| Revision Date: | 2021-08-17 | Version: | 1 |
| Title: | Security update for the Linux Kernel (Live Patch 23 for SLE 15 SP1) (Important) |
| Description: |
This update for the Linux Kernel 4.12.14-197_86 fixes several issues.
The following security issues were fixed:
- CVE-2021-22543: Fixed an issue with KVM, related to the handling of VM_IO|VM_PFNMAP vmas, which allowed users with the ability to start and control a VM to read/write random pages of memory and could result in local privilege escalation (bsc#1186482). - CVE-2021-37576: On the powerpc platform KVM guest OS users could cause host OS memory corruption via rtas_args.nargs (bsc#1188838). - CVE-2021-3609: Fixed a local privilege escalation via a race condition in net/can/bcm.c (bsc#1187215).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1186483
1188323
1188842
CVE-2021-22543
CVE-2021-3609
CVE-2021-37576
|
| Platform(s): | SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND kernel-livepatch-4_12_14-197_86-default-8-2.2 is installed
|