suse/kernel-livepatch-SLE15-SP1_Update_23&distro=SUSE Linux Enterprise Live Patching 15 SP1

Vulnerabilities (45)

• CVE-2021-0512Jun 21, 2021
  affected < 6-2.2fixed 6-2.2

  In __hidinput_change_resolution_multipliers of hid-input.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Prod

• CVE-2020-36385Jun 7, 2021
  affected < 7-2.2fixed 7-2.2

  An issue was discovered in the Linux kernel before 5.10. drivers/infiniband/core/ucma.c has a use-after-free because the ctx is reached via the ctx_list in some ucma_migrate_id situations where ucma_close is called, aka CID-f5449e74802c.

• CVE-2020-25673May 26, 2021
  affected < 13-2.2fixed 13-2.2

  A vulnerability was found in Linux kernel where non-blocking socket in llcp_sock_connect() leads to leak and eventually hanging-up the system.

• CVE-2020-25671May 26, 2021
  affected < 13-2.2fixed 13-2.2

  A vulnerability was found in Linux Kernel, where a refcount leak in llcp_sock_connect() causing use-after-free which might lead to privilege escalations.

• CVE-2021-22543May 26, 2021
  affected < 8-2.2fixed 8-2.2

  An issue was discovered in Linux: KVM through Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks and can lead to pages being freed while still accessible by the VMM and guest. This allows users with the ability to start and control a VM to read/write random pag

• CVE-2020-25670May 26, 2021
  affected < 13-2.2fixed 13-2.2

  A vulnerability was found in Linux Kernel where refcount leak in llcp_sock_bind() causing use-after-free which might lead to privilege escalations.

• CVE-2020-25672May 25, 2021
  affected < 13-2.2fixed 13-2.2

  A memory leak vulnerability was found in Linux kernel in llcp_sock_connect

• CVE-2021-33034May 14, 2021
  affected < 5-2.2fixed 5-2.2

  In the Linux kernel before 5.12.4, net/bluetooth/hci_event.c has a use-after-free when destroying an hci_chan, aka CID-5c4c8c954409. This leads to writing an arbitrary value.

• CVE-2021-23134May 12, 2021
  affected < 13-2.2fixed 13-2.2

  Use After Free vulnerability in nfc sockets in the Linux Kernel before 5.12.4 allows local attackers to elevate their privileges. In typical configurations, the issue can only be triggered by a privileged local user with the CAP_NET_RAW capability.

• CVE-2021-32399May 10, 2021
  affected < 5-2.2fixed 5-2.2

  net/bluetooth/hci_request.c in the Linux kernel through 5.12.2 has a race condition for removal of the HCI controller.

• CVE-2021-23133Apr 22, 2021
  affected < 6-2.2fixed 6-2.2

  A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process. If sctp_destroy_sock is called without sock_net(sk)->sctp.addr_wq_lock then an element is re

• CVE-2020-36322Apr 14, 2021
  affected < 4-2.2fixed 4-2.2

  An issue was discovered in the FUSE filesystem implementation in the Linux kernel before 5.10.6, aka CID-5d069dbe8aaf. fuse_do_getattr() calls make_bad_inode() in inappropriate situations, causing a system crash. NOTE: the original fix for this vulnerability was incomplete, and i

• CVE-2021-29154Apr 8, 2021
  affected < 4-2.2fixed 4-2.2

  BPF JIT compilers in the Linux kernel through 5.11.12 have incorrect computation of branch displacements, allowing them to execute arbitrary code within the kernel context. This affects arch/x86/net/bpf_jit_comp.c and arch/x86/net/bpf_jit_comp32.c.

• CVE-2021-28688Apr 6, 2021
  affected < 3-2.2fixed 3-2.2

  The fix for XSA-365 includes initialization of pointers such that subsequent cleanup code wouldn't use uninitialized or stale values. This initialization went too far and may under certain conditions also overwrite pointers which are in need of cleaning up. The lack of cleanup wo

• CVE-2021-3444Mar 23, 2021
  affected < 3-2.2fixed 3-2.2

  The bpf verifier in the Linux kernel did not properly handle mod32 destination register truncation when the source register was known to be 0. A local attacker with the ability to load bpf programs could use this gain out-of-bounds reads in kernel memory leading to information di

• CVE-2021-28660Mar 17, 2021
  affected < 3-2.2fixed 3-2.2

  rtw_wx_set_scan in drivers/staging/rtl8188eu/os_dep/ioctl_linux.c in the Linux kernel through 5.11.6 allows writing beyond the end of the ->ssid[] array. NOTE: from the perspective of kernel.org releases, CVE IDs are not normally used for drivers/staging/* (unfinished work); howe

• CVE-2021-27365Mar 7, 2021
  affected < 2-2.2fixed 2-2.2

  An issue was discovered in the Linux kernel through 5.11.3. Certain iSCSI data structures do not have appropriate length constraints or checks, and can exceed the PAGE_SIZE value. An unprivileged user can send a Netlink message that is associated with iSCSI, and has a length up t

• CVE-2021-27364Mar 7, 2021
  affected < 2-2.2fixed 2-2.2

  An issue was discovered in the Linux kernel through 5.11.3. drivers/scsi/scsi_transport_iscsi.c is adversely affected by the ability of an unprivileged user to craft Netlink messages.

• CVE-2021-27363Mar 7, 2021
  affected < 2-2.2fixed 2-2.2

  An issue was discovered in the Linux kernel through 5.11.3. A kernel pointer leak can be used to determine the address of the iscsi_transport structure. When an iSCSI transport is registered with the iSCSI subsystem, the transport's handle is available to unprivileged users via t

• CVE-2021-26932Feb 17, 2021
  affected < 1-3.3.1fixed 1-3.3.1

  An issue was discovered in the Linux kernel 3.2 through 5.10.16, as used by Xen. Grant mapping operations often occur in batch hypercalls, where a number of operations are done in a single hypercall, the success or failure of each one is reported to the backend driver, and the ba