SUSE-SU-2021:1248-1

Source
https://www.suse.com/support/update/announcement/2021/suse-su-20211248-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:1248-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2021:1248-1
Related
Published
2021-04-16T13:23:55Z
Modified
2021-04-16T13:23:55Z
Summary
Security update for the Linux Kernel
Details

The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • CVE-2020-25670, CVE-2020-25671, CVE-2020-25672, CVE-2020-25673: Fixed multiple bugs in NFC subsytem (bsc#1178181).
  • CVE-2020-36311: Fixed a denial of service (soft lockup) by triggering destruction of a large SEV VM (bsc#1184511).
  • CVE-2021-29154: Fixed incorrect computation of branch displacements, allowing arbitrary code execution (bsc#1184391).
  • CVE-2021-30002: Fixed a memory leak for large arguments in video_usercopy (bsc#1184120).
  • CVE-2021-3483: Fixed a use-after-free in nosy.c (bsc#1184393).
  • CVE-2021-20219: Fixed a denial of service in nttyreceivecharspecial (bsc#1184397).

The following non-security bugs were fixed:

  • cifs: do not send close in compound create+close requests (bsc#1181507).
  • net: sched: disable TCQFNOLOCK for pfifo_fast (bsc#1183405)
  • powerpc/64s: Fix instruction encoding for lis in ppcfunctionentry() (bsc#1065729).
  • powerpc/pmem: Include pmem prototypes (bsc#1113295 git-fixes).
  • powerpc/pseries/ras: Remove unused variable 'status' (bsc#1065729).
  • s390/pci: Fix s390mmioread/write with MIO (LTC#192079 bsc#1183755).
  • vsprintf: Do not have bprintf dereference pointers (bsc#1184494).
  • vsprintf: Do not preprocess non-dereferenced pointers for bprintf (%px and %pK) (bsc#1184494).
  • vsprintf: Fix off-by-one bug in bstr_printf() processing dereferenced pointers (bsc#1184494).
  • x86/memencrypt: Correct physical address calculation in _setclrpte_enc() (12sp5).
  • xen/events: fix setting irq affinity (bsc#1184583).
References

Affected packages

SUSE:Linux Enterprise Server 12 SP5 / kernel-azure

Package

Name
kernel-azure
Purl
purl:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-16.53.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "4.12.14-16.53.1",
            "kernel-azure-devel": "4.12.14-16.53.1",
            "kernel-devel-azure": "4.12.14-16.53.1",
            "kernel-syms-azure": "4.12.14-16.53.1",
            "kernel-azure-base": "4.12.14-16.53.1",
            "kernel-source-azure": "4.12.14-16.53.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP5 / kernel-source-azure

Package

Name
kernel-source-azure
Purl
purl:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-16.53.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "4.12.14-16.53.1",
            "kernel-azure-devel": "4.12.14-16.53.1",
            "kernel-devel-azure": "4.12.14-16.53.1",
            "kernel-syms-azure": "4.12.14-16.53.1",
            "kernel-azure-base": "4.12.14-16.53.1",
            "kernel-source-azure": "4.12.14-16.53.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP5 / kernel-syms-azure

Package

Name
kernel-syms-azure
Purl
purl:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-16.53.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "4.12.14-16.53.1",
            "kernel-azure-devel": "4.12.14-16.53.1",
            "kernel-devel-azure": "4.12.14-16.53.1",
            "kernel-syms-azure": "4.12.14-16.53.1",
            "kernel-azure-base": "4.12.14-16.53.1",
            "kernel-source-azure": "4.12.14-16.53.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP5 / kernel-azure

Package

Name
kernel-azure
Purl
purl:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-16.53.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "4.12.14-16.53.1",
            "kernel-azure-devel": "4.12.14-16.53.1",
            "kernel-devel-azure": "4.12.14-16.53.1",
            "kernel-syms-azure": "4.12.14-16.53.1",
            "kernel-azure-base": "4.12.14-16.53.1",
            "kernel-source-azure": "4.12.14-16.53.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP5 / kernel-source-azure

Package

Name
kernel-source-azure
Purl
purl:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-16.53.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "4.12.14-16.53.1",
            "kernel-azure-devel": "4.12.14-16.53.1",
            "kernel-devel-azure": "4.12.14-16.53.1",
            "kernel-syms-azure": "4.12.14-16.53.1",
            "kernel-azure-base": "4.12.14-16.53.1",
            "kernel-source-azure": "4.12.14-16.53.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP5 / kernel-syms-azure

Package

Name
kernel-syms-azure
Purl
purl:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-16.53.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "4.12.14-16.53.1",
            "kernel-azure-devel": "4.12.14-16.53.1",
            "kernel-devel-azure": "4.12.14-16.53.1",
            "kernel-syms-azure": "4.12.14-16.53.1",
            "kernel-azure-base": "4.12.14-16.53.1",
            "kernel-source-azure": "4.12.14-16.53.1"
        }
    ]
}