SUSE-SU-2021:3735-1
Advisory lineage Upstream: 3 Downstream: 0
Published: 19 Nov 2021, 14:34
Last modified:04 Feb 2026, 04:05
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
19 Nov 2021, 14:34
Published
Vulnerability first disclosed
04 Feb 2026, 04:05
Last Modified
Vulnerability information updated
Description
Security update for the Linux Kernel (Live Patch 22 for SLE 15) This update for the Linux Kernel 4.12.14-150_66 fixes several issues. The following security issues were fixed: - CVE-2021-0935: Fixed use after free that could lead to local escalation of privilege in ip6_xmit of ip6_output.c (bsc#1192042). - CVE-2021-3752: Fixed vulnerability in the linux kernel Bluetooth uaf module (bsc#1190432). - CVE-2021-41864: Fixed an integer overflow with a resultant out-of-bounds write in prealloc_elems_and_freelist in kernel/bpf/stackmap.c (bsc#1191318).
Affected Systems
- suse•kernel-livepatch-SLE15_Update_22&distro=SUSE Linux Enterprise Live Patching 15
< 12-2.2
- suse•kgraft-patch-SLE12-SP4_Update_20&distro=SUSE Linux Enterprise Live Patching 12 SP4
< 8-2.2
- suse•kgraft-patch-SLE12-SP5_Update_15&distro=SUSE Linux Enterprise Live Patching 12 SP5
< 12-2.2
References (7)
- https://www.suse.com/support/update/announcement/2021/suse-su-20213735-1/
- https://bugzilla.suse.com/1190432
- https://bugzilla.suse.com/1191318
- https://bugzilla.suse.com/1192042
- https://www.suse.com/security/cve/CVE-2021-0935
- https://www.suse.com/security/cve/CVE-2021-3752
- https://www.suse.com/security/cve/CVE-2021-41864