===========================================================================
ZMCIRT Vulnerability Bulletin
ZMC-2021.04.13.0430
Linux Kernel: Multiple vulnerabilities
13th April 2021
===========================================================================
ZMCIRT Security Bulletin Summary
---------------------------------
Product: Linux Kernel
Publisher: SUSE
Operating System: SUSE
Impact/Access: Execute Arbitrary Code/Commands -- Existing Account
Increased Privileges -- Existing Account
Denial of Service -- Existing Account
Access Confidential Data -- Remote/Unauthenticated
Resolution: Patch/Upgrade
CVE Names: CVE-2021-27365 CVE-2021-27364 CVE-2021-27363
CVE-2020-25645 CVE-2020-1749 CVE-2020-0429
Reference: ESB-2021.1159
ESB-2021.1152
ESB-2021.0955
Original Bulletin:
https://www.suse.com/support/update/announcement/2021/suse-su-20211145-1
https://www.suse.com/support/update/announcement/2021/suse-su-20211148-1
Comment: This bulletin contains two (2) SUSE security advisories.
- --------------------------BEGIN INCLUDED TEXT--------------------
SUSE Security Update: Security update for the Linux Kernel (Live Patch 36 for
SLE 12 SP2)
______________________________________________________________________________
Announcement ID: SUSE-SU-2021:1145-1
Rating: important
References: #1182717 #1183120 #1183491
Cross-References: CVE-2021-27363 CVE-2021-27364 CVE-2021-27365
Affected Products:
SUSE Linux Enterprise Server 12-SP2-LTSS-SAP
SUSE Linux Enterprise Server 12-SP2-LTSS-ERICSSON
______________________________________________________________________________
An update that fixes three vulnerabilities is now available.
Description:
This update for the Linux Kernel 4.4.121-92_138 fixes several issues.
The following security issues were fixed:
o CVE-2021-27365: Fixed an issue where data structures did not have
appropriate length constraints or checks, and could exceed the PAGE_SIZE
value (bsc#1183491).
o CVE-2021-27363: Fixed a kernel pointer leak which could have been used to
determine the address of the iscsi_transport structure (bsc#1183120).
o CVE-2021-27364: Fixed an issue where an unprivileged user could craft
Netlink messages (bsc#1182717).
Patch Instructions:
To install this SUSE Security Update use the SUSE recommended installation
methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
o SUSE Linux Enterprise Server 12-SP2-LTSS-SAP:
zypper in -t patch SUSE-SLE-SERVER-12-SP2-LTSS-SAP-2021-1142=1
SUSE-SLE-SERVER-12-SP2-LTSS-SAP-2021-1143=1
SUSE-SLE-SERVER-12-SP2-LTSS-SAP-2021-1144=1
SUSE-SLE-SERVER-12-SP2-LTSS-SAP-2021-1145=1
SUSE-SLE-SERVER-12-SP2-LTSS-SAP-2021-1146=1
SUSE-SLE-SERVER-12-SP2-LTSS-SAP-2021-1147=1
o SUSE Linux Enterprise Server 12-SP2-LTSS-ERICSSON:
zypper in -t patch SUSE-SLE-SERVER-12-SP2-LTSS-ERICSSON-2021-1142=1
SUSE-SLE-SERVER-12-SP2-LTSS-ERICSSON-2021-1143=1
SUSE-SLE-SERVER-12-SP2-LTSS-ERICSSON-2021-1144=1
SUSE-SLE-SERVER-12-SP2-LTSS-ERICSSON-2021-1145=1
SUSE-SLE-SERVER-12-SP2-LTSS-ERICSSON-2021-1146=1
SUSE-SLE-SERVER-12-SP2-LTSS-ERICSSON-2021-1147=1
Package List:
o SUSE Linux Enterprise Server 12-SP2-LTSS-SAP (x86_64):
kgraft-patch-4_4_121-92_129-default-10-2.2
kgraft-patch-4_4_121-92_135-default-8-2.2
kgraft-patch-4_4_121-92_138-default-8-2.2
kgraft-patch-4_4_121-92_141-default-7-2.2
kgraft-patch-4_4_121-92_146-default-5-2.2
kgraft-patch-4_4_121-92_149-default-3-2.2
o SUSE Linux Enterprise Server 12-SP2-LTSS-ERICSSON (x86_64):
kgraft-patch-4_4_121-92_129-default-10-2.2
kgraft-patch-4_4_121-92_135-default-8-2.2
kgraft-patch-4_4_121-92_138-default-8-2.2
kgraft-patch-4_4_121-92_141-default-7-2.2
kgraft-patch-4_4_121-92_146-default-5-2.2
kgraft-patch-4_4_121-92_149-default-3-2.2
References:
o https://www.suse.com/security/cve/CVE-2021-27363.html
o https://www.suse.com/security/cve/CVE-2021-27364.html
o https://www.suse.com/security/cve/CVE-2021-27365.html
o https://bugzilla.suse.com/1182717
o https://bugzilla.suse.com/1183120
o https://bugzilla.suse.com/1183491
- --------------------------------------------------------------------------------
SUSE Security Update: Security update for the Linux Kernel (Live Patch 40 for
SLE 12 SP2)
______________________________________________________________________________
Announcement ID: SUSE-SU-2021:1148-1
Rating: important
References: #1165631 #1176931 #1177513 #1182717 #1183120 #1183491
Cross-References: CVE-2020-0429 CVE-2020-1749 CVE-2020-25645 CVE-2021-27363
CVE-2021-27364 CVE-2021-27365
Affected Products:
SUSE Linux Enterprise Server 12-SP2-LTSS-SAP
SUSE Linux Enterprise Server 12-SP2-LTSS-ERICSSON
______________________________________________________________________________
An update that fixes 6 vulnerabilities is now available.
Description:
This update for the Linux Kernel 4.4.121-92_152 fixes several issues.
The following security issues were fixed:
o CVE-2021-27365: Fixed an issue where data structures did not have
appropriate length constraints or checks, and could exceed the PAGE_SIZE
value (bsc#1183491).
o CVE-2021-27363: Fixed a kernel pointer leak which could have been used to
determine the address of the iscsi_transport structure (bsc#1183120).
o CVE-2021-27364: Fixed an issue where an unprivileged user could craft
Netlink messages (bsc#1182717).
o CVE-2020-25645: Fixed an an issue in IPsec that caused traffic between two
Geneve endpoints to be unencrypted (bsc#1177513).
o CVE-2020-0429: Fixed a memory corruption due to a use after free which
could have led to local escalation of privilege with System execution
privileges needed (bsc#1176931).
o CVE-2020-1749: Use ip6_dst_lookup_flow instead of ip6_dst_lookup (bsc#
1165631).
Patch Instructions:
To install this SUSE Security Update use the SUSE recommended installation
methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
o SUSE Linux Enterprise Server 12-SP2-LTSS-SAP:
zypper in -t patch SUSE-SLE-SERVER-12-SP2-LTSS-SAP-2021-1148=1
o SUSE Linux Enterprise Server 12-SP2-LTSS-ERICSSON:
zypper in -t patch SUSE-SLE-SERVER-12-SP2-LTSS-ERICSSON-2021-1148=1
Package List:
o SUSE Linux Enterprise Server 12-SP2-LTSS-SAP (x86_64):
kgraft-patch-4_4_121-92_152-default-2-2.2
o SUSE Linux Enterprise Server 12-SP2-LTSS-ERICSSON (x86_64):
kgraft-patch-4_4_121-92_152-default-2-2.2
References:
o https://www.suse.com/security/cve/CVE-2020-0429.html
o https://www.suse.com/security/cve/CVE-2020-1749.html
o https://www.suse.com/security/cve/CVE-2020-25645.html
o https://www.suse.com/security/cve/CVE-2021-27363.html
o https://www.suse.com/security/cve/CVE-2021-27364.html
o https://www.suse.com/security/cve/CVE-2021-27365.html
o https://bugzilla.suse.com/1165631
o https://bugzilla.suse.com/1176931
o https://bugzilla.suse.com/1177513
o https://bugzilla.suse.com/1182717
o https://bugzilla.suse.com/1183120
o https://bugzilla.suse.com/1183491
ZMCIRT has made every effort to ensure that the information contained
in this document is accurate. However, the decision to use the information
described is the responsibility of each user or organisation. The decision to
follow or act on information or advice contained in this security bulletin is
the responsibility of each user or organisation, and should be considered in
accordance with your organisation's site policies and procedures. ZMCERT
takes no responsibility for consequences which may arise from following or
acting on information or advice contained in this security bulletin.
===========================================================================
Internet Email: incidents@cirt.zm
Telephone: 7070
ZMCIRT personnel answer during Zambian business hours
which are 8am to 5pm.
On call after hours for member emergencies only.
===========================================================================
Copyright @2023 ZAMBIA CIRT