1. Home
  2. Security Advisories
  3. SUSE
  4. SUSE-SU-2020:1255-1

[SUSE-SU-2020:1255-1] Security update for the Linux Kernel

Severity Important
Affected Packages 18
CVEs 57
Info Packages References Vulnerabilities

Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP2 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • CVE-2020-11494: An issue was discovered in slc_bump in drivers/net/can/slcan.c, which allowed attackers to read uninitialized can_frame data, potentially containing sensitive information from kernel stack memory, if the configuration lacks CONFIG_INIT_STACK_ALL (bnc#1168424).
  • CVE-2020-10942: In get_raw_socket in drivers/vhost/net.c lacks validation of an sk_family field, which might allow attackers to trigger kernel stack corruption via crafted system calls (bnc#1167629).
  • CVE-2020-8647: Fixed a use-after-free vulnerability in the vc_do_resize function in drivers/tty/vt/vt.c (bnc#1162929).
  • CVE-2020-8649: Fixed a use-after-free vulnerability in the vgacon_invert_region function in drivers/video/console/vgacon.c (bnc#1162931).
  • CVE-2020-9383: Fixed an issue in set_fdc in drivers/block/floppy.c, which leads to a wait_til_ready out-of-bounds read (bnc#1165111).
  • CVE-2019-9458: In the video driver there was a use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed (bnc#1168295).
  • CVE-2019-3701: Fixed an issue in can_can_gw_rcv, which could cause a system crash (bnc#1120386).
  • CVE-2019-19768: Fixed a use-after-free in the __blk_add_trace function in kernel/trace/blktrace.c (bnc#1159285).
  • CVE-2020-11609: Fixed a NULL pointer dereference in the stv06xx subsystem caused by mishandling invalid descriptors (bnc#1168854).
  • CVE-2020-10720: Fixed a use-after-free read in napi_gro_frags() (bsc#1170778).
  • CVE-2020-10690: Fixed the race between the release of ptp_clock and cdev (bsc#1170056).
  • CVE-2019-9455: Fixed a pointer leak due to a WARN_ON statement in a video driver. This could lead to local information disclosure with System execution privileges needed (bnc#1170345).
  • CVE-2020-11608: Fixed an issue in drivers/media/usb/gspca/ov519.c caused by a NULL pointer dereferences in ov511_mode_init_regs and ov518_mode_init_regs when there are zero endpoints (bnc#1168829).
  • CVE-2017-18255: The perf_cpu_time_max_percent_handler function in kernel/events/core.c allowed local users to cause a denial of service (integer overflow) or possibly have unspecified other impact via a large value, as demonstrated by an incorrect sample-rate calculation (bnc#1087813).
  • CVE-2020-8648: There was a use-after-free vulnerability in the n_tty_receive_buf_common function in drivers/tty/n_tty.c (bnc#1162928).
  • CVE-2020-2732: A flaw was discovered in the way that the KVM hypervisor handled instruction emulation for an L2 guest when nested virtualisation is enabled. Under some circumstances, an L2 guest may trick the L0 guest into accessing sensitive L1 resources that should be inaccessible to the L2 guest (bnc#1163971).
  • CVE-2019-5108: Fixed a denial-of-service vulnerability caused by triggering AP to send IAPP location updates for stations before the required authentication process has completed (bnc#1159912).
  • CVE-2020-8992: ext4_protect_reserved_inode in fs/ext4/block_validity.c allowed attackers to cause a denial of service (soft lockup) via a crafted journal size (bnc#1164069).
  • CVE-2018-21008: Fixed a use-after-free which could be caused by the function rsi_mac80211_detach in the file drivers/net/wireless/rsi/rsi_91x_mac80211.c (bnc#1149591).
  • CVE-2019-14896: A heap-based buffer overflow vulnerability was found in Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP (bnc#1157157).
  • CVE-2019-14897: A stack-based buffer overflow was found in Marvell WiFi chip driver. An attacker is able to cause a denial of service (system crash) or, possibly execute arbitrary code, when a STA works in IBSS mode (allows connecting stations together without the use of an AP) and connects to another STA (bnc#1157155).
  • CVE-2019-18675: Fixed an integer overflow in cpia2_remap_buffer in drivers/media/usb/cpia2/cpia2_core.c because cpia2 has its own mmap implementation. This allowed local users (with /dev/video0 access) to obtain read and write permissions on kernel physical pages, which can possibly result in a privilege escalation (bnc#1157804).
  • CVE-2019-14615: Insufficient control flow in certain data structures for some Intel(R) Processors with Intel(R) Processor Graphics may have allowed an unauthenticated user to potentially enable information disclosure via local access (bnc#1160195, bsc#1165881).
  • CVE-2019-19965: Fixed a NULL pointer dereference in drivers/scsi/libsas/sas_discover.c because of mishandling of port disconnection during discovery, related to a PHY down race condition (bnc#1159911).
  • CVE-2019-20054: Fixed a NULL pointer dereference in drop_sysctl_table() in fs/proc/proc_sysctl.c, related to put_links (bnc#1159910).
  • CVE-2019-20096: Fixed a memory leak in __feat_register_sp() in net/dccp/feat.c, which may cause denial of service (bnc#1159908).
  • CVE-2019-19966: Fixed a use-after-free in cpia2_exit() in drivers/media/usb/cpia2/cpia2_v4l.c that will cause denial of service (bnc#1159841).
  • CVE-2019-19447: Fixed an issue with mounting a crafted ext4 filesystem image, performing some operations, and unmounting could lead to a use-after-free in ext4_put_super in fs/ext4/super.c, related to dump_orphan_list in fs/ext4/super.c (bnc#1158819).
  • CVE-2019-19319: Fixed an issue with a setxattr operation, after a mount of a crafted ext4 image, can cause a slab-out-of-bounds write access because of an ext4_xattr_set_entry use-after-free in fs/ext4/xattr.c when a large old_size value is used in a memset call (bnc#1158021).
  • CVE-2019-19767: Fixed mishandling of ext4_expand_extra_isize, as demonstrated by use-after-free errors in __ext4_expand_extra_isize and ext4_xattr_set_entry, related to fs/ext4/inode.c and fs/ext4/super.c (bnc#1159297).
  • CVE-2019-19066: Fixed memory leak in the bfad_im_get_stats() function in drivers/scsi/bfa/bfad_attr.c that allowed attackers to cause a denial of service (memory consumption) by triggering bfa_port_get_stats() failures (bnc#1157303).
  • CVE-2019-19332: There was an OOB memory write via kvm_dev_ioctl_get_cpuid (bsc#1158827).
  • CVE-2019-19537: There was a race condition bug that could have been caused by a malicious USB device in the USB character device driver layer (bnc#1158904).
  • CVE-2019-19535: There was an info-leak bug that could have been caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_fd.c driver (bnc#1158903).
  • CVE-2019-19527: There was a use-after-free bug that could have been caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver (bnc#1158900).
  • CVE-2019-19533: There was an info-leak bug that could have been caused by a malicious USB device in the drivers/media/usb/ttusb-dec/ttusb_dec.c driver (bnc#1158834).
  • CVE-2019-19532: There were multiple out-of-bounds write bugs that could have been caused by a malicious USB device in the Linux kernel HID drivers (bnc#1158824).
  • CVE-2019-19523: There was a use-after-free bug that could have been caused by a malicious USB device in the drivers/usb/misc/adutux.c driver (bnc#1158823).
  • CVE-2019-15213: An issue was discovered in the Linux kernel, there was a use-after-free caused by a malicious USB device in the drivers/media/usb/dvb-usb/dvb-usb-init.c driver (bnc#1146544).
  • CVE-2019-19531: There was a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/yurex.c driver (bnc#1158445).
  • CVE-2019-19525: There was a use-after-free bug that can be caused by a malicious USB device in the drivers/net/ieee802154/atusb.c driver (bnc#1158417).
  • CVE-2019-19530: There was a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/class/cdc-acm.c driver (bnc#1158410).
  • CVE-2019-19536: There was an info-leak bug that can be caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_pro.c driver (bnc#1158394).
  • CVE-2019-19524: There was a use-after-free bug that can be caused by a malicious USB device in the drivers/input/ff-memless.c driver (bnc#1158413).
  • CVE-2019-19534: There was an info-leak bug that can be caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_core.c driver (bnc#1158398).
  • CVE-2019-14901: A heap overflow flaw was found in the Linux kernel in Marvell WiFi chip driver. The vulnerability allowed a remote attacker to cause a system crash, resulting in a denial of service, or execute arbitrary code. The highest threat with this vulnerability is with the availability of the system. If code execution occurs, the code will run with the permissions of root. This will affect both confidentiality and integrity of files on the system (bnc#1157042).
  • CVE-2019-14895: Fixed a heap-based buffer overflow in the Marvell WiFi chip driver. The flaw could occur when the station attempts a connection negotiation during the handling of the remote devices country settings. This could allow the remote device to cause a denial of service (system crash) or possibly execute arbitrary code (bnc#1157158).
  • CVE-2019-18660: Fixed a information disclosure on powerpc related to the Spectre-RSB mitigation. This is related to arch/powerpc/kernel/entry_64.S and arch/powerpc/kernel/security.c (bnc#1157038 1157923).
  • CVE-2019-18683: Fixed a privilege escalation where local users have /dev/video0 access, but only if the driver happens to be loaded. There are multiple race conditions during streaming stopping in this driver (part of the V4L2 subsystem) (bnc#1155897).
  • CVE-2019-19062: Fixed a memory leak in the crypto_report() function in crypto/crypto_user_base.c, which allowed attackers to cause a denial of service (memory consumption) by triggering crypto_report_alg() failures (bnc#1157333).
  • CVE-2019-19052: A memory leak in the gs_can_open() function in drivers/net/can/usb/gs_usb.c allowed attackers to cause a denial of service (memory consumption) by triggering usb_submit_urb() failures (bnc#1157324).
  • CVE-2019-19074: A memory leak in the ath9k_wmi_cmd() function in drivers/net/wireless/ath/ath9k/wmi.c allowed attackers to cause a denial of service (memory consumption) (bnc#1157143).
  • CVE-2019-19073: Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c allowed attackers to cause a denial of service (memory consumption) by triggering wait_for_completion_timeout() failures (bnc#1157070).
  • CVE-2019-11091,CVE-2018-12126,CVE-2018-12130,CVE-2018-12127: Earlier mitigations for the 'MDS' Microarchitectural Data Sampling attacks were not complete. An additional fix was added to the x86_64 fast systemcall path to further mitigate these attacks. (bsc#1164846 bsc#1170847)

The following non-security bugs were fixed:

  • blk: Fix kabi due to blk_trace_mutex addition (bsc#1159285).
  • blktrace: fix dereference after null check (bsc#1159285).
  • blktrace: fix trace mutex deadlock (bsc#1159285).
  • btrfs: Fix bound checking in qgroup_trace_new_subtree_blocks (bsc#1155311).
  • btrfs: qgroup: Check bg while resuming relocation to avoid NULL pointer dereference (bsc#1155311).
  • btrfs: qgroup: Cleanup old subtree swap code (bsc#1155311).
  • btrfs: qgroup: Do not trace subtree if we're dropping reloc tree (bsc#1155311).
  • btrfs: qgroup: Introduce function to find all new tree blocks of reloc tree (bsc#1155311).
  • btrfs: qgroup: Introduce function to trace two swaped extents (bsc#1155311).
  • btrfs: qgroup: Introduce per-root swapped blocks infrastructure (bsc#1155311).
  • btrfs: qgroup: Only trace data extents in leaves if we're relocating data block group (bsc#1155311).
  • btrfs: qgroup: Refactor btrfs_qgroup_trace_subtree_swap (bsc#1155311).
  • btrfs: qgroup: Use delayed subtree rescan for balance (bsc#1155311).
  • btrfs: qgroup: Use generation-aware subtree swap to mark dirty extents (bsc#1155311).
  • btrfs: reloc: Also queue orphan reloc tree for cleanup to avoid BUG_ON() (bsc#1155311).
  • btrfs: relocation: Delay reloc tree deletion after merge_reloc_roots (bsc#1155311).
  • btrfs: relocation: fix use-after-free on dead relocation roots (bsc#1155311).
  • btrfs: reloc: Fix NULL pointer dereference due to expanded reloc_root lifespan (bsc#1155311).
  • cgroup: avoid copying strings longer than the buffers (bsc#1146544).
  • cgroup: use strlcpy() instead of strscpy() to avoid spurious warning (bsc#1146544).
  • enic: prevent waking up stopped tx queues over watchdog reset (bsc#1133147).
  • ext4: fix use-after-free race with debug_want_extra_isize (bsc#1136449).
  • fix PageHeadHuge() race with THP split (VM Functionality, bsc#1165311).
  • fs/binfmt_misc.c: do not allow offset overflow (bsc#1099279 bsc#1156060).
  • fs/xfs: fix f_ffree value for statfs when project quota is set (bsc#1165985).
  • futex: Use smp_store_release() in mark_wake_futex() (bsc#1157464).
  • Input: add safety guards to input_set_keycode() (bsc#1168075).
  • ipv4: correct gso_size for UFO (bsc#1154844).
  • ipv6: fix memory accounting during ipv6 queue expire (bsc#1162227) (bsc#1162227).
  • ipvlan: do not add hardware address of master to its unicast filter list (bsc#1137325).
  • media: ov519: add missing endpoint sanity checks (bsc#1168829).
  • media: stv06xx: add missing descriptor sanity checks (bsc#1168854).
  • netfilter: conntrack: sctp: use distinct states for new SCTP connections (bsc#1159199).
  • netfilter: nf_nat: do not bug when mapping already exists (bsc#1146612).
  • powerpc/64: Call setup_barrier_nospec() from setup_arch() (bsc#1131107).
  • powerpc/64: Make meltdown reporting Book3S 64 specific (bsc#1091041).
  • powerpc/64: Make stf barrier PPC_BOOK3S_64 specific (bsc#1131107).
  • powerpc/64s: Add new security feature flags for count cache flush (bsc#1131107).
  • powerpc/64s: Add support for software count cache flush (bsc#1131107).
  • powerpc/64s: support nospectre_v2 cmdline option (bsc#1131107).
  • powerpc/asm: Add a patch_site macro & helpers for patching instructions (bsc#1131107).
  • powerpc/fsl: Add nospectre_v2 command line argument (bsc#1131107).
  • powerpc/fsl: Fix spectre_v2 mitigations reporting (bsc#1131107).
  • powerpc/powernv: Query firmware for count cache flush settings (bsc#1131107).
  • powerpc/pseries: Query hypervisor for count cache flush settings (bsc#1131107).
  • powerpc/security/book3s64: Report L1TF status in sysfs (bsc#1091041).
  • powerpc/security: Fix spectre_v2 reporting (bsc#1131107).
  • powerpc/security: Fix wrong message when RFI Flush is disable (bsc#1131107).
  • powerpc/security: Show powerpc_security_features in debugfs (bsc#1131107).
  • route: set the deleted fnhe fnhe_daddr to 0 in ip_del_fnhe to fix a race (bsc#1037216).
  • sched/fair: WARN() and refuse to set buddy when !se->on_rq (bsc#1158132).
  • string: drop __must_check from strscpy() and restore strscpy() usages in cgroup (bsc#1146544).
  • x86/alternatives: Add int3_emulate_call() selftest (bsc#1153811).
  • x86/alternatives: Fix int3_emulate_call() selftest stack corruption (bsc#1153811).
  • x86/mitigations: Clear CPU buffers on the SYSCALL fast path (bsc#1164846).
  • xen/pv: Fix a boot up hang revealed by int3 self test (bsc#1153811).
  • xfs: also remove cached ACLs when removing the underlying attr (bsc#1165873).
  • xfs: bulkstat should copy lastip whenever userspace supplies one (bsc#1165984).
Package Affected Version
pkg:rpm/suse/kgraft-patch-4_4_121-92_129-default?arch=x86_64&distro=sles-12&sp=2 < 1-3.3.1
pkg:rpm/suse/kgraft-patch-4_4_121-92_129-default?arch=ppc64le&distro=sles-12&sp=2 < 1-3.3.1
pkg:rpm/suse/kernel-syms?arch=x86_64&distro=sles-12&sp=2 < 4.4.121-92.129.1
pkg:rpm/suse/kernel-syms?arch=s390x&distro=sles-12&sp=2 < 4.4.121-92.129.1
pkg:rpm/suse/kernel-syms?arch=ppc64le&distro=sles-12&sp=2 < 4.4.121-92.129.1
pkg:rpm/suse/kernel-source?arch=noarch&distro=sles-12&sp=2 < 4.4.121-92.129.1
pkg:rpm/suse/kernel-macros?arch=noarch&distro=sles-12&sp=2 < 4.4.121-92.129.1
pkg:rpm/suse/kernel-devel?arch=noarch&distro=sles-12&sp=2 < 4.4.121-92.129.1
pkg:rpm/suse/kernel-default?arch=x86_64&distro=sles-12&sp=2 < 4.4.121-92.129.1
pkg:rpm/suse/kernel-default?arch=s390x&distro=sles-12&sp=2 < 4.4.121-92.129.1
pkg:rpm/suse/kernel-default?arch=ppc64le&distro=sles-12&sp=2 < 4.4.121-92.129.1
pkg:rpm/suse/kernel-default-man?arch=s390x&distro=sles-12&sp=2 < 4.4.121-92.129.1
pkg:rpm/suse/kernel-default-devel?arch=x86_64&distro=sles-12&sp=2 < 4.4.121-92.129.1
pkg:rpm/suse/kernel-default-devel?arch=s390x&distro=sles-12&sp=2 < 4.4.121-92.129.1
pkg:rpm/suse/kernel-default-devel?arch=ppc64le&distro=sles-12&sp=2 < 4.4.121-92.129.1
pkg:rpm/suse/kernel-default-base?arch=x86_64&distro=sles-12&sp=2 < 4.4.121-92.129.1
pkg:rpm/suse/kernel-default-base?arch=s390x&distro=sles-12&sp=2 < 4.4.121-92.129.1
pkg:rpm/suse/kernel-default-base?arch=ppc64le&distro=sles-12&sp=2 < 4.4.121-92.129.1
ID
SUSE-SU-2020:1255-1
Severity
important
URL
https://www.suse.com/support/update/announcement/2020/suse-su-20201255-1/
Published
2020-05-26T14:11:09
(4 years ago)
Modified
2020-05-26T14:11:09
(4 years ago)
Rights
Copyright 2024 SUSE LLC. All rights reserved.
Other Advisories
Source # ID Name URL
Suse SUSE ratings https://www.suse.com/support/security/rating/
Suse URL of this CSAF notice https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_1255-1.json
Suse URL for SUSE-SU-2020:1255-1 https://www.suse.com/support/update/announcement/2020/suse-su-20201255-1/
Suse E-Mail link for SUSE-SU-2020:1255-1 https://lists.suse.com/pipermail/sle-security-updates/2020-May/006812.html
Bugzilla SUSE Bug 1037216 https://bugzilla.suse.com/1037216
Bugzilla SUSE Bug 1075091 https://bugzilla.suse.com/1075091
Bugzilla SUSE Bug 1075994 https://bugzilla.suse.com/1075994
Bugzilla SUSE Bug 1087082 https://bugzilla.suse.com/1087082
Bugzilla SUSE Bug 1087813 https://bugzilla.suse.com/1087813
Bugzilla SUSE Bug 1091041 https://bugzilla.suse.com/1091041
Bugzilla SUSE Bug 1099279 https://bugzilla.suse.com/1099279
Bugzilla SUSE Bug 1120386 https://bugzilla.suse.com/1120386
Bugzilla SUSE Bug 1131107 https://bugzilla.suse.com/1131107
Bugzilla SUSE Bug 1133147 https://bugzilla.suse.com/1133147
Bugzilla SUSE Bug 1136449 https://bugzilla.suse.com/1136449
Bugzilla SUSE Bug 1137325 https://bugzilla.suse.com/1137325
Bugzilla SUSE Bug 1146519 https://bugzilla.suse.com/1146519
Bugzilla SUSE Bug 1146544 https://bugzilla.suse.com/1146544
Bugzilla SUSE Bug 1146612 https://bugzilla.suse.com/1146612
Bugzilla SUSE Bug 1149591 https://bugzilla.suse.com/1149591
Bugzilla SUSE Bug 1153811 https://bugzilla.suse.com/1153811
Bugzilla SUSE Bug 1154844 https://bugzilla.suse.com/1154844
Bugzilla SUSE Bug 1155311 https://bugzilla.suse.com/1155311
Bugzilla SUSE Bug 1155897 https://bugzilla.suse.com/1155897
Bugzilla SUSE Bug 1156060 https://bugzilla.suse.com/1156060
Bugzilla SUSE Bug 1157038 https://bugzilla.suse.com/1157038
Bugzilla SUSE Bug 1157042 https://bugzilla.suse.com/1157042
Bugzilla SUSE Bug 1157070 https://bugzilla.suse.com/1157070
Bugzilla SUSE Bug 1157143 https://bugzilla.suse.com/1157143
Bugzilla SUSE Bug 1157155 https://bugzilla.suse.com/1157155
Bugzilla SUSE Bug 1157157 https://bugzilla.suse.com/1157157
Bugzilla SUSE Bug 1157158 https://bugzilla.suse.com/1157158
Bugzilla SUSE Bug 1157303 https://bugzilla.suse.com/1157303
Bugzilla SUSE Bug 1157324 https://bugzilla.suse.com/1157324
Bugzilla SUSE Bug 1157333 https://bugzilla.suse.com/1157333
Bugzilla SUSE Bug 1157464 https://bugzilla.suse.com/1157464
Bugzilla SUSE Bug 1157804 https://bugzilla.suse.com/1157804
Bugzilla SUSE Bug 1157923 https://bugzilla.suse.com/1157923
Bugzilla SUSE Bug 1158021 https://bugzilla.suse.com/1158021
Bugzilla SUSE Bug 1158132 https://bugzilla.suse.com/1158132
Bugzilla SUSE Bug 1158381 https://bugzilla.suse.com/1158381
Bugzilla SUSE Bug 1158394 https://bugzilla.suse.com/1158394
Bugzilla SUSE Bug 1158398 https://bugzilla.suse.com/1158398
Bugzilla SUSE Bug 1158410 https://bugzilla.suse.com/1158410
Bugzilla SUSE Bug 1158413 https://bugzilla.suse.com/1158413
Bugzilla SUSE Bug 1158417 https://bugzilla.suse.com/1158417
Bugzilla SUSE Bug 1158427 https://bugzilla.suse.com/1158427
Bugzilla SUSE Bug 1158445 https://bugzilla.suse.com/1158445
Bugzilla SUSE Bug 1158819 https://bugzilla.suse.com/1158819
Bugzilla SUSE Bug 1158823 https://bugzilla.suse.com/1158823
Bugzilla SUSE Bug 1158824 https://bugzilla.suse.com/1158824
Bugzilla SUSE Bug 1158827 https://bugzilla.suse.com/1158827
Bugzilla SUSE Bug 1158834 https://bugzilla.suse.com/1158834
Bugzilla SUSE Bug 1158900 https://bugzilla.suse.com/1158900
Bugzilla SUSE Bug 1158903 https://bugzilla.suse.com/1158903
Bugzilla SUSE Bug 1158904 https://bugzilla.suse.com/1158904
Bugzilla SUSE Bug 1159199 https://bugzilla.suse.com/1159199
Bugzilla SUSE Bug 1159285 https://bugzilla.suse.com/1159285
Bugzilla SUSE Bug 1159297 https://bugzilla.suse.com/1159297
Bugzilla SUSE Bug 1159841 https://bugzilla.suse.com/1159841
Bugzilla SUSE Bug 1159908 https://bugzilla.suse.com/1159908
Bugzilla SUSE Bug 1159910 https://bugzilla.suse.com/1159910
Bugzilla SUSE Bug 1159911 https://bugzilla.suse.com/1159911
Bugzilla SUSE Bug 1159912 https://bugzilla.suse.com/1159912
Bugzilla SUSE Bug 1160195 https://bugzilla.suse.com/1160195
Bugzilla SUSE Bug 1162227 https://bugzilla.suse.com/1162227
Bugzilla SUSE Bug 1162298 https://bugzilla.suse.com/1162298
Bugzilla SUSE Bug 1162928 https://bugzilla.suse.com/1162928
Bugzilla SUSE Bug 1162929 https://bugzilla.suse.com/1162929
Bugzilla SUSE Bug 1162931 https://bugzilla.suse.com/1162931
Bugzilla SUSE Bug 1163971 https://bugzilla.suse.com/1163971
Bugzilla SUSE Bug 1164069 https://bugzilla.suse.com/1164069
Bugzilla SUSE Bug 1164078 https://bugzilla.suse.com/1164078
Bugzilla SUSE Bug 1164846 https://bugzilla.suse.com/1164846
Bugzilla SUSE Bug 1165111 https://bugzilla.suse.com/1165111
Bugzilla SUSE Bug 1165311 https://bugzilla.suse.com/1165311
Bugzilla SUSE Bug 1165873 https://bugzilla.suse.com/1165873
Bugzilla SUSE Bug 1165881 https://bugzilla.suse.com/1165881
Bugzilla SUSE Bug 1165984 https://bugzilla.suse.com/1165984
Bugzilla SUSE Bug 1165985 https://bugzilla.suse.com/1165985
Bugzilla SUSE Bug 1167629 https://bugzilla.suse.com/1167629
Bugzilla SUSE Bug 1168075 https://bugzilla.suse.com/1168075
Bugzilla SUSE Bug 1168295 https://bugzilla.suse.com/1168295
Bugzilla SUSE Bug 1168424 https://bugzilla.suse.com/1168424
Bugzilla SUSE Bug 1168829 https://bugzilla.suse.com/1168829
Bugzilla SUSE Bug 1168854 https://bugzilla.suse.com/1168854
Bugzilla SUSE Bug 1170056 https://bugzilla.suse.com/1170056
Bugzilla SUSE Bug 1170345 https://bugzilla.suse.com/1170345
Bugzilla SUSE Bug 1170778 https://bugzilla.suse.com/1170778
CVE SUSE CVE CVE-2017-18255 page https://www.suse.com/security/cve/CVE-2017-18255/
CVE SUSE CVE CVE-2018-12126 page https://www.suse.com/security/cve/CVE-2018-12126/
CVE SUSE CVE CVE-2018-12127 page https://www.suse.com/security/cve/CVE-2018-12127/
CVE SUSE CVE CVE-2018-12130 page https://www.suse.com/security/cve/CVE-2018-12130/
CVE SUSE CVE CVE-2018-21008 page https://www.suse.com/security/cve/CVE-2018-21008/
CVE SUSE CVE CVE-2019-11091 page https://www.suse.com/security/cve/CVE-2019-11091/
CVE SUSE CVE CVE-2019-14615 page https://www.suse.com/security/cve/CVE-2019-14615/
CVE SUSE CVE CVE-2019-14895 page https://www.suse.com/security/cve/CVE-2019-14895/
CVE SUSE CVE CVE-2019-14896 page https://www.suse.com/security/cve/CVE-2019-14896/
CVE SUSE CVE CVE-2019-14897 page https://www.suse.com/security/cve/CVE-2019-14897/
CVE SUSE CVE CVE-2019-14901 page https://www.suse.com/security/cve/CVE-2019-14901/
CVE SUSE CVE CVE-2019-15213 page https://www.suse.com/security/cve/CVE-2019-15213/
CVE SUSE CVE CVE-2019-18660 page https://www.suse.com/security/cve/CVE-2019-18660/
CVE SUSE CVE CVE-2019-18675 page https://www.suse.com/security/cve/CVE-2019-18675/
CVE SUSE CVE CVE-2019-18683 page https://www.suse.com/security/cve/CVE-2019-18683/
CVE SUSE CVE CVE-2019-19052 page https://www.suse.com/security/cve/CVE-2019-19052/
CVE SUSE CVE CVE-2019-19062 page https://www.suse.com/security/cve/CVE-2019-19062/
CVE SUSE CVE CVE-2019-19066 page https://www.suse.com/security/cve/CVE-2019-19066/
CVE SUSE CVE CVE-2019-19073 page https://www.suse.com/security/cve/CVE-2019-19073/
CVE SUSE CVE CVE-2019-19074 page https://www.suse.com/security/cve/CVE-2019-19074/
CVE SUSE CVE CVE-2019-19319 page https://www.suse.com/security/cve/CVE-2019-19319/
CVE SUSE CVE CVE-2019-19332 page https://www.suse.com/security/cve/CVE-2019-19332/
CVE SUSE CVE CVE-2019-19447 page https://www.suse.com/security/cve/CVE-2019-19447/
CVE SUSE CVE CVE-2019-19523 page https://www.suse.com/security/cve/CVE-2019-19523/
CVE SUSE CVE CVE-2019-19524 page https://www.suse.com/security/cve/CVE-2019-19524/
CVE SUSE CVE CVE-2019-19525 page https://www.suse.com/security/cve/CVE-2019-19525/
CVE SUSE CVE CVE-2019-19527 page https://www.suse.com/security/cve/CVE-2019-19527/
CVE SUSE CVE CVE-2019-19530 page https://www.suse.com/security/cve/CVE-2019-19530/
CVE SUSE CVE CVE-2019-19531 page https://www.suse.com/security/cve/CVE-2019-19531/
CVE SUSE CVE CVE-2019-19532 page https://www.suse.com/security/cve/CVE-2019-19532/
CVE SUSE CVE CVE-2019-19533 page https://www.suse.com/security/cve/CVE-2019-19533/
CVE SUSE CVE CVE-2019-19534 page https://www.suse.com/security/cve/CVE-2019-19534/
CVE SUSE CVE CVE-2019-19535 page https://www.suse.com/security/cve/CVE-2019-19535/
CVE SUSE CVE CVE-2019-19536 page https://www.suse.com/security/cve/CVE-2019-19536/
CVE SUSE CVE CVE-2019-19537 page https://www.suse.com/security/cve/CVE-2019-19537/
CVE SUSE CVE CVE-2019-19767 page https://www.suse.com/security/cve/CVE-2019-19767/
CVE SUSE CVE CVE-2019-19768 page https://www.suse.com/security/cve/CVE-2019-19768/
CVE SUSE CVE CVE-2019-19965 page https://www.suse.com/security/cve/CVE-2019-19965/
CVE SUSE CVE CVE-2019-19966 page https://www.suse.com/security/cve/CVE-2019-19966/
CVE SUSE CVE CVE-2019-20054 page https://www.suse.com/security/cve/CVE-2019-20054/
CVE SUSE CVE CVE-2019-20096 page https://www.suse.com/security/cve/CVE-2019-20096/
CVE SUSE CVE CVE-2019-3701 page https://www.suse.com/security/cve/CVE-2019-3701/
CVE SUSE CVE CVE-2019-5108 page https://www.suse.com/security/cve/CVE-2019-5108/
CVE SUSE CVE CVE-2019-9455 page https://www.suse.com/security/cve/CVE-2019-9455/
CVE SUSE CVE CVE-2019-9458 page https://www.suse.com/security/cve/CVE-2019-9458/
CVE SUSE CVE CVE-2020-10690 page https://www.suse.com/security/cve/CVE-2020-10690/
CVE SUSE CVE CVE-2020-10720 page https://www.suse.com/security/cve/CVE-2020-10720/
CVE SUSE CVE CVE-2020-10942 page https://www.suse.com/security/cve/CVE-2020-10942/
CVE SUSE CVE CVE-2020-11494 page https://www.suse.com/security/cve/CVE-2020-11494/
CVE SUSE CVE CVE-2020-11608 page https://www.suse.com/security/cve/CVE-2020-11608/
CVE SUSE CVE CVE-2020-11609 page https://www.suse.com/security/cve/CVE-2020-11609/
CVE SUSE CVE CVE-2020-2732 page https://www.suse.com/security/cve/CVE-2020-2732/
CVE SUSE CVE CVE-2020-8647 page https://www.suse.com/security/cve/CVE-2020-8647/
CVE SUSE CVE CVE-2020-8648 page https://www.suse.com/security/cve/CVE-2020-8648/
CVE SUSE CVE CVE-2020-8649 page https://www.suse.com/security/cve/CVE-2020-8649/
CVE SUSE CVE CVE-2020-8992 page https://www.suse.com/security/cve/CVE-2020-8992/
CVE SUSE CVE CVE-2020-9383 page https://www.suse.com/security/cve/CVE-2020-9383/
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/suse/kgraft-patch-4_4_121-92_129-default?arch=x86_64&distro=sles-12&sp=2 suse kgraft-patch-4_4_121-92_129-default < 1-3.3.1 sles-12 x86_64
Affected pkg:rpm/suse/kgraft-patch-4_4_121-92_129-default?arch=ppc64le&distro=sles-12&sp=2 suse kgraft-patch-4_4_121-92_129-default < 1-3.3.1 sles-12 ppc64le
Affected pkg:rpm/suse/kernel-syms?arch=x86_64&distro=sles-12&sp=2 suse kernel-syms < 4.4.121-92.129.1 sles-12 x86_64
Affected pkg:rpm/suse/kernel-syms?arch=s390x&distro=sles-12&sp=2 suse kernel-syms < 4.4.121-92.129.1 sles-12 s390x
Affected pkg:rpm/suse/kernel-syms?arch=ppc64le&distro=sles-12&sp=2 suse kernel-syms < 4.4.121-92.129.1 sles-12 ppc64le
Affected pkg:rpm/suse/kernel-source?arch=noarch&distro=sles-12&sp=2 suse kernel-source < 4.4.121-92.129.1 sles-12 noarch
Affected pkg:rpm/suse/kernel-macros?arch=noarch&distro=sles-12&sp=2 suse kernel-macros < 4.4.121-92.129.1 sles-12 noarch
Affected pkg:rpm/suse/kernel-devel?arch=noarch&distro=sles-12&sp=2 suse kernel-devel < 4.4.121-92.129.1 sles-12 noarch
Affected pkg:rpm/suse/kernel-default?arch=x86_64&distro=sles-12&sp=2 suse kernel-default < 4.4.121-92.129.1 sles-12 x86_64
Affected pkg:rpm/suse/kernel-default?arch=s390x&distro=sles-12&sp=2 suse kernel-default < 4.4.121-92.129.1 sles-12 s390x
Affected pkg:rpm/suse/kernel-default?arch=ppc64le&distro=sles-12&sp=2 suse kernel-default < 4.4.121-92.129.1 sles-12 ppc64le
Affected pkg:rpm/suse/kernel-default-man?arch=s390x&distro=sles-12&sp=2 suse kernel-default-man < 4.4.121-92.129.1 sles-12 s390x
Affected pkg:rpm/suse/kernel-default-devel?arch=x86_64&distro=sles-12&sp=2 suse kernel-default-devel < 4.4.121-92.129.1 sles-12 x86_64
Affected pkg:rpm/suse/kernel-default-devel?arch=s390x&distro=sles-12&sp=2 suse kernel-default-devel < 4.4.121-92.129.1 sles-12 s390x
Affected pkg:rpm/suse/kernel-default-devel?arch=ppc64le&distro=sles-12&sp=2 suse kernel-default-devel < 4.4.121-92.129.1 sles-12 ppc64le
Affected pkg:rpm/suse/kernel-default-base?arch=x86_64&distro=sles-12&sp=2 suse kernel-default-base < 4.4.121-92.129.1 sles-12 x86_64
Affected pkg:rpm/suse/kernel-default-base?arch=s390x&distro=sles-12&sp=2 suse kernel-default-base < 4.4.121-92.129.1 sles-12 s390x
Affected pkg:rpm/suse/kernel-default-base?arch=ppc64le&distro=sles-12&sp=2 suse kernel-default-base < 4.4.121-92.129.1 sles-12 ppc64le
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date