Описание
Security update for the Linux Kernel
The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes.
The following non-security bug was fixed:
- Fixed a regression where KVM VM hangs caused by the fix CVE-2020-29660 and CVE-2020-29661 (bsc#1182505).
Список пакетов
SUSE Linux Enterprise Server 11 SP4-LTSS
kernel-bigmem-3.0.101-108.123.1
kernel-bigmem-base-3.0.101-108.123.1
kernel-bigmem-devel-3.0.101-108.123.1
kernel-default-3.0.101-108.123.1
kernel-default-base-3.0.101-108.123.1
kernel-default-devel-3.0.101-108.123.1
kernel-default-man-3.0.101-108.123.1
kernel-ec2-3.0.101-108.123.1
kernel-ec2-base-3.0.101-108.123.1
kernel-ec2-devel-3.0.101-108.123.1
kernel-pae-3.0.101-108.123.1
kernel-pae-base-3.0.101-108.123.1
kernel-pae-devel-3.0.101-108.123.1
kernel-ppc64-3.0.101-108.123.1
kernel-ppc64-base-3.0.101-108.123.1
kernel-ppc64-devel-3.0.101-108.123.1
kernel-source-3.0.101-108.123.1
kernel-syms-3.0.101-108.123.1
kernel-trace-3.0.101-108.123.1
kernel-trace-base-3.0.101-108.123.1
kernel-trace-devel-3.0.101-108.123.1
kernel-xen-3.0.101-108.123.1
kernel-xen-base-3.0.101-108.123.1
kernel-xen-devel-3.0.101-108.123.1
Ссылки
- Link for SUSE-RU-2021:14663-1
- E-Mail link for SUSE-RU-2021:14663-1
- SUSE Security Ratings
- SUSE Bug 1179745
- SUSE Bug 1182505
- SUSE CVE CVE-2020-29660 page
- SUSE CVE CVE-2020-29661 page
Описание
A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may allow a read-after-free attack against TIOCGSID, aka CID-c8bcd9c5be24.
Затронутые продукты
SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.123.1
SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.123.1
SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.123.1
SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.123.1
Ссылки
- CVE-2020-29660
- SUSE Bug 1179745
- SUSE Bug 1179877
Описание
A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_jobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b.
Затронутые продукты
SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.123.1
SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.123.1
SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.123.1
SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.123.1
Ссылки
- CVE-2020-29661
- SUSE Bug 1179745
- SUSE Bug 1179877
- SUSE Bug 1214268
- SUSE Bug 1218966