SUSE-SU-2021:2026-1 -- SLES kgraft-patchID: oval:org.secpod.oval:def:89045073 | Date: (C)2021-07-06 (M)2024-04-17 |
Class: PATCH | Family: unix |
This update for the Linux Kernel 4.4.180-94_144 fixes several issues. The following issues were fixed: - CVE-2021-33034: Fixed a use-after-free when destroying an hci_chan. This could lead to writing an arbitrary values . - CVE-2021-28688: Fixed an issue introduced by XSA-365, leaving around zombie domains after xen guest has died . - CVE-2020-0429: In l2tp_session_delete and related functions of l2tp_core.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with system execution privileges needed. - Fixed a regression with the last livepatch which caused a kernel warning during sysfs read .
Platform: |
SUSE Linux Enterprise Server 12 SP3 |