Описание
Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP3)
This update for the Linux Kernel 4.4.180-94_144 fixes several issues.
The following security issues were fixed:
- CVE-2021-37576: On the powerpc platform KVM guest OS users could cause host OS memory corruption via rtas_args.nargs (bsc#1188838).
- CVE-2021-3609: Fixed a local privilege escalation via a race condition in net/can/bcm.c (bsc#1187215).
Список пакетов
SUSE Linux Enterprise Server 12 SP3-LTSS
kgraft-patch-4_4_180-94_127-default-14-2.2
kgraft-patch-4_4_180-94_130-default-13-2.2
kgraft-patch-4_4_180-94_135-default-11-2.2
kgraft-patch-4_4_180-94_138-default-9-2.2
kgraft-patch-4_4_180-94_141-default-8-2.2
kgraft-patch-4_4_180-94_144-default-5-2.1
SUSE Linux Enterprise Server for SAP Applications 12 SP3
kgraft-patch-4_4_180-94_127-default-14-2.2
kgraft-patch-4_4_180-94_130-default-13-2.2
kgraft-patch-4_4_180-94_135-default-11-2.2
kgraft-patch-4_4_180-94_138-default-9-2.2
kgraft-patch-4_4_180-94_141-default-8-2.2
kgraft-patch-4_4_180-94_144-default-5-2.1
Ссылки
- Link for SUSE-SU-2021:2842-1
- E-Mail link for SUSE-SU-2021:2842-1
- SUSE Security Ratings
- SUSE Bug 1188323
- SUSE Bug 1188842
- SUSE CVE CVE-2021-3609 page
- SUSE CVE CVE-2021-37576 page
Описание
.A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsystem to corrupt memory, crash the system or escalate privileges. This race condition in net/can/bcm.c in the Linux kernel allows for local privilege escalation to root.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP3-LTSS:kgraft-patch-4_4_180-94_127-default-14-2.2
SUSE Linux Enterprise Server 12 SP3-LTSS:kgraft-patch-4_4_180-94_130-default-13-2.2
SUSE Linux Enterprise Server 12 SP3-LTSS:kgraft-patch-4_4_180-94_135-default-11-2.2
SUSE Linux Enterprise Server 12 SP3-LTSS:kgraft-patch-4_4_180-94_138-default-9-2.2
Ссылки
- CVE-2021-3609
- SUSE Bug 1187215
- SUSE Bug 1188323
- SUSE Bug 1188720
- SUSE Bug 1190276
- SUSE Bug 1196810
Описание
arch/powerpc/kvm/book3s_rtas.c in the Linux kernel through 5.13.5 on the powerpc platform allows KVM guest OS users to cause host OS memory corruption via rtas_args.nargs, aka CID-f62f3c20647e.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP3-LTSS:kgraft-patch-4_4_180-94_127-default-14-2.2
SUSE Linux Enterprise Server 12 SP3-LTSS:kgraft-patch-4_4_180-94_130-default-13-2.2
SUSE Linux Enterprise Server 12 SP3-LTSS:kgraft-patch-4_4_180-94_135-default-11-2.2
SUSE Linux Enterprise Server 12 SP3-LTSS:kgraft-patch-4_4_180-94_138-default-9-2.2
Ссылки
- CVE-2021-37576
- SUSE Bug 1188838
- SUSE Bug 1188842
- SUSE Bug 1190276