Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 569
Alerts This Week
Warning Icon 1 569

SUSE Linux 11-SP4: 2021:14630-1 Important Kernel Security Fixes

suse
Calendar Grey February 16, 2021
Dist Suse Esm H88
Keep updated on the recent Fedora Linux Kernel patches tackling major vulnerabilities. Quick resolutions now accessible.
An update that solves 28 vulnerabilities and has 20 fixes is now available

Summary

The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3347: A use-after-free was discovered in the PI futexes during fault handling, allowing local users to execute code in the kernel (bnc#1181349). - CVE-2020-0465: Fixed multiple missing bounds checks in hid-multitouch.c that could have led to local privilege escalation (bnc#1180029). - CVE-2020-25211: Fixed a flaw where a local attacker was able to inject conntrack netlink configuration that could cause a denial of service or trigger the use of incorrect protocol numbers in ctnetlink_parse_tuple_filter (bnc#1176395). - CVE-2020-14390: Fixed an out-of-bounds memory write leading to memory corruption or a denial of service when changing screen size (bnc#1176235).

References

#1152107 #1168952 #1173659 #1173942 #1174205

#1174247 #1174993 #1175691 #1176011 #1176012

#1176235 #1176253 #1176278 #1176395 #1176423

#1176482 #1176485 #1176722 #1176896 #1177206

#1177226 #1177666 #1177766 #1177906 #1178123

#1178182 #1178589 #1178590 #1178622 #1178886

#1179107 #1179140 #1179141 #1179419 #1179601

#1179616 #1179745 #1179877 #1180029 #1180030

#1180052 #1180086 #1180559 #1180562 #1181158

#1181166 #1181349 #1181553

Cross- CVE-2019-16746 CVE-2020-0404 CVE-2020-0431

CVE-2020-0465 CVE-2020-11668 CVE-2020-14331

CVE-2020-14353 CVE-2020-14381 CVE-2020-14390

CVE-2020-15436 CVE-2020-15437 CVE-2020-25211

CVE-2020-25284 CVE-2020-25285 CVE-2020-25643

CVE-2020-25656 CVE-2020-25668 CVE-2020-25669

...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2021:14630-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.