Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2021:1728-1

Опубликовано: 25 мая 2021
Источник: suse-cvrf

Описание

Security update for the Linux Kernel (Live Patch 18 for SLE 15)

This update for the Linux Kernel 4.12.14-150_52 fixes several issues.

The following security issues were fixed:

  • CVE-2020-36322: Fixed an issue inside the FUSE filesystem implementation where fuse_do_getattr() calls make_bad_inode() in inappropriate situations, could have caused a system crash. NOTE: the original fix for this vulnerability was incomplete, and its incompleteness is tracked as CVE-2021-28950 (bsc#1184952).
  • CVE-2020-0433: Fixed blk_mq_queue_tag_busy_iter of blk-mq-tag.c, where a possible use after free due to improper locking could have happened. This could have led to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation (bnc#1178066).
  • CVE-2021-29154: Fixed BPF JIT compilers that allowed to execute arbitrary code within the kernel context (bsc#1184710)

Список пакетов

SUSE Linux Enterprise Live Patching 15
kernel-livepatch-4_12_14-150_69-default-4-2.2
kernel-livepatch-4_12_14-150_66-default-5-2.2
kernel-livepatch-4_12_14-150_63-default-7-2.2
kernel-livepatch-4_12_14-150_58-default-9-2.2
kernel-livepatch-4_12_14-150_55-default-10-2.2
kernel-livepatch-4_12_14-150_52-default-10-2.2

Ссылки

Описание

In blk_mq_queue_tag_busy_iter of blk-mq-tag.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-151939299

Затронутые продукты
SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150_52-default-10-2.2
SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150_55-default-10-2.2
SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150_58-default-9-2.2
SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150_63-default-7-2.2
Ссылки

Описание

An issue was discovered in the FUSE filesystem implementation in the Linux kernel before 5.10.6, aka CID-5d069dbe8aaf. fuse_do_getattr() calls make_bad_inode() in inappropriate situations, causing a system crash. NOTE: the original fix for this vulnerability was incomplete, and its incompleteness is tracked as CVE-2021-28950.

Затронутые продукты
SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150_52-default-10-2.2
SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150_55-default-10-2.2
SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150_58-default-9-2.2
SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150_63-default-7-2.2
Ссылки

Описание

BPF JIT compilers in the Linux kernel through 5.11.12 have incorrect computation of branch displacements, allowing them to execute arbitrary code within the kernel context. This affects arch/x86/net/bpf_jit_comp.c and arch/x86/net/bpf_jit_comp32.c.

Затронутые продукты
SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150_52-default-10-2.2
SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150_55-default-10-2.2
SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150_58-default-9-2.2
SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150_63-default-7-2.2
Ссылки