Oval Definition:oval:org.opensuse.security:def:109097
Revision Date:2021-08-17Version:1
Title:Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP2) (Important)
Description:

This update for the Linux Kernel 5.3.18-24_49 fixes several issues.

The following security issues were fixed:

- CVE-2021-22543: Fixed an issue with KVM, related to the handling of VM_IO|VM_PFNMAP vmas, which allowed users with the ability to start and control a VM to read/write random pages of memory and could result in local privilege escalation (bsc#1186482). - CVE-2021-37576: On the powerpc platform KVM guest OS users could cause host OS memory corruption via rtas_args.nargs (bsc#1188838). - CVE-2021-3609: Fixed a local privilege escalation via a race condition in net/can/bcm.c (bsc#1187215).
Family:unixClass:patch
Status:Reference(s):1186483
1188323
1188842
CVE-2021-22543
CVE-2021-3609
CVE-2021-37576
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Live Patching 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed
  • AND kernel-livepatch-5_3_18-24_49-default-9-2.2 is installed
  • BACK