Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2021-34981 (GCVE-0-2021-34981)
Vulnerability from cvelistv5 – Published: 2024-05-07 22:54 – Updated: 2024-08-04 00:26
VLAI
EPSS
Title
Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability
Summary
Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability.
The specific flaw exists within the CMTP module. The issue results from the lack of validating the existence of an object prior to performing further free operations on the object. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the kernel. Was ZDI-CAN-11977.
Severity
7.5 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-415 - Double Free
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://www.zerodayinitiative.com/advisories/ZDI-… | x_research-advisory |
Impacted products
Date Public
2021-10-26 10:10
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:a:linux:kernel:4.15.0-118-generic:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "kernel",
"vendor": "linux",
"versions": [
{
"status": "affected",
"version": "4.15.0-118-generic"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2021-34981",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-05-08T14:56:48.288493Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-06-04T17:12:51.708Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-04T00:26:55.716Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "ZDI-21-1223",
"tags": [
"x_research-advisory",
"x_transferred"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1223/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unknown",
"product": "Kernel",
"vendor": "Linux",
"versions": [
{
"status": "affected",
"version": "4.15.0-118-generic"
}
]
}
],
"dateAssigned": "2021-06-30T13:56:51.715Z",
"datePublic": "2021-10-26T10:10:16.323Z",
"descriptions": [
{
"lang": "en",
"value": "Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability.\n\nThe specific flaw exists within the CMTP module. The issue results from the lack of validating the existence of an object prior to performing further free operations on the object. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the kernel. Was ZDI-CAN-11977."
}
],
"metrics": [
{
"cvssV3_0": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-415",
"description": "CWE-415: Double Free",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-05-07T22:54:49.205Z",
"orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
"shortName": "zdi"
},
"references": [
{
"name": "ZDI-21-1223",
"tags": [
"x_research-advisory"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1223/"
}
],
"source": {
"lang": "en",
"value": "Ryota Shiga(@Ga_ryo_) of Flatt Security"
},
"title": "Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability"
}
},
"cveMetadata": {
"assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
"assignerShortName": "zdi",
"cveId": "CVE-2021-34981",
"datePublished": "2024-05-07T22:54:49.205Z",
"dateReserved": "2021-06-17T19:27:05.661Z",
"dateUpdated": "2024-08-04T00:26:55.716Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2021-34981",
"date": "2026-06-07",
"epss": "0.00013",
"percentile": "0.02085"
},
"fkie_nvd": {
"descriptions": "[{\"lang\": \"en\", \"value\": \"Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability.\\n\\nThe specific flaw exists within the CMTP module. The issue results from the lack of validating the existence of an object prior to performing further free operations on the object. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the kernel. Was ZDI-CAN-11977.\"}, {\"lang\": \"es\", \"value\": \"Vulnerabilidad de escalada de privilegios gratuita doble del m\\u00f3dulo CMTP Bluetooth del kernel de Linux. Esta vulnerabilidad permite a atacantes locales escalar privilegios en las instalaciones afectadas del kernel de Linux. Un atacante primero debe obtener la capacidad de ejecutar c\\u00f3digo con altos privilegios en el sistema de destino para poder explotar esta vulnerabilidad. La falla espec\\u00edfica existe dentro del m\\u00f3dulo CMTP. El problema surge de la falta de validaci\\u00f3n de la existencia de un objeto antes de realizar m\\u00e1s operaciones libres sobre el objeto. Un atacante puede aprovechar esta vulnerabilidad para escalar privilegios y ejecutar c\\u00f3digo en el contexto del kernel. Era ZDI-CAN-11977.\"}]",
"id": "CVE-2021-34981",
"lastModified": "2024-11-21T06:11:38.233",
"metrics": "{\"cvssMetricV30\": [{\"source\": \"zdi-disclosures@trendmicro.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"HIGH\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 0.8, \"impactScore\": 6.0}]}",
"published": "2024-05-07T23:15:13.173",
"references": "[{\"url\": \"https://www.zerodayinitiative.com/advisories/ZDI-21-1223/\", \"source\": \"zdi-disclosures@trendmicro.com\"}, {\"url\": \"https://www.zerodayinitiative.com/advisories/ZDI-21-1223/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "zdi-disclosures@trendmicro.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": "[{\"source\": \"zdi-disclosures@trendmicro.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-415\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2021-34981\",\"sourceIdentifier\":\"zdi-disclosures@trendmicro.com\",\"published\":\"2024-05-07T23:15:13.173\",\"lastModified\":\"2025-08-14T01:42:25.163\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability.\\n\\nThe specific flaw exists within the CMTP module. The issue results from the lack of validating the existence of an object prior to performing further free operations on the object. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the kernel. Was ZDI-CAN-11977.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad de escalada de privilegios gratuita doble del m\u00f3dulo CMTP Bluetooth del kernel de Linux. Esta vulnerabilidad permite a atacantes locales escalar privilegios en las instalaciones afectadas del kernel de Linux. Un atacante primero debe obtener la capacidad de ejecutar c\u00f3digo con altos privilegios en el sistema de destino para poder explotar esta vulnerabilidad. La falla espec\u00edfica existe dentro del m\u00f3dulo CMTP. El problema surge de la falta de validaci\u00f3n de la existencia de un objeto antes de realizar m\u00e1s operaciones libres sobre el objeto. Un atacante puede aprovechar esta vulnerabilidad para escalar privilegios y ejecutar c\u00f3digo en el contexto del kernel. Era ZDI-CAN-11977.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":6.7,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":0.8,\"impactScore\":5.9}],\"cvssMetricV30\":[{\"source\":\"zdi-disclosures@trendmicro.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":0.8,\"impactScore\":6.0}]},\"weaknesses\":[{\"source\":\"zdi-disclosures@trendmicro.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-415\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.10.42\",\"matchCriteriaId\":\"582C74A2-7C5A-40C2-A454-AD25DFDA786D\"}]}]}],\"references\":[{\"url\":\"https://www.zerodayinitiative.com/advisories/ZDI-21-1223/\",\"source\":\"zdi-disclosures@trendmicro.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.zerodayinitiative.com/advisories/ZDI-21-1223/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://www.zerodayinitiative.com/advisories/ZDI-21-1223/\", \"name\": \"ZDI-21-1223\", \"tags\": [\"x_research-advisory\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-04T00:26:55.716Z\"}}, {\"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2021-34981\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-05-08T14:56:48.288493Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:linux:kernel:4.15.0-118-generic:*:*:*:*:*:*:*\"], \"vendor\": \"linux\", \"product\": \"kernel\", \"versions\": [{\"status\": \"affected\", \"version\": \"4.15.0-118-generic\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-05-08T15:03:01.785Z\"}, \"title\": \"CISA ADP Vulnrichment\"}], \"cna\": {\"title\": \"Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability\", \"source\": {\"lang\": \"en\", \"value\": \"Ryota Shiga(@Ga_ryo_) of Flatt Security\"}, \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_0\": {\"version\": \"3.0\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H\"}}], \"affected\": [{\"vendor\": \"Linux\", \"product\": \"Kernel\", \"versions\": [{\"status\": \"affected\", \"version\": \"4.15.0-118-generic\"}], \"defaultStatus\": \"unknown\"}], \"datePublic\": \"2021-10-26T10:10:16.323Z\", \"references\": [{\"url\": \"https://www.zerodayinitiative.com/advisories/ZDI-21-1223/\", \"name\": \"ZDI-21-1223\", \"tags\": [\"x_research-advisory\"]}], \"dateAssigned\": \"2021-06-30T13:56:51.715Z\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability.\\n\\nThe specific flaw exists within the CMTP module. The issue results from the lack of validating the existence of an object prior to performing further free operations on the object. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the kernel. Was ZDI-CAN-11977.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-415\", \"description\": \"CWE-415: Double Free\"}]}], \"providerMetadata\": {\"orgId\": \"99f1926a-a320-47d8-bbb5-42feb611262e\", \"shortName\": \"zdi\", \"dateUpdated\": \"2024-05-07T22:54:49.205Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2021-34981\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-08-04T00:26:55.716Z\", \"dateReserved\": \"2021-06-17T19:27:05.661Z\", \"assignerOrgId\": \"99f1926a-a320-47d8-bbb5-42feb611262e\", \"datePublished\": \"2024-05-07T22:54:49.205Z\", \"assignerShortName\": \"zdi\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
CERTFR-2021-AVI-941
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Elles permettent à un attaquant de provoquer un déni de service, une atteinte à la confidentialité des données et une élévation de privilèges.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| SUSE | SUSE Linux Enterprise Real Time | SUSE Linux Enterprise Real Time Extension 12-SP5 |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "SUSE Linux Enterprise Real Time Extension 12-SP5",
"product": {
"name": "SUSE Linux Enterprise Real Time",
"vendor": {
"name": "SUSE",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2021-20322",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20322"
},
{
"name": "CVE-2021-31916",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-31916"
},
{
"name": "CVE-2021-34981",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-34981"
},
{
"name": "CVE-2021-0941",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-0941"
}
],
"links": [],
"reference": "CERTFR-2021-AVI-941",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2021-12-13T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de\nSUSE. Elles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service,\nune atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une \u00e9l\u00e9vation de\nprivil\u00e8ges.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 SUSE suse-su-20213992-1 du 12 d\u00e9cembre 2021",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20213992-1/"
}
]
}
CERTFR-2023-AVI-0148
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans le noyau Linux de SUSE. Elles permettent à un attaquant de provoquer une atteinte à la confidentialité des données, un déni de service à distance, une atteinte à l'intégrité des données, une exécution de code arbitraire, une élévation de privilèges et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing 15-SP3-ESPOS | ||
| SUSE | SUSE Manager Retail Branch Server | SUSE Manager Retail Branch Server 4.2 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability 15-SP1 | ||
| SUSE | N/A | SUSE Linux Enterprise Workstation Extension 15-SP4 | ||
| SUSE | N/A | SUSE OpenStack Cloud 9 | ||
| SUSE | N/A | SUSE Linux Enterprise Module for Public Cloud 15-SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Module for Development Tools 15-SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Module for Live Patching 15-SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Module for Live Patching 15-SP1 | ||
| SUSE | N/A | SUSE OpenStack Cloud Crowbar 9 | ||
| SUSE | N/A | SUSE Enterprise Storage 7 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability 15-SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability 12-SP4 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 11-SP4-LTSS-EXTREME-CORE | ||
| SUSE | N/A | SUSE Linux Enterprise Module for Live Patching 15-SP2 | ||
| SUSE | N/A | SUSE Enterprise Storage 7.1 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability 15-SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Module for Legacy Software 15-SP4 | ||
| SUSE | N/A | SUSE CaaS Platform 4.0 | ||
| SUSE | N/A | SUSE Linux Enterprise Module for Live Patching 15-SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Realtime Extension 15-SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Module for Basesystem 15-SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability 15-SP2 | ||
| SUSE | openSUSE Leap | openSUSE Leap 15.4 | ||
| SUSE | openSUSE Leap | openSUSE Leap Micro 5.3 | ||
| SUSE | openSUSE Leap | openSUSE Leap Micro 5.2 | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing 15-SP4 | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing 15-SP3-LTSS | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS | ||
| SUSE | SUSE Linux Enterprise Live Patching | SUSE Linux Enterprise Live Patching 12-SP4 | ||
| SUSE | SUSE Linux Enterprise Micro | SUSE Linux Enterprise Micro 5.1 | ||
| SUSE | SUSE Linux Enterprise Micro | SUSE Linux Enterprise Micro 5.2 | ||
| SUSE | SUSE Linux Enterprise Micro | SUSE Linux Enterprise Micro 5.3 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15-SP1-LTSS | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP 12-SP4 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP Applications 15-SP4 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15-SP2-LTSS | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15-SP4 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 12-SP2-BCL | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP 15-SP3 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15-SP3-LTSS | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP 15-SP2 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP Applications | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP 15-SP1 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 12-SP4-LTSS | ||
| SUSE | SUSE Manager Server | SUSE Manager Server 4.3 | ||
| SUSE | SUSE Manager Server | SUSE Manager Server 4.2 | ||
| SUSE | SUSE Linux Enterprise Desktop | SUSE Linux Enterprise Desktop 15-SP4 | ||
| SUSE | SUSE Manager Proxy | SUSE Manager Proxy 4.2 | ||
| SUSE | SUSE Manager Proxy | SUSE Manager Proxy 4.3 | ||
| SUSE | SUSE Manager Retail Branch Server | SUSE Manager Retail Branch Server 4.3 |
References
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "SUSE Linux Enterprise High Performance Computing 15-SP3-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Retail Branch Server 4.2",
"product": {
"name": "SUSE Manager Retail Branch Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability 15-SP1",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Workstation Extension 15-SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE OpenStack Cloud 9",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Module for Public Cloud 15-SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Module for Development Tools 15-SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Module for Live Patching 15-SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Module for Live Patching 15-SP1",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE OpenStack Cloud Crowbar 9",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Enterprise Storage 7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability 15-SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability 12-SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 11-SP4-LTSS-EXTREME-CORE",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Module for Live Patching 15-SP2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Enterprise Storage 7.1",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability 15-SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Module for Legacy Software 15-SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE CaaS Platform 4.0",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Module for Live Patching 15-SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Realtime Extension 15-SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Module for Basesystem 15-SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability 15-SP2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.4",
"product": {
"name": "openSUSE Leap",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap Micro 5.3",
"product": {
"name": "openSUSE Leap",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap Micro 5.2",
"product": {
"name": "openSUSE Leap",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15-SP4",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15-SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 12-SP4",
"product": {
"name": "SUSE Linux Enterprise Live Patching",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.1",
"product": {
"name": "SUSE Linux Enterprise Micro",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "SUSE Linux Enterprise Micro",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "SUSE Linux Enterprise Micro",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15-SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP 12-SP4",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15-SP4",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15-SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15-SP4",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12-SP2-BCL",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP 15-SP3",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15-SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP 15-SP2",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP 15-SP1",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12-SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Server 4.3",
"product": {
"name": "SUSE Manager Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Server 4.2",
"product": {
"name": "SUSE Manager Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Desktop 15-SP4",
"product": {
"name": "SUSE Linux Enterprise Desktop",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Proxy 4.2",
"product": {
"name": "SUSE Manager Proxy",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Proxy 4.3",
"product": {
"name": "SUSE Manager Proxy",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Retail Branch Server 4.3",
"product": {
"name": "SUSE Manager Retail Branch Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2022-47520",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-47520"
},
{
"name": "CVE-2022-45934",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-45934"
},
{
"name": "CVE-2022-28356",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28356"
},
{
"name": "CVE-2023-23454",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23454"
},
{
"name": "CVE-2022-21127",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21127"
},
{
"name": "CVE-2022-47929",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-47929"
},
{
"name": "CVE-2022-42329",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42329"
},
{
"name": "CVE-2022-1652",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1652"
},
{
"name": "CVE-2023-23455",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23455"
},
{
"name": "CVE-2020-15393",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15393"
},
{
"name": "CVE-2022-20132",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-20132"
},
{
"name": "CVE-2022-29900",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29900"
},
{
"name": "CVE-2022-29901",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29901"
},
{
"name": "CVE-2023-0266",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0266"
},
{
"name": "CVE-2020-36557",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36557"
},
{
"name": "CVE-2022-42895",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42895"
},
{
"name": "CVE-2022-3643",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3643"
},
{
"name": "CVE-2022-43750",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43750"
},
{
"name": "CVE-2022-21166",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21166"
},
{
"name": "CVE-2022-3435",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3435"
},
{
"name": "CVE-2022-20166",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-20166"
},
{
"name": "CVE-2022-4662",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4662"
},
{
"name": "CVE-2022-41858",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41858"
},
{
"name": "CVE-2022-3564",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3564"
},
{
"name": "CVE-2021-33656",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-33656"
},
{
"name": "CVE-2022-3903",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3903"
},
{
"name": "CVE-2019-3837",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-3837"
},
{
"name": "CVE-2022-41218",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41218"
},
{
"name": "CVE-2022-4382",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4382"
},
{
"name": "CVE-2022-42896",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42896"
},
{
"name": "CVE-2022-21499",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21499"
},
{
"name": "CVE-2020-24588",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-24588"
},
{
"name": "CVE-2022-3112",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3112"
},
{
"name": "CVE-2023-0179",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0179"
},
{
"name": "CVE-2022-44033",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-44033"
},
{
"name": "CVE-2021-33655",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-33655"
},
{
"name": "CVE-2022-1462",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1462"
},
{
"name": "CVE-2022-4095",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4095"
},
{
"name": "CVE-2022-21125",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21125"
},
{
"name": "CVE-2022-1048",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1048"
},
{
"name": "CVE-2022-2663",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2663"
},
{
"name": "CVE-2022-3107",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3107"
},
{
"name": "CVE-2022-3649",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3649"
},
{
"name": "CVE-2021-34981",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-34981"
},
{
"name": "CVE-2022-41848",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41848"
},
{
"name": "CVE-2022-3524",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3524"
},
{
"name": "CVE-2018-7755",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-7755"
},
{
"name": "CVE-2022-39188",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39188"
},
{
"name": "CVE-2022-3586",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3586"
},
{
"name": "CVE-2022-41850",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41850"
},
{
"name": "CVE-2022-3646",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3646"
},
{
"name": "CVE-2021-39713",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39713"
},
{
"name": "CVE-2022-1011",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1011"
},
{
"name": "CVE-2022-42328",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42328"
},
{
"name": "CVE-2021-45868",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-45868"
},
{
"name": "CVE-2022-3565",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3565"
},
{
"name": "CVE-2022-21123",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21123"
},
{
"name": "CVE-2022-3115",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3115"
},
{
"name": "CVE-2022-20368",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-20368"
},
{
"name": "CVE-2022-2318",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2318"
},
{
"name": "CVE-2019-3900",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-3900"
},
{
"name": "CVE-2021-26341",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-26341"
},
{
"name": "CVE-2022-36946",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-36946"
},
{
"name": "CVE-2022-3303",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3303"
},
{
"name": "CVE-2022-3424",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3424"
},
{
"name": "CVE-2022-1679",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1679"
},
{
"name": "CVE-2022-3108",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3108"
},
{
"name": "CVE-2022-36879",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-36879"
},
{
"name": "CVE-2022-1353",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1353"
},
{
"name": "CVE-2020-16119",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-16119"
},
{
"name": "CVE-2017-13695",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-13695"
},
{
"name": "CVE-2022-20369",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-20369"
},
{
"name": "CVE-2022-21385",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21385"
},
{
"name": "CVE-2022-44032",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-44032"
},
{
"name": "CVE-2022-3621",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3621"
},
{
"name": "CVE-2022-3606",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3606"
},
{
"name": "CVE-2022-40768",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40768"
},
{
"name": "CVE-2022-21180",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21180"
},
{
"name": "CVE-2018-9517",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-9517"
},
{
"name": "CVE-2022-3028",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3028"
},
{
"name": "CVE-2023-0590",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0590"
},
{
"name": "CVE-2022-3105",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3105"
},
{
"name": "CVE-2022-3566",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3566"
},
{
"name": "CVE-2022-33981",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-33981"
},
{
"name": "CVE-2022-3635",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3635"
},
{
"name": "CVE-2023-0122",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0122"
},
{
"name": "CVE-2020-36558",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36558"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 SUSE du 14 f\u00e9vrier 2023",
"url": "https://www.suse.com/support/update/announcement/2023/suse-su-20230407-1/"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 SUSE du 14 f\u00e9vrier 2023",
"url": "https://www.suse.com/support/update/announcement/2023/suse-su-20230409-1/"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 SUSE du 15 f\u00e9vrier 2023",
"url": "https://www.suse.com/support/update/announcement/2023/suse-su-20230420-1/"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 SUSE du 16 f\u00e9vrier 2023",
"url": "https://www.suse.com/support/update/announcement/2023/suse-su-20230433-1/"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 SUSE du 13 f\u00e9vrier 2023",
"url": "https://www.suse.com/support/update/announcement/2023/suse-su-20230394-1/"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 SUSE du 15 f\u00e9vrier 2023",
"url": "https://www.suse.com/support/update/announcement/2023/suse-su-20230416-1/"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 SUSE du 14 f\u00e9vrier 2023",
"url": "https://www.suse.com/support/update/announcement/2023/suse-su-20230406-1/"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 SUSE du 14 f\u00e9vrier 2023",
"url": "https://www.suse.com/support/update/announcement/2023/suse-su-20230410-1/"
}
],
"reference": "CERTFR-2023-AVI-0148",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2023-02-17T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003ele noyau Linux de SUSE\u003c/span\u003e. Elles permettent \u00e0 un\nattaquant de provoquer une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es, un\nd\u00e9ni de service \u00e0 distance, une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es, une\nex\u00e9cution de code arbitraire, une \u00e9l\u00e9vation de privil\u00e8ges et un\ncontournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2023:0394-1 du 13 f\u00e9vrier 2023",
"url": null
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2023:0416-1 du 15 f\u00e9vrier 2023",
"url": null
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2023:0420-1 du 15 f\u00e9vrier 2023",
"url": null
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2023:0406-1 du 14 f\u00e9vrier 2023",
"url": null
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2023:0410-1 du 14 f\u00e9vrier 2023",
"url": null
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2023:0409-1 du 14 f\u00e9vrier 2023",
"url": null
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2023:0433-1 du 16 f\u00e9vrier 2023",
"url": null
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2023:0407-1 du 14 f\u00e9vrier 2023",
"url": null
}
]
}
FKIE_CVE-2021-34981
Vulnerability from fkie_nvd - Published: 2024-05-07 23:15 - Updated: 2025-08-14 01:42
Severity
Summary
Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability.
The specific flaw exists within the CMTP module. The issue results from the lack of validating the existence of an object prior to performing further free operations on the object. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the kernel. Was ZDI-CAN-11977.
References
| URL | Tags | ||
|---|---|---|---|
| zdi-disclosures@trendmicro.com | https://www.zerodayinitiative.com/advisories/ZDI-21-1223/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.zerodayinitiative.com/advisories/ZDI-21-1223/ | Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| linux | linux_kernel | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "582C74A2-7C5A-40C2-A454-AD25DFDA786D",
"versionEndExcluding": "5.10.42",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability.\n\nThe specific flaw exists within the CMTP module. The issue results from the lack of validating the existence of an object prior to performing further free operations on the object. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the kernel. Was ZDI-CAN-11977."
},
{
"lang": "es",
"value": "Vulnerabilidad de escalada de privilegios gratuita doble del m\u00f3dulo CMTP Bluetooth del kernel de Linux. Esta vulnerabilidad permite a atacantes locales escalar privilegios en las instalaciones afectadas del kernel de Linux. Un atacante primero debe obtener la capacidad de ejecutar c\u00f3digo con altos privilegios en el sistema de destino para poder explotar esta vulnerabilidad. La falla espec\u00edfica existe dentro del m\u00f3dulo CMTP. El problema surge de la falta de validaci\u00f3n de la existencia de un objeto antes de realizar m\u00e1s operaciones libres sobre el objeto. Un atacante puede aprovechar esta vulnerabilidad para escalar privilegios y ejecutar c\u00f3digo en el contexto del kernel. Era ZDI-CAN-11977."
}
],
"id": "CVE-2021-34981",
"lastModified": "2025-08-14T01:42:25.163",
"metrics": {
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 0.8,
"impactScore": 6.0,
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary"
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 0.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2024-05-07T23:15:13.173",
"references": [
{
"source": "zdi-disclosures@trendmicro.com",
"tags": [
"Third Party Advisory"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1223/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1223/"
}
],
"sourceIdentifier": "zdi-disclosures@trendmicro.com",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-415"
}
],
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary"
}
]
}
GHSA-98QH-XFX7-VFQV
Vulnerability from github – Published: 2024-05-08 00:31 – Updated: 2024-05-08 00:31
VLAI
Details
Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability.
The specific flaw exists within the CMTP module. The issue results from the lack of validating the existence of an object prior to performing further free operations on the object. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the kernel. Was ZDI-CAN-11977.
Severity
7.5 (High)
{
"affected": [],
"aliases": [
"CVE-2021-34981"
],
"database_specific": {
"cwe_ids": [
"CWE-415"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-05-07T23:15:13Z",
"severity": "HIGH"
},
"details": "Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability.\n\nThe specific flaw exists within the CMTP module. The issue results from the lack of validating the existence of an object prior to performing further free operations on the object. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the kernel. Was ZDI-CAN-11977.",
"id": "GHSA-98qh-xfx7-vfqv",
"modified": "2024-05-08T00:31:14Z",
"published": "2024-05-08T00:31:14Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-34981"
},
{
"type": "WEB",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1223"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GSD-2021-34981
Vulnerability from gsd - Updated: 2023-12-13 01:23Details
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2021-34981",
"id": "GSD-2021-34981",
"references": [
"https://www.suse.com/security/cve/CVE-2021-34981.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2021-34981"
],
"id": "GSD-2021-34981",
"modified": "2023-12-13T01:23:14.028650Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2021-34981",
"STATE": "RESERVED"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}
}
}
OPENSUSE-SU-2021:1501-1
Vulnerability from csaf_opensuse - Published: 2021-11-24 16:00 - Updated: 2021-11-24 16:00Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The openSUSE Leap 15.2 kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
- Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past (jsc#SLE-22573)
You can reenable via systemctl setting /proc/sys/kernel/unprivileged_bpf_disabled to 0. (kernel.unprivileged_bpf_disabled = 0)
- CVE-2021-0941: In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192045).
- CVE-2021-31916: An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel A bound check failure allowed an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability (bnc#1192781).
- CVE-2021-20322: Make the ipv4 and ipv6 ICMP exception caches less predictive to avoid information leaks about UDP ports in use. (bsc#1191790)
- CVE-2021-34981: Fixed file refcounting in cmtp when cmtp_attach_device fails (bsc#1191961).
- CVE-2021-43389: There was an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c (bnc#1191958).
- CVE-2021-37159: hso_free_net_device in drivers/net/usb/hso.c called unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free (bnc#1188601).
The following non-security bugs were fixed:
- ABI: sysfs-kernel-slab: Document some stats (git-fixes).
- ALSA: hda: Reduce udelay() at SKL+ position reporting (git-fixes).
- ALSA: ua101: fix division by zero at probe (git-fixes).
- ALSA: usb-audio: Add Audient iD14 to mixer map quirk table (git-fixes).
- ALSA: usb-audio: Add Schiit Hel device to mixer map quirk table (git-fixes).
- ASoC: cs42l42: Correct some register default values (git-fixes).
- ASoC: cs42l42: Defer probe if request_threaded_irq() returns EPROBE_DEFER (git-fixes).
- ASoC: cs42l42: Do not set defaults for volatile registers (git-fixes).
- ASoC: dt-bindings: cs42l42: Correct description of ts-inv (git-fixes).
- ASoC: mediatek: mt8195: Remove unsued irqs_lock (git-fixes).
- ASoC: rockchip: Use generic dmaengine code (git-fixes).
- ata: sata_mv: Fix the error handling of mv_chip_id() (git-fixes).
- ath10k: fix control-message timeout (git-fixes).
- ath10k: fix division by zero in send path (git-fixes).
- ath10k: fix max antenna gain unit (git-fixes).
- ath10k: Fix missing frame timestamp for beacon/probe-resp (git-fixes).
- ath6kl: fix control-message timeout (git-fixes).
- ath6kl: fix division by zero in send path (git-fixes).
- ath9k: Fix potential interrupt storm on queue reset (git-fixes).
- auxdisplay: ht16k33: Connect backlight to fbdev (git-fixes).
- auxdisplay: ht16k33: Fix frame buffer device blanking (git-fixes).
- auxdisplay: img-ascii-lcd: Fix lock-up when displaying empty string (git-fixes).
- b43: fix a lower bounds test (git-fixes).
- b43legacy: fix a lower bounds test (git-fixes).
- Bluetooth: btmtkuart: fix a memleak in mtk_hci_wmt_sync (git-fixes).
- Bluetooth: fix init and cleanup of sco_conn.timeout_work (git-fixes).
- bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22573)
- bpf: Disallow unprivileged bpf by default (jsc#SLE-22573).
- bpf: Fix potential race in tail call compatibility check (git-fixes).
- btrfs: block-group: Rework documentation of check_system_chunk function (bsc#1192896).
- btrfs: fix deadlock between chunk allocation and chunk btree modifications (bsc#1192896).
- btrfs: fix memory ordering between normal and ordered work functions (git-fixes).
- btrfs: update comments for chunk allocation -ENOSPC cases (bsc#1192896).
- cgroup/cpuset: Change references of cpuset_mutex to cpuset_rwsem (git-fixes).
- config: disable unprivileged BPF by default (jsc#SLE-22573) Backport of mainline commit 8a03e56b253e ('bpf: Disallow unprivileged bpf by default') only changes kconfig default, used e.g. for 'make oldconfig' when the config option is missing, but does not update our kernel configs used for build. Update also these to make sure unprivileged BPF is really disabled by default.
- crypto: caam - disable pkc for non-E SoCs (git-fixes).
- crypto: qat - detect PFVF collision after ACK (git-fixes).
- crypto: qat - disregard spurious PFVF interrupts (git-fixes).
- driver core: add a min_align_mask field to struct device_dma_parameters (bsc#1191851).
- drm/amdgpu: fix warning for overflow check (git-fixes).
- drm/msm: Fix potential NULL dereference in DPU SSPP (git-fixes).
- drm: prevent spectre issue in vmw_execbuf_ioctl (bsc#1192802).
- drm/sun4i: Fix macros in sun8i_csc.h (git-fixes).
- drm/v3d: fix wait for TMU write combiner flush (git-fixes).
- EDAC/sb_edac: Fix top-of-high-memory value for Broadwell/Haswell (bsc#1152489).
- Eradicate Patch-mainline: No The pre-commit check can reject this deprecated tag then.
- exfat: fix erroneous discard when clear cluster bit (git-fixes).
- exfat: handle wrong stream entry size in exfat_readdir() (git-fixes).
- exfat: properly set s_time_gran (bsc#1192328).
- exfat: truncate atimes to 2s granularity (bsc#1192328).
- firmware/psci: fix application of sizeof to pointer (git-fixes).
- Fix problem with missing installkernel on Tumbleweed.
- ftrace: Fix scripts/recordmcount.pl due to new binutils (bsc#1192267).
- fuse: fix page stealing (bsc#1192718).
- genirq: Provide IRQCHIP_AFFINITY_PRE_STARTUP (bsc#1152489).
- gpio: mpc8xxx: Use 'devm_gpiochip_add_data()' to simplify the code and avoid a leak (git-fixes).
- HID: u2fzero: clarify error check and length calculations (git-fixes).
- HID: u2fzero: properly handle timeouts in usb_submit_urb (git-fixes).
- hwmon: Fix possible memleak in __hwmon_device_register() (git-fixes).
- hwmon: (pmbus/lm25066) Add offset coefficients (git-fixes).
- hwmon: (pmbus/lm25066) Let compiler determine outer dimension of lm25066_coeff (git-fixes).
- hwrng: mtk - Force runtime pm ops for sleep ops (git-fixes).
- ibmvnic: check failover_pending in login response (bsc#1190523 ltc#194510).
- ibmvnic: delay complete() (bsc#1094840 ltc#167098 git-fixes).
- ibmvnic: do not stop queue in xmit (bsc#1192273 ltc#194629).
- ibmvnic: Process crqs after enabling interrupts (bsc#1192273 ltc#194629).
- iio: dac: ad5446: Fix ad5622_write() return value (git-fixes).
- Input: elantench - fix misreporting trackpoint coordinates (bsc#1192918).
- Input: i8042 - Add quirk for Fujitsu Lifebook T725 (bsc#1191980).
- kABI: Fix kABI after 36950f2da1ea (bsc#1191851).
- kernel-*-subpackage: Add dependency on kernel scriptlets (bsc#1192740).
- KVM: s390: extend kvm_s390_shadow_fault to return entry pointer (bsc#1133021).
- KVM: s390: index kvm->arch.idle_mask by vcpu_idx (bsc#1133021).
- KVM: s390: split kvm_s390_logical_to_effective (bsc#1133021).
- KVM: s390: VSIE: correctly handle MVPG when in VSIE (bsc#1133021).
- libertas: Fix possible memory leak in probe and disconnect (git-fixes).
- libertas_tf: Fix possible memory leak in probe and disconnect (git-fixes).
- media: cedrus: Fix SUNXI tile size calculation (git-fixes).
- media: cx23885: Fix snd_card_free call on null card pointer (git-fixes).
- media: cxd2880-spi: Fix a null pointer dereference on error handling path (git-fixes).
- media: dvb-frontends: mn88443x: Handle errors of clk_prepare_enable() (git-fixes).
- media: dvb-usb: fix ununit-value in az6027_rc_query (git-fixes).
- media: em28xx: add missing em28xx_close_extension (git-fixes).
- media: em28xx: Do not use ops->suspend if it is NULL (git-fixes).
- media: i2c: ths8200 needs V4L2_ASYNC (git-fixes).
- media: ite-cir: IR receiver stop working after receive overflow (git-fixes).
- media: mtk-vpu: Fix a resource leak in the error handling path of 'mtk_vpu_probe()' (git-fixes).
- media: mxl111sf: change mutex_init() location (git-fixes).
- media: radio-wl1273: Avoid card name truncation (git-fixes).
- media: si470x: Avoid card name truncation (git-fixes).
- media: staging/intel-ipu3: css: Fix wrong size comparison imgu_css_fw_init (git-fixes).
- media: TDA1997x: handle short reads of hdmi info frame (git-fixes).
- media: tm6000: Avoid card name truncation (git-fixes).
- media: v4l2-ioctl: Fix check_ext_ctrls (git-fixes).
- media: v4l2-ioctl: S_CTRL output the right value (git-fixes).
- memory: fsl_ifc: fix leak of irq and nand_irq in fsl_ifc_ctrl_probe (git-fixes).
- memstick: avoid out-of-range warning (git-fixes).
- memstick: jmb38x_ms: use appropriate free function in jmb38x_ms_alloc_host() (git-fixes).
- mmc: mxs-mmc: disable regulator on error and in the remove function (git-fixes).
- mmc: sdhci: Map more voltage level to SDHCI_POWER_330 (git-fixes).
- mmc: sdhci-omap: Fix NULL pointer exception if regulator is not configured (git-fixes).
- mm/hugetlb: initialize hugetlb_usage in mm_init (bsc#1192906).
- mt76: mt76x02: fix endianness warnings in mt76x02_mac.c (git-fixes).
- mwifiex: fix division by zero in fw download path (git-fixes).
- mwifiex: Send DELBA requests according to spec (git-fixes).
- net: dsa: felix: re-enable TX flow control in ocelot_port_flush() (git-fixes).
- net: mscc: ocelot: fix hardware timestamp dequeue logic.
- net: mscc: ocelot: warn when a PTP IRQ is raised for an unknown skb (git-fixes).
- nvme-pci: set min_align_mask (bsc#1191851).
- ocfs2: do not zero pages beyond i_size (bsc#1190795).
- ocfs2: fix data corruption on truncate (bsc#1190795).
- PCI: aardvark: Do not clear status bits of masked interrupts (git-fixes).
- PCI: aardvark: Do not spam about PIO Response Status (git-fixes).
- PCI: aardvark: Do not unmask unused interrupts (git-fixes).
- PCI: aardvark: Fix checking for link up via LTSSM state (git-fixes).
- PCI: aardvark: Fix reporting Data Link Layer Link Active (git-fixes).
- PCI: aardvark: Fix return value of MSI domain .alloc() method (git-fixes).
- PCI: aardvark: Read all 16-bits from PCIE_MSI_PAYLOAD_REG (git-fixes).
- PCI/ACPI: Check for _OSC support in acpi_pci_osc_control_set() (bsc#1169263).
- PCI/ACPI: Clarify message about _OSC failure (bsc#1169263).
- PCI/ACPI: Move _OSC query checks to separate function (bsc#1169263).
- PCI/ACPI: Move supported and control calculations to separate functions (bsc#1169263).
- PCI/ACPI: Remove OSC_PCI_SUPPORT_MASKS and OSC_PCI_CONTROL_MASKS (bsc#1169263).
- PCI/ACPI: Remove unnecessary osc_lock (bsc#1169263).
- PCI: pci-bridge-emul: Fix emulation of W1C bits (git-fixes).
- PCI: uniphier: Serialize INTx masking/unmasking and fix the bit operation (git-fixes).
- pinctrl: core: fix possible memory leak in pinctrl_enable() (git-fixes).
- platform/x86: thinkpad_acpi: Fix bitwise vs. logical warning (git-fixes).
- power: supply: bq27xxx: Fix kernel crash on IRQ handler register error (git-fixes).
- power: supply: max17042_battery: Prevent int underflow in set_soc_threshold (git-fixes).
- power: supply: max17042_battery: use VFSOC for capacity when no rsns (git-fixes).
- printk/console: Allow to disable console output by using console='' or console=null (bsc#1192753).
- printk: handle blank console arguments passed in (bsc#1192753).
- qtnfmac: fix potential Spectre vulnerabilities (bsc#1192802).
- r8152: add a helper function about setting EEE (git-fixes).
- r8152: Add macpassthru support for ThinkPad Thunderbolt 3 Dock Gen 2 (git-fixes).
- r8152: Disable PLA MCU clock speed down (git-fixes).
- r8152: disable U2P3 for RTL8153B (git-fixes).
- r8152: divide the tx and rx bottom functions (git-fixes).
- r8152: do not enable U1U2 with USB_SPEED_HIGH for RTL8153B (git-fixes).
- r8152: fix runtime resume for linking change (git-fixes).
- r8152: replace array with linking list for rx information (git-fixes).
- r8152: reset flow control patch when linking on for RTL8153B (git-fixes).
- r8152: saving the settings of EEE (git-fixes).
- r8152: separate the rx buffer size (git-fixes).
- r8152: use alloc_pages for rx buffer (git-fixes).
- regulator: dt-bindings: samsung,s5m8767: correct s5m8767,pmic-buck-default-dvs-idx property (git-fixes).
- regulator: s5m8767: do not use reset value as DVS voltage if GPIO DVS is disabled (git-fixes).
- Revert 'ibmvnic: check failover_pending in login response' (bsc#1190523 ltc#194510).
- Revert 'platform/x86: i2c-multi-instantiate: Do not create platform device for INT3515 ACPI nodes' (git-fixes).
- Revert 'r8152: adjust the settings about MAC clock speed down for RTL8153' (git-fixes).
- Revert 'scsi: ufs: fix a missing check of devm_reset_control_get' (git-fixes).
- Revert 'x86/kvm: fix vcpu-id indexed array sizes' (git-fixes).
- rndis_host: set proper input size for OID_GEN_PHYSICAL_MEDIUM request (git-fixes).
- rsi: fix control-message timeout (git-fixes).
- rsi: Fix module dev_oper_mode parameter description (git-fixes).
- rsi: stop thread firstly in rsi_91x_init() error handling (git-fixes).
- rtl8187: fix control-message timeouts (git-fixes).
- s390/qeth: fix deadlock during failing recovery (git-fixes).
- s390/qeth: Fix deadlock in remove_discipline (git-fixes).
- s390/qeth: fix NULL deref in qeth_clear_working_pool_list() (git-fixes).
- scsi: be2iscsi: Fix an error handling path in beiscsi_dev_probe() (git-fixes).
- scsi: BusLogic: Fix missing pr_cont() use (git-fixes).
- scsi: core: Fix spelling in a source code comment (git-fixes).
- scsi: csiostor: Add module softdep on cxgb4 (git-fixes).
- scsi: csiostor: Uninitialized data in csio_ln_vnp_read_cbfn() (git-fixes).
- scsi: dc395: Fix error case unwinding (git-fixes).
- scsi: fdomain: Fix error return code in fdomain_probe() (git-fixes).
- scsi: FlashPoint: Rename si_flags field (git-fixes).
- scsi: iscsi: Fix iface sysfs attr detection (git-fixes).
- scsi: libsas: Use _safe() loop in sas_resume_port() (git-fixes).
- scsi: mpt3sas: Fix error return value in _scsih_expander_add() (git-fixes).
- scsi: qedf: Add pointer checks in qedf_update_link_speed() (git-fixes).
- scsi: qedf: Fix error codes in qedf_alloc_global_queues() (git-fixes).
- scsi: qedi: Fix error codes in qedi_alloc_global_queues() (git-fixes).
- scsi: qla2xxx: Fix a memory leak in an error path of qla2x00_process_els() (git-fixes).
- scsi: qla2xxx: Make sure that aborted commands are freed (git-fixes).
- scsi: smartpqi: Fix an error code in pqi_get_raid_map() (git-fixes).
- scsi: snic: Fix an error message (git-fixes).
- scsi: ufs-pci: Add quirk for broken auto-hibernate for Intel EHL (git-fixes).
- scsi: ufs: ufshcd-pltfrm: Fix memory leak due to probe defer (git-fixes).
- serial: 8250_dw: Drop wrong use of ACPI_PTR() (git-fixes).
- serial: xilinx_uartps: Fix race condition causing stuck TX (git-fixes).
- staging: r8712u: fix control-message timeout (git-fixes).
- staging: rtl8192u: fix control-message timeouts (git-fixes).
- stmmac: platform: Fix signedness bug in stmmac_probe_config_dt() (git-fixes).
- swiotlb: add a IO_TLB_SIZE define (bsc#1191851).
- swiotlb: clean up swiotlb_tbl_unmap_single (bsc#1191851).
- swiotlb: do not modify orig_addr in swiotlb_tbl_sync_single (bsc#1191851).
- swiotlb: factor out an io_tlb_offset helper (bsc#1191851).
- swiotlb: factor out a nr_slots helper (bsc#1191851).
- swiotlb: refactor swiotlb_tbl_map_single (bsc#1191851).
- swiotlb: respect min_align_mask (bsc#1191851).
- swiotlb: Split size parameter to map/unmap APIs (bsc#1191851).
- tpm: Check for integer overflow in tpm2_map_response_body() (git-fixes).
- tracing: Increase PERF_MAX_TRACE_SIZE to handle Sentinel1 and docker together (bsc#1192745).
- Update config files: Add CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set
- usb: gadget: hid: fix error code in do_config() (git-fixes).
- USB: iowarrior: fix control-message timeouts (git-fixes).
- usb: max-3421: Use driver data instead of maintaining a list of bound devices (git-fixes).
- usb: musb: Balance list entry in musb_gadget_queue (git-fixes).
- usbnet: fix error return code in usbnet_probe() (git-fixes).
- usbnet: sanity check for maxpacket (git-fixes).
- USB: serial: keyspan: fix memleak on probe errors (git-fixes).
- video: fbdev: chipsfb: use memset_io() instead of memset() (git-fixes).
- virtio-gpu: fix possible memory allocation failure (git-fixes).
- wcn36xx: Add ability for wcn36xx_smd_dump_cmd_req to pass two's complement (git-fixes).
- wcn36xx: add proper DMA memory barriers in rx path (git-fixes).
- wcn36xx: Fix HT40 capability for 2Ghz band (git-fixes).
- x86/ioapic: Force affinity setup before startup (bsc#1152489).
- x86/msi: Force affinity setup before startup (bsc#1152489).
- x86/sme: Use #define USE_EARLY_PGTABLE_L5 in mem_encrypt_identity.c (bsc#1152489).
- x86/xen: Mark cpu_bringup_and_idle() as dead_end_function (git-fixes).
- xen: Fix implicit type conversion (git-fixes).
- xen-pciback: Fix return in pm_ctrl_init() (git-fixes).
- xfs: do not allow log writes if the data device is readonly (bsc#1192229).
Patchnames: openSUSE-2021-1501
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.8 (Medium)
Affected products
Recommended
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.5 (Medium)
Affected products
Recommended
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.7 (Medium)
Affected products
Recommended
19 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
56 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://bugzilla.suse.com/1094840 | self |
| https://bugzilla.suse.com/1133021 | self |
| https://bugzilla.suse.com/1152489 | self |
| https://bugzilla.suse.com/1169263 | self |
| https://bugzilla.suse.com/1170269 | self |
| https://bugzilla.suse.com/1188601 | self |
| https://bugzilla.suse.com/1190523 | self |
| https://bugzilla.suse.com/1190795 | self |
| https://bugzilla.suse.com/1191790 | self |
| https://bugzilla.suse.com/1191851 | self |
| https://bugzilla.suse.com/1191958 | self |
| https://bugzilla.suse.com/1191961 | self |
| https://bugzilla.suse.com/1191980 | self |
| https://bugzilla.suse.com/1192045 | self |
| https://bugzilla.suse.com/1192229 | self |
| https://bugzilla.suse.com/1192267 | self |
| https://bugzilla.suse.com/1192273 | self |
| https://bugzilla.suse.com/1192328 | self |
| https://bugzilla.suse.com/1192718 | self |
| https://bugzilla.suse.com/1192740 | self |
| https://bugzilla.suse.com/1192745 | self |
| https://bugzilla.suse.com/1192750 | self |
| https://bugzilla.suse.com/1192753 | self |
| https://bugzilla.suse.com/1192781 | self |
| https://bugzilla.suse.com/1192802 | self |
| https://bugzilla.suse.com/1192896 | self |
| https://bugzilla.suse.com/1192906 | self |
| https://bugzilla.suse.com/1192918 | self |
| https://www.suse.com/security/cve/CVE-2021-0941/ | self |
| https://www.suse.com/security/cve/CVE-2021-20322/ | self |
| https://www.suse.com/security/cve/CVE-2021-31916/ | self |
| https://www.suse.com/security/cve/CVE-2021-34981/ | self |
| https://www.suse.com/security/cve/CVE-2021-37159/ | self |
| https://www.suse.com/security/cve/CVE-2021-43389/ | self |
| https://www.suse.com/security/cve/CVE-2021-0941 | external |
| https://bugzilla.suse.com/1192045 | external |
| https://bugzilla.suse.com/1192048 | external |
| https://www.suse.com/security/cve/CVE-2021-20322 | external |
| https://bugzilla.suse.com/1191790 | external |
| https://bugzilla.suse.com/1191813 | external |
| https://bugzilla.suse.com/1193290 | external |
| https://www.suse.com/security/cve/CVE-2021-31916 | external |
| https://bugzilla.suse.com/1192781 | external |
| https://www.suse.com/security/cve/CVE-2021-34981 | external |
| https://bugzilla.suse.com/1191961 | external |
| https://bugzilla.suse.com/1192595 | external |
| https://bugzilla.suse.com/1196722 | external |
| https://bugzilla.suse.com/1212298 | external |
| https://www.suse.com/security/cve/CVE-2021-37159 | external |
| https://bugzilla.suse.com/1188601 | external |
| https://www.suse.com/security/cve/CVE-2021-43389 | external |
| https://bugzilla.suse.com/1191958 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\n\nThe openSUSE Leap 15.2 kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past (jsc#SLE-22573)\n\n You can reenable via systemctl setting /proc/sys/kernel/unprivileged_bpf_disabled to 0. (kernel.unprivileged_bpf_disabled = 0)\n\n\n- CVE-2021-0941: In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192045).\n- CVE-2021-31916: An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel A bound check failure allowed an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability (bnc#1192781).\n- CVE-2021-20322: Make the ipv4 and ipv6 ICMP exception caches less predictive to avoid information leaks about UDP ports in use. (bsc#1191790)\n- CVE-2021-34981: Fixed file refcounting in cmtp when cmtp_attach_device fails (bsc#1191961).\n- CVE-2021-43389: There was an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c (bnc#1191958).\n- CVE-2021-37159: hso_free_net_device in drivers/net/usb/hso.c called unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free (bnc#1188601).\n\nThe following non-security bugs were fixed:\n\n- ABI: sysfs-kernel-slab: Document some stats (git-fixes).\n- ALSA: hda: Reduce udelay() at SKL+ position reporting (git-fixes).\n- ALSA: ua101: fix division by zero at probe (git-fixes).\n- ALSA: usb-audio: Add Audient iD14 to mixer map quirk table (git-fixes).\n- ALSA: usb-audio: Add Schiit Hel device to mixer map quirk table (git-fixes).\n- ASoC: cs42l42: Correct some register default values (git-fixes).\n- ASoC: cs42l42: Defer probe if request_threaded_irq() returns EPROBE_DEFER (git-fixes).\n- ASoC: cs42l42: Do not set defaults for volatile registers (git-fixes).\n- ASoC: dt-bindings: cs42l42: Correct description of ts-inv (git-fixes).\n- ASoC: mediatek: mt8195: Remove unsued irqs_lock (git-fixes).\n- ASoC: rockchip: Use generic dmaengine code (git-fixes).\n- ata: sata_mv: Fix the error handling of mv_chip_id() (git-fixes).\n- ath10k: fix control-message timeout (git-fixes).\n- ath10k: fix division by zero in send path (git-fixes).\n- ath10k: fix max antenna gain unit (git-fixes).\n- ath10k: Fix missing frame timestamp for beacon/probe-resp (git-fixes).\n- ath6kl: fix control-message timeout (git-fixes).\n- ath6kl: fix division by zero in send path (git-fixes).\n- ath9k: Fix potential interrupt storm on queue reset (git-fixes).\n- auxdisplay: ht16k33: Connect backlight to fbdev (git-fixes).\n- auxdisplay: ht16k33: Fix frame buffer device blanking (git-fixes).\n- auxdisplay: img-ascii-lcd: Fix lock-up when displaying empty string (git-fixes).\n- b43: fix a lower bounds test (git-fixes).\n- b43legacy: fix a lower bounds test (git-fixes).\n- Bluetooth: btmtkuart: fix a memleak in mtk_hci_wmt_sync (git-fixes).\n- Bluetooth: fix init and cleanup of sco_conn.timeout_work (git-fixes).\n- bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22573)\n- bpf: Disallow unprivileged bpf by default (jsc#SLE-22573).\n- bpf: Fix potential race in tail call compatibility check (git-fixes).\n- btrfs: block-group: Rework documentation of check_system_chunk function (bsc#1192896).\n- btrfs: fix deadlock between chunk allocation and chunk btree modifications (bsc#1192896).\n- btrfs: fix memory ordering between normal and ordered work functions (git-fixes).\n- btrfs: update comments for chunk allocation -ENOSPC cases (bsc#1192896).\n- cgroup/cpuset: Change references of cpuset_mutex to cpuset_rwsem (git-fixes).\n- config: disable unprivileged BPF by default (jsc#SLE-22573) Backport of mainline commit 8a03e56b253e (\u0027bpf: Disallow unprivileged bpf by default\u0027) only changes kconfig default, used e.g. for \u0027make oldconfig\u0027 when the config option is missing, but does not update our kernel configs used for build. Update also these to make sure unprivileged BPF is really disabled by default.\n- crypto: caam - disable pkc for non-E SoCs (git-fixes).\n- crypto: qat - detect PFVF collision after ACK (git-fixes).\n- crypto: qat - disregard spurious PFVF interrupts (git-fixes).\n- driver core: add a min_align_mask field to struct device_dma_parameters (bsc#1191851).\n- drm/amdgpu: fix warning for overflow check (git-fixes).\n- drm/msm: Fix potential NULL dereference in DPU SSPP (git-fixes).\n- drm: prevent spectre issue in vmw_execbuf_ioctl (bsc#1192802).\n- drm/sun4i: Fix macros in sun8i_csc.h (git-fixes).\n- drm/v3d: fix wait for TMU write combiner flush (git-fixes).\n- EDAC/sb_edac: Fix top-of-high-memory value for Broadwell/Haswell (bsc#1152489).\n- Eradicate Patch-mainline: No The pre-commit check can reject this deprecated tag then.\n- exfat: fix erroneous discard when clear cluster bit (git-fixes).\n- exfat: handle wrong stream entry size in exfat_readdir() (git-fixes).\n- exfat: properly set s_time_gran (bsc#1192328).\n- exfat: truncate atimes to 2s granularity (bsc#1192328).\n- firmware/psci: fix application of sizeof to pointer (git-fixes).\n- Fix problem with missing installkernel on Tumbleweed.\n- ftrace: Fix scripts/recordmcount.pl due to new binutils (bsc#1192267).\n- fuse: fix page stealing (bsc#1192718).\n- genirq: Provide IRQCHIP_AFFINITY_PRE_STARTUP (bsc#1152489).\n- gpio: mpc8xxx: Use \u0027devm_gpiochip_add_data()\u0027 to simplify the code and avoid a leak (git-fixes).\n- HID: u2fzero: clarify error check and length calculations (git-fixes).\n- HID: u2fzero: properly handle timeouts in usb_submit_urb (git-fixes).\n- hwmon: Fix possible memleak in __hwmon_device_register() (git-fixes).\n- hwmon: (pmbus/lm25066) Add offset coefficients (git-fixes).\n- hwmon: (pmbus/lm25066) Let compiler determine outer dimension of lm25066_coeff (git-fixes).\n- hwrng: mtk - Force runtime pm ops for sleep ops (git-fixes).\n- ibmvnic: check failover_pending in login response (bsc#1190523 ltc#194510).\n- ibmvnic: delay complete() (bsc#1094840 ltc#167098 git-fixes).\n- ibmvnic: do not stop queue in xmit (bsc#1192273 ltc#194629).\n- ibmvnic: Process crqs after enabling interrupts (bsc#1192273 ltc#194629).\n- iio: dac: ad5446: Fix ad5622_write() return value (git-fixes).\n- Input: elantench - fix misreporting trackpoint coordinates (bsc#1192918).\n- Input: i8042 - Add quirk for Fujitsu Lifebook T725 (bsc#1191980).\n- kABI: Fix kABI after 36950f2da1ea (bsc#1191851).\n- kernel-*-subpackage: Add dependency on kernel scriptlets (bsc#1192740).\n- KVM: s390: extend kvm_s390_shadow_fault to return entry pointer (bsc#1133021).\n- KVM: s390: index kvm-\u003earch.idle_mask by vcpu_idx (bsc#1133021).\n- KVM: s390: split kvm_s390_logical_to_effective (bsc#1133021).\n- KVM: s390: VSIE: correctly handle MVPG when in VSIE (bsc#1133021).\n- libertas: Fix possible memory leak in probe and disconnect (git-fixes).\n- libertas_tf: Fix possible memory leak in probe and disconnect (git-fixes).\n- media: cedrus: Fix SUNXI tile size calculation (git-fixes).\n- media: cx23885: Fix snd_card_free call on null card pointer (git-fixes).\n- media: cxd2880-spi: Fix a null pointer dereference on error handling path (git-fixes).\n- media: dvb-frontends: mn88443x: Handle errors of clk_prepare_enable() (git-fixes).\n- media: dvb-usb: fix ununit-value in az6027_rc_query (git-fixes).\n- media: em28xx: add missing em28xx_close_extension (git-fixes).\n- media: em28xx: Do not use ops-\u003esuspend if it is NULL (git-fixes).\n- media: i2c: ths8200 needs V4L2_ASYNC (git-fixes).\n- media: ite-cir: IR receiver stop working after receive overflow (git-fixes).\n- media: mtk-vpu: Fix a resource leak in the error handling path of \u0027mtk_vpu_probe()\u0027 (git-fixes).\n- media: mxl111sf: change mutex_init() location (git-fixes).\n- media: radio-wl1273: Avoid card name truncation (git-fixes).\n- media: si470x: Avoid card name truncation (git-fixes).\n- media: staging/intel-ipu3: css: Fix wrong size comparison imgu_css_fw_init (git-fixes).\n- media: TDA1997x: handle short reads of hdmi info frame (git-fixes).\n- media: tm6000: Avoid card name truncation (git-fixes).\n- media: v4l2-ioctl: Fix check_ext_ctrls (git-fixes).\n- media: v4l2-ioctl: S_CTRL output the right value (git-fixes).\n- memory: fsl_ifc: fix leak of irq and nand_irq in fsl_ifc_ctrl_probe (git-fixes).\n- memstick: avoid out-of-range warning (git-fixes).\n- memstick: jmb38x_ms: use appropriate free function in jmb38x_ms_alloc_host() (git-fixes).\n- mmc: mxs-mmc: disable regulator on error and in the remove function (git-fixes).\n- mmc: sdhci: Map more voltage level to SDHCI_POWER_330 (git-fixes).\n- mmc: sdhci-omap: Fix NULL pointer exception if regulator is not configured (git-fixes).\n- mm/hugetlb: initialize hugetlb_usage in mm_init (bsc#1192906).\n- mt76: mt76x02: fix endianness warnings in mt76x02_mac.c (git-fixes).\n- mwifiex: fix division by zero in fw download path (git-fixes).\n- mwifiex: Send DELBA requests according to spec (git-fixes).\n- net: dsa: felix: re-enable TX flow control in ocelot_port_flush() (git-fixes).\n- net: mscc: ocelot: fix hardware timestamp dequeue logic.\n- net: mscc: ocelot: warn when a PTP IRQ is raised for an unknown skb (git-fixes).\n- nvme-pci: set min_align_mask (bsc#1191851).\n- ocfs2: do not zero pages beyond i_size (bsc#1190795).\n- ocfs2: fix data corruption on truncate (bsc#1190795).\n- PCI: aardvark: Do not clear status bits of masked interrupts (git-fixes).\n- PCI: aardvark: Do not spam about PIO Response Status (git-fixes).\n- PCI: aardvark: Do not unmask unused interrupts (git-fixes).\n- PCI: aardvark: Fix checking for link up via LTSSM state (git-fixes).\n- PCI: aardvark: Fix reporting Data Link Layer Link Active (git-fixes).\n- PCI: aardvark: Fix return value of MSI domain .alloc() method (git-fixes).\n- PCI: aardvark: Read all 16-bits from PCIE_MSI_PAYLOAD_REG (git-fixes).\n- PCI/ACPI: Check for _OSC support in acpi_pci_osc_control_set() (bsc#1169263).\n- PCI/ACPI: Clarify message about _OSC failure (bsc#1169263).\n- PCI/ACPI: Move _OSC query checks to separate function (bsc#1169263).\n- PCI/ACPI: Move supported and control calculations to separate functions (bsc#1169263).\n- PCI/ACPI: Remove OSC_PCI_SUPPORT_MASKS and OSC_PCI_CONTROL_MASKS (bsc#1169263).\n- PCI/ACPI: Remove unnecessary osc_lock (bsc#1169263).\n- PCI: pci-bridge-emul: Fix emulation of W1C bits (git-fixes).\n- PCI: uniphier: Serialize INTx masking/unmasking and fix the bit operation (git-fixes).\n- pinctrl: core: fix possible memory leak in pinctrl_enable() (git-fixes).\n- platform/x86: thinkpad_acpi: Fix bitwise vs. logical warning (git-fixes).\n- power: supply: bq27xxx: Fix kernel crash on IRQ handler register error (git-fixes).\n- power: supply: max17042_battery: Prevent int underflow in set_soc_threshold (git-fixes).\n- power: supply: max17042_battery: use VFSOC for capacity when no rsns (git-fixes).\n- printk/console: Allow to disable console output by using console=\u0027\u0027 or console=null (bsc#1192753).\n- printk: handle blank console arguments passed in (bsc#1192753).\n- qtnfmac: fix potential Spectre vulnerabilities (bsc#1192802).\n- r8152: add a helper function about setting EEE (git-fixes).\n- r8152: Add macpassthru support for ThinkPad Thunderbolt 3 Dock Gen 2 (git-fixes).\n- r8152: Disable PLA MCU clock speed down (git-fixes).\n- r8152: disable U2P3 for RTL8153B (git-fixes).\n- r8152: divide the tx and rx bottom functions (git-fixes).\n- r8152: do not enable U1U2 with USB_SPEED_HIGH for RTL8153B (git-fixes).\n- r8152: fix runtime resume for linking change (git-fixes).\n- r8152: replace array with linking list for rx information (git-fixes).\n- r8152: reset flow control patch when linking on for RTL8153B (git-fixes).\n- r8152: saving the settings of EEE (git-fixes).\n- r8152: separate the rx buffer size (git-fixes).\n- r8152: use alloc_pages for rx buffer (git-fixes).\n- regulator: dt-bindings: samsung,s5m8767: correct s5m8767,pmic-buck-default-dvs-idx property (git-fixes).\n- regulator: s5m8767: do not use reset value as DVS voltage if GPIO DVS is disabled (git-fixes).\n- Revert \u0027ibmvnic: check failover_pending in login response\u0027 (bsc#1190523 ltc#194510).\n- Revert \u0027platform/x86: i2c-multi-instantiate: Do not create platform device for INT3515 ACPI nodes\u0027 (git-fixes).\n- Revert \u0027r8152: adjust the settings about MAC clock speed down for RTL8153\u0027 (git-fixes).\n- Revert \u0027scsi: ufs: fix a missing check of devm_reset_control_get\u0027 (git-fixes).\n- Revert \u0027x86/kvm: fix vcpu-id indexed array sizes\u0027 (git-fixes).\n- rndis_host: set proper input size for OID_GEN_PHYSICAL_MEDIUM request (git-fixes).\n- rsi: fix control-message timeout (git-fixes).\n- rsi: Fix module dev_oper_mode parameter description (git-fixes).\n- rsi: stop thread firstly in rsi_91x_init() error handling (git-fixes).\n- rtl8187: fix control-message timeouts (git-fixes).\n- s390/qeth: fix deadlock during failing recovery (git-fixes).\n- s390/qeth: Fix deadlock in remove_discipline (git-fixes).\n- s390/qeth: fix NULL deref in qeth_clear_working_pool_list() (git-fixes).\n- scsi: be2iscsi: Fix an error handling path in beiscsi_dev_probe() (git-fixes).\n- scsi: BusLogic: Fix missing pr_cont() use (git-fixes).\n- scsi: core: Fix spelling in a source code comment (git-fixes).\n- scsi: csiostor: Add module softdep on cxgb4 (git-fixes).\n- scsi: csiostor: Uninitialized data in csio_ln_vnp_read_cbfn() (git-fixes).\n- scsi: dc395: Fix error case unwinding (git-fixes).\n- scsi: fdomain: Fix error return code in fdomain_probe() (git-fixes).\n- scsi: FlashPoint: Rename si_flags field (git-fixes).\n- scsi: iscsi: Fix iface sysfs attr detection (git-fixes).\n- scsi: libsas: Use _safe() loop in sas_resume_port() (git-fixes).\n- scsi: mpt3sas: Fix error return value in _scsih_expander_add() (git-fixes).\n- scsi: qedf: Add pointer checks in qedf_update_link_speed() (git-fixes).\n- scsi: qedf: Fix error codes in qedf_alloc_global_queues() (git-fixes).\n- scsi: qedi: Fix error codes in qedi_alloc_global_queues() (git-fixes).\n- scsi: qla2xxx: Fix a memory leak in an error path of qla2x00_process_els() (git-fixes).\n- scsi: qla2xxx: Make sure that aborted commands are freed (git-fixes).\n- scsi: smartpqi: Fix an error code in pqi_get_raid_map() (git-fixes).\n- scsi: snic: Fix an error message (git-fixes).\n- scsi: ufs-pci: Add quirk for broken auto-hibernate for Intel EHL (git-fixes).\n- scsi: ufs: ufshcd-pltfrm: Fix memory leak due to probe defer (git-fixes).\n- serial: 8250_dw: Drop wrong use of ACPI_PTR() (git-fixes).\n- serial: xilinx_uartps: Fix race condition causing stuck TX (git-fixes).\n- staging: r8712u: fix control-message timeout (git-fixes).\n- staging: rtl8192u: fix control-message timeouts (git-fixes).\n- stmmac: platform: Fix signedness bug in stmmac_probe_config_dt() (git-fixes).\n- swiotlb: add a IO_TLB_SIZE define (bsc#1191851).\n- swiotlb: clean up swiotlb_tbl_unmap_single (bsc#1191851).\n- swiotlb: do not modify orig_addr in swiotlb_tbl_sync_single (bsc#1191851).\n- swiotlb: factor out an io_tlb_offset helper (bsc#1191851).\n- swiotlb: factor out a nr_slots helper (bsc#1191851).\n- swiotlb: refactor swiotlb_tbl_map_single (bsc#1191851).\n- swiotlb: respect min_align_mask (bsc#1191851).\n- swiotlb: Split size parameter to map/unmap APIs (bsc#1191851).\n- tpm: Check for integer overflow in tpm2_map_response_body() (git-fixes).\n- tracing: Increase PERF_MAX_TRACE_SIZE to handle Sentinel1 and docker together (bsc#1192745).\n- Update config files: Add CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set\n- usb: gadget: hid: fix error code in do_config() (git-fixes).\n- USB: iowarrior: fix control-message timeouts (git-fixes).\n- usb: max-3421: Use driver data instead of maintaining a list of bound devices (git-fixes).\n- usb: musb: Balance list entry in musb_gadget_queue (git-fixes).\n- usbnet: fix error return code in usbnet_probe() (git-fixes).\n- usbnet: sanity check for maxpacket (git-fixes).\n- USB: serial: keyspan: fix memleak on probe errors (git-fixes).\n- video: fbdev: chipsfb: use memset_io() instead of memset() (git-fixes).\n- virtio-gpu: fix possible memory allocation failure (git-fixes).\n- wcn36xx: Add ability for wcn36xx_smd_dump_cmd_req to pass two\u0027s complement (git-fixes).\n- wcn36xx: add proper DMA memory barriers in rx path (git-fixes).\n- wcn36xx: Fix HT40 capability for 2Ghz band (git-fixes).\n- x86/ioapic: Force affinity setup before startup (bsc#1152489).\n- x86/msi: Force affinity setup before startup (bsc#1152489).\n- x86/sme: Use #define USE_EARLY_PGTABLE_L5 in mem_encrypt_identity.c (bsc#1152489).\n- x86/xen: Mark cpu_bringup_and_idle() as dead_end_function (git-fixes).\n- xen: Fix implicit type conversion (git-fixes).\n- xen-pciback: Fix return in pm_ctrl_init() (git-fixes).\n- xfs: do not allow log writes if the data device is readonly (bsc#1192229).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2021-1501",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2021_1501-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2021:1501-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5J6FJF42AOGK3VQ4EFVDHQENHCDEMVT3/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2021:1501-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5J6FJF42AOGK3VQ4EFVDHQENHCDEMVT3/"
},
{
"category": "self",
"summary": "SUSE Bug 1094840",
"url": "https://bugzilla.suse.com/1094840"
},
{
"category": "self",
"summary": "SUSE Bug 1133021",
"url": "https://bugzilla.suse.com/1133021"
},
{
"category": "self",
"summary": "SUSE Bug 1152489",
"url": "https://bugzilla.suse.com/1152489"
},
{
"category": "self",
"summary": "SUSE Bug 1169263",
"url": "https://bugzilla.suse.com/1169263"
},
{
"category": "self",
"summary": "SUSE Bug 1170269",
"url": "https://bugzilla.suse.com/1170269"
},
{
"category": "self",
"summary": "SUSE Bug 1188601",
"url": "https://bugzilla.suse.com/1188601"
},
{
"category": "self",
"summary": "SUSE Bug 1190523",
"url": "https://bugzilla.suse.com/1190523"
},
{
"category": "self",
"summary": "SUSE Bug 1190795",
"url": "https://bugzilla.suse.com/1190795"
},
{
"category": "self",
"summary": "SUSE Bug 1191790",
"url": "https://bugzilla.suse.com/1191790"
},
{
"category": "self",
"summary": "SUSE Bug 1191851",
"url": "https://bugzilla.suse.com/1191851"
},
{
"category": "self",
"summary": "SUSE Bug 1191958",
"url": "https://bugzilla.suse.com/1191958"
},
{
"category": "self",
"summary": "SUSE Bug 1191961",
"url": "https://bugzilla.suse.com/1191961"
},
{
"category": "self",
"summary": "SUSE Bug 1191980",
"url": "https://bugzilla.suse.com/1191980"
},
{
"category": "self",
"summary": "SUSE Bug 1192045",
"url": "https://bugzilla.suse.com/1192045"
},
{
"category": "self",
"summary": "SUSE Bug 1192229",
"url": "https://bugzilla.suse.com/1192229"
},
{
"category": "self",
"summary": "SUSE Bug 1192267",
"url": "https://bugzilla.suse.com/1192267"
},
{
"category": "self",
"summary": "SUSE Bug 1192273",
"url": "https://bugzilla.suse.com/1192273"
},
{
"category": "self",
"summary": "SUSE Bug 1192328",
"url": "https://bugzilla.suse.com/1192328"
},
{
"category": "self",
"summary": "SUSE Bug 1192718",
"url": "https://bugzilla.suse.com/1192718"
},
{
"category": "self",
"summary": "SUSE Bug 1192740",
"url": "https://bugzilla.suse.com/1192740"
},
{
"category": "self",
"summary": "SUSE Bug 1192745",
"url": "https://bugzilla.suse.com/1192745"
},
{
"category": "self",
"summary": "SUSE Bug 1192750",
"url": "https://bugzilla.suse.com/1192750"
},
{
"category": "self",
"summary": "SUSE Bug 1192753",
"url": "https://bugzilla.suse.com/1192753"
},
{
"category": "self",
"summary": "SUSE Bug 1192781",
"url": "https://bugzilla.suse.com/1192781"
},
{
"category": "self",
"summary": "SUSE Bug 1192802",
"url": "https://bugzilla.suse.com/1192802"
},
{
"category": "self",
"summary": "SUSE Bug 1192896",
"url": "https://bugzilla.suse.com/1192896"
},
{
"category": "self",
"summary": "SUSE Bug 1192906",
"url": "https://bugzilla.suse.com/1192906"
},
{
"category": "self",
"summary": "SUSE Bug 1192918",
"url": "https://bugzilla.suse.com/1192918"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-0941 page",
"url": "https://www.suse.com/security/cve/CVE-2021-0941/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20322 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20322/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-31916 page",
"url": "https://www.suse.com/security/cve/CVE-2021-31916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-34981 page",
"url": "https://www.suse.com/security/cve/CVE-2021-34981/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-37159 page",
"url": "https://www.suse.com/security/cve/CVE-2021-37159/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-43389 page",
"url": "https://www.suse.com/security/cve/CVE-2021-43389/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2021-11-24T16:00:07Z",
"generator": {
"date": "2021-11-24T16:00:07Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2021:1501-1",
"initial_release_date": "2021-11-24T16:00:07Z",
"revision_history": [
{
"date": "2021-11-24T16:00:07Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-5.3.18-lp152.106.1.noarch",
"product": {
"name": "kernel-devel-5.3.18-lp152.106.1.noarch",
"product_id": "kernel-devel-5.3.18-lp152.106.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-5.3.18-lp152.106.1.noarch",
"product": {
"name": "kernel-docs-5.3.18-lp152.106.1.noarch",
"product_id": "kernel-docs-5.3.18-lp152.106.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-html-5.3.18-lp152.106.1.noarch",
"product": {
"name": "kernel-docs-html-5.3.18-lp152.106.1.noarch",
"product_id": "kernel-docs-html-5.3.18-lp152.106.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-5.3.18-lp152.106.1.noarch",
"product": {
"name": "kernel-macros-5.3.18-lp152.106.1.noarch",
"product_id": "kernel-macros-5.3.18-lp152.106.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-5.3.18-lp152.106.1.noarch",
"product": {
"name": "kernel-source-5.3.18-lp152.106.1.noarch",
"product_id": "kernel-source-5.3.18-lp152.106.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"product": {
"name": "kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"product_id": "kernel-source-vanilla-5.3.18-lp152.106.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-debug-5.3.18-lp152.106.1.x86_64",
"product": {
"name": "kernel-debug-5.3.18-lp152.106.1.x86_64",
"product_id": "kernel-debug-5.3.18-lp152.106.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"product": {
"name": "kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"product_id": "kernel-debug-devel-5.3.18-lp152.106.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-5.3.18-lp152.106.1.x86_64",
"product": {
"name": "kernel-default-5.3.18-lp152.106.1.x86_64",
"product_id": "kernel-default-5.3.18-lp152.106.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"product": {
"name": "kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"product_id": "kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"product": {
"name": "kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"product_id": "kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"product": {
"name": "kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"product_id": "kernel-default-devel-5.3.18-lp152.106.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"product": {
"name": "kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"product_id": "kernel-kvmsmall-5.3.18-lp152.106.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"product": {
"name": "kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"product_id": "kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"product": {
"name": "kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"product_id": "kernel-obs-build-5.3.18-lp152.106.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"product": {
"name": "kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"product_id": "kernel-obs-qa-5.3.18-lp152.106.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-5.3.18-lp152.106.1.x86_64",
"product": {
"name": "kernel-preempt-5.3.18-lp152.106.1.x86_64",
"product_id": "kernel-preempt-5.3.18-lp152.106.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"product": {
"name": "kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"product_id": "kernel-preempt-devel-5.3.18-lp152.106.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.3.18-lp152.106.1.x86_64",
"product": {
"name": "kernel-syms-5.3.18-lp152.106.1.x86_64",
"product_id": "kernel-syms-5.3.18-lp152.106.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.2",
"product": {
"name": "openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-5.3.18-lp152.106.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64"
},
"product_reference": "kernel-debug-5.3.18-lp152.106.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-5.3.18-lp152.106.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64"
},
"product_reference": "kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.3.18-lp152.106.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64"
},
"product_reference": "kernel-default-5.3.18-lp152.106.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64"
},
"product_reference": "kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64"
},
"product_reference": "kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.3.18-lp152.106.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64"
},
"product_reference": "kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-5.3.18-lp152.106.1.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch"
},
"product_reference": "kernel-devel-5.3.18-lp152.106.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-5.3.18-lp152.106.1.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch"
},
"product_reference": "kernel-docs-5.3.18-lp152.106.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-html-5.3.18-lp152.106.1.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch"
},
"product_reference": "kernel-docs-html-5.3.18-lp152.106.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-5.3.18-lp152.106.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64"
},
"product_reference": "kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64"
},
"product_reference": "kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-5.3.18-lp152.106.1.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch"
},
"product_reference": "kernel-macros-5.3.18-lp152.106.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.3.18-lp152.106.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64"
},
"product_reference": "kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-5.3.18-lp152.106.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64"
},
"product_reference": "kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-5.3.18-lp152.106.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64"
},
"product_reference": "kernel-preempt-5.3.18-lp152.106.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-devel-5.3.18-lp152.106.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64"
},
"product_reference": "kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-5.3.18-lp152.106.1.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch"
},
"product_reference": "kernel-source-5.3.18-lp152.106.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-vanilla-5.3.18-lp152.106.1.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch"
},
"product_reference": "kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.3.18-lp152.106.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64"
},
"product_reference": "kernel-syms-5.3.18-lp152.106.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-0941",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-0941"
}
],
"notes": [
{
"category": "general",
"text": "In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-154177719References: Upstream kernel",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-0941",
"url": "https://www.suse.com/security/cve/CVE-2021-0941"
},
{
"category": "external",
"summary": "SUSE Bug 1192045 for CVE-2021-0941",
"url": "https://bugzilla.suse.com/1192045"
},
{
"category": "external",
"summary": "SUSE Bug 1192048 for CVE-2021-0941",
"url": "https://bugzilla.suse.com/1192048"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-24T16:00:07Z",
"details": "important"
}
],
"title": "CVE-2021-0941"
},
{
"cve": "CVE-2021-20322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20322"
}
],
"notes": [
{
"category": "general",
"text": "A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest threat from this vulnerability is to confidentiality and possibly integrity, because software that relies on UDP source port randomization are indirectly affected as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20322",
"url": "https://www.suse.com/security/cve/CVE-2021-20322"
},
{
"category": "external",
"summary": "SUSE Bug 1191790 for CVE-2021-20322",
"url": "https://bugzilla.suse.com/1191790"
},
{
"category": "external",
"summary": "SUSE Bug 1191813 for CVE-2021-20322",
"url": "https://bugzilla.suse.com/1191813"
},
{
"category": "external",
"summary": "SUSE Bug 1193290 for CVE-2021-20322",
"url": "https://bugzilla.suse.com/1193290"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-24T16:00:07Z",
"details": "important"
}
],
"title": "CVE-2021-20322"
},
{
"cve": "CVE-2021-31916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-31916"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel before 5.12. A bound check failure allows an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-31916",
"url": "https://www.suse.com/security/cve/CVE-2021-31916"
},
{
"category": "external",
"summary": "SUSE Bug 1192781 for CVE-2021-31916",
"url": "https://bugzilla.suse.com/1192781"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-24T16:00:07Z",
"details": "moderate"
}
],
"title": "CVE-2021-31916"
},
{
"cve": "CVE-2021-34981",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-34981"
}
],
"notes": [
{
"category": "general",
"text": "Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability.\n\nThe specific flaw exists within the CMTP module. The issue results from the lack of validating the existence of an object prior to performing further free operations on the object. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the kernel. Was ZDI-CAN-11977.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-34981",
"url": "https://www.suse.com/security/cve/CVE-2021-34981"
},
{
"category": "external",
"summary": "SUSE Bug 1191961 for CVE-2021-34981",
"url": "https://bugzilla.suse.com/1191961"
},
{
"category": "external",
"summary": "SUSE Bug 1192595 for CVE-2021-34981",
"url": "https://bugzilla.suse.com/1192595"
},
{
"category": "external",
"summary": "SUSE Bug 1196722 for CVE-2021-34981",
"url": "https://bugzilla.suse.com/1196722"
},
{
"category": "external",
"summary": "SUSE Bug 1212298 for CVE-2021-34981",
"url": "https://bugzilla.suse.com/1212298"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-24T16:00:07Z",
"details": "important"
}
],
"title": "CVE-2021-34981"
},
{
"cve": "CVE-2021-37159",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-37159"
}
],
"notes": [
{
"category": "general",
"text": "hso_free_net_device in drivers/net/usb/hso.c in the Linux kernel through 5.13.4 calls unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-37159",
"url": "https://www.suse.com/security/cve/CVE-2021-37159"
},
{
"category": "external",
"summary": "SUSE Bug 1188601 for CVE-2021-37159",
"url": "https://bugzilla.suse.com/1188601"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-24T16:00:07Z",
"details": "moderate"
}
],
"title": "CVE-2021-37159"
},
{
"cve": "CVE-2021-43389",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-43389"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in the Linux kernel before 5.14.15. There is an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-43389",
"url": "https://www.suse.com/security/cve/CVE-2021-43389"
},
{
"category": "external",
"summary": "SUSE Bug 1191958 for CVE-2021-43389",
"url": "https://bugzilla.suse.com/1191958"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:kernel-debug-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-debug-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-base-rebuild-5.3.18-lp152.106.1.lp152.8.52.1.x86_64",
"openSUSE Leap 15.2:kernel-default-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-devel-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-docs-html-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-kvmsmall-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-kvmsmall-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-macros-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-obs-build-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-obs-qa-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-preempt-devel-5.3.18-lp152.106.1.x86_64",
"openSUSE Leap 15.2:kernel-source-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-source-vanilla-5.3.18-lp152.106.1.noarch",
"openSUSE Leap 15.2:kernel-syms-5.3.18-lp152.106.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-24T16:00:07Z",
"details": "moderate"
}
],
"title": "CVE-2021-43389"
}
]
}
OPENSUSE-SU-2021:3806-1
Vulnerability from csaf_opensuse - Published: 2021-11-25 13:19 - Updated: 2021-11-25 13:19Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise 15 SP3 kernel for Azure was updated to receive various security and bugfixes.
The following security bugs were fixed:
- Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past (jsc#SLE-22573)
You can reenable via systemctl setting /proc/sys/kernel/unprivileged_bpf_disabled to 0. (kernel.unprivileged_bpf_disabled = 0)
- CVE-2021-0941: In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192045).
- CVE-2021-31916: An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel A bound check failure allowed an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability (bnc#1192781).
- CVE-2021-20322: Make the ipv4 and ipv6 ICMP exception caches less predictive to avoid information leaks about UDP ports in use. (bsc#1191790)
- CVE-2021-34981: Fixed file refcounting in cmtp when cmtp_attach_device fails (bsc#1191961).
- CVE-2021-43389: There was an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c (bnc#1191958).
- CVE-2021-37159: hso_free_net_device in drivers/net/usb/hso.c called unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free (bnc#1188601).
The following non-security bugs were fixed:
- ABI: sysfs-kernel-slab: Document some stats (git-fixes).
- ALSA: hda: fix general protection fault in azx_runtime_idle (git-fixes).
- ALSA: hda: Free card instance properly at probe errors (git-fixes).
- ALSA: hda/realtek: Fix mic mute LED for the HP Spectre x360 14 (git-fixes).
- ALSA: hda: Reduce udelay() at SKL+ position reporting (git-fixes).
- ALSA: hda: Use position buffer for SKL+ again (git-fixes).
- ALSA: ua101: fix division by zero at probe (git-fixes).
- ALSA: uapi: Fix a C++ style comment in asound.h (git-fixes).
- ALSA: usb-audio: Add Audient iD14 to mixer map quirk table (git-fixes).
- ALSA: usb-audio: Add minimal-mute notion in dB mapping table (bsc#1192375).
- ALSA: usb-audio: Add Schiit Hel device to mixer map quirk table (git-fixes).
- ALSA: usb-audio: Fix dB level of Bose Revolve+ SoundLink (bsc#1192375).
- ALSA: usb-audio: Use int for dB map values (bsc#1192375).
- ARM: socfpga: Fix crash with CONFIG_FORTIRY_SOURCE (bsc#1192473).
- ASoC: cs42l42: Correct some register default values (git-fixes).
- ASoC: cs42l42: Defer probe if request_threaded_irq() returns EPROBE_DEFER (git-fixes).
- ASoC: cs42l42: Do not set defaults for volatile registers (git-fixes).
- ASoC: dt-bindings: cs42l42: Correct description of ts-inv (git-fixes).
- ASoC: mediatek: mt8195: Remove unsued irqs_lock (git-fixes).
- ASoC: rockchip: Use generic dmaengine code (git-fixes).
- ASoC: SOF: topology: do not power down primary core during topology removal (git-fixes).
- ASoC: topology: Fix stub for snd_soc_tplg_component_remove() (git-fixes).
- ata: sata_mv: Fix the error handling of mv_chip_id() (git-fixes).
- ath10k: fix control-message timeout (git-fixes).
- ath10k: fix division by zero in send path (git-fixes).
- ath10k: fix max antenna gain unit (git-fixes).
- ath10k: Fix missing frame timestamp for beacon/probe-resp (git-fixes).
- ath10k: sdio: Add missing BH locking around napi_schdule() (git-fixes).
- ath6kl: fix control-message timeout (git-fixes).
- ath6kl: fix division by zero in send path (git-fixes).
- ath9k: Fix potential interrupt storm on queue reset (git-fixes).
- auxdisplay: ht16k33: Connect backlight to fbdev (git-fixes).
- auxdisplay: ht16k33: Fix frame buffer device blanking (git-fixes).
- auxdisplay: img-ascii-lcd: Fix lock-up when displaying empty string (git-fixes).
- b43: fix a lower bounds test (git-fixes).
- b43legacy: fix a lower bounds test (git-fixes).
- blacklist.conf: 5c9d706f6133 ('bpf: Fix BPF_LSM kconfig symbol dependency') Not needed since 30897832d8b9 ('bpf: Allow local storage to be used from LSM programs') is not backported.
- Bluetooth: btmtkuart: fix a memleak in mtk_hci_wmt_sync (git-fixes).
- Bluetooth: fix init and cleanup of sco_conn.timeout_work (git-fixes).
- bnxt_en: Fix TX timeout when TX ring size is set to the smallest (git-fixes).
- bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22573)
- bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22574)
- bpf: Disallow unprivileged bpf by default (jsc#SLE-22573).
- bpf: Disallow unprivileged bpf by default (jsc#SLE-22574).
- bpf: Fix BPF_JIT kconfig symbol dependency (git-fixes jsc#SLE-22574).
- bpf: Fix potential race in tail call compatibility check (git-fixes).
- bpf, kconfig: Add consolidated menu entry for bpf with core options (jsc#SLE-22574).
- btrfs: block-group: Rework documentation of check_system_chunk function (bsc#1192896).
- btrfs: fix deadlock between chunk allocation and chunk btree modifications (bsc#1192896).
- btrfs: fix memory ordering between normal and ordered work functions (git-fixes).
- btrfs: update comments for chunk allocation -ENOSPC cases (bsc#1192896).
- cgroup/cpuset: Change references of cpuset_mutex to cpuset_rwsem (git-fixes).
- config: disable unprivileged BPF by default (jsc#SLE-22573)
- crypto: caam - disable pkc for non-E SoCs (git-fixes).
- crypto: qat - detect PFVF collision after ACK (git-fixes).
- crypto: qat - disregard spurious PFVF interrupts (git-fixes).
- driver core: add a min_align_mask field to struct device_dma_parameters (bsc#1191851).
- drm/amdgpu/display: add quirk handling for stutter mode (git-fixes).
- drm/amdgpu: fix warning for overflow check (git-fixes).
- drm/amdgpu/gmc6: fix DMA mask from 44 to 40 bits (git-fixes).
- drm/i915: Introduce intel_hpd_hotplug_irqs() (bsc#1192758).
- drm/msm: Fix potential NULL dereference in DPU SSPP (git-fixes).
- drm/msm: potential error pointer dereference in init() (git-fixes).
- drm/msm: uninitialized variable in msm_gem_import() (git-fixes).
- drm: prevent spectre issue in vmw_execbuf_ioctl (bsc#1192802).
- drm/sun4i: Fix macros in sun8i_csc.h (git-fixes).
- drm/ttm: stop calling tt_swapin in vm_access (git-fixes).
- drm/v3d: fix wait for TMU write combiner flush (git-fixes).
- EDAC/amd64: Set proper family type for Family 19h Models 20h-2Fh (bsc#1192288).
- EDAC/sb_edac: Fix top-of-high-memory value for Broadwell/Haswell (bsc#1152489).
- Eradicate Patch-mainline: No The pre-commit check can reject this deprecated tag then.
- exfat: fix erroneous discard when clear cluster bit (git-fixes).
- exfat: handle wrong stream entry size in exfat_readdir() (git-fixes).
- exfat: properly set s_time_gran (bsc#1192328).
- exfat: truncate atimes to 2s granularity (bsc#1192328).
- firmware/psci: fix application of sizeof to pointer (git-fixes).
- ftrace: Fix scripts/recordmcount.pl due to new binutils (bsc#1192267).
- fuse: fix page stealing (bsc#1192718).
- genirq: Provide IRQCHIP_AFFINITY_PRE_STARTUP (bsc#1152489).
- gpio: mpc8xxx: Use 'devm_gpiochip_add_data()' to simplify the code and avoid a leak (git-fixes).
- gpio/rockchip: add driver for rockchip gpio (bsc#1192217).
- gpio/rockchip: drop irq_gc_lock/irq_gc_unlock for irq set type (bsc#1192217).
- gpio/rockchip: extended debounce support is only available on v2 (bsc#1192217).
- gpio/rockchip: fetch deferred output settings on probe (bsc#1192217).
- gpio/rockchip: fix get_direction value handling (bsc#1192217).
- gpio/rockchip: support next version gpio controller (bsc#1192217).
- gpio/rockchip: use struct rockchip_gpio_regs for gpio controller (bsc#1192217).
- gve: Avoid freeing NULL pointer (git-fixes).
- gve: Correct available tx qpl check (git-fixes).
- gve: fix gve_get_stats() (git-fixes).
- gve: Properly handle errors in gve_assign_qpl (bsc#1176940).
- gve: report 64bit tx_bytes counter from gve_handle_report_stats() (bsc#1176940).
- HID: u2fzero: clarify error check and length calculations (git-fixes).
- HID: u2fzero: properly handle timeouts in usb_submit_urb (git-fixes).
- hwmon: Fix possible memleak in __hwmon_device_register() (git-fixes).
- hwmon: (pmbus/lm25066) Add offset coefficients (git-fixes).
- hwmon: (pmbus/lm25066) Let compiler determine outer dimension of lm25066_coeff (git-fixes).
- hwrng: mtk - Force runtime pm ops for sleep ops (git-fixes).
- i40e: Fix ATR queue selection (git-fixes).
- i40e: fix endless loop under rtnl (git-fixes).
- i40e: Fix freeing of uninitialized misc IRQ vector (git-fixes).
- iavf: fix double unlock of crit_lock (git-fixes).
- ibmvnic: check failover_pending in login response (bsc#1190523 ltc#194510).
- ibmvnic: delay complete() (bsc#1094840 ltc#167098 git-fixes).
- ibmvnic: do not stop queue in xmit (bsc#1192273 ltc#194629).
- ibmvnic: Process crqs after enabling interrupts (bsc#1192273 ltc#194629).
- ice: Add missing E810 device ids (jsc#SLE-7966 bsc#1157177).
- iio: dac: ad5446: Fix ad5622_write() return value (git-fixes).
- Input: elantench - fix misreporting trackpoint coordinates (bsc#1192918).
- Input: i8042 - Add quirk for Fujitsu Lifebook T725 (bsc#1191980).
- ionic: do not remove netdev->dev_addr when syncing uc list (bsc#1167773).
- iwlwifi: mvm: fix some kerneldoc issues (git-fixes).
- ixgbe: Fix NULL pointer dereference in ixgbe_xdp_setup (git-fixes).
- kABI: Fix kABI after 36950f2da1ea (bsc#1191851).
- kernel-*-subpackage: Add dependency on kernel scriptlets (bsc#1192740).
- KVM: s390: extend kvm_s390_shadow_fault to return entry pointer (bsc#1133021).
- KVM: s390: index kvm->arch.idle_mask by vcpu_idx (bsc#1133021).
- KVM: s390: split kvm_s390_logical_to_effective (bsc#1133021).
- KVM: s390: VSIE: correctly handle MVPG when in VSIE (bsc#1133021).
- libertas: Fix possible memory leak in probe and disconnect (git-fixes).
- libertas_tf: Fix possible memory leak in probe and disconnect (git-fixes).
- media: cedrus: Fix SUNXI tile size calculation (git-fixes).
- media: cx23885: Fix snd_card_free call on null card pointer (git-fixes).
- media: cxd2880-spi: Fix a null pointer dereference on error handling path (git-fixes).
- media: dvb-frontends: mn88443x: Handle errors of clk_prepare_enable() (git-fixes).
- media: dvb-usb: fix ununit-value in az6027_rc_query (git-fixes).
- media: em28xx: add missing em28xx_close_extension (git-fixes).
- media: em28xx: Do not use ops->suspend if it is NULL (git-fixes).
- media: i2c: ths8200 needs V4L2_ASYNC (git-fixes).
- media: ite-cir: IR receiver stop working after receive overflow (git-fixes).
- media: mtk-vpu: Fix a resource leak in the error handling path of 'mtk_vpu_probe()' (git-fixes).
- media: mxl111sf: change mutex_init() location (git-fixes).
- media: radio-wl1273: Avoid card name truncation (git-fixes).
- media: si470x: Avoid card name truncation (git-fixes).
- media: staging/intel-ipu3: css: Fix wrong size comparison imgu_css_fw_init (git-fixes).
- media: TDA1997x: handle short reads of hdmi info frame (git-fixes).
- media: tm6000: Avoid card name truncation (git-fixes).
- media: v4l2-ioctl: Fix check_ext_ctrls (git-fixes).
- media: v4l2-ioctl: S_CTRL output the right value (git-fixes).
- memory: fsl_ifc: fix leak of irq and nand_irq in fsl_ifc_ctrl_probe (git-fixes).
- memstick: avoid out-of-range warning (git-fixes).
- memstick: jmb38x_ms: use appropriate free function in jmb38x_ms_alloc_host() (git-fixes).
- mlx5: count all link events (git-fixes).
- mlxsw: thermal: Fix out-of-bounds memory accesses (git-fixes).
- mmc: mxs-mmc: disable regulator on error and in the remove function (git-fixes).
- mmc: sdhci: Map more voltage level to SDHCI_POWER_330 (git-fixes).
- mmc: sdhci-omap: Fix NULL pointer exception if regulator is not configured (git-fixes).
- mm/hugetlb: initialize hugetlb_usage in mm_init (bsc#1192906).
- Move upstreamed sound fix into sorted section
- mt76: mt7615: fix endianness warning in mt7615_mac_write_txwi (git-fixes).
- mt76: mt76x02: fix endianness warnings in mt76x02_mac.c (git-fixes).
- mt76: mt7915: fix muar_idx in mt7915_mcu_alloc_sta_req() (git-fixes).
- mt76: mt7915: fix possible infinite loop release semaphore (git-fixes).
- mt76: mt7915: fix sta_rec_wtbl tag len (git-fixes).
- mwifiex: fix division by zero in fw download path (git-fixes).
- mwifiex: Send DELBA requests according to spec (git-fixes).
- net/af_unix: fix a data-race in unix_dgram_poll (bsc#1154353).
- net: bridge: use nla_total_size_64bit() in br_get_linkxstats_size() (git-fixes).
- net: dsa: felix: re-enable TX flow control in ocelot_port_flush() (git-fixes).
- net: hns3: fix vf reset workqueue cannot exit (bsc#1154353).
- net/mlx4_en: Do not allow aRFS for encapsulated packets (git-fixes).
- net/mlx4_en: Resolve bad operstate value (git-fixes).
- net/mlx5e: Mutually exclude RX-FCS and RX-port-timestamp (git-fixes).
- net/mlx5: Fix unpublish devlink parameters (jsc#SLE-8464).
- net/mlx5: FWTrace, cancel work on alloc pd error flow (git-fixes).
- net: mscc: ocelot: fix hardware timestamp dequeue logic.
- net: mscc: ocelot: warn when a PTP IRQ is raised for an unknown skb (git-fixes).
- net/smc: Correct smc link connection counter in case of smc client (git-fixes).
- net/smc: fix 'workqueue leaked lock' in smc_conn_abort_work (git-fixes).
- nvme-pci: set min_align_mask (bsc#1191851).
- ocfs2: do not zero pages beyond i_size (bsc#1190795).
- ocfs2: fix data corruption on truncate (bsc#1190795).
- PCI: aardvark: Do not clear status bits of masked interrupts (git-fixes).
- PCI: aardvark: Do not spam about PIO Response Status (git-fixes).
- PCI: aardvark: Do not unmask unused interrupts (git-fixes).
- PCI: aardvark: Fix checking for link up via LTSSM state (git-fixes).
- PCI: aardvark: Fix reporting Data Link Layer Link Active (git-fixes).
- PCI: aardvark: Fix return value of MSI domain .alloc() method (git-fixes).
- PCI: aardvark: Read all 16-bits from PCIE_MSI_PAYLOAD_REG (git-fixes).
- PCI/ACPI: Check for _OSC support in acpi_pci_osc_control_set() (bsc#1169263).
- PCI/ACPI: Clarify message about _OSC failure (bsc#1169263).
- PCI/ACPI: Move _OSC query checks to separate function (bsc#1169263).
- PCI/ACPI: Move supported and control calculations to separate functions (bsc#1169263).
- PCI/ACPI: Remove OSC_PCI_SUPPORT_MASKS and OSC_PCI_CONTROL_MASKS (bsc#1169263).
- PCI/ACPI: Remove unnecessary osc_lock (bsc#1169263).
- PCI: pci-bridge-emul: Fix emulation of W1C bits (git-fixes).
- PCI: uniphier: Serialize INTx masking/unmasking and fix the bit operation (git-fixes).
- pinctrl: core: fix possible memory leak in pinctrl_enable() (git-fixes).
- pinctrl: pinctrl-rockchip: Fix a bunch of kerneldoc misdemeanours (bsc#1192217).
- pinctrl/rockchip: add a queue for deferred pin output settings on probe (bsc#1192217).
- pinctrl/rockchip: add pinctrl device to gpio bank struct (bsc#1192217).
- pinctrl: rockchip: add rk3308 SoC support (bsc#1192217).
- pinctrl: rockchip: add support for rk3568 (bsc#1192217).
- pinctrl/rockchip: always enable clock for gpio controller (bsc#1192217).
- pinctrl: rockchip: clear int status when driver probed (bsc#1192217).
- pinctrl: rockchip: create irq mapping in gpio_to_irq (bsc#1192217).
- pinctrl: rockchip: do coding style for mux route struct (bsc#1192217).
- pinctrl/rockchip: drop the gpio related codes (bsc#1192217).
- pinctrl: rockchip: enable gpio pclk for rockchip_gpio_to_irq (bsc#1192217).
- pinctrl: rockchip: make driver be tristate module (bsc#1192217).
- pinctrl: rockchip: Replace HTTP links with HTTPS ones (bsc#1192217).
- pinctrl: rockchip: return ENOMEM instead of EINVAL if allocation fails (bsc#1192217).
- pinctrl/rockchip: separate struct rockchip_pin_bank to a head file (bsc#1192217).
- platform/x86: thinkpad_acpi: Fix bitwise vs. logical warning (git-fixes).
- PM: sleep: Do not let 'syscore' devices runtime-suspend during system transitions (git-fixes).
- power: supply: bq27xxx: Fix kernel crash on IRQ handler register error (git-fixes).
- power: supply: max17042_battery: Prevent int underflow in set_soc_threshold (git-fixes).
- power: supply: max17042_battery: use VFSOC for capacity when no rsns (git-fixes).
- printk/console: Allow to disable console output by using console='' or console=null (bsc#1192753).
- printk: handle blank console arguments passed in (bsc#1192753).
- qed: Fix missing error code in qed_slowpath_start() (git-fixes).
- qed: Handle management FW error (git-fixes).
- qed: rdma - do not wait for resources under hw error recovery flow (git-fixes).
- qtnfmac: fix potential Spectre vulnerabilities (bsc#1192802).
- r8152: add a helper function about setting EEE (git-fixes).
- r8152: Add macpassthru support for ThinkPad Thunderbolt 3 Dock Gen 2 (git-fixes).
- r8152: Disable PLA MCU clock speed down (git-fixes).
- r8152: disable U2P3 for RTL8153B (git-fixes).
- r8152: divide the tx and rx bottom functions (git-fixes).
- r8152: do not enable U1U2 with USB_SPEED_HIGH for RTL8153B (git-fixes).
- r8152: fix runtime resume for linking change (git-fixes).
- r8152: replace array with linking list for rx information (git-fixes).
- r8152: reset flow control patch when linking on for RTL8153B (git-fixes).
- r8152: saving the settings of EEE (git-fixes).
- r8152: separate the rx buffer size (git-fixes).
- r8152: use alloc_pages for rx buffer (git-fixes).
- random: fix crash on multiple early calls to add_bootloader_randomness() (bsc#1184924)
- README.BRANCH: Add Oscar Salvador as SLE15-SP3 maintainer
- regulator: dt-bindings: samsung,s5m8767: correct s5m8767,pmic-buck-default-dvs-idx property (git-fixes).
- regulator: s5m8767: do not use reset value as DVS voltage if GPIO DVS is disabled (git-fixes).
- Revert 'ibmvnic: check failover_pending in login response' (bsc#1190523 ltc#194510).
- Revert 'platform/x86: i2c-multi-instantiate: Do not create platform device for INT3515 ACPI nodes' (git-fixes).
- Revert 'r8152: adjust the settings about MAC clock speed down for RTL8153' (git-fixes).
- Revert 'scsi: ufs: fix a missing check of devm_reset_control_get' (git-fixes).
- Revert 'x86/kvm: fix vcpu-id indexed array sizes' (git-fixes).
- rndis_host: set proper input size for OID_GEN_PHYSICAL_MEDIUM request (git-fixes).
- rsi: fix control-message timeout (git-fixes).
- rsi: Fix module dev_oper_mode parameter description (git-fixes).
- rsi: stop thread firstly in rsi_91x_init() error handling (git-fixes).
- rtl8187: fix control-message timeouts (git-fixes).
- s390/dasd: fix use after free in dasd path handling (git-fixes).
- s390/pci: fix use after free of zpci_dev (git-fixes).
- s390/pci: fix zpci_zdev_put() on reserve (git-fixes).
- s390/qeth: fix deadlock during failing recovery (git-fixes).
- s390/qeth: Fix deadlock in remove_discipline (git-fixes).
- s390/qeth: fix NULL deref in qeth_clear_working_pool_list() (git-fixes).
- s390/topology: clear thread/group maps for offline cpus (git-fixes).
- scsi: be2iscsi: Fix an error handling path in beiscsi_dev_probe() (git-fixes).
- scsi: BusLogic: Fix missing pr_cont() use (git-fixes).
- scsi: core: Fix spelling in a source code comment (git-fixes).
- scsi: csiostor: Add module softdep on cxgb4 (git-fixes).
- scsi: csiostor: Uninitialized data in csio_ln_vnp_read_cbfn() (git-fixes).
- scsi: dc395: Fix error case unwinding (git-fixes).
- scsi: fdomain: Fix error return code in fdomain_probe() (git-fixes).
- scsi: FlashPoint: Rename si_flags field (git-fixes).
- scsi: iscsi: Fix iface sysfs attr detection (git-fixes).
- scsi: libsas: Use _safe() loop in sas_resume_port() (git-fixes).
- scsi: mpt3sas: Fix error return value in _scsih_expander_add() (git-fixes).
- scsi: qedf: Add pointer checks in qedf_update_link_speed() (git-fixes).
- scsi: qedf: Fix error codes in qedf_alloc_global_queues() (git-fixes).
- scsi: qedi: Fix error codes in qedi_alloc_global_queues() (git-fixes).
- scsi: qla2xxx: Fix a memory leak in an error path of qla2x00_process_els() (git-fixes).
- scsi: qla2xxx: Make sure that aborted commands are freed (git-fixes).
- scsi: smartpqi: Fix an error code in pqi_get_raid_map() (git-fixes).
- scsi: snic: Fix an error message (git-fixes).
- scsi: ufs-pci: Add quirk for broken auto-hibernate for Intel EHL (git-fixes).
- scsi: ufs: ufshcd-pltfrm: Fix memory leak due to probe defer (git-fixes).
- serial: 8250_dw: Drop wrong use of ACPI_PTR() (git-fixes).
- serial: xilinx_uartps: Fix race condition causing stuck TX (git-fixes).
- staging: r8712u: fix control-message timeout (git-fixes).
- staging: rtl8192u: fix control-message timeouts (git-fixes).
- stmmac: platform: Fix signedness bug in stmmac_probe_config_dt() (git-fixes).
- swiotlb: add a IO_TLB_SIZE define (bsc#1191851).
- swiotlb: clean up swiotlb_tbl_unmap_single (bsc#1191851).
- swiotlb: do not modify orig_addr in swiotlb_tbl_sync_single (bsc#1191851).
- swiotlb: factor out an io_tlb_offset helper (bsc#1191851).
- swiotlb: factor out a nr_slots helper (bsc#1191851).
- swiotlb: refactor swiotlb_tbl_map_single (bsc#1191851).
- swiotlb: respect min_align_mask (bsc#1191851).
- swiotlb: Split size parameter to map/unmap APIs (bsc#1191851).
- tpm: Check for integer overflow in tpm2_map_response_body() (git-fixes).
- tracing: Increase PERF_MAX_TRACE_SIZE to handle Sentinel1 and docker together (bsc#1192745).
- Update config files: Add CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set
- Update patches.suse/NFS-Do-uncached-readdir-when-we-re-seeking-a-cookie-.patch (bsc#1191628 bsc#1192549). dir_cookie is a pointer to the cookie in older kernels, not the cookie itself.
- Update patch reference for AMDGPU fix (bsc#1180749)
- usb: gadget: hid: fix error code in do_config() (git-fixes).
- USB: iowarrior: fix control-message timeouts (git-fixes).
- usb: max-3421: Use driver data instead of maintaining a list of bound devices (git-fixes).
- usb: musb: Balance list entry in musb_gadget_queue (git-fixes).
- usbnet: fix error return code in usbnet_probe() (git-fixes).
- usbnet: sanity check for maxpacket (git-fixes).
- USB: serial: keyspan: fix memleak on probe errors (git-fixes).
- video: fbdev: chipsfb: use memset_io() instead of memset() (git-fixes).
- virtio-gpu: fix possible memory allocation failure (git-fixes).
- wcn36xx: Add ability for wcn36xx_smd_dump_cmd_req to pass two's complement (git-fixes).
- wcn36xx: add proper DMA memory barriers in rx path (git-fixes).
- wcn36xx: Fix HT40 capability for 2Ghz band (git-fixes).
- x86/ioapic: Force affinity setup before startup (bsc#1152489).
- x86/msi: Force affinity setup before startup (bsc#1152489).
- x86/reboot: Limit Dell Optiplex 990 quirk to early BIOS versions (bsc#1152489).
- x86/sme: Use #define USE_EARLY_PGTABLE_L5 in mem_encrypt_identity.c (bsc#1152489).
- x86/xen: Mark cpu_bringup_and_idle() as dead_end_function (git-fixes).
- xen: Fix implicit type conversion (git-fixes).
- xen-pciback: Fix return in pm_ctrl_init() (git-fixes).
- xfs: do not allow log writes if the data device is readonly (bsc#1192229).
Patchnames: openSUSE-SLE-15.3-2021-3806
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.8 (Medium)
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.5 (Medium)
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.7 (Medium)
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
69 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://bugzilla.suse.com/1094840 | self |
| https://bugzilla.suse.com/1133021 | self |
| https://bugzilla.suse.com/1152489 | self |
| https://bugzilla.suse.com/1154353 | self |
| https://bugzilla.suse.com/1157177 | self |
| https://bugzilla.suse.com/1167773 | self |
| https://bugzilla.suse.com/1169263 | self |
| https://bugzilla.suse.com/1170269 | self |
| https://bugzilla.suse.com/1176940 | self |
| https://bugzilla.suse.com/1180749 | self |
| https://bugzilla.suse.com/1184924 | self |
| https://bugzilla.suse.com/1188601 | self |
| https://bugzilla.suse.com/1190523 | self |
| https://bugzilla.suse.com/1190795 | self |
| https://bugzilla.suse.com/1191628 | self |
| https://bugzilla.suse.com/1191790 | self |
| https://bugzilla.suse.com/1191851 | self |
| https://bugzilla.suse.com/1191958 | self |
| https://bugzilla.suse.com/1191961 | self |
| https://bugzilla.suse.com/1191980 | self |
| https://bugzilla.suse.com/1192045 | self |
| https://bugzilla.suse.com/1192217 | self |
| https://bugzilla.suse.com/1192229 | self |
| https://bugzilla.suse.com/1192267 | self |
| https://bugzilla.suse.com/1192273 | self |
| https://bugzilla.suse.com/1192288 | self |
| https://bugzilla.suse.com/1192328 | self |
| https://bugzilla.suse.com/1192375 | self |
| https://bugzilla.suse.com/1192473 | self |
| https://bugzilla.suse.com/1192549 | self |
| https://bugzilla.suse.com/1192718 | self |
| https://bugzilla.suse.com/1192740 | self |
| https://bugzilla.suse.com/1192745 | self |
| https://bugzilla.suse.com/1192750 | self |
| https://bugzilla.suse.com/1192753 | self |
| https://bugzilla.suse.com/1192758 | self |
| https://bugzilla.suse.com/1192781 | self |
| https://bugzilla.suse.com/1192802 | self |
| https://bugzilla.suse.com/1192896 | self |
| https://bugzilla.suse.com/1192906 | self |
| https://bugzilla.suse.com/1192918 | self |
| https://www.suse.com/security/cve/CVE-2021-0941/ | self |
| https://www.suse.com/security/cve/CVE-2021-20322/ | self |
| https://www.suse.com/security/cve/CVE-2021-31916/ | self |
| https://www.suse.com/security/cve/CVE-2021-34981/ | self |
| https://www.suse.com/security/cve/CVE-2021-37159/ | self |
| https://www.suse.com/security/cve/CVE-2021-43389/ | self |
| https://www.suse.com/security/cve/CVE-2021-0941 | external |
| https://bugzilla.suse.com/1192045 | external |
| https://bugzilla.suse.com/1192048 | external |
| https://www.suse.com/security/cve/CVE-2021-20322 | external |
| https://bugzilla.suse.com/1191790 | external |
| https://bugzilla.suse.com/1191813 | external |
| https://bugzilla.suse.com/1193290 | external |
| https://www.suse.com/security/cve/CVE-2021-31916 | external |
| https://bugzilla.suse.com/1192781 | external |
| https://www.suse.com/security/cve/CVE-2021-34981 | external |
| https://bugzilla.suse.com/1191961 | external |
| https://bugzilla.suse.com/1192595 | external |
| https://bugzilla.suse.com/1196722 | external |
| https://bugzilla.suse.com/1212298 | external |
| https://www.suse.com/security/cve/CVE-2021-37159 | external |
| https://bugzilla.suse.com/1188601 | external |
| https://www.suse.com/security/cve/CVE-2021-43389 | external |
| https://bugzilla.suse.com/1191958 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\n\nThe SUSE Linux Enterprise 15 SP3 kernel for Azure was updated to receive various security and bugfixes.\n\n\nThe following security bugs were fixed:\n\n- Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past (jsc#SLE-22573)\n\n You can reenable via systemctl setting /proc/sys/kernel/unprivileged_bpf_disabled to 0. (kernel.unprivileged_bpf_disabled = 0)\n\n- CVE-2021-0941: In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192045).\n- CVE-2021-31916: An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel A bound check failure allowed an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability (bnc#1192781).\n- CVE-2021-20322: Make the ipv4 and ipv6 ICMP exception caches less predictive to avoid information leaks about UDP ports in use. (bsc#1191790)\n- CVE-2021-34981: Fixed file refcounting in cmtp when cmtp_attach_device fails (bsc#1191961).\n- CVE-2021-43389: There was an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c (bnc#1191958).\n- CVE-2021-37159: hso_free_net_device in drivers/net/usb/hso.c called unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free (bnc#1188601).\n\nThe following non-security bugs were fixed:\n\n- ABI: sysfs-kernel-slab: Document some stats (git-fixes).\n- ALSA: hda: fix general protection fault in azx_runtime_idle (git-fixes).\n- ALSA: hda: Free card instance properly at probe errors (git-fixes).\n- ALSA: hda/realtek: Fix mic mute LED for the HP Spectre x360 14 (git-fixes).\n- ALSA: hda: Reduce udelay() at SKL+ position reporting (git-fixes).\n- ALSA: hda: Use position buffer for SKL+ again (git-fixes).\n- ALSA: ua101: fix division by zero at probe (git-fixes).\n- ALSA: uapi: Fix a C++ style comment in asound.h (git-fixes).\n- ALSA: usb-audio: Add Audient iD14 to mixer map quirk table (git-fixes).\n- ALSA: usb-audio: Add minimal-mute notion in dB mapping table (bsc#1192375).\n- ALSA: usb-audio: Add Schiit Hel device to mixer map quirk table (git-fixes).\n- ALSA: usb-audio: Fix dB level of Bose Revolve+ SoundLink (bsc#1192375).\n- ALSA: usb-audio: Use int for dB map values (bsc#1192375).\n- ARM: socfpga: Fix crash with CONFIG_FORTIRY_SOURCE (bsc#1192473).\n- ASoC: cs42l42: Correct some register default values (git-fixes).\n- ASoC: cs42l42: Defer probe if request_threaded_irq() returns EPROBE_DEFER (git-fixes).\n- ASoC: cs42l42: Do not set defaults for volatile registers (git-fixes).\n- ASoC: dt-bindings: cs42l42: Correct description of ts-inv (git-fixes).\n- ASoC: mediatek: mt8195: Remove unsued irqs_lock (git-fixes).\n- ASoC: rockchip: Use generic dmaengine code (git-fixes).\n- ASoC: SOF: topology: do not power down primary core during topology removal (git-fixes).\n- ASoC: topology: Fix stub for snd_soc_tplg_component_remove() (git-fixes).\n- ata: sata_mv: Fix the error handling of mv_chip_id() (git-fixes).\n- ath10k: fix control-message timeout (git-fixes).\n- ath10k: fix division by zero in send path (git-fixes).\n- ath10k: fix max antenna gain unit (git-fixes).\n- ath10k: Fix missing frame timestamp for beacon/probe-resp (git-fixes).\n- ath10k: sdio: Add missing BH locking around napi_schdule() (git-fixes).\n- ath6kl: fix control-message timeout (git-fixes).\n- ath6kl: fix division by zero in send path (git-fixes).\n- ath9k: Fix potential interrupt storm on queue reset (git-fixes).\n- auxdisplay: ht16k33: Connect backlight to fbdev (git-fixes).\n- auxdisplay: ht16k33: Fix frame buffer device blanking (git-fixes).\n- auxdisplay: img-ascii-lcd: Fix lock-up when displaying empty string (git-fixes).\n- b43: fix a lower bounds test (git-fixes).\n- b43legacy: fix a lower bounds test (git-fixes).\n- blacklist.conf: 5c9d706f6133 (\u0027bpf: Fix BPF_LSM kconfig symbol dependency\u0027) Not needed since 30897832d8b9 (\u0027bpf: Allow local storage to be used from LSM programs\u0027) is not backported.\n- Bluetooth: btmtkuart: fix a memleak in mtk_hci_wmt_sync (git-fixes).\n- Bluetooth: fix init and cleanup of sco_conn.timeout_work (git-fixes).\n- bnxt_en: Fix TX timeout when TX ring size is set to the smallest (git-fixes).\n- bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22573)\n- bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22574)\n- bpf: Disallow unprivileged bpf by default (jsc#SLE-22573).\n- bpf: Disallow unprivileged bpf by default (jsc#SLE-22574).\n- bpf: Fix BPF_JIT kconfig symbol dependency (git-fixes jsc#SLE-22574).\n- bpf: Fix potential race in tail call compatibility check (git-fixes).\n- bpf, kconfig: Add consolidated menu entry for bpf with core options (jsc#SLE-22574).\n- btrfs: block-group: Rework documentation of check_system_chunk function (bsc#1192896).\n- btrfs: fix deadlock between chunk allocation and chunk btree modifications (bsc#1192896).\n- btrfs: fix memory ordering between normal and ordered work functions (git-fixes).\n- btrfs: update comments for chunk allocation -ENOSPC cases (bsc#1192896).\n- cgroup/cpuset: Change references of cpuset_mutex to cpuset_rwsem (git-fixes).\n- config: disable unprivileged BPF by default (jsc#SLE-22573)\n- crypto: caam - disable pkc for non-E SoCs (git-fixes).\n- crypto: qat - detect PFVF collision after ACK (git-fixes).\n- crypto: qat - disregard spurious PFVF interrupts (git-fixes).\n- driver core: add a min_align_mask field to struct device_dma_parameters (bsc#1191851).\n- drm/amdgpu/display: add quirk handling for stutter mode (git-fixes).\n- drm/amdgpu: fix warning for overflow check (git-fixes).\n- drm/amdgpu/gmc6: fix DMA mask from 44 to 40 bits (git-fixes).\n- drm/i915: Introduce intel_hpd_hotplug_irqs() (bsc#1192758).\n- drm/msm: Fix potential NULL dereference in DPU SSPP (git-fixes).\n- drm/msm: potential error pointer dereference in init() (git-fixes).\n- drm/msm: uninitialized variable in msm_gem_import() (git-fixes).\n- drm: prevent spectre issue in vmw_execbuf_ioctl (bsc#1192802).\n- drm/sun4i: Fix macros in sun8i_csc.h (git-fixes).\n- drm/ttm: stop calling tt_swapin in vm_access (git-fixes).\n- drm/v3d: fix wait for TMU write combiner flush (git-fixes).\n- EDAC/amd64: Set proper family type for Family 19h Models 20h-2Fh (bsc#1192288).\n- EDAC/sb_edac: Fix top-of-high-memory value for Broadwell/Haswell (bsc#1152489).\n- Eradicate Patch-mainline: No The pre-commit check can reject this deprecated tag then.\n- exfat: fix erroneous discard when clear cluster bit (git-fixes).\n- exfat: handle wrong stream entry size in exfat_readdir() (git-fixes).\n- exfat: properly set s_time_gran (bsc#1192328).\n- exfat: truncate atimes to 2s granularity (bsc#1192328).\n- firmware/psci: fix application of sizeof to pointer (git-fixes).\n- ftrace: Fix scripts/recordmcount.pl due to new binutils (bsc#1192267).\n- fuse: fix page stealing (bsc#1192718).\n- genirq: Provide IRQCHIP_AFFINITY_PRE_STARTUP (bsc#1152489).\n- gpio: mpc8xxx: Use \u0027devm_gpiochip_add_data()\u0027 to simplify the code and avoid a leak (git-fixes).\n- gpio/rockchip: add driver for rockchip gpio (bsc#1192217).\n- gpio/rockchip: drop irq_gc_lock/irq_gc_unlock for irq set type (bsc#1192217).\n- gpio/rockchip: extended debounce support is only available on v2 (bsc#1192217).\n- gpio/rockchip: fetch deferred output settings on probe (bsc#1192217).\n- gpio/rockchip: fix get_direction value handling (bsc#1192217).\n- gpio/rockchip: support next version gpio controller (bsc#1192217).\n- gpio/rockchip: use struct rockchip_gpio_regs for gpio controller (bsc#1192217).\n- gve: Avoid freeing NULL pointer (git-fixes).\n- gve: Correct available tx qpl check (git-fixes).\n- gve: fix gve_get_stats() (git-fixes).\n- gve: Properly handle errors in gve_assign_qpl (bsc#1176940).\n- gve: report 64bit tx_bytes counter from gve_handle_report_stats() (bsc#1176940).\n- HID: u2fzero: clarify error check and length calculations (git-fixes).\n- HID: u2fzero: properly handle timeouts in usb_submit_urb (git-fixes).\n- hwmon: Fix possible memleak in __hwmon_device_register() (git-fixes).\n- hwmon: (pmbus/lm25066) Add offset coefficients (git-fixes).\n- hwmon: (pmbus/lm25066) Let compiler determine outer dimension of lm25066_coeff (git-fixes).\n- hwrng: mtk - Force runtime pm ops for sleep ops (git-fixes).\n- i40e: Fix ATR queue selection (git-fixes).\n- i40e: fix endless loop under rtnl (git-fixes).\n- i40e: Fix freeing of uninitialized misc IRQ vector (git-fixes).\n- iavf: fix double unlock of crit_lock (git-fixes).\n- ibmvnic: check failover_pending in login response (bsc#1190523 ltc#194510).\n- ibmvnic: delay complete() (bsc#1094840 ltc#167098 git-fixes).\n- ibmvnic: do not stop queue in xmit (bsc#1192273 ltc#194629).\n- ibmvnic: Process crqs after enabling interrupts (bsc#1192273 ltc#194629).\n- ice: Add missing E810 device ids (jsc#SLE-7966 bsc#1157177).\n- iio: dac: ad5446: Fix ad5622_write() return value (git-fixes).\n- Input: elantench - fix misreporting trackpoint coordinates (bsc#1192918).\n- Input: i8042 - Add quirk for Fujitsu Lifebook T725 (bsc#1191980).\n- ionic: do not remove netdev-\u003edev_addr when syncing uc list (bsc#1167773).\n- iwlwifi: mvm: fix some kerneldoc issues (git-fixes).\n- ixgbe: Fix NULL pointer dereference in ixgbe_xdp_setup (git-fixes).\n- kABI: Fix kABI after 36950f2da1ea (bsc#1191851).\n- kernel-*-subpackage: Add dependency on kernel scriptlets (bsc#1192740).\n- KVM: s390: extend kvm_s390_shadow_fault to return entry pointer (bsc#1133021).\n- KVM: s390: index kvm-\u003earch.idle_mask by vcpu_idx (bsc#1133021).\n- KVM: s390: split kvm_s390_logical_to_effective (bsc#1133021).\n- KVM: s390: VSIE: correctly handle MVPG when in VSIE (bsc#1133021).\n- libertas: Fix possible memory leak in probe and disconnect (git-fixes).\n- libertas_tf: Fix possible memory leak in probe and disconnect (git-fixes).\n- media: cedrus: Fix SUNXI tile size calculation (git-fixes).\n- media: cx23885: Fix snd_card_free call on null card pointer (git-fixes).\n- media: cxd2880-spi: Fix a null pointer dereference on error handling path (git-fixes).\n- media: dvb-frontends: mn88443x: Handle errors of clk_prepare_enable() (git-fixes).\n- media: dvb-usb: fix ununit-value in az6027_rc_query (git-fixes).\n- media: em28xx: add missing em28xx_close_extension (git-fixes).\n- media: em28xx: Do not use ops-\u003esuspend if it is NULL (git-fixes).\n- media: i2c: ths8200 needs V4L2_ASYNC (git-fixes).\n- media: ite-cir: IR receiver stop working after receive overflow (git-fixes).\n- media: mtk-vpu: Fix a resource leak in the error handling path of \u0027mtk_vpu_probe()\u0027 (git-fixes).\n- media: mxl111sf: change mutex_init() location (git-fixes).\n- media: radio-wl1273: Avoid card name truncation (git-fixes).\n- media: si470x: Avoid card name truncation (git-fixes).\n- media: staging/intel-ipu3: css: Fix wrong size comparison imgu_css_fw_init (git-fixes).\n- media: TDA1997x: handle short reads of hdmi info frame (git-fixes).\n- media: tm6000: Avoid card name truncation (git-fixes).\n- media: v4l2-ioctl: Fix check_ext_ctrls (git-fixes).\n- media: v4l2-ioctl: S_CTRL output the right value (git-fixes).\n- memory: fsl_ifc: fix leak of irq and nand_irq in fsl_ifc_ctrl_probe (git-fixes).\n- memstick: avoid out-of-range warning (git-fixes).\n- memstick: jmb38x_ms: use appropriate free function in jmb38x_ms_alloc_host() (git-fixes).\n- mlx5: count all link events (git-fixes).\n- mlxsw: thermal: Fix out-of-bounds memory accesses (git-fixes).\n- mmc: mxs-mmc: disable regulator on error and in the remove function (git-fixes).\n- mmc: sdhci: Map more voltage level to SDHCI_POWER_330 (git-fixes).\n- mmc: sdhci-omap: Fix NULL pointer exception if regulator is not configured (git-fixes).\n- mm/hugetlb: initialize hugetlb_usage in mm_init (bsc#1192906).\n- Move upstreamed sound fix into sorted section\n- mt76: mt7615: fix endianness warning in mt7615_mac_write_txwi (git-fixes).\n- mt76: mt76x02: fix endianness warnings in mt76x02_mac.c (git-fixes).\n- mt76: mt7915: fix muar_idx in mt7915_mcu_alloc_sta_req() (git-fixes).\n- mt76: mt7915: fix possible infinite loop release semaphore (git-fixes).\n- mt76: mt7915: fix sta_rec_wtbl tag len (git-fixes).\n- mwifiex: fix division by zero in fw download path (git-fixes).\n- mwifiex: Send DELBA requests according to spec (git-fixes).\n- net/af_unix: fix a data-race in unix_dgram_poll (bsc#1154353).\n- net: bridge: use nla_total_size_64bit() in br_get_linkxstats_size() (git-fixes).\n- net: dsa: felix: re-enable TX flow control in ocelot_port_flush() (git-fixes).\n- net: hns3: fix vf reset workqueue cannot exit (bsc#1154353).\n- net/mlx4_en: Do not allow aRFS for encapsulated packets (git-fixes).\n- net/mlx4_en: Resolve bad operstate value (git-fixes).\n- net/mlx5e: Mutually exclude RX-FCS and RX-port-timestamp (git-fixes).\n- net/mlx5: Fix unpublish devlink parameters (jsc#SLE-8464).\n- net/mlx5: FWTrace, cancel work on alloc pd error flow (git-fixes).\n- net: mscc: ocelot: fix hardware timestamp dequeue logic.\n- net: mscc: ocelot: warn when a PTP IRQ is raised for an unknown skb (git-fixes).\n- net/smc: Correct smc link connection counter in case of smc client (git-fixes).\n- net/smc: fix \u0027workqueue leaked lock\u0027 in smc_conn_abort_work (git-fixes).\n- nvme-pci: set min_align_mask (bsc#1191851).\n- ocfs2: do not zero pages beyond i_size (bsc#1190795).\n- ocfs2: fix data corruption on truncate (bsc#1190795).\n- PCI: aardvark: Do not clear status bits of masked interrupts (git-fixes).\n- PCI: aardvark: Do not spam about PIO Response Status (git-fixes).\n- PCI: aardvark: Do not unmask unused interrupts (git-fixes).\n- PCI: aardvark: Fix checking for link up via LTSSM state (git-fixes).\n- PCI: aardvark: Fix reporting Data Link Layer Link Active (git-fixes).\n- PCI: aardvark: Fix return value of MSI domain .alloc() method (git-fixes).\n- PCI: aardvark: Read all 16-bits from PCIE_MSI_PAYLOAD_REG (git-fixes).\n- PCI/ACPI: Check for _OSC support in acpi_pci_osc_control_set() (bsc#1169263).\n- PCI/ACPI: Clarify message about _OSC failure (bsc#1169263).\n- PCI/ACPI: Move _OSC query checks to separate function (bsc#1169263).\n- PCI/ACPI: Move supported and control calculations to separate functions (bsc#1169263).\n- PCI/ACPI: Remove OSC_PCI_SUPPORT_MASKS and OSC_PCI_CONTROL_MASKS (bsc#1169263).\n- PCI/ACPI: Remove unnecessary osc_lock (bsc#1169263).\n- PCI: pci-bridge-emul: Fix emulation of W1C bits (git-fixes).\n- PCI: uniphier: Serialize INTx masking/unmasking and fix the bit operation (git-fixes).\n- pinctrl: core: fix possible memory leak in pinctrl_enable() (git-fixes).\n- pinctrl: pinctrl-rockchip: Fix a bunch of kerneldoc misdemeanours (bsc#1192217).\n- pinctrl/rockchip: add a queue for deferred pin output settings on probe (bsc#1192217).\n- pinctrl/rockchip: add pinctrl device to gpio bank struct (bsc#1192217).\n- pinctrl: rockchip: add rk3308 SoC support (bsc#1192217).\n- pinctrl: rockchip: add support for rk3568 (bsc#1192217).\n- pinctrl/rockchip: always enable clock for gpio controller (bsc#1192217).\n- pinctrl: rockchip: clear int status when driver probed (bsc#1192217).\n- pinctrl: rockchip: create irq mapping in gpio_to_irq (bsc#1192217).\n- pinctrl: rockchip: do coding style for mux route struct (bsc#1192217).\n- pinctrl/rockchip: drop the gpio related codes (bsc#1192217).\n- pinctrl: rockchip: enable gpio pclk for rockchip_gpio_to_irq (bsc#1192217).\n- pinctrl: rockchip: make driver be tristate module (bsc#1192217).\n- pinctrl: rockchip: Replace HTTP links with HTTPS ones (bsc#1192217).\n- pinctrl: rockchip: return ENOMEM instead of EINVAL if allocation fails (bsc#1192217).\n- pinctrl/rockchip: separate struct rockchip_pin_bank to a head file (bsc#1192217).\n- platform/x86: thinkpad_acpi: Fix bitwise vs. logical warning (git-fixes).\n- PM: sleep: Do not let \u0027syscore\u0027 devices runtime-suspend during system transitions (git-fixes).\n- power: supply: bq27xxx: Fix kernel crash on IRQ handler register error (git-fixes).\n- power: supply: max17042_battery: Prevent int underflow in set_soc_threshold (git-fixes).\n- power: supply: max17042_battery: use VFSOC for capacity when no rsns (git-fixes).\n- printk/console: Allow to disable console output by using console=\u0027\u0027 or console=null (bsc#1192753).\n- printk: handle blank console arguments passed in (bsc#1192753).\n- qed: Fix missing error code in qed_slowpath_start() (git-fixes).\n- qed: Handle management FW error (git-fixes).\n- qed: rdma - do not wait for resources under hw error recovery flow (git-fixes).\n- qtnfmac: fix potential Spectre vulnerabilities (bsc#1192802).\n- r8152: add a helper function about setting EEE (git-fixes).\n- r8152: Add macpassthru support for ThinkPad Thunderbolt 3 Dock Gen 2 (git-fixes).\n- r8152: Disable PLA MCU clock speed down (git-fixes).\n- r8152: disable U2P3 for RTL8153B (git-fixes).\n- r8152: divide the tx and rx bottom functions (git-fixes).\n- r8152: do not enable U1U2 with USB_SPEED_HIGH for RTL8153B (git-fixes).\n- r8152: fix runtime resume for linking change (git-fixes).\n- r8152: replace array with linking list for rx information (git-fixes).\n- r8152: reset flow control patch when linking on for RTL8153B (git-fixes).\n- r8152: saving the settings of EEE (git-fixes).\n- r8152: separate the rx buffer size (git-fixes).\n- r8152: use alloc_pages for rx buffer (git-fixes).\n- random: fix crash on multiple early calls to add_bootloader_randomness() (bsc#1184924)\n- README.BRANCH: Add Oscar Salvador as SLE15-SP3 maintainer\n- regulator: dt-bindings: samsung,s5m8767: correct s5m8767,pmic-buck-default-dvs-idx property (git-fixes).\n- regulator: s5m8767: do not use reset value as DVS voltage if GPIO DVS is disabled (git-fixes).\n- Revert \u0027ibmvnic: check failover_pending in login response\u0027 (bsc#1190523 ltc#194510).\n- Revert \u0027platform/x86: i2c-multi-instantiate: Do not create platform device for INT3515 ACPI nodes\u0027 (git-fixes).\n- Revert \u0027r8152: adjust the settings about MAC clock speed down for RTL8153\u0027 (git-fixes).\n- Revert \u0027scsi: ufs: fix a missing check of devm_reset_control_get\u0027 (git-fixes).\n- Revert \u0027x86/kvm: fix vcpu-id indexed array sizes\u0027 (git-fixes).\n- rndis_host: set proper input size for OID_GEN_PHYSICAL_MEDIUM request (git-fixes).\n- rsi: fix control-message timeout (git-fixes).\n- rsi: Fix module dev_oper_mode parameter description (git-fixes).\n- rsi: stop thread firstly in rsi_91x_init() error handling (git-fixes).\n- rtl8187: fix control-message timeouts (git-fixes).\n- s390/dasd: fix use after free in dasd path handling (git-fixes).\n- s390/pci: fix use after free of zpci_dev (git-fixes).\n- s390/pci: fix zpci_zdev_put() on reserve (git-fixes).\n- s390/qeth: fix deadlock during failing recovery (git-fixes).\n- s390/qeth: Fix deadlock in remove_discipline (git-fixes).\n- s390/qeth: fix NULL deref in qeth_clear_working_pool_list() (git-fixes).\n- s390/topology: clear thread/group maps for offline cpus (git-fixes).\n- scsi: be2iscsi: Fix an error handling path in beiscsi_dev_probe() (git-fixes).\n- scsi: BusLogic: Fix missing pr_cont() use (git-fixes).\n- scsi: core: Fix spelling in a source code comment (git-fixes).\n- scsi: csiostor: Add module softdep on cxgb4 (git-fixes).\n- scsi: csiostor: Uninitialized data in csio_ln_vnp_read_cbfn() (git-fixes).\n- scsi: dc395: Fix error case unwinding (git-fixes).\n- scsi: fdomain: Fix error return code in fdomain_probe() (git-fixes).\n- scsi: FlashPoint: Rename si_flags field (git-fixes).\n- scsi: iscsi: Fix iface sysfs attr detection (git-fixes).\n- scsi: libsas: Use _safe() loop in sas_resume_port() (git-fixes).\n- scsi: mpt3sas: Fix error return value in _scsih_expander_add() (git-fixes).\n- scsi: qedf: Add pointer checks in qedf_update_link_speed() (git-fixes).\n- scsi: qedf: Fix error codes in qedf_alloc_global_queues() (git-fixes).\n- scsi: qedi: Fix error codes in qedi_alloc_global_queues() (git-fixes).\n- scsi: qla2xxx: Fix a memory leak in an error path of qla2x00_process_els() (git-fixes).\n- scsi: qla2xxx: Make sure that aborted commands are freed (git-fixes).\n- scsi: smartpqi: Fix an error code in pqi_get_raid_map() (git-fixes).\n- scsi: snic: Fix an error message (git-fixes).\n- scsi: ufs-pci: Add quirk for broken auto-hibernate for Intel EHL (git-fixes).\n- scsi: ufs: ufshcd-pltfrm: Fix memory leak due to probe defer (git-fixes).\n- serial: 8250_dw: Drop wrong use of ACPI_PTR() (git-fixes).\n- serial: xilinx_uartps: Fix race condition causing stuck TX (git-fixes).\n- staging: r8712u: fix control-message timeout (git-fixes).\n- staging: rtl8192u: fix control-message timeouts (git-fixes).\n- stmmac: platform: Fix signedness bug in stmmac_probe_config_dt() (git-fixes).\n- swiotlb: add a IO_TLB_SIZE define (bsc#1191851).\n- swiotlb: clean up swiotlb_tbl_unmap_single (bsc#1191851).\n- swiotlb: do not modify orig_addr in swiotlb_tbl_sync_single (bsc#1191851).\n- swiotlb: factor out an io_tlb_offset helper (bsc#1191851).\n- swiotlb: factor out a nr_slots helper (bsc#1191851).\n- swiotlb: refactor swiotlb_tbl_map_single (bsc#1191851).\n- swiotlb: respect min_align_mask (bsc#1191851).\n- swiotlb: Split size parameter to map/unmap APIs (bsc#1191851).\n- tpm: Check for integer overflow in tpm2_map_response_body() (git-fixes).\n- tracing: Increase PERF_MAX_TRACE_SIZE to handle Sentinel1 and docker together (bsc#1192745).\n- Update config files: Add CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set\n- Update patches.suse/NFS-Do-uncached-readdir-when-we-re-seeking-a-cookie-.patch (bsc#1191628 bsc#1192549). dir_cookie is a pointer to the cookie in older kernels, not the cookie itself.\n- Update patch reference for AMDGPU fix (bsc#1180749)\n- usb: gadget: hid: fix error code in do_config() (git-fixes).\n- USB: iowarrior: fix control-message timeouts (git-fixes).\n- usb: max-3421: Use driver data instead of maintaining a list of bound devices (git-fixes).\n- usb: musb: Balance list entry in musb_gadget_queue (git-fixes).\n- usbnet: fix error return code in usbnet_probe() (git-fixes).\n- usbnet: sanity check for maxpacket (git-fixes).\n- USB: serial: keyspan: fix memleak on probe errors (git-fixes).\n- video: fbdev: chipsfb: use memset_io() instead of memset() (git-fixes).\n- virtio-gpu: fix possible memory allocation failure (git-fixes).\n- wcn36xx: Add ability for wcn36xx_smd_dump_cmd_req to pass two\u0027s complement (git-fixes).\n- wcn36xx: add proper DMA memory barriers in rx path (git-fixes).\n- wcn36xx: Fix HT40 capability for 2Ghz band (git-fixes).\n- x86/ioapic: Force affinity setup before startup (bsc#1152489).\n- x86/msi: Force affinity setup before startup (bsc#1152489).\n- x86/reboot: Limit Dell Optiplex 990 quirk to early BIOS versions (bsc#1152489).\n- x86/sme: Use #define USE_EARLY_PGTABLE_L5 in mem_encrypt_identity.c (bsc#1152489).\n- x86/xen: Mark cpu_bringup_and_idle() as dead_end_function (git-fixes).\n- xen: Fix implicit type conversion (git-fixes).\n- xen-pciback: Fix return in pm_ctrl_init() (git-fixes).\n- xfs: do not allow log writes if the data device is readonly (bsc#1192229).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-SLE-15.3-2021-3806",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2021_3806-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2021:3806-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WLGTBAKURNXDJOZBJTW2QLXJEWT66GSC/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2021:3806-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WLGTBAKURNXDJOZBJTW2QLXJEWT66GSC/"
},
{
"category": "self",
"summary": "SUSE Bug 1094840",
"url": "https://bugzilla.suse.com/1094840"
},
{
"category": "self",
"summary": "SUSE Bug 1133021",
"url": "https://bugzilla.suse.com/1133021"
},
{
"category": "self",
"summary": "SUSE Bug 1152489",
"url": "https://bugzilla.suse.com/1152489"
},
{
"category": "self",
"summary": "SUSE Bug 1154353",
"url": "https://bugzilla.suse.com/1154353"
},
{
"category": "self",
"summary": "SUSE Bug 1157177",
"url": "https://bugzilla.suse.com/1157177"
},
{
"category": "self",
"summary": "SUSE Bug 1167773",
"url": "https://bugzilla.suse.com/1167773"
},
{
"category": "self",
"summary": "SUSE Bug 1169263",
"url": "https://bugzilla.suse.com/1169263"
},
{
"category": "self",
"summary": "SUSE Bug 1170269",
"url": "https://bugzilla.suse.com/1170269"
},
{
"category": "self",
"summary": "SUSE Bug 1176940",
"url": "https://bugzilla.suse.com/1176940"
},
{
"category": "self",
"summary": "SUSE Bug 1180749",
"url": "https://bugzilla.suse.com/1180749"
},
{
"category": "self",
"summary": "SUSE Bug 1184924",
"url": "https://bugzilla.suse.com/1184924"
},
{
"category": "self",
"summary": "SUSE Bug 1188601",
"url": "https://bugzilla.suse.com/1188601"
},
{
"category": "self",
"summary": "SUSE Bug 1190523",
"url": "https://bugzilla.suse.com/1190523"
},
{
"category": "self",
"summary": "SUSE Bug 1190795",
"url": "https://bugzilla.suse.com/1190795"
},
{
"category": "self",
"summary": "SUSE Bug 1191628",
"url": "https://bugzilla.suse.com/1191628"
},
{
"category": "self",
"summary": "SUSE Bug 1191790",
"url": "https://bugzilla.suse.com/1191790"
},
{
"category": "self",
"summary": "SUSE Bug 1191851",
"url": "https://bugzilla.suse.com/1191851"
},
{
"category": "self",
"summary": "SUSE Bug 1191958",
"url": "https://bugzilla.suse.com/1191958"
},
{
"category": "self",
"summary": "SUSE Bug 1191961",
"url": "https://bugzilla.suse.com/1191961"
},
{
"category": "self",
"summary": "SUSE Bug 1191980",
"url": "https://bugzilla.suse.com/1191980"
},
{
"category": "self",
"summary": "SUSE Bug 1192045",
"url": "https://bugzilla.suse.com/1192045"
},
{
"category": "self",
"summary": "SUSE Bug 1192217",
"url": "https://bugzilla.suse.com/1192217"
},
{
"category": "self",
"summary": "SUSE Bug 1192229",
"url": "https://bugzilla.suse.com/1192229"
},
{
"category": "self",
"summary": "SUSE Bug 1192267",
"url": "https://bugzilla.suse.com/1192267"
},
{
"category": "self",
"summary": "SUSE Bug 1192273",
"url": "https://bugzilla.suse.com/1192273"
},
{
"category": "self",
"summary": "SUSE Bug 1192288",
"url": "https://bugzilla.suse.com/1192288"
},
{
"category": "self",
"summary": "SUSE Bug 1192328",
"url": "https://bugzilla.suse.com/1192328"
},
{
"category": "self",
"summary": "SUSE Bug 1192375",
"url": "https://bugzilla.suse.com/1192375"
},
{
"category": "self",
"summary": "SUSE Bug 1192473",
"url": "https://bugzilla.suse.com/1192473"
},
{
"category": "self",
"summary": "SUSE Bug 1192549",
"url": "https://bugzilla.suse.com/1192549"
},
{
"category": "self",
"summary": "SUSE Bug 1192718",
"url": "https://bugzilla.suse.com/1192718"
},
{
"category": "self",
"summary": "SUSE Bug 1192740",
"url": "https://bugzilla.suse.com/1192740"
},
{
"category": "self",
"summary": "SUSE Bug 1192745",
"url": "https://bugzilla.suse.com/1192745"
},
{
"category": "self",
"summary": "SUSE Bug 1192750",
"url": "https://bugzilla.suse.com/1192750"
},
{
"category": "self",
"summary": "SUSE Bug 1192753",
"url": "https://bugzilla.suse.com/1192753"
},
{
"category": "self",
"summary": "SUSE Bug 1192758",
"url": "https://bugzilla.suse.com/1192758"
},
{
"category": "self",
"summary": "SUSE Bug 1192781",
"url": "https://bugzilla.suse.com/1192781"
},
{
"category": "self",
"summary": "SUSE Bug 1192802",
"url": "https://bugzilla.suse.com/1192802"
},
{
"category": "self",
"summary": "SUSE Bug 1192896",
"url": "https://bugzilla.suse.com/1192896"
},
{
"category": "self",
"summary": "SUSE Bug 1192906",
"url": "https://bugzilla.suse.com/1192906"
},
{
"category": "self",
"summary": "SUSE Bug 1192918",
"url": "https://bugzilla.suse.com/1192918"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-0941 page",
"url": "https://www.suse.com/security/cve/CVE-2021-0941/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20322 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20322/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-31916 page",
"url": "https://www.suse.com/security/cve/CVE-2021-31916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-34981 page",
"url": "https://www.suse.com/security/cve/CVE-2021-34981/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-37159 page",
"url": "https://www.suse.com/security/cve/CVE-2021-37159/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-43389 page",
"url": "https://www.suse.com/security/cve/CVE-2021-43389/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2021-11-25T13:19:51Z",
"generator": {
"date": "2021-11-25T13:19:51Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2021:3806-1",
"initial_release_date": "2021-11-25T13:19:51Z",
"revision_history": [
{
"date": "2021-11-25T13:19:51Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-azure-5.3.18-38.31.1.noarch",
"product": {
"name": "kernel-devel-azure-5.3.18-38.31.1.noarch",
"product_id": "kernel-devel-azure-5.3.18-38.31.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-azure-5.3.18-38.31.1.noarch",
"product": {
"name": "kernel-source-azure-5.3.18-38.31.1.noarch",
"product_id": "kernel-source-azure-5.3.18-38.31.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"product": {
"name": "cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"product_id": "cluster-md-kmp-azure-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"product": {
"name": "dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"product_id": "dlm-kmp-azure-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"product": {
"name": "gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"product_id": "gfs2-kmp-azure-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-5.3.18-38.31.1.x86_64",
"product": {
"name": "kernel-azure-5.3.18-38.31.1.x86_64",
"product_id": "kernel-azure-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-5.3.18-38.31.1.x86_64",
"product": {
"name": "kernel-azure-devel-5.3.18-38.31.1.x86_64",
"product_id": "kernel-azure-devel-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-5.3.18-38.31.1.x86_64",
"product": {
"name": "kernel-azure-extra-5.3.18-38.31.1.x86_64",
"product_id": "kernel-azure-extra-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"product": {
"name": "kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"product_id": "kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-optional-5.3.18-38.31.1.x86_64",
"product": {
"name": "kernel-azure-optional-5.3.18-38.31.1.x86_64",
"product_id": "kernel-azure-optional-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-azure-5.3.18-38.31.1.x86_64",
"product": {
"name": "kernel-syms-azure-5.3.18-38.31.1.x86_64",
"product_id": "kernel-syms-azure-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"product": {
"name": "kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"product_id": "kselftests-kmp-azure-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"product": {
"name": "ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"product_id": "ocfs2-kmp-azure-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-azure-5.3.18-38.31.1.x86_64",
"product": {
"name": "reiserfs-kmp-azure-5.3.18-38.31.1.x86_64",
"product_id": "reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.3",
"product": {
"name": "openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-azure-5.3.18-38.31.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64"
},
"product_reference": "cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-azure-5.3.18-38.31.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64"
},
"product_reference": "dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-azure-5.3.18-38.31.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64"
},
"product_reference": "gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-5.3.18-38.31.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64"
},
"product_reference": "kernel-azure-5.3.18-38.31.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-5.3.18-38.31.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64"
},
"product_reference": "kernel-azure-devel-5.3.18-38.31.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-extra-5.3.18-38.31.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64"
},
"product_reference": "kernel-azure-extra-5.3.18-38.31.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64"
},
"product_reference": "kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-optional-5.3.18-38.31.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64"
},
"product_reference": "kernel-azure-optional-5.3.18-38.31.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-azure-5.3.18-38.31.1.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch"
},
"product_reference": "kernel-devel-azure-5.3.18-38.31.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-azure-5.3.18-38.31.1.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch"
},
"product_reference": "kernel-source-azure-5.3.18-38.31.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-5.3.18-38.31.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64"
},
"product_reference": "kernel-syms-azure-5.3.18-38.31.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-azure-5.3.18-38.31.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64"
},
"product_reference": "kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-azure-5.3.18-38.31.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64"
},
"product_reference": "ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-azure-5.3.18-38.31.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
},
"product_reference": "reiserfs-kmp-azure-5.3.18-38.31.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-0941",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-0941"
}
],
"notes": [
{
"category": "general",
"text": "In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-154177719References: Upstream kernel",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-0941",
"url": "https://www.suse.com/security/cve/CVE-2021-0941"
},
{
"category": "external",
"summary": "SUSE Bug 1192045 for CVE-2021-0941",
"url": "https://bugzilla.suse.com/1192045"
},
{
"category": "external",
"summary": "SUSE Bug 1192048 for CVE-2021-0941",
"url": "https://bugzilla.suse.com/1192048"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-25T13:19:51Z",
"details": "important"
}
],
"title": "CVE-2021-0941"
},
{
"cve": "CVE-2021-20322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20322"
}
],
"notes": [
{
"category": "general",
"text": "A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest threat from this vulnerability is to confidentiality and possibly integrity, because software that relies on UDP source port randomization are indirectly affected as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20322",
"url": "https://www.suse.com/security/cve/CVE-2021-20322"
},
{
"category": "external",
"summary": "SUSE Bug 1191790 for CVE-2021-20322",
"url": "https://bugzilla.suse.com/1191790"
},
{
"category": "external",
"summary": "SUSE Bug 1191813 for CVE-2021-20322",
"url": "https://bugzilla.suse.com/1191813"
},
{
"category": "external",
"summary": "SUSE Bug 1193290 for CVE-2021-20322",
"url": "https://bugzilla.suse.com/1193290"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-25T13:19:51Z",
"details": "important"
}
],
"title": "CVE-2021-20322"
},
{
"cve": "CVE-2021-31916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-31916"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel before 5.12. A bound check failure allows an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-31916",
"url": "https://www.suse.com/security/cve/CVE-2021-31916"
},
{
"category": "external",
"summary": "SUSE Bug 1192781 for CVE-2021-31916",
"url": "https://bugzilla.suse.com/1192781"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-25T13:19:51Z",
"details": "moderate"
}
],
"title": "CVE-2021-31916"
},
{
"cve": "CVE-2021-34981",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-34981"
}
],
"notes": [
{
"category": "general",
"text": "Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability.\n\nThe specific flaw exists within the CMTP module. The issue results from the lack of validating the existence of an object prior to performing further free operations on the object. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the kernel. Was ZDI-CAN-11977.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-34981",
"url": "https://www.suse.com/security/cve/CVE-2021-34981"
},
{
"category": "external",
"summary": "SUSE Bug 1191961 for CVE-2021-34981",
"url": "https://bugzilla.suse.com/1191961"
},
{
"category": "external",
"summary": "SUSE Bug 1192595 for CVE-2021-34981",
"url": "https://bugzilla.suse.com/1192595"
},
{
"category": "external",
"summary": "SUSE Bug 1196722 for CVE-2021-34981",
"url": "https://bugzilla.suse.com/1196722"
},
{
"category": "external",
"summary": "SUSE Bug 1212298 for CVE-2021-34981",
"url": "https://bugzilla.suse.com/1212298"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-25T13:19:51Z",
"details": "important"
}
],
"title": "CVE-2021-34981"
},
{
"cve": "CVE-2021-37159",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-37159"
}
],
"notes": [
{
"category": "general",
"text": "hso_free_net_device in drivers/net/usb/hso.c in the Linux kernel through 5.13.4 calls unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-37159",
"url": "https://www.suse.com/security/cve/CVE-2021-37159"
},
{
"category": "external",
"summary": "SUSE Bug 1188601 for CVE-2021-37159",
"url": "https://bugzilla.suse.com/1188601"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-25T13:19:51Z",
"details": "moderate"
}
],
"title": "CVE-2021-37159"
},
{
"cve": "CVE-2021-43389",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-43389"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in the Linux kernel before 5.14.15. There is an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-43389",
"url": "https://www.suse.com/security/cve/CVE-2021-43389"
},
{
"category": "external",
"summary": "SUSE Bug 1191958 for CVE-2021-43389",
"url": "https://bugzilla.suse.com/1191958"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-38.31.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-25T13:19:51Z",
"details": "moderate"
}
],
"title": "CVE-2021-43389"
}
]
}
OPENSUSE-SU-2021:3876-1
Vulnerability from csaf_opensuse - Published: 2021-12-02 07:19 - Updated: 2021-12-02 07:19Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise 15 SP1 LTSS kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
- Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past (jsc#SLE-22573)
You can reenable via systemctl setting /proc/sys/kernel/unprivileged_bpf_disabled to 0. (kernel.unprivileged_bpf_disabled = 0)
- CVE-2021-0941: In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192045).
- CVE-2021-31916: An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel A bound check failure allowed an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability (bnc#1192781).
- CVE-2021-20322: Make the ipv4 and ipv6 ICMP exception caches less predictive to avoid information leaks about UDP ports in use. (bsc#1191790)
- CVE-2021-34981: Fixed file refcounting in cmtp when cmtp_attach_device fails (bsc#1191961).
- CVE-2021-37159: hso_free_net_device in drivers/net/usb/hso.c in the Linux kernel calls unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free (bnc#1188601).
- CVE-2021-3772: Fixed sctp vtag check in sctp_sf_ootb (bsc#1190351).
- CVE-2021-3655: Missing size validations on inbound SCTP packets may have allowed the kernel to read uninitialized memory (bnc#1188563).
- CVE-2021-33033: The Linux kernel has a use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c because the CIPSO and CALIPSO refcounting for the DOI definitions is mishandled, aka CID-ad5d07f4a9cd. This leads to writing an arbitrary value (bnc#1186109 bnc#1186390 bnc#1188876).
- CVE-2021-3760: Fixed a use-after-free vulnerability with the ndev->rf_conn_info object (bsc#1190067).
- CVE-2021-42739: The firewire subsystem in the Linux kernel has a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandled bounds checking (bnc#1184673).
- CVE-2021-3542: Fixed heap buffer overflow in firedtv driver (bsc#1186063).
- CVE-2018-13405: The inode_init_owner function in fs/inode.c in the Linux kernel allowed local users to create files with an unintended group ownership, in a scenario where a directory is SGID to a certain group and is writable by a user who is not a member of that group. Here, the non-member can trigger creation of a plain file whose group ownership is that group. The intended behavior was that the non-member can trigger creation of a directory (but not a plain file) whose group ownership is that group. The non-member can escalate privileges by making the plain file executable and SGID (bnc#1100416 bnc#1129735).
- CVE-2021-3715: Fixed a use-after-free in route4_change() in net/sched/cls_route.c (bsc#1190349).
- CVE-2021-34556: An unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because the protection mechanism neglects the possibility of uninitialized memory locations on the BPF stack (bnc#1188983).
- CVE-2021-35477: An unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because a certain preempting store operation did not necessarily occur before a store operation that has an attacker-controlled value (bnc#1188985).
- CVE-2021-42252: An issue was discovered in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel Local attackers able to access the Aspeed LPC control interface could overwrite memory in the kernel and potentially execute privileges, aka CID-b49a0e69a7b1. This occurs because a certain comparison uses values that are not memory sizes (bnc#1190479).
- CVE-2021-41864: prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel allowed unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write (bnc#1191317).
- CVE-2021-42008: The decode_data function in drivers/net/hamradio/6pack.c in the Linux kernel has a slab out-of-bounds write. Input from a process that has the CAP_NET_ADMIN capability can lead to root access (bnc#1191315).
- CVE-2021-3759: Unaccounted ipc objects could have lead to breaking memcg limits and DoS attacks (bsc#1190115).
- CVE-2020-3702: Specifically timed and handcrafted traffic can cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a discrete set of traffic (bnc#1191193).
- CVE-2021-3752: Fixed a use after free vulnerability in the bluetooth module. (bsc#1190023)
- CVE-2021-40490: A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel (bnc#1190159 bnc#1192775)
- CVE-2021-3744: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1189884)
- CVE-2021-3764: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1190534)
- CVE-2020-12770: An issue was discovered in the Linux kernel sg_write lacks an sg_remove_request call in a certain failure case, aka CID-83c6f2390040 (bnc#1171420).
- CVE-2021-3640: Fixed a Use-After-Free vulnerability in function sco_sock_sendmsg() in the bluetooth stack (bsc#1188172).
- CVE-2019-3900: An infinite loop issue was found in the vhost_net kernel module, while handling incoming packets in handle_rx(). It could occur if one end sends packets faster than the other end can process them. A guest user, maybe remote one, could use this flaw to stall the vhost_net kernel thread, resulting in a DoS scenario (bnc#1133374).
- CVE-2019-3874: The SCTP socket buffer used by a userspace application is not accounted by the cgroups subsystem. An attacker can use this flaw to cause a denial of service attack. (bnc#1129898).
- CVE-2018-9517: In pppol2tp_connect, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. (bnc#1108488).
- CVE-2021-38160: Data corruption or loss could be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size in drivers/char/virtio_console.c (bsc#1190117)
- CVE-2021-3753: Fixed race out-of-bounds in virtual terminal handling (bsc#1190025).
- CVE-2021-3732: Mounting overlayfs inside an unprivileged user namespace can reveal files (bsc#1189706).
- CVE-2021-3653: A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the 'int_ctl' field, this issue could allow a malicious L1 to enable AVIC support (Advanced Virtual Interrupt Controller) for the L2 guest. As a result, the L2 guest would be allowed to read/write physical pages of the host, resulting in a crash of the entire system, leak of sensitive data or potential guest-to-host escape. This flaw affects Linux kernel versions prior to 5.14-rc7 (bnc#1189399).
- CVE-2021-3656: Missing validation of the the `virt_ext` VMCB field and allows a malicious L1 guest to disable both VMLOAD/VMSAVE intercepts and VLS for the L2 guest (bsc#1189400).
- CVE-2021-38204: drivers/usb/host/max3421-hcd.c allowed physically proximate attackers to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations (bnc#1189291).
- CVE-2021-3679: A lack of CPU resource in the tracing module functionality was found in the way user uses trace ring buffer in a specific way. Only privileged local users (with CAP_SYS_ADMIN capability) could use this flaw to starve the resources causing denial of service (bnc#1189057).
- CVE-2020-4788: IBM Power9 (AIX 7.1, 7.2, and VIOS 3.1) processors could allow a local user to obtain sensitive information from the data in the L1 cache under extenuating circumstances. IBM X-Force ID: 189296 (bnc#0 bnc#1177666 bnc#1181158).
- CVE-2021-3659: Fixed a NULL pointer dereference in llsec_key_alloc() in net/mac802154/llsec.c (bsc#1188876).
- CVE-2020-0429: In l2tp_session_delete and related functions of l2tp_core.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1176724).
- CVE-2021-37576: arch/powerpc/kvm/book3s_rtas.c on the powerpc platform allowed KVM guest OS users to cause host OS memory corruption via rtas_args.nargs, aka CID-f62f3c20647e (bnc#1188838 bnc#1190276).
- CVE-2021-22543: KVM through Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks and can lead to pages being freed while still accessible by the VMM and guest. This allowed users with the ability to start and control a VM to read/write random pages of memory and can result in local privilege escalation (bnc#1186482 bnc#1190276).
- CVE-2021-33909: fs/seq_file.c did not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05 (bnc#1188062 bnc#1188063).
The following non-security bugs were fixed:
- Add arch-dependent support markers in supported.conf (bsc#1186672)
- Add the support for kernel-FLAVOR-optional subpackage (jsc#SLE-11796)
- bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22913)
- bpf: Disallow unprivileged bpf by default (jsc#SLE-22913).
- ceph: take snap_empty_lock atomically with snaprealm refcount change (bsc#1191888).
- config: disable unprivileged BPF by default (jsc#SLE-22913)
- cpufreq: intel_pstate: Add Icelake servers support in no-HWP mode (bsc#1185758,bsc#1192400).
- drm: fix spectre issue in vmw_execbuf_ioctl (bsc#1192802).
- ftrace: Fix scripts/recordmcount.pl due to new binutils (bsc#1192267).
- gigaset: fix spectre issue in do_data_b3_req (bsc#1192802).
- hisax: fix spectre issues (bsc#1192802).
- hv: mana: adjust mana_select_queue to old API (jsc#SLE-18779, bsc#1185726).
- hv: mana: remove netdev_lockdep_set_classes usage (jsc#SLE-18779, bsc#1185726).
- hv_netvsc: Make netvsc/VF binding check both MAC and serial number (jsc#SLE-18779, bsc#1185726).
- hysdn: fix spectre issue in hycapi_send_message (bsc#1192802).
- infiniband: fix spectre issue in ib_uverbs_write (bsc#1192802).
- infiniband: fix spectre issue in ib_uverbs_write (bsc#1192802).
- ipc: remove memcg accounting for sops objects in do_semtimedop() (bsc#1190115).
- iwlwifi: fix spectre issue in iwl_dbgfs_update_pm (bsc#1192802).
- kernel-binary.spec: Exctract s390 decompression code (jsc#SLE-17042).
- kernel-binary.spec: Fix up usrmerge for non-modular kernels.
- kernel-binary.spec.in: build-id check requires elfutils.
- kernel-binary.spec.in: Regenerate makefile when not using mkmakefile.
- kernel-binary.spec: Only use mkmakefile when it exists Linux 5.13 no longer had a mkmakefile script
- kernel-binary.spec: Remove obsolete and wrong comment mkmakefile is repleced by echo on newer kernel
- kernel-docs.spec.in: Build using an utf-8 locale. Sphinx cannot handle UTF-8 input in non-UTF-8 locale.
- media: dvb_ca_en50221: prevent using slot_info for Spectre attacs (bsc#1192802).
- media: dvb_ca_en50221: sanity check slot number from userspace (bsc#1192802).
- media: wl128x: get rid of a potential spectre issue (bsc#1192802).
- memcg: enable accounting for file lock caches (bsc#1190115).
- mm/memory.c: do_fault: avoid usage of stale vm_area_struct (bsc#1136513).
- mpt3sas: fix spectre issues (bsc#1192802).
- net: mana: Add a driver for Microsoft Azure Network Adapter (MANA) (jsc#SLE-18779, bsc#1185726).
- net: mana: Add support for EQ sharing (jsc#SLE-18779, bsc#1185726).
- net: mana: Add WARN_ON_ONCE in case of CQE read overflow (jsc#SLE-18779, bsc#1185726).
- net: mana: Fix a memory leak in an error handling path in (jsc#SLE-18779, bsc#1185726).
- net: mana: Fix error handling in mana_create_rxq() (git-fixes, bsc#1191800).
- net: mana: fix PCI_HYPERV dependency (jsc#SLE-18779, bsc#1185726).
- net: mana: Move NAPI from EQ to CQ (jsc#SLE-18779, bsc#1185726).
- net: mana: Prefer struct_size over open coded arithmetic (jsc#SLE-18779, bsc#1185726).
- net: mana: remove redundant initialization of variable err (jsc#SLE-18779, bsc#1185726).
- net: mana: Use int to check the return value of mana_gd_poll_cq() (jsc#SLE-18779, bsc#1185726).
- net: mana: Use struct_size() in kzalloc() (jsc#SLE-18779, bsc#1185726).
- net_sched: cls_route: remove the right filter from hashtable (networking-stable-20_03_28).
- net: sched: sch_teql: fix null-pointer dereference (bsc#1190717).
- net: sock_diag: Fix spectre v1 gadget in __sock_diag_cmd() (bsc#1192802).
- NFS: Do uncached readdir when we're seeking a cookie in an empty page cache (bsc#1191628).
- objtool: Do not fail on missing symbol table (bsc#1192379).
- osst: fix spectre issue in osst_verify_frame (bsc#1192802).
- ovl: check whiteout in ovl_create_over_whiteout() (bsc#1189846).
- ovl: filter of trusted xattr results in audit (bsc#1189846).
- ovl: fix dentry leak in ovl_get_redirect (bsc#1189846).
- ovl: initialize error in ovl_copy_xattr (bsc#1189846).
- ovl: relax WARN_ON() on rename to self (bsc#1189846).
- PCI: hv: Use expected affinity when unmasking IRQ (bsc#1185973).
- Revert 'memcg: enable accounting for file lock caches (bsc#1190115).' This reverts commit 912b4421a3e9bb9f0ef1aadc64a436666259bd4d. It's effectively upstream commit 3754707bcc3e190e5dadc978d172b61e809cb3bd applied to kernel-source (to avoid proliferation of patches). Make a note in blacklist.conf too.
- s390/bpf: Fix 64-bit subtraction of the -0x80000000 constant (bsc#1190601).
- s390/bpf: Fix branch shortening during codegen pass (bsc#1190601).
- s390/bpf: Fix optimizing out zero-extensions (bsc#1190601).
- s390: bpf: implement jitting of BPF_ALU | BPF_ARSH | BPF_* (bsc#1190601).
- s390/bpf: Wrap JIT macro parameter usages in parentheses (bsc#1190601).
- scripts/git_sort/git_sort.py: add bpf git repo
- scripts/git_sort/git_sort.py: Update nvme repositories
- scsi: libfc: Fix array index out of bound exception (bsc#1188616).
- scsi: lpfc: Fix FLOGI failure due to accessing a freed node (bsc#1191349).
- scsi: lpfc: Fix memory overwrite during FC-GS I/O abort handling (bsc#1191349 bsc#1191457).
- scsi: lpfc: Keep NDLP reference until after freeing the IOCB after ELS handling (bsc#1191349 bsc#1191457).
- scsi: target: avoid using lun_tg_pt_gp after unlock (bsc#1186078).
- sctp: check asoc peer.asconf_capable before processing asconf (bsc#1190351).
- sctp: fully initialize v4 addr in some functions (bsc#1188563).
- sysvipc/sem: mitigate semnum index against spectre v1 (bsc#1192802).
- target: core: Fix sense key for invalid XCOPY request (bsc#1186078).
- Update config files: Add CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set
- Use /usr/lib/modules as module dir when usermerge is active in the target distro.
- UsrMerge the kernel (boo#1184804)
- x86/CPU: Add more Icelake model numbers (bsc#1185758,bsc#1192400).
- xfrm: xfrm_state_mtu should return at least 1280 for ipv6 (bsc#1185377).
Patchnames: openSUSE-SLE-15.3-2021-3876
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.4 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
low
5.1 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
5.5 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
6.1 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
important
5.1 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
important
8.4 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
important
6.8 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
6.7 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
7.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
important
5.5 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
important
6.4 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
7.4 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
important
4 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
low
7.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
important
5.5 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
5.5 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
7.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
important
5.5 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
low
5.5 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
7.4 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
low
8.4 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
important
6.2 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
6.4 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
5.5 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
5.9 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
7.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
important
4.2 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
6.1 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
7.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
important
8.4 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x | — |
Vendor Fix
|
Threats
Impact
important
References
254 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://bugzilla.suse.com/1100416 | self |
| https://bugzilla.suse.com/1108488 | self |
| https://bugzilla.suse.com/1129735 | self |
| https://bugzilla.suse.com/1129898 | self |
| https://bugzilla.suse.com/1133374 | self |
| https://bugzilla.suse.com/1136513 | self |
| https://bugzilla.suse.com/1171420 | self |
| https://bugzilla.suse.com/1176724 | self |
| https://bugzilla.suse.com/1177666 | self |
| https://bugzilla.suse.com/1181158 | self |
| https://bugzilla.suse.com/1184673 | self |
| https://bugzilla.suse.com/1184804 | self |
| https://bugzilla.suse.com/1185377 | self |
| https://bugzilla.suse.com/1185726 | self |
| https://bugzilla.suse.com/1185758 | self |
| https://bugzilla.suse.com/1185973 | self |
| https://bugzilla.suse.com/1186078 | self |
| https://bugzilla.suse.com/1186109 | self |
| https://bugzilla.suse.com/1186390 | self |
| https://bugzilla.suse.com/1186482 | self |
| https://bugzilla.suse.com/1186672 | self |
| https://bugzilla.suse.com/1188062 | self |
| https://bugzilla.suse.com/1188063 | self |
| https://bugzilla.suse.com/1188172 | self |
| https://bugzilla.suse.com/1188563 | self |
| https://bugzilla.suse.com/1188601 | self |
| https://bugzilla.suse.com/1188616 | self |
| https://bugzilla.suse.com/1188838 | self |
| https://bugzilla.suse.com/1188876 | self |
| https://bugzilla.suse.com/1188983 | self |
| https://bugzilla.suse.com/1188985 | self |
| https://bugzilla.suse.com/1189057 | self |
| https://bugzilla.suse.com/1189262 | self |
| https://bugzilla.suse.com/1189291 | self |
| https://bugzilla.suse.com/1189399 | self |
| https://bugzilla.suse.com/1189400 | self |
| https://bugzilla.suse.com/1189706 | self |
| https://bugzilla.suse.com/1189846 | self |
| https://bugzilla.suse.com/1189884 | self |
| https://bugzilla.suse.com/1190023 | self |
| https://bugzilla.suse.com/1190025 | self |
| https://bugzilla.suse.com/1190067 | self |
| https://bugzilla.suse.com/1190115 | self |
| https://bugzilla.suse.com/1190117 | self |
| https://bugzilla.suse.com/1190159 | self |
| https://bugzilla.suse.com/1190276 | self |
| https://bugzilla.suse.com/1190349 | self |
| https://bugzilla.suse.com/1190351 | self |
| https://bugzilla.suse.com/1190479 | self |
| https://bugzilla.suse.com/1190534 | self |
| https://bugzilla.suse.com/1190601 | self |
| https://bugzilla.suse.com/1190717 | self |
| https://bugzilla.suse.com/1191193 | self |
| https://bugzilla.suse.com/1191315 | self |
| https://bugzilla.suse.com/1191317 | self |
| https://bugzilla.suse.com/1191349 | self |
| https://bugzilla.suse.com/1191457 | self |
| https://bugzilla.suse.com/1191628 | self |
| https://bugzilla.suse.com/1191790 | self |
| https://bugzilla.suse.com/1191800 | self |
| https://bugzilla.suse.com/1191888 | self |
| https://bugzilla.suse.com/1191961 | self |
| https://bugzilla.suse.com/1192045 | self |
| https://bugzilla.suse.com/1192267 | self |
| https://bugzilla.suse.com/1192379 | self |
| https://bugzilla.suse.com/1192400 | self |
| https://bugzilla.suse.com/1192775 | self |
| https://bugzilla.suse.com/1192781 | self |
| https://bugzilla.suse.com/1192802 | self |
| https://www.suse.com/security/cve/CVE-2018-13405/ | self |
| https://www.suse.com/security/cve/CVE-2018-9517/ | self |
| https://www.suse.com/security/cve/CVE-2019-3874/ | self |
| https://www.suse.com/security/cve/CVE-2019-3900/ | self |
| https://www.suse.com/security/cve/CVE-2020-0429/ | self |
| https://www.suse.com/security/cve/CVE-2020-12770/ | self |
| https://www.suse.com/security/cve/CVE-2020-3702/ | self |
| https://www.suse.com/security/cve/CVE-2020-4788/ | self |
| https://www.suse.com/security/cve/CVE-2021-0941/ | self |
| https://www.suse.com/security/cve/CVE-2021-20322/ | self |
| https://www.suse.com/security/cve/CVE-2021-22543/ | self |
| https://www.suse.com/security/cve/CVE-2021-31916/ | self |
| https://www.suse.com/security/cve/CVE-2021-33033/ | self |
| https://www.suse.com/security/cve/CVE-2021-33909/ | self |
| https://www.suse.com/security/cve/CVE-2021-34556/ | self |
| https://www.suse.com/security/cve/CVE-2021-34981/ | self |
| https://www.suse.com/security/cve/CVE-2021-3542/ | self |
| https://www.suse.com/security/cve/CVE-2021-35477/ | self |
| https://www.suse.com/security/cve/CVE-2021-3640/ | self |
| https://www.suse.com/security/cve/CVE-2021-3653/ | self |
| https://www.suse.com/security/cve/CVE-2021-3655/ | self |
| https://www.suse.com/security/cve/CVE-2021-3656/ | self |
| https://www.suse.com/security/cve/CVE-2021-3659/ | self |
| https://www.suse.com/security/cve/CVE-2021-3679/ | self |
| https://www.suse.com/security/cve/CVE-2021-3715/ | self |
| https://www.suse.com/security/cve/CVE-2021-37159/ | self |
| https://www.suse.com/security/cve/CVE-2021-3732/ | self |
| https://www.suse.com/security/cve/CVE-2021-3744/ | self |
| https://www.suse.com/security/cve/CVE-2021-3752/ | self |
| https://www.suse.com/security/cve/CVE-2021-3753/ | self |
| https://www.suse.com/security/cve/CVE-2021-37576/ | self |
| https://www.suse.com/security/cve/CVE-2021-3759/ | self |
| https://www.suse.com/security/cve/CVE-2021-3760/ | self |
| https://www.suse.com/security/cve/CVE-2021-3764/ | self |
| https://www.suse.com/security/cve/CVE-2021-3772/ | self |
| https://www.suse.com/security/cve/CVE-2021-38160/ | self |
| https://www.suse.com/security/cve/CVE-2021-38198/ | self |
| https://www.suse.com/security/cve/CVE-2021-38204/ | self |
| https://www.suse.com/security/cve/CVE-2021-40490/ | self |
| https://www.suse.com/security/cve/CVE-2021-41864/ | self |
| https://www.suse.com/security/cve/CVE-2021-42008/ | self |
| https://www.suse.com/security/cve/CVE-2021-42252/ | self |
| https://www.suse.com/security/cve/CVE-2021-42739/ | self |
| https://www.suse.com/security/cve/CVE-2018-13405 | external |
| https://bugzilla.suse.com/1087082 | external |
| https://bugzilla.suse.com/1100416 | external |
| https://bugzilla.suse.com/1129735 | external |
| https://bugzilla.suse.com/1195161 | external |
| https://bugzilla.suse.com/1198702 | external |
| https://www.suse.com/security/cve/CVE-2018-9517 | external |
| https://bugzilla.suse.com/1108488 | external |
| https://www.suse.com/security/cve/CVE-2019-3874 | external |
| https://bugzilla.suse.com/1129898 | external |
| https://www.suse.com/security/cve/CVE-2019-3900 | external |
| https://bugzilla.suse.com/1133374 | external |
| https://www.suse.com/security/cve/CVE-2020-0429 | external |
| https://bugzilla.suse.com/1176724 | external |
| https://bugzilla.suse.com/1176931 | external |
| https://bugzilla.suse.com/1188026 | external |
| https://www.suse.com/security/cve/CVE-2020-12770 | external |
| https://bugzilla.suse.com/1171420 | external |
| https://www.suse.com/security/cve/CVE-2020-3702 | external |
| https://bugzilla.suse.com/1191193 | external |
| https://bugzilla.suse.com/1191529 | external |
| https://www.suse.com/security/cve/CVE-2020-4788 | external |
| https://bugzilla.suse.com/1177666 | external |
| https://bugzilla.suse.com/1181158 | external |
| https://www.suse.com/security/cve/CVE-2021-0941 | external |
| https://bugzilla.suse.com/1192045 | external |
| https://bugzilla.suse.com/1192048 | external |
| https://www.suse.com/security/cve/CVE-2021-20322 | external |
| https://bugzilla.suse.com/1191790 | external |
| https://bugzilla.suse.com/1191813 | external |
| https://bugzilla.suse.com/1193290 | external |
| https://www.suse.com/security/cve/CVE-2021-22543 | external |
| https://bugzilla.suse.com/1186482 | external |
| https://bugzilla.suse.com/1186483 | external |
| https://bugzilla.suse.com/1190276 | external |
| https://bugzilla.suse.com/1197660 | external |
| https://www.suse.com/security/cve/CVE-2021-31916 | external |
| https://bugzilla.suse.com/1192781 | external |
| https://www.suse.com/security/cve/CVE-2021-33033 | external |
| https://bugzilla.suse.com/1186109 | external |
| https://bugzilla.suse.com/1186283 | external |
| https://bugzilla.suse.com/1188876 | external |
| https://www.suse.com/security/cve/CVE-2021-33909 | external |
| https://bugzilla.suse.com/1188062 | external |
| https://bugzilla.suse.com/1188063 | external |
| https://bugzilla.suse.com/1188257 | external |
| https://bugzilla.suse.com/1189302 | external |
| https://bugzilla.suse.com/1190859 | external |
| https://www.suse.com/security/cve/CVE-2021-34556 | external |
| https://bugzilla.suse.com/1188983 | external |
| https://www.suse.com/security/cve/CVE-2021-34981 | external |
| https://bugzilla.suse.com/1191961 | external |
| https://bugzilla.suse.com/1192595 | external |
| https://bugzilla.suse.com/1196722 | external |
| https://bugzilla.suse.com/1212298 | external |
| https://www.suse.com/security/cve/CVE-2021-3542 | external |
| https://bugzilla.suse.com/1184673 | external |
| https://bugzilla.suse.com/1186063 | external |
| https://www.suse.com/security/cve/CVE-2021-35477 | external |
| https://bugzilla.suse.com/1188985 | external |
| https://www.suse.com/security/cve/CVE-2021-3640 | external |
| https://bugzilla.suse.com/1188172 | external |
| https://bugzilla.suse.com/1188613 | external |
| https://bugzilla.suse.com/1191530 | external |
| https://bugzilla.suse.com/1196810 | external |
| https://bugzilla.suse.com/1196914 | external |
| https://www.suse.com/security/cve/CVE-2021-3653 | external |
| https://bugzilla.suse.com/1189399 | external |
| https://bugzilla.suse.com/1189420 | external |
| https://bugzilla.suse.com/1196914 | external |
| https://www.suse.com/security/cve/CVE-2021-3655 | external |
| https://bugzilla.suse.com/1188563 | external |
| https://www.suse.com/security/cve/CVE-2021-3656 | external |
| https://bugzilla.suse.com/1189400 | external |
| https://bugzilla.suse.com/1189418 | external |
| https://www.suse.com/security/cve/CVE-2021-3659 | external |
| https://bugzilla.suse.com/1188876 | external |
| https://www.suse.com/security/cve/CVE-2021-3679 | external |
| https://bugzilla.suse.com/1189057 | external |
| https://www.suse.com/security/cve/CVE-2021-3715 | external |
| https://bugzilla.suse.com/1190349 | external |
| https://bugzilla.suse.com/1190350 | external |
| https://bugzilla.suse.com/1196722 | external |
| https://www.suse.com/security/cve/CVE-2021-37159 | external |
| https://bugzilla.suse.com/1188601 | external |
| https://www.suse.com/security/cve/CVE-2021-3732 | external |
| https://bugzilla.suse.com/1189706 | external |
| https://www.suse.com/security/cve/CVE-2021-3744 | external |
| https://bugzilla.suse.com/1189884 | external |
| https://bugzilla.suse.com/1190534 | external |
| https://www.suse.com/security/cve/CVE-2021-3752 | external |
| https://bugzilla.suse.com/1190023 | external |
| https://bugzilla.suse.com/1190432 | external |
| https://www.suse.com/security/cve/CVE-2021-3753 | external |
| https://bugzilla.suse.com/1190025 | external |
| https://www.suse.com/security/cve/CVE-2021-37576 | external |
| https://bugzilla.suse.com/1188838 | external |
| https://bugzilla.suse.com/1188842 | external |
| https://bugzilla.suse.com/1190276 | external |
| https://www.suse.com/security/cve/CVE-2021-3759 | external |
| https://bugzilla.suse.com/1190115 | external |
| https://www.suse.com/security/cve/CVE-2021-3760 | external |
| https://bugzilla.suse.com/1190067 | external |
| https://www.suse.com/security/cve/CVE-2021-3764 | external |
| https://bugzilla.suse.com/1190534 | external |
| https://bugzilla.suse.com/1194518 | external |
| https://www.suse.com/security/cve/CVE-2021-3772 | external |
| https://bugzilla.suse.com/1190351 | external |
| https://www.suse.com/security/cve/CVE-2021-38160 | external |
| https://bugzilla.suse.com/1190117 | external |
| https://bugzilla.suse.com/1190118 | external |
| https://bugzilla.suse.com/1196914 | external |
| https://www.suse.com/security/cve/CVE-2021-38198 | external |
| https://bugzilla.suse.com/1189262 | external |
| https://bugzilla.suse.com/1189278 | external |
| https://bugzilla.suse.com/1196914 | external |
| https://www.suse.com/security/cve/CVE-2021-38204 | external |
| https://bugzilla.suse.com/1189291 | external |
| https://www.suse.com/security/cve/CVE-2021-40490 | external |
| https://bugzilla.suse.com/1190159 | external |
| https://bugzilla.suse.com/1192775 | external |
| https://www.suse.com/security/cve/CVE-2021-41864 | external |
| https://bugzilla.suse.com/1191317 | external |
| https://bugzilla.suse.com/1191318 | external |
| https://www.suse.com/security/cve/CVE-2021-42008 | external |
| https://bugzilla.suse.com/1191315 | external |
| https://bugzilla.suse.com/1191660 | external |
| https://bugzilla.suse.com/1196722 | external |
| https://bugzilla.suse.com/1196810 | external |
| https://bugzilla.suse.com/1196914 | external |
| https://www.suse.com/security/cve/CVE-2021-42252 | external |
| https://bugzilla.suse.com/1190479 | external |
| https://bugzilla.suse.com/1192444 | external |
| https://www.suse.com/security/cve/CVE-2021-42739 | external |
| https://bugzilla.suse.com/1184673 | external |
| https://bugzilla.suse.com/1192036 | external |
| https://bugzilla.suse.com/1196722 | external |
| https://bugzilla.suse.com/1196914 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\n\nThe SUSE Linux Enterprise 15 SP1 LTSS kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past (jsc#SLE-22573)\n\n You can reenable via systemctl setting /proc/sys/kernel/unprivileged_bpf_disabled to 0. (kernel.unprivileged_bpf_disabled = 0)\n\n- CVE-2021-0941: In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192045).\n- CVE-2021-31916: An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel A bound check failure allowed an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability (bnc#1192781).\n- CVE-2021-20322: Make the ipv4 and ipv6 ICMP exception caches less predictive to avoid information leaks about UDP ports in use. (bsc#1191790)\n- CVE-2021-34981: Fixed file refcounting in cmtp when cmtp_attach_device fails (bsc#1191961).\n- CVE-2021-37159: hso_free_net_device in drivers/net/usb/hso.c in the Linux kernel calls unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free (bnc#1188601).\n- CVE-2021-3772: Fixed sctp vtag check in sctp_sf_ootb (bsc#1190351).\n- CVE-2021-3655: Missing size validations on inbound SCTP packets may have allowed the kernel to read uninitialized memory (bnc#1188563).\n- CVE-2021-33033: The Linux kernel has a use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c because the CIPSO and CALIPSO refcounting for the DOI definitions is mishandled, aka CID-ad5d07f4a9cd. This leads to writing an arbitrary value (bnc#1186109 bnc#1186390 bnc#1188876).\n- CVE-2021-3760: Fixed a use-after-free vulnerability with the ndev-\u003erf_conn_info object (bsc#1190067).\n- CVE-2021-42739: The firewire subsystem in the Linux kernel has a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandled bounds checking (bnc#1184673).\n- CVE-2021-3542: Fixed heap buffer overflow in firedtv driver (bsc#1186063).\n- CVE-2018-13405: The inode_init_owner function in fs/inode.c in the Linux kernel allowed local users to create files with an unintended group ownership, in a scenario where a directory is SGID to a certain group and is writable by a user who is not a member of that group. Here, the non-member can trigger creation of a plain file whose group ownership is that group. The intended behavior was that the non-member can trigger creation of a directory (but not a plain file) whose group ownership is that group. The non-member can escalate privileges by making the plain file executable and SGID (bnc#1100416 bnc#1129735).\n- CVE-2021-3715: Fixed a use-after-free in route4_change() in net/sched/cls_route.c (bsc#1190349).\n- CVE-2021-34556: An unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because the protection mechanism neglects the possibility of uninitialized memory locations on the BPF stack (bnc#1188983).\n- CVE-2021-35477: An unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because a certain preempting store operation did not necessarily occur before a store operation that has an attacker-controlled value (bnc#1188985).\n- CVE-2021-42252: An issue was discovered in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel Local attackers able to access the Aspeed LPC control interface could overwrite memory in the kernel and potentially execute privileges, aka CID-b49a0e69a7b1. This occurs because a certain comparison uses values that are not memory sizes (bnc#1190479).\n- CVE-2021-41864: prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel allowed unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write (bnc#1191317).\n- CVE-2021-42008: The decode_data function in drivers/net/hamradio/6pack.c in the Linux kernel has a slab out-of-bounds write. Input from a process that has the CAP_NET_ADMIN capability can lead to root access (bnc#1191315).\n- CVE-2021-3759: Unaccounted ipc objects could have lead to breaking memcg limits and DoS attacks (bsc#1190115).\n- CVE-2020-3702: Specifically timed and handcrafted traffic can cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a discrete set of traffic (bnc#1191193).\n- CVE-2021-3752: Fixed a use after free vulnerability in the bluetooth module. (bsc#1190023)\n- CVE-2021-40490: A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel (bnc#1190159 bnc#1192775)\n- CVE-2021-3744: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1189884)\n- CVE-2021-3764: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1190534)\n- CVE-2020-12770: An issue was discovered in the Linux kernel sg_write lacks an sg_remove_request call in a certain failure case, aka CID-83c6f2390040 (bnc#1171420).\n- CVE-2021-3640: Fixed a Use-After-Free vulnerability in function sco_sock_sendmsg() in the bluetooth stack (bsc#1188172).\n- CVE-2019-3900: An infinite loop issue was found in the vhost_net kernel module, while handling incoming packets in handle_rx(). It could occur if one end sends packets faster than the other end can process them. A guest user, maybe remote one, could use this flaw to stall the vhost_net kernel thread, resulting in a DoS scenario (bnc#1133374).\n- CVE-2019-3874: The SCTP socket buffer used by a userspace application is not accounted by the cgroups subsystem. An attacker can use this flaw to cause a denial of service attack. (bnc#1129898).\n- CVE-2018-9517: In pppol2tp_connect, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. (bnc#1108488).\n- CVE-2021-38160: Data corruption or loss could be triggered by an untrusted device that supplies a buf-\u003elen value exceeding the buffer size in drivers/char/virtio_console.c (bsc#1190117)\n- CVE-2021-3753: Fixed race out-of-bounds in virtual terminal handling (bsc#1190025).\n- CVE-2021-3732: Mounting overlayfs inside an unprivileged user namespace can reveal files (bsc#1189706).\n- CVE-2021-3653: A flaw was found in the KVM\u0027s AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the \u0027int_ctl\u0027 field, this issue could allow a malicious L1 to enable AVIC support (Advanced Virtual Interrupt Controller) for the L2 guest. As a result, the L2 guest would be allowed to read/write physical pages of the host, resulting in a crash of the entire system, leak of sensitive data or potential guest-to-host escape. This flaw affects Linux kernel versions prior to 5.14-rc7 (bnc#1189399).\n- CVE-2021-3656: Missing validation of the the `virt_ext` VMCB field and allows a malicious L1 guest to disable both VMLOAD/VMSAVE intercepts and VLS for the L2 guest (bsc#1189400).\n- CVE-2021-38204: drivers/usb/host/max3421-hcd.c allowed physically proximate attackers to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations (bnc#1189291).\n- CVE-2021-3679: A lack of CPU resource in the tracing module functionality was found in the way user uses trace ring buffer in a specific way. Only privileged local users (with CAP_SYS_ADMIN capability) could use this flaw to starve the resources causing denial of service (bnc#1189057).\n- CVE-2020-4788: IBM Power9 (AIX 7.1, 7.2, and VIOS 3.1) processors could allow a local user to obtain sensitive information from the data in the L1 cache under extenuating circumstances. IBM X-Force ID: 189296 (bnc#0 bnc#1177666 bnc#1181158).\n- CVE-2021-3659: Fixed a NULL pointer dereference in llsec_key_alloc() in net/mac802154/llsec.c (bsc#1188876).\n- CVE-2020-0429: In l2tp_session_delete and related functions of l2tp_core.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1176724).\n- CVE-2021-37576: arch/powerpc/kvm/book3s_rtas.c on the powerpc platform allowed KVM guest OS users to cause host OS memory corruption via rtas_args.nargs, aka CID-f62f3c20647e (bnc#1188838 bnc#1190276).\n- CVE-2021-22543: KVM through Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks and can lead to pages being freed while still accessible by the VMM and guest. This allowed users with the ability to start and control a VM to read/write random pages of memory and can result in local privilege escalation (bnc#1186482 bnc#1190276).\n- CVE-2021-33909: fs/seq_file.c did not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05 (bnc#1188062 bnc#1188063).\n\nThe following non-security bugs were fixed:\n\n- Add arch-dependent support markers in supported.conf (bsc#1186672) \n- Add the support for kernel-FLAVOR-optional subpackage (jsc#SLE-11796)\n- bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22913)\n- bpf: Disallow unprivileged bpf by default (jsc#SLE-22913).\n- ceph: take snap_empty_lock atomically with snaprealm refcount change (bsc#1191888).\n- config: disable unprivileged BPF by default (jsc#SLE-22913)\n- cpufreq: intel_pstate: Add Icelake servers support in no-HWP mode (bsc#1185758,bsc#1192400).\n- drm: fix spectre issue in vmw_execbuf_ioctl (bsc#1192802).\n- ftrace: Fix scripts/recordmcount.pl due to new binutils (bsc#1192267).\n- gigaset: fix spectre issue in do_data_b3_req (bsc#1192802).\n- hisax: fix spectre issues (bsc#1192802).\n- hv: mana: adjust mana_select_queue to old API (jsc#SLE-18779, bsc#1185726).\n- hv: mana: remove netdev_lockdep_set_classes usage (jsc#SLE-18779, bsc#1185726).\n- hv_netvsc: Make netvsc/VF binding check both MAC and serial number (jsc#SLE-18779, bsc#1185726).\n- hysdn: fix spectre issue in hycapi_send_message (bsc#1192802).\n- infiniband: fix spectre issue in ib_uverbs_write (bsc#1192802).\n- infiniband: fix spectre issue in ib_uverbs_write (bsc#1192802).\n- ipc: remove memcg accounting for sops objects in do_semtimedop() (bsc#1190115).\n- iwlwifi: fix spectre issue in iwl_dbgfs_update_pm (bsc#1192802).\n- kernel-binary.spec: Exctract s390 decompression code (jsc#SLE-17042).\n- kernel-binary.spec: Fix up usrmerge for non-modular kernels.\n- kernel-binary.spec.in: build-id check requires elfutils.\n- kernel-binary.spec.in: Regenerate makefile when not using mkmakefile.\n- kernel-binary.spec: Only use mkmakefile when it exists Linux 5.13 no longer had a mkmakefile script\n- kernel-binary.spec: Remove obsolete and wrong comment mkmakefile is repleced by echo on newer kernel\n- kernel-docs.spec.in: Build using an utf-8 locale. Sphinx cannot handle UTF-8 input in non-UTF-8 locale.\n- media: dvb_ca_en50221: prevent using slot_info for Spectre attacs (bsc#1192802).\n- media: dvb_ca_en50221: sanity check slot number from userspace (bsc#1192802).\n- media: wl128x: get rid of a potential spectre issue (bsc#1192802).\n- memcg: enable accounting for file lock caches (bsc#1190115).\n- mm/memory.c: do_fault: avoid usage of stale vm_area_struct (bsc#1136513).\n- mpt3sas: fix spectre issues (bsc#1192802).\n- net: mana: Add a driver for Microsoft Azure Network Adapter (MANA) (jsc#SLE-18779, bsc#1185726).\n- net: mana: Add support for EQ sharing (jsc#SLE-18779, bsc#1185726).\n- net: mana: Add WARN_ON_ONCE in case of CQE read overflow (jsc#SLE-18779, bsc#1185726).\n- net: mana: Fix a memory leak in an error handling path in (jsc#SLE-18779, bsc#1185726).\n- net: mana: Fix error handling in mana_create_rxq() (git-fixes, bsc#1191800).\n- net: mana: fix PCI_HYPERV dependency (jsc#SLE-18779, bsc#1185726).\n- net: mana: Move NAPI from EQ to CQ (jsc#SLE-18779, bsc#1185726).\n- net: mana: Prefer struct_size over open coded arithmetic (jsc#SLE-18779, bsc#1185726).\n- net: mana: remove redundant initialization of variable err (jsc#SLE-18779, bsc#1185726).\n- net: mana: Use int to check the return value of mana_gd_poll_cq() (jsc#SLE-18779, bsc#1185726).\n- net: mana: Use struct_size() in kzalloc() (jsc#SLE-18779, bsc#1185726).\n- net_sched: cls_route: remove the right filter from hashtable (networking-stable-20_03_28).\n- net: sched: sch_teql: fix null-pointer dereference (bsc#1190717).\n- net: sock_diag: Fix spectre v1 gadget in __sock_diag_cmd() (bsc#1192802).\n- NFS: Do uncached readdir when we\u0027re seeking a cookie in an empty page cache (bsc#1191628).\n- objtool: Do not fail on missing symbol table (bsc#1192379).\n- osst: fix spectre issue in osst_verify_frame (bsc#1192802).\n- ovl: check whiteout in ovl_create_over_whiteout() (bsc#1189846).\n- ovl: filter of trusted xattr results in audit (bsc#1189846).\n- ovl: fix dentry leak in ovl_get_redirect (bsc#1189846).\n- ovl: initialize error in ovl_copy_xattr (bsc#1189846).\n- ovl: relax WARN_ON() on rename to self (bsc#1189846).\n- PCI: hv: Use expected affinity when unmasking IRQ (bsc#1185973).\n- Revert \u0027memcg: enable accounting for file lock caches (bsc#1190115).\u0027 This reverts commit 912b4421a3e9bb9f0ef1aadc64a436666259bd4d. It\u0027s effectively upstream commit 3754707bcc3e190e5dadc978d172b61e809cb3bd applied to kernel-source (to avoid proliferation of patches). Make a note in blacklist.conf too.\n- s390/bpf: Fix 64-bit subtraction of the -0x80000000 constant (bsc#1190601).\n- s390/bpf: Fix branch shortening during codegen pass (bsc#1190601).\n- s390/bpf: Fix optimizing out zero-extensions (bsc#1190601).\n- s390: bpf: implement jitting of BPF_ALU | BPF_ARSH | BPF_* (bsc#1190601).\n- s390/bpf: Wrap JIT macro parameter usages in parentheses (bsc#1190601).\n- scripts/git_sort/git_sort.py: add bpf git repo\n- scripts/git_sort/git_sort.py: Update nvme repositories\n- scsi: libfc: Fix array index out of bound exception (bsc#1188616).\n- scsi: lpfc: Fix FLOGI failure due to accessing a freed node (bsc#1191349).\n- scsi: lpfc: Fix memory overwrite during FC-GS I/O abort handling (bsc#1191349 bsc#1191457).\n- scsi: lpfc: Keep NDLP reference until after freeing the IOCB after ELS handling (bsc#1191349 bsc#1191457).\n- scsi: target: avoid using lun_tg_pt_gp after unlock (bsc#1186078).\n- sctp: check asoc peer.asconf_capable before processing asconf (bsc#1190351).\n- sctp: fully initialize v4 addr in some functions (bsc#1188563).\n- sysvipc/sem: mitigate semnum index against spectre v1 (bsc#1192802).\n- target: core: Fix sense key for invalid XCOPY request (bsc#1186078).\n- Update config files: Add CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set\n- Use /usr/lib/modules as module dir when usermerge is active in the target distro.\n- UsrMerge the kernel (boo#1184804)\n- x86/CPU: Add more Icelake model numbers (bsc#1185758,bsc#1192400).\n- xfrm: xfrm_state_mtu should return at least 1280 for ipv6 (bsc#1185377).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-SLE-15.3-2021-3876",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2021_3876-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2021:3876-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/JOIHHN3KQX7O34NG25NJOF7PFEZF2TVP/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2021:3876-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/JOIHHN3KQX7O34NG25NJOF7PFEZF2TVP/"
},
{
"category": "self",
"summary": "SUSE Bug 1100416",
"url": "https://bugzilla.suse.com/1100416"
},
{
"category": "self",
"summary": "SUSE Bug 1108488",
"url": "https://bugzilla.suse.com/1108488"
},
{
"category": "self",
"summary": "SUSE Bug 1129735",
"url": "https://bugzilla.suse.com/1129735"
},
{
"category": "self",
"summary": "SUSE Bug 1129898",
"url": "https://bugzilla.suse.com/1129898"
},
{
"category": "self",
"summary": "SUSE Bug 1133374",
"url": "https://bugzilla.suse.com/1133374"
},
{
"category": "self",
"summary": "SUSE Bug 1136513",
"url": "https://bugzilla.suse.com/1136513"
},
{
"category": "self",
"summary": "SUSE Bug 1171420",
"url": "https://bugzilla.suse.com/1171420"
},
{
"category": "self",
"summary": "SUSE Bug 1176724",
"url": "https://bugzilla.suse.com/1176724"
},
{
"category": "self",
"summary": "SUSE Bug 1177666",
"url": "https://bugzilla.suse.com/1177666"
},
{
"category": "self",
"summary": "SUSE Bug 1181158",
"url": "https://bugzilla.suse.com/1181158"
},
{
"category": "self",
"summary": "SUSE Bug 1184673",
"url": "https://bugzilla.suse.com/1184673"
},
{
"category": "self",
"summary": "SUSE Bug 1184804",
"url": "https://bugzilla.suse.com/1184804"
},
{
"category": "self",
"summary": "SUSE Bug 1185377",
"url": "https://bugzilla.suse.com/1185377"
},
{
"category": "self",
"summary": "SUSE Bug 1185726",
"url": "https://bugzilla.suse.com/1185726"
},
{
"category": "self",
"summary": "SUSE Bug 1185758",
"url": "https://bugzilla.suse.com/1185758"
},
{
"category": "self",
"summary": "SUSE Bug 1185973",
"url": "https://bugzilla.suse.com/1185973"
},
{
"category": "self",
"summary": "SUSE Bug 1186078",
"url": "https://bugzilla.suse.com/1186078"
},
{
"category": "self",
"summary": "SUSE Bug 1186109",
"url": "https://bugzilla.suse.com/1186109"
},
{
"category": "self",
"summary": "SUSE Bug 1186390",
"url": "https://bugzilla.suse.com/1186390"
},
{
"category": "self",
"summary": "SUSE Bug 1186482",
"url": "https://bugzilla.suse.com/1186482"
},
{
"category": "self",
"summary": "SUSE Bug 1186672",
"url": "https://bugzilla.suse.com/1186672"
},
{
"category": "self",
"summary": "SUSE Bug 1188062",
"url": "https://bugzilla.suse.com/1188062"
},
{
"category": "self",
"summary": "SUSE Bug 1188063",
"url": "https://bugzilla.suse.com/1188063"
},
{
"category": "self",
"summary": "SUSE Bug 1188172",
"url": "https://bugzilla.suse.com/1188172"
},
{
"category": "self",
"summary": "SUSE Bug 1188563",
"url": "https://bugzilla.suse.com/1188563"
},
{
"category": "self",
"summary": "SUSE Bug 1188601",
"url": "https://bugzilla.suse.com/1188601"
},
{
"category": "self",
"summary": "SUSE Bug 1188616",
"url": "https://bugzilla.suse.com/1188616"
},
{
"category": "self",
"summary": "SUSE Bug 1188838",
"url": "https://bugzilla.suse.com/1188838"
},
{
"category": "self",
"summary": "SUSE Bug 1188876",
"url": "https://bugzilla.suse.com/1188876"
},
{
"category": "self",
"summary": "SUSE Bug 1188983",
"url": "https://bugzilla.suse.com/1188983"
},
{
"category": "self",
"summary": "SUSE Bug 1188985",
"url": "https://bugzilla.suse.com/1188985"
},
{
"category": "self",
"summary": "SUSE Bug 1189057",
"url": "https://bugzilla.suse.com/1189057"
},
{
"category": "self",
"summary": "SUSE Bug 1189262",
"url": "https://bugzilla.suse.com/1189262"
},
{
"category": "self",
"summary": "SUSE Bug 1189291",
"url": "https://bugzilla.suse.com/1189291"
},
{
"category": "self",
"summary": "SUSE Bug 1189399",
"url": "https://bugzilla.suse.com/1189399"
},
{
"category": "self",
"summary": "SUSE Bug 1189400",
"url": "https://bugzilla.suse.com/1189400"
},
{
"category": "self",
"summary": "SUSE Bug 1189706",
"url": "https://bugzilla.suse.com/1189706"
},
{
"category": "self",
"summary": "SUSE Bug 1189846",
"url": "https://bugzilla.suse.com/1189846"
},
{
"category": "self",
"summary": "SUSE Bug 1189884",
"url": "https://bugzilla.suse.com/1189884"
},
{
"category": "self",
"summary": "SUSE Bug 1190023",
"url": "https://bugzilla.suse.com/1190023"
},
{
"category": "self",
"summary": "SUSE Bug 1190025",
"url": "https://bugzilla.suse.com/1190025"
},
{
"category": "self",
"summary": "SUSE Bug 1190067",
"url": "https://bugzilla.suse.com/1190067"
},
{
"category": "self",
"summary": "SUSE Bug 1190115",
"url": "https://bugzilla.suse.com/1190115"
},
{
"category": "self",
"summary": "SUSE Bug 1190117",
"url": "https://bugzilla.suse.com/1190117"
},
{
"category": "self",
"summary": "SUSE Bug 1190159",
"url": "https://bugzilla.suse.com/1190159"
},
{
"category": "self",
"summary": "SUSE Bug 1190276",
"url": "https://bugzilla.suse.com/1190276"
},
{
"category": "self",
"summary": "SUSE Bug 1190349",
"url": "https://bugzilla.suse.com/1190349"
},
{
"category": "self",
"summary": "SUSE Bug 1190351",
"url": "https://bugzilla.suse.com/1190351"
},
{
"category": "self",
"summary": "SUSE Bug 1190479",
"url": "https://bugzilla.suse.com/1190479"
},
{
"category": "self",
"summary": "SUSE Bug 1190534",
"url": "https://bugzilla.suse.com/1190534"
},
{
"category": "self",
"summary": "SUSE Bug 1190601",
"url": "https://bugzilla.suse.com/1190601"
},
{
"category": "self",
"summary": "SUSE Bug 1190717",
"url": "https://bugzilla.suse.com/1190717"
},
{
"category": "self",
"summary": "SUSE Bug 1191193",
"url": "https://bugzilla.suse.com/1191193"
},
{
"category": "self",
"summary": "SUSE Bug 1191315",
"url": "https://bugzilla.suse.com/1191315"
},
{
"category": "self",
"summary": "SUSE Bug 1191317",
"url": "https://bugzilla.suse.com/1191317"
},
{
"category": "self",
"summary": "SUSE Bug 1191349",
"url": "https://bugzilla.suse.com/1191349"
},
{
"category": "self",
"summary": "SUSE Bug 1191457",
"url": "https://bugzilla.suse.com/1191457"
},
{
"category": "self",
"summary": "SUSE Bug 1191628",
"url": "https://bugzilla.suse.com/1191628"
},
{
"category": "self",
"summary": "SUSE Bug 1191790",
"url": "https://bugzilla.suse.com/1191790"
},
{
"category": "self",
"summary": "SUSE Bug 1191800",
"url": "https://bugzilla.suse.com/1191800"
},
{
"category": "self",
"summary": "SUSE Bug 1191888",
"url": "https://bugzilla.suse.com/1191888"
},
{
"category": "self",
"summary": "SUSE Bug 1191961",
"url": "https://bugzilla.suse.com/1191961"
},
{
"category": "self",
"summary": "SUSE Bug 1192045",
"url": "https://bugzilla.suse.com/1192045"
},
{
"category": "self",
"summary": "SUSE Bug 1192267",
"url": "https://bugzilla.suse.com/1192267"
},
{
"category": "self",
"summary": "SUSE Bug 1192379",
"url": "https://bugzilla.suse.com/1192379"
},
{
"category": "self",
"summary": "SUSE Bug 1192400",
"url": "https://bugzilla.suse.com/1192400"
},
{
"category": "self",
"summary": "SUSE Bug 1192775",
"url": "https://bugzilla.suse.com/1192775"
},
{
"category": "self",
"summary": "SUSE Bug 1192781",
"url": "https://bugzilla.suse.com/1192781"
},
{
"category": "self",
"summary": "SUSE Bug 1192802",
"url": "https://bugzilla.suse.com/1192802"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-13405 page",
"url": "https://www.suse.com/security/cve/CVE-2018-13405/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-9517 page",
"url": "https://www.suse.com/security/cve/CVE-2018-9517/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-3874 page",
"url": "https://www.suse.com/security/cve/CVE-2019-3874/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-3900 page",
"url": "https://www.suse.com/security/cve/CVE-2019-3900/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-0429 page",
"url": "https://www.suse.com/security/cve/CVE-2020-0429/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-12770 page",
"url": "https://www.suse.com/security/cve/CVE-2020-12770/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-3702 page",
"url": "https://www.suse.com/security/cve/CVE-2020-3702/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-4788 page",
"url": "https://www.suse.com/security/cve/CVE-2020-4788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-0941 page",
"url": "https://www.suse.com/security/cve/CVE-2021-0941/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20322 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20322/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-22543 page",
"url": "https://www.suse.com/security/cve/CVE-2021-22543/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-31916 page",
"url": "https://www.suse.com/security/cve/CVE-2021-31916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-33033 page",
"url": "https://www.suse.com/security/cve/CVE-2021-33033/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-33909 page",
"url": "https://www.suse.com/security/cve/CVE-2021-33909/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-34556 page",
"url": "https://www.suse.com/security/cve/CVE-2021-34556/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-34981 page",
"url": "https://www.suse.com/security/cve/CVE-2021-34981/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3542 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3542/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-35477 page",
"url": "https://www.suse.com/security/cve/CVE-2021-35477/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3640 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3640/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3653 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3653/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3655 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3655/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3656 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3656/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3659 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3659/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3679 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3715 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3715/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-37159 page",
"url": "https://www.suse.com/security/cve/CVE-2021-37159/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3732 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3732/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3744 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3752 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3753 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-37576 page",
"url": "https://www.suse.com/security/cve/CVE-2021-37576/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3759 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3760 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3760/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3764 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3764/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3772 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3772/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-38160 page",
"url": "https://www.suse.com/security/cve/CVE-2021-38160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-38198 page",
"url": "https://www.suse.com/security/cve/CVE-2021-38198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-38204 page",
"url": "https://www.suse.com/security/cve/CVE-2021-38204/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-40490 page",
"url": "https://www.suse.com/security/cve/CVE-2021-40490/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-41864 page",
"url": "https://www.suse.com/security/cve/CVE-2021-41864/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-42008 page",
"url": "https://www.suse.com/security/cve/CVE-2021-42008/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-42252 page",
"url": "https://www.suse.com/security/cve/CVE-2021-42252/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-42739 page",
"url": "https://www.suse.com/security/cve/CVE-2021-42739/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2021-12-02T07:19:22Z",
"generator": {
"date": "2021-12-02T07:19:22Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2021:3876-1",
"initial_release_date": "2021-12-02T07:19:22Z",
"revision_history": [
{
"date": "2021-12-02T07:19:22Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-vanilla-4.12.14-197.102.2.aarch64",
"product": {
"name": "kernel-vanilla-4.12.14-197.102.2.aarch64",
"product_id": "kernel-vanilla-4.12.14-197.102.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"product": {
"name": "kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"product_id": "kernel-vanilla-base-4.12.14-197.102.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"product": {
"name": "kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"product_id": "kernel-vanilla-devel-4.12.14-197.102.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"product": {
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"product_id": "kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-debug-base-4.12.14-197.102.2.ppc64le",
"product": {
"name": "kernel-debug-base-4.12.14-197.102.2.ppc64le",
"product_id": "kernel-debug-base-4.12.14-197.102.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-4.12.14-197.102.2.ppc64le",
"product": {
"name": "kernel-vanilla-4.12.14-197.102.2.ppc64le",
"product_id": "kernel-vanilla-4.12.14-197.102.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"product": {
"name": "kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"product_id": "kernel-vanilla-base-4.12.14-197.102.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"product": {
"name": "kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"product_id": "kernel-vanilla-devel-4.12.14-197.102.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"product": {
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"product_id": "kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-man-4.12.14-197.102.2.s390x",
"product": {
"name": "kernel-default-man-4.12.14-197.102.2.s390x",
"product_id": "kernel-default-man-4.12.14-197.102.2.s390x"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-4.12.14-197.102.2.s390x",
"product": {
"name": "kernel-vanilla-4.12.14-197.102.2.s390x",
"product_id": "kernel-vanilla-4.12.14-197.102.2.s390x"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-197.102.2.s390x",
"product": {
"name": "kernel-vanilla-base-4.12.14-197.102.2.s390x",
"product_id": "kernel-vanilla-base-4.12.14-197.102.2.s390x"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"product": {
"name": "kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"product_id": "kernel-vanilla-devel-4.12.14-197.102.2.s390x"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"product": {
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"product_id": "kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x"
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-man-4.12.14-197.102.2.s390x",
"product": {
"name": "kernel-zfcpdump-man-4.12.14-197.102.2.s390x",
"product_id": "kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-debug-base-4.12.14-197.102.2.x86_64",
"product": {
"name": "kernel-debug-base-4.12.14-197.102.2.x86_64",
"product_id": "kernel-debug-base-4.12.14-197.102.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"product": {
"name": "kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"product_id": "kernel-kvmsmall-base-4.12.14-197.102.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-4.12.14-197.102.2.x86_64",
"product": {
"name": "kernel-vanilla-4.12.14-197.102.2.x86_64",
"product_id": "kernel-vanilla-4.12.14-197.102.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"product": {
"name": "kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"product_id": "kernel-vanilla-base-4.12.14-197.102.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"product": {
"name": "kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"product_id": "kernel-vanilla-devel-4.12.14-197.102.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"product": {
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"product_id": "kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.3",
"product": {
"name": "openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-base-4.12.14-197.102.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le"
},
"product_reference": "kernel-debug-base-4.12.14-197.102.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-base-4.12.14-197.102.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64"
},
"product_reference": "kernel-debug-base-4.12.14-197.102.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-man-4.12.14-197.102.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x"
},
"product_reference": "kernel-default-man-4.12.14-197.102.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-base-4.12.14-197.102.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64"
},
"product_reference": "kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-4.12.14-197.102.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64"
},
"product_reference": "kernel-vanilla-4.12.14-197.102.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-4.12.14-197.102.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le"
},
"product_reference": "kernel-vanilla-4.12.14-197.102.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-4.12.14-197.102.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x"
},
"product_reference": "kernel-vanilla-4.12.14-197.102.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-4.12.14-197.102.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64"
},
"product_reference": "kernel-vanilla-4.12.14-197.102.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-base-4.12.14-197.102.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64"
},
"product_reference": "kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-base-4.12.14-197.102.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le"
},
"product_reference": "kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-base-4.12.14-197.102.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x"
},
"product_reference": "kernel-vanilla-base-4.12.14-197.102.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-base-4.12.14-197.102.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64"
},
"product_reference": "kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-devel-4.12.14-197.102.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64"
},
"product_reference": "kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-devel-4.12.14-197.102.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le"
},
"product_reference": "kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-devel-4.12.14-197.102.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x"
},
"product_reference": "kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-devel-4.12.14-197.102.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64"
},
"product_reference": "kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64"
},
"product_reference": "kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le"
},
"product_reference": "kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x"
},
"product_reference": "kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64"
},
"product_reference": "kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-man-4.12.14-197.102.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
},
"product_reference": "kernel-zfcpdump-man-4.12.14-197.102.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-13405",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-13405"
}
],
"notes": [
{
"category": "general",
"text": "The inode_init_owner function in fs/inode.c in the Linux kernel through 3.16 allows local users to create files with an unintended group ownership, in a scenario where a directory is SGID to a certain group and is writable by a user who is not a member of that group. Here, the non-member can trigger creation of a plain file whose group ownership is that group. The intended behavior was that the non-member can trigger creation of a directory (but not a plain file) whose group ownership is that group. The non-member can escalate privileges by making the plain file executable and SGID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-13405",
"url": "https://www.suse.com/security/cve/CVE-2018-13405"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2018-13405",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1100416 for CVE-2018-13405",
"url": "https://bugzilla.suse.com/1100416"
},
{
"category": "external",
"summary": "SUSE Bug 1129735 for CVE-2018-13405",
"url": "https://bugzilla.suse.com/1129735"
},
{
"category": "external",
"summary": "SUSE Bug 1195161 for CVE-2018-13405",
"url": "https://bugzilla.suse.com/1195161"
},
{
"category": "external",
"summary": "SUSE Bug 1198702 for CVE-2018-13405",
"url": "https://bugzilla.suse.com/1198702"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2018-13405"
},
{
"cve": "CVE-2018-9517",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-9517"
}
],
"notes": [
{
"category": "general",
"text": "In pppol2tp_connect, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-38159931.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-9517",
"url": "https://www.suse.com/security/cve/CVE-2018-9517"
},
{
"category": "external",
"summary": "SUSE Bug 1108488 for CVE-2018-9517",
"url": "https://bugzilla.suse.com/1108488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "low"
}
],
"title": "CVE-2018-9517"
},
{
"cve": "CVE-2019-3874",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-3874"
}
],
"notes": [
{
"category": "general",
"text": "The SCTP socket buffer used by a userspace application is not accounted by the cgroups subsystem. An attacker can use this flaw to cause a denial of service attack. Kernel 3.10.x and 4.18.x branches are believed to be vulnerable.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-3874",
"url": "https://www.suse.com/security/cve/CVE-2019-3874"
},
{
"category": "external",
"summary": "SUSE Bug 1129898 for CVE-2019-3874",
"url": "https://bugzilla.suse.com/1129898"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2019-3874"
},
{
"cve": "CVE-2019-3900",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-3900"
}
],
"notes": [
{
"category": "general",
"text": "An infinite loop issue was found in the vhost_net kernel module in Linux Kernel up to and including v5.1-rc6, while handling incoming packets in handle_rx(). It could occur if one end sends packets faster than the other end can process them. A guest user, maybe remote one, could use this flaw to stall the vhost_net kernel thread, resulting in a DoS scenario.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-3900",
"url": "https://www.suse.com/security/cve/CVE-2019-3900"
},
{
"category": "external",
"summary": "SUSE Bug 1133374 for CVE-2019-3900",
"url": "https://bugzilla.suse.com/1133374"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2019-3900"
},
{
"cve": "CVE-2020-0429",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-0429"
}
],
"notes": [
{
"category": "general",
"text": "In l2tp_session_delete and related functions of l2tp_core.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-152735806",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-0429",
"url": "https://www.suse.com/security/cve/CVE-2020-0429"
},
{
"category": "external",
"summary": "SUSE Bug 1176724 for CVE-2020-0429",
"url": "https://bugzilla.suse.com/1176724"
},
{
"category": "external",
"summary": "SUSE Bug 1176931 for CVE-2020-0429",
"url": "https://bugzilla.suse.com/1176931"
},
{
"category": "external",
"summary": "SUSE Bug 1188026 for CVE-2020-0429",
"url": "https://bugzilla.suse.com/1188026"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2020-0429"
},
{
"cve": "CVE-2020-12770",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-12770"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in the Linux kernel through 5.6.11. sg_write lacks an sg_remove_request call in a certain failure case, aka CID-83c6f2390040.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-12770",
"url": "https://www.suse.com/security/cve/CVE-2020-12770"
},
{
"category": "external",
"summary": "SUSE Bug 1171420 for CVE-2020-12770",
"url": "https://bugzilla.suse.com/1171420"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2020-12770"
},
{
"cve": "CVE-2020-3702",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-3702"
}
],
"notes": [
{
"category": "general",
"text": "u\u0027Specifically timed and handcrafted traffic can cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a discrete set of traffic\u0027 in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice \u0026 Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8053, IPQ4019, IPQ8064, MSM8909W, MSM8996AU, QCA9531, QCN5502, QCS405, SDX20, SM6150, SM7150",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-3702",
"url": "https://www.suse.com/security/cve/CVE-2020-3702"
},
{
"category": "external",
"summary": "SUSE Bug 1191193 for CVE-2020-3702",
"url": "https://bugzilla.suse.com/1191193"
},
{
"category": "external",
"summary": "SUSE Bug 1191529 for CVE-2020-3702",
"url": "https://bugzilla.suse.com/1191529"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "important"
}
],
"title": "CVE-2020-3702"
},
{
"cve": "CVE-2020-4788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-4788"
}
],
"notes": [
{
"category": "general",
"text": "IBM Power9 (AIX 7.1, 7.2, and VIOS 3.1) processors could allow a local user to obtain sensitive information from the data in the L1 cache under extenuating circumstances. IBM X-Force ID: 189296.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-4788",
"url": "https://www.suse.com/security/cve/CVE-2020-4788"
},
{
"category": "external",
"summary": "SUSE Bug 1177666 for CVE-2020-4788",
"url": "https://bugzilla.suse.com/1177666"
},
{
"category": "external",
"summary": "SUSE Bug 1181158 for CVE-2020-4788",
"url": "https://bugzilla.suse.com/1181158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2020-4788"
},
{
"cve": "CVE-2021-0941",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-0941"
}
],
"notes": [
{
"category": "general",
"text": "In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-154177719References: Upstream kernel",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-0941",
"url": "https://www.suse.com/security/cve/CVE-2021-0941"
},
{
"category": "external",
"summary": "SUSE Bug 1192045 for CVE-2021-0941",
"url": "https://bugzilla.suse.com/1192045"
},
{
"category": "external",
"summary": "SUSE Bug 1192048 for CVE-2021-0941",
"url": "https://bugzilla.suse.com/1192048"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "important"
}
],
"title": "CVE-2021-0941"
},
{
"cve": "CVE-2021-20322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20322"
}
],
"notes": [
{
"category": "general",
"text": "A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest threat from this vulnerability is to confidentiality and possibly integrity, because software that relies on UDP source port randomization are indirectly affected as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20322",
"url": "https://www.suse.com/security/cve/CVE-2021-20322"
},
{
"category": "external",
"summary": "SUSE Bug 1191790 for CVE-2021-20322",
"url": "https://bugzilla.suse.com/1191790"
},
{
"category": "external",
"summary": "SUSE Bug 1191813 for CVE-2021-20322",
"url": "https://bugzilla.suse.com/1191813"
},
{
"category": "external",
"summary": "SUSE Bug 1193290 for CVE-2021-20322",
"url": "https://bugzilla.suse.com/1193290"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "important"
}
],
"title": "CVE-2021-20322"
},
{
"cve": "CVE-2021-22543",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-22543"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in Linux: KVM through Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks and can lead to pages being freed while still accessible by the VMM and guest. This allows users with the ability to start and control a VM to read/write random pages of memory and can result in local privilege escalation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-22543",
"url": "https://www.suse.com/security/cve/CVE-2021-22543"
},
{
"category": "external",
"summary": "SUSE Bug 1186482 for CVE-2021-22543",
"url": "https://bugzilla.suse.com/1186482"
},
{
"category": "external",
"summary": "SUSE Bug 1186483 for CVE-2021-22543",
"url": "https://bugzilla.suse.com/1186483"
},
{
"category": "external",
"summary": "SUSE Bug 1190276 for CVE-2021-22543",
"url": "https://bugzilla.suse.com/1190276"
},
{
"category": "external",
"summary": "SUSE Bug 1197660 for CVE-2021-22543",
"url": "https://bugzilla.suse.com/1197660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "important"
}
],
"title": "CVE-2021-22543"
},
{
"cve": "CVE-2021-31916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-31916"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel before 5.12. A bound check failure allows an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-31916",
"url": "https://www.suse.com/security/cve/CVE-2021-31916"
},
{
"category": "external",
"summary": "SUSE Bug 1192781 for CVE-2021-31916",
"url": "https://bugzilla.suse.com/1192781"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-31916"
},
{
"cve": "CVE-2021-33033",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-33033"
}
],
"notes": [
{
"category": "general",
"text": "The Linux kernel before 5.11.14 has a use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c because the CIPSO and CALIPSO refcounting for the DOI definitions is mishandled, aka CID-ad5d07f4a9cd. This leads to writing an arbitrary value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-33033",
"url": "https://www.suse.com/security/cve/CVE-2021-33033"
},
{
"category": "external",
"summary": "SUSE Bug 1186109 for CVE-2021-33033",
"url": "https://bugzilla.suse.com/1186109"
},
{
"category": "external",
"summary": "SUSE Bug 1186283 for CVE-2021-33033",
"url": "https://bugzilla.suse.com/1186283"
},
{
"category": "external",
"summary": "SUSE Bug 1188876 for CVE-2021-33033",
"url": "https://bugzilla.suse.com/1188876"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-33033"
},
{
"cve": "CVE-2021-33909",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-33909"
}
],
"notes": [
{
"category": "general",
"text": "fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-33909",
"url": "https://www.suse.com/security/cve/CVE-2021-33909"
},
{
"category": "external",
"summary": "SUSE Bug 1188062 for CVE-2021-33909",
"url": "https://bugzilla.suse.com/1188062"
},
{
"category": "external",
"summary": "SUSE Bug 1188063 for CVE-2021-33909",
"url": "https://bugzilla.suse.com/1188063"
},
{
"category": "external",
"summary": "SUSE Bug 1188257 for CVE-2021-33909",
"url": "https://bugzilla.suse.com/1188257"
},
{
"category": "external",
"summary": "SUSE Bug 1189302 for CVE-2021-33909",
"url": "https://bugzilla.suse.com/1189302"
},
{
"category": "external",
"summary": "SUSE Bug 1190859 for CVE-2021-33909",
"url": "https://bugzilla.suse.com/1190859"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "important"
}
],
"title": "CVE-2021-33909"
},
{
"cve": "CVE-2021-34556",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-34556"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because the protection mechanism neglects the possibility of uninitialized memory locations on the BPF stack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-34556",
"url": "https://www.suse.com/security/cve/CVE-2021-34556"
},
{
"category": "external",
"summary": "SUSE Bug 1188983 for CVE-2021-34556",
"url": "https://bugzilla.suse.com/1188983"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-34556"
},
{
"cve": "CVE-2021-34981",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-34981"
}
],
"notes": [
{
"category": "general",
"text": "Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability.\n\nThe specific flaw exists within the CMTP module. The issue results from the lack of validating the existence of an object prior to performing further free operations on the object. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the kernel. Was ZDI-CAN-11977.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-34981",
"url": "https://www.suse.com/security/cve/CVE-2021-34981"
},
{
"category": "external",
"summary": "SUSE Bug 1191961 for CVE-2021-34981",
"url": "https://bugzilla.suse.com/1191961"
},
{
"category": "external",
"summary": "SUSE Bug 1192595 for CVE-2021-34981",
"url": "https://bugzilla.suse.com/1192595"
},
{
"category": "external",
"summary": "SUSE Bug 1196722 for CVE-2021-34981",
"url": "https://bugzilla.suse.com/1196722"
},
{
"category": "external",
"summary": "SUSE Bug 1212298 for CVE-2021-34981",
"url": "https://bugzilla.suse.com/1212298"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "important"
}
],
"title": "CVE-2021-34981"
},
{
"cve": "CVE-2021-3542",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3542"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-42739. Reason: This candidate is a reservation duplicate of CVE-2021-42739. Notes: All CVE users should reference CVE-2021-42739 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3542",
"url": "https://www.suse.com/security/cve/CVE-2021-3542"
},
{
"category": "external",
"summary": "SUSE Bug 1184673 for CVE-2021-3542",
"url": "https://bugzilla.suse.com/1184673"
},
{
"category": "external",
"summary": "SUSE Bug 1186063 for CVE-2021-3542",
"url": "https://bugzilla.suse.com/1186063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "important"
}
],
"title": "CVE-2021-3542"
},
{
"cve": "CVE-2021-35477",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-35477"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because a certain preempting store operation does not necessarily occur before a store operation that has an attacker-controlled value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-35477",
"url": "https://www.suse.com/security/cve/CVE-2021-35477"
},
{
"category": "external",
"summary": "SUSE Bug 1188985 for CVE-2021-35477",
"url": "https://bugzilla.suse.com/1188985"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-35477"
},
{
"cve": "CVE-2021-3640",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3640"
}
],
"notes": [
{
"category": "general",
"text": "A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIO_REGISTER or other way triggers race condition of the call sco_conn_del() together with the call sco_sock_sendmsg() with the expected controllable faulting memory page. A privileged local user could use this flaw to crash the system or escalate their privileges on the system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3640",
"url": "https://www.suse.com/security/cve/CVE-2021-3640"
},
{
"category": "external",
"summary": "SUSE Bug 1188172 for CVE-2021-3640",
"url": "https://bugzilla.suse.com/1188172"
},
{
"category": "external",
"summary": "SUSE Bug 1188613 for CVE-2021-3640",
"url": "https://bugzilla.suse.com/1188613"
},
{
"category": "external",
"summary": "SUSE Bug 1191530 for CVE-2021-3640",
"url": "https://bugzilla.suse.com/1191530"
},
{
"category": "external",
"summary": "SUSE Bug 1196810 for CVE-2021-3640",
"url": "https://bugzilla.suse.com/1196810"
},
{
"category": "external",
"summary": "SUSE Bug 1196914 for CVE-2021-3640",
"url": "https://bugzilla.suse.com/1196914"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "important"
}
],
"title": "CVE-2021-3640"
},
{
"cve": "CVE-2021-3653",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3653"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the KVM\u0027s AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the \"int_ctl\" field, this issue could allow a malicious L1 to enable AVIC support (Advanced Virtual Interrupt Controller) for the L2 guest. As a result, the L2 guest would be allowed to read/write physical pages of the host, resulting in a crash of the entire system, leak of sensitive data or potential guest-to-host escape. This flaw affects Linux kernel versions prior to 5.14-rc7.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3653",
"url": "https://www.suse.com/security/cve/CVE-2021-3653"
},
{
"category": "external",
"summary": "SUSE Bug 1189399 for CVE-2021-3653",
"url": "https://bugzilla.suse.com/1189399"
},
{
"category": "external",
"summary": "SUSE Bug 1189420 for CVE-2021-3653",
"url": "https://bugzilla.suse.com/1189420"
},
{
"category": "external",
"summary": "SUSE Bug 1196914 for CVE-2021-3653",
"url": "https://bugzilla.suse.com/1196914"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "important"
}
],
"title": "CVE-2021-3653"
},
{
"cve": "CVE-2021-3655",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3655"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability was found in the Linux kernel in versions prior to v5.14-rc1. Missing size validations on inbound SCTP packets may allow the kernel to read uninitialized memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3655",
"url": "https://www.suse.com/security/cve/CVE-2021-3655"
},
{
"category": "external",
"summary": "SUSE Bug 1188563 for CVE-2021-3655",
"url": "https://bugzilla.suse.com/1188563"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "low"
}
],
"title": "CVE-2021-3655"
},
{
"cve": "CVE-2021-3656",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3656"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the KVM\u0027s AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the \"virt_ext\" field, this issue could allow a malicious L1 to disable both VMLOAD/VMSAVE intercepts and VLS (Virtual VMLOAD/VMSAVE) for the L2 guest. As a result, the L2 guest would be allowed to read/write physical pages of the host, resulting in a crash of the entire system, leak of sensitive data or potential guest-to-host escape.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3656",
"url": "https://www.suse.com/security/cve/CVE-2021-3656"
},
{
"category": "external",
"summary": "SUSE Bug 1189400 for CVE-2021-3656",
"url": "https://bugzilla.suse.com/1189400"
},
{
"category": "external",
"summary": "SUSE Bug 1189418 for CVE-2021-3656",
"url": "https://bugzilla.suse.com/1189418"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "important"
}
],
"title": "CVE-2021-3656"
},
{
"cve": "CVE-2021-3659",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3659"
}
],
"notes": [
{
"category": "general",
"text": "A NULL pointer dereference flaw was found in the Linux kernel\u0027s IEEE 802.15.4 wireless networking subsystem in the way the user closes the LR-WPAN connection. This flaw allows a local user to crash the system. The highest threat from this vulnerability is to system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3659",
"url": "https://www.suse.com/security/cve/CVE-2021-3659"
},
{
"category": "external",
"summary": "SUSE Bug 1188876 for CVE-2021-3659",
"url": "https://bugzilla.suse.com/1188876"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-3659"
},
{
"cve": "CVE-2021-3679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3679"
}
],
"notes": [
{
"category": "general",
"text": "A lack of CPU resource in the Linux kernel tracing module functionality in versions prior to 5.14-rc3 was found in the way user uses trace ring buffer in a specific way. Only privileged local users (with CAP_SYS_ADMIN capability) could use this flaw to starve the resources causing denial of service.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3679",
"url": "https://www.suse.com/security/cve/CVE-2021-3679"
},
{
"category": "external",
"summary": "SUSE Bug 1189057 for CVE-2021-3679",
"url": "https://bugzilla.suse.com/1189057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-3679"
},
{
"cve": "CVE-2021-3715",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3715"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the \"Routing decision\" classifier in the Linux kernel\u0027s Traffic Control networking subsystem in the way it handled changing of classification filters, leading to a use-after-free condition. This flaw allows unprivileged local users to escalate their privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3715",
"url": "https://www.suse.com/security/cve/CVE-2021-3715"
},
{
"category": "external",
"summary": "SUSE Bug 1190349 for CVE-2021-3715",
"url": "https://bugzilla.suse.com/1190349"
},
{
"category": "external",
"summary": "SUSE Bug 1190350 for CVE-2021-3715",
"url": "https://bugzilla.suse.com/1190350"
},
{
"category": "external",
"summary": "SUSE Bug 1196722 for CVE-2021-3715",
"url": "https://bugzilla.suse.com/1196722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "important"
}
],
"title": "CVE-2021-3715"
},
{
"cve": "CVE-2021-37159",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-37159"
}
],
"notes": [
{
"category": "general",
"text": "hso_free_net_device in drivers/net/usb/hso.c in the Linux kernel through 5.13.4 calls unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-37159",
"url": "https://www.suse.com/security/cve/CVE-2021-37159"
},
{
"category": "external",
"summary": "SUSE Bug 1188601 for CVE-2021-37159",
"url": "https://bugzilla.suse.com/1188601"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-37159"
},
{
"cve": "CVE-2021-3732",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3732"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the Linux kernel\u0027s OverlayFS subsystem in the way the user mounts the TmpFS filesystem with OverlayFS. This flaw allows a local user to gain access to hidden files that should not be accessible.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3732",
"url": "https://www.suse.com/security/cve/CVE-2021-3732"
},
{
"category": "external",
"summary": "SUSE Bug 1189706 for CVE-2021-3732",
"url": "https://bugzilla.suse.com/1189706"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "low"
}
],
"title": "CVE-2021-3732"
},
{
"cve": "CVE-2021-3744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3744"
}
],
"notes": [
{
"category": "general",
"text": "A memory leak flaw was found in the Linux kernel in the ccp_run_aes_gcm_cmd() function in drivers/crypto/ccp/ccp-ops.c, which allows attackers to cause a denial of service (memory consumption). This vulnerability is similar with the older CVE-2019-18808.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3744",
"url": "https://www.suse.com/security/cve/CVE-2021-3744"
},
{
"category": "external",
"summary": "SUSE Bug 1189884 for CVE-2021-3744",
"url": "https://bugzilla.suse.com/1189884"
},
{
"category": "external",
"summary": "SUSE Bug 1190534 for CVE-2021-3744",
"url": "https://bugzilla.suse.com/1190534"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-3744"
},
{
"cve": "CVE-2021-3752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3752"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free flaw was found in the Linux kernel\u0027s Bluetooth subsystem in the way user calls connect to the socket and disconnect simultaneously due to a race condition. This flaw allows a user to crash the system or escalate their privileges. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3752",
"url": "https://www.suse.com/security/cve/CVE-2021-3752"
},
{
"category": "external",
"summary": "SUSE Bug 1190023 for CVE-2021-3752",
"url": "https://bugzilla.suse.com/1190023"
},
{
"category": "external",
"summary": "SUSE Bug 1190432 for CVE-2021-3752",
"url": "https://bugzilla.suse.com/1190432"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "important"
}
],
"title": "CVE-2021-3752"
},
{
"cve": "CVE-2021-3753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3753"
}
],
"notes": [
{
"category": "general",
"text": "A race problem was seen in the vt_k_ioctl in drivers/tty/vt/vt_ioctl.c in the Linux kernel, which may cause an out of bounds read in vt as the write access to vc_mode is not protected by lock-in vt_ioctl (KDSETMDE). The highest threat from this vulnerability is to data confidentiality.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3753",
"url": "https://www.suse.com/security/cve/CVE-2021-3753"
},
{
"category": "external",
"summary": "SUSE Bug 1190025 for CVE-2021-3753",
"url": "https://bugzilla.suse.com/1190025"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "low"
}
],
"title": "CVE-2021-3753"
},
{
"cve": "CVE-2021-37576",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-37576"
}
],
"notes": [
{
"category": "general",
"text": "arch/powerpc/kvm/book3s_rtas.c in the Linux kernel through 5.13.5 on the powerpc platform allows KVM guest OS users to cause host OS memory corruption via rtas_args.nargs, aka CID-f62f3c20647e.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-37576",
"url": "https://www.suse.com/security/cve/CVE-2021-37576"
},
{
"category": "external",
"summary": "SUSE Bug 1188838 for CVE-2021-37576",
"url": "https://bugzilla.suse.com/1188838"
},
{
"category": "external",
"summary": "SUSE Bug 1188842 for CVE-2021-37576",
"url": "https://bugzilla.suse.com/1188842"
},
{
"category": "external",
"summary": "SUSE Bug 1190276 for CVE-2021-37576",
"url": "https://bugzilla.suse.com/1190276"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "important"
}
],
"title": "CVE-2021-37576"
},
{
"cve": "CVE-2021-3759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3759"
}
],
"notes": [
{
"category": "general",
"text": "A memory overflow vulnerability was found in the Linux kernel\u0027s ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores. This flaw allows a local user to starve the resources, causing a denial of service. The highest threat from this vulnerability is to system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3759",
"url": "https://www.suse.com/security/cve/CVE-2021-3759"
},
{
"category": "external",
"summary": "SUSE Bug 1190115 for CVE-2021-3759",
"url": "https://bugzilla.suse.com/1190115"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-3759"
},
{
"cve": "CVE-2021-3760",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3760"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the Linux kernel. A use-after-free vulnerability in the NFC stack can lead to a threat to confidentiality, integrity, and system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3760",
"url": "https://www.suse.com/security/cve/CVE-2021-3760"
},
{
"category": "external",
"summary": "SUSE Bug 1190067 for CVE-2021-3760",
"url": "https://bugzilla.suse.com/1190067"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-3760"
},
{
"cve": "CVE-2021-3764",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3764"
}
],
"notes": [
{
"category": "general",
"text": "A memory leak flaw was found in the Linux kernel\u0027s ccp_run_aes_gcm_cmd() function that allows an attacker to cause a denial of service. The vulnerability is similar to the older CVE-2019-18808. The highest threat from this vulnerability is to system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3764",
"url": "https://www.suse.com/security/cve/CVE-2021-3764"
},
{
"category": "external",
"summary": "SUSE Bug 1190534 for CVE-2021-3764",
"url": "https://bugzilla.suse.com/1190534"
},
{
"category": "external",
"summary": "SUSE Bug 1194518 for CVE-2021-3764",
"url": "https://bugzilla.suse.com/1194518"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-3764"
},
{
"cve": "CVE-2021-3772",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3772"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the Linux SCTP stack. A blind attacker may be able to kill an existing SCTP association through invalid chunks if the attacker knows the IP-addresses and port numbers being used and the attacker can send packets with spoofed IP addresses.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3772",
"url": "https://www.suse.com/security/cve/CVE-2021-3772"
},
{
"category": "external",
"summary": "SUSE Bug 1190351 for CVE-2021-3772",
"url": "https://bugzilla.suse.com/1190351"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-3772"
},
{
"cve": "CVE-2021-38160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-38160"
}
],
"notes": [
{
"category": "general",
"text": "** DISPUTED ** In drivers/char/virtio_console.c in the Linux kernel before 5.13.4, data corruption or loss can be triggered by an untrusted device that supplies a buf-\u003elen value exceeding the buffer size. NOTE: the vendor indicates that the cited data corruption is not a vulnerability in any existing use case; the length validation was added solely for robustness in the face of anomalous host OS behavior.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-38160",
"url": "https://www.suse.com/security/cve/CVE-2021-38160"
},
{
"category": "external",
"summary": "SUSE Bug 1190117 for CVE-2021-38160",
"url": "https://bugzilla.suse.com/1190117"
},
{
"category": "external",
"summary": "SUSE Bug 1190118 for CVE-2021-38160",
"url": "https://bugzilla.suse.com/1190118"
},
{
"category": "external",
"summary": "SUSE Bug 1196914 for CVE-2021-38160",
"url": "https://bugzilla.suse.com/1196914"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-38160"
},
{
"cve": "CVE-2021-38198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-38198"
}
],
"notes": [
{
"category": "general",
"text": "arch/x86/kvm/mmu/paging_tmpl.h in the Linux kernel before 5.12.11 incorrectly computes the access permissions of a shadow page, leading to a missing guest protection page fault.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-38198",
"url": "https://www.suse.com/security/cve/CVE-2021-38198"
},
{
"category": "external",
"summary": "SUSE Bug 1189262 for CVE-2021-38198",
"url": "https://bugzilla.suse.com/1189262"
},
{
"category": "external",
"summary": "SUSE Bug 1189278 for CVE-2021-38198",
"url": "https://bugzilla.suse.com/1189278"
},
{
"category": "external",
"summary": "SUSE Bug 1196914 for CVE-2021-38198",
"url": "https://bugzilla.suse.com/1196914"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "important"
}
],
"title": "CVE-2021-38198"
},
{
"cve": "CVE-2021-38204",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-38204"
}
],
"notes": [
{
"category": "general",
"text": "drivers/usb/host/max3421-hcd.c in the Linux kernel before 5.13.6 allows physically proximate attackers to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-38204",
"url": "https://www.suse.com/security/cve/CVE-2021-38204"
},
{
"category": "external",
"summary": "SUSE Bug 1189291 for CVE-2021-38204",
"url": "https://bugzilla.suse.com/1189291"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-38204"
},
{
"cve": "CVE-2021-40490",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-40490"
}
],
"notes": [
{
"category": "general",
"text": "A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel through 5.13.13.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-40490",
"url": "https://www.suse.com/security/cve/CVE-2021-40490"
},
{
"category": "external",
"summary": "SUSE Bug 1190159 for CVE-2021-40490",
"url": "https://bugzilla.suse.com/1190159"
},
{
"category": "external",
"summary": "SUSE Bug 1192775 for CVE-2021-40490",
"url": "https://bugzilla.suse.com/1192775"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-40490"
},
{
"cve": "CVE-2021-41864",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-41864"
}
],
"notes": [
{
"category": "general",
"text": "prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel before 5.14.12 allows unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-41864",
"url": "https://www.suse.com/security/cve/CVE-2021-41864"
},
{
"category": "external",
"summary": "SUSE Bug 1191317 for CVE-2021-41864",
"url": "https://bugzilla.suse.com/1191317"
},
{
"category": "external",
"summary": "SUSE Bug 1191318 for CVE-2021-41864",
"url": "https://bugzilla.suse.com/1191318"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "important"
}
],
"title": "CVE-2021-41864"
},
{
"cve": "CVE-2021-42008",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-42008"
}
],
"notes": [
{
"category": "general",
"text": "The decode_data function in drivers/net/hamradio/6pack.c in the Linux kernel before 5.13.13 has a slab out-of-bounds write. Input from a process that has the CAP_NET_ADMIN capability can lead to root access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-42008",
"url": "https://www.suse.com/security/cve/CVE-2021-42008"
},
{
"category": "external",
"summary": "SUSE Bug 1191315 for CVE-2021-42008",
"url": "https://bugzilla.suse.com/1191315"
},
{
"category": "external",
"summary": "SUSE Bug 1191660 for CVE-2021-42008",
"url": "https://bugzilla.suse.com/1191660"
},
{
"category": "external",
"summary": "SUSE Bug 1196722 for CVE-2021-42008",
"url": "https://bugzilla.suse.com/1196722"
},
{
"category": "external",
"summary": "SUSE Bug 1196810 for CVE-2021-42008",
"url": "https://bugzilla.suse.com/1196810"
},
{
"category": "external",
"summary": "SUSE Bug 1196914 for CVE-2021-42008",
"url": "https://bugzilla.suse.com/1196914"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "important"
}
],
"title": "CVE-2021-42008"
},
{
"cve": "CVE-2021-42252",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-42252"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel before 5.14.6. Local attackers able to access the Aspeed LPC control interface could overwrite memory in the kernel and potentially execute privileges, aka CID-b49a0e69a7b1. This occurs because a certain comparison uses values that are not memory sizes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-42252",
"url": "https://www.suse.com/security/cve/CVE-2021-42252"
},
{
"category": "external",
"summary": "SUSE Bug 1190479 for CVE-2021-42252",
"url": "https://bugzilla.suse.com/1190479"
},
{
"category": "external",
"summary": "SUSE Bug 1192444 for CVE-2021-42252",
"url": "https://bugzilla.suse.com/1192444"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "important"
}
],
"title": "CVE-2021-42252"
},
{
"cve": "CVE-2021-42739",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-42739"
}
],
"notes": [
{
"category": "general",
"text": "The firewire subsystem in the Linux kernel through 5.14.13 has a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandles bounds checking.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-42739",
"url": "https://www.suse.com/security/cve/CVE-2021-42739"
},
{
"category": "external",
"summary": "SUSE Bug 1184673 for CVE-2021-42739",
"url": "https://bugzilla.suse.com/1184673"
},
{
"category": "external",
"summary": "SUSE Bug 1192036 for CVE-2021-42739",
"url": "https://bugzilla.suse.com/1192036"
},
{
"category": "external",
"summary": "SUSE Bug 1196722 for CVE-2021-42739",
"url": "https://bugzilla.suse.com/1196722"
},
{
"category": "external",
"summary": "SUSE Bug 1196914 for CVE-2021-42739",
"url": "https://bugzilla.suse.com/1196914"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.102.2.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-02T07:19:22Z",
"details": "important"
}
],
"title": "CVE-2021-42739"
}
]
}
OPENSUSE-SU-2021:3941-1
Vulnerability from csaf_opensuse - Published: 2021-12-06 13:45 - Updated: 2021-12-06 13:45Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
- Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past (jsc#SLE-22573)
You can reenable via systemctl setting /proc/sys/kernel/unprivileged_bpf_disabled to 0. (kernel.unprivileged_bpf_disabled = 0)
- CVE-2021-0941: In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192045 ).
- CVE-2021-31916: An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel A bound check failure allowed an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability (bnc#1192781).
- CVE-2021-20322: Make the ipv4 and ipv6 ICMP exception caches less predictive to avoid information leaks about UDP ports in use. (bsc#1191790)
- CVE-2021-34981: Fixed file refcounting in cmtp when cmtp_attach_device fails (bsc#1191961).
The following non-security bugs were fixed:
- ABI: sysfs-kernel-slab: Document some stats (git-fixes).
- ALSA: hda: fix general protection fault in azx_runtime_idle (git-fixes).
- ALSA: hda: Free card instance properly at probe errors (git-fixes).
- ALSA: usb-audio: Add Audient iD14 to mixer map quirk table (git-fixes).
- ALSA: usb-audio: Add minimal-mute notion in dB mapping table (bsc#1192375).
- ALSA: usb-audio: Add Schiit Hel device to mixer map quirk table (git-fixes).
- ALSA: usb-audio: Fix dB level of Bose Revolve+ SoundLink (bsc#1192375).
- ALSA: usb-audio: Use int for dB map values (bsc#1192375).
- ARM: socfpga: Fix crash with CONFIG_FORTIRY_SOURCE (bsc#1192473).
- auxdisplay: ht16k33: Connect backlight to fbdev (git-fixes).
- auxdisplay: ht16k33: Fix frame buffer device blanking (git-fixes).
- auxdisplay: img-ascii-lcd: Fix lock-up when displaying empty string (git-fixes).
- bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22573)
- bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22574)
- bpf: Disallow unprivileged bpf by default (jsc#SLE-22573).
- bpf: Disallow unprivileged bpf by default (jsc#SLE-22574).
- bpf: Fix BPF_JIT kconfig symbol dependency (git-fixes jsc#SLE-22574).
- bpf: Fix potential race in tail call compatibility check (git-fixes).
- bpf, kconfig: Add consolidated menu entry for bpf with core options (jsc#SLE-22574).
- btrfs: block-group: Rework documentation of check_system_chunk function (bsc#1192896).
- btrfs: fix deadlock between chunk allocation and chunk btree modifications (bsc#1192896).
- btrfs: fix memory ordering between normal and ordered work functions (git-fixes).
- btrfs: update comments for chunk allocation -ENOSPC cases (bsc#1192896).
- cgroup/cpuset: Change references of cpuset_mutex to cpuset_rwsem (git-fixes).
- config: disable unprivileged BPF by default (jsc#SLE-22573) Backport of mainline commit 8a03e56b253e ('bpf: Disallow unprivileged bpf by default') only changes kconfig default, used e.g. for 'make oldconfig' when the config option is missing, but does not update our kernel configs used for build. Update also these to make sure unprivileged BPF is really disabled by default.
- crypto: caam - disable pkc for non-E SoCs (git-fixes).
- crypto: qat - detect PFVF collision after ACK (git-fixes).
- crypto: qat - disregard spurious PFVF interrupts (git-fixes).
- drm/i915: Introduce intel_hpd_hotplug_irqs() (bsc#1192758).
- drm: prevent spectre issue in vmw_execbuf_ioctl (bsc#1192802).
- EDAC/sb_edac: Fix top-of-high-memory value for Broadwell/Haswell (bsc#1152489).
- Eradicate Patch-mainline: No The pre-commit check can reject this deprecated tag then.
- exfat: fix erroneous discard when clear cluster bit (git-fixes).
- exfat: handle wrong stream entry size in exfat_readdir() (git-fixes).
- exfat: properly set s_time_gran (bsc#1192328).
- exfat: truncate atimes to 2s granularity (bsc#1192328).
- Fix problem with missing installkernel on Tumbleweed.
- fuse: fix page stealing (bsc#1192718).
- gpio: mpc8xxx: Use 'devm_gpiochip_add_data()' to simplify the code and avoid a leak (git-fixes).
- gpio/rockchip: add driver for rockchip gpio (bsc#1192217).
- gpio/rockchip: drop irq_gc_lock/irq_gc_unlock for irq set type (bsc#1192217).
- gpio/rockchip: extended debounce support is only available on v2 (bsc#1192217).
- gpio/rockchip: fetch deferred output settings on probe (bsc#1192217).
- gpio/rockchip: fix get_direction value handling (bsc#1192217).
- gpio/rockchip: support next version gpio controller (bsc#1192217).
- gpio/rockchip: use struct rockchip_gpio_regs for gpio controller (bsc#1192217).
- HID: u2fzero: clarify error check and length calculations (git-fixes).
- HID: u2fzero: properly handle timeouts in usb_submit_urb (git-fixes).
- ibmvnic: check failover_pending in login response (bsc#1190523 ltc#194510).
- ibmvnic: do not stop queue in xmit (bsc#1192273 ltc#194629).
- ibmvnic: Process crqs after enabling interrupts (bsc#1192273 ltc#194629).
- iio: dac: ad5446: Fix ad5622_write() return value (git-fixes).
- Input: elantench - fix misreporting trackpoint coordinates (bsc#1192918).
- kernel-*-subpackage: Add dependency on kernel scriptlets (bsc#1192740).
- mm/hugetlb: initialize hugetlb_usage in mm_init (bsc#1192906).
- Move upstreamed sound fix into sorted section
- net: dsa: felix: re-enable TX flow control in ocelot_port_flush() (git-fixes).
- net: mscc: ocelot: fix hardware timestamp dequeue logic.
- net: mscc: ocelot: warn when a PTP IRQ is raised for an unknown skb (git-fixes).
- net/smc: Correct smc link connection counter in case of smc client (git-fixes).
- net/smc: fix 'workqueue leaked lock' in smc_conn_abort_work (git-fixes).
- ocfs2: do not zero pages beyond i_size (bsc#1190795).
- ocfs2: fix data corruption on truncate (bsc#1190795).
- PCI: aardvark: Do not clear status bits of masked interrupts (git-fixes).
- PCI: aardvark: Do not spam about PIO Response Status (git-fixes).
- PCI: aardvark: Do not unmask unused interrupts (git-fixes).
- PCI: aardvark: Fix checking for link up via LTSSM state (git-fixes).
- PCI: aardvark: Fix reporting Data Link Layer Link Active (git-fixes).
- PCI: aardvark: Fix return value of MSI domain .alloc() method (git-fixes).
- PCI: aardvark: Read all 16-bits from PCIE_MSI_PAYLOAD_REG (git-fixes).
- PCI/ACPI: Check for _OSC support in acpi_pci_osc_control_set() (bsc#1169263).
- PCI/ACPI: Clarify message about _OSC failure (bsc#1169263).
- PCI/ACPI: Move _OSC query checks to separate function (bsc#1169263).
- PCI/ACPI: Move supported and control calculations to separate functions (bsc#1169263).
- PCI/ACPI: Remove OSC_PCI_SUPPORT_MASKS and OSC_PCI_CONTROL_MASKS (bsc#1169263).
- PCI/ACPI: Remove unnecessary osc_lock (bsc#1169263).
- PCI: pci-bridge-emul: Fix emulation of W1C bits (git-fixes).
- PCI: uniphier: Serialize INTx masking/unmasking and fix the bit operation (git-fixes).
- pinctrl: core: fix possible memory leak in pinctrl_enable() (git-fixes).
- pinctrl: pinctrl-rockchip: Fix a bunch of kerneldoc misdemeanours (bsc#1192217).
- pinctrl/rockchip: add a queue for deferred pin output settings on probe (bsc#1192217).
- pinctrl/rockchip: add pinctrl device to gpio bank struct (bsc#1192217).
- pinctrl: rockchip: add rk3308 SoC support (bsc#1192217).
- pinctrl: rockchip: add support for rk3568 (bsc#1192217).
- pinctrl/rockchip: always enable clock for gpio controller (bsc#1192217).
- pinctrl: rockchip: clear int status when driver probed (bsc#1192217).
- pinctrl: rockchip: create irq mapping in gpio_to_irq (bsc#1192217).
- pinctrl: rockchip: do coding style for mux route struct (bsc#1192217).
- pinctrl/rockchip: drop the gpio related codes (bsc#1192217).
- pinctrl: rockchip: enable gpio pclk for rockchip_gpio_to_irq (bsc#1192217).
- pinctrl: rockchip: make driver be tristate module (bsc#1192217).
- pinctrl: rockchip: Replace HTTP links with HTTPS ones (bsc#1192217).
- pinctrl: rockchip: return ENOMEM instead of EINVAL if allocation fails (bsc#1192217).
- pinctrl/rockchip: separate struct rockchip_pin_bank to a head file (bsc#1192217).
- power: supply: bq27xxx: Fix kernel crash on IRQ handler register error (git-fixes).
- power: supply: max17042_battery: Prevent int underflow in set_soc_threshold (git-fixes).
- power: supply: max17042_battery: use VFSOC for capacity when no rsns (git-fixes).
- power: supply: rt5033-battery: Change voltage values to 5V (git-fixes).
- printk/console: Allow to disable console output by using console='' or console=null (bsc#1192753).
- printk: handle blank console arguments passed in (bsc#1192753).
- qtnfmac: fix potential Spectre vulnerabilities (bsc#1192802).
- r8152: add a helper function about setting EEE (git-fixes).
- r8152: Add macpassthru support for ThinkPad Thunderbolt 3 Dock Gen 2 (git-fixes).
- r8152: Disable PLA MCU clock speed down (git-fixes).
- r8152: disable U2P3 for RTL8153B (git-fixes).
- r8152: divide the tx and rx bottom functions (git-fixes).
- r8152: do not enable U1U2 with USB_SPEED_HIGH for RTL8153B (git-fixes).
- r8152: fix runtime resume for linking change (git-fixes).
- r8152: replace array with linking list for rx information (git-fixes).
- r8152: reset flow control patch when linking on for RTL8153B (git-fixes).
- r8152: saving the settings of EEE (git-fixes).
- r8152: separate the rx buffer size (git-fixes).
- r8152: use alloc_pages for rx buffer (git-fixes).
- random: fix crash on multiple early calls to add_bootloader_randomness() (bsc#1184924)
- Revert 'ibmvnic: check failover_pending in login response' (bsc#1190523 ltc#194510).
- Revert 'platform/x86: i2c-multi-instantiate: Do not create platform device for INT3515 ACPI nodes' (git-fixes).
- Revert 'r8152: adjust the settings about MAC clock speed down for RTL8153' (git-fixes).
- Revert 'scsi: ufs: fix a missing check of devm_reset_control_get' (git-fixes).
- Revert 'x86/kvm: fix vcpu-id indexed array sizes' (git-fixes).
- rndis_host: set proper input size for OID_GEN_PHYSICAL_MEDIUM request (git-fixes).
- s390/dasd: fix use after free in dasd path handling (git-fixes).
- s390/pci: fix use after free of zpci_dev (git-fixes).
- s390/pci: fix zpci_zdev_put() on reserve (git-fixes).
- s390/qeth: fix deadlock during failing recovery (git-fixes).
- s390/qeth: Fix deadlock in remove_discipline (git-fixes).
- s390/qeth: fix NULL deref in qeth_clear_working_pool_list() (git-fixes).
- s390/topology: clear thread/group maps for offline cpus (git-fixes).
- scsi: be2iscsi: Fix an error handling path in beiscsi_dev_probe() (git-fixes).
- scsi: BusLogic: Fix missing pr_cont() use (git-fixes).
- scsi: core: Fix spelling in a source code comment (git-fixes).
- scsi: csiostor: Add module softdep on cxgb4 (git-fixes).
- scsi: csiostor: Uninitialized data in csio_ln_vnp_read_cbfn() (git-fixes).
- scsi: dc395: Fix error case unwinding (git-fixes).
- scsi: fdomain: Fix error return code in fdomain_probe() (git-fixes).
- scsi: FlashPoint: Rename si_flags field (git-fixes).
- scsi: iscsi: Fix iface sysfs attr detection (git-fixes).
- scsi: libsas: Use _safe() loop in sas_resume_port() (git-fixes).
- scsi: mpt3sas: Fix error return value in _scsih_expander_add() (git-fixes).
- scsi: qedf: Add pointer checks in qedf_update_link_speed() (git-fixes).
- scsi: qedf: Fix error codes in qedf_alloc_global_queues() (git-fixes).
- scsi: qedi: Fix error codes in qedi_alloc_global_queues() (git-fixes).
- scsi: qla2xxx: Fix a memory leak in an error path of qla2x00_process_els() (git-fixes).
- scsi: qla2xxx: Make sure that aborted commands are freed (git-fixes).
- scsi: smartpqi: Fix an error code in pqi_get_raid_map() (git-fixes).
- scsi: snic: Fix an error message (git-fixes).
- scsi: ufs-pci: Add quirk for broken auto-hibernate for Intel EHL (git-fixes).
- scsi: ufs: ufshcd-pltfrm: Fix memory leak due to probe defer (git-fixes).
- serial: 8250_dw: Drop wrong use of ACPI_PTR() (git-fixes).
- serial: xilinx_uartps: Fix race condition causing stuck TX (git-fixes).
- staging: r8712u: fix control-message timeout (git-fixes).
- staging: rtl8192u: fix control-message timeouts (git-fixes).
- stmmac: platform: Fix signedness bug in stmmac_probe_config_dt() (git-fixes).
- tracing: Increase PERF_MAX_TRACE_SIZE to handle Sentinel1 and docker together (bsc#1192745).
- Update config files: Add CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set
- Update config files: pull BPF configs together
- usb: gadget: hid: fix error code in do_config() (git-fixes).
- USB: iowarrior: fix control-message timeouts (git-fixes).
- usb: max-3421: Use driver data instead of maintaining a list of bound devices (git-fixes).
- usb: musb: Balance list entry in musb_gadget_queue (git-fixes).
- USB: serial: keyspan: fix memleak on probe errors (git-fixes).
- video: fbdev: chipsfb: use memset_io() instead of memset() (git-fixes).
- x86/sme: Use #define USE_EARLY_PGTABLE_L5 in mem_encrypt_identity.c (bsc#1152489).
- x86/xen: Mark cpu_bringup_and_idle() as dead_end_function (git-fixes).
- xen-pciback: Fix return in pm_ctrl_init() (git-fixes).
- xen: Fix implicit type conversion (git-fixes).
Patchnames: openSUSE-SLE-15.3-2021-3941
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
143 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-al-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-allwinner-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-altera-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-amd-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-amlogic-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-apm-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-arm-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-broadcom-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-cavium-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-exynos-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-freescale-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-hisilicon-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-lg-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-marvell-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-mediatek-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-nvidia-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-qcom-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-renesas-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-rockchip-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-socionext-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-sprd-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-xilinx-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-zte-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-docs-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-docs-html-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-macros-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
143 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-al-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-allwinner-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-altera-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-amd-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-amlogic-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-apm-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-arm-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-broadcom-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-cavium-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-exynos-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-freescale-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-hisilicon-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-lg-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-marvell-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-mediatek-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-nvidia-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-qcom-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-renesas-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-rockchip-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-socionext-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-sprd-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-xilinx-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-zte-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-docs-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-docs-html-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-macros-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.8 (Medium)
Affected products
Recommended
143 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-al-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-allwinner-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-altera-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-amd-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-amlogic-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-apm-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-arm-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-broadcom-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-cavium-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-exynos-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-freescale-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-hisilicon-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-lg-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-marvell-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-mediatek-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-nvidia-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-qcom-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-renesas-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-rockchip-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-socionext-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-sprd-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-xilinx-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-zte-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-docs-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-docs-html-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-macros-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
143 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-al-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-allwinner-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-altera-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-amd-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-amlogic-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-apm-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-arm-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-broadcom-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-cavium-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-exynos-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-freescale-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-hisilicon-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-lg-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-marvell-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-mediatek-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-nvidia-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-qcom-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-renesas-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-rockchip-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-socionext-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-sprd-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-xilinx-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-zte-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-docs-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-docs-html-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-macros-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-59.37.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
47 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://bugzilla.suse.com/1152489 | self |
| https://bugzilla.suse.com/1169263 | self |
| https://bugzilla.suse.com/1170269 | self |
| https://bugzilla.suse.com/1184924 | self |
| https://bugzilla.suse.com/1190523 | self |
| https://bugzilla.suse.com/1190795 | self |
| https://bugzilla.suse.com/1191790 | self |
| https://bugzilla.suse.com/1191961 | self |
| https://bugzilla.suse.com/1192045 | self |
| https://bugzilla.suse.com/1192217 | self |
| https://bugzilla.suse.com/1192273 | self |
| https://bugzilla.suse.com/1192328 | self |
| https://bugzilla.suse.com/1192375 | self |
| https://bugzilla.suse.com/1192473 | self |
| https://bugzilla.suse.com/1192718 | self |
| https://bugzilla.suse.com/1192740 | self |
| https://bugzilla.suse.com/1192745 | self |
| https://bugzilla.suse.com/1192750 | self |
| https://bugzilla.suse.com/1192753 | self |
| https://bugzilla.suse.com/1192758 | self |
| https://bugzilla.suse.com/1192781 | self |
| https://bugzilla.suse.com/1192802 | self |
| https://bugzilla.suse.com/1192896 | self |
| https://bugzilla.suse.com/1192906 | self |
| https://bugzilla.suse.com/1192918 | self |
| https://www.suse.com/security/cve/CVE-2021-0941/ | self |
| https://www.suse.com/security/cve/CVE-2021-20322/ | self |
| https://www.suse.com/security/cve/CVE-2021-31916/ | self |
| https://www.suse.com/security/cve/CVE-2021-34981/ | self |
| https://www.suse.com/security/cve/CVE-2021-0941 | external |
| https://bugzilla.suse.com/1192045 | external |
| https://bugzilla.suse.com/1192048 | external |
| https://www.suse.com/security/cve/CVE-2021-20322 | external |
| https://bugzilla.suse.com/1191790 | external |
| https://bugzilla.suse.com/1191813 | external |
| https://bugzilla.suse.com/1193290 | external |
| https://www.suse.com/security/cve/CVE-2021-31916 | external |
| https://bugzilla.suse.com/1192781 | external |
| https://www.suse.com/security/cve/CVE-2021-34981 | external |
| https://bugzilla.suse.com/1191961 | external |
| https://bugzilla.suse.com/1192595 | external |
| https://bugzilla.suse.com/1196722 | external |
| https://bugzilla.suse.com/1212298 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\n\nThe SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past (jsc#SLE-22573)\n\n You can reenable via systemctl setting /proc/sys/kernel/unprivileged_bpf_disabled to 0. (kernel.unprivileged_bpf_disabled = 0)\n\n- CVE-2021-0941: In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192045 ).\n- CVE-2021-31916: An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel A bound check failure allowed an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability (bnc#1192781).\n- CVE-2021-20322: Make the ipv4 and ipv6 ICMP exception caches less predictive to avoid information leaks about UDP ports in use. (bsc#1191790)\n- CVE-2021-34981: Fixed file refcounting in cmtp when cmtp_attach_device fails (bsc#1191961).\n\nThe following non-security bugs were fixed:\n\n- ABI: sysfs-kernel-slab: Document some stats (git-fixes).\n- ALSA: hda: fix general protection fault in azx_runtime_idle (git-fixes).\n- ALSA: hda: Free card instance properly at probe errors (git-fixes).\n- ALSA: usb-audio: Add Audient iD14 to mixer map quirk table (git-fixes).\n- ALSA: usb-audio: Add minimal-mute notion in dB mapping table (bsc#1192375).\n- ALSA: usb-audio: Add Schiit Hel device to mixer map quirk table (git-fixes).\n- ALSA: usb-audio: Fix dB level of Bose Revolve+ SoundLink (bsc#1192375).\n- ALSA: usb-audio: Use int for dB map values (bsc#1192375).\n- ARM: socfpga: Fix crash with CONFIG_FORTIRY_SOURCE (bsc#1192473).\n- auxdisplay: ht16k33: Connect backlight to fbdev (git-fixes).\n- auxdisplay: ht16k33: Fix frame buffer device blanking (git-fixes).\n- auxdisplay: img-ascii-lcd: Fix lock-up when displaying empty string (git-fixes).\n- bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22573)\n- bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22574)\n- bpf: Disallow unprivileged bpf by default (jsc#SLE-22573).\n- bpf: Disallow unprivileged bpf by default (jsc#SLE-22574).\n- bpf: Fix BPF_JIT kconfig symbol dependency (git-fixes jsc#SLE-22574).\n- bpf: Fix potential race in tail call compatibility check (git-fixes).\n- bpf, kconfig: Add consolidated menu entry for bpf with core options (jsc#SLE-22574).\n- btrfs: block-group: Rework documentation of check_system_chunk function (bsc#1192896).\n- btrfs: fix deadlock between chunk allocation and chunk btree modifications (bsc#1192896).\n- btrfs: fix memory ordering between normal and ordered work functions (git-fixes).\n- btrfs: update comments for chunk allocation -ENOSPC cases (bsc#1192896).\n- cgroup/cpuset: Change references of cpuset_mutex to cpuset_rwsem (git-fixes).\n- config: disable unprivileged BPF by default (jsc#SLE-22573) Backport of mainline commit 8a03e56b253e (\u0027bpf: Disallow unprivileged bpf by default\u0027) only changes kconfig default, used e.g. for \u0027make oldconfig\u0027 when the config option is missing, but does not update our kernel configs used for build. Update also these to make sure unprivileged BPF is really disabled by default.\n- crypto: caam - disable pkc for non-E SoCs (git-fixes).\n- crypto: qat - detect PFVF collision after ACK (git-fixes).\n- crypto: qat - disregard spurious PFVF interrupts (git-fixes).\n- drm/i915: Introduce intel_hpd_hotplug_irqs() (bsc#1192758).\n- drm: prevent spectre issue in vmw_execbuf_ioctl (bsc#1192802).\n- EDAC/sb_edac: Fix top-of-high-memory value for Broadwell/Haswell (bsc#1152489).\n- Eradicate Patch-mainline: No The pre-commit check can reject this deprecated tag then.\n- exfat: fix erroneous discard when clear cluster bit (git-fixes).\n- exfat: handle wrong stream entry size in exfat_readdir() (git-fixes).\n- exfat: properly set s_time_gran (bsc#1192328).\n- exfat: truncate atimes to 2s granularity (bsc#1192328).\n- Fix problem with missing installkernel on Tumbleweed.\n- fuse: fix page stealing (bsc#1192718).\n- gpio: mpc8xxx: Use \u0027devm_gpiochip_add_data()\u0027 to simplify the code and avoid a leak (git-fixes).\n- gpio/rockchip: add driver for rockchip gpio (bsc#1192217).\n- gpio/rockchip: drop irq_gc_lock/irq_gc_unlock for irq set type (bsc#1192217).\n- gpio/rockchip: extended debounce support is only available on v2 (bsc#1192217).\n- gpio/rockchip: fetch deferred output settings on probe (bsc#1192217).\n- gpio/rockchip: fix get_direction value handling (bsc#1192217).\n- gpio/rockchip: support next version gpio controller (bsc#1192217).\n- gpio/rockchip: use struct rockchip_gpio_regs for gpio controller (bsc#1192217).\n- HID: u2fzero: clarify error check and length calculations (git-fixes).\n- HID: u2fzero: properly handle timeouts in usb_submit_urb (git-fixes).\n- ibmvnic: check failover_pending in login response (bsc#1190523 ltc#194510).\n- ibmvnic: do not stop queue in xmit (bsc#1192273 ltc#194629).\n- ibmvnic: Process crqs after enabling interrupts (bsc#1192273 ltc#194629).\n- iio: dac: ad5446: Fix ad5622_write() return value (git-fixes).\n- Input: elantench - fix misreporting trackpoint coordinates (bsc#1192918).\n- kernel-*-subpackage: Add dependency on kernel scriptlets (bsc#1192740).\n- mm/hugetlb: initialize hugetlb_usage in mm_init (bsc#1192906).\n- Move upstreamed sound fix into sorted section\n- net: dsa: felix: re-enable TX flow control in ocelot_port_flush() (git-fixes).\n- net: mscc: ocelot: fix hardware timestamp dequeue logic.\n- net: mscc: ocelot: warn when a PTP IRQ is raised for an unknown skb (git-fixes).\n- net/smc: Correct smc link connection counter in case of smc client (git-fixes).\n- net/smc: fix \u0027workqueue leaked lock\u0027 in smc_conn_abort_work (git-fixes).\n- ocfs2: do not zero pages beyond i_size (bsc#1190795).\n- ocfs2: fix data corruption on truncate (bsc#1190795).\n- PCI: aardvark: Do not clear status bits of masked interrupts (git-fixes).\n- PCI: aardvark: Do not spam about PIO Response Status (git-fixes).\n- PCI: aardvark: Do not unmask unused interrupts (git-fixes).\n- PCI: aardvark: Fix checking for link up via LTSSM state (git-fixes).\n- PCI: aardvark: Fix reporting Data Link Layer Link Active (git-fixes).\n- PCI: aardvark: Fix return value of MSI domain .alloc() method (git-fixes).\n- PCI: aardvark: Read all 16-bits from PCIE_MSI_PAYLOAD_REG (git-fixes).\n- PCI/ACPI: Check for _OSC support in acpi_pci_osc_control_set() (bsc#1169263).\n- PCI/ACPI: Clarify message about _OSC failure (bsc#1169263).\n- PCI/ACPI: Move _OSC query checks to separate function (bsc#1169263).\n- PCI/ACPI: Move supported and control calculations to separate functions (bsc#1169263).\n- PCI/ACPI: Remove OSC_PCI_SUPPORT_MASKS and OSC_PCI_CONTROL_MASKS (bsc#1169263).\n- PCI/ACPI: Remove unnecessary osc_lock (bsc#1169263).\n- PCI: pci-bridge-emul: Fix emulation of W1C bits (git-fixes).\n- PCI: uniphier: Serialize INTx masking/unmasking and fix the bit operation (git-fixes).\n- pinctrl: core: fix possible memory leak in pinctrl_enable() (git-fixes).\n- pinctrl: pinctrl-rockchip: Fix a bunch of kerneldoc misdemeanours (bsc#1192217).\n- pinctrl/rockchip: add a queue for deferred pin output settings on probe (bsc#1192217).\n- pinctrl/rockchip: add pinctrl device to gpio bank struct (bsc#1192217).\n- pinctrl: rockchip: add rk3308 SoC support (bsc#1192217).\n- pinctrl: rockchip: add support for rk3568 (bsc#1192217).\n- pinctrl/rockchip: always enable clock for gpio controller (bsc#1192217).\n- pinctrl: rockchip: clear int status when driver probed (bsc#1192217).\n- pinctrl: rockchip: create irq mapping in gpio_to_irq (bsc#1192217).\n- pinctrl: rockchip: do coding style for mux route struct (bsc#1192217).\n- pinctrl/rockchip: drop the gpio related codes (bsc#1192217).\n- pinctrl: rockchip: enable gpio pclk for rockchip_gpio_to_irq (bsc#1192217).\n- pinctrl: rockchip: make driver be tristate module (bsc#1192217).\n- pinctrl: rockchip: Replace HTTP links with HTTPS ones (bsc#1192217).\n- pinctrl: rockchip: return ENOMEM instead of EINVAL if allocation fails (bsc#1192217).\n- pinctrl/rockchip: separate struct rockchip_pin_bank to a head file (bsc#1192217).\n- power: supply: bq27xxx: Fix kernel crash on IRQ handler register error (git-fixes).\n- power: supply: max17042_battery: Prevent int underflow in set_soc_threshold (git-fixes).\n- power: supply: max17042_battery: use VFSOC for capacity when no rsns (git-fixes).\n- power: supply: rt5033-battery: Change voltage values to 5V (git-fixes).\n- printk/console: Allow to disable console output by using console=\u0027\u0027 or console=null (bsc#1192753).\n- printk: handle blank console arguments passed in (bsc#1192753).\n- qtnfmac: fix potential Spectre vulnerabilities (bsc#1192802).\n- r8152: add a helper function about setting EEE (git-fixes).\n- r8152: Add macpassthru support for ThinkPad Thunderbolt 3 Dock Gen 2 (git-fixes).\n- r8152: Disable PLA MCU clock speed down (git-fixes).\n- r8152: disable U2P3 for RTL8153B (git-fixes).\n- r8152: divide the tx and rx bottom functions (git-fixes).\n- r8152: do not enable U1U2 with USB_SPEED_HIGH for RTL8153B (git-fixes).\n- r8152: fix runtime resume for linking change (git-fixes).\n- r8152: replace array with linking list for rx information (git-fixes).\n- r8152: reset flow control patch when linking on for RTL8153B (git-fixes).\n- r8152: saving the settings of EEE (git-fixes).\n- r8152: separate the rx buffer size (git-fixes).\n- r8152: use alloc_pages for rx buffer (git-fixes).\n- random: fix crash on multiple early calls to add_bootloader_randomness() (bsc#1184924)\n- Revert \u0027ibmvnic: check failover_pending in login response\u0027 (bsc#1190523 ltc#194510).\n- Revert \u0027platform/x86: i2c-multi-instantiate: Do not create platform device for INT3515 ACPI nodes\u0027 (git-fixes).\n- Revert \u0027r8152: adjust the settings about MAC clock speed down for RTL8153\u0027 (git-fixes).\n- Revert \u0027scsi: ufs: fix a missing check of devm_reset_control_get\u0027 (git-fixes).\n- Revert \u0027x86/kvm: fix vcpu-id indexed array sizes\u0027 (git-fixes).\n- rndis_host: set proper input size for OID_GEN_PHYSICAL_MEDIUM request (git-fixes).\n- s390/dasd: fix use after free in dasd path handling (git-fixes).\n- s390/pci: fix use after free of zpci_dev (git-fixes).\n- s390/pci: fix zpci_zdev_put() on reserve (git-fixes).\n- s390/qeth: fix deadlock during failing recovery (git-fixes).\n- s390/qeth: Fix deadlock in remove_discipline (git-fixes).\n- s390/qeth: fix NULL deref in qeth_clear_working_pool_list() (git-fixes).\n- s390/topology: clear thread/group maps for offline cpus (git-fixes).\n- scsi: be2iscsi: Fix an error handling path in beiscsi_dev_probe() (git-fixes).\n- scsi: BusLogic: Fix missing pr_cont() use (git-fixes).\n- scsi: core: Fix spelling in a source code comment (git-fixes).\n- scsi: csiostor: Add module softdep on cxgb4 (git-fixes).\n- scsi: csiostor: Uninitialized data in csio_ln_vnp_read_cbfn() (git-fixes).\n- scsi: dc395: Fix error case unwinding (git-fixes).\n- scsi: fdomain: Fix error return code in fdomain_probe() (git-fixes).\n- scsi: FlashPoint: Rename si_flags field (git-fixes).\n- scsi: iscsi: Fix iface sysfs attr detection (git-fixes).\n- scsi: libsas: Use _safe() loop in sas_resume_port() (git-fixes).\n- scsi: mpt3sas: Fix error return value in _scsih_expander_add() (git-fixes).\n- scsi: qedf: Add pointer checks in qedf_update_link_speed() (git-fixes).\n- scsi: qedf: Fix error codes in qedf_alloc_global_queues() (git-fixes).\n- scsi: qedi: Fix error codes in qedi_alloc_global_queues() (git-fixes).\n- scsi: qla2xxx: Fix a memory leak in an error path of qla2x00_process_els() (git-fixes).\n- scsi: qla2xxx: Make sure that aborted commands are freed (git-fixes).\n- scsi: smartpqi: Fix an error code in pqi_get_raid_map() (git-fixes).\n- scsi: snic: Fix an error message (git-fixes).\n- scsi: ufs-pci: Add quirk for broken auto-hibernate for Intel EHL (git-fixes).\n- scsi: ufs: ufshcd-pltfrm: Fix memory leak due to probe defer (git-fixes).\n- serial: 8250_dw: Drop wrong use of ACPI_PTR() (git-fixes).\n- serial: xilinx_uartps: Fix race condition causing stuck TX (git-fixes).\n- staging: r8712u: fix control-message timeout (git-fixes).\n- staging: rtl8192u: fix control-message timeouts (git-fixes).\n- stmmac: platform: Fix signedness bug in stmmac_probe_config_dt() (git-fixes).\n- tracing: Increase PERF_MAX_TRACE_SIZE to handle Sentinel1 and docker together (bsc#1192745).\n- Update config files: Add CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set\n- Update config files: pull BPF configs together\n- usb: gadget: hid: fix error code in do_config() (git-fixes).\n- USB: iowarrior: fix control-message timeouts (git-fixes).\n- usb: max-3421: Use driver data instead of maintaining a list of bound devices (git-fixes).\n- usb: musb: Balance list entry in musb_gadget_queue (git-fixes).\n- USB: serial: keyspan: fix memleak on probe errors (git-fixes).\n- video: fbdev: chipsfb: use memset_io() instead of memset() (git-fixes).\n- x86/sme: Use #define USE_EARLY_PGTABLE_L5 in mem_encrypt_identity.c (bsc#1152489).\n- x86/xen: Mark cpu_bringup_and_idle() as dead_end_function (git-fixes).\n- xen-pciback: Fix return in pm_ctrl_init() (git-fixes).\n- xen: Fix implicit type conversion (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-SLE-15.3-2021-3941",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2021_3941-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2021:3941-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/UKZHKAOI6N3ILHMQUWDAPBQQORWN64SU/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2021:3941-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/UKZHKAOI6N3ILHMQUWDAPBQQORWN64SU/"
},
{
"category": "self",
"summary": "SUSE Bug 1152489",
"url": "https://bugzilla.suse.com/1152489"
},
{
"category": "self",
"summary": "SUSE Bug 1169263",
"url": "https://bugzilla.suse.com/1169263"
},
{
"category": "self",
"summary": "SUSE Bug 1170269",
"url": "https://bugzilla.suse.com/1170269"
},
{
"category": "self",
"summary": "SUSE Bug 1184924",
"url": "https://bugzilla.suse.com/1184924"
},
{
"category": "self",
"summary": "SUSE Bug 1190523",
"url": "https://bugzilla.suse.com/1190523"
},
{
"category": "self",
"summary": "SUSE Bug 1190795",
"url": "https://bugzilla.suse.com/1190795"
},
{
"category": "self",
"summary": "SUSE Bug 1191790",
"url": "https://bugzilla.suse.com/1191790"
},
{
"category": "self",
"summary": "SUSE Bug 1191961",
"url": "https://bugzilla.suse.com/1191961"
},
{
"category": "self",
"summary": "SUSE Bug 1192045",
"url": "https://bugzilla.suse.com/1192045"
},
{
"category": "self",
"summary": "SUSE Bug 1192217",
"url": "https://bugzilla.suse.com/1192217"
},
{
"category": "self",
"summary": "SUSE Bug 1192273",
"url": "https://bugzilla.suse.com/1192273"
},
{
"category": "self",
"summary": "SUSE Bug 1192328",
"url": "https://bugzilla.suse.com/1192328"
},
{
"category": "self",
"summary": "SUSE Bug 1192375",
"url": "https://bugzilla.suse.com/1192375"
},
{
"category": "self",
"summary": "SUSE Bug 1192473",
"url": "https://bugzilla.suse.com/1192473"
},
{
"category": "self",
"summary": "SUSE Bug 1192718",
"url": "https://bugzilla.suse.com/1192718"
},
{
"category": "self",
"summary": "SUSE Bug 1192740",
"url": "https://bugzilla.suse.com/1192740"
},
{
"category": "self",
"summary": "SUSE Bug 1192745",
"url": "https://bugzilla.suse.com/1192745"
},
{
"category": "self",
"summary": "SUSE Bug 1192750",
"url": "https://bugzilla.suse.com/1192750"
},
{
"category": "self",
"summary": "SUSE Bug 1192753",
"url": "https://bugzilla.suse.com/1192753"
},
{
"category": "self",
"summary": "SUSE Bug 1192758",
"url": "https://bugzilla.suse.com/1192758"
},
{
"category": "self",
"summary": "SUSE Bug 1192781",
"url": "https://bugzilla.suse.com/1192781"
},
{
"category": "self",
"summary": "SUSE Bug 1192802",
"url": "https://bugzilla.suse.com/1192802"
},
{
"category": "self",
"summary": "SUSE Bug 1192896",
"url": "https://bugzilla.suse.com/1192896"
},
{
"category": "self",
"summary": "SUSE Bug 1192906",
"url": "https://bugzilla.suse.com/1192906"
},
{
"category": "self",
"summary": "SUSE Bug 1192918",
"url": "https://bugzilla.suse.com/1192918"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-0941 page",
"url": "https://www.suse.com/security/cve/CVE-2021-0941/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20322 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20322/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-31916 page",
"url": "https://www.suse.com/security/cve/CVE-2021-31916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-34981 page",
"url": "https://www.suse.com/security/cve/CVE-2021-34981/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2021-12-06T13:45:37Z",
"generator": {
"date": "2021-12-06T13:45:37Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2021:3941-1",
"initial_release_date": "2021-12-06T13:45:37Z",
"revision_history": [
{
"date": "2021-12-06T13:45:37Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64",
"product": {
"name": "cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64",
"product_id": "cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-default-5.3.18-59.37.2.aarch64",
"product": {
"name": "cluster-md-kmp-default-5.3.18-59.37.2.aarch64",
"product_id": "cluster-md-kmp-default-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64",
"product": {
"name": "cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64",
"product_id": "cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-64kb-5.3.18-59.37.2.aarch64",
"product": {
"name": "dlm-kmp-64kb-5.3.18-59.37.2.aarch64",
"product_id": "dlm-kmp-64kb-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-5.3.18-59.37.2.aarch64",
"product": {
"name": "dlm-kmp-default-5.3.18-59.37.2.aarch64",
"product_id": "dlm-kmp-default-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-preempt-5.3.18-59.37.2.aarch64",
"product": {
"name": "dlm-kmp-preempt-5.3.18-59.37.2.aarch64",
"product_id": "dlm-kmp-preempt-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-al-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-al-5.3.18-59.37.1.aarch64",
"product_id": "dtb-al-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-allwinner-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-allwinner-5.3.18-59.37.1.aarch64",
"product_id": "dtb-allwinner-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-altera-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-altera-5.3.18-59.37.1.aarch64",
"product_id": "dtb-altera-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amd-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-amd-5.3.18-59.37.1.aarch64",
"product_id": "dtb-amd-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amlogic-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-amlogic-5.3.18-59.37.1.aarch64",
"product_id": "dtb-amlogic-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-apm-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-apm-5.3.18-59.37.1.aarch64",
"product_id": "dtb-apm-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-arm-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-arm-5.3.18-59.37.1.aarch64",
"product_id": "dtb-arm-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-broadcom-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-broadcom-5.3.18-59.37.1.aarch64",
"product_id": "dtb-broadcom-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-cavium-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-cavium-5.3.18-59.37.1.aarch64",
"product_id": "dtb-cavium-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-exynos-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-exynos-5.3.18-59.37.1.aarch64",
"product_id": "dtb-exynos-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-freescale-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-freescale-5.3.18-59.37.1.aarch64",
"product_id": "dtb-freescale-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-hisilicon-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-hisilicon-5.3.18-59.37.1.aarch64",
"product_id": "dtb-hisilicon-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-lg-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-lg-5.3.18-59.37.1.aarch64",
"product_id": "dtb-lg-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-marvell-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-marvell-5.3.18-59.37.1.aarch64",
"product_id": "dtb-marvell-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-mediatek-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-mediatek-5.3.18-59.37.1.aarch64",
"product_id": "dtb-mediatek-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-nvidia-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-nvidia-5.3.18-59.37.1.aarch64",
"product_id": "dtb-nvidia-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-qcom-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-qcom-5.3.18-59.37.1.aarch64",
"product_id": "dtb-qcom-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-renesas-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-renesas-5.3.18-59.37.1.aarch64",
"product_id": "dtb-renesas-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-rockchip-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-rockchip-5.3.18-59.37.1.aarch64",
"product_id": "dtb-rockchip-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-socionext-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-socionext-5.3.18-59.37.1.aarch64",
"product_id": "dtb-socionext-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-sprd-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-sprd-5.3.18-59.37.1.aarch64",
"product_id": "dtb-sprd-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-xilinx-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-xilinx-5.3.18-59.37.1.aarch64",
"product_id": "dtb-xilinx-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-zte-5.3.18-59.37.1.aarch64",
"product": {
"name": "dtb-zte-5.3.18-59.37.1.aarch64",
"product_id": "dtb-zte-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"product": {
"name": "gfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"product_id": "gfs2-kmp-64kb-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-5.3.18-59.37.2.aarch64",
"product": {
"name": "gfs2-kmp-default-5.3.18-59.37.2.aarch64",
"product_id": "gfs2-kmp-default-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"product": {
"name": "gfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"product_id": "gfs2-kmp-preempt-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-5.3.18-59.37.2.aarch64",
"product": {
"name": "kernel-64kb-5.3.18-59.37.2.aarch64",
"product_id": "kernel-64kb-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-devel-5.3.18-59.37.2.aarch64",
"product": {
"name": "kernel-64kb-devel-5.3.18-59.37.2.aarch64",
"product_id": "kernel-64kb-devel-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-extra-5.3.18-59.37.2.aarch64",
"product": {
"name": "kernel-64kb-extra-5.3.18-59.37.2.aarch64",
"product_id": "kernel-64kb-extra-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64",
"product": {
"name": "kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64",
"product_id": "kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-optional-5.3.18-59.37.2.aarch64",
"product": {
"name": "kernel-64kb-optional-5.3.18-59.37.2.aarch64",
"product_id": "kernel-64kb-optional-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-5.3.18-59.37.2.aarch64",
"product": {
"name": "kernel-default-5.3.18-59.37.2.aarch64",
"product_id": "kernel-default-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64",
"product": {
"name": "kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64",
"product_id": "kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64",
"product": {
"name": "kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64",
"product_id": "kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.3.18-59.37.2.aarch64",
"product": {
"name": "kernel-default-devel-5.3.18-59.37.2.aarch64",
"product_id": "kernel-default-devel-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-5.3.18-59.37.2.aarch64",
"product": {
"name": "kernel-default-extra-5.3.18-59.37.2.aarch64",
"product_id": "kernel-default-extra-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-5.3.18-59.37.2.aarch64",
"product": {
"name": "kernel-default-livepatch-5.3.18-59.37.2.aarch64",
"product_id": "kernel-default-livepatch-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64",
"product": {
"name": "kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64",
"product_id": "kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-5.3.18-59.37.2.aarch64",
"product": {
"name": "kernel-default-optional-5.3.18-59.37.2.aarch64",
"product_id": "kernel-default-optional-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.3.18-59.37.3.aarch64",
"product": {
"name": "kernel-obs-build-5.3.18-59.37.3.aarch64",
"product_id": "kernel-obs-build-5.3.18-59.37.3.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.3.18-59.37.1.aarch64",
"product": {
"name": "kernel-obs-qa-5.3.18-59.37.1.aarch64",
"product_id": "kernel-obs-qa-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-5.3.18-59.37.2.aarch64",
"product": {
"name": "kernel-preempt-5.3.18-59.37.2.aarch64",
"product_id": "kernel-preempt-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-devel-5.3.18-59.37.2.aarch64",
"product": {
"name": "kernel-preempt-devel-5.3.18-59.37.2.aarch64",
"product_id": "kernel-preempt-devel-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-extra-5.3.18-59.37.2.aarch64",
"product": {
"name": "kernel-preempt-extra-5.3.18-59.37.2.aarch64",
"product_id": "kernel-preempt-extra-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64",
"product": {
"name": "kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64",
"product_id": "kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-optional-5.3.18-59.37.2.aarch64",
"product": {
"name": "kernel-preempt-optional-5.3.18-59.37.2.aarch64",
"product_id": "kernel-preempt-optional-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.3.18-59.37.1.aarch64",
"product": {
"name": "kernel-syms-5.3.18-59.37.1.aarch64",
"product_id": "kernel-syms-5.3.18-59.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-64kb-5.3.18-59.37.2.aarch64",
"product": {
"name": "kselftests-kmp-64kb-5.3.18-59.37.2.aarch64",
"product_id": "kselftests-kmp-64kb-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-5.3.18-59.37.2.aarch64",
"product": {
"name": "kselftests-kmp-default-5.3.18-59.37.2.aarch64",
"product_id": "kselftests-kmp-default-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-preempt-5.3.18-59.37.2.aarch64",
"product": {
"name": "kselftests-kmp-preempt-5.3.18-59.37.2.aarch64",
"product_id": "kselftests-kmp-preempt-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"product": {
"name": "ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"product_id": "ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-5.3.18-59.37.2.aarch64",
"product": {
"name": "ocfs2-kmp-default-5.3.18-59.37.2.aarch64",
"product_id": "ocfs2-kmp-default-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"product": {
"name": "ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"product_id": "ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64",
"product": {
"name": "reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64",
"product_id": "reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-5.3.18-59.37.2.aarch64",
"product": {
"name": "reiserfs-kmp-default-5.3.18-59.37.2.aarch64",
"product_id": "reiserfs-kmp-default-5.3.18-59.37.2.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64",
"product": {
"name": "reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64",
"product_id": "reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-5.3.18-59.37.2.noarch",
"product": {
"name": "kernel-devel-5.3.18-59.37.2.noarch",
"product_id": "kernel-devel-5.3.18-59.37.2.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-5.3.18-59.37.2.noarch",
"product": {
"name": "kernel-docs-5.3.18-59.37.2.noarch",
"product_id": "kernel-docs-5.3.18-59.37.2.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-html-5.3.18-59.37.2.noarch",
"product": {
"name": "kernel-docs-html-5.3.18-59.37.2.noarch",
"product_id": "kernel-docs-html-5.3.18-59.37.2.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-5.3.18-59.37.2.noarch",
"product": {
"name": "kernel-macros-5.3.18-59.37.2.noarch",
"product_id": "kernel-macros-5.3.18-59.37.2.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-5.3.18-59.37.2.noarch",
"product": {
"name": "kernel-source-5.3.18-59.37.2.noarch",
"product_id": "kernel-source-5.3.18-59.37.2.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-vanilla-5.3.18-59.37.2.noarch",
"product": {
"name": "kernel-source-vanilla-5.3.18-59.37.2.noarch",
"product_id": "kernel-source-vanilla-5.3.18-59.37.2.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-5.3.18-59.37.2.ppc64le",
"product": {
"name": "cluster-md-kmp-default-5.3.18-59.37.2.ppc64le",
"product_id": "cluster-md-kmp-default-5.3.18-59.37.2.ppc64le"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-5.3.18-59.37.2.ppc64le",
"product": {
"name": "dlm-kmp-default-5.3.18-59.37.2.ppc64le",
"product_id": "dlm-kmp-default-5.3.18-59.37.2.ppc64le"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"product": {
"name": "gfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"product_id": "gfs2-kmp-default-5.3.18-59.37.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-5.3.18-59.37.2.ppc64le",
"product": {
"name": "kernel-debug-5.3.18-59.37.2.ppc64le",
"product_id": "kernel-debug-5.3.18-59.37.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-5.3.18-59.37.2.ppc64le",
"product": {
"name": "kernel-debug-devel-5.3.18-59.37.2.ppc64le",
"product_id": "kernel-debug-devel-5.3.18-59.37.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le",
"product": {
"name": "kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le",
"product_id": "kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-5.3.18-59.37.2.ppc64le",
"product": {
"name": "kernel-default-5.3.18-59.37.2.ppc64le",
"product_id": "kernel-default-5.3.18-59.37.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le",
"product": {
"name": "kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le",
"product_id": "kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le",
"product": {
"name": "kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le",
"product_id": "kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.3.18-59.37.2.ppc64le",
"product": {
"name": "kernel-default-devel-5.3.18-59.37.2.ppc64le",
"product_id": "kernel-default-devel-5.3.18-59.37.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-5.3.18-59.37.2.ppc64le",
"product": {
"name": "kernel-default-extra-5.3.18-59.37.2.ppc64le",
"product_id": "kernel-default-extra-5.3.18-59.37.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-5.3.18-59.37.2.ppc64le",
"product": {
"name": "kernel-default-livepatch-5.3.18-59.37.2.ppc64le",
"product_id": "kernel-default-livepatch-5.3.18-59.37.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le",
"product": {
"name": "kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le",
"product_id": "kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-5.3.18-59.37.2.ppc64le",
"product": {
"name": "kernel-default-optional-5.3.18-59.37.2.ppc64le",
"product_id": "kernel-default-optional-5.3.18-59.37.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-5.3.18-59.37.2.ppc64le",
"product": {
"name": "kernel-kvmsmall-5.3.18-59.37.2.ppc64le",
"product_id": "kernel-kvmsmall-5.3.18-59.37.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le",
"product": {
"name": "kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le",
"product_id": "kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le",
"product": {
"name": "kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le",
"product_id": "kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.3.18-59.37.3.ppc64le",
"product": {
"name": "kernel-obs-build-5.3.18-59.37.3.ppc64le",
"product_id": "kernel-obs-build-5.3.18-59.37.3.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.3.18-59.37.1.ppc64le",
"product": {
"name": "kernel-obs-qa-5.3.18-59.37.1.ppc64le",
"product_id": "kernel-obs-qa-5.3.18-59.37.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.3.18-59.37.1.ppc64le",
"product": {
"name": "kernel-syms-5.3.18-59.37.1.ppc64le",
"product_id": "kernel-syms-5.3.18-59.37.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-5.3.18-59.37.2.ppc64le",
"product": {
"name": "kselftests-kmp-default-5.3.18-59.37.2.ppc64le",
"product_id": "kselftests-kmp-default-5.3.18-59.37.2.ppc64le"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"product": {
"name": "ocfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"product_id": "ocfs2-kmp-default-5.3.18-59.37.2.ppc64le"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-5.3.18-59.37.2.ppc64le",
"product": {
"name": "reiserfs-kmp-default-5.3.18-59.37.2.ppc64le",
"product_id": "reiserfs-kmp-default-5.3.18-59.37.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-5.3.18-59.37.2.s390x",
"product": {
"name": "cluster-md-kmp-default-5.3.18-59.37.2.s390x",
"product_id": "cluster-md-kmp-default-5.3.18-59.37.2.s390x"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-5.3.18-59.37.2.s390x",
"product": {
"name": "dlm-kmp-default-5.3.18-59.37.2.s390x",
"product_id": "dlm-kmp-default-5.3.18-59.37.2.s390x"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-5.3.18-59.37.2.s390x",
"product": {
"name": "gfs2-kmp-default-5.3.18-59.37.2.s390x",
"product_id": "gfs2-kmp-default-5.3.18-59.37.2.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-5.3.18-59.37.2.s390x",
"product": {
"name": "kernel-default-5.3.18-59.37.2.s390x",
"product_id": "kernel-default-5.3.18-59.37.2.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-base-5.3.18-59.37.2.18.23.3.s390x",
"product": {
"name": "kernel-default-base-5.3.18-59.37.2.18.23.3.s390x",
"product_id": "kernel-default-base-5.3.18-59.37.2.18.23.3.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x",
"product": {
"name": "kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x",
"product_id": "kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.3.18-59.37.2.s390x",
"product": {
"name": "kernel-default-devel-5.3.18-59.37.2.s390x",
"product_id": "kernel-default-devel-5.3.18-59.37.2.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-5.3.18-59.37.2.s390x",
"product": {
"name": "kernel-default-extra-5.3.18-59.37.2.s390x",
"product_id": "kernel-default-extra-5.3.18-59.37.2.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-5.3.18-59.37.2.s390x",
"product": {
"name": "kernel-default-livepatch-5.3.18-59.37.2.s390x",
"product_id": "kernel-default-livepatch-5.3.18-59.37.2.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-5.3.18-59.37.2.s390x",
"product": {
"name": "kernel-default-livepatch-devel-5.3.18-59.37.2.s390x",
"product_id": "kernel-default-livepatch-devel-5.3.18-59.37.2.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-5.3.18-59.37.2.s390x",
"product": {
"name": "kernel-default-optional-5.3.18-59.37.2.s390x",
"product_id": "kernel-default-optional-5.3.18-59.37.2.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.3.18-59.37.3.s390x",
"product": {
"name": "kernel-obs-build-5.3.18-59.37.3.s390x",
"product_id": "kernel-obs-build-5.3.18-59.37.3.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.3.18-59.37.1.s390x",
"product": {
"name": "kernel-obs-qa-5.3.18-59.37.1.s390x",
"product_id": "kernel-obs-qa-5.3.18-59.37.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.3.18-59.37.1.s390x",
"product": {
"name": "kernel-syms-5.3.18-59.37.1.s390x",
"product_id": "kernel-syms-5.3.18-59.37.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-5.3.18-59.37.2.s390x",
"product": {
"name": "kernel-zfcpdump-5.3.18-59.37.2.s390x",
"product_id": "kernel-zfcpdump-5.3.18-59.37.2.s390x"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-5.3.18-59.37.2.s390x",
"product": {
"name": "kselftests-kmp-default-5.3.18-59.37.2.s390x",
"product_id": "kselftests-kmp-default-5.3.18-59.37.2.s390x"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-5.3.18-59.37.2.s390x",
"product": {
"name": "ocfs2-kmp-default-5.3.18-59.37.2.s390x",
"product_id": "ocfs2-kmp-default-5.3.18-59.37.2.s390x"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-5.3.18-59.37.2.s390x",
"product": {
"name": "reiserfs-kmp-default-5.3.18-59.37.2.s390x",
"product_id": "reiserfs-kmp-default-5.3.18-59.37.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-5.3.18-59.37.2.x86_64",
"product": {
"name": "cluster-md-kmp-default-5.3.18-59.37.2.x86_64",
"product_id": "cluster-md-kmp-default-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64",
"product": {
"name": "cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64",
"product_id": "cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-5.3.18-59.37.2.x86_64",
"product": {
"name": "dlm-kmp-default-5.3.18-59.37.2.x86_64",
"product_id": "dlm-kmp-default-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-preempt-5.3.18-59.37.2.x86_64",
"product": {
"name": "dlm-kmp-preempt-5.3.18-59.37.2.x86_64",
"product_id": "dlm-kmp-preempt-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-5.3.18-59.37.2.x86_64",
"product": {
"name": "gfs2-kmp-default-5.3.18-59.37.2.x86_64",
"product_id": "gfs2-kmp-default-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"product": {
"name": "gfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"product_id": "gfs2-kmp-preempt-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-5.3.18-59.37.2.x86_64",
"product": {
"name": "kernel-debug-5.3.18-59.37.2.x86_64",
"product_id": "kernel-debug-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-5.3.18-59.37.2.x86_64",
"product": {
"name": "kernel-debug-devel-5.3.18-59.37.2.x86_64",
"product_id": "kernel-debug-devel-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64",
"product": {
"name": "kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64",
"product_id": "kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-5.3.18-59.37.2.x86_64",
"product": {
"name": "kernel-default-5.3.18-59.37.2.x86_64",
"product_id": "kernel-default-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64",
"product": {
"name": "kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64",
"product_id": "kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64",
"product": {
"name": "kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64",
"product_id": "kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.3.18-59.37.2.x86_64",
"product": {
"name": "kernel-default-devel-5.3.18-59.37.2.x86_64",
"product_id": "kernel-default-devel-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-5.3.18-59.37.2.x86_64",
"product": {
"name": "kernel-default-extra-5.3.18-59.37.2.x86_64",
"product_id": "kernel-default-extra-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-5.3.18-59.37.2.x86_64",
"product": {
"name": "kernel-default-livepatch-5.3.18-59.37.2.x86_64",
"product_id": "kernel-default-livepatch-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64",
"product": {
"name": "kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64",
"product_id": "kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-5.3.18-59.37.2.x86_64",
"product": {
"name": "kernel-default-optional-5.3.18-59.37.2.x86_64",
"product_id": "kernel-default-optional-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-5.3.18-59.37.2.x86_64",
"product": {
"name": "kernel-kvmsmall-5.3.18-59.37.2.x86_64",
"product_id": "kernel-kvmsmall-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64",
"product": {
"name": "kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64",
"product_id": "kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64",
"product": {
"name": "kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64",
"product_id": "kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.3.18-59.37.3.x86_64",
"product": {
"name": "kernel-obs-build-5.3.18-59.37.3.x86_64",
"product_id": "kernel-obs-build-5.3.18-59.37.3.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.3.18-59.37.1.x86_64",
"product": {
"name": "kernel-obs-qa-5.3.18-59.37.1.x86_64",
"product_id": "kernel-obs-qa-5.3.18-59.37.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-5.3.18-59.37.2.x86_64",
"product": {
"name": "kernel-preempt-5.3.18-59.37.2.x86_64",
"product_id": "kernel-preempt-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-devel-5.3.18-59.37.2.x86_64",
"product": {
"name": "kernel-preempt-devel-5.3.18-59.37.2.x86_64",
"product_id": "kernel-preempt-devel-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-extra-5.3.18-59.37.2.x86_64",
"product": {
"name": "kernel-preempt-extra-5.3.18-59.37.2.x86_64",
"product_id": "kernel-preempt-extra-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64",
"product": {
"name": "kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64",
"product_id": "kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-optional-5.3.18-59.37.2.x86_64",
"product": {
"name": "kernel-preempt-optional-5.3.18-59.37.2.x86_64",
"product_id": "kernel-preempt-optional-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.3.18-59.37.1.x86_64",
"product": {
"name": "kernel-syms-5.3.18-59.37.1.x86_64",
"product_id": "kernel-syms-5.3.18-59.37.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-5.3.18-59.37.2.x86_64",
"product": {
"name": "kselftests-kmp-default-5.3.18-59.37.2.x86_64",
"product_id": "kselftests-kmp-default-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-preempt-5.3.18-59.37.2.x86_64",
"product": {
"name": "kselftests-kmp-preempt-5.3.18-59.37.2.x86_64",
"product_id": "kselftests-kmp-preempt-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-5.3.18-59.37.2.x86_64",
"product": {
"name": "ocfs2-kmp-default-5.3.18-59.37.2.x86_64",
"product_id": "ocfs2-kmp-default-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"product": {
"name": "ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"product_id": "ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-5.3.18-59.37.2.x86_64",
"product": {
"name": "reiserfs-kmp-default-5.3.18-59.37.2.x86_64",
"product_id": "reiserfs-kmp-default-5.3.18-59.37.2.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64",
"product": {
"name": "reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64",
"product_id": "reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.3",
"product": {
"name": "openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64"
},
"product_reference": "cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.aarch64"
},
"product_reference": "cluster-md-kmp-default-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.3.18-59.37.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.ppc64le"
},
"product_reference": "cluster-md-kmp-default-5.3.18-59.37.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.3.18-59.37.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.s390x"
},
"product_reference": "cluster-md-kmp-default-5.3.18-59.37.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.x86_64"
},
"product_reference": "cluster-md-kmp-default-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64"
},
"product_reference": "cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64"
},
"product_reference": "cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-64kb-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-59.37.2.aarch64"
},
"product_reference": "dlm-kmp-64kb-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.aarch64"
},
"product_reference": "dlm-kmp-default-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.3.18-59.37.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.ppc64le"
},
"product_reference": "dlm-kmp-default-5.3.18-59.37.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.3.18-59.37.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.s390x"
},
"product_reference": "dlm-kmp-default-5.3.18-59.37.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.x86_64"
},
"product_reference": "dlm-kmp-default-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-preempt-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.aarch64"
},
"product_reference": "dlm-kmp-preempt-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-preempt-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.x86_64"
},
"product_reference": "dlm-kmp-preempt-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-al-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-al-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-al-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-allwinner-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-allwinner-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-allwinner-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-altera-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-altera-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-altera-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-amd-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-amd-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-amd-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-amlogic-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-amlogic-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-amlogic-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-apm-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-apm-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-apm-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-arm-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-arm-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-arm-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-broadcom-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-broadcom-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-broadcom-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-cavium-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-cavium-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-cavium-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-exynos-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-exynos-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-exynos-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-freescale-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-freescale-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-freescale-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-hisilicon-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-hisilicon-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-hisilicon-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-lg-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-lg-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-lg-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-marvell-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-marvell-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-marvell-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-mediatek-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-mediatek-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-mediatek-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-nvidia-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-nvidia-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-nvidia-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-qcom-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-qcom-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-qcom-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-renesas-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-renesas-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-renesas-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-rockchip-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-rockchip-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-rockchip-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-socionext-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-socionext-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-socionext-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-sprd-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-sprd-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-sprd-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-xilinx-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-xilinx-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-xilinx-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-zte-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-zte-5.3.18-59.37.1.aarch64"
},
"product_reference": "dtb-zte-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-64kb-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-59.37.2.aarch64"
},
"product_reference": "gfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.aarch64"
},
"product_reference": "gfs2-kmp-default-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.3.18-59.37.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.ppc64le"
},
"product_reference": "gfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.3.18-59.37.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.s390x"
},
"product_reference": "gfs2-kmp-default-5.3.18-59.37.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.x86_64"
},
"product_reference": "gfs2-kmp-default-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-preempt-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.aarch64"
},
"product_reference": "gfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-preempt-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.x86_64"
},
"product_reference": "gfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-64kb-5.3.18-59.37.2.aarch64"
},
"product_reference": "kernel-64kb-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-devel-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-59.37.2.aarch64"
},
"product_reference": "kernel-64kb-devel-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-extra-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-59.37.2.aarch64"
},
"product_reference": "kernel-64kb-extra-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64"
},
"product_reference": "kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-optional-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-59.37.2.aarch64"
},
"product_reference": "kernel-64kb-optional-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-5.3.18-59.37.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.ppc64le"
},
"product_reference": "kernel-debug-5.3.18-59.37.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.x86_64"
},
"product_reference": "kernel-debug-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-5.3.18-59.37.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.ppc64le"
},
"product_reference": "kernel-debug-devel-5.3.18-59.37.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.x86_64"
},
"product_reference": "kernel-debug-devel-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le"
},
"product_reference": "kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64"
},
"product_reference": "kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.aarch64"
},
"product_reference": "kernel-default-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.3.18-59.37.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.ppc64le"
},
"product_reference": "kernel-default-5.3.18-59.37.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.3.18-59.37.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.s390x"
},
"product_reference": "kernel-default-5.3.18-59.37.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.x86_64"
},
"product_reference": "kernel-default-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64"
},
"product_reference": "kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le"
},
"product_reference": "kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.3.18-59.37.2.18.23.3.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.s390x"
},
"product_reference": "kernel-default-base-5.3.18-59.37.2.18.23.3.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64"
},
"product_reference": "kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64"
},
"product_reference": "kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le"
},
"product_reference": "kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x"
},
"product_reference": "kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64"
},
"product_reference": "kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.aarch64"
},
"product_reference": "kernel-default-devel-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.3.18-59.37.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.ppc64le"
},
"product_reference": "kernel-default-devel-5.3.18-59.37.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.3.18-59.37.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.s390x"
},
"product_reference": "kernel-default-devel-5.3.18-59.37.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.x86_64"
},
"product_reference": "kernel-default-devel-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.aarch64"
},
"product_reference": "kernel-default-extra-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-5.3.18-59.37.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.ppc64le"
},
"product_reference": "kernel-default-extra-5.3.18-59.37.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-5.3.18-59.37.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.s390x"
},
"product_reference": "kernel-default-extra-5.3.18-59.37.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.x86_64"
},
"product_reference": "kernel-default-extra-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.aarch64"
},
"product_reference": "kernel-default-livepatch-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-5.3.18-59.37.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.ppc64le"
},
"product_reference": "kernel-default-livepatch-5.3.18-59.37.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-5.3.18-59.37.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.s390x"
},
"product_reference": "kernel-default-livepatch-5.3.18-59.37.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.x86_64"
},
"product_reference": "kernel-default-livepatch-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64"
},
"product_reference": "kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le"
},
"product_reference": "kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-5.3.18-59.37.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.s390x"
},
"product_reference": "kernel-default-livepatch-devel-5.3.18-59.37.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64"
},
"product_reference": "kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-optional-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.aarch64"
},
"product_reference": "kernel-default-optional-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-optional-5.3.18-59.37.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.ppc64le"
},
"product_reference": "kernel-default-optional-5.3.18-59.37.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-optional-5.3.18-59.37.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.s390x"
},
"product_reference": "kernel-default-optional-5.3.18-59.37.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-optional-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.x86_64"
},
"product_reference": "kernel-default-optional-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-5.3.18-59.37.2.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-devel-5.3.18-59.37.2.noarch"
},
"product_reference": "kernel-devel-5.3.18-59.37.2.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-5.3.18-59.37.2.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-docs-5.3.18-59.37.2.noarch"
},
"product_reference": "kernel-docs-5.3.18-59.37.2.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-html-5.3.18-59.37.2.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-docs-html-5.3.18-59.37.2.noarch"
},
"product_reference": "kernel-docs-html-5.3.18-59.37.2.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-5.3.18-59.37.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.ppc64le"
},
"product_reference": "kernel-kvmsmall-5.3.18-59.37.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.x86_64"
},
"product_reference": "kernel-kvmsmall-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le"
},
"product_reference": "kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64"
},
"product_reference": "kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le"
},
"product_reference": "kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64"
},
"product_reference": "kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-5.3.18-59.37.2.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-macros-5.3.18-59.37.2.noarch"
},
"product_reference": "kernel-macros-5.3.18-59.37.2.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.3.18-59.37.3.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.aarch64"
},
"product_reference": "kernel-obs-build-5.3.18-59.37.3.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.3.18-59.37.3.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.ppc64le"
},
"product_reference": "kernel-obs-build-5.3.18-59.37.3.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.3.18-59.37.3.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.s390x"
},
"product_reference": "kernel-obs-build-5.3.18-59.37.3.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.3.18-59.37.3.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.x86_64"
},
"product_reference": "kernel-obs-build-5.3.18-59.37.3.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.aarch64"
},
"product_reference": "kernel-obs-qa-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-5.3.18-59.37.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.ppc64le"
},
"product_reference": "kernel-obs-qa-5.3.18-59.37.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-5.3.18-59.37.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.s390x"
},
"product_reference": "kernel-obs-qa-5.3.18-59.37.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-5.3.18-59.37.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.x86_64"
},
"product_reference": "kernel-obs-qa-5.3.18-59.37.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.aarch64"
},
"product_reference": "kernel-preempt-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.x86_64"
},
"product_reference": "kernel-preempt-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-devel-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.aarch64"
},
"product_reference": "kernel-preempt-devel-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-devel-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.x86_64"
},
"product_reference": "kernel-preempt-devel-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-extra-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.aarch64"
},
"product_reference": "kernel-preempt-extra-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-extra-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.x86_64"
},
"product_reference": "kernel-preempt-extra-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64"
},
"product_reference": "kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64"
},
"product_reference": "kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-optional-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.aarch64"
},
"product_reference": "kernel-preempt-optional-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-optional-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.x86_64"
},
"product_reference": "kernel-preempt-optional-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-5.3.18-59.37.2.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-source-5.3.18-59.37.2.noarch"
},
"product_reference": "kernel-source-5.3.18-59.37.2.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-vanilla-5.3.18-59.37.2.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-59.37.2.noarch"
},
"product_reference": "kernel-source-vanilla-5.3.18-59.37.2.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.3.18-59.37.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.aarch64"
},
"product_reference": "kernel-syms-5.3.18-59.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.3.18-59.37.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.ppc64le"
},
"product_reference": "kernel-syms-5.3.18-59.37.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.3.18-59.37.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.s390x"
},
"product_reference": "kernel-syms-5.3.18-59.37.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.3.18-59.37.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.x86_64"
},
"product_reference": "kernel-syms-5.3.18-59.37.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-5.3.18-59.37.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-59.37.2.s390x"
},
"product_reference": "kernel-zfcpdump-5.3.18-59.37.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-64kb-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-59.37.2.aarch64"
},
"product_reference": "kselftests-kmp-64kb-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-default-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.aarch64"
},
"product_reference": "kselftests-kmp-default-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-default-5.3.18-59.37.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.ppc64le"
},
"product_reference": "kselftests-kmp-default-5.3.18-59.37.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-default-5.3.18-59.37.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.s390x"
},
"product_reference": "kselftests-kmp-default-5.3.18-59.37.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-default-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.x86_64"
},
"product_reference": "kselftests-kmp-default-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-preempt-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.aarch64"
},
"product_reference": "kselftests-kmp-preempt-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-preempt-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.x86_64"
},
"product_reference": "kselftests-kmp-preempt-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64"
},
"product_reference": "ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.aarch64"
},
"product_reference": "ocfs2-kmp-default-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.3.18-59.37.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.ppc64le"
},
"product_reference": "ocfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.3.18-59.37.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.s390x"
},
"product_reference": "ocfs2-kmp-default-5.3.18-59.37.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.x86_64"
},
"product_reference": "ocfs2-kmp-default-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64"
},
"product_reference": "ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64"
},
"product_reference": "ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64"
},
"product_reference": "reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.aarch64"
},
"product_reference": "reiserfs-kmp-default-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-5.3.18-59.37.2.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.ppc64le"
},
"product_reference": "reiserfs-kmp-default-5.3.18-59.37.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-5.3.18-59.37.2.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.s390x"
},
"product_reference": "reiserfs-kmp-default-5.3.18-59.37.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.x86_64"
},
"product_reference": "reiserfs-kmp-default-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64"
},
"product_reference": "reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64"
},
"product_reference": "reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-0941",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-0941"
}
],
"notes": [
{
"category": "general",
"text": "In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-154177719References: Upstream kernel",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-0941",
"url": "https://www.suse.com/security/cve/CVE-2021-0941"
},
{
"category": "external",
"summary": "SUSE Bug 1192045 for CVE-2021-0941",
"url": "https://bugzilla.suse.com/1192045"
},
{
"category": "external",
"summary": "SUSE Bug 1192048 for CVE-2021-0941",
"url": "https://bugzilla.suse.com/1192048"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-06T13:45:37Z",
"details": "important"
}
],
"title": "CVE-2021-0941"
},
{
"cve": "CVE-2021-20322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20322"
}
],
"notes": [
{
"category": "general",
"text": "A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest threat from this vulnerability is to confidentiality and possibly integrity, because software that relies on UDP source port randomization are indirectly affected as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20322",
"url": "https://www.suse.com/security/cve/CVE-2021-20322"
},
{
"category": "external",
"summary": "SUSE Bug 1191790 for CVE-2021-20322",
"url": "https://bugzilla.suse.com/1191790"
},
{
"category": "external",
"summary": "SUSE Bug 1191813 for CVE-2021-20322",
"url": "https://bugzilla.suse.com/1191813"
},
{
"category": "external",
"summary": "SUSE Bug 1193290 for CVE-2021-20322",
"url": "https://bugzilla.suse.com/1193290"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-06T13:45:37Z",
"details": "important"
}
],
"title": "CVE-2021-20322"
},
{
"cve": "CVE-2021-31916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-31916"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel before 5.12. A bound check failure allows an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-31916",
"url": "https://www.suse.com/security/cve/CVE-2021-31916"
},
{
"category": "external",
"summary": "SUSE Bug 1192781 for CVE-2021-31916",
"url": "https://bugzilla.suse.com/1192781"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-06T13:45:37Z",
"details": "moderate"
}
],
"title": "CVE-2021-31916"
},
{
"cve": "CVE-2021-34981",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-34981"
}
],
"notes": [
{
"category": "general",
"text": "Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability.\n\nThe specific flaw exists within the CMTP module. The issue results from the lack of validating the existence of an object prior to performing further free operations on the object. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the kernel. Was ZDI-CAN-11977.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-34981",
"url": "https://www.suse.com/security/cve/CVE-2021-34981"
},
{
"category": "external",
"summary": "SUSE Bug 1191961 for CVE-2021-34981",
"url": "https://bugzilla.suse.com/1191961"
},
{
"category": "external",
"summary": "SUSE Bug 1192595 for CVE-2021-34981",
"url": "https://bugzilla.suse.com/1192595"
},
{
"category": "external",
"summary": "SUSE Bug 1196722 for CVE-2021-34981",
"url": "https://bugzilla.suse.com/1196722"
},
{
"category": "external",
"summary": "SUSE Bug 1212298 for CVE-2021-34981",
"url": "https://bugzilla.suse.com/1212298"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-59.37.3.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-59.37.2.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-59.37.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-59.37.2.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-06T13:45:37Z",
"details": "important"
}
],
"title": "CVE-2021-34981"
}
]
}
SUSE-SU-2021:3806-1
Vulnerability from csaf_suse - Published: 2021-11-25 13:19 - Updated: 2021-11-25 13:19Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise 15 SP3 kernel for Azure was updated to receive various security and bugfixes.
The following security bugs were fixed:
- Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past (jsc#SLE-22573)
You can reenable via systemctl setting /proc/sys/kernel/unprivileged_bpf_disabled to 0. (kernel.unprivileged_bpf_disabled = 0)
- CVE-2021-0941: In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192045).
- CVE-2021-31916: An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel A bound check failure allowed an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability (bnc#1192781).
- CVE-2021-20322: Make the ipv4 and ipv6 ICMP exception caches less predictive to avoid information leaks about UDP ports in use. (bsc#1191790)
- CVE-2021-34981: Fixed file refcounting in cmtp when cmtp_attach_device fails (bsc#1191961).
- CVE-2021-43389: There was an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c (bnc#1191958).
- CVE-2021-37159: hso_free_net_device in drivers/net/usb/hso.c called unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free (bnc#1188601).
The following non-security bugs were fixed:
- ABI: sysfs-kernel-slab: Document some stats (git-fixes).
- ALSA: hda: fix general protection fault in azx_runtime_idle (git-fixes).
- ALSA: hda: Free card instance properly at probe errors (git-fixes).
- ALSA: hda/realtek: Fix mic mute LED for the HP Spectre x360 14 (git-fixes).
- ALSA: hda: Reduce udelay() at SKL+ position reporting (git-fixes).
- ALSA: hda: Use position buffer for SKL+ again (git-fixes).
- ALSA: ua101: fix division by zero at probe (git-fixes).
- ALSA: uapi: Fix a C++ style comment in asound.h (git-fixes).
- ALSA: usb-audio: Add Audient iD14 to mixer map quirk table (git-fixes).
- ALSA: usb-audio: Add minimal-mute notion in dB mapping table (bsc#1192375).
- ALSA: usb-audio: Add Schiit Hel device to mixer map quirk table (git-fixes).
- ALSA: usb-audio: Fix dB level of Bose Revolve+ SoundLink (bsc#1192375).
- ALSA: usb-audio: Use int for dB map values (bsc#1192375).
- ARM: socfpga: Fix crash with CONFIG_FORTIRY_SOURCE (bsc#1192473).
- ASoC: cs42l42: Correct some register default values (git-fixes).
- ASoC: cs42l42: Defer probe if request_threaded_irq() returns EPROBE_DEFER (git-fixes).
- ASoC: cs42l42: Do not set defaults for volatile registers (git-fixes).
- ASoC: dt-bindings: cs42l42: Correct description of ts-inv (git-fixes).
- ASoC: mediatek: mt8195: Remove unsued irqs_lock (git-fixes).
- ASoC: rockchip: Use generic dmaengine code (git-fixes).
- ASoC: SOF: topology: do not power down primary core during topology removal (git-fixes).
- ASoC: topology: Fix stub for snd_soc_tplg_component_remove() (git-fixes).
- ata: sata_mv: Fix the error handling of mv_chip_id() (git-fixes).
- ath10k: fix control-message timeout (git-fixes).
- ath10k: fix division by zero in send path (git-fixes).
- ath10k: fix max antenna gain unit (git-fixes).
- ath10k: Fix missing frame timestamp for beacon/probe-resp (git-fixes).
- ath10k: sdio: Add missing BH locking around napi_schdule() (git-fixes).
- ath6kl: fix control-message timeout (git-fixes).
- ath6kl: fix division by zero in send path (git-fixes).
- ath9k: Fix potential interrupt storm on queue reset (git-fixes).
- auxdisplay: ht16k33: Connect backlight to fbdev (git-fixes).
- auxdisplay: ht16k33: Fix frame buffer device blanking (git-fixes).
- auxdisplay: img-ascii-lcd: Fix lock-up when displaying empty string (git-fixes).
- b43: fix a lower bounds test (git-fixes).
- b43legacy: fix a lower bounds test (git-fixes).
- blacklist.conf: 5c9d706f6133 ('bpf: Fix BPF_LSM kconfig symbol dependency') Not needed since 30897832d8b9 ('bpf: Allow local storage to be used from LSM programs') is not backported.
- Bluetooth: btmtkuart: fix a memleak in mtk_hci_wmt_sync (git-fixes).
- Bluetooth: fix init and cleanup of sco_conn.timeout_work (git-fixes).
- bnxt_en: Fix TX timeout when TX ring size is set to the smallest (git-fixes).
- bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22573)
- bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22574)
- bpf: Disallow unprivileged bpf by default (jsc#SLE-22573).
- bpf: Disallow unprivileged bpf by default (jsc#SLE-22574).
- bpf: Fix BPF_JIT kconfig symbol dependency (git-fixes jsc#SLE-22574).
- bpf: Fix potential race in tail call compatibility check (git-fixes).
- bpf, kconfig: Add consolidated menu entry for bpf with core options (jsc#SLE-22574).
- btrfs: block-group: Rework documentation of check_system_chunk function (bsc#1192896).
- btrfs: fix deadlock between chunk allocation and chunk btree modifications (bsc#1192896).
- btrfs: fix memory ordering between normal and ordered work functions (git-fixes).
- btrfs: update comments for chunk allocation -ENOSPC cases (bsc#1192896).
- cgroup/cpuset: Change references of cpuset_mutex to cpuset_rwsem (git-fixes).
- config: disable unprivileged BPF by default (jsc#SLE-22573)
- crypto: caam - disable pkc for non-E SoCs (git-fixes).
- crypto: qat - detect PFVF collision after ACK (git-fixes).
- crypto: qat - disregard spurious PFVF interrupts (git-fixes).
- driver core: add a min_align_mask field to struct device_dma_parameters (bsc#1191851).
- drm/amdgpu/display: add quirk handling for stutter mode (git-fixes).
- drm/amdgpu: fix warning for overflow check (git-fixes).
- drm/amdgpu/gmc6: fix DMA mask from 44 to 40 bits (git-fixes).
- drm/i915: Introduce intel_hpd_hotplug_irqs() (bsc#1192758).
- drm/msm: Fix potential NULL dereference in DPU SSPP (git-fixes).
- drm/msm: potential error pointer dereference in init() (git-fixes).
- drm/msm: uninitialized variable in msm_gem_import() (git-fixes).
- drm: prevent spectre issue in vmw_execbuf_ioctl (bsc#1192802).
- drm/sun4i: Fix macros in sun8i_csc.h (git-fixes).
- drm/ttm: stop calling tt_swapin in vm_access (git-fixes).
- drm/v3d: fix wait for TMU write combiner flush (git-fixes).
- EDAC/amd64: Set proper family type for Family 19h Models 20h-2Fh (bsc#1192288).
- EDAC/sb_edac: Fix top-of-high-memory value for Broadwell/Haswell (bsc#1152489).
- Eradicate Patch-mainline: No The pre-commit check can reject this deprecated tag then.
- exfat: fix erroneous discard when clear cluster bit (git-fixes).
- exfat: handle wrong stream entry size in exfat_readdir() (git-fixes).
- exfat: properly set s_time_gran (bsc#1192328).
- exfat: truncate atimes to 2s granularity (bsc#1192328).
- firmware/psci: fix application of sizeof to pointer (git-fixes).
- ftrace: Fix scripts/recordmcount.pl due to new binutils (bsc#1192267).
- fuse: fix page stealing (bsc#1192718).
- genirq: Provide IRQCHIP_AFFINITY_PRE_STARTUP (bsc#1152489).
- gpio: mpc8xxx: Use 'devm_gpiochip_add_data()' to simplify the code and avoid a leak (git-fixes).
- gpio/rockchip: add driver for rockchip gpio (bsc#1192217).
- gpio/rockchip: drop irq_gc_lock/irq_gc_unlock for irq set type (bsc#1192217).
- gpio/rockchip: extended debounce support is only available on v2 (bsc#1192217).
- gpio/rockchip: fetch deferred output settings on probe (bsc#1192217).
- gpio/rockchip: fix get_direction value handling (bsc#1192217).
- gpio/rockchip: support next version gpio controller (bsc#1192217).
- gpio/rockchip: use struct rockchip_gpio_regs for gpio controller (bsc#1192217).
- gve: Avoid freeing NULL pointer (git-fixes).
- gve: Correct available tx qpl check (git-fixes).
- gve: fix gve_get_stats() (git-fixes).
- gve: Properly handle errors in gve_assign_qpl (bsc#1176940).
- gve: report 64bit tx_bytes counter from gve_handle_report_stats() (bsc#1176940).
- HID: u2fzero: clarify error check and length calculations (git-fixes).
- HID: u2fzero: properly handle timeouts in usb_submit_urb (git-fixes).
- hwmon: Fix possible memleak in __hwmon_device_register() (git-fixes).
- hwmon: (pmbus/lm25066) Add offset coefficients (git-fixes).
- hwmon: (pmbus/lm25066) Let compiler determine outer dimension of lm25066_coeff (git-fixes).
- hwrng: mtk - Force runtime pm ops for sleep ops (git-fixes).
- i40e: Fix ATR queue selection (git-fixes).
- i40e: fix endless loop under rtnl (git-fixes).
- i40e: Fix freeing of uninitialized misc IRQ vector (git-fixes).
- iavf: fix double unlock of crit_lock (git-fixes).
- ibmvnic: check failover_pending in login response (bsc#1190523 ltc#194510).
- ibmvnic: delay complete() (bsc#1094840 ltc#167098 git-fixes).
- ibmvnic: do not stop queue in xmit (bsc#1192273 ltc#194629).
- ibmvnic: Process crqs after enabling interrupts (bsc#1192273 ltc#194629).
- ice: Add missing E810 device ids (jsc#SLE-7966 bsc#1157177).
- iio: dac: ad5446: Fix ad5622_write() return value (git-fixes).
- Input: elantench - fix misreporting trackpoint coordinates (bsc#1192918).
- Input: i8042 - Add quirk for Fujitsu Lifebook T725 (bsc#1191980).
- ionic: do not remove netdev->dev_addr when syncing uc list (bsc#1167773).
- iwlwifi: mvm: fix some kerneldoc issues (git-fixes).
- ixgbe: Fix NULL pointer dereference in ixgbe_xdp_setup (git-fixes).
- kABI: Fix kABI after 36950f2da1ea (bsc#1191851).
- kernel-*-subpackage: Add dependency on kernel scriptlets (bsc#1192740).
- KVM: s390: extend kvm_s390_shadow_fault to return entry pointer (bsc#1133021).
- KVM: s390: index kvm->arch.idle_mask by vcpu_idx (bsc#1133021).
- KVM: s390: split kvm_s390_logical_to_effective (bsc#1133021).
- KVM: s390: VSIE: correctly handle MVPG when in VSIE (bsc#1133021).
- libertas: Fix possible memory leak in probe and disconnect (git-fixes).
- libertas_tf: Fix possible memory leak in probe and disconnect (git-fixes).
- media: cedrus: Fix SUNXI tile size calculation (git-fixes).
- media: cx23885: Fix snd_card_free call on null card pointer (git-fixes).
- media: cxd2880-spi: Fix a null pointer dereference on error handling path (git-fixes).
- media: dvb-frontends: mn88443x: Handle errors of clk_prepare_enable() (git-fixes).
- media: dvb-usb: fix ununit-value in az6027_rc_query (git-fixes).
- media: em28xx: add missing em28xx_close_extension (git-fixes).
- media: em28xx: Do not use ops->suspend if it is NULL (git-fixes).
- media: i2c: ths8200 needs V4L2_ASYNC (git-fixes).
- media: ite-cir: IR receiver stop working after receive overflow (git-fixes).
- media: mtk-vpu: Fix a resource leak in the error handling path of 'mtk_vpu_probe()' (git-fixes).
- media: mxl111sf: change mutex_init() location (git-fixes).
- media: radio-wl1273: Avoid card name truncation (git-fixes).
- media: si470x: Avoid card name truncation (git-fixes).
- media: staging/intel-ipu3: css: Fix wrong size comparison imgu_css_fw_init (git-fixes).
- media: TDA1997x: handle short reads of hdmi info frame (git-fixes).
- media: tm6000: Avoid card name truncation (git-fixes).
- media: v4l2-ioctl: Fix check_ext_ctrls (git-fixes).
- media: v4l2-ioctl: S_CTRL output the right value (git-fixes).
- memory: fsl_ifc: fix leak of irq and nand_irq in fsl_ifc_ctrl_probe (git-fixes).
- memstick: avoid out-of-range warning (git-fixes).
- memstick: jmb38x_ms: use appropriate free function in jmb38x_ms_alloc_host() (git-fixes).
- mlx5: count all link events (git-fixes).
- mlxsw: thermal: Fix out-of-bounds memory accesses (git-fixes).
- mmc: mxs-mmc: disable regulator on error and in the remove function (git-fixes).
- mmc: sdhci: Map more voltage level to SDHCI_POWER_330 (git-fixes).
- mmc: sdhci-omap: Fix NULL pointer exception if regulator is not configured (git-fixes).
- mm/hugetlb: initialize hugetlb_usage in mm_init (bsc#1192906).
- Move upstreamed sound fix into sorted section
- mt76: mt7615: fix endianness warning in mt7615_mac_write_txwi (git-fixes).
- mt76: mt76x02: fix endianness warnings in mt76x02_mac.c (git-fixes).
- mt76: mt7915: fix muar_idx in mt7915_mcu_alloc_sta_req() (git-fixes).
- mt76: mt7915: fix possible infinite loop release semaphore (git-fixes).
- mt76: mt7915: fix sta_rec_wtbl tag len (git-fixes).
- mwifiex: fix division by zero in fw download path (git-fixes).
- mwifiex: Send DELBA requests according to spec (git-fixes).
- net/af_unix: fix a data-race in unix_dgram_poll (bsc#1154353).
- net: bridge: use nla_total_size_64bit() in br_get_linkxstats_size() (git-fixes).
- net: dsa: felix: re-enable TX flow control in ocelot_port_flush() (git-fixes).
- net: hns3: fix vf reset workqueue cannot exit (bsc#1154353).
- net/mlx4_en: Do not allow aRFS for encapsulated packets (git-fixes).
- net/mlx4_en: Resolve bad operstate value (git-fixes).
- net/mlx5e: Mutually exclude RX-FCS and RX-port-timestamp (git-fixes).
- net/mlx5: Fix unpublish devlink parameters (jsc#SLE-8464).
- net/mlx5: FWTrace, cancel work on alloc pd error flow (git-fixes).
- net: mscc: ocelot: fix hardware timestamp dequeue logic.
- net: mscc: ocelot: warn when a PTP IRQ is raised for an unknown skb (git-fixes).
- net/smc: Correct smc link connection counter in case of smc client (git-fixes).
- net/smc: fix 'workqueue leaked lock' in smc_conn_abort_work (git-fixes).
- nvme-pci: set min_align_mask (bsc#1191851).
- ocfs2: do not zero pages beyond i_size (bsc#1190795).
- ocfs2: fix data corruption on truncate (bsc#1190795).
- PCI: aardvark: Do not clear status bits of masked interrupts (git-fixes).
- PCI: aardvark: Do not spam about PIO Response Status (git-fixes).
- PCI: aardvark: Do not unmask unused interrupts (git-fixes).
- PCI: aardvark: Fix checking for link up via LTSSM state (git-fixes).
- PCI: aardvark: Fix reporting Data Link Layer Link Active (git-fixes).
- PCI: aardvark: Fix return value of MSI domain .alloc() method (git-fixes).
- PCI: aardvark: Read all 16-bits from PCIE_MSI_PAYLOAD_REG (git-fixes).
- PCI/ACPI: Check for _OSC support in acpi_pci_osc_control_set() (bsc#1169263).
- PCI/ACPI: Clarify message about _OSC failure (bsc#1169263).
- PCI/ACPI: Move _OSC query checks to separate function (bsc#1169263).
- PCI/ACPI: Move supported and control calculations to separate functions (bsc#1169263).
- PCI/ACPI: Remove OSC_PCI_SUPPORT_MASKS and OSC_PCI_CONTROL_MASKS (bsc#1169263).
- PCI/ACPI: Remove unnecessary osc_lock (bsc#1169263).
- PCI: pci-bridge-emul: Fix emulation of W1C bits (git-fixes).
- PCI: uniphier: Serialize INTx masking/unmasking and fix the bit operation (git-fixes).
- pinctrl: core: fix possible memory leak in pinctrl_enable() (git-fixes).
- pinctrl: pinctrl-rockchip: Fix a bunch of kerneldoc misdemeanours (bsc#1192217).
- pinctrl/rockchip: add a queue for deferred pin output settings on probe (bsc#1192217).
- pinctrl/rockchip: add pinctrl device to gpio bank struct (bsc#1192217).
- pinctrl: rockchip: add rk3308 SoC support (bsc#1192217).
- pinctrl: rockchip: add support for rk3568 (bsc#1192217).
- pinctrl/rockchip: always enable clock for gpio controller (bsc#1192217).
- pinctrl: rockchip: clear int status when driver probed (bsc#1192217).
- pinctrl: rockchip: create irq mapping in gpio_to_irq (bsc#1192217).
- pinctrl: rockchip: do coding style for mux route struct (bsc#1192217).
- pinctrl/rockchip: drop the gpio related codes (bsc#1192217).
- pinctrl: rockchip: enable gpio pclk for rockchip_gpio_to_irq (bsc#1192217).
- pinctrl: rockchip: make driver be tristate module (bsc#1192217).
- pinctrl: rockchip: Replace HTTP links with HTTPS ones (bsc#1192217).
- pinctrl: rockchip: return ENOMEM instead of EINVAL if allocation fails (bsc#1192217).
- pinctrl/rockchip: separate struct rockchip_pin_bank to a head file (bsc#1192217).
- platform/x86: thinkpad_acpi: Fix bitwise vs. logical warning (git-fixes).
- PM: sleep: Do not let 'syscore' devices runtime-suspend during system transitions (git-fixes).
- power: supply: bq27xxx: Fix kernel crash on IRQ handler register error (git-fixes).
- power: supply: max17042_battery: Prevent int underflow in set_soc_threshold (git-fixes).
- power: supply: max17042_battery: use VFSOC for capacity when no rsns (git-fixes).
- printk/console: Allow to disable console output by using console='' or console=null (bsc#1192753).
- printk: handle blank console arguments passed in (bsc#1192753).
- qed: Fix missing error code in qed_slowpath_start() (git-fixes).
- qed: Handle management FW error (git-fixes).
- qed: rdma - do not wait for resources under hw error recovery flow (git-fixes).
- qtnfmac: fix potential Spectre vulnerabilities (bsc#1192802).
- r8152: add a helper function about setting EEE (git-fixes).
- r8152: Add macpassthru support for ThinkPad Thunderbolt 3 Dock Gen 2 (git-fixes).
- r8152: Disable PLA MCU clock speed down (git-fixes).
- r8152: disable U2P3 for RTL8153B (git-fixes).
- r8152: divide the tx and rx bottom functions (git-fixes).
- r8152: do not enable U1U2 with USB_SPEED_HIGH for RTL8153B (git-fixes).
- r8152: fix runtime resume for linking change (git-fixes).
- r8152: replace array with linking list for rx information (git-fixes).
- r8152: reset flow control patch when linking on for RTL8153B (git-fixes).
- r8152: saving the settings of EEE (git-fixes).
- r8152: separate the rx buffer size (git-fixes).
- r8152: use alloc_pages for rx buffer (git-fixes).
- random: fix crash on multiple early calls to add_bootloader_randomness() (bsc#1184924)
- README.BRANCH: Add Oscar Salvador as SLE15-SP3 maintainer
- regulator: dt-bindings: samsung,s5m8767: correct s5m8767,pmic-buck-default-dvs-idx property (git-fixes).
- regulator: s5m8767: do not use reset value as DVS voltage if GPIO DVS is disabled (git-fixes).
- Revert 'ibmvnic: check failover_pending in login response' (bsc#1190523 ltc#194510).
- Revert 'platform/x86: i2c-multi-instantiate: Do not create platform device for INT3515 ACPI nodes' (git-fixes).
- Revert 'r8152: adjust the settings about MAC clock speed down for RTL8153' (git-fixes).
- Revert 'scsi: ufs: fix a missing check of devm_reset_control_get' (git-fixes).
- Revert 'x86/kvm: fix vcpu-id indexed array sizes' (git-fixes).
- rndis_host: set proper input size for OID_GEN_PHYSICAL_MEDIUM request (git-fixes).
- rsi: fix control-message timeout (git-fixes).
- rsi: Fix module dev_oper_mode parameter description (git-fixes).
- rsi: stop thread firstly in rsi_91x_init() error handling (git-fixes).
- rtl8187: fix control-message timeouts (git-fixes).
- s390/dasd: fix use after free in dasd path handling (git-fixes).
- s390/pci: fix use after free of zpci_dev (git-fixes).
- s390/pci: fix zpci_zdev_put() on reserve (git-fixes).
- s390/qeth: fix deadlock during failing recovery (git-fixes).
- s390/qeth: Fix deadlock in remove_discipline (git-fixes).
- s390/qeth: fix NULL deref in qeth_clear_working_pool_list() (git-fixes).
- s390/topology: clear thread/group maps for offline cpus (git-fixes).
- scsi: be2iscsi: Fix an error handling path in beiscsi_dev_probe() (git-fixes).
- scsi: BusLogic: Fix missing pr_cont() use (git-fixes).
- scsi: core: Fix spelling in a source code comment (git-fixes).
- scsi: csiostor: Add module softdep on cxgb4 (git-fixes).
- scsi: csiostor: Uninitialized data in csio_ln_vnp_read_cbfn() (git-fixes).
- scsi: dc395: Fix error case unwinding (git-fixes).
- scsi: fdomain: Fix error return code in fdomain_probe() (git-fixes).
- scsi: FlashPoint: Rename si_flags field (git-fixes).
- scsi: iscsi: Fix iface sysfs attr detection (git-fixes).
- scsi: libsas: Use _safe() loop in sas_resume_port() (git-fixes).
- scsi: mpt3sas: Fix error return value in _scsih_expander_add() (git-fixes).
- scsi: qedf: Add pointer checks in qedf_update_link_speed() (git-fixes).
- scsi: qedf: Fix error codes in qedf_alloc_global_queues() (git-fixes).
- scsi: qedi: Fix error codes in qedi_alloc_global_queues() (git-fixes).
- scsi: qla2xxx: Fix a memory leak in an error path of qla2x00_process_els() (git-fixes).
- scsi: qla2xxx: Make sure that aborted commands are freed (git-fixes).
- scsi: smartpqi: Fix an error code in pqi_get_raid_map() (git-fixes).
- scsi: snic: Fix an error message (git-fixes).
- scsi: ufs-pci: Add quirk for broken auto-hibernate for Intel EHL (git-fixes).
- scsi: ufs: ufshcd-pltfrm: Fix memory leak due to probe defer (git-fixes).
- serial: 8250_dw: Drop wrong use of ACPI_PTR() (git-fixes).
- serial: xilinx_uartps: Fix race condition causing stuck TX (git-fixes).
- staging: r8712u: fix control-message timeout (git-fixes).
- staging: rtl8192u: fix control-message timeouts (git-fixes).
- stmmac: platform: Fix signedness bug in stmmac_probe_config_dt() (git-fixes).
- swiotlb: add a IO_TLB_SIZE define (bsc#1191851).
- swiotlb: clean up swiotlb_tbl_unmap_single (bsc#1191851).
- swiotlb: do not modify orig_addr in swiotlb_tbl_sync_single (bsc#1191851).
- swiotlb: factor out an io_tlb_offset helper (bsc#1191851).
- swiotlb: factor out a nr_slots helper (bsc#1191851).
- swiotlb: refactor swiotlb_tbl_map_single (bsc#1191851).
- swiotlb: respect min_align_mask (bsc#1191851).
- swiotlb: Split size parameter to map/unmap APIs (bsc#1191851).
- tpm: Check for integer overflow in tpm2_map_response_body() (git-fixes).
- tracing: Increase PERF_MAX_TRACE_SIZE to handle Sentinel1 and docker together (bsc#1192745).
- Update config files: Add CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set
- Update patches.suse/NFS-Do-uncached-readdir-when-we-re-seeking-a-cookie-.patch (bsc#1191628 bsc#1192549). dir_cookie is a pointer to the cookie in older kernels, not the cookie itself.
- Update patch reference for AMDGPU fix (bsc#1180749)
- usb: gadget: hid: fix error code in do_config() (git-fixes).
- USB: iowarrior: fix control-message timeouts (git-fixes).
- usb: max-3421: Use driver data instead of maintaining a list of bound devices (git-fixes).
- usb: musb: Balance list entry in musb_gadget_queue (git-fixes).
- usbnet: fix error return code in usbnet_probe() (git-fixes).
- usbnet: sanity check for maxpacket (git-fixes).
- USB: serial: keyspan: fix memleak on probe errors (git-fixes).
- video: fbdev: chipsfb: use memset_io() instead of memset() (git-fixes).
- virtio-gpu: fix possible memory allocation failure (git-fixes).
- wcn36xx: Add ability for wcn36xx_smd_dump_cmd_req to pass two's complement (git-fixes).
- wcn36xx: add proper DMA memory barriers in rx path (git-fixes).
- wcn36xx: Fix HT40 capability for 2Ghz band (git-fixes).
- x86/ioapic: Force affinity setup before startup (bsc#1152489).
- x86/msi: Force affinity setup before startup (bsc#1152489).
- x86/reboot: Limit Dell Optiplex 990 quirk to early BIOS versions (bsc#1152489).
- x86/sme: Use #define USE_EARLY_PGTABLE_L5 in mem_encrypt_identity.c (bsc#1152489).
- x86/xen: Mark cpu_bringup_and_idle() as dead_end_function (git-fixes).
- xen: Fix implicit type conversion (git-fixes).
- xen-pciback: Fix return in pm_ctrl_init() (git-fixes).
- xfs: do not allow log writes if the data device is readonly (bsc#1192229).
Patchnames: SUSE-2021-3806,SUSE-SLE-Module-Public-Cloud-15-SP3-2021-3806
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.8 (Medium)
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.5 (Medium)
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.7 (Medium)
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
69 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/s… | self |
| https://www.suse.com/support/update/announcement/… | self |
| https://lists.suse.com/pipermail/sle-security-upd… | self |
| https://bugzilla.suse.com/1094840 | self |
| https://bugzilla.suse.com/1133021 | self |
| https://bugzilla.suse.com/1152489 | self |
| https://bugzilla.suse.com/1154353 | self |
| https://bugzilla.suse.com/1157177 | self |
| https://bugzilla.suse.com/1167773 | self |
| https://bugzilla.suse.com/1169263 | self |
| https://bugzilla.suse.com/1170269 | self |
| https://bugzilla.suse.com/1176940 | self |
| https://bugzilla.suse.com/1180749 | self |
| https://bugzilla.suse.com/1184924 | self |
| https://bugzilla.suse.com/1188601 | self |
| https://bugzilla.suse.com/1190523 | self |
| https://bugzilla.suse.com/1190795 | self |
| https://bugzilla.suse.com/1191628 | self |
| https://bugzilla.suse.com/1191790 | self |
| https://bugzilla.suse.com/1191851 | self |
| https://bugzilla.suse.com/1191958 | self |
| https://bugzilla.suse.com/1191961 | self |
| https://bugzilla.suse.com/1191980 | self |
| https://bugzilla.suse.com/1192045 | self |
| https://bugzilla.suse.com/1192217 | self |
| https://bugzilla.suse.com/1192229 | self |
| https://bugzilla.suse.com/1192267 | self |
| https://bugzilla.suse.com/1192273 | self |
| https://bugzilla.suse.com/1192288 | self |
| https://bugzilla.suse.com/1192328 | self |
| https://bugzilla.suse.com/1192375 | self |
| https://bugzilla.suse.com/1192473 | self |
| https://bugzilla.suse.com/1192549 | self |
| https://bugzilla.suse.com/1192718 | self |
| https://bugzilla.suse.com/1192740 | self |
| https://bugzilla.suse.com/1192745 | self |
| https://bugzilla.suse.com/1192750 | self |
| https://bugzilla.suse.com/1192753 | self |
| https://bugzilla.suse.com/1192758 | self |
| https://bugzilla.suse.com/1192781 | self |
| https://bugzilla.suse.com/1192802 | self |
| https://bugzilla.suse.com/1192896 | self |
| https://bugzilla.suse.com/1192906 | self |
| https://bugzilla.suse.com/1192918 | self |
| https://www.suse.com/security/cve/CVE-2021-0941/ | self |
| https://www.suse.com/security/cve/CVE-2021-20322/ | self |
| https://www.suse.com/security/cve/CVE-2021-31916/ | self |
| https://www.suse.com/security/cve/CVE-2021-34981/ | self |
| https://www.suse.com/security/cve/CVE-2021-37159/ | self |
| https://www.suse.com/security/cve/CVE-2021-43389/ | self |
| https://www.suse.com/security/cve/CVE-2021-0941 | external |
| https://bugzilla.suse.com/1192045 | external |
| https://bugzilla.suse.com/1192048 | external |
| https://www.suse.com/security/cve/CVE-2021-20322 | external |
| https://bugzilla.suse.com/1191790 | external |
| https://bugzilla.suse.com/1191813 | external |
| https://bugzilla.suse.com/1193290 | external |
| https://www.suse.com/security/cve/CVE-2021-31916 | external |
| https://bugzilla.suse.com/1192781 | external |
| https://www.suse.com/security/cve/CVE-2021-34981 | external |
| https://bugzilla.suse.com/1191961 | external |
| https://bugzilla.suse.com/1192595 | external |
| https://bugzilla.suse.com/1196722 | external |
| https://bugzilla.suse.com/1212298 | external |
| https://www.suse.com/security/cve/CVE-2021-37159 | external |
| https://bugzilla.suse.com/1188601 | external |
| https://www.suse.com/security/cve/CVE-2021-43389 | external |
| https://bugzilla.suse.com/1191958 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\n\nThe SUSE Linux Enterprise 15 SP3 kernel for Azure was updated to receive various security and bugfixes.\n\n\nThe following security bugs were fixed:\n\n- Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past (jsc#SLE-22573)\n\n You can reenable via systemctl setting /proc/sys/kernel/unprivileged_bpf_disabled to 0. (kernel.unprivileged_bpf_disabled = 0)\n\n- CVE-2021-0941: In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192045).\n- CVE-2021-31916: An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel A bound check failure allowed an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability (bnc#1192781).\n- CVE-2021-20322: Make the ipv4 and ipv6 ICMP exception caches less predictive to avoid information leaks about UDP ports in use. (bsc#1191790)\n- CVE-2021-34981: Fixed file refcounting in cmtp when cmtp_attach_device fails (bsc#1191961).\n- CVE-2021-43389: There was an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c (bnc#1191958).\n- CVE-2021-37159: hso_free_net_device in drivers/net/usb/hso.c called unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free (bnc#1188601).\n\nThe following non-security bugs were fixed:\n\n- ABI: sysfs-kernel-slab: Document some stats (git-fixes).\n- ALSA: hda: fix general protection fault in azx_runtime_idle (git-fixes).\n- ALSA: hda: Free card instance properly at probe errors (git-fixes).\n- ALSA: hda/realtek: Fix mic mute LED for the HP Spectre x360 14 (git-fixes).\n- ALSA: hda: Reduce udelay() at SKL+ position reporting (git-fixes).\n- ALSA: hda: Use position buffer for SKL+ again (git-fixes).\n- ALSA: ua101: fix division by zero at probe (git-fixes).\n- ALSA: uapi: Fix a C++ style comment in asound.h (git-fixes).\n- ALSA: usb-audio: Add Audient iD14 to mixer map quirk table (git-fixes).\n- ALSA: usb-audio: Add minimal-mute notion in dB mapping table (bsc#1192375).\n- ALSA: usb-audio: Add Schiit Hel device to mixer map quirk table (git-fixes).\n- ALSA: usb-audio: Fix dB level of Bose Revolve+ SoundLink (bsc#1192375).\n- ALSA: usb-audio: Use int for dB map values (bsc#1192375).\n- ARM: socfpga: Fix crash with CONFIG_FORTIRY_SOURCE (bsc#1192473).\n- ASoC: cs42l42: Correct some register default values (git-fixes).\n- ASoC: cs42l42: Defer probe if request_threaded_irq() returns EPROBE_DEFER (git-fixes).\n- ASoC: cs42l42: Do not set defaults for volatile registers (git-fixes).\n- ASoC: dt-bindings: cs42l42: Correct description of ts-inv (git-fixes).\n- ASoC: mediatek: mt8195: Remove unsued irqs_lock (git-fixes).\n- ASoC: rockchip: Use generic dmaengine code (git-fixes).\n- ASoC: SOF: topology: do not power down primary core during topology removal (git-fixes).\n- ASoC: topology: Fix stub for snd_soc_tplg_component_remove() (git-fixes).\n- ata: sata_mv: Fix the error handling of mv_chip_id() (git-fixes).\n- ath10k: fix control-message timeout (git-fixes).\n- ath10k: fix division by zero in send path (git-fixes).\n- ath10k: fix max antenna gain unit (git-fixes).\n- ath10k: Fix missing frame timestamp for beacon/probe-resp (git-fixes).\n- ath10k: sdio: Add missing BH locking around napi_schdule() (git-fixes).\n- ath6kl: fix control-message timeout (git-fixes).\n- ath6kl: fix division by zero in send path (git-fixes).\n- ath9k: Fix potential interrupt storm on queue reset (git-fixes).\n- auxdisplay: ht16k33: Connect backlight to fbdev (git-fixes).\n- auxdisplay: ht16k33: Fix frame buffer device blanking (git-fixes).\n- auxdisplay: img-ascii-lcd: Fix lock-up when displaying empty string (git-fixes).\n- b43: fix a lower bounds test (git-fixes).\n- b43legacy: fix a lower bounds test (git-fixes).\n- blacklist.conf: 5c9d706f6133 (\u0027bpf: Fix BPF_LSM kconfig symbol dependency\u0027) Not needed since 30897832d8b9 (\u0027bpf: Allow local storage to be used from LSM programs\u0027) is not backported.\n- Bluetooth: btmtkuart: fix a memleak in mtk_hci_wmt_sync (git-fixes).\n- Bluetooth: fix init and cleanup of sco_conn.timeout_work (git-fixes).\n- bnxt_en: Fix TX timeout when TX ring size is set to the smallest (git-fixes).\n- bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22573)\n- bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22574)\n- bpf: Disallow unprivileged bpf by default (jsc#SLE-22573).\n- bpf: Disallow unprivileged bpf by default (jsc#SLE-22574).\n- bpf: Fix BPF_JIT kconfig symbol dependency (git-fixes jsc#SLE-22574).\n- bpf: Fix potential race in tail call compatibility check (git-fixes).\n- bpf, kconfig: Add consolidated menu entry for bpf with core options (jsc#SLE-22574).\n- btrfs: block-group: Rework documentation of check_system_chunk function (bsc#1192896).\n- btrfs: fix deadlock between chunk allocation and chunk btree modifications (bsc#1192896).\n- btrfs: fix memory ordering between normal and ordered work functions (git-fixes).\n- btrfs: update comments for chunk allocation -ENOSPC cases (bsc#1192896).\n- cgroup/cpuset: Change references of cpuset_mutex to cpuset_rwsem (git-fixes).\n- config: disable unprivileged BPF by default (jsc#SLE-22573)\n- crypto: caam - disable pkc for non-E SoCs (git-fixes).\n- crypto: qat - detect PFVF collision after ACK (git-fixes).\n- crypto: qat - disregard spurious PFVF interrupts (git-fixes).\n- driver core: add a min_align_mask field to struct device_dma_parameters (bsc#1191851).\n- drm/amdgpu/display: add quirk handling for stutter mode (git-fixes).\n- drm/amdgpu: fix warning for overflow check (git-fixes).\n- drm/amdgpu/gmc6: fix DMA mask from 44 to 40 bits (git-fixes).\n- drm/i915: Introduce intel_hpd_hotplug_irqs() (bsc#1192758).\n- drm/msm: Fix potential NULL dereference in DPU SSPP (git-fixes).\n- drm/msm: potential error pointer dereference in init() (git-fixes).\n- drm/msm: uninitialized variable in msm_gem_import() (git-fixes).\n- drm: prevent spectre issue in vmw_execbuf_ioctl (bsc#1192802).\n- drm/sun4i: Fix macros in sun8i_csc.h (git-fixes).\n- drm/ttm: stop calling tt_swapin in vm_access (git-fixes).\n- drm/v3d: fix wait for TMU write combiner flush (git-fixes).\n- EDAC/amd64: Set proper family type for Family 19h Models 20h-2Fh (bsc#1192288).\n- EDAC/sb_edac: Fix top-of-high-memory value for Broadwell/Haswell (bsc#1152489).\n- Eradicate Patch-mainline: No The pre-commit check can reject this deprecated tag then.\n- exfat: fix erroneous discard when clear cluster bit (git-fixes).\n- exfat: handle wrong stream entry size in exfat_readdir() (git-fixes).\n- exfat: properly set s_time_gran (bsc#1192328).\n- exfat: truncate atimes to 2s granularity (bsc#1192328).\n- firmware/psci: fix application of sizeof to pointer (git-fixes).\n- ftrace: Fix scripts/recordmcount.pl due to new binutils (bsc#1192267).\n- fuse: fix page stealing (bsc#1192718).\n- genirq: Provide IRQCHIP_AFFINITY_PRE_STARTUP (bsc#1152489).\n- gpio: mpc8xxx: Use \u0027devm_gpiochip_add_data()\u0027 to simplify the code and avoid a leak (git-fixes).\n- gpio/rockchip: add driver for rockchip gpio (bsc#1192217).\n- gpio/rockchip: drop irq_gc_lock/irq_gc_unlock for irq set type (bsc#1192217).\n- gpio/rockchip: extended debounce support is only available on v2 (bsc#1192217).\n- gpio/rockchip: fetch deferred output settings on probe (bsc#1192217).\n- gpio/rockchip: fix get_direction value handling (bsc#1192217).\n- gpio/rockchip: support next version gpio controller (bsc#1192217).\n- gpio/rockchip: use struct rockchip_gpio_regs for gpio controller (bsc#1192217).\n- gve: Avoid freeing NULL pointer (git-fixes).\n- gve: Correct available tx qpl check (git-fixes).\n- gve: fix gve_get_stats() (git-fixes).\n- gve: Properly handle errors in gve_assign_qpl (bsc#1176940).\n- gve: report 64bit tx_bytes counter from gve_handle_report_stats() (bsc#1176940).\n- HID: u2fzero: clarify error check and length calculations (git-fixes).\n- HID: u2fzero: properly handle timeouts in usb_submit_urb (git-fixes).\n- hwmon: Fix possible memleak in __hwmon_device_register() (git-fixes).\n- hwmon: (pmbus/lm25066) Add offset coefficients (git-fixes).\n- hwmon: (pmbus/lm25066) Let compiler determine outer dimension of lm25066_coeff (git-fixes).\n- hwrng: mtk - Force runtime pm ops for sleep ops (git-fixes).\n- i40e: Fix ATR queue selection (git-fixes).\n- i40e: fix endless loop under rtnl (git-fixes).\n- i40e: Fix freeing of uninitialized misc IRQ vector (git-fixes).\n- iavf: fix double unlock of crit_lock (git-fixes).\n- ibmvnic: check failover_pending in login response (bsc#1190523 ltc#194510).\n- ibmvnic: delay complete() (bsc#1094840 ltc#167098 git-fixes).\n- ibmvnic: do not stop queue in xmit (bsc#1192273 ltc#194629).\n- ibmvnic: Process crqs after enabling interrupts (bsc#1192273 ltc#194629).\n- ice: Add missing E810 device ids (jsc#SLE-7966 bsc#1157177).\n- iio: dac: ad5446: Fix ad5622_write() return value (git-fixes).\n- Input: elantench - fix misreporting trackpoint coordinates (bsc#1192918).\n- Input: i8042 - Add quirk for Fujitsu Lifebook T725 (bsc#1191980).\n- ionic: do not remove netdev-\u003edev_addr when syncing uc list (bsc#1167773).\n- iwlwifi: mvm: fix some kerneldoc issues (git-fixes).\n- ixgbe: Fix NULL pointer dereference in ixgbe_xdp_setup (git-fixes).\n- kABI: Fix kABI after 36950f2da1ea (bsc#1191851).\n- kernel-*-subpackage: Add dependency on kernel scriptlets (bsc#1192740).\n- KVM: s390: extend kvm_s390_shadow_fault to return entry pointer (bsc#1133021).\n- KVM: s390: index kvm-\u003earch.idle_mask by vcpu_idx (bsc#1133021).\n- KVM: s390: split kvm_s390_logical_to_effective (bsc#1133021).\n- KVM: s390: VSIE: correctly handle MVPG when in VSIE (bsc#1133021).\n- libertas: Fix possible memory leak in probe and disconnect (git-fixes).\n- libertas_tf: Fix possible memory leak in probe and disconnect (git-fixes).\n- media: cedrus: Fix SUNXI tile size calculation (git-fixes).\n- media: cx23885: Fix snd_card_free call on null card pointer (git-fixes).\n- media: cxd2880-spi: Fix a null pointer dereference on error handling path (git-fixes).\n- media: dvb-frontends: mn88443x: Handle errors of clk_prepare_enable() (git-fixes).\n- media: dvb-usb: fix ununit-value in az6027_rc_query (git-fixes).\n- media: em28xx: add missing em28xx_close_extension (git-fixes).\n- media: em28xx: Do not use ops-\u003esuspend if it is NULL (git-fixes).\n- media: i2c: ths8200 needs V4L2_ASYNC (git-fixes).\n- media: ite-cir: IR receiver stop working after receive overflow (git-fixes).\n- media: mtk-vpu: Fix a resource leak in the error handling path of \u0027mtk_vpu_probe()\u0027 (git-fixes).\n- media: mxl111sf: change mutex_init() location (git-fixes).\n- media: radio-wl1273: Avoid card name truncation (git-fixes).\n- media: si470x: Avoid card name truncation (git-fixes).\n- media: staging/intel-ipu3: css: Fix wrong size comparison imgu_css_fw_init (git-fixes).\n- media: TDA1997x: handle short reads of hdmi info frame (git-fixes).\n- media: tm6000: Avoid card name truncation (git-fixes).\n- media: v4l2-ioctl: Fix check_ext_ctrls (git-fixes).\n- media: v4l2-ioctl: S_CTRL output the right value (git-fixes).\n- memory: fsl_ifc: fix leak of irq and nand_irq in fsl_ifc_ctrl_probe (git-fixes).\n- memstick: avoid out-of-range warning (git-fixes).\n- memstick: jmb38x_ms: use appropriate free function in jmb38x_ms_alloc_host() (git-fixes).\n- mlx5: count all link events (git-fixes).\n- mlxsw: thermal: Fix out-of-bounds memory accesses (git-fixes).\n- mmc: mxs-mmc: disable regulator on error and in the remove function (git-fixes).\n- mmc: sdhci: Map more voltage level to SDHCI_POWER_330 (git-fixes).\n- mmc: sdhci-omap: Fix NULL pointer exception if regulator is not configured (git-fixes).\n- mm/hugetlb: initialize hugetlb_usage in mm_init (bsc#1192906).\n- Move upstreamed sound fix into sorted section\n- mt76: mt7615: fix endianness warning in mt7615_mac_write_txwi (git-fixes).\n- mt76: mt76x02: fix endianness warnings in mt76x02_mac.c (git-fixes).\n- mt76: mt7915: fix muar_idx in mt7915_mcu_alloc_sta_req() (git-fixes).\n- mt76: mt7915: fix possible infinite loop release semaphore (git-fixes).\n- mt76: mt7915: fix sta_rec_wtbl tag len (git-fixes).\n- mwifiex: fix division by zero in fw download path (git-fixes).\n- mwifiex: Send DELBA requests according to spec (git-fixes).\n- net/af_unix: fix a data-race in unix_dgram_poll (bsc#1154353).\n- net: bridge: use nla_total_size_64bit() in br_get_linkxstats_size() (git-fixes).\n- net: dsa: felix: re-enable TX flow control in ocelot_port_flush() (git-fixes).\n- net: hns3: fix vf reset workqueue cannot exit (bsc#1154353).\n- net/mlx4_en: Do not allow aRFS for encapsulated packets (git-fixes).\n- net/mlx4_en: Resolve bad operstate value (git-fixes).\n- net/mlx5e: Mutually exclude RX-FCS and RX-port-timestamp (git-fixes).\n- net/mlx5: Fix unpublish devlink parameters (jsc#SLE-8464).\n- net/mlx5: FWTrace, cancel work on alloc pd error flow (git-fixes).\n- net: mscc: ocelot: fix hardware timestamp dequeue logic.\n- net: mscc: ocelot: warn when a PTP IRQ is raised for an unknown skb (git-fixes).\n- net/smc: Correct smc link connection counter in case of smc client (git-fixes).\n- net/smc: fix \u0027workqueue leaked lock\u0027 in smc_conn_abort_work (git-fixes).\n- nvme-pci: set min_align_mask (bsc#1191851).\n- ocfs2: do not zero pages beyond i_size (bsc#1190795).\n- ocfs2: fix data corruption on truncate (bsc#1190795).\n- PCI: aardvark: Do not clear status bits of masked interrupts (git-fixes).\n- PCI: aardvark: Do not spam about PIO Response Status (git-fixes).\n- PCI: aardvark: Do not unmask unused interrupts (git-fixes).\n- PCI: aardvark: Fix checking for link up via LTSSM state (git-fixes).\n- PCI: aardvark: Fix reporting Data Link Layer Link Active (git-fixes).\n- PCI: aardvark: Fix return value of MSI domain .alloc() method (git-fixes).\n- PCI: aardvark: Read all 16-bits from PCIE_MSI_PAYLOAD_REG (git-fixes).\n- PCI/ACPI: Check for _OSC support in acpi_pci_osc_control_set() (bsc#1169263).\n- PCI/ACPI: Clarify message about _OSC failure (bsc#1169263).\n- PCI/ACPI: Move _OSC query checks to separate function (bsc#1169263).\n- PCI/ACPI: Move supported and control calculations to separate functions (bsc#1169263).\n- PCI/ACPI: Remove OSC_PCI_SUPPORT_MASKS and OSC_PCI_CONTROL_MASKS (bsc#1169263).\n- PCI/ACPI: Remove unnecessary osc_lock (bsc#1169263).\n- PCI: pci-bridge-emul: Fix emulation of W1C bits (git-fixes).\n- PCI: uniphier: Serialize INTx masking/unmasking and fix the bit operation (git-fixes).\n- pinctrl: core: fix possible memory leak in pinctrl_enable() (git-fixes).\n- pinctrl: pinctrl-rockchip: Fix a bunch of kerneldoc misdemeanours (bsc#1192217).\n- pinctrl/rockchip: add a queue for deferred pin output settings on probe (bsc#1192217).\n- pinctrl/rockchip: add pinctrl device to gpio bank struct (bsc#1192217).\n- pinctrl: rockchip: add rk3308 SoC support (bsc#1192217).\n- pinctrl: rockchip: add support for rk3568 (bsc#1192217).\n- pinctrl/rockchip: always enable clock for gpio controller (bsc#1192217).\n- pinctrl: rockchip: clear int status when driver probed (bsc#1192217).\n- pinctrl: rockchip: create irq mapping in gpio_to_irq (bsc#1192217).\n- pinctrl: rockchip: do coding style for mux route struct (bsc#1192217).\n- pinctrl/rockchip: drop the gpio related codes (bsc#1192217).\n- pinctrl: rockchip: enable gpio pclk for rockchip_gpio_to_irq (bsc#1192217).\n- pinctrl: rockchip: make driver be tristate module (bsc#1192217).\n- pinctrl: rockchip: Replace HTTP links with HTTPS ones (bsc#1192217).\n- pinctrl: rockchip: return ENOMEM instead of EINVAL if allocation fails (bsc#1192217).\n- pinctrl/rockchip: separate struct rockchip_pin_bank to a head file (bsc#1192217).\n- platform/x86: thinkpad_acpi: Fix bitwise vs. logical warning (git-fixes).\n- PM: sleep: Do not let \u0027syscore\u0027 devices runtime-suspend during system transitions (git-fixes).\n- power: supply: bq27xxx: Fix kernel crash on IRQ handler register error (git-fixes).\n- power: supply: max17042_battery: Prevent int underflow in set_soc_threshold (git-fixes).\n- power: supply: max17042_battery: use VFSOC for capacity when no rsns (git-fixes).\n- printk/console: Allow to disable console output by using console=\u0027\u0027 or console=null (bsc#1192753).\n- printk: handle blank console arguments passed in (bsc#1192753).\n- qed: Fix missing error code in qed_slowpath_start() (git-fixes).\n- qed: Handle management FW error (git-fixes).\n- qed: rdma - do not wait for resources under hw error recovery flow (git-fixes).\n- qtnfmac: fix potential Spectre vulnerabilities (bsc#1192802).\n- r8152: add a helper function about setting EEE (git-fixes).\n- r8152: Add macpassthru support for ThinkPad Thunderbolt 3 Dock Gen 2 (git-fixes).\n- r8152: Disable PLA MCU clock speed down (git-fixes).\n- r8152: disable U2P3 for RTL8153B (git-fixes).\n- r8152: divide the tx and rx bottom functions (git-fixes).\n- r8152: do not enable U1U2 with USB_SPEED_HIGH for RTL8153B (git-fixes).\n- r8152: fix runtime resume for linking change (git-fixes).\n- r8152: replace array with linking list for rx information (git-fixes).\n- r8152: reset flow control patch when linking on for RTL8153B (git-fixes).\n- r8152: saving the settings of EEE (git-fixes).\n- r8152: separate the rx buffer size (git-fixes).\n- r8152: use alloc_pages for rx buffer (git-fixes).\n- random: fix crash on multiple early calls to add_bootloader_randomness() (bsc#1184924)\n- README.BRANCH: Add Oscar Salvador as SLE15-SP3 maintainer\n- regulator: dt-bindings: samsung,s5m8767: correct s5m8767,pmic-buck-default-dvs-idx property (git-fixes).\n- regulator: s5m8767: do not use reset value as DVS voltage if GPIO DVS is disabled (git-fixes).\n- Revert \u0027ibmvnic: check failover_pending in login response\u0027 (bsc#1190523 ltc#194510).\n- Revert \u0027platform/x86: i2c-multi-instantiate: Do not create platform device for INT3515 ACPI nodes\u0027 (git-fixes).\n- Revert \u0027r8152: adjust the settings about MAC clock speed down for RTL8153\u0027 (git-fixes).\n- Revert \u0027scsi: ufs: fix a missing check of devm_reset_control_get\u0027 (git-fixes).\n- Revert \u0027x86/kvm: fix vcpu-id indexed array sizes\u0027 (git-fixes).\n- rndis_host: set proper input size for OID_GEN_PHYSICAL_MEDIUM request (git-fixes).\n- rsi: fix control-message timeout (git-fixes).\n- rsi: Fix module dev_oper_mode parameter description (git-fixes).\n- rsi: stop thread firstly in rsi_91x_init() error handling (git-fixes).\n- rtl8187: fix control-message timeouts (git-fixes).\n- s390/dasd: fix use after free in dasd path handling (git-fixes).\n- s390/pci: fix use after free of zpci_dev (git-fixes).\n- s390/pci: fix zpci_zdev_put() on reserve (git-fixes).\n- s390/qeth: fix deadlock during failing recovery (git-fixes).\n- s390/qeth: Fix deadlock in remove_discipline (git-fixes).\n- s390/qeth: fix NULL deref in qeth_clear_working_pool_list() (git-fixes).\n- s390/topology: clear thread/group maps for offline cpus (git-fixes).\n- scsi: be2iscsi: Fix an error handling path in beiscsi_dev_probe() (git-fixes).\n- scsi: BusLogic: Fix missing pr_cont() use (git-fixes).\n- scsi: core: Fix spelling in a source code comment (git-fixes).\n- scsi: csiostor: Add module softdep on cxgb4 (git-fixes).\n- scsi: csiostor: Uninitialized data in csio_ln_vnp_read_cbfn() (git-fixes).\n- scsi: dc395: Fix error case unwinding (git-fixes).\n- scsi: fdomain: Fix error return code in fdomain_probe() (git-fixes).\n- scsi: FlashPoint: Rename si_flags field (git-fixes).\n- scsi: iscsi: Fix iface sysfs attr detection (git-fixes).\n- scsi: libsas: Use _safe() loop in sas_resume_port() (git-fixes).\n- scsi: mpt3sas: Fix error return value in _scsih_expander_add() (git-fixes).\n- scsi: qedf: Add pointer checks in qedf_update_link_speed() (git-fixes).\n- scsi: qedf: Fix error codes in qedf_alloc_global_queues() (git-fixes).\n- scsi: qedi: Fix error codes in qedi_alloc_global_queues() (git-fixes).\n- scsi: qla2xxx: Fix a memory leak in an error path of qla2x00_process_els() (git-fixes).\n- scsi: qla2xxx: Make sure that aborted commands are freed (git-fixes).\n- scsi: smartpqi: Fix an error code in pqi_get_raid_map() (git-fixes).\n- scsi: snic: Fix an error message (git-fixes).\n- scsi: ufs-pci: Add quirk for broken auto-hibernate for Intel EHL (git-fixes).\n- scsi: ufs: ufshcd-pltfrm: Fix memory leak due to probe defer (git-fixes).\n- serial: 8250_dw: Drop wrong use of ACPI_PTR() (git-fixes).\n- serial: xilinx_uartps: Fix race condition causing stuck TX (git-fixes).\n- staging: r8712u: fix control-message timeout (git-fixes).\n- staging: rtl8192u: fix control-message timeouts (git-fixes).\n- stmmac: platform: Fix signedness bug in stmmac_probe_config_dt() (git-fixes).\n- swiotlb: add a IO_TLB_SIZE define (bsc#1191851).\n- swiotlb: clean up swiotlb_tbl_unmap_single (bsc#1191851).\n- swiotlb: do not modify orig_addr in swiotlb_tbl_sync_single (bsc#1191851).\n- swiotlb: factor out an io_tlb_offset helper (bsc#1191851).\n- swiotlb: factor out a nr_slots helper (bsc#1191851).\n- swiotlb: refactor swiotlb_tbl_map_single (bsc#1191851).\n- swiotlb: respect min_align_mask (bsc#1191851).\n- swiotlb: Split size parameter to map/unmap APIs (bsc#1191851).\n- tpm: Check for integer overflow in tpm2_map_response_body() (git-fixes).\n- tracing: Increase PERF_MAX_TRACE_SIZE to handle Sentinel1 and docker together (bsc#1192745).\n- Update config files: Add CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set\n- Update patches.suse/NFS-Do-uncached-readdir-when-we-re-seeking-a-cookie-.patch (bsc#1191628 bsc#1192549). dir_cookie is a pointer to the cookie in older kernels, not the cookie itself.\n- Update patch reference for AMDGPU fix (bsc#1180749)\n- usb: gadget: hid: fix error code in do_config() (git-fixes).\n- USB: iowarrior: fix control-message timeouts (git-fixes).\n- usb: max-3421: Use driver data instead of maintaining a list of bound devices (git-fixes).\n- usb: musb: Balance list entry in musb_gadget_queue (git-fixes).\n- usbnet: fix error return code in usbnet_probe() (git-fixes).\n- usbnet: sanity check for maxpacket (git-fixes).\n- USB: serial: keyspan: fix memleak on probe errors (git-fixes).\n- video: fbdev: chipsfb: use memset_io() instead of memset() (git-fixes).\n- virtio-gpu: fix possible memory allocation failure (git-fixes).\n- wcn36xx: Add ability for wcn36xx_smd_dump_cmd_req to pass two\u0027s complement (git-fixes).\n- wcn36xx: add proper DMA memory barriers in rx path (git-fixes).\n- wcn36xx: Fix HT40 capability for 2Ghz band (git-fixes).\n- x86/ioapic: Force affinity setup before startup (bsc#1152489).\n- x86/msi: Force affinity setup before startup (bsc#1152489).\n- x86/reboot: Limit Dell Optiplex 990 quirk to early BIOS versions (bsc#1152489).\n- x86/sme: Use #define USE_EARLY_PGTABLE_L5 in mem_encrypt_identity.c (bsc#1152489).\n- x86/xen: Mark cpu_bringup_and_idle() as dead_end_function (git-fixes).\n- xen: Fix implicit type conversion (git-fixes).\n- xen-pciback: Fix return in pm_ctrl_init() (git-fixes).\n- xfs: do not allow log writes if the data device is readonly (bsc#1192229).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-3806,SUSE-SLE-Module-Public-Cloud-15-SP3-2021-3806",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_3806-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:3806-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20213806-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:3806-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-November/009774.html"
},
{
"category": "self",
"summary": "SUSE Bug 1094840",
"url": "https://bugzilla.suse.com/1094840"
},
{
"category": "self",
"summary": "SUSE Bug 1133021",
"url": "https://bugzilla.suse.com/1133021"
},
{
"category": "self",
"summary": "SUSE Bug 1152489",
"url": "https://bugzilla.suse.com/1152489"
},
{
"category": "self",
"summary": "SUSE Bug 1154353",
"url": "https://bugzilla.suse.com/1154353"
},
{
"category": "self",
"summary": "SUSE Bug 1157177",
"url": "https://bugzilla.suse.com/1157177"
},
{
"category": "self",
"summary": "SUSE Bug 1167773",
"url": "https://bugzilla.suse.com/1167773"
},
{
"category": "self",
"summary": "SUSE Bug 1169263",
"url": "https://bugzilla.suse.com/1169263"
},
{
"category": "self",
"summary": "SUSE Bug 1170269",
"url": "https://bugzilla.suse.com/1170269"
},
{
"category": "self",
"summary": "SUSE Bug 1176940",
"url": "https://bugzilla.suse.com/1176940"
},
{
"category": "self",
"summary": "SUSE Bug 1180749",
"url": "https://bugzilla.suse.com/1180749"
},
{
"category": "self",
"summary": "SUSE Bug 1184924",
"url": "https://bugzilla.suse.com/1184924"
},
{
"category": "self",
"summary": "SUSE Bug 1188601",
"url": "https://bugzilla.suse.com/1188601"
},
{
"category": "self",
"summary": "SUSE Bug 1190523",
"url": "https://bugzilla.suse.com/1190523"
},
{
"category": "self",
"summary": "SUSE Bug 1190795",
"url": "https://bugzilla.suse.com/1190795"
},
{
"category": "self",
"summary": "SUSE Bug 1191628",
"url": "https://bugzilla.suse.com/1191628"
},
{
"category": "self",
"summary": "SUSE Bug 1191790",
"url": "https://bugzilla.suse.com/1191790"
},
{
"category": "self",
"summary": "SUSE Bug 1191851",
"url": "https://bugzilla.suse.com/1191851"
},
{
"category": "self",
"summary": "SUSE Bug 1191958",
"url": "https://bugzilla.suse.com/1191958"
},
{
"category": "self",
"summary": "SUSE Bug 1191961",
"url": "https://bugzilla.suse.com/1191961"
},
{
"category": "self",
"summary": "SUSE Bug 1191980",
"url": "https://bugzilla.suse.com/1191980"
},
{
"category": "self",
"summary": "SUSE Bug 1192045",
"url": "https://bugzilla.suse.com/1192045"
},
{
"category": "self",
"summary": "SUSE Bug 1192217",
"url": "https://bugzilla.suse.com/1192217"
},
{
"category": "self",
"summary": "SUSE Bug 1192229",
"url": "https://bugzilla.suse.com/1192229"
},
{
"category": "self",
"summary": "SUSE Bug 1192267",
"url": "https://bugzilla.suse.com/1192267"
},
{
"category": "self",
"summary": "SUSE Bug 1192273",
"url": "https://bugzilla.suse.com/1192273"
},
{
"category": "self",
"summary": "SUSE Bug 1192288",
"url": "https://bugzilla.suse.com/1192288"
},
{
"category": "self",
"summary": "SUSE Bug 1192328",
"url": "https://bugzilla.suse.com/1192328"
},
{
"category": "self",
"summary": "SUSE Bug 1192375",
"url": "https://bugzilla.suse.com/1192375"
},
{
"category": "self",
"summary": "SUSE Bug 1192473",
"url": "https://bugzilla.suse.com/1192473"
},
{
"category": "self",
"summary": "SUSE Bug 1192549",
"url": "https://bugzilla.suse.com/1192549"
},
{
"category": "self",
"summary": "SUSE Bug 1192718",
"url": "https://bugzilla.suse.com/1192718"
},
{
"category": "self",
"summary": "SUSE Bug 1192740",
"url": "https://bugzilla.suse.com/1192740"
},
{
"category": "self",
"summary": "SUSE Bug 1192745",
"url": "https://bugzilla.suse.com/1192745"
},
{
"category": "self",
"summary": "SUSE Bug 1192750",
"url": "https://bugzilla.suse.com/1192750"
},
{
"category": "self",
"summary": "SUSE Bug 1192753",
"url": "https://bugzilla.suse.com/1192753"
},
{
"category": "self",
"summary": "SUSE Bug 1192758",
"url": "https://bugzilla.suse.com/1192758"
},
{
"category": "self",
"summary": "SUSE Bug 1192781",
"url": "https://bugzilla.suse.com/1192781"
},
{
"category": "self",
"summary": "SUSE Bug 1192802",
"url": "https://bugzilla.suse.com/1192802"
},
{
"category": "self",
"summary": "SUSE Bug 1192896",
"url": "https://bugzilla.suse.com/1192896"
},
{
"category": "self",
"summary": "SUSE Bug 1192906",
"url": "https://bugzilla.suse.com/1192906"
},
{
"category": "self",
"summary": "SUSE Bug 1192918",
"url": "https://bugzilla.suse.com/1192918"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-0941 page",
"url": "https://www.suse.com/security/cve/CVE-2021-0941/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-20322 page",
"url": "https://www.suse.com/security/cve/CVE-2021-20322/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-31916 page",
"url": "https://www.suse.com/security/cve/CVE-2021-31916/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-34981 page",
"url": "https://www.suse.com/security/cve/CVE-2021-34981/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-37159 page",
"url": "https://www.suse.com/security/cve/CVE-2021-37159/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-43389 page",
"url": "https://www.suse.com/security/cve/CVE-2021-43389/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2021-11-25T13:19:50Z",
"generator": {
"date": "2021-11-25T13:19:50Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:3806-1",
"initial_release_date": "2021-11-25T13:19:50Z",
"revision_history": [
{
"date": "2021-11-25T13:19:50Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-azure-5.3.18-38.31.1.noarch",
"product": {
"name": "kernel-devel-azure-5.3.18-38.31.1.noarch",
"product_id": "kernel-devel-azure-5.3.18-38.31.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-azure-5.3.18-38.31.1.noarch",
"product": {
"name": "kernel-source-azure-5.3.18-38.31.1.noarch",
"product_id": "kernel-source-azure-5.3.18-38.31.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"product": {
"name": "cluster-md-kmp-azure-5.3.18-38.31.1.x86_64",
"product_id": "cluster-md-kmp-azure-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"product": {
"name": "dlm-kmp-azure-5.3.18-38.31.1.x86_64",
"product_id": "dlm-kmp-azure-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"product": {
"name": "gfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"product_id": "gfs2-kmp-azure-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-5.3.18-38.31.1.x86_64",
"product": {
"name": "kernel-azure-5.3.18-38.31.1.x86_64",
"product_id": "kernel-azure-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-5.3.18-38.31.1.x86_64",
"product": {
"name": "kernel-azure-devel-5.3.18-38.31.1.x86_64",
"product_id": "kernel-azure-devel-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-5.3.18-38.31.1.x86_64",
"product": {
"name": "kernel-azure-extra-5.3.18-38.31.1.x86_64",
"product_id": "kernel-azure-extra-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"product": {
"name": "kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64",
"product_id": "kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-optional-5.3.18-38.31.1.x86_64",
"product": {
"name": "kernel-azure-optional-5.3.18-38.31.1.x86_64",
"product_id": "kernel-azure-optional-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-azure-5.3.18-38.31.1.x86_64",
"product": {
"name": "kernel-syms-azure-5.3.18-38.31.1.x86_64",
"product_id": "kernel-syms-azure-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"product": {
"name": "kselftests-kmp-azure-5.3.18-38.31.1.x86_64",
"product_id": "kselftests-kmp-azure-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"product": {
"name": "ocfs2-kmp-azure-5.3.18-38.31.1.x86_64",
"product_id": "ocfs2-kmp-azure-5.3.18-38.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-azure-5.3.18-38.31.1.x86_64",
"product": {
"name": "reiserfs-kmp-azure-5.3.18-38.31.1.x86_64",
"product_id": "reiserfs-kmp-azure-5.3.18-38.31.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-5.3.18-38.31.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64"
},
"product_reference": "kernel-azure-5.3.18-38.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-5.3.18-38.31.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64"
},
"product_reference": "kernel-azure-devel-5.3.18-38.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-azure-5.3.18-38.31.1.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch"
},
"product_reference": "kernel-devel-azure-5.3.18-38.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-azure-5.3.18-38.31.1.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch"
},
"product_reference": "kernel-source-azure-5.3.18-38.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-5.3.18-38.31.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64"
},
"product_reference": "kernel-syms-azure-5.3.18-38.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-0941",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-0941"
}
],
"notes": [
{
"category": "general",
"text": "In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-154177719References: Upstream kernel",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-0941",
"url": "https://www.suse.com/security/cve/CVE-2021-0941"
},
{
"category": "external",
"summary": "SUSE Bug 1192045 for CVE-2021-0941",
"url": "https://bugzilla.suse.com/1192045"
},
{
"category": "external",
"summary": "SUSE Bug 1192048 for CVE-2021-0941",
"url": "https://bugzilla.suse.com/1192048"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-25T13:19:50Z",
"details": "important"
}
],
"title": "CVE-2021-0941"
},
{
"cve": "CVE-2021-20322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-20322"
}
],
"notes": [
{
"category": "general",
"text": "A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest threat from this vulnerability is to confidentiality and possibly integrity, because software that relies on UDP source port randomization are indirectly affected as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-20322",
"url": "https://www.suse.com/security/cve/CVE-2021-20322"
},
{
"category": "external",
"summary": "SUSE Bug 1191790 for CVE-2021-20322",
"url": "https://bugzilla.suse.com/1191790"
},
{
"category": "external",
"summary": "SUSE Bug 1191813 for CVE-2021-20322",
"url": "https://bugzilla.suse.com/1191813"
},
{
"category": "external",
"summary": "SUSE Bug 1193290 for CVE-2021-20322",
"url": "https://bugzilla.suse.com/1193290"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-25T13:19:50Z",
"details": "important"
}
],
"title": "CVE-2021-20322"
},
{
"cve": "CVE-2021-31916",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-31916"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel before 5.12. A bound check failure allows an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-31916",
"url": "https://www.suse.com/security/cve/CVE-2021-31916"
},
{
"category": "external",
"summary": "SUSE Bug 1192781 for CVE-2021-31916",
"url": "https://bugzilla.suse.com/1192781"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-25T13:19:50Z",
"details": "moderate"
}
],
"title": "CVE-2021-31916"
},
{
"cve": "CVE-2021-34981",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-34981"
}
],
"notes": [
{
"category": "general",
"text": "Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability.\n\nThe specific flaw exists within the CMTP module. The issue results from the lack of validating the existence of an object prior to performing further free operations on the object. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the kernel. Was ZDI-CAN-11977.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-34981",
"url": "https://www.suse.com/security/cve/CVE-2021-34981"
},
{
"category": "external",
"summary": "SUSE Bug 1191961 for CVE-2021-34981",
"url": "https://bugzilla.suse.com/1191961"
},
{
"category": "external",
"summary": "SUSE Bug 1192595 for CVE-2021-34981",
"url": "https://bugzilla.suse.com/1192595"
},
{
"category": "external",
"summary": "SUSE Bug 1196722 for CVE-2021-34981",
"url": "https://bugzilla.suse.com/1196722"
},
{
"category": "external",
"summary": "SUSE Bug 1212298 for CVE-2021-34981",
"url": "https://bugzilla.suse.com/1212298"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-25T13:19:50Z",
"details": "important"
}
],
"title": "CVE-2021-34981"
},
{
"cve": "CVE-2021-37159",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-37159"
}
],
"notes": [
{
"category": "general",
"text": "hso_free_net_device in drivers/net/usb/hso.c in the Linux kernel through 5.13.4 calls unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-37159",
"url": "https://www.suse.com/security/cve/CVE-2021-37159"
},
{
"category": "external",
"summary": "SUSE Bug 1188601 for CVE-2021-37159",
"url": "https://bugzilla.suse.com/1188601"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-25T13:19:50Z",
"details": "moderate"
}
],
"title": "CVE-2021-37159"
},
{
"cve": "CVE-2021-43389",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-43389"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in the Linux kernel before 5.14.15. There is an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-43389",
"url": "https://www.suse.com/security/cve/CVE-2021-43389"
},
{
"category": "external",
"summary": "SUSE Bug 1191958 for CVE-2021-43389",
"url": "https://bugzilla.suse.com/1191958"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-azure-devel-5.3.18-38.31.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-devel-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-source-azure-5.3.18-38.31.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP3:kernel-syms-azure-5.3.18-38.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-25T13:19:50Z",
"details": "moderate"
}
],
"title": "CVE-2021-43389"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…