| Revision Date: | 2021-09-23 | Version: | 1 |
| Title: | Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important) |
| Description: |
This update for the Linux Kernel 4.4.180-94_138 fixes several issues.
The following security issues were fixed:
- CVE-2021-3653: Fixed missing validation of the KVM `int_ctl` VMCB field that would have allowed a malicious L1 guest to enable AVIC support for the L2 guest (bsc#1189420). - CVE-2021-38198: Fixed KVM MMU to use the correct inherited permissions to get shadow page (bsc#1189278).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1189278
1189420
CVE-2021-3653
CVE-2021-38198
|
| Platform(s): | SUSE Linux Enterprise Server 12 SP3-ESPOS
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND kgraft-patch-4_4_180-94_138-default-10-2.2 is installed
|