SUSE 15 SP3: Security Update for Kernel 2021:2352-1 Important

suse

July 15, 2021

An update that solves 5 vulnerabilities and has 38 fixes is now available

Summary

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3573: Fixed an UAF vulnerability in function that can allow attackers to corrupt kernel heaps and adopt further exploitations. (bsc#1186666) - CVE-2021-0605: Fixed an out-of-bounds read which could lead to local information disclosure in the kernel with System execution privileges needed. (bsc#1187601) - CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1187595) - CVE-2021-33624: Fixed a bug which allows unprivileged BPF program to leak the contents of arbitrary kernel memory (and therefore, of all physical memory) via a side-channel. (bsc#1187554)

Topics Covered

security advisory bug fix important kernel SUSE memory disclosure local elevation

References

#1152489 #1153274 #1154353 #1155518 #1164648

#1176447 #1176774 #1176919 #1177028 #1178134

#1182470 #1184212 #1184685 #1185486 #1185675

#1185677 #1186206 #1186666 #1186949 #1187171

#1187263 #1187356 #1187402 #1187403 #1187404

#1187407 #1187408 #1187409 #1187410 #1187411

#1187412 #1187413 #1187452 #1187554 #1187595

#1187601 #1187795 #1187867 #1187883 #1187886

#1187927 #1187972 #1187980

Cross- CVE-2021-0512 CVE-2021-0605 CVE-2021-33624

CVE-2021-34693 CVE-2021-3573

CVSS scores:

CVE-2021-0512 (SUSE): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVE-2021-0605 (NVD) : 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

CVE-2021-0605 (SUSE): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CVE-2021-33624 (NVD) : 4.7 CVSS:3.1/AV:L...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2021:2352-1

Rating: important

Topics Covered

security advisory bug fix important kernel SUSE memory disclosure local elevation

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE 15 SP3: Security Update for Kernel 2021:2352-1 Important

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE 15 SP3: Security Update for Kernel 2021:2352-1 Important

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!