[SUSE-SU-2021:2538-1] Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3)
Severity
Important
Affected Packages
12
CVEs
3
Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3)
This update for the Linux Kernel 4.4.180-94_127 fixes several issues.
The following security issues were fixed:
- CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to andobtain full root privileges. (bsc#1188062)
- CVE-2021-22555: Fixed an heap out-of-bounds write in net/netfilter/x_tables.c that could allow local provilege escalation. (bsc#1188116)
- CVE-2020-36385: Fixed a use-after-free vulnerability reached via the ctx_list in some ucma_migrate_id situations where ucma_close is called. (bnc#1187050)
- ID
- SUSE-SU-2021:2538-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2021/suse-su-20212538-1/
- Published
-
2021-07-27T15:37:16
(3 years ago) - Modified
-
2021-07-27T15:37:16
(3 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS-2021-1524
- ALAS2-2021-1627
- ALAS2-2021-1691
- ALSA-2021:2714
- ALSA-2021:3057
- ALSA-2021:4056
- ASA-202107-48
- ASA-202107-49
- ASA-202107-50
- ASA-202107-51
- ASB-A-195082750
- DSA-4941-1
- ELSA-2021-2714
- ELSA-2021-2725
- ELSA-2021-3057
- ELSA-2021-3327
- ELSA-2021-4056
- ELSA-2021-4777
- ELSA-2021-9368
- ELSA-2021-9369
- ELSA-2021-9370
- ELSA-2021-9371
- ELSA-2021-9372
- ELSA-2021-9374
- ELSA-2021-9395
- ELSA-2021-9404
- ELSA-2021-9406
- ELSA-2021-9407
- ELSA-2021-9410
- ELSA-2022-9793
- FEDORA-2021-07dc0b3eb1
- MS:CVE-2021-33909
- openSUSE-SU-2021:1076-1
- openSUSE-SU-2021:2184-1
- openSUSE-SU-2021:2202-1
- openSUSE-SU-2021:2409-1
- openSUSE-SU-2021:2415-1
- openSUSE-SU-2021:2427-1
- openSUSE-SU-2021:3876-1
- RHSA-2021:2714
- RHSA-2021:2715
- RHSA-2021:2716
- RHSA-2021:2725
- RHSA-2021:2726
- RHSA-2021:2727
- RHSA-2021:3044
- RHSA-2021:3057
- RHSA-2021:3088
- RHSA-2021:3327
- RHSA-2021:3328
- RHSA-2021:3381
- RHSA-2021:4056
- RHSA-2021:4088
- RHSA-2021:4122
- RHSA-2021:4777
- RHSA-2021:4779
- RHSA-2021:4798
- RLSA-2021:2714
- RLSA-2021:3057
- RLSA-2021:4088
- SSA:2021-202-01
- SUSE-SU-2021:2184-1
- SUSE-SU-2021:2202-1
- SUSE-SU-2021:2303-1
- SUSE-SU-2021:2325-1
- SUSE-SU-2021:2406-1
- SUSE-SU-2021:2407-1
- SUSE-SU-2021:2408-1
- SUSE-SU-2021:2409-1
- SUSE-SU-2021:2415-1
- SUSE-SU-2021:2416-1
- SUSE-SU-2021:2421-1
- SUSE-SU-2021:2422-1
- SUSE-SU-2021:2426-1
- SUSE-SU-2021:2427-1
- SUSE-SU-2021:2438-1
- SUSE-SU-2021:2451-1
- SUSE-SU-2021:2487-1
- SUSE-SU-2021:2542-1
- SUSE-SU-2021:2559-1
- SUSE-SU-2021:2560-1
- SUSE-SU-2021:2577-1
- SUSE-SU-2021:2584-1
- SUSE-SU-2021:2599-1
- SUSE-SU-2021:2599-2
- SUSE-SU-2021:2643-1
- SUSE-SU-2021:2678-1
- SUSE-SU-2021:3876-1
- USN-5014-1
- USN-5015-1
- USN-5016-1
- USN-5017-1
- USN-5018-1
- USN-5039-1
- USN-5136-1
- USN-5137-1
- USN-5137-2
- USN-5343-1
Source | # ID | Name | URL |
---|---|---|---|
Suse | SUSE ratings | https://www.suse.com/support/security/rating/ | |
Suse | URL of this CSAF notice | https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_2538-1.json | |
Suse | URL for SUSE-SU-2021:2538-1 | https://www.suse.com/support/update/announcement/2021/suse-su-20212538-1/ | |
Suse | E-Mail link for SUSE-SU-2021:2538-1 | https://lists.suse.com/pipermail/sle-security-updates/2021-July/009221.html | |
Bugzilla | SUSE Bug 1187052 | https://bugzilla.suse.com/1187052 | |
Bugzilla | SUSE Bug 1188117 | https://bugzilla.suse.com/1188117 | |
Bugzilla | SUSE Bug 1188257 | https://bugzilla.suse.com/1188257 | |
CVE | SUSE CVE CVE-2020-36385 page | https://www.suse.com/security/cve/CVE-2020-36385/ | |
CVE | SUSE CVE CVE-2021-22555 page | https://www.suse.com/security/cve/CVE-2021-22555/ | |
CVE | SUSE CVE CVE-2021-33909 page | https://www.suse.com/security/cve/CVE-2021-33909/ |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/suse/kgraft-patch-4_4_180-94_144-default?arch=x86_64&distro=sles-12&sp=3 | suse | kgraft-patch-4_4_180-94_144-default | < 4-2.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/kgraft-patch-4_4_180-94_144-default?arch=ppc64le&distro=sles-12&sp=3 | suse | kgraft-patch-4_4_180-94_144-default | < 4-2.1 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/kgraft-patch-4_4_180-94_141-default?arch=x86_64&distro=sles-12&sp=3 | suse | kgraft-patch-4_4_180-94_141-default | < 7-2.2 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/kgraft-patch-4_4_180-94_141-default?arch=ppc64le&distro=sles-12&sp=3 | suse | kgraft-patch-4_4_180-94_141-default | < 7-2.2 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/kgraft-patch-4_4_180-94_138-default?arch=x86_64&distro=sles-12&sp=3 | suse | kgraft-patch-4_4_180-94_138-default | < 8-2.2 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/kgraft-patch-4_4_180-94_138-default?arch=ppc64le&distro=sles-12&sp=3 | suse | kgraft-patch-4_4_180-94_138-default | < 8-2.2 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/kgraft-patch-4_4_180-94_135-default?arch=x86_64&distro=sles-12&sp=3 | suse | kgraft-patch-4_4_180-94_135-default | < 10-2.2 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/kgraft-patch-4_4_180-94_135-default?arch=ppc64le&distro=sles-12&sp=3 | suse | kgraft-patch-4_4_180-94_135-default | < 10-2.2 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/kgraft-patch-4_4_180-94_130-default?arch=x86_64&distro=sles-12&sp=3 | suse | kgraft-patch-4_4_180-94_130-default | < 12-2.2 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/kgraft-patch-4_4_180-94_130-default?arch=ppc64le&distro=sles-12&sp=3 | suse | kgraft-patch-4_4_180-94_130-default | < 12-2.2 | sles-12 | ppc64le | |
Affected | pkg:rpm/suse/kgraft-patch-4_4_180-94_127-default?arch=x86_64&distro=sles-12&sp=3 | suse | kgraft-patch-4_4_180-94_127-default | < 13-2.2 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/kgraft-patch-4_4_180-94_127-default?arch=ppc64le&distro=sles-12&sp=3 | suse | kgraft-patch-4_4_180-94_127-default | < 13-2.2 | sles-12 | ppc64le |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |