Uploaded image for project: 'Lustre'
  1. Lustre
  2. LU-14722

kernel update [SLES15 SP2 5.3.18-24.64.1]

    XMLWordPrintable

Details

    • Improvement
    • Resolution: Won't Fix
    • Minor
    • None
    • None
    • None
    • 9223372036854775807

    Description

      The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various
      security and bugfixes.

      The following security bugs were fixed:

      • CVE-2021-29650: Fixed an issue with the netfilter subsystem that allowed
        attackers to cause a denial of service (panic) because
        net/netfilter/x_tables.c and include/linux/netfilter/x_tables.h lack a
        full memory barrier upon the assignment of a new table value
        (bnc#1184208).
      • CVE-2021-29155: Fixed an issue that was discovered in
        kernel/bpf/verifier.c that performs undesirable out-of-bounds
        speculation on pointer arithmetic, leading to side-channel attacks that
        defeat Spectre mitigations and obtain sensitive information from kernel
        memory. Specifically, for sequences of pointer arithmetic operations,
        the pointer modification performed by the first operation was not
        correctly accounted for when restricting subsequent operations
        (bnc#1184942).

      The following non-security bugs were fixed:
      https://lists.suse.com/pipermail/sle-security-updates/2021-May/008767.html

      Attachments

        Issue Links

          Activity

            People

              yujian Jian Yu
              yujian Jian Yu
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: