[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248364

 
 

909

 
 

195388

 
 

282

Paid content will be excluded from the download.


Download | Alert*
OVAL

SUSE-SU-2021:2451-1 -- SLES kernel, kgraft-patch-4_4_180-94_147-default

ID: oval:org.secpod.oval:def:89045116Date: (C)2021-07-26   (M)2024-04-25
Class: PATCHFamily: unix




The SUSE Linux Enterprise 12 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-22555: Fixed an heap out-of-bounds write in net/netfilter/x_tables.c that could allow local provilege escalation. - CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to obtain full root privileges. - CVE-2021-3609: Fixed a race condition in the CAN BCM networking protocol which allows for local privilege escalation. - CVE-2021-0605: Fixed an out-of-bounds read which could lead to local information disclosure in the kernel with System execution privileges needed. - CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to local escalation of privilege with no additional execution privileges needed. - CVE-2021-34693: Fixed a bug in net/can/bcm.c which could allow local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized. - CVE-2020-36385: Fixed a use-after-free flaw in ucma.c which allows for local privilege escalation. - CVE-2021-0129: Fixed an improper access control in BlueZ that may have allowed an authenticated user to potentially enable information disclosure via adjacent access. - CVE-2020-26558: Fixed a flaw in the Bluetooth LE and BR/EDR secure pairing that could permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing. - CVE-2020-36386: Fixed an out-of-bounds read in hci_extended_inquiry_result_evt. - CVE-2020-24588: Fixed a bug that could allow an adversary to abuse devices that support receiving non-SSP A-MSDU frames to inject arbitrary network packets. - CVE-2021-32399: Fixed a race condition in net/bluetooth/hci_request.c for removal of the HCI controller. - CVE-2021-33034: Fixed an issue in net/bluetooth/hci_event.c where a use-after-free leads to writing an arbitrary value. - CVE-2020-26139: Fixed a bug that allows an Access Point to forward EAPOL frames to other clients even though the sender has not yet successfully authenticated. This might be abused in projected Wi-Fi networks to launch denial-of-service attacks against connected clients and made it easier to exploit other vulnerabilities in connected clients. - CVE-2021-23134: Fixed a use After Free vulnerability in nfc sockets which allows local attackers to elevate their privileges. - CVE-2020-24586: Fixed a bug that, under the right circumstances, allows to inject arbitrary network packets and/or exfiltrate user data when another device sends fragmented frames encrypted using WEP, CCMP, or GCMP. - CVE-2020-26141: Fixed a flaw that could allows an adversary to inject and possibly decrypt packets in WPA or WPA2 networks that support the TKIP data-confidentiality protocol. - CVE-2020-26145: Fixed a bug in the WEP, WPA, WPA2, and WPA3 implementations that could allows an adversary to inject arbitrary network packets. - CVE-2020-24587: Fixed a bug that allows an adversary to decrypt selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP encryption key is periodically renewed. - CVE-2020-26147: Fixed a bug in the WEP, WPA, WPA2, and WPA3 implementations that could allows an adversary to inject packets and/or exfiltrate selected fragments when another device sends fragmented frames. The following non-security bugs were fixed: - Bluetooth: SMP: Fail if remote and local public keys are identical . - Drivers: hv: vmbus: Increase wait time for VMbus unload . - Drivers: hv: vmbus: Initialize unload_event statically . - hv_netvsc: Add handlers for ethtool get/set msg level . - hv_netvsc: avoid retry on send during shutdown . - hv_netvsc: avoid unnecessary wakeups on subchannel creation . - hv_netvsc: cancel subchannel setup before halting device . - hv_netvsc: change GPAD teardown order on older versions . - hv_netvsc: common detach logic . - hv_netvsc: delay setup of VF device . - hv_netvsc: disable NAPI before channel close . - hv_netvsc: Ensure correct teardown message sequence order . - hv_netvsc: Fix a deadlock by getting rtnl lock earlier in netvsc_probe . - hv_netvsc: Fix a network regression after ifdown/ifup . - hv_netvsc: fix deadlock on hotplug . - hv_netvsc: Fix error handling in netvsc_attach . - hv_netvsc: fix error unwind handling if vmbus_open fails . - hv_netvsc: Fix extra rcu_read_unlock in netvsc_recv_callback . - hv_netvsc: fix handling of fallback to single queue mode . - hv_netvsc: Fix hash key value reset after other ops . - hv_netvsc: Fix IP header checksum for coalesced packets . - hv_netvsc: Fix net device attach on older Windows hosts . - hv_netvsc: fix network namespace issues with VF support . - hv_netvsc: Fix NULL dereference at single queue mode fallback . - hv_netvsc: fix race during initialization . - hv_netvsc: fix race on sub channel creation . - hv_netvsc: fix race that may miss tx queue wakeup . - hv_netvsc: fix schedule in RCU context . - hv_netvsc: Fix the variable sizes in ipsecv2 and rsc offload . - hv_netvsc: Fix tx_table init in rndis_set_subchannel . - hv_netvsc: Fix unwanted wakeup after tx_disable . - hv_netvsc: Fix unwanted wakeup in netvsc_attach . - hv_netvsc: flag software created hash value . - hv_netvsc: netvsc_teardown_gpadl split . - hv_netvsc: only wake transmit queue if link is up . - hv_netvsc: pass netvsc_device to rndis halt . - hv_netvsc: preserve hw_features on mtu/channels/ringparam changes . - hv_netvsc: Refactor assignments of struct netvsc_device_info . - hv_netvsc: set master device . - hv_netvsc: Set tx_table to equal weight after subchannels open . - hv_netvsc: Simplify num_chn checking in rndis_filter_device_add . - hv_netvsc: Split netvsc_revoke_buf and netvsc_teardown_gpadl . - hv_netvsc: split sub-channel setup into async and sync . - hv_netvsc: typo in NDIS RSS parameters structure . - hv_netvsc: use RCU to fix concurrent rx and queue changes . - hv_netvsc: use reciprocal divide to speed up percent calculation . - hv_netvsc: Use Windows version instead of NVSP version on GPAD teardown . - kgraft: truncate the output from state_show sysfs attr . - mm, memory_hotplug: do not clear numa_node association after hot_remove . - mm: consider __HW_POISON pages when allocating from pcp lists . - scsi: storvsc: Enable scatterlist entry lengths 4Kbytes . - video: hyperv_fb: Add ratelimit on error message . Special Instructions and Notes: Please reboot the system after installing this update.

Platform:
SUSE Linux Enterprise Server 12 SP3
Product:
kernel
kgraft-patch-4_4_180-94_147-default
Reference:
SUSE-SU-2021:2451-1
CVE-2020-24586
CVE-2020-24587
CVE-2020-24588
CVE-2020-26139
CVE-2020-26141
CVE-2020-26145
CVE-2020-26147
CVE-2020-26558
CVE-2020-36385
CVE-2020-36386
CVE-2021-0129
CVE-2021-0512
CVE-2021-0605
CVE-2021-22555
CVE-2021-23134
CVE-2021-32399
CVE-2021-33034
CVE-2021-33909
CVE-2021-34693
CVE-2021-3609
CVE    20
CVE-2021-0129
CVE-2021-22555
CVE-2021-23134
CVE-2021-33034
...
CPE    2
cpe:/o:suse:suse_linux_enterprise_server:12:sp3
cpe:/o:linux:linux_kernel

© SecPod Technologies