[SUSE-SU-2021:0870-1] Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP3)

Severity Important

Affected Packages 22

CVEs 3

Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP3)

This update for the Linux Kernel 4.4.180-94_116 fixes several issues.

The following security issues were fixed:

CVE-2021-3347: Fixed a use-after-free in the PI futexes during fault handling, allowing local users to execute code in the kernel (bsc#1181553).
CVE-2020-27786: Fixed a potential user after free which could have led to memory corruption or privilege escalation (bsc#1179616).
CVE-2020-28374: Fixed insufficient identifier checking in the LIO SCSI target code which could have been used by remote attackers to read or write files via directory traversal in an XCOPY request (bsc#1178684).

Package	Affected Version
pkg:rpm/suse/kgraft-patch-4_4_180-94_135-default?arch=x86_64&distro=sles-12&sp=3	< 4-2.2
pkg:rpm/suse/kgraft-patch-4_4_180-94_135-default?arch=ppc64le&distro=sles-12&sp=3	< 4-2.2
pkg:rpm/suse/kgraft-patch-4_4_180-94_130-default?arch=x86_64&distro=sles-12&sp=3	< 6-2.2
pkg:rpm/suse/kgraft-patch-4_4_180-94_130-default?arch=ppc64le&distro=sles-12&sp=3	< 6-2.2
pkg:rpm/suse/kgraft-patch-4_4_180-94_127-default?arch=x86_64&distro=sles-12&sp=3	< 7-2.2
pkg:rpm/suse/kgraft-patch-4_4_180-94_127-default?arch=ppc64le&distro=sles-12&sp=3	< 7-2.2
pkg:rpm/suse/kgraft-patch-4_4_180-94_124-default?arch=x86_64&distro=sles-12&sp=3	< 7-2.2
pkg:rpm/suse/kgraft-patch-4_4_180-94_124-default?arch=ppc64le&distro=sles-12&sp=3	< 7-2.2
pkg:rpm/suse/kgraft-patch-4_4_180-94_121-default?arch=x86_64&distro=sles-12&sp=3	< 7-2.2
pkg:rpm/suse/kgraft-patch-4_4_180-94_121-default?arch=ppc64le&distro=sles-12&sp=3	< 7-2.2
pkg:rpm/suse/kgraft-patch-4_4_180-94_116-default?arch=x86_64&distro=sles-12&sp=3	< 8-2.2
pkg:rpm/suse/kgraft-patch-4_4_180-94_116-default?arch=ppc64le&distro=sles-12&sp=3	< 8-2.2
pkg:rpm/suse/kgraft-patch-4_4_121-92_146-default?arch=x86_64&distro=sles-12&sp=2	< 4-2.2
pkg:rpm/suse/kgraft-patch-4_4_121-92_146-default?arch=ppc64le&distro=sles-12&sp=2	< 4-2.2
pkg:rpm/suse/kgraft-patch-4_4_121-92_141-default?arch=x86_64&distro=sles-12&sp=2	< 6-2.2
pkg:rpm/suse/kgraft-patch-4_4_121-92_141-default?arch=ppc64le&distro=sles-12&sp=2	< 6-2.2
pkg:rpm/suse/kgraft-patch-4_4_121-92_138-default?arch=x86_64&distro=sles-12&sp=2	< 7-2.2
pkg:rpm/suse/kgraft-patch-4_4_121-92_138-default?arch=ppc64le&distro=sles-12&sp=2	< 7-2.2
pkg:rpm/suse/kgraft-patch-4_4_121-92_135-default?arch=x86_64&distro=sles-12&sp=2	< 7-2.2
pkg:rpm/suse/kgraft-patch-4_4_121-92_135-default?arch=ppc64le&distro=sles-12&sp=2	< 7-2.2
pkg:rpm/suse/kgraft-patch-4_4_121-92_129-default?arch=x86_64&distro=sles-12&sp=2	< 9-2.2
pkg:rpm/suse/kgraft-patch-4_4_121-92_129-default?arch=ppc64le&distro=sles-12&sp=2	< 9-2.2

ID

SUSE-SU-2021:0870-1

Severity

important

URL

https://www.suse.com/support/update/announcement/2021/suse-su-20210870-1/

Published

2021-03-17T16:16:01
(3 years ago)

Modified

2021-03-17T16:16:01
(3 years ago)

Rights

Other Advisories

Source	Name	URL
Suse	SUSE ratings	https://www.suse.com/support/security/rating/
Suse	URL of this CSAF notice	https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_0870-1.json
Suse	URL for SUSE-SU-2021:0870-1	https://www.suse.com/support/update/announcement/2021/suse-su-20210870-1/
Suse	E-Mail link for SUSE-SU-2021:0870-1	https://lists.suse.com/pipermail/sle-security-updates/2021-March/008497.html
Bugzilla	SUSE Bug 1178684	https://bugzilla.suse.com/1178684
Bugzilla	SUSE Bug 1179616	https://bugzilla.suse.com/1179616
Bugzilla	SUSE Bug 1181553	https://bugzilla.suse.com/1181553
CVE	SUSE CVE CVE-2020-27786 page	https://www.suse.com/security/cve/CVE-2020-27786/
CVE	SUSE CVE CVE-2020-28374 page	https://www.suse.com/security/cve/CVE-2020-28374/
CVE	SUSE CVE CVE-2021-3347 page	https://www.suse.com/security/cve/CVE-2021-3347/

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform	Arch
Affected	pkg:rpm/suse/kgraft-patch-4_4_180-94_135-default?arch=x86_64&distro=sles-12&sp=3	suse	kgraft-patch-4_4_180-94_135-default	< 4-2.2	sles-12	x86_64
Affected	pkg:rpm/suse/kgraft-patch-4_4_180-94_135-default?arch=ppc64le&distro=sles-12&sp=3	suse	kgraft-patch-4_4_180-94_135-default	< 4-2.2	sles-12	ppc64le
Affected	pkg:rpm/suse/kgraft-patch-4_4_180-94_130-default?arch=x86_64&distro=sles-12&sp=3	suse	kgraft-patch-4_4_180-94_130-default	< 6-2.2	sles-12	x86_64
Affected	pkg:rpm/suse/kgraft-patch-4_4_180-94_130-default?arch=ppc64le&distro=sles-12&sp=3	suse	kgraft-patch-4_4_180-94_130-default	< 6-2.2	sles-12	ppc64le
Affected	pkg:rpm/suse/kgraft-patch-4_4_180-94_127-default?arch=x86_64&distro=sles-12&sp=3	suse	kgraft-patch-4_4_180-94_127-default	< 7-2.2	sles-12	x86_64
Affected	pkg:rpm/suse/kgraft-patch-4_4_180-94_127-default?arch=ppc64le&distro=sles-12&sp=3	suse	kgraft-patch-4_4_180-94_127-default	< 7-2.2	sles-12	ppc64le
Affected	pkg:rpm/suse/kgraft-patch-4_4_180-94_124-default?arch=x86_64&distro=sles-12&sp=3	suse	kgraft-patch-4_4_180-94_124-default	< 7-2.2	sles-12	x86_64
Affected	pkg:rpm/suse/kgraft-patch-4_4_180-94_124-default?arch=ppc64le&distro=sles-12&sp=3	suse	kgraft-patch-4_4_180-94_124-default	< 7-2.2	sles-12	ppc64le
Affected	pkg:rpm/suse/kgraft-patch-4_4_180-94_121-default?arch=x86_64&distro=sles-12&sp=3	suse	kgraft-patch-4_4_180-94_121-default	< 7-2.2	sles-12	x86_64
Affected	pkg:rpm/suse/kgraft-patch-4_4_180-94_121-default?arch=ppc64le&distro=sles-12&sp=3	suse	kgraft-patch-4_4_180-94_121-default	< 7-2.2	sles-12	ppc64le
Affected	pkg:rpm/suse/kgraft-patch-4_4_180-94_116-default?arch=x86_64&distro=sles-12&sp=3	suse	kgraft-patch-4_4_180-94_116-default	< 8-2.2	sles-12	x86_64
Affected	pkg:rpm/suse/kgraft-patch-4_4_180-94_116-default?arch=ppc64le&distro=sles-12&sp=3	suse	kgraft-patch-4_4_180-94_116-default	< 8-2.2	sles-12	ppc64le
Affected	pkg:rpm/suse/kgraft-patch-4_4_121-92_146-default?arch=x86_64&distro=sles-12&sp=2	suse	kgraft-patch-4_4_121-92_146-default	< 4-2.2	sles-12	x86_64
Affected	pkg:rpm/suse/kgraft-patch-4_4_121-92_146-default?arch=ppc64le&distro=sles-12&sp=2	suse	kgraft-patch-4_4_121-92_146-default	< 4-2.2	sles-12	ppc64le
Affected	pkg:rpm/suse/kgraft-patch-4_4_121-92_141-default?arch=x86_64&distro=sles-12&sp=2	suse	kgraft-patch-4_4_121-92_141-default	< 6-2.2	sles-12	x86_64
Affected	pkg:rpm/suse/kgraft-patch-4_4_121-92_141-default?arch=ppc64le&distro=sles-12&sp=2	suse	kgraft-patch-4_4_121-92_141-default	< 6-2.2	sles-12	ppc64le
Affected	pkg:rpm/suse/kgraft-patch-4_4_121-92_138-default?arch=x86_64&distro=sles-12&sp=2	suse	kgraft-patch-4_4_121-92_138-default	< 7-2.2	sles-12	x86_64
Affected	pkg:rpm/suse/kgraft-patch-4_4_121-92_138-default?arch=ppc64le&distro=sles-12&sp=2	suse	kgraft-patch-4_4_121-92_138-default	< 7-2.2	sles-12	ppc64le
Affected	pkg:rpm/suse/kgraft-patch-4_4_121-92_135-default?arch=x86_64&distro=sles-12&sp=2	suse	kgraft-patch-4_4_121-92_135-default	< 7-2.2	sles-12	x86_64
Affected	pkg:rpm/suse/kgraft-patch-4_4_121-92_135-default?arch=ppc64le&distro=sles-12&sp=2	suse	kgraft-patch-4_4_121-92_135-default	< 7-2.2	sles-12	ppc64le
Affected	pkg:rpm/suse/kgraft-patch-4_4_121-92_129-default?arch=x86_64&distro=sles-12&sp=2	suse	kgraft-patch-4_4_121-92_129-default	< 9-2.2	sles-12	x86_64
Affected	pkg:rpm/suse/kgraft-patch-4_4_121-92_129-default?arch=ppc64le&distro=sles-12&sp=2	suse	kgraft-patch-4_4_121-92_129-default	< 9-2.2	sles-12	ppc64le

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date