Alerts This Week
Warning Icon 1 923
Alerts This Week
Warning Icon 1 923

SUSE Linux Enterprise 12-SP5: 2021:1572-1 Critical Kernel Issues Fixed

suse
Calendar Grey May 12, 2021
Dist Suse Esm H88
A crucial safety bulletin for Red Hat Enterprise Linux highlights major kernel weaknesses that require immediate patches.
An update that solves 6 vulnerabilities and has 62 fixes is now available

Summary

The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-36312: Fixed an issue within virt/kvm/kvm_main.c that had a kvm_io_bus_unregister_dev memory leak upon a kmalloc failure (bnc#1184509). - CVE-2021-29650: Fixed an issue within the netfilter subsystem that allowed attackers to cause a denial of service (panic) because net/netfilter/x_tables.c and include/linux/netfilter/x_tables.h lack a full memory barrier upon the assignment of a new table value (bnc#1184208). - CVE-2021-29155: Fixed an issue within kernel/bpf/verifier.c that performed undesirable out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and

Topics%20covered

Topics Covered

security advisory denial of service security update critical update kernel fix memory leak SUSE Linux Enterprise

References

#1043990 #1046303 #1047233 #1055117 #1056787

#1065729 #1087405 #1097583 #1097584 #1097585

#1097586 #1097587 #1097588 #1101816 #1103990

#1104353 #1109837 #1111981 #1114648 #1118657

#1118661 #1151794 #1152457 #1175306 #1178089

#1180624 #1180846 #1181062 #1181161 #1182613

#1182672 #1183063 #1183203 #1183289 #1184170

#1184194 #1184208 #1184209 #1184211 #1184350

#1184388 #1184509 #1184512 #1184514 #1184647

#1184650 #1184724 #1184731 #1184736 #1184737

#1184738 #1184742 #1184760 #1184942 #1184952

#1184957 #1184984 #1185041 #1185113 #1185195

#1185197 #1185244 #1185269 #1185335 #1185365

#1185472 #1185491 #1185549

Cross- CVE-2020-36310 CVE-2020-36312 CVE-2020-36322

CVE-2021-28950 CVE-2021-29155 CVE-2021-29650

...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2021:1572-1
Rating: important

Topics%20covered

Topics Covered

security advisory denial of service security update critical update kernel fix memory leak SUSE Linux Enterprise

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here