Описание
Security update for the Linux Kernel (Live Patch 17 for SLE 15 SP1)
This update for the Linux Kernel 4.12.14-197_64 fixes several issues.
The following security issues were fixed:
- CVE-2020-25668: Fixed a concurrency use-after-free in con_font_op (bsc#1178622).
- CVE-2020-8694: Fixed an insufficient access control in the Linux kernel driver for some Intel(R) Processors which might have allowed an authenticated user to potentially enable information disclosure via local access (bsc#1178700).
- CVE-2020-25705: Fixed a flaw which could have allowed an off-path remote user to effectively bypass source port UDP randomization (bsc#1178783).
- Fixed an issue where system was hanging due to a massive amount of soft lockups in btrfs_drop_and_free_fs_root() (bsc#1178046).
Список пакетов
SUSE Linux Enterprise Live Patching 12 SP4
SUSE Linux Enterprise Live Patching 12 SP5
SUSE Linux Enterprise Live Patching 15 SP1
Ссылки
- Link for SUSE-SU-2020:3670-1
- E-Mail link for SUSE-SU-2020:3670-1
- SUSE Security Ratings
- SUSE Bug 1178046
- SUSE Bug 1178622
- SUSE Bug 1178700
- SUSE Bug 1178783
- SUSE CVE CVE-2020-25668 page
- SUSE CVE CVE-2020-25705 page
- SUSE CVE CVE-2020-8694 page
Описание
A flaw was found in Linux Kernel because access to the global variable fg_console is not properly synchronized leading to a use after free in con_font_op.
Затронутые продукты
Ссылки
- CVE-2020-25668
- SUSE Bug 1178123
- SUSE Bug 1178622
- SUSE Bug 1196914
Описание
A flaw in ICMP packets in the Linux kernel may allow an attacker to quickly scan open UDP ports. This flaw allows an off-path remote attacker to effectively bypass source port UDP randomization. Software that relies on UDP source port randomization are indirectly affected as well on the Linux Based Products (RUGGEDCOM RM1224: All versions between v5.0 and v6.4, SCALANCE M-800: All versions between v5.0 and v6.4, SCALANCE S615: All versions between v5.0 and v6.4, SCALANCE SC-600: All versions prior to v2.1.3, SCALANCE W1750D: v8.3.0.1, v8.6.0, and v8.7.0, SIMATIC Cloud Connect 7: All versions, SIMATIC MV500 Family: All versions, SIMATIC NET CP 1243-1 (incl. SIPLUS variants): Versions 3.1.39 and later, SIMATIC NET CP 1243-7 LTE EU: Version
Затронутые продукты
Ссылки
- CVE-2020-25705
- SUSE Bug 1175721
- SUSE Bug 1178782
- SUSE Bug 1178783
- SUSE Bug 1191790
Описание
Insufficient access control in the Linux kernel driver for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Затронутые продукты
Ссылки
- CVE-2020-8694
- SUSE Bug 1170415
- SUSE Bug 1170446
- SUSE Bug 1178591
- SUSE Bug 1178700
- SUSE Bug 1179661