[SUSE-SU-2021:1395-1] Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP2)

Severity Important

CVEs 3

Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-24_52 fixes several issues.

The following security issues were fixed:

CVE-2021-3444: Fixed an issue with the bpf verifier which did not properly handle mod32 destination register truncation when the source register was known to be 0 leading to out of bounds read (bsc#1184171).
CVE-2021-28660: Fixed an out of bounds write in rtw_wx_set_scan (bsc#1183658).
CVE-2021-28688: Fixed an issue introduced by XSA-365 (bsc##1182294, bsc#1183646).

ID

SUSE-SU-2021:1395-1

Severity

important

URL

Published

2021-04-28T07:22:38
(3 years ago)

Modified

2021-04-28T07:22:38
(3 years ago)

Rights

Other Advisories

Source	Name	URL
Suse	SUSE ratings	https://www.suse.com/support/security/rating/
Suse	URL of this CSAF notice	https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_1395-1.json
Suse	URL for SUSE-SU-2021:1395-1	https://www.suse.com/support/update/announcement/2021/suse-su-20211395-1/
Suse	E-Mail link for SUSE-SU-2021:1395-1	https://lists.suse.com/pipermail/sle-security-updates/2021-April/008686.html
Bugzilla	SUSE Bug 1182294	https://bugzilla.suse.com/1182294
Bugzilla	SUSE Bug 1183658	https://bugzilla.suse.com/1183658
Bugzilla	SUSE Bug 1184171	https://bugzilla.suse.com/1184171
CVE	SUSE CVE CVE-2021-28660 page	https://www.suse.com/security/cve/CVE-2021-28660/
CVE	SUSE CVE CVE-2021-28688 page	https://www.suse.com/security/cve/CVE-2021-28688/
CVE	SUSE CVE CVE-2021-3444 page	https://www.suse.com/security/cve/CVE-2021-3444/

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date