suse/kgraft-patch-SLE12-SP3_Update_37&distro=SUSE Linux Enterprise Server 12 SP3-LTSS

Vulnerabilities (66)

• CVE-2020-25669May 26, 2021
  affected < 1-4.3.1fixed 1-4.3.1

  A vulnerability was found in the Linux Kernel where the function sunkbd_reinit having been scheduled by sunkbd_interrupt before sunkbd being freed. Though the dangling pointer is set to NULL in sunkbd_disconnect, there is still an alias in sunkbd_reinit causing Use After Free.

• CVE-2020-25673May 26, 2021
  affected < 14-2.2fixed 14-2.2

  A vulnerability was found in Linux kernel where non-blocking socket in llcp_sock_connect() leads to leak and eventually hanging-up the system.

• CVE-2020-25671May 26, 2021
  affected < 14-2.2fixed 14-2.2

  A vulnerability was found in Linux Kernel, where a refcount leak in llcp_sock_connect() causing use-after-free which might lead to privilege escalations.

• CVE-2020-25670May 26, 2021
  affected < 14-2.2fixed 14-2.2

  A vulnerability was found in Linux Kernel where refcount leak in llcp_sock_bind() causing use-after-free which might lead to privilege escalations.

• CVE-2020-25672May 25, 2021
  affected < 14-2.2fixed 14-2.2

  A memory leak vulnerability was found in Linux kernel in llcp_sock_connect

• CVE-2021-33034May 14, 2021
  affected < 6-2.2fixed 6-2.2

  In the Linux kernel before 5.12.4, net/bluetooth/hci_event.c has a use-after-free when destroying an hci_chan, aka CID-5c4c8c954409. This leads to writing an arbitrary value.

• CVE-2021-23134May 12, 2021
  affected < 14-2.2fixed 14-2.2

  Use After Free vulnerability in nfc sockets in the Linux Kernel before 5.12.4 allows local attackers to elevate their privileges. In typical configurations, the issue can only be triggered by a privileged local user with the CAP_NET_RAW capability.

• CVE-2021-32399May 10, 2021
  affected < 6-2.2fixed 6-2.2

  net/bluetooth/hci_request.c in the Linux kernel through 5.12.2 has a race condition for removal of the HCI controller.

• CVE-2020-36322Apr 14, 2021
  affected < 5-2.2fixed 5-2.2

  An issue was discovered in the FUSE filesystem implementation in the Linux kernel before 5.10.6, aka CID-5d069dbe8aaf. fuse_do_getattr() calls make_bad_inode() in inappropriate situations, causing a system crash. NOTE: the original fix for this vulnerability was incomplete, and i

• CVE-2021-29154Apr 8, 2021
  affected < 5-2.2fixed 5-2.2

  BPF JIT compilers in the Linux kernel through 5.11.12 have incorrect computation of branch displacements, allowing them to execute arbitrary code within the kernel context. This affects arch/x86/net/bpf_jit_comp.c and arch/x86/net/bpf_jit_comp32.c.

• CVE-2021-28688Apr 6, 2021
  affected < 4-2.2fixed 4-2.2

  The fix for XSA-365 includes initialization of pointers such that subsequent cleanup code wouldn't use uninitialized or stale values. This initialization went too far and may under certain conditions also overwrite pointers which are in need of cleaning up. The lack of cleanup wo

• CVE-2021-27365Mar 7, 2021
  affected < 3-2.2fixed 3-2.2

  An issue was discovered in the Linux kernel through 5.11.3. Certain iSCSI data structures do not have appropriate length constraints or checks, and can exceed the PAGE_SIZE value. An unprivileged user can send a Netlink message that is associated with iSCSI, and has a length up t

• CVE-2021-27364Mar 7, 2021
  affected < 3-2.2fixed 3-2.2

  An issue was discovered in the Linux kernel through 5.11.3. drivers/scsi/scsi_transport_iscsi.c is adversely affected by the ability of an unprivileged user to craft Netlink messages.

• CVE-2021-27363Mar 7, 2021
  affected < 3-2.2fixed 3-2.2

  An issue was discovered in the Linux kernel through 5.11.3. A kernel pointer leak can be used to determine the address of the iscsi_transport structure. When an iSCSI transport is registered with the iSCSI subsystem, the transport's handle is available to unprivileged users via t

• CVE-2021-26931Feb 17, 2021
  affected < 4-2.2fixed 4-2.2

  An issue was discovered in the Linux kernel 2.6.39 through 5.10.16, as used in Xen. Block, net, and SCSI backends consider certain errors a plain bug, deliberately causing a kernel crash. For errors potentially being at least under the influence of guests (such as out of memory c

• CVE-2021-26930Feb 17, 2021
  affected < 4-2.2fixed 4-2.2

  An issue was discovered in the Linux kernel 3.11 through 5.10.16, as used by Xen. To service requests to the PV backend, the driver maps grant references provided by the frontend. In this process, errors may be encountered. In one case, an error encountered earlier might be disca

• CVE-2021-3347Jan 29, 2021
  affected < 1-4.3.1fixed 1-4.3.1

  An issue was discovered in the Linux kernel through 5.10.11. PI futexes have a kernel stack use-after-free during fault handling, allowing local users to execute code in the kernel, aka CID-34b1a1ce1458.

• CVE-2020-28374Jan 13, 2021
  affected < 2-2.2fixed 2-2.2

  In drivers/target/target_core_xcopy.c in the Linux kernel before 5.10.7, insufficient identifier checking in the LIO SCSI target code can be used by remote attackers to read or write files via directory traversal in an XCOPY request, aka CID-2896c93811e3. For example, an attack c

• CVE-2020-27835Jan 7, 2021
  affected < 1-4.3.1fixed 1-4.3.1

  A use after free in the Linux kernel infiniband hfi1 driver in versions prior to 5.10-rc6 was found in the way user calls Ioctl after open dev file and fork. A local user could use this flaw to crash the system.

• CVE-2020-36158Jan 5, 2021
  affected < 1-4.3.1fixed 1-4.3.1

  mwifiex_cmd_802_11_ad_hoc_start in drivers/net/wireless/marvell/mwifiex/join.c in the Linux kernel through 5.10.4 might allow remote attackers to execute arbitrary code via a long SSID value, aka CID-5c455c5ab332.