Описание
Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP3)
This update for the Linux Kernel 4.4.180-94_116 fixes several issues.
The following security issues were fixed:
- CVE-2020-10757: Fixed an issue where remaping hugepage DAX to anon mmap could have caused user PTE access (bsc#1172437).
- CVE-2020-12653: Fixed an issue in the wifi driver which could have allowed local users to gain privileges or cause a denial of service (bsc#1171254).
- CVE-2020-12654: Fixed an issue in he wifi driver which could have allowed a remote AP to trigger a heap-based buffer overflow (bsc#1171252).
- CVE-2020-1749: Fixed an issue where some ipv6 protocols were not encrypted over ipsec tunnel (bsc#1165631).
Список пакетов
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server for SAP Applications 12 SP3
Ссылки
- Link for SUSE-SU-2020:1779-1
- E-Mail link for SUSE-SU-2020:1779-1
- SUSE Security Ratings
- SUSE Bug 1165631
- SUSE Bug 1171252
- SUSE Bug 1171254
- SUSE Bug 1172437
- SUSE CVE CVE-2020-10757 page
- SUSE CVE CVE-2020-12653 page
- SUSE CVE CVE-2020-12654 page
- SUSE CVE CVE-2020-1749 page
Описание
A flaw was found in the Linux Kernel in versions after 4.5-rc1 in the way mremap handled DAX Huge Pages. This flaw allows a local attacker with access to a DAX enabled storage to escalate their privileges on the system.
Затронутые продукты
Ссылки
- CVE-2020-10757
- SUSE Bug 1159281
- SUSE Bug 1172317
- SUSE Bug 1172437
Описание
An issue was found in Linux kernel before 5.5.4. The mwifiex_cmd_append_vsie_tlv() function in drivers/net/wireless/marvell/mwifiex/scan.c allows local users to gain privileges or cause a denial of service because of an incorrect memcpy and buffer overflow, aka CID-b70261a288ea.
Затронутые продукты
Ссылки
- CVE-2020-12653
- SUSE Bug 1159281
- SUSE Bug 1171195
- SUSE Bug 1171254
Описание
An issue was found in Linux kernel before 5.5.4. mwifiex_ret_wmm_get_status() in drivers/net/wireless/marvell/mwifiex/wmm.c allows a remote AP to trigger a heap-based buffer overflow because of an incorrect memcpy, aka CID-3a9b153c5591.
Затронутые продукты
Ссылки
- CVE-2020-12654
- SUSE Bug 1159281
- SUSE Bug 1171202
- SUSE Bug 1171252
Описание
A flaw was found in the Linux kernel's implementation of some networking protocols in IPsec, such as VXLAN and GENEVE tunnels over IPv6. When an encrypted tunnel is created between two hosts, the kernel isn't correctly routing tunneled data over the encrypted link; rather sending the data unencrypted. This would allow anyone in between the two endpoints to read the traffic unencrypted. The main threat from this vulnerability is to data confidentiality.
Затронутые продукты
Ссылки
- CVE-2020-1749
- SUSE Bug 1165629
- SUSE Bug 1165631
- SUSE Bug 1177511
- SUSE Bug 1177513
- SUSE Bug 1189302