Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP2) SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2021:2361-1 Final 1 1 2021-07-15T13:20:52Z current 2021-07-15T13:20:52Z 2021-07-15T13:20:52Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP2) This update for the Linux Kernel 5.3.18-24_49 fixes several issues. The following security issues were fixed: - CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1187597) - CVE-2021-23133: Fixed a race condition in the SCTP sockets that can lead to kernel privilege escalation from the context of a network service or an unprivileged process. (bsc#1185901) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2021-2361,SUSE-SLE-Live-Patching-12-SP5-2021-2357,SUSE-SLE-Live-Patching-12-SP5-2021-2358,SUSE-SLE-Module-Live-Patching-15-SP1-2021-2359,SUSE-SLE-Module-Live-Patching-15-SP1-2021-2360,SUSE-SLE-Module-Live-Patching-15-SP1-2021-2365,SUSE-SLE-Module-Live-Patching-15-SP1-2021-2371,SUSE-SLE-Module-Live-Patching-15-SP2-2021-2361,SUSE-SLE-Module-Live-Patching-15-SP2-2021-2362,SUSE-SLE-Module-Live-Patching-15-SP2-2021-2363 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2021/suse-su-20212361-1/ Link for SUSE-SU-2021:2361-1 https://lists.suse.com/pipermail/sle-security-updates/2021-July/009148.html E-Mail link for SUSE-SU-2021:2361-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1185901 SUSE Bug 1185901 https://bugzilla.suse.com/1187597 SUSE Bug 1187597 https://www.suse.com/security/cve/CVE-2021-0512/ SUSE CVE CVE-2021-0512 page https://www.suse.com/security/cve/CVE-2021-23133/ SUSE CVE CVE-2021-23133 page SUSE Linux Enterprise Live Patching 12 SP5 SUSE Linux Enterprise Live Patching 15 SP1 SUSE Linux Enterprise Live Patching 15 SP2 kernel-livepatch-5_3_18-24_43-default-8-2.2 kernel-livepatch-5_3_18-24_43-preempt-8-2.2 kgraft-patch-4_12_14-122_46-default-10-2.2 kgraft-patch-4_12_14-122_60-default-7-2.2 kernel-livepatch-4_12_14-197_75-default-8-2.2 kernel-livepatch-4_12_14-197_78-default-8-2.3 kernel-livepatch-4_12_14-197_86-default-6-2.2 kernel-livepatch-4_12_14-197_89-default-3-2.1 kernel-livepatch-5_3_18-24_46-default-8-2.2 kernel-livepatch-5_3_18-24_49-default-7-2.2 kgraft-patch-4_12_14-122_46-default-10-2.2 as a component of SUSE Linux Enterprise Live Patching 12 SP5 kgraft-patch-4_12_14-122_60-default-7-2.2 as a component of SUSE Linux Enterprise Live Patching 12 SP5 kernel-livepatch-4_12_14-197_75-default-8-2.2 as a component of SUSE Linux Enterprise Live Patching 15 SP1 kernel-livepatch-4_12_14-197_78-default-8-2.3 as a component of SUSE Linux Enterprise Live Patching 15 SP1 kernel-livepatch-4_12_14-197_86-default-6-2.2 as a component of SUSE Linux Enterprise Live Patching 15 SP1 kernel-livepatch-4_12_14-197_89-default-3-2.1 as a component of SUSE Linux Enterprise Live Patching 15 SP1 kernel-livepatch-5_3_18-24_43-default-8-2.2 as a component of SUSE Linux Enterprise Live Patching 15 SP2 kernel-livepatch-5_3_18-24_46-default-8-2.2 as a component of SUSE Linux Enterprise Live Patching 15 SP2 kernel-livepatch-5_3_18-24_49-default-7-2.2 as a component of SUSE Linux Enterprise Live Patching 15 SP2 In __hidinput_change_resolution_multipliers of hid-input.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-173843328References: Upstream kernel CVE-2021-0512 SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_46-default-10-2.2 SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_60-default-7-2.2 SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_75-default-8-2.2 SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_78-default-8-2.3 SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_86-default-6-2.2 SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_89-default-3-2.1 SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-24_43-default-8-2.2 SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-24_46-default-8-2.2 SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-24_49-default-7-2.2 important 4.6 AV:L/AC:L/Au:N/C:P/I:P/A:P 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20212361-1/ https://www.suse.com/security/cve/CVE-2021-0512.html CVE-2021-0512 https://bugzilla.suse.com/1187595 SUSE Bug 1187595 https://bugzilla.suse.com/1187597 SUSE Bug 1187597 A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process. If sctp_destroy_sock is called without sock_net(sk)->sctp.addr_wq_lock then an element is removed from the auto_asconf_splist list without any proper locking. This can be exploited by an attacker with network service privileges to escalate to root or from the context of an unprivileged user directly if a BPF_CGROUP_INET_SOCK_CREATE is attached which denies creation of some SCTP socket. CVE-2021-23133 SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_46-default-10-2.2 SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_60-default-7-2.2 SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_75-default-8-2.2 SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_78-default-8-2.3 SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_86-default-6-2.2 SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_89-default-3-2.1 SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-24_43-default-8-2.2 SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-24_46-default-8-2.2 SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-24_49-default-7-2.2 important 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20212361-1/ https://www.suse.com/security/cve/CVE-2021-23133.html CVE-2021-23133 https://bugzilla.suse.com/1184675 SUSE Bug 1184675 https://bugzilla.suse.com/1185901 SUSE Bug 1185901