https://jira.whamcloud.com This file is an XML representation of an issue en-us 9.4.14 940014 05-12-2023 https://jira.whamcloud.com/browse/LU-13858 Lustre <p>The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes.</p> <p>The following security bugs were fixed:</p> <ul class="alternate" type="square"> <li>CVE-2020-15780: A lockdown bypass for loading unsigned modules using<br/> ACPI table injection was fixed. (bsc#1173573)</li> <li>CVE-2020-15393: Fixed a memory leak in usbtest_disconnect (bnc#1173514).</li> <li>CVE-2020-12771: An issue was discovered in btree_gc_coalesce in<br/> drivers/md/bcache/btree.c has a deadlock if a coalescing operation fails<br/> (bnc#1171732).</li> <li>CVE-2020-12888: The VFIO PCI driver mishandled attempts to access<br/> disabled memory space (bnc#1171868).</li> <li>CVE-2020-10773: Fixed a memory leak on s390/s390x, in the<br/> cmm_timeout_hander in file arch/s390/mm/cmm.c (bnc#1172999).</li> <li>CVE-2020-14416: Fixed a race condition in tty-&gt;disc_data handling in the<br/> slip and slcan line discipline could lead to a use-after-free. This<br/> affects drivers/net/slip/slip.c and drivers/net/can/slcan.c<br/> (bnc#1162002).</li> <li>CVE-2020-10768: Fixed an issue with the prctl() function, where indirect<br/> branch speculation could be enabled even though it was diabled before<br/> (bnc#1172783).</li> <li>CVE-2020-10766: Fixed an issue which allowed an attacker with a local<br/> account to disable SSBD protection (bnc#1172781).</li> <li>CVE-2020-10767: Fixed an issue where Indirect Branch Prediction Barrier<br/> was disabled in certain circumstances, leaving the system open to a<br/> spectre v2 style attack (bnc#1172782).</li> <li>CVE-2020-13974: Fixed a integer overflow in drivers/tty/vt/keyboard.c,<br/> if k_ascii is called several times in a row (bnc#1172775).</li> <li>CVE-2020-0305: Fixed a possible use-after-free due to a race condition<br/> incdev_get of char_dev.c. This could lead to local escalation of<br/> privilege. User interaction is not needed for exploitation (bnc#1174462).</li> <li>CVE-2020-10769: A buffer over-read flaw was found in<br/> crypto_authenc_extractkeys in crypto/authenc.c in the IPsec<br/> Cryptographic algorithm's module, authenc. This flaw allowed a local<br/> attacker with user privileges to cause a denial of service (bnc#1173265).</li> <li>CVE-2020-10781: Fixed a denial of service issue in the ZRAM<br/> implementation (bnc#1173074).</li> <li>CVE-2019-20908: Fixed incorrect access permissions for the efivar_ssdt<br/> ACPI variable, which could be used by attackers to bypass lockdown or<br/> secure boot restrictions (bnc#1173567).</li> <li>CVE-2019-20810: Fixed a memory leak in go7007_snd_init in<br/> drivers/media/usb/go7007/snd-go7007.c because it did not call<br/> snd_card_free for a failure path (bnc#1172458).</li> <li>CVE-2019-16746: Fixed a buffer overflow in net/wireless/nl80211.c,<br/> related to invalid length checks for variable elements in a beacon head<br/> (bnc#1152107).</li> </ul> <p>The following non-security bugs were fixed:<br/> <a href="https://lists.suse.com/pipermail/sle-security-updates/2020-August/007216.html" class="external-link" target="_blank" rel="nofollow noopener">https://lists.suse.com/pipermail/sle-security-updates/2020-August/007216.html</a></p> LU-13858

kernel update [SLES15 SP1 4.12.14-197.48.1]

Improvement Minor Resolved Won't Fix Jian Yu Jian Yu Wed, 5 Aug 2020 22:38:51 +0000 Mon, 14 Sep 2020 23:29:53 +0000 Mon, 14 Sep 2020 23:29:53 +0000 0 1 <p>A new version is available: <a href="https://jira.whamcloud.com/browse/LU-13962" title="kernel update [SLES15 SP1 4.12.14-197.56.1]" class="issue-link" data-issue-key="LU-13962"><del>LU-13962</del></a></p> Related LU-13658 LU-13962 Development Rank 1|i01733: Rank (Obsolete) 9223372036854775807