1. Home
  2. Security Advisories
  3. SUSE
  4. SUSE-SU-2021:1891-1

[SUSE-SU-2021:1891-1] Security update for the Linux Kernel

Severity Important
Affected Packages 20
CVEs 12
Info Packages References Vulnerabilities

Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP4 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • CVE-2021-33200: Enforcing incorrect limits for pointer arithmetic operations by the BPF verifier could be abused to perform out-of-bounds reads and writes in kernel memory (bsc#1186484).
  • CVE-2021-33034: Fixed a use-after-free when destroying an hci_chan. This could lead to writing an arbitrary values. (bsc#1186111)
  • CVE-2020-26139: Fixed a denial-of-service when an Access Point (AP) forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. (bnc#1186062)
  • CVE-2021-23134: A Use After Free vulnerability in nfc sockets allowed local attackers to elevate their privileges. (bnc#1186060)
  • CVE-2021-23133: Fixed a race condition in SCTP sockets, which could lead to privilege escalation from the context of a network service or an unprivileged process. (bnc#1184675)
  • CVE-2021-3491: Fixed a potential heap overflow in mem_rw(). This vulnerability is related to the PROVIDE_BUFFERS operation, which allowed the MAX_RW_COUNT limit to be bypassed (bsc#1185642).
  • CVE-2021-32399: Fixed a race condition when removing the HCI controller (bnc#1184611).
  • CVE-2020-24586: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that received fragments be cleared from memory after (re)connecting to a network. Under the right circumstances this can be abused to inject arbitrary network packets and/or exfiltrate user data (bnc#1185859).
  • CVE-2020-24587: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP encryption key is periodically renewed (bnc#1185859 bnc#1185862).
  • CVE-2020-26147: The WEP, WPA, WPA2, and WPA3 implementations reassemble fragments, even though some of them were sent in plaintext. This vulnerability can be abused to inject packets and/or exfiltrate selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP data-confidentiality protocol is used (bnc#1185859).
  • CVE-2020-26145: An issue was discovered with Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept second (or subsequent) broadcast fragments even when sent in plaintext and process them as full unfragmented frames. An adversary can abuse this to inject arbitrary network packets independent of the network configuration. (bnc#1185860)
  • CVE-2020-26141: An issue was discovered in the ALFA driver for AWUS036H, where the Message Integrity Check (authenticity) of fragmented TKIP frames was not verified. An adversary can abuse this to inject and possibly decrypt packets in WPA or WPA2 networks that support the TKIP data-confidentiality protocol. (bnc#1185987)

The following non-security bugs were fixed:

  • Drivers: hv: vmbus: Increase wait time for VMbus unload (bsc#1185724).
  • Drivers: hv: vmbus: Initialize unload_event statically (bsc#1185724).
  • af_packet: fix the tx skb protocol in raw sockets with ETH_P_ALL (bsc#1176081).
  • ibmvfc: Avoid move login if fast fail is enabled (bsc#1185938 ltc#192043).
  • ibmvfc: Handle move login failure (bsc#1185938 ltc#192043).
  • ibmvfc: Reinit target retries (bsc#1185938 ltc#192043).
  • kABI: Fix kABI after modifying struct __call_single_data (bsc#1180846).
  • kabi: preserve struct header_ops after bsc#1176081 fix (bsc#1176081).
  • kernel/smp: Provide CSD lock timeout diagnostics (bsc#1180846).
  • kernel/smp: add boot parameter for controlling CSD lock debugging (bsc#1180846).
  • kernel/smp: add more data to CSD lock debugging (bsc#1180846).
  • kernel/smp: make csdlock timeout depend on boot parameter (bsc#1180846).
  • kernel/smp: prepare more CSD lock debugging (bsc#1180846).
  • md/raid1: properly indicate failure when ending a failed write request (bsc#1185680).
  • net/ethernet: Add parse_protocol header_ops support (bsc#1176081).
  • net/mlx5e: Remove the wrong assumption about transport offset (bsc#1176081).
  • net/mlx5e: Trust kernel regarding transport offset (bsc#1176081).
  • net/packet: Ask driver for protocol if not provided by user (bsc#1176081).
  • net/packet: Remove redundant skb->protocol set (bsc#1176081).
  • net: Do not set transport offset to invalid value (bsc#1176081).
  • net: Introduce parse_protocol header_ops callback (bsc#1176081).
  • netfilter: conntrack: add new sysctl to disable RST check (bsc#1183947 bsc#1185950).
  • netfilter: conntrack: avoid misleading 'invalid' in log message (bsc#1183947 bsc#1185950).
  • netfilter: conntrack: improve RST handling when tuple is re-used (bsc#1183947 bsc#1185950).
  • netfilter: conntrack: tcp: only close if RST matches exact sequence (bsc#1183947 bsc#1185950).
  • s390/entry: save the caller of psw_idle (bsc#1185677).
  • smp: Add source and destination CPUs to __call_single_data (bsc#1180846).
  • video: hyperv_fb: Add ratelimit on error message (bsc#1185724).
Package Affected Version
pkg:rpm/suse/kernel-syms?arch=x86_64&distro=sles-12&sp=4 < 4.12.14-95.77.1
pkg:rpm/suse/kernel-syms?arch=s390x&distro=sles-12&sp=4 < 4.12.14-95.77.1
pkg:rpm/suse/kernel-syms?arch=ppc64le&distro=sles-12&sp=4 < 4.12.14-95.77.1
pkg:rpm/suse/kernel-syms?arch=aarch64&distro=sles-12&sp=4 < 4.12.14-95.77.1
pkg:rpm/suse/kernel-source?arch=noarch&distro=sles-12&sp=4 < 4.12.14-95.77.1
pkg:rpm/suse/kernel-macros?arch=noarch&distro=sles-12&sp=4 < 4.12.14-95.77.1
pkg:rpm/suse/kernel-devel?arch=noarch&distro=sles-12&sp=4 < 4.12.14-95.77.1
pkg:rpm/suse/kernel-default?arch=x86_64&distro=sles-12&sp=4 < 4.12.14-95.77.1
pkg:rpm/suse/kernel-default?arch=s390x&distro=sles-12&sp=4 < 4.12.14-95.77.1
pkg:rpm/suse/kernel-default?arch=ppc64le&distro=sles-12&sp=4 < 4.12.14-95.77.1
pkg:rpm/suse/kernel-default?arch=aarch64&distro=sles-12&sp=4 < 4.12.14-95.77.1
pkg:rpm/suse/kernel-default-man?arch=s390x&distro=sles-12&sp=4 < 4.12.14-95.77.1
pkg:rpm/suse/kernel-default-devel?arch=x86_64&distro=sles-12&sp=4 < 4.12.14-95.77.1
pkg:rpm/suse/kernel-default-devel?arch=s390x&distro=sles-12&sp=4 < 4.12.14-95.77.1
pkg:rpm/suse/kernel-default-devel?arch=ppc64le&distro=sles-12&sp=4 < 4.12.14-95.77.1
pkg:rpm/suse/kernel-default-devel?arch=aarch64&distro=sles-12&sp=4 < 4.12.14-95.77.1
pkg:rpm/suse/kernel-default-base?arch=x86_64&distro=sles-12&sp=4 < 4.12.14-95.77.1
pkg:rpm/suse/kernel-default-base?arch=s390x&distro=sles-12&sp=4 < 4.12.14-95.77.1
pkg:rpm/suse/kernel-default-base?arch=ppc64le&distro=sles-12&sp=4 < 4.12.14-95.77.1
pkg:rpm/suse/kernel-default-base?arch=aarch64&distro=sles-12&sp=4 < 4.12.14-95.77.1
ID
SUSE-SU-2021:1891-1
Severity
important
URL
https://www.suse.com/support/update/announcement/2021/suse-su-20211891-1/
Published
2021-06-08T13:09:12
(3 years ago)
Modified
2021-06-08T13:09:12
(3 years ago)
Rights
Copyright 2024 SUSE LLC. All rights reserved.
Other Advisories
Source # ID Name URL
Suse SUSE ratings https://www.suse.com/support/security/rating/
Suse URL of this CSAF notice https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_1891-1.json
Suse URL for SUSE-SU-2021:1891-1 https://www.suse.com/support/update/announcement/2021/suse-su-20211891-1/
Suse E-Mail link for SUSE-SU-2021:1891-1 https://lists.suse.com/pipermail/sle-security-updates/2021-June/008946.html
Bugzilla SUSE Bug 1176081 https://bugzilla.suse.com/1176081
Bugzilla SUSE Bug 1180846 https://bugzilla.suse.com/1180846
Bugzilla SUSE Bug 1183947 https://bugzilla.suse.com/1183947
Bugzilla SUSE Bug 1184611 https://bugzilla.suse.com/1184611
Bugzilla SUSE Bug 1184675 https://bugzilla.suse.com/1184675
Bugzilla SUSE Bug 1185642 https://bugzilla.suse.com/1185642
Bugzilla SUSE Bug 1185677 https://bugzilla.suse.com/1185677
Bugzilla SUSE Bug 1185680 https://bugzilla.suse.com/1185680
Bugzilla SUSE Bug 1185724 https://bugzilla.suse.com/1185724
Bugzilla SUSE Bug 1185859 https://bugzilla.suse.com/1185859
Bugzilla SUSE Bug 1185860 https://bugzilla.suse.com/1185860
Bugzilla SUSE Bug 1185862 https://bugzilla.suse.com/1185862
Bugzilla SUSE Bug 1185863 https://bugzilla.suse.com/1185863
Bugzilla SUSE Bug 1185898 https://bugzilla.suse.com/1185898
Bugzilla SUSE Bug 1185899 https://bugzilla.suse.com/1185899
Bugzilla SUSE Bug 1185901 https://bugzilla.suse.com/1185901
Bugzilla SUSE Bug 1185938 https://bugzilla.suse.com/1185938
Bugzilla SUSE Bug 1185950 https://bugzilla.suse.com/1185950
Bugzilla SUSE Bug 1185987 https://bugzilla.suse.com/1185987
Bugzilla SUSE Bug 1186060 https://bugzilla.suse.com/1186060
Bugzilla SUSE Bug 1186061 https://bugzilla.suse.com/1186061
Bugzilla SUSE Bug 1186062 https://bugzilla.suse.com/1186062
Bugzilla SUSE Bug 1186111 https://bugzilla.suse.com/1186111
Bugzilla SUSE Bug 1186285 https://bugzilla.suse.com/1186285
Bugzilla SUSE Bug 1186390 https://bugzilla.suse.com/1186390
Bugzilla SUSE Bug 1186484 https://bugzilla.suse.com/1186484
Bugzilla SUSE Bug 1186498 https://bugzilla.suse.com/1186498
CVE SUSE CVE CVE-2020-24586 page https://www.suse.com/security/cve/CVE-2020-24586/
CVE SUSE CVE CVE-2020-24587 page https://www.suse.com/security/cve/CVE-2020-24587/
CVE SUSE CVE CVE-2020-26139 page https://www.suse.com/security/cve/CVE-2020-26139/
CVE SUSE CVE CVE-2020-26141 page https://www.suse.com/security/cve/CVE-2020-26141/
CVE SUSE CVE CVE-2020-26145 page https://www.suse.com/security/cve/CVE-2020-26145/
CVE SUSE CVE CVE-2020-26147 page https://www.suse.com/security/cve/CVE-2020-26147/
CVE SUSE CVE CVE-2021-23133 page https://www.suse.com/security/cve/CVE-2021-23133/
CVE SUSE CVE CVE-2021-23134 page https://www.suse.com/security/cve/CVE-2021-23134/
CVE SUSE CVE CVE-2021-32399 page https://www.suse.com/security/cve/CVE-2021-32399/
CVE SUSE CVE CVE-2021-33034 page https://www.suse.com/security/cve/CVE-2021-33034/
CVE SUSE CVE CVE-2021-33200 page https://www.suse.com/security/cve/CVE-2021-33200/
CVE SUSE CVE CVE-2021-3491 page https://www.suse.com/security/cve/CVE-2021-3491/
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/suse/kernel-syms?arch=x86_64&distro=sles-12&sp=4 suse kernel-syms < 4.12.14-95.77.1 sles-12 x86_64
Affected pkg:rpm/suse/kernel-syms?arch=s390x&distro=sles-12&sp=4 suse kernel-syms < 4.12.14-95.77.1 sles-12 s390x
Affected pkg:rpm/suse/kernel-syms?arch=ppc64le&distro=sles-12&sp=4 suse kernel-syms < 4.12.14-95.77.1 sles-12 ppc64le
Affected pkg:rpm/suse/kernel-syms?arch=aarch64&distro=sles-12&sp=4 suse kernel-syms < 4.12.14-95.77.1 sles-12 aarch64
Affected pkg:rpm/suse/kernel-source?arch=noarch&distro=sles-12&sp=4 suse kernel-source < 4.12.14-95.77.1 sles-12 noarch
Affected pkg:rpm/suse/kernel-macros?arch=noarch&distro=sles-12&sp=4 suse kernel-macros < 4.12.14-95.77.1 sles-12 noarch
Affected pkg:rpm/suse/kernel-devel?arch=noarch&distro=sles-12&sp=4 suse kernel-devel < 4.12.14-95.77.1 sles-12 noarch
Affected pkg:rpm/suse/kernel-default?arch=x86_64&distro=sles-12&sp=4 suse kernel-default < 4.12.14-95.77.1 sles-12 x86_64
Affected pkg:rpm/suse/kernel-default?arch=s390x&distro=sles-12&sp=4 suse kernel-default < 4.12.14-95.77.1 sles-12 s390x
Affected pkg:rpm/suse/kernel-default?arch=ppc64le&distro=sles-12&sp=4 suse kernel-default < 4.12.14-95.77.1 sles-12 ppc64le
Affected pkg:rpm/suse/kernel-default?arch=aarch64&distro=sles-12&sp=4 suse kernel-default < 4.12.14-95.77.1 sles-12 aarch64
Affected pkg:rpm/suse/kernel-default-man?arch=s390x&distro=sles-12&sp=4 suse kernel-default-man < 4.12.14-95.77.1 sles-12 s390x
Affected pkg:rpm/suse/kernel-default-devel?arch=x86_64&distro=sles-12&sp=4 suse kernel-default-devel < 4.12.14-95.77.1 sles-12 x86_64
Affected pkg:rpm/suse/kernel-default-devel?arch=s390x&distro=sles-12&sp=4 suse kernel-default-devel < 4.12.14-95.77.1 sles-12 s390x
Affected pkg:rpm/suse/kernel-default-devel?arch=ppc64le&distro=sles-12&sp=4 suse kernel-default-devel < 4.12.14-95.77.1 sles-12 ppc64le
Affected pkg:rpm/suse/kernel-default-devel?arch=aarch64&distro=sles-12&sp=4 suse kernel-default-devel < 4.12.14-95.77.1 sles-12 aarch64
Affected pkg:rpm/suse/kernel-default-base?arch=x86_64&distro=sles-12&sp=4 suse kernel-default-base < 4.12.14-95.77.1 sles-12 x86_64
Affected pkg:rpm/suse/kernel-default-base?arch=s390x&distro=sles-12&sp=4 suse kernel-default-base < 4.12.14-95.77.1 sles-12 s390x
Affected pkg:rpm/suse/kernel-default-base?arch=ppc64le&distro=sles-12&sp=4 suse kernel-default-base < 4.12.14-95.77.1 sles-12 ppc64le
Affected pkg:rpm/suse/kernel-default-base?arch=aarch64&distro=sles-12&sp=4 suse kernel-default-base < 4.12.14-95.77.1 sles-12 aarch64
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date