[LU-15302] kernel update [SLES15 SP3 5.3.18-59.34.1] Created: 01/Dec/21  Updated: 25/Apr/23  Resolved: 25/Apr/23

Status: Resolved
Project: Lustre
Component/s: None
Affects Version/s: None
Fix Version/s: None

Type: Improvement Priority: Minor
Reporter: Jian Yu Assignee: Jian Yu
Resolution: Won't Fix Votes: 0
Labels: None

Issue Links:
Related
is related to LU-15154 kernel update [SLES15 SP3 5.3.18-59.2... Resolved
Rank (Obsolete): 9223372036854775807

 Description   

The following security bugs were fixed:

  • CVE-2021-3542: Fixed heap buffer overflow in firedtv driver
    (bsc#1186063).
  • CVE-2021-3655: Fixed a missing size validations on inbound SCTP packets,
    which may have allowed the kernel to read uninitialized memory
    (bsc#1188563).
  • CVE-2021-3715: Fixed a use-after-free in route4_change() in
    net/sched/cls_route.c (bsc#1190349).
  • CVE-2021-3760: Fixed a use-after-free vulnerability with the
    ndev->rf_conn_info object (bsc#1190067).
  • CVE-2021-3772: Fixed sctp vtag check in sctp_sf_ootb (bsc#1190351).
  • CVE-2021-3896: Fixed a array-index-out-bounds in detach_capi_ctr in
    drivers/isdn/capi/kcapi.c (bsc#1191958).
  • CVE-2021-33033: Fixed a use-after-free in cipso_v4_genopt in
    net/ipv4/cipso_ipv4.c because the CIPSO and CALIPSO refcounting for the
    DOI definitions is mishandled (bsc#1186109).
  • CVE-2021-34866: Fixed eBPF Type Confusion Privilege Escalation
    Vulnerability (bsc#1191645).
  • CVE-2021-37159: hso_free_net_device in drivers/net/usb/hso.c called
    without checking for the NETREG_REGISTERED state, leading to a
    use-after-free and a double free (bnc#1188601).
  • CVE-2021-41864: Fixed prealloc_elems_and_freelist that allowed
    unprivileged users to trigger an eBPF multiplication integer overflow
    with a resultant out-of-bounds write (bnc#1191317).
  • CVE-2021-42008: Fixed a slab out-of-bounds write in the decode_data
    function in drivers/net/hamradio/6pack.c. Input from a process that had
    the CAP_NET_ADMIN capability could have lead to root access
    (bsc#1191315).
  • CVE-2021-42252: Fixed an issue inside aspeed_lpc_ctrl_mmap that could
    have allowed local attackers to access the Aspeed LPC control interface
    to overwrite memory in the kernel and potentially execute privileges
    (bnc#1190479).
  • CVE-2021-42739: The firewire subsystem had a buffer overflow related to
    drivers/media/firewire/firedtv-avc.c and
    drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandled
    bounds checking (bsc#1184673).
  • CVE-2021-43056: Fixed possible KVM host crash via malicious KVM guest on
    Power8 (bnc#1192107).
  • CVE-2021-43389: There was an array-index-out-of-bounds flaw in the
    detach_capi_ctr function in drivers/isdn/capi/kcapi.c (bnc#1191958).

The following non-security bugs were fixed:
https://lists.suse.com/pipermail/sle-security-updates/2021-November/009734.html

 Comments   
Comment by Gerrit Updater [ 02/Dec/21 ]

"Jian Yu <yujian@whamcloud.com>" uploaded a new patch: https://review.whamcloud.com/45717
Subject: LU-15302 kernel: kernel update SLES15 SP3 [5.3.18-59.34.1]
Project: fs/lustre-release
Branch: master
Current Patch Set: 1
Commit: 537f191ad14139e653187fb6af4886bfce7a7088

Generated at Sat Feb 10 03:17:09 UTC 2024 using Jira 9.4.14#940014-sha1:734e6822bbf0d45eff9af51f82432957f73aa32c.