Описание
Security update for the Linux Kernel (Live Patch 0 for SLE 12 SP5)
This update for the Linux Kernel 4.12.14-120 fixes several issues.
The following security issues were fixed:
- CVE-2020-10757: Fixed an issue where remaping hugepage DAX to anon mmap could have caused user PTE access (bsc#1172437).
- CVE-2018-1000199: Fixed a potential local code execution via ptrace (bsc#1171746).
Список пакетов
SUSE Linux Enterprise Live Patching 12 SP5
kgraft-patch-4_12_14-122_20-default-3-2.1
kgraft-patch-4_12_14-122_17-default-4-2.1
kgraft-patch-4_12_14-122_12-default-5-2.1
kgraft-patch-4_12_14-122_7-default-5-2.1
kgraft-patch-4_12_14-120-default-5-12.2
Ссылки
- Link for SUSE-SU-2020:1775-1
- E-Mail link for SUSE-SU-2020:1775-1
- SUSE Security Ratings
- SUSE Bug 1171746
- SUSE Bug 1172437
- SUSE CVE CVE-2018-1000199 page
- SUSE CVE CVE-2020-10757 page
Описание
The Linux Kernel version 3.18 contains a dangerous feature vulnerability in modify_user_hw_breakpoint() that can result in crash and possibly memory corruption. This attack appear to be exploitable via local code execution and the ability to use ptrace. This vulnerability appears to have been fixed in git commit f67b15037a7a50c57f72e69a6d59941ad90a0f0f.
Затронутые продукты
SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-120-default-5-12.2
SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_12-default-5-2.1
SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_17-default-4-2.1
SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_20-default-3-2.1
Ссылки
- CVE-2018-1000199
- SUSE Bug 1089895
- SUSE Bug 1090036
Описание
A flaw was found in the Linux Kernel in versions after 4.5-rc1 in the way mremap handled DAX Huge Pages. This flaw allows a local attacker with access to a DAX enabled storage to escalate their privileges on the system.
Затронутые продукты
SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-120-default-5-12.2
SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_12-default-5-2.1
SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_17-default-4-2.1
SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_20-default-3-2.1
Ссылки
- CVE-2020-10757
- SUSE Bug 1159281
- SUSE Bug 1172317
- SUSE Bug 1172437