[LU-13858] kernel update [SLES15 SP1 4.12.14-197.48.1] Created: 05/Aug/20  Updated: 14/Sep/20  Resolved: 14/Sep/20

Status: Resolved
Project: Lustre
Component/s: None
Affects Version/s: None
Fix Version/s: None

Type: Improvement Priority: Minor
Reporter: Jian Yu Assignee: Jian Yu
Resolution: Won't Fix Votes: 0
Labels: None

Issue Links:
Related
is related to LU-13658 kernel update [SLES15 SP1 4.12.14-197... Resolved
is related to LU-13962 kernel update [SLES15 SP1 4.12.14-197... Resolved
Rank (Obsolete): 9223372036854775807

 Description   

The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • CVE-2020-15780: A lockdown bypass for loading unsigned modules using
    ACPI table injection was fixed. (bsc#1173573)
  • CVE-2020-15393: Fixed a memory leak in usbtest_disconnect (bnc#1173514).
  • CVE-2020-12771: An issue was discovered in btree_gc_coalesce in
    drivers/md/bcache/btree.c has a deadlock if a coalescing operation fails
    (bnc#1171732).
  • CVE-2020-12888: The VFIO PCI driver mishandled attempts to access
    disabled memory space (bnc#1171868).
  • CVE-2020-10773: Fixed a memory leak on s390/s390x, in the
    cmm_timeout_hander in file arch/s390/mm/cmm.c (bnc#1172999).
  • CVE-2020-14416: Fixed a race condition in tty->disc_data handling in the
    slip and slcan line discipline could lead to a use-after-free. This
    affects drivers/net/slip/slip.c and drivers/net/can/slcan.c
    (bnc#1162002).
  • CVE-2020-10768: Fixed an issue with the prctl() function, where indirect
    branch speculation could be enabled even though it was diabled before
    (bnc#1172783).
  • CVE-2020-10766: Fixed an issue which allowed an attacker with a local
    account to disable SSBD protection (bnc#1172781).
  • CVE-2020-10767: Fixed an issue where Indirect Branch Prediction Barrier
    was disabled in certain circumstances, leaving the system open to a
    spectre v2 style attack (bnc#1172782).
  • CVE-2020-13974: Fixed a integer overflow in drivers/tty/vt/keyboard.c,
    if k_ascii is called several times in a row (bnc#1172775).
  • CVE-2020-0305: Fixed a possible use-after-free due to a race condition
    incdev_get of char_dev.c. This could lead to local escalation of
    privilege. User interaction is not needed for exploitation (bnc#1174462).
  • CVE-2020-10769: A buffer over-read flaw was found in
    crypto_authenc_extractkeys in crypto/authenc.c in the IPsec
    Cryptographic algorithm's module, authenc. This flaw allowed a local
    attacker with user privileges to cause a denial of service (bnc#1173265).
  • CVE-2020-10781: Fixed a denial of service issue in the ZRAM
    implementation (bnc#1173074).
  • CVE-2019-20908: Fixed incorrect access permissions for the efivar_ssdt
    ACPI variable, which could be used by attackers to bypass lockdown or
    secure boot restrictions (bnc#1173567).
  • CVE-2019-20810: Fixed a memory leak in go7007_snd_init in
    drivers/media/usb/go7007/snd-go7007.c because it did not call
    snd_card_free for a failure path (bnc#1172458).
  • CVE-2019-16746: Fixed a buffer overflow in net/wireless/nl80211.c,
    related to invalid length checks for variable elements in a beacon head
    (bnc#1152107).

The following non-security bugs were fixed:
https://lists.suse.com/pipermail/sle-security-updates/2020-August/007216.html

 Comments   
Comment by Jian Yu [ 14/Sep/20 ]

A new version is available: LU-13962

Generated at Sat Feb 10 03:04:49 UTC 2024 using Jira 9.4.14#940014-sha1:734e6822bbf0d45eff9af51f82432957f73aa32c.