SUSE: 2022:1847-1 moderate: kernel-firmware


   SUSE Security Update: Security update for kernel-firmware
______________________________________________________________________________

Announcement ID:    SUSE-SU-2022:1847-1
Rating:             moderate
References:         #1199459 #1199470 
Cross-References:   CVE-2021-26312 CVE-2021-26339 CVE-2021-26342
                    CVE-2021-26347 CVE-2021-26348 CVE-2021-26349
                    CVE-2021-26350 CVE-2021-26364 CVE-2021-26372
                    CVE-2021-26373 CVE-2021-26375 CVE-2021-26376
                    CVE-2021-26378 CVE-2021-26388 CVE-2021-46744
                   
CVSS scores:
                    CVE-2021-26312 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
                    CVE-2021-26339 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
                    CVE-2021-26339 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
                    CVE-2021-26342 (NVD) : 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
                    CVE-2021-26342 (SUSE): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
                    CVE-2021-26347 (NVD) : 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
                    CVE-2021-26348 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
                    CVE-2021-26349 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
                    CVE-2021-26350 (NVD) : 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
                    CVE-2021-46744 (SUSE): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected Products:
                    SUSE Linux Enterprise High Performance Computing 15-ESPOS
                    SUSE Linux Enterprise High Performance Computing 15-LTSS
                    SUSE Linux Enterprise Server 15-LTSS
                    SUSE Linux Enterprise Server for SAP 15
______________________________________________________________________________

   An update that fixes 15 vulnerabilities is now available.

Description:

   This update for kernel-firmware fixes the following issues:

   Update AMD ucode and SEV firmware

   - (CVE-2021-26339, CVE-2021-26373, CVE-2021-26347, CVE-2021-26376,
     CVE-2021-26375, CVE-2021-26378, CVE-2021-26372, CVE-2021-26339,
     CVE-2021-26348, CVE-2021-26342, CVE-2021-26388, CVE-2021-26349,
     CVE-2021-26364, CVE-2021-26312, CVE-2021-26350, CVE-2021-46744,
     bsc#1199459, bsc#1199470)


Patch Instructions:

   To install this SUSE Security Update use the SUSE recommended installation methods
   like YaST online_update or "zypper patch".

   Alternatively you can run the command listed for your product:

   - SUSE Linux Enterprise Server for SAP 15:

      zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-2022-1847=1

   - SUSE Linux Enterprise Server 15-LTSS:

      zypper in -t patch SUSE-SLE-Product-SLES-15-2022-1847=1

   - SUSE Linux Enterprise High Performance Computing 15-LTSS:

      zypper in -t patch SUSE-SLE-Product-HPC-15-2022-1847=1

   - SUSE Linux Enterprise High Performance Computing 15-ESPOS:

      zypper in -t patch SUSE-SLE-Product-HPC-15-2022-1847=1



Package List:

   - SUSE Linux Enterprise Server for SAP 15 (noarch):

      kernel-firmware-20191118-150000.3.42.1
      ucode-amd-20191118-150000.3.42.1

   - SUSE Linux Enterprise Server 15-LTSS (noarch):

      kernel-firmware-20191118-150000.3.42.1
      ucode-amd-20191118-150000.3.42.1

   - SUSE Linux Enterprise High Performance Computing 15-LTSS (noarch):

      kernel-firmware-20191118-150000.3.42.1
      ucode-amd-20191118-150000.3.42.1

   - SUSE Linux Enterprise High Performance Computing 15-ESPOS (noarch):

      kernel-firmware-20191118-150000.3.42.1
      ucode-amd-20191118-150000.3.42.1


References:

   https://www.suse.com/security/cve/CVE-2021-26312.html
   https://www.suse.com/security/cve/CVE-2021-26339.html
   https://www.suse.com/security/cve/CVE-2021-26342.html
   https://www.suse.com/security/cve/CVE-2021-26347.html
   https://www.suse.com/security/cve/CVE-2021-26348.html
   https://www.suse.com/security/cve/CVE-2021-26349.html
   https://www.suse.com/security/cve/CVE-2021-26350.html
   https://www.suse.com/security/cve/CVE-2021-26364.html
   https://www.suse.com/security/cve/CVE-2021-26372.html
   https://www.suse.com/security/cve/CVE-2021-26373.html
   https://www.suse.com/security/cve/CVE-2021-26375.html
   https://www.suse.com/security/cve/CVE-2021-26376.html
   https://www.suse.com/security/cve/CVE-2021-26378.html
   https://www.suse.com/security/cve/CVE-2021-26388.html
   https://www.suse.com/security/cve/CVE-2021-46744.html
   https://bugzilla.suse.com/1199459
   https://bugzilla.suse.com/1199470

What Are You Looking For?

Popular Tags

SUSE: 2022:1847-1 moderate: kernel-firmware

Summary

References

Severe Chromium DoS, Info Disclosure Vulns Fixed

Critical Node.js Info Disclosure, Code Execution Bugs Fixed

GitHub Makes Passkeys Security Feature Available to All

Remotely Exploitable Poppler DoS Bugs Fixed - Update Now!

News

Advisories

HOWTOs

Features

Everything You Need to Know About Linux Proxy Servers

Simple Steps for Identifying & Troubleshooting a Kernel Panic

Linux Endpoint Detection and Response (EDR): A Crucial Part of a Successful Cybersecurity Strategy

Supercharging Linux: Tips & Tricks to Beat the Threat Landscape

LinuxSecurity.com Migrates to Joomla 4 and PHP 8: Our Experience & Key Takeaways

About Us

Powered By

Feedback

What Are You Looking For?

Popular Tags

SUSE: 2022:1847-1 moderate: kernel-firmware

Summary

References

Get the Latest News & Insights

Related News

News

Advisories

HOWTOs

Features

About Us

Powered By