SUSE-SU-2021:4075-1

Опубликовано: 14 дек. 2021

Источник: suse-cvrf

Описание

Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-59_5 fixes one issue.

The following security issue was fixed:

CVE-2021-20322: Make the ipv4 and ipv6 ICMP exception caches less predictive to avoid information leaks about UDP ports in use. (bsc#1191790)

Список пакетов

SUSE Linux Enterprise Live Patching 15 SP2

kernel-livepatch-5_3_18-24_86-default-3-2.1

kernel-livepatch-5_3_18-24_93-default-2-2.1

kernel-livepatch-5_3_18-24_83-default-3-2.1

kernel-livepatch-5_3_18-24_78-default-5-2.1

kernel-livepatch-5_3_18-24_75-default-6-2.1

kernel-livepatch-5_3_18-24_70-default-7-2.1

kernel-livepatch-5_3_18-24_67-default-7-2.1

kernel-livepatch-5_3_18-24_64-default-9-2.1

kernel-livepatch-5_3_18-24_61-default-9-2.1

SUSE Linux Enterprise Live Patching 15 SP3

kernel-livepatch-5_3_18-59_34-default-2-2.1

kernel-livepatch-5_3_18-59_27-default-3-2.1

kernel-livepatch-5_3_18-59_24-default-3-2.1

kernel-livepatch-5_3_18-59_19-default-5-2.1

kernel-livepatch-5_3_18-59_16-default-6-2.1

kernel-livepatch-5_3_18-59_13-default-7-2.1

kernel-livepatch-5_3_18-59_10-default-7-2.1

kernel-livepatch-5_3_18-59_5-default-7-2.1

Ссылки

https://www.suse.com/support/update/announcement/2021/suse-su-20214075-1/
Link for SUSE-SU-2021:4075-1
https://lists.suse.com/pipermail/sle-security-updates/2021-December/009910.html
E-Mail link for SUSE-SU-2021:4075-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1191813
SUSE Bug 1191813
https://www.suse.com/security/cve/CVE-2021-20322/
SUSE CVE CVE-2021-20322 page

Описание

A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest threat from this vulnerability is to confidentiality and possibly integrity, because software that relies on UDP source port randomization are indirectly affected as well.

Затронутые продукты

SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-24_61-default-9-2.1

SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-24_64-default-9-2.1

SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-24_67-default-7-2.1

SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-24_70-default-7-2.1

Ссылки

https://www.suse.com/security/cve/CVE-2021-20322.html
CVE-2021-20322
https://bugzilla.suse.com/1191790
SUSE Bug 1191790
https://bugzilla.suse.com/1191813
SUSE Bug 1191813
https://bugzilla.suse.com/1193290
SUSE Bug 1193290

SUSE-SU-2021:4075-1

Описание

Список пакетов

SUSE Linux Enterprise Live Patching 15 SP2

SUSE Linux Enterprise Live Patching 15 SP3

Ссылки

Уязвимость: CVE-2021-20322

Описание

Затронутые продукты

Ссылки