[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-OPENSUSE-SU-2021:2427-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T02:53:27.892Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":40,"duplicates":41,"related":42,"reserved_at":9,"published_at":56,"modified_at":57,"state":9,"summary":58,"references_raw":60,"kevs":193,"epss":9,"epss_history":194,"metrics":195,"affected":196},"OPENSUSE-SU-2021:2427-1","Security update for the Linux Kernel\n\nThe SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2021-22555: Fixed an heap out-of-bounds write in net/netfilter/x_tables.c that could allow local provilege escalation. (bsc#1188116)\n- CVE-2021-33624: Fixed a bug which allows unprivileged BPF program to leak the contents of arbitrary kernel memory (and therefore, of all physical memory) via a side-channel. (bsc#1187554)\n- CVE-2021-0605: Fixed an out-of-bounds read which could lead to local information disclosure in the kernel with System execution privileges needed. (bsc#1187601)\n- CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1187595)\n- CVE-2020-26558: Fixed a flaw in the Bluetooth LE and BR/EDR secure pairing that could permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing. (bnc#1179610)\n- CVE-2021-34693: Fixed a bug in net/can/bcm.c which could allow local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized. (bsc#1187452)\n- CVE-2021-0129: Fixed an improper access control in BlueZ that may have allowed an authenticated user to potentially enable information disclosure via adjacent access. (bnc#1186463)\n- CVE-2020-36386: Fixed an out-of-bounds read in hci_extended_inquiry_result_evt. (bsc#1187038)\n- CVE-2020-24588: Fixed a bug that could allow an adversary to abuse devices that support receiving non-SSP A-MSDU frames to inject arbitrary network packets. (bsc#1185861 bsc#1185863)\n- CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to andobtain full root privileges. (bsc#1188062)\n- CVE-2021-3609: Fixed a race condition in the CAN BCM networking protocol which allows for local privilege escalation. (bsc#1187215)\n- CVE-2020-36385: Fixed a use-after-free flaw in ucma.c which allows for local privilege escalation. (bsc#1187050)\n- CVE-2021-33200: Fix leakage of uninitialized bpf stack under speculation. (bsc#1186484)\n\nThe following non-security bugs were fixed:\n\n- af_packet: fix the tx skb protocol in raw sockets with ETH_P_ALL (bsc#1176081).\n- kabi: preserve struct header_ops after bsc#1176081 fix (bsc#1176081).\n- net: Do not set transport offset to invalid value (bsc#1176081).\n- net: Introduce parse_protocol header_ops callback (bsc#1176081).\n- net/ethernet: Add parse_protocol header_ops support (bsc#1176081).\n- net/mlx5e: Remove the wrong assumption about transport offset (bsc#1176081).\n- net/mlx5e: Trust kernel regarding transport offset (bsc#1176081).\n- net/packet: Ask driver for protocol if not provided by user (bsc#1176081).\n- net/packet: Remove redundant skb->protocol set (bsc#1176081).\n- resource: Fix find_next_iomem_res() iteration issue (bsc#1181193).\n- scsi: scsi_dh_alua: Retry RTPG on a different path after failure (bsc#1174978 bsc#1185701).\n- SUNRPC in case of backlog, hand free slots directly to waiting task (bsc#1185428).\n- SUNRPC: More fixes for backlog congestion (bsc#1185428).\n- x86/crash: Add e820 reserved ranges to kdump kernel's e820 table (bsc#1181193).\n- x86/debug: Extend the lower bound of crash kernel low reservations (bsc#1153720).\n- x86/e820, ioport: Add a new I/O resource descriptor IORES_DESC_RESERVED (bsc#1181193).\n- x86/mm: Rework ioremap resource mapping determination (bsc#1181193).\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38],{"_key":15},"CVE-2020-24588",{"_key":17},"CVE-2020-26558",{"_key":19},"CVE-2020-36385",{"_key":21},"CVE-2020-36386",{"_key":23},"CVE-2021-0129",{"_key":25},"CVE-2021-0512",{"_key":27},"CVE-2021-0605",{"_key":29},"CVE-2021-22555",{"_key":31},"CVE-2021-33200",{"_key":33},"CVE-2021-33624",{"_key":35},"CVE-2021-33909",{"_key":37},"CVE-2021-34693",{"_key":39},"CVE-2021-3609",[],[],[43,44,45,46,47,48,49,50,51,52,53,54,55],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},"2021-07-21T09:28:39Z","2026-02-04T02:27:11.617772Z",{"cisa_kev":59,"cisa_ransomware":59,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[61,67,72,76,80,84,88,92,96,100,104,108,112,116,120,124,128,132,136,140,145,149,153,157,161,165,169,173,177,181,185,189],{"url":62,"sources":63,"tags":65},"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/HJIMD6XIKYMKE35TUYXKKYPX4737LEVU/",[64],"osv_opensuse",[66],"Advisory",{"url":68,"sources":69,"tags":70},"https://bugzilla.suse.com/1153720",[64],[71],"REPORT",{"url":73,"sources":74,"tags":75},"https://bugzilla.suse.com/1174978",[64],[71],{"url":77,"sources":78,"tags":79},"https://bugzilla.suse.com/1179610",[64],[71],{"url":81,"sources":82,"tags":83},"https://bugzilla.suse.com/1181193",[64],[71],{"url":85,"sources":86,"tags":87},"https://bugzilla.suse.com/1185428",[64],[71],{"url":89,"sources":90,"tags":91},"https://bugzilla.suse.com/1185701",[64],[71],{"url":93,"sources":94,"tags":95},"https://bugzilla.suse.com/1185861",[64],[71],{"url":97,"sources":98,"tags":99},"https://bugzilla.suse.com/1186463",[64],[71],{"url":101,"sources":102,"tags":103},"https://bugzilla.suse.com/1186484",[64],[71],{"url":105,"sources":106,"tags":107},"https://bugzilla.suse.com/1187038",[64],[71],{"url":109,"sources":110,"tags":111},"https://bugzilla.suse.com/1187050",[64],[71],{"url":113,"sources":114,"tags":115},"https://bugzilla.suse.com/1187215",[64],[71],{"url":117,"sources":118,"tags":119},"https://bugzilla.suse.com/1187452",[64],[71],{"url":121,"sources":122,"tags":123},"https://bugzilla.suse.com/1187554",[64],[71],{"url":125,"sources":126,"tags":127},"https://bugzilla.suse.com/1187595",[64],[71],{"url":129,"sources":130,"tags":131},"https://bugzilla.suse.com/1187601",[64],[71],{"url":133,"sources":134,"tags":135},"https://bugzilla.suse.com/1188062",[64],[71],{"url":137,"sources":138,"tags":139},"https://bugzilla.suse.com/1188116",[64],[71],{"url":141,"sources":142,"tags":143},"https://www.suse.com/security/cve/CVE-2020-24588",[64],[144],"WEB",{"url":146,"sources":147,"tags":148},"https://www.suse.com/security/cve/CVE-2020-26558",[64],[144],{"url":150,"sources":151,"tags":152},"https://www.suse.com/security/cve/CVE-2020-36385",[64],[144],{"url":154,"sources":155,"tags":156},"https://www.suse.com/security/cve/CVE-2020-36386",[64],[144],{"url":158,"sources":159,"tags":160},"https://www.suse.com/security/cve/CVE-2021-0129",[64],[144],{"url":162,"sources":163,"tags":164},"https://www.suse.com/security/cve/CVE-2021-0512",[64],[144],{"url":166,"sources":167,"tags":168},"https://www.suse.com/security/cve/CVE-2021-0605",[64],[144],{"url":170,"sources":171,"tags":172},"https://www.suse.com/security/cve/CVE-2021-22555",[64],[144],{"url":174,"sources":175,"tags":176},"https://www.suse.com/security/cve/CVE-2021-33200",[64],[144],{"url":178,"sources":179,"tags":180},"https://www.suse.com/security/cve/CVE-2021-33624",[64],[144],{"url":182,"sources":183,"tags":184},"https://www.suse.com/security/cve/CVE-2021-33909",[64],[144],{"url":186,"sources":187,"tags":188},"https://www.suse.com/security/cve/CVE-2021-34693",[64],[144],{"url":190,"sources":191,"tags":192},"https://www.suse.com/security/cve/CVE-2021-3609",[64],[144],[],[],[],[197,210,215,220,225],{"ecosystem":198,"name":199,"vendor":200,"product":201,"cpe_part":9,"purl_type":202,"purl_namespace":200,"purl_name":201,"source":9,"versions":203},"openSUSE","kernel-debug","opensuse","kernel-debug&distro=openSUSE Leap 15.3","rpm",[204],{"version":205,"is_range":206,"range_type":207,"version_start":9,"version_start_type":9,"version_end":208,"version_end_type":209,"fixed_in":9},"lt4_12_14_197_99_1",true,"ecosystem","4.12.14-197.99.1","excluding",{"ecosystem":198,"name":211,"vendor":200,"product":212,"cpe_part":9,"purl_type":202,"purl_namespace":200,"purl_name":212,"source":9,"versions":213},"kernel-default","kernel-default&distro=openSUSE Leap 15.3",[214],{"version":205,"is_range":206,"range_type":207,"version_start":9,"version_start_type":9,"version_end":208,"version_end_type":209,"fixed_in":9},{"ecosystem":198,"name":216,"vendor":200,"product":217,"cpe_part":9,"purl_type":202,"purl_namespace":200,"purl_name":217,"source":9,"versions":218},"kernel-kvmsmall","kernel-kvmsmall&distro=openSUSE Leap 15.3",[219],{"version":205,"is_range":206,"range_type":207,"version_start":9,"version_start_type":9,"version_end":208,"version_end_type":209,"fixed_in":9},{"ecosystem":198,"name":221,"vendor":200,"product":222,"cpe_part":9,"purl_type":202,"purl_namespace":200,"purl_name":222,"source":9,"versions":223},"kernel-vanilla","kernel-vanilla&distro=openSUSE Leap 15.3",[224],{"version":205,"is_range":206,"range_type":207,"version_start":9,"version_start_type":9,"version_end":208,"version_end_type":209,"fixed_in":9},{"ecosystem":198,"name":226,"vendor":200,"product":227,"cpe_part":9,"purl_type":202,"purl_namespace":200,"purl_name":227,"source":9,"versions":228},"kernel-zfcpdump","kernel-zfcpdump&distro=openSUSE Leap 15.3",[229],{"version":205,"is_range":206,"range_type":207,"version_start":9,"version_start_type":9,"version_end":208,"version_end_type":209,"fixed_in":9}]