Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

SUSE: 2021:1596-1 Important: Kernel Security Fixes and Threat Mitigation

suse
Calendar Grey May 13, 2021
Scroller Suse
Red Hat Security Update resolves 40 vulnerabilities in the Linux Kernel, correcting critical bugs and improving overall system protection.
An update that solves 35 vulnerabilities and has 23 fixes is now available

Summary

The SUSE Linux Enterprise 12 SP4 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-36312: Fixed an issue in virt/kvm/kvm_main.c that had a kvm_io_bus_unregister_dev memory leak upon a kmalloc failure (bnc#1184509). - CVE-2021-29650: Fixed an issue inside the netfilter subsystem that allowed attackers to cause a denial of service (panic) because net/netfilter/x_tables.c and include/linux/netfilter/x_tables.h lack a full memory barrier upon the assignment of a new table value (bnc#1184208). - CVE-2021-29155: Fixed an issue within kernel/bpf/verifier.c that performed undesirable out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and

References

#1040855 #1044767 #1047233 #1065729 #1094840

#1152457 #1171078 #1173485 #1175873 #1176700

#1176720 #1176855 #1177411 #1177753 #1178181

#1179454 #1181032 #1181960 #1182194 #1182672

#1182715 #1182716 #1182717 #1183022 #1183063

#1183069 #1183509 #1183593 #1183646 #1183686

#1183696 #1183738 #1183775 #1184120 #1184167

#1184168 #1184170 #1184192 #1184193 #1184194

#1184196 #1184198 #1184208 #1184211 #1184388

#1184391 #1184393 #1184397 #1184509 #1184511

#1184512 #1184514 #1184583 #1184650 #1184942

#1185113 #1185244 #1185248

Cross- CVE-2020-0433 CVE-2020-25670 CVE-2020-25671

CVE-2020-25672 CVE-2020-25673 CVE-2020-27170

CVE-2020-27171 CVE-2020-27673 CVE-2020-27815

CVE-2020-35519 CVE-2020-36310 CVE-2020-36311

...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2021:1596-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.