Uploaded image for project: 'Lustre'
  1. Lustre
  2. LU-14722

kernel update [SLES15 SP2 5.3.18-24.64.1]

XMLWordPrintable

    • Icon: Improvement Improvement
    • Resolution: Won't Fix
    • Icon: Minor Minor
    • None
    • None
    • None
    • 9223372036854775807

      The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various
      security and bugfixes.

      The following security bugs were fixed:

      • CVE-2021-29650: Fixed an issue with the netfilter subsystem that allowed
        attackers to cause a denial of service (panic) because
        net/netfilter/x_tables.c and include/linux/netfilter/x_tables.h lack a
        full memory barrier upon the assignment of a new table value
        (bnc#1184208).
      • CVE-2021-29155: Fixed an issue that was discovered in
        kernel/bpf/verifier.c that performs undesirable out-of-bounds
        speculation on pointer arithmetic, leading to side-channel attacks that
        defeat Spectre mitigations and obtain sensitive information from kernel
        memory. Specifically, for sequences of pointer arithmetic operations,
        the pointer modification performed by the first operation was not
        correctly accounted for when restricting subsequent operations
        (bnc#1184942).

      The following non-security bugs were fixed:
      https://lists.suse.com/pipermail/sle-security-updates/2021-May/008767.html

            yujian Jian Yu
            yujian Jian Yu
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: