SUSE-SU-2021:3684-1

Description

Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP1) This update for the Linux Kernel 4.12.14-197_99 fixes several issues. The following security issues were fixed: - CVE-2021-0935: Fixed use after free that could lead to local escalation of privilege in ip6_xmit of ip6_output.c (bsc#1192042). - CVE-2021-3752: Fixed vulnerability in the linux kernel Bluetooth uaf module (bsc#1190432). - CVE-2021-41864: Fixed an integer overflow with a resultant out-of-bounds write in prealloc_elems_and_freelist in kernel/bpf/stackmap.c (bsc#1191318).

Affected Systems

• suse•kernel-livepatch-SLE15_Update_21&distro=SUSE Linux Enterprise Live Patching 15

  < 14-2.2

• suse•kernel-livepatch-SLE15_Update_23&distro=SUSE Linux Enterprise Live Patching 15

  < 11-2.2

• suse•kernel-livepatch-SLE15_Update_24&distro=SUSE Linux Enterprise Live Patching 15

  < 8-2.2

• suse•kernel-livepatch-SLE15_Update_25&distro=SUSE Linux Enterprise Live Patching 15

  < 5-2.2

• suse•kernel-livepatch-SLE15-SP1_Update_18&distro=SUSE Linux Enterprise Live Patching 15 SP1

  < 14-2.2

• suse•kernel-livepatch-SLE15-SP1_Update_19&distro=SUSE Linux Enterprise Live Patching 15 SP1

  < 13-2.2

• suse•kernel-livepatch-SLE15-SP1_Update_20&distro=SUSE Linux Enterprise Live Patching 15 SP1

  < 13-2.2

• suse•kernel-livepatch-SLE15-SP1_Update_21&distro=SUSE Linux Enterprise Live Patching 15 SP1

  < 13-2.2

• suse•kernel-livepatch-SLE15-SP1_Update_22&distro=SUSE Linux Enterprise Live Patching 15 SP1

  < 12-2.2

• suse•kernel-livepatch-SLE15-SP1_Update_23&distro=SUSE Linux Enterprise Live Patching 15 SP1

  < 11-2.2

• suse•kernel-livepatch-SLE15-SP1_Update_24&distro=SUSE Linux Enterprise Live Patching 15 SP1

  < 8-2.2

• suse•kernel-livepatch-SLE15-SP1_Update_25&distro=SUSE Linux Enterprise Live Patching 15 SP1

  < 7-2.2

• suse•kernel-livepatch-SLE15-SP1_Update_26&distro=SUSE Linux Enterprise Live Patching 15 SP1

  < 5-2.2

• suse•kgraft-patch-SLE12-SP4_Update_17&distro=SUSE Linux Enterprise Live Patching 12 SP4

  < 13-2.2

• suse•kgraft-patch-SLE12-SP4_Update_18&distro=SUSE Linux Enterprise Live Patching 12 SP4

  < 12-2.2

• suse•kgraft-patch-SLE12-SP4_Update_19&distro=SUSE Linux Enterprise Live Patching 12 SP4

  < 11-2.2

• suse•kgraft-patch-SLE12-SP4_Update_21&distro=SUSE Linux Enterprise Live Patching 12 SP4

  < 7-2.2

• suse•kgraft-patch-SLE12-SP4_Update_22&distro=SUSE Linux Enterprise Live Patching 12 SP4

  < 5-2.2

• suse•kgraft-patch-SLE12-SP5_Update_12&distro=SUSE Linux Enterprise Live Patching 12 SP5

  < 15-2.2

• suse•kgraft-patch-SLE12-SP5_Update_13&distro=SUSE Linux Enterprise Live Patching 12 SP5

  < 13-2.2

• suse•kgraft-patch-SLE12-SP5_Update_14&distro=SUSE Linux Enterprise Live Patching 12 SP5

  < 13-2.2

• suse•kgraft-patch-SLE12-SP5_Update_16&distro=SUSE Linux Enterprise Live Patching 12 SP5

  < 11-2.2

• suse•kgraft-patch-SLE12-SP5_Update_17&distro=SUSE Linux Enterprise Live Patching 12 SP5

  < 9-2.2

• suse•kgraft-patch-SLE12-SP5_Update_18&distro=SUSE Linux Enterprise Live Patching 12 SP5

  < 8-2.2

• suse•kgraft-patch-SLE12-SP5_Update_19&distro=SUSE Linux Enterprise Live Patching 12 SP5

  < 6-2.2

• suse•kgraft-patch-SLE12-SP5_Update_20&distro=SUSE Linux Enterprise Live Patching 12 SP5

  < 6-2.2

• suse•kgraft-patch-SLE12-SP5_Update_21&distro=SUSE Linux Enterprise Live Patching 12 SP5

  < 5-2.2

• suse•kgraft-patch-SLE12-SP5_Update_22&distro=SUSE Linux Enterprise Live Patching 12 SP5

  < 4-2.2

• suse•kgraft-patch-SLE12-SP5_Update_23&distro=SUSE Linux Enterprise Live Patching 12 SP5

  < 2-2.2

References (7)

• https://www.suse.com/support/update/announcement/2021/suse-su-20213684-1/
• https://bugzilla.suse.com/1190432
• https://bugzilla.suse.com/1191318
• https://bugzilla.suse.com/1192042
• https://www.suse.com/security/cve/CVE-2021-0935
• https://www.suse.com/security/cve/CVE-2021-3752
• https://www.suse.com/security/cve/CVE-2021-41864