Alerts This Week
Warning Icon 1 923
Alerts This Week
Warning Icon 1 923

SUSE: 2021:1573-1 Important: Kernel Security Flaws Resolved

suse
Calendar Grey May 12, 2021
Dist Suse Esm H88
SUSE patches tackle 40 vulnerabilities in the Linux kernel, enhancing security measures and reinforcing overall system reliability.
An update that solves 35 vulnerabilities and has 10 fixes is now available

Summary

The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-36312: Fixed an issue in virt/kvm/kvm_main.c that had a kvm_io_bus_unregister_dev memory leak upon a kmalloc failure (bnc#1184509). - CVE-2021-29650: Fixed an issue inside the netfilter subsystem that allowed attackers to cause a denial of service (panic) because net/netfilter/x_tables.c and include/linux/netfilter/x_tables.h lack a full memory barrier upon the assignment of a new table value (bnc#1184208). - CVE-2021-29155: Fixed an issue within kernel/bpf/verifier.c that performed undesirable out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and

Topics%20covered

Topics Covered

security advisory denial of service buffer overflow critical memory leak kernel SUSE

References

#1047233 #1173485 #1176720 #1177411 #1178181

#1179454 #1181032 #1182672 #1182715 #1182716

#1182717 #1183022 #1183063 #1183069 #1183509

#1183593 #1183646 #1183686 #1183696 #1183775

#1184120 #1184167 #1184168 #1184170 #1184192

#1184193 #1184194 #1184196 #1184198 #1184208

#1184211 #1184388 #1184391 #1184393 #1184397

#1184509 #1184511 #1184512 #1184514 #1184583

#1184650 #1184942 #1185113 #1185244 #1185248

Cross- CVE-2020-0433 CVE-2020-25670 CVE-2020-25671

CVE-2020-25672 CVE-2020-25673 CVE-2020-27170

CVE-2020-27171 CVE-2020-27673 CVE-2020-27815

CVE-2020-35519 CVE-2020-36310 CVE-2020-36311

CVE-2020-36312 CVE-2020-36322 CVE-2021-20219

CVE-2021-27363 CVE-2021-27364 CVE-2021-27365

CVE-2021-28...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2021:1573-1
Rating: important

Topics%20covered

Topics Covered

security advisory denial of service buffer overflow critical memory leak kernel SUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here