Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

SUSE Security Update 2022:0056-1 Addresses Critical Kernel DoS Issue

suse
Calendar Grey January 11, 2022
Dist Suse Esm H88
Major SUSE upgrade addresses 14 vulnerabilities within the Linux Kernel, enhancing resilience against denial-of-service attacks and safeguarding information integrity.
An update that solves 14 vulnerabilities and has 62 fixes is now available

Summary

The SUSE Linux Enterprise 15 SP3 kernel was updated. The following security bugs were fixed: - CVE-2021-45485: Fixed an information leak because of certain use of a hash table which use IPv6 source addresses. (bsc#1194094) - CVE-2021-45486: Fixed an information leak because the hash table is very small in net/ipv4/route.c. (bnc#1194087). - CVE-2021-4001: Fixed a race condition when the EBPF map is frozen. (bsc#1192990) - CVE-2021-28715: Fixed an issue where a guest could force Linux netback driver to hog large amounts of kernel memory by do not queueing unlimited number of packages. (bsc#1193442) - CVE-2021-28714: Fixed an issue where a guest could force Linux netback driver to hog large amounts of kernel memory by fixing rx queue stall detection. (bsc#1193442)

Topics%20covered

Topics Covered

security advisory information leak kernel update critical patch Denial of Service SUSE Linux Enterprise cloud module

References

#1139944 #1151927 #1152489 #1153275 #1154353

#1154355 #1161907 #1164565 #1166780 #1169514

#1176242 #1176447 #1176536 #1176544 #1176545

#1176546 #1176548 #1176558 #1176559 #1176774

#1176940 #1176956 #1177440 #1178134 #1178270

#1179211 #1179424 #1179426 #1179427 #1179599

#1181148 #1181507 #1181710 #1182404 #1183534

#1183540 #1183897 #1184318 #1185726 #1185902

#1186332 #1187541 #1189126 #1189158 #1191793

#1191876 #1192267 #1192320 #1192507 #1192511

#1192569 #1192606 #1192691 #1192845 #1192847

#1192874 #1192877 #1192946 #1192969 #1192987

#1192990 #1192998 #1193002 #1193042 #1193139

#1193169 #1193306 #1193318 #1193349 #1193440

#1193442 #1193655 #1193993 #1194087 #1194094

#1194266

Cros...

Read the Full Advisory

Severity
critical
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2022:0056-1
Rating: important

Topics%20covered

Topics Covered

security advisory information leak kernel update critical patch Denial of Service SUSE Linux Enterprise cloud module

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here