SUSE: Security Advisory (SUSE-SU-2018:2344-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2021-3493

The overlayfs implementation in the linux kernel did not properly validate with respect to user namespaces the setting of file capabilities on files in an underlying file system. Due to the combination of unprivileged user namespaces along with a patch carried in the Ubuntu kernel to allow...

CVE-2020-36310

An issue was discovered in the Linux kernel before 5.8. arch/x86/kvm/svm/svm.c allows a setmemoryregiontest infinite loop for certain nested page faults, aka CID-e72436bc3a52...

CVE-2021-28972

In drivers/pci/hotplug/rpadlparsysfs.c in the Linux kernel through 5.11.8, the RPA PCI Hotplug driver has a user-tolerable buffer overflow when writing a new device name to the driver from userspace, allowing userspace to write data to the kernel stack frame directly. This occurs because...

CVE-2021-28964

A race condition was discovered in getoldroot in fs/btrfs/ctree.c in the Linux kernel through 5.11.8. It allows attackers to cause a denial of service BUG because of a lack of locking on an extent buffer before a cloning operation, aka CID-dbcc7d57bffc...

Linux kernel denial of service vulnerability (CNVD-2021-19674)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. The Linux kernel suffers from a security vulnerability that stems from a memory access flaw. The vulnerability can be exploited by an attacker to gain access to out-of-bounds...

SUSE-SU-2021:0842-1 Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-249 fixes several issues. The following security issues were fixed: - CVE-2020-29368: Fixed an issue in copy-on-write implementation which could have granted unintended write access because of a race condition in a THP mapcount check bsc1179664. - Fixed an...

SUSE-SU-2021:0840-1 Security update for the Linux Kernel (Live Patch 9 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-2446 fixes several issues. The following security issues were fixed: - CVE-2020-29368: Fixed an issue in copy-on-write implementation which could have granted unintended write access because of a race condition in a THP mapcount check bsc1179664. -...

SUSE-SU-2021:0826-1 Security update for the Linux Kernel (Live Patch 12 for SLE 12 SP4)

This update for the Linux Kernel 4.12.14-9548 fixes several issues. The following security issues were fixed: - CVE-2020-29368: Fixed an issue in copy-on-write implementation which could have granted unintended write access because of a race condition in a THP mapcount check bsc1179664. - Fixed a...

Unspecified vulnerability in Linux kernel (CNVD-2021-19426)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel versions 4.18 through 5.10.16, which stems from the fact that the back-end allocation mode of the drmxenfront driver is not mean...

SUSE-SU-2021:0532-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3347: A use-after-free was discovered in the PI futexes during fault handling, allowing local users to execute code in the kernel bnc1181349. -...

SUSE-SU-2021:0386-1 Security update for the Linux Kernel (Live Patch 21 for SLE 15 SP1)

This update for the Linux Kernel 4.12.14-19778 fixes several issues. The following security issues were fixed: - CVE-2020-29569: Fixed a use after free due to a logic error bsc1180008. - CVE-2020-29368: Fixed an issue in copy-on-write implementation which could grant unintended write access becau...

SUSE-SU-2021:0347-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP2 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3347: A use-after-free was discovered in the PI futexes during fault handling, allowing local users to execute code in the kernel bnc1181349. -...

SUSE-SU-2021:0098-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2018-20669: Fixed an improper check i915gemexecbuffer2ioctl in drivers/gpu/drm/i915/i915gemexecbuffer.c bsc1122971. - CVE-2019-20934: Fixed a...

Moderate: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

SUSE-SU-2020:3402-1 Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-2412 fixes several issues. The following security issues were fixed: - CVE-2020-12351: Fixed a type confusion while processing AMP packets aka 'BleedingTooth' aka 'BadKarma' bsc1177724, bsc1177729, bsc1178397. - CVE-2020-25645: Fixed an an issue in IPsec th...

Linux kernel llcp_sock_bind() Denial of Service Vulnerability

Linux kernel is an open source operating system. A security vulnerability exists in Linux kernel llcpsockbind, which can be exploited by remote attackers to submit a special request that can crash the system...

SUSE-SU-2020:3204-1 Security update for the Linux Kernel (Live Patch 0 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-120 fixes several issues. The following security issues were fixed: - CVE-2020-14381: Fixed a use-after-free in the fast user mutex futex wait operation, which could have lead to memory corruption and possibly privilege escalation bsc1176011. -...

SUSE-SU-2020:3187-1 Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-22 fixes several issues. The following security issues were fixed: - CVE-2020-25212: A TOCTOU mismatch in the NFS client code could be used by local attackers to corrupt memory or possibly have unspecified other impact because a size check is in...

SUSE-SU-2020:3178-1 Security update for the Linux Kernel (Live Patch 20 for SLE 15)

This update for the Linux Kernel 4.12.14-15058 fixes several issues. The following security issues were fixed: - CVE-2020-14381: Fixed a use-after-free in the fast user mutex futex wait operation, which could have lead to memory corruption and possibly privilege escalation bsc1176011. -...