Описание
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.
Security issues fixed:
- CVE-2021-22555: A heap out-of-bounds write was discovered in net/netfilter/x_tables.c (bnc#1188116).
- CVE-2021-33909: Extremely large seq buffer allocations in seq_file could lead to buffer underruns and code execution (bsc#1188062).
The following non-security bugs were fixed:
- usb: dwc3: Fix debugfs creation flow (git-fixes).
Список пакетов
Container suse/sle-micro-rancher/5.2:latest
kernel-default-5.3.18-59.16.1
Container suse/sles/15.3/libguestfs-tools:0.45.0
kernel-kvmsmall-5.3.18-59.16.1
Image SLES15-SP3-BYOS-Azure
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-BYOS-EC2-HVM
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-BYOS-GCE
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-CHOST-BYOS-Aliyun
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-CHOST-BYOS-Azure
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-CHOST-BYOS-EC2
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-CHOST-BYOS-GCE
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-CHOST-BYOS-SAP-CCloud
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-EC2-ECS-HVM
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-EC2-HVM
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-GCE
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-HPC-BYOS-Azure
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-HPC-BYOS-EC2-HVM
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-HPC-BYOS-GCE
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-Azure
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-EC2-HVM
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-GCE
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-Micro-5-1-BYOS-Azure
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-Micro-5-1-BYOS-EC2-HVM
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-Micro-5-1-BYOS-GCE
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-Micro-5-2-BYOS-Azure
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-Micro-5-2-BYOS-EC2-HVM
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-Micro-5-2-BYOS-GCE
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-Micro-BYOS-GCE
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-SAP-Azure
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production
cluster-md-kmp-default-5.3.18-59.16.1
dlm-kmp-default-5.3.18-59.16.1
gfs2-kmp-default-5.3.18-59.16.1
kernel-default-5.3.18-59.16.1
ocfs2-kmp-default-5.3.18-59.16.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production
cluster-md-kmp-default-5.3.18-59.16.1
dlm-kmp-default-5.3.18-59.16.1
gfs2-kmp-default-5.3.18-59.16.1
kernel-default-5.3.18-59.16.1
ocfs2-kmp-default-5.3.18-59.16.1
Image SLES15-SP3-SAP-BYOS-Azure
cluster-md-kmp-default-5.3.18-59.16.1
dlm-kmp-default-5.3.18-59.16.1
gfs2-kmp-default-5.3.18-59.16.1
kernel-default-5.3.18-59.16.1
ocfs2-kmp-default-5.3.18-59.16.1
Image SLES15-SP3-SAP-BYOS-EC2-HVM
cluster-md-kmp-default-5.3.18-59.16.1
dlm-kmp-default-5.3.18-59.16.1
gfs2-kmp-default-5.3.18-59.16.1
kernel-default-5.3.18-59.16.1
ocfs2-kmp-default-5.3.18-59.16.1
Image SLES15-SP3-SAP-BYOS-GCE
cluster-md-kmp-default-5.3.18-59.16.1
dlm-kmp-default-5.3.18-59.16.1
gfs2-kmp-default-5.3.18-59.16.1
kernel-default-5.3.18-59.16.1
ocfs2-kmp-default-5.3.18-59.16.1
Image SLES15-SP3-SAP-EC2-HVM
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-SAP-GCE
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-SAPCAL-Azure
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-SAPCAL-EC2-HVM
kernel-default-5.3.18-59.16.1
Image SLES15-SP3-SAPCAL-GCE
kernel-default-5.3.18-59.16.1
SUSE Linux Enterprise High Availability Extension 15 SP3
cluster-md-kmp-default-5.3.18-59.16.1
dlm-kmp-default-5.3.18-59.16.1
gfs2-kmp-default-5.3.18-59.16.1
ocfs2-kmp-default-5.3.18-59.16.1
SUSE Linux Enterprise Live Patching 15 SP3
kernel-default-livepatch-5.3.18-59.16.1
kernel-default-livepatch-devel-5.3.18-59.16.1
kernel-livepatch-5_3_18-59_16-default-1-7.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP3
kernel-64kb-5.3.18-59.16.1
kernel-64kb-devel-5.3.18-59.16.1
kernel-default-5.3.18-59.16.1
kernel-default-base-5.3.18-59.16.1.18.8.1
kernel-default-devel-5.3.18-59.16.1
kernel-devel-5.3.18-59.16.1
kernel-macros-5.3.18-59.16.1
kernel-preempt-5.3.18-59.16.1
kernel-zfcpdump-5.3.18-59.16.1
SUSE Linux Enterprise Module for Development Tools 15 SP3
kernel-docs-5.3.18-59.16.1
kernel-obs-build-5.3.18-59.16.1
kernel-preempt-devel-5.3.18-59.16.1
kernel-source-5.3.18-59.16.1
kernel-syms-5.3.18-59.16.1
SUSE Linux Enterprise Module for Legacy 15 SP3
reiserfs-kmp-default-5.3.18-59.16.1
SUSE Linux Enterprise Workstation Extension 15 SP3
kernel-default-extra-5.3.18-59.16.1
kernel-preempt-extra-5.3.18-59.16.1
Ссылки
- Link for SUSE-SU-2021:2415-1
- E-Mail link for SUSE-SU-2021:2415-1
- SUSE Security Ratings
- SUSE Bug 1188062
- SUSE Bug 1188116
- SUSE CVE CVE-2021-22555 page
- SUSE CVE CVE-2021-33909 page
Описание
A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c. This allows an attacker to gain privileges or cause a DoS (via heap memory corruption) through user name space
Затронутые продукты
Container suse/sle-micro-rancher/5.2:latest:kernel-default-5.3.18-59.16.1
Container suse/sles/15.3/libguestfs-tools:0.45.0:kernel-kvmsmall-5.3.18-59.16.1
Image SLES15-SP3-BYOS-Azure:kernel-default-5.3.18-59.16.1
Image SLES15-SP3-BYOS-EC2-HVM:kernel-default-5.3.18-59.16.1
Ссылки
- CVE-2021-22555
- SUSE Bug 1188116
- SUSE Bug 1188117
- SUSE Bug 1188411
Описание
fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05.
Затронутые продукты
Container suse/sle-micro-rancher/5.2:latest:kernel-default-5.3.18-59.16.1
Container suse/sles/15.3/libguestfs-tools:0.45.0:kernel-kvmsmall-5.3.18-59.16.1
Image SLES15-SP3-BYOS-Azure:kernel-default-5.3.18-59.16.1
Image SLES15-SP3-BYOS-EC2-HVM:kernel-default-5.3.18-59.16.1
Ссылки
- CVE-2021-33909
- SUSE Bug 1188062
- SUSE Bug 1188063
- SUSE Bug 1188257
- SUSE Bug 1189302
- SUSE Bug 1190859