Vulnerability from csaf_suse
Published
2020-12-07 16:33
Modified
2020-12-07 16:33
Summary
Security update for the Linux Kernel (Live Patch 18 for SLE 15 SP1)

Notes

Title of the patch
Security update for the Linux Kernel (Live Patch 18 for SLE 15 SP1)
Description of the patch
This update for the Linux Kernel 4.12.14-197_67 fixes several issues. The following security issues were fixed: - CVE-2020-25668: Fixed a concurrency use-after-free in con_font_op (bsc#1178622). - CVE-2020-25705: Fixed a flaw which could have allowed an off-path remote user to effectively bypass source port UDP randomization (bsc#1178783).
Patchnames
SUSE-2020-3690,SUSE-SLE-Module-Live-Patching-15-SP1-2020-3690
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).


To clipboard 

{
   document: {
      aggregate_severity: {
         namespace: "https://www.suse.com/support/security/rating/",
         text: "important",
      },
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         text: "Copyright 2024 SUSE LLC. All rights reserved.",
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "en",
      notes: [
         {
            category: "summary",
            text: "Security update for the Linux Kernel (Live Patch 18 for SLE 15 SP1)",
            title: "Title of the patch",
         },
         {
            category: "description",
            text: "This update for the Linux Kernel 4.12.14-197_67 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2020-25668: Fixed a concurrency use-after-free in con_font_op (bsc#1178622).\n- CVE-2020-25705: Fixed a flaw which could have allowed an off-path remote user to effectively bypass source port UDP randomization (bsc#1178783).\n",
            title: "Description of the patch",
         },
         {
            category: "details",
            text: "SUSE-2020-3690,SUSE-SLE-Module-Live-Patching-15-SP1-2020-3690",
            title: "Patchnames",
         },
         {
            category: "legal_disclaimer",
            text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
            title: "Terms of use",
         },
      ],
      publisher: {
         category: "vendor",
         contact_details: "https://www.suse.com/support/security/contact/",
         name: "SUSE Product Security Team",
         namespace: "https://www.suse.com/",
      },
      references: [
         {
            category: "external",
            summary: "SUSE ratings",
            url: "https://www.suse.com/support/security/rating/",
         },
         {
            category: "self",
            summary: "URL of this CSAF notice",
            url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_3690-1.json",
         },
         {
            category: "self",
            summary: "URL for SUSE-SU-2020:3690-1",
            url: "https://www.suse.com/support/update/announcement/2020/suse-su-20203690-1/",
         },
         {
            category: "self",
            summary: "E-Mail link for SUSE-SU-2020:3690-1",
            url: "https://lists.suse.com/pipermail/sle-security-updates/2020-December/007926.html",
         },
         {
            category: "self",
            summary: "SUSE Bug 1178622",
            url: "https://bugzilla.suse.com/1178622",
         },
         {
            category: "self",
            summary: "SUSE Bug 1178783",
            url: "https://bugzilla.suse.com/1178783",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2020-25668 page",
            url: "https://www.suse.com/security/cve/CVE-2020-25668/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2020-25705 page",
            url: "https://www.suse.com/security/cve/CVE-2020-25705/",
         },
      ],
      title: "Security update for the Linux Kernel (Live Patch 18 for SLE 15 SP1)",
      tracking: {
         current_release_date: "2020-12-07T16:33:36Z",
         generator: {
            date: "2020-12-07T16:33:36Z",
            engine: {
               name: "cve-database.git:bin/generate-csaf.pl",
               version: "1",
            },
         },
         id: "SUSE-SU-2020:3690-1",
         initial_release_date: "2020-12-07T16:33:36Z",
         revision_history: [
            {
               date: "2020-12-07T16:33:36Z",
               number: "1",
               summary: "Current version",
            },
         ],
         status: "final",
         version: "1",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "kernel-livepatch-4_12_14-197_67-default-2-2.1.ppc64le",
                        product: {
                           name: "kernel-livepatch-4_12_14-197_67-default-2-2.1.ppc64le",
                           product_id: "kernel-livepatch-4_12_14-197_67-default-2-2.1.ppc64le",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "ppc64le",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "kernel-livepatch-4_12_14-197_67-default-2-2.1.x86_64",
                        product: {
                           name: "kernel-livepatch-4_12_14-197_67-default-2-2.1.x86_64",
                           product_id: "kernel-livepatch-4_12_14-197_67-default-2-2.1.x86_64",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "x86_64",
               },
               {
                  branches: [
                     {
                        category: "product_name",
                        name: "SUSE Linux Enterprise Live Patching 15 SP1",
                        product: {
                           name: "SUSE Linux Enterprise Live Patching 15 SP1",
                           product_id: "SUSE Linux Enterprise Live Patching 15 SP1",
                           product_identification_helper: {
                              cpe: "cpe:/o:suse:sle-module-live-patching:15:sp1",
                           },
                        },
                     },
                  ],
                  category: "product_family",
                  name: "SUSE Linux Enterprise",
               },
            ],
            category: "vendor",
            name: "SUSE",
         },
      ],
      relationships: [
         {
            category: "default_component_of",
            full_product_name: {
               name: "kernel-livepatch-4_12_14-197_67-default-2-2.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP1",
               product_id: "SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_67-default-2-2.1.ppc64le",
            },
            product_reference: "kernel-livepatch-4_12_14-197_67-default-2-2.1.ppc64le",
            relates_to_product_reference: "SUSE Linux Enterprise Live Patching 15 SP1",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "kernel-livepatch-4_12_14-197_67-default-2-2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP1",
               product_id: "SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_67-default-2-2.1.x86_64",
            },
            product_reference: "kernel-livepatch-4_12_14-197_67-default-2-2.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Live Patching 15 SP1",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2020-25668",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2020-25668",
            },
         ],
         notes: [
            {
               category: "general",
               text: "A flaw was found in Linux Kernel because access to the global variable fg_console is not properly synchronized leading to a use after free in con_font_op.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_67-default-2-2.1.ppc64le",
               "SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_67-default-2-2.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2020-25668",
               url: "https://www.suse.com/security/cve/CVE-2020-25668",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178123 for CVE-2020-25668",
               url: "https://bugzilla.suse.com/1178123",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178622 for CVE-2020-25668",
               url: "https://bugzilla.suse.com/1178622",
            },
            {
               category: "external",
               summary: "SUSE Bug 1196914 for CVE-2020-25668",
               url: "https://bugzilla.suse.com/1196914",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_67-default-2-2.1.ppc64le",
                  "SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_67-default-2-2.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_67-default-2-2.1.ppc64le",
                  "SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_67-default-2-2.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2020-12-07T16:33:36Z",
               details: "moderate",
            },
         ],
         title: "CVE-2020-25668",
      },
      {
         cve: "CVE-2020-25705",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2020-25705",
            },
         ],
         notes: [
            {
               category: "general",
               text: "A flaw in ICMP packets in the Linux kernel may allow an attacker to quickly scan open UDP ports. This flaw allows an off-path remote attacker to effectively bypass source port UDP randomization. Software that relies on UDP source port randomization are indirectly affected as well on the Linux Based Products (RUGGEDCOM RM1224: All versions between v5.0 and v6.4, SCALANCE M-800: All versions between v5.0 and v6.4, SCALANCE S615: All versions between v5.0 and v6.4, SCALANCE SC-600: All versions prior to v2.1.3, SCALANCE W1750D: v8.3.0.1, v8.6.0, and v8.7.0, SIMATIC Cloud Connect 7: All versions, SIMATIC MV500 Family: All versions, SIMATIC NET CP 1243-1 (incl. SIPLUS variants): Versions 3.1.39 and later, SIMATIC NET CP 1243-7 LTE EU: Version",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_67-default-2-2.1.ppc64le",
               "SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_67-default-2-2.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2020-25705",
               url: "https://www.suse.com/security/cve/CVE-2020-25705",
            },
            {
               category: "external",
               summary: "SUSE Bug 1175721 for CVE-2020-25705",
               url: "https://bugzilla.suse.com/1175721",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178782 for CVE-2020-25705",
               url: "https://bugzilla.suse.com/1178782",
            },
            {
               category: "external",
               summary: "SUSE Bug 1178783 for CVE-2020-25705",
               url: "https://bugzilla.suse.com/1178783",
            },
            {
               category: "external",
               summary: "SUSE Bug 1191790 for CVE-2020-25705",
               url: "https://bugzilla.suse.com/1191790",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_67-default-2-2.1.ppc64le",
                  "SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_67-default-2-2.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.4,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_67-default-2-2.1.ppc64le",
                  "SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-197_67-default-2-2.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2020-12-07T16:33:36Z",
               details: "important",
            },
         ],
         title: "CVE-2020-25705",
      },
   ],
}


Log in or create an account to share your comment.

Security Advisory comment format.

This schema specifies the format of a comment related to a security advisory.

UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).



Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.