Описание
Security update for the Linux Kernel (Live Patch 22 for SLE 15 SP1)
This update for the Linux Kernel 4.12.14-197_83 fixes one issue.
The following security issue was fixed:
- CVE-2020-29368: Fixed an issue in copy-on-write implementation which could have granted unintended write access because of a race condition in a THP mapcount check (bsc#1179664).
Список пакетов
SUSE Linux Enterprise Live Patching 12 SP4
kgraft-patch-4_12_14-95_68-default-2-2.2
SUSE Linux Enterprise Live Patching 15
kernel-livepatch-4_12_14-150_66-default-2-2.2
SUSE Linux Enterprise Live Patching 15 SP1
kernel-livepatch-4_12_14-197_83-default-2-2.2
Ссылки
- Link for SUSE-SU-2021:0864-1
- E-Mail link for SUSE-SU-2021:0864-1
- SUSE Security Ratings
- SUSE Bug 1179664
- SUSE CVE CVE-2020-29368 page
Описание
An issue was discovered in __split_huge_pmd in mm/huge_memory.c in the Linux kernel before 5.7.5. The copy-on-write implementation can grant unintended write access because of a race condition in a THP mapcount check, aka CID-c444eb564fb1.
Затронутые продукты
SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_68-default-2-2.2
SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_83-default-2-2.2
SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150_66-default-2-2.2
Ссылки
- CVE-2020-29368
- SUSE Bug 1179428
- SUSE Bug 1179660
- SUSE Bug 1179664