Описание
Security update for the Linux Kernel (Live Patch 12 for SLE 12 SP5)
This update for the Linux Kernel 4.12.14-122_51 fixes several issues.
The following security issues were fixed:
- CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1187597)
- CVE-2021-23133: Fixed a race condition in the SCTP sockets that can lead to kernel privilege escalation from the context of a network service or an unprivileged process. (bsc#1185901)
Список пакетов
SUSE Linux Enterprise Live Patching 12 SP5
Ссылки
- Link for SUSE-SU-2021:2453-1
- E-Mail link for SUSE-SU-2021:2453-1
- SUSE Security Ratings
- SUSE Bug 1185901
- SUSE Bug 1187597
- SUSE CVE CVE-2021-0512 page
- SUSE CVE CVE-2021-23133 page
Описание
In __hidinput_change_resolution_multipliers of hid-input.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-173843328References: Upstream kernel
Затронутые продукты
Ссылки
- CVE-2021-0512
- SUSE Bug 1187595
- SUSE Bug 1187597
Описание
A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process. If sctp_destroy_sock is called without sock_net(sk)->sctp.addr_wq_lock then an element is removed from the auto_asconf_splist list without any proper locking. This can be exploited by an attacker with network service privileges to escalate to root or from the context of an unprivileged user directly if a BPF_CGROUP_INET_SOCK_CREATE is attached which denies creation of some SCTP socket.
Затронутые продукты
Ссылки
- CVE-2021-23133
- SUSE Bug 1184675
- SUSE Bug 1185901