SUSE-SU-2021:1266-1

Source
https://www.suse.com/support/update/announcement/2021/suse-su-20211266-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:1266-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2021:1266-1
Related
Published
2021-04-20T06:54:57Z
Modified
2021-04-20T06:54:57Z
Summary
Security update for the Linux Kernel
Details

The SUSE Linux Enterprise 12 SP5 kernel RT was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • CVE-2021-29154: Fixed incorrect computation of branch displacements, allowing arbitrary code execution (bsc#1184391).
  • CVE-2020-25670, CVE-2020-25671, CVE-2020-25672, CVE-2020-25673: Fixed multiple bugs in NFC subsytem (bsc#1178181).
  • CVE-2020-36311: Fixed a denial of service (soft lockup) by triggering destruction of a large SEV VM (bsc#1184511).
  • CVE-2021-3483: Fixed a use-after-free in nosy.c (bsc#1184393).
  • CVE-2021-30002: Fixed a memory leak for large arguments in video_usercopy (bsc#1184120).
  • CVE-2021-20219: Fixed a denial of service in nttyreceivecharspecial (bsc#1184397).

The following non-security bugs were fixed:

  • cifs: change noisy error message to FYI (bsc#1181507).
  • cifsdebug: use %pd instead of messing with ->dname (bsc#1181507).
  • cifs: do not send close in compound create+close requests (bsc#1181507).
  • cifs: New optype for session operations (bsc#1181507).
  • cifs: print MIDs in decimal notation (bsc#1181507).
  • cifs: return proper error code in statfs(2) (bsc#1181507).
  • cifs: Tracepoints and logs for tracing credit changes (bsc#1181507).
  • fix setting irq affinity (bsc#1184583)
  • ibmvnic: Use 'skbfragaddress()' instead of hand coding it (bsc#1184114 ltc#192237).
  • locking/mutex: Fix non debug version of mutexlockio_nested() (git-fixes).
  • net: sched: disable TCQFNOLOCK for pfifo_fast (bsc#1183405)
  • powerpc/64s: Fix instruction encoding for lis in ppcfunctionentry() (bsc#1065729).
  • powerpc/pmem: Include pmem prototypes (bsc#1113295 git-fixes).
  • powerpc/pseries/mobility: handle premature return from H_JOIN (bsc#1181674 ltc#189159 git-fixes bsc#1183662 ltc#191922).
  • powerpc/pseries/mobility: use struct for shared state (bsc#1181674 ltc#189159 git-fixes bsc#1183662 ltc#191922).
  • powerpc/pseries/ras: Remove unused variable 'status' (bsc#1065729).
  • s390/pci: Fix s390mmioread/write with MIO (LTC#192079 bsc#1183755).
  • smb3: add dynamic trace point to trace when credits obtained (bsc#1181507).
  • smb3: fix crediting for compounding when only one request in flight (bsc#1181507).
  • usbip: fix stub_dev to check for stream socket (git-fixes).
  • usbip: fix vhci_hcd to check for stream socket (git-fixes).
  • virsh: list is showing less guests then 'xl list' (bsc#1184513).
  • vsprintf: Do not have bprintf dereference pointers (bsc#1184494).
  • vsprintf: Do not preprocess non-dereferenced pointers for bprintf (%px and %pK) (bsc#1184494).
  • vsprintf: Fix off-by-one bug in bstr_printf() processing dereferenced pointers (bsc#1184494).
References

Affected packages

SUSE:Linux Enterprise Real Time 12 SP5 / kernel-rt

Package

Name
kernel-rt
Purl
purl:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-10.40.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-devel-rt": "4.12.14-10.40.1",
            "dlm-kmp-rt": "4.12.14-10.40.1",
            "gfs2-kmp-rt": "4.12.14-10.40.1",
            "kernel-rt_debug": "4.12.14-10.40.1",
            "kernel-rt-devel": "4.12.14-10.40.1",
            "cluster-md-kmp-rt": "4.12.14-10.40.1",
            "kernel-rt_debug-devel": "4.12.14-10.40.1",
            "kernel-source-rt": "4.12.14-10.40.1",
            "kernel-rt": "4.12.14-10.40.1",
            "ocfs2-kmp-rt": "4.12.14-10.40.1",
            "kernel-syms-rt": "4.12.14-10.40.1",
            "kernel-rt-base": "4.12.14-10.40.1"
        }
    ]
}

SUSE:Linux Enterprise Real Time 12 SP5 / kernel-rt_debug

Package

Name
kernel-rt_debug
Purl
purl:rpm/suse/kernel-rt_debug&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-10.40.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-devel-rt": "4.12.14-10.40.1",
            "dlm-kmp-rt": "4.12.14-10.40.1",
            "gfs2-kmp-rt": "4.12.14-10.40.1",
            "kernel-rt_debug": "4.12.14-10.40.1",
            "kernel-rt-devel": "4.12.14-10.40.1",
            "cluster-md-kmp-rt": "4.12.14-10.40.1",
            "kernel-rt_debug-devel": "4.12.14-10.40.1",
            "kernel-source-rt": "4.12.14-10.40.1",
            "kernel-rt": "4.12.14-10.40.1",
            "ocfs2-kmp-rt": "4.12.14-10.40.1",
            "kernel-syms-rt": "4.12.14-10.40.1",
            "kernel-rt-base": "4.12.14-10.40.1"
        }
    ]
}

SUSE:Linux Enterprise Real Time 12 SP5 / kernel-source-rt

Package

Name
kernel-source-rt
Purl
purl:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-10.40.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-devel-rt": "4.12.14-10.40.1",
            "dlm-kmp-rt": "4.12.14-10.40.1",
            "gfs2-kmp-rt": "4.12.14-10.40.1",
            "kernel-rt_debug": "4.12.14-10.40.1",
            "kernel-rt-devel": "4.12.14-10.40.1",
            "cluster-md-kmp-rt": "4.12.14-10.40.1",
            "kernel-rt_debug-devel": "4.12.14-10.40.1",
            "kernel-source-rt": "4.12.14-10.40.1",
            "kernel-rt": "4.12.14-10.40.1",
            "ocfs2-kmp-rt": "4.12.14-10.40.1",
            "kernel-syms-rt": "4.12.14-10.40.1",
            "kernel-rt-base": "4.12.14-10.40.1"
        }
    ]
}

SUSE:Linux Enterprise Real Time 12 SP5 / kernel-syms-rt

Package

Name
kernel-syms-rt
Purl
purl:rpm/suse/kernel-syms-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-10.40.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-devel-rt": "4.12.14-10.40.1",
            "dlm-kmp-rt": "4.12.14-10.40.1",
            "gfs2-kmp-rt": "4.12.14-10.40.1",
            "kernel-rt_debug": "4.12.14-10.40.1",
            "kernel-rt-devel": "4.12.14-10.40.1",
            "cluster-md-kmp-rt": "4.12.14-10.40.1",
            "kernel-rt_debug-devel": "4.12.14-10.40.1",
            "kernel-source-rt": "4.12.14-10.40.1",
            "kernel-rt": "4.12.14-10.40.1",
            "ocfs2-kmp-rt": "4.12.14-10.40.1",
            "kernel-syms-rt": "4.12.14-10.40.1",
            "kernel-rt-base": "4.12.14-10.40.1"
        }
    ]
}