Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

SUSE: 2021:3338-1 Critical: Various Vulnerabilities Addressed Successfully

suse
Calendar Grey October 12, 2021
Dist Suse Esm H88
Enhance security measures in the SUSE Linux Kernel by resolving various vulnerabilities. A system restart is advised following the installation.
An update that solves 6 vulnerabilities and has 54 fixes is now available

Summary

The SUSE Linux Enterprise 15 SP3 kernel was updated. The following security bugs were fixed: - CVE-2020-3702: Fixed a bug which could be triggered with specifically timed and handcrafted traffic and cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure. (bnc#1191193) - CVE-2021-3752: Fixed a use after free vulnerability in the Linux kernel's bluetooth module. (bsc#1190023) - CVE-2021-40490: Fixed a race condition discovered in the ext4 subsystem that could leat to local priviledge escalation. (bnc#1190159) - CVE-2021-3744: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1189884) - CVE-2021-3764: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1190534)

Topics%20covered

Topics Covered

security advisory denial of service local privilege escalation important kernel information disclosure SUSE

References

#1065729 #1148868 #1152489 #1154353 #1159886

#1167773 #1170774 #1171688 #1173746 #1174003

#1176447 #1176940 #1177028 #1178134 #1184439

#1184804 #1185302 #1185550 #1185677 #1185726

#1185762 #1187211 #1188067 #1188418 #1188651

#1188986 #1189257 #1189297 #1189841 #1189884

#1190023 #1190062 #1190115 #1190138 #1190159

#1190358 #1190406 #1190432 #1190467 #1190523

#1190534 #1190543 #1190544 #1190561 #1190576

#1190595 #1190596 #1190598 #1190620 #1190626

#1190679 #1190705 #1190717 #1190746 #1190758

#1190784 #1190785 #1191172 #1191193 #1191292

Cross- CVE-2020-3702 CVE-2021-3669 CVE-2021-3744

CVE-2021-3752 CVE-2021-3764 CVE-2021-40490

CVSS scores:

CVE-2020-3702 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2021:3338-1
Rating: important

Topics%20covered

Topics Covered

security advisory denial of service local privilege escalation important kernel information disclosure SUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here