895 #1179960 #1179961

#1180008 #1180027 #1180028 #1180029 #1180030

#1180031 #1180032 #1180052 #1180086 #1180559

#1180562 #1180676 #1181001 #1181158 #1181349

#1181504 #1181553 #1181645

Cross- CVE-2019-20806 CVE-2019-20934 CVE-2020-0444

CVE-2020-0465 CVE-2020-0466 CVE-2020-10781

CVE-2020-11668 CVE-2020-15436 CVE-2020-15437

CVE-2020-25211 CVE-2020-25639 CVE-2020-25669

CVE-2020-27068 CVE-2020-27777 CVE-2020-27786

...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2021:0438-1

Rating: important

Topics Covered

security advisory denial of service information leak kernel update SUSE Linux security fixes use-after-free

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE Linux Enterprise 15 Kernel Patch: Important Security Fixes 2021

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE Linux Enterprise 15 Kernel Patch: Important Security Fixes 2021

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!