https://jira.whamcloud.com This file is an XML representation of an issue en-us 9.4.14 940014 05-12-2023 https://jira.whamcloud.com/browse/LU-13861 Lustre <p>The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes.</p> <p>The following security bugs were fixed:</p> <ul class="alternate" type="square"> <li>CVE-2020-14331: A buffer over write in vgacon_scroll was fixed<br/> (bnc#1174205).</li> <li>CVE-2020-10135: Legacy pairing and secure-connections pairing<br/> authentication in Bluetooth BR/EDR Core Specification v5.2 and earlier<br/> may have allowed an unauthenticated user to complete authentication<br/> without pairing credentials via adjacent access. An unauthenticated,<br/> adjacent attacker could impersonate a Bluetooth BR/EDR master or slave<br/> to pair with a previously paired remote device to successfully complete<br/> the authentication procedure without knowing the link key (bnc#1171988).</li> <li>CVE-2020-0305: In cdev_get of char_dev.c, there is a possible<br/> use-after-free due to a race condition. This could lead to local<br/> escalation of privilege with System execution privileges needed. User<br/> interaction is not needed for exploitation (bnc#1174462).</li> <li>CVE-2019-20908: An issue was discovered in drivers/firmware/efi/efi.c<br/> where incorrect access permissions for the efivar_ssdt ACPI variable<br/> could be used by attackers to bypass lockdown or secure boot<br/> restrictions, aka CID-1957a85b0032 (bnc#1173567).</li> <li>CVE-2020-10781: zram sysfs resource consumption was fixed (bnc#1173074).</li> <li>CVE-2020-15780: An issue was discovered in drivers/acpi/acpi_configfs.c<br/> where injection of malicious ACPI tables via configfs could be used by<br/> attackers to bypass lockdown and secure boot restrictions, aka<br/> CID-75b0cea7bf30 (bnc#1173573).</li> <li>CVE-2020-15393: usbtest_disconnect in drivers/usb/misc/usbtest.c had a<br/> memory leak, aka CID-28ebeb8db770 (bnc#1173514).</li> <li>CVE-2020-12771: btree_gc_coalesce in drivers/md/bcache/btree.c had a<br/> deadlock if a coalescing operation fails (bnc#1171732).</li> <li>CVE-2019-16746: net/wireless/nl80211.c did not check the length of<br/> variable elements in a beacon head, leading to a buffer overflow<br/> (bnc#1152107).</li> <li>CVE-2020-12888: The VFIO PCI driver mishandled attempts to access<br/> disabled memory space (bnc#1171868).</li> <li>CVE-2020-10769: A buffer over-read flaw was found in<br/> crypto_authenc_extractkeys in crypto/authenc.c in the IPsec<br/> Cryptographic algorithm's module, authenc. When a payload longer than 4<br/> bytes, and is not following 4-byte alignment boundary guidelines, it<br/> causes a buffer over-read threat, leading to a system crash. This flaw<br/> allowed a local attacker with user privileges to cause a denial of<br/> service (bnc#1173265).</li> <li>CVE-2020-10773: A kernel stack information leak on s390/s390x was fixed<br/> (bnc#1172999).</li> <li>CVE-2020-14416: A race condition in tty-&gt;disc_data handling in the slip<br/> and slcan line discipline could lead to a use-after-free, aka<br/> CID-0ace17d56824. This affects drivers/net/slip/slip.c and<br/> drivers/net/can/slcan.c (bnc#1162002).</li> </ul> <p>The following non-security bugs were fixed:<br/> <a href="https://lists.suse.com/pipermail/sle-security-updates/2020-August/007225.html" class="external-link" target="_blank" rel="nofollow noopener">https://lists.suse.com/pipermail/sle-security-updates/2020-August/007225.html</a></p> LU-13861

kernel update [SLES12 SP5 4.12.14-122.29.1]

Improvement Minor Resolved Won't Fix Jian Yu Jian Yu Wed, 5 Aug 2020 22:54:53 +0000 Mon, 14 Sep 2020 23:41:23 +0000 Mon, 14 Sep 2020 23:41:23 +0000 0 1 <p>A new version is available: <a href="https://jira.whamcloud.com/browse/LU-13964" title="kernel update [SLES12 SP5 4.12.14-122.37.1]" class="issue-link" data-issue-key="LU-13964"><del>LU-13964</del></a></p> Related LU-13741 LU-13964 Development Rank 1|i0173r: Rank (Obsolete) 9223372036854775807