Uploaded image for project: 'Lustre'
  1. Lustre
  2. LU-14222

kernel update [SLES12 SP5 4.12.14-122.54.1]

Details

    • Improvement
    • Resolution: Won't Fix
    • Minor
    • None
    • None
    • None
    • 9223372036854775807

    Description

      The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various
      security and bugfixes.

      The following security bugs were fixed:

      • CVE-2020-15436: Fixed a use after free vulnerability in fs/block_dev.c
        which could have allowed local users to gain privileges or cause a
        denial of service (bsc#1179141).
      • CVE-2020-15437: Fixed a null pointer dereference which could have
        allowed local users to cause a denial of service(bsc#1179140).
      • CVE-2020-25668: Fixed a concurrency use-after-free in con_font_op
        (bsc#1178123).
      • CVE-2020-25669: Fixed a use-after-free read in sunkbd_reinit()
        (bsc#1178182).
      • CVE-2020-25704: Fixed a leak in perf_event_parse_addr_filter()
        (bsc#1178393).
      • CVE-2020-27777: Restrict RTAS requests from userspace (bsc#1179107)
      • CVE-2020-28915: Fixed a buffer over-read in the fbcon code which could
        have been used by local attackers to read kernel memory (bsc#1178886).
      • CVE-2020-28974: Fixed a slab-out-of-bounds read in fbcon which could
        have been used by local attackers to read privileged information or
        potentially crash the kernel (bsc#1178589).
      • CVE-2020-29371: Fixed uninitialized memory leaks to userspace
        (bsc#1179429).
      • CVE-2020-25705: Fixed an issue which could have allowed to quickly scan
        open UDP ports. This flaw allowed an off-path remote user to effectively
        bypassing source port UDP randomization (bsc#1175721).

      The following non-security bugs were fixed:
      https://lists.suse.com/pipermail/sle-security-updates/2020-December/007942.html

      Attachments

        Issue Links

          Activity

            [LU-14222] kernel update [SLES12 SP5 4.12.14-122.54.1]
            yujian Jian Yu added a comment -

            A new version is available in LU-14376.

            yujian Jian Yu added a comment - A new version is available in LU-14376 .

            Jian Yu (yujian@whamcloud.com) uploaded a new patch: https://review.whamcloud.com/41038
            Subject: LU-14222 kernel: kernel update SLES12 SP5 [4.12.14-122.54.1]
            Project: fs/lustre-release
            Branch: b2_12
            Current Patch Set: 1
            Commit: 300807b6dd846ac5ddba273d413dd710dd868536

            gerrit Gerrit Updater added a comment - Jian Yu (yujian@whamcloud.com) uploaded a new patch: https://review.whamcloud.com/41038 Subject: LU-14222 kernel: kernel update SLES12 SP5 [4.12.14-122.54.1] Project: fs/lustre-release Branch: b2_12 Current Patch Set: 1 Commit: 300807b6dd846ac5ddba273d413dd710dd868536

            Jian Yu (yujian@whamcloud.com) uploaded a new patch: https://review.whamcloud.com/41037
            Subject: LU-14222 kernel: kernel update SLES12 SP5 [4.12.14-122.54.1]
            Project: fs/lustre-release
            Branch: master
            Current Patch Set: 1
            Commit: 798a7f624752d401297fc739647f772a3e492de8

            gerrit Gerrit Updater added a comment - Jian Yu (yujian@whamcloud.com) uploaded a new patch: https://review.whamcloud.com/41037 Subject: LU-14222 kernel: kernel update SLES12 SP5 [4.12.14-122.54.1] Project: fs/lustre-release Branch: master Current Patch Set: 1 Commit: 798a7f624752d401297fc739647f772a3e492de8

            People

              yujian Jian Yu
              yujian Jian Yu
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: