Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

SUSE: 2021:1574-1 Important: Handling Kernel Security Risks

suse
Calendar Grey May 12, 2021
Dist Suse Esm H88
An essential update from SUSE tackles vulnerabilities in the Linux Kernel, enhancing system reliability and security adherence.
An update that solves two vulnerabilities and has 52 fixes is now available

Summary

The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-29650: Fixed an issue with the netfilter subsystem that allowed attackers to cause a denial of service (panic) because net/netfilter/x_tables.c and include/linux/netfilter/x_tables.h lack a full memory barrier upon the assignment of a new table value (bnc#1184208). - CVE-2021-29155: Fixed an issue that was discovered in kernel/bpf/verifier.c that performs undesirable out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory. Specifically, for sequences of pointer arithmetic operations,

Topics%20covered

Topics Covered

security advisory kernel update important kernel Denial of Service SUSE memory barrier

References

#1043990 #1055117 #1065729 #1152457 #1152489

#1156395 #1167260 #1168838 #1174416 #1174426

#1178089 #1179243 #1179851 #1180846 #1181161

#1182613 #1183063 #1183203 #1183289 #1184208

#1184209 #1184436 #1184514 #1184650 #1184724

#1184728 #1184730 #1184731 #1184736 #1184737

#1184738 #1184740 #1184741 #1184742 #1184760

#1184811 #1184893 #1184934 #1184942 #1184957

#1184969 #1184984 #1185041 #1185113 #1185233

#1185244 #1185269 #1185365 #1185454 #1185472

#1185491 #1185549 #1185586 #1185587

Cross- CVE-2021-29155 CVE-2021-29650

CVSS scores:

CVE-2021-29155 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CVE-2021-29155 (SUSE): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVE-2021-29650 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2021:1574-1
Rating: important

Topics%20covered

Topics Covered

security advisory kernel update important kernel Denial of Service SUSE memory barrier

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here