SUSE-SU-2021:1347-1

Опубликовано: 28 апр. 2021

Источник: suse-cvrf

Описание

Security update for the Linux Kernel (Live Patch 23 for SLE 15)

This update for the Linux Kernel 4.12.14-150_69 fixes several issues.

The following security issues were fixed:

CVE-2021-3444: Fixed an issue with the bpf verifier which did not properly handle mod32 destination register truncation when the source register was known to be 0 leading to out of bounds read (bsc#1184171).
CVE-2021-28688: Fixed an issue introduced by XSA-365 (bsc##1182294, bsc#1183646).

Список пакетов

SUSE Linux Enterprise Live Patching 12 SP4

kgraft-patch-4_12_14-95_71-default-3-2.2

SUSE Linux Enterprise Live Patching 15

kernel-livepatch-4_12_14-150_69-default-3-2.2

Ссылки

https://www.suse.com/support/update/announcement/2021/suse-su-20211347-1/
Link for SUSE-SU-2021:1347-1
https://lists.suse.com/pipermail/sle-security-updates/2021-April/008685.html
E-Mail link for SUSE-SU-2021:1347-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1182294
SUSE Bug 1182294
https://bugzilla.suse.com/1184171
SUSE Bug 1184171
https://www.suse.com/security/cve/CVE-2021-28688/
SUSE CVE CVE-2021-28688 page
https://www.suse.com/security/cve/CVE-2021-3444/
SUSE CVE CVE-2021-3444 page

Описание

The fix for XSA-365 includes initialization of pointers such that subsequent cleanup code wouldn't use uninitialized or stale values. This initialization went too far and may under certain conditions also overwrite pointers which are in need of cleaning up. The lack of cleanup would result in leaking persistent grants. The leak in turn would prevent fully cleaning up after a respective guest has died, leaving around zombie domains. All Linux versions having the fix for XSA-365 applied are vulnerable. XSA-365 was classified to affect versions back to at least 3.11.

Затронутые продукты

SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_71-default-3-2.2

SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150_69-default-3-2.2

Ссылки

https://www.suse.com/security/cve/CVE-2021-28688.html
CVE-2021-28688
https://bugzilla.suse.com/1183646
SUSE Bug 1183646

Описание

The bpf verifier in the Linux kernel did not properly handle mod32 destination register truncation when the source register was known to be 0. A local attacker with the ability to load bpf programs could use this gain out-of-bounds reads in kernel memory leading to information disclosure (kernel memory), and possibly out-of-bounds writes that could potentially lead to code execution. This issue was addressed in the upstream kernel in commit 9b00f1b78809 ("bpf: Fix truncation handling for mod32 dst reg wrt zero") and in Linux stable kernels 5.11.2, 5.10.19, and 5.4.101.

Затронутые продукты

SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_71-default-3-2.2

SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150_69-default-3-2.2

Ссылки

https://www.suse.com/security/cve/CVE-2021-3444.html
CVE-2021-3444
https://bugzilla.suse.com/1184170
SUSE Bug 1184170
https://bugzilla.suse.com/1184171
SUSE Bug 1184171

SUSE-SU-2021:1347-1

Описание

Список пакетов

SUSE Linux Enterprise Live Patching 12 SP4

SUSE Linux Enterprise Live Patching 15

Ссылки

Уязвимость: CVE-2021-28688

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2021-3444

Описание

Затронутые продукты

Ссылки