SUSE-SU-2020:3433-1

Опубликовано: 19 нояб. 2020

Источник: suse-cvrf

Описание

Security update for the Linux Kernel (Live Patch 29 for SLE 12 SP3)

This update for the Linux Kernel 4.4.180-94_107 fixes one issue.

The following security issue was fixed:

CVE-2020-25645: Fixed an an issue in IPsec that caused traffic between two Geneve endpoints to be unencrypted (bnc#1177513).

Список пакетов

SUSE Linux Enterprise Server 12 SP2-LTSS

kgraft-patch-4_4_121-92_141-default-3-2.1

kgraft-patch-4_4_121-92_138-default-4-2.1

kgraft-patch-4_4_121-92_135-default-4-2.2

kgraft-patch-4_4_121-92_129-default-6-2.2

kgraft-patch-4_4_121-92_125-default-9-2.2

SUSE Linux Enterprise Server 12 SP3-LTSS

kgraft-patch-4_4_180-94_130-default-3-2.1

kgraft-patch-4_4_180-94_127-default-4-2.1

kgraft-patch-4_4_180-94_124-default-4-2.2

kgraft-patch-4_4_180-94_121-default-4-2.2

kgraft-patch-4_4_180-94_116-default-5-2.2

kgraft-patch-4_4_180-94_113-default-8-2.2

kgraft-patch-4_4_180-94_107-default-9-2.2

SUSE Linux Enterprise Server for SAP Applications 12 SP2

kgraft-patch-4_4_121-92_141-default-3-2.1

kgraft-patch-4_4_121-92_138-default-4-2.1

kgraft-patch-4_4_121-92_135-default-4-2.2

kgraft-patch-4_4_121-92_129-default-6-2.2

kgraft-patch-4_4_121-92_125-default-9-2.2

SUSE Linux Enterprise Server for SAP Applications 12 SP3

kgraft-patch-4_4_180-94_130-default-3-2.1

kgraft-patch-4_4_180-94_127-default-4-2.1

kgraft-patch-4_4_180-94_124-default-4-2.2

kgraft-patch-4_4_180-94_121-default-4-2.2

kgraft-patch-4_4_180-94_116-default-5-2.2

kgraft-patch-4_4_180-94_113-default-8-2.2

kgraft-patch-4_4_180-94_107-default-9-2.2

Ссылки

https://www.suse.com/support/update/announcement/2020/suse-su-20203433-1/
Link for SUSE-SU-2020:3433-1
https://lists.suse.com/pipermail/sle-security-updates/2020-November/007821.html
E-Mail link for SUSE-SU-2020:3433-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1177513
SUSE Bug 1177513
https://www.suse.com/security/cve/CVE-2020-25645/
SUSE CVE CVE-2020-25645 page

Описание

A flaw was found in the Linux kernel in versions before 5.9-rc7. Traffic between two Geneve endpoints may be unencrypted when IPsec is configured to encrypt traffic for the specific UDP port used by the GENEVE tunnel allowing anyone between the two endpoints to read the traffic unencrypted. The main threat from this vulnerability is to data confidentiality.

Затронутые продукты

SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_125-default-9-2.2

SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_129-default-6-2.2

SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_135-default-4-2.2

SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_138-default-4-2.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-25645.html
CVE-2020-25645
https://bugzilla.suse.com/1177511
SUSE Bug 1177511
https://bugzilla.suse.com/1177513
SUSE Bug 1177513

SUSE-SU-2020:3433-1

Описание

Список пакетов

SUSE Linux Enterprise Server 12 SP2-LTSS

SUSE Linux Enterprise Server 12 SP3-LTSS

SUSE Linux Enterprise Server for SAP Applications 12 SP2

SUSE Linux Enterprise Server for SAP Applications 12 SP3

Ссылки

Уязвимость: CVE-2020-25645

Описание

Затронутые продукты

Ссылки