[openSUSE-SU-2021:0407-1] Security update for kernel-firmware
Severity
Important
Affected Packages
2
CVEs
4
Security update for kernel-firmware
This update for kernel-firmware fixes the following issues:
- CVE-2020-12373: Fixed an expired pointer dereference may lead to DOS (bsc#1181738).
- CVE-2020-12364: Fixed a null pointer reference may lead to DOS (bsc#1181736).
- CVE-2020-12362: Fixed an integer overflow which could have led to privilege escalation (bsc#1181720).
- CVE-2020-12363: Fixed an improper input validation which may have led to DOS (bsc#1181735).
This update was imported from the SUSE:SLE-15-SP1:Update update project.
Package | Affected Version |
---|---|
pkg:rpm/opensuse/ucode-amd?arch=noarch&distro=opensuse-leap-15.2 | < 20200107-lp152.2.6.1 |
pkg:rpm/opensuse/kernel-firmware?arch=noarch&distro=opensuse-leap-15.2 | < 20200107-lp152.2.6.1 |
- ID
- openSUSE-SU-2021:0407-1
- Severity
- important
- URL
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/KH2XS5MRKRSCX3I5AS4LGZH576PO6KUD/
- Published
-
2021-03-14T14:10:15
(3 years ago) - Modified
-
2021-03-14T14:10:15
(3 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/opensuse/ucode-amd?arch=noarch&distro=opensuse-leap-15.2 | opensuse | ucode-amd | < 20200107-lp152.2.6.1 | opensuse-leap-15.2 | noarch | |
Affected | pkg:rpm/opensuse/kernel-firmware?arch=noarch&distro=opensuse-leap-15.2 | opensuse | kernel-firmware | < 20200107-lp152.2.6.1 | opensuse-leap-15.2 | noarch |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |