Risk | Low |
Patch available | YES |
Number of vulnerabilities | 12 |
CVE-ID | CVE-2020-24586 CVE-2020-24587 CVE-2020-24588 CVE-2020-26139 CVE-2020-26141 CVE-2020-26145 CVE-2020-26147 CVE-2021-23134 CVE-2021-32399 CVE-2021-33034 CVE-2021-33200 CVE-2021-3491 |
CWE-ID | CWE-20 CWE-451 CWE-416 CWE-362 CWE-787 |
Exploitation vector | Local network |
Public exploit | N/A |
Vulnerable software |
SUSE Linux Enterprise Module for Realtime Operating systems & Components / Operating system kernel-source-rt Operating systems & Components / Operating system package or component kernel-devel-rt Operating systems & Components / Operating system package or component ocfs2-kmp-rt-debuginfo Operating systems & Components / Operating system package or component ocfs2-kmp-rt Operating systems & Components / Operating system package or component kernel-syms-rt Operating systems & Components / Operating system package or component kernel-rt_debug-devel-debuginfo Operating systems & Components / Operating system package or component kernel-rt_debug-devel Operating systems & Components / Operating system package or component kernel-rt_debug-debugsource Operating systems & Components / Operating system package or component kernel-rt_debug-debuginfo Operating systems & Components / Operating system package or component kernel-rt_debug Operating systems & Components / Operating system package or component kernel-rt-devel-debuginfo Operating systems & Components / Operating system package or component kernel-rt-devel Operating systems & Components / Operating system package or component kernel-rt-debugsource Operating systems & Components / Operating system package or component kernel-rt-debuginfo Operating systems & Components / Operating system package or component kernel-rt Operating systems & Components / Operating system package or component gfs2-kmp-rt-debuginfo Operating systems & Components / Operating system package or component gfs2-kmp-rt Operating systems & Components / Operating system package or component dlm-kmp-rt-debuginfo Operating systems & Components / Operating system package or component dlm-kmp-rt Operating systems & Components / Operating system package or component cluster-md-kmp-rt-debuginfo Operating systems & Components / Operating system package or component cluster-md-kmp-rt Operating systems & Components / Operating system package or component |
Vendor | SUSE |
Security Bulletin
This security bulletin contains information about 12 vulnerabilities.
EUVDB-ID: #VU53154
Risk: Low
CVSSv4.0: 2.3 [CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2020-24586
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists in the 802.11 standard due to the affected device does not clear its cache/memory to remove fragments of an incomplete MSDU/MMPDU from previous session after reconnection/reassociation. A remote attacker on the local network can perform a fragment cache attack and perform a denial of service (DoS) attack.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Module for Realtime: 15-SP2
kernel-source-rt: before 5.3.18-39.1
kernel-devel-rt: before 5.3.18-39.1
ocfs2-kmp-rt-debuginfo: before 5.3.18-39.1
ocfs2-kmp-rt: before 5.3.18-39.1
kernel-syms-rt: before 5.3.18-39.1
kernel-rt_debug-devel-debuginfo: before 5.3.18-39.1
kernel-rt_debug-devel: before 5.3.18-39.1
kernel-rt_debug-debugsource: before 5.3.18-39.1
kernel-rt_debug-debuginfo: before 5.3.18-39.1
kernel-rt_debug: before 5.3.18-39.1
kernel-rt-devel-debuginfo: before 5.3.18-39.1
kernel-rt-devel: before 5.3.18-39.1
kernel-rt-debugsource: before 5.3.18-39.1
kernel-rt-debuginfo: before 5.3.18-39.1
kernel-rt: before 5.3.18-39.1
gfs2-kmp-rt-debuginfo: before 5.3.18-39.1
gfs2-kmp-rt: before 5.3.18-39.1
dlm-kmp-rt-debuginfo: before 5.3.18-39.1
dlm-kmp-rt: before 5.3.18-39.1
cluster-md-kmp-rt-debuginfo: before 5.3.18-39.1
cluster-md-kmp-rt: before 5.3.18-39.1
CPE2.3http://www.suse.com/support/update/announcement/2021/suse-su-20211889-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU53096
Risk: Low
CVSSv4.0: 4.9 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2020-24587
CWE-ID: N/A
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to excessive data output by the application in Windows Wireless Networking. A remote attacker on the local network can gain unauthorized access to sensitive information on the system.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Module for Realtime: 15-SP2
kernel-source-rt: before 5.3.18-39.1
kernel-devel-rt: before 5.3.18-39.1
ocfs2-kmp-rt-debuginfo: before 5.3.18-39.1
ocfs2-kmp-rt: before 5.3.18-39.1
kernel-syms-rt: before 5.3.18-39.1
kernel-rt_debug-devel-debuginfo: before 5.3.18-39.1
kernel-rt_debug-devel: before 5.3.18-39.1
kernel-rt_debug-debugsource: before 5.3.18-39.1
kernel-rt_debug-debuginfo: before 5.3.18-39.1
kernel-rt_debug: before 5.3.18-39.1
kernel-rt-devel-debuginfo: before 5.3.18-39.1
kernel-rt-devel: before 5.3.18-39.1
kernel-rt-debugsource: before 5.3.18-39.1
kernel-rt-debuginfo: before 5.3.18-39.1
kernel-rt: before 5.3.18-39.1
gfs2-kmp-rt-debuginfo: before 5.3.18-39.1
gfs2-kmp-rt: before 5.3.18-39.1
dlm-kmp-rt-debuginfo: before 5.3.18-39.1
dlm-kmp-rt: before 5.3.18-39.1
cluster-md-kmp-rt-debuginfo: before 5.3.18-39.1
cluster-md-kmp-rt: before 5.3.18-39.1
CPE2.3http://www.suse.com/support/update/announcement/2021/suse-su-20211889-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU53098
Risk: Low
CVSSv4.0: 1.3 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2020-24588
CWE-ID:
CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform spoofing attack.
The vulnerability exists due to incorrect processing of user-supplied data in Windows Wireless Networking. A remote attacker on the local network can spoof page content.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Module for Realtime: 15-SP2
kernel-source-rt: before 5.3.18-39.1
kernel-devel-rt: before 5.3.18-39.1
ocfs2-kmp-rt-debuginfo: before 5.3.18-39.1
ocfs2-kmp-rt: before 5.3.18-39.1
kernel-syms-rt: before 5.3.18-39.1
kernel-rt_debug-devel-debuginfo: before 5.3.18-39.1
kernel-rt_debug-devel: before 5.3.18-39.1
kernel-rt_debug-debugsource: before 5.3.18-39.1
kernel-rt_debug-debuginfo: before 5.3.18-39.1
kernel-rt_debug: before 5.3.18-39.1
kernel-rt-devel-debuginfo: before 5.3.18-39.1
kernel-rt-devel: before 5.3.18-39.1
kernel-rt-debugsource: before 5.3.18-39.1
kernel-rt-debuginfo: before 5.3.18-39.1
kernel-rt: before 5.3.18-39.1
gfs2-kmp-rt-debuginfo: before 5.3.18-39.1
gfs2-kmp-rt: before 5.3.18-39.1
dlm-kmp-rt-debuginfo: before 5.3.18-39.1
dlm-kmp-rt: before 5.3.18-39.1
cluster-md-kmp-rt-debuginfo: before 5.3.18-39.1
cluster-md-kmp-rt: before 5.3.18-39.1
CPE2.3http://www.suse.com/support/update/announcement/2021/suse-su-20211889-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU53174
Risk: Low
CVSSv4.0: 4.9 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2020-26139
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise the target system.
The vulnerability exists due to forwarding EAPOL frames even though the sender is not yet authenticated. A remote attacker on the local network can cause a denial of service (DoS) condition on the target system.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Module for Realtime: 15-SP2
kernel-source-rt: before 5.3.18-39.1
kernel-devel-rt: before 5.3.18-39.1
ocfs2-kmp-rt-debuginfo: before 5.3.18-39.1
ocfs2-kmp-rt: before 5.3.18-39.1
kernel-syms-rt: before 5.3.18-39.1
kernel-rt_debug-devel-debuginfo: before 5.3.18-39.1
kernel-rt_debug-devel: before 5.3.18-39.1
kernel-rt_debug-debugsource: before 5.3.18-39.1
kernel-rt_debug-debuginfo: before 5.3.18-39.1
kernel-rt_debug: before 5.3.18-39.1
kernel-rt-devel-debuginfo: before 5.3.18-39.1
kernel-rt-devel: before 5.3.18-39.1
kernel-rt-debugsource: before 5.3.18-39.1
kernel-rt-debuginfo: before 5.3.18-39.1
kernel-rt: before 5.3.18-39.1
gfs2-kmp-rt-debuginfo: before 5.3.18-39.1
gfs2-kmp-rt: before 5.3.18-39.1
dlm-kmp-rt-debuginfo: before 5.3.18-39.1
dlm-kmp-rt: before 5.3.18-39.1
cluster-md-kmp-rt-debuginfo: before 5.3.18-39.1
cluster-md-kmp-rt: before 5.3.18-39.1
CPE2.3http://www.suse.com/support/update/announcement/2021/suse-su-20211889-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU53176
Risk: Low
CVSSv4.0: 4.4 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:A/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2020-26141
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise the target system.
The vulnerability exists due to the Wi-Fi implementation does not verify the Message Integrity Check (authenticity) of fragmented TKIP frames. A remote attacker on the local network can inject and possibly decrypt packets in WPA or WPA2 networks that support the TKIP data-confidentiality protocol.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Module for Realtime: 15-SP2
kernel-source-rt: before 5.3.18-39.1
kernel-devel-rt: before 5.3.18-39.1
ocfs2-kmp-rt-debuginfo: before 5.3.18-39.1
ocfs2-kmp-rt: before 5.3.18-39.1
kernel-syms-rt: before 5.3.18-39.1
kernel-rt_debug-devel-debuginfo: before 5.3.18-39.1
kernel-rt_debug-devel: before 5.3.18-39.1
kernel-rt_debug-debugsource: before 5.3.18-39.1
kernel-rt_debug-debuginfo: before 5.3.18-39.1
kernel-rt_debug: before 5.3.18-39.1
kernel-rt-devel-debuginfo: before 5.3.18-39.1
kernel-rt-devel: before 5.3.18-39.1
kernel-rt-debugsource: before 5.3.18-39.1
kernel-rt-debuginfo: before 5.3.18-39.1
kernel-rt: before 5.3.18-39.1
gfs2-kmp-rt-debuginfo: before 5.3.18-39.1
gfs2-kmp-rt: before 5.3.18-39.1
dlm-kmp-rt-debuginfo: before 5.3.18-39.1
dlm-kmp-rt: before 5.3.18-39.1
cluster-md-kmp-rt-debuginfo: before 5.3.18-39.1
cluster-md-kmp-rt: before 5.3.18-39.1
CPE2.3http://www.suse.com/support/update/announcement/2021/suse-su-20211889-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU53155
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:A/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2020-26145
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise the target system.
The vulnerability exists due to the WEP, WPA, WPA2, and WPA3 implementations accept second (or subsequent) broadcast fragments even when sent in plaintext and process them as full unfragmented frames. A remote attacker on the local network can inject arbitrary network packets independent of the network configuration.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Module for Realtime: 15-SP2
kernel-source-rt: before 5.3.18-39.1
kernel-devel-rt: before 5.3.18-39.1
ocfs2-kmp-rt-debuginfo: before 5.3.18-39.1
ocfs2-kmp-rt: before 5.3.18-39.1
kernel-syms-rt: before 5.3.18-39.1
kernel-rt_debug-devel-debuginfo: before 5.3.18-39.1
kernel-rt_debug-devel: before 5.3.18-39.1
kernel-rt_debug-debugsource: before 5.3.18-39.1
kernel-rt_debug-debuginfo: before 5.3.18-39.1
kernel-rt_debug: before 5.3.18-39.1
kernel-rt-devel-debuginfo: before 5.3.18-39.1
kernel-rt-devel: before 5.3.18-39.1
kernel-rt-debugsource: before 5.3.18-39.1
kernel-rt-debuginfo: before 5.3.18-39.1
kernel-rt: before 5.3.18-39.1
gfs2-kmp-rt-debuginfo: before 5.3.18-39.1
gfs2-kmp-rt: before 5.3.18-39.1
dlm-kmp-rt-debuginfo: before 5.3.18-39.1
dlm-kmp-rt: before 5.3.18-39.1
cluster-md-kmp-rt-debuginfo: before 5.3.18-39.1
cluster-md-kmp-rt: before 5.3.18-39.1
CPE2.3http://www.suse.com/support/update/announcement/2021/suse-su-20211889-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU53172
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:A/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2020-26147
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise the target system.
The vulnerability exists due to the WEP, WPA, WPA2, and WPA3 implementations reassemble fragments even though some of them were sent in plaintext. A remote attacker on the local network can inject packets and/or exfiltrate selected fragments
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Module for Realtime: 15-SP2
kernel-source-rt: before 5.3.18-39.1
kernel-devel-rt: before 5.3.18-39.1
ocfs2-kmp-rt-debuginfo: before 5.3.18-39.1
ocfs2-kmp-rt: before 5.3.18-39.1
kernel-syms-rt: before 5.3.18-39.1
kernel-rt_debug-devel-debuginfo: before 5.3.18-39.1
kernel-rt_debug-devel: before 5.3.18-39.1
kernel-rt_debug-debugsource: before 5.3.18-39.1
kernel-rt_debug-debuginfo: before 5.3.18-39.1
kernel-rt_debug: before 5.3.18-39.1
kernel-rt-devel-debuginfo: before 5.3.18-39.1
kernel-rt-devel: before 5.3.18-39.1
kernel-rt-debugsource: before 5.3.18-39.1
kernel-rt-debuginfo: before 5.3.18-39.1
kernel-rt: before 5.3.18-39.1
gfs2-kmp-rt-debuginfo: before 5.3.18-39.1
gfs2-kmp-rt: before 5.3.18-39.1
dlm-kmp-rt-debuginfo: before 5.3.18-39.1
dlm-kmp-rt: before 5.3.18-39.1
cluster-md-kmp-rt-debuginfo: before 5.3.18-39.1
cluster-md-kmp-rt: before 5.3.18-39.1
CPE2.3http://www.suse.com/support/update/announcement/2021/suse-su-20211889-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU63657
Risk: Low
CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2021-23134
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error in nfc sockets in the Linux Kernel. A local user with the CAP_NET_RAW capability can trigger use-after-free and escalate privileges on the system.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Module for Realtime: 15-SP2
kernel-source-rt: before 5.3.18-39.1
kernel-devel-rt: before 5.3.18-39.1
ocfs2-kmp-rt-debuginfo: before 5.3.18-39.1
ocfs2-kmp-rt: before 5.3.18-39.1
kernel-syms-rt: before 5.3.18-39.1
kernel-rt_debug-devel-debuginfo: before 5.3.18-39.1
kernel-rt_debug-devel: before 5.3.18-39.1
kernel-rt_debug-debugsource: before 5.3.18-39.1
kernel-rt_debug-debuginfo: before 5.3.18-39.1
kernel-rt_debug: before 5.3.18-39.1
kernel-rt-devel-debuginfo: before 5.3.18-39.1
kernel-rt-devel: before 5.3.18-39.1
kernel-rt-debugsource: before 5.3.18-39.1
kernel-rt-debuginfo: before 5.3.18-39.1
kernel-rt: before 5.3.18-39.1
gfs2-kmp-rt-debuginfo: before 5.3.18-39.1
gfs2-kmp-rt: before 5.3.18-39.1
dlm-kmp-rt-debuginfo: before 5.3.18-39.1
dlm-kmp-rt: before 5.3.18-39.1
cluster-md-kmp-rt-debuginfo: before 5.3.18-39.1
cluster-md-kmp-rt: before 5.3.18-39.1
CPE2.3http://www.suse.com/support/update/announcement/2021/suse-su-20211889-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU55257
Risk: Low
CVSSv4.0: 4.4 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2021-32399
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a race condition for removal of the HCI controller within net/bluetooth/hci_request.c in the Linux kernel. A local user can exploit the race and gain unauthorized access to sensitive information and escalate privileges on the system.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Module for Realtime: 15-SP2
kernel-source-rt: before 5.3.18-39.1
kernel-devel-rt: before 5.3.18-39.1
ocfs2-kmp-rt-debuginfo: before 5.3.18-39.1
ocfs2-kmp-rt: before 5.3.18-39.1
kernel-syms-rt: before 5.3.18-39.1
kernel-rt_debug-devel-debuginfo: before 5.3.18-39.1
kernel-rt_debug-devel: before 5.3.18-39.1
kernel-rt_debug-debugsource: before 5.3.18-39.1
kernel-rt_debug-debuginfo: before 5.3.18-39.1
kernel-rt_debug: before 5.3.18-39.1
kernel-rt-devel-debuginfo: before 5.3.18-39.1
kernel-rt-devel: before 5.3.18-39.1
kernel-rt-debugsource: before 5.3.18-39.1
kernel-rt-debuginfo: before 5.3.18-39.1
kernel-rt: before 5.3.18-39.1
gfs2-kmp-rt-debuginfo: before 5.3.18-39.1
gfs2-kmp-rt: before 5.3.18-39.1
dlm-kmp-rt-debuginfo: before 5.3.18-39.1
dlm-kmp-rt: before 5.3.18-39.1
cluster-md-kmp-rt-debuginfo: before 5.3.18-39.1
cluster-md-kmp-rt: before 5.3.18-39.1
CPE2.3http://www.suse.com/support/update/announcement/2021/suse-su-20211889-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU54454
Risk: Low
CVSSv4.0: 4.4 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2021-33034
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error in net/bluetooth/hci_event.c when destroying an hci_chan. A local user can escalate privileges on the system.
Update the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Module for Realtime: 15-SP2
kernel-source-rt: before 5.3.18-39.1
kernel-devel-rt: before 5.3.18-39.1
ocfs2-kmp-rt-debuginfo: before 5.3.18-39.1
ocfs2-kmp-rt: before 5.3.18-39.1
kernel-syms-rt: before 5.3.18-39.1
kernel-rt_debug-devel-debuginfo: before 5.3.18-39.1
kernel-rt_debug-devel: before 5.3.18-39.1
kernel-rt_debug-debugsource: before 5.3.18-39.1
kernel-rt_debug-debuginfo: before 5.3.18-39.1
kernel-rt_debug: before 5.3.18-39.1
kernel-rt-devel-debuginfo: before 5.3.18-39.1
kernel-rt-devel: before 5.3.18-39.1
kernel-rt-debugsource: before 5.3.18-39.1
kernel-rt-debuginfo: before 5.3.18-39.1
kernel-rt: before 5.3.18-39.1
gfs2-kmp-rt-debuginfo: before 5.3.18-39.1
gfs2-kmp-rt: before 5.3.18-39.1
dlm-kmp-rt-debuginfo: before 5.3.18-39.1
dlm-kmp-rt: before 5.3.18-39.1
cluster-md-kmp-rt-debuginfo: before 5.3.18-39.1
cluster-md-kmp-rt: before 5.3.18-39.1
CPE2.3http://www.suse.com/support/update/announcement/2021/suse-su-20211889-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU87989
Risk: Low
CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2021-33200
CWE-ID:
CWE-787 - Out-of-bounds write
Exploit availability: No
Description The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a boundary error in kernel/bpf/verifier.c. A local user can trigger an out-of-bounds write and escalate privileges on the system.
Update the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Module for Realtime: 15-SP2
kernel-source-rt: before 5.3.18-39.1
kernel-devel-rt: before 5.3.18-39.1
ocfs2-kmp-rt-debuginfo: before 5.3.18-39.1
ocfs2-kmp-rt: before 5.3.18-39.1
kernel-syms-rt: before 5.3.18-39.1
kernel-rt_debug-devel-debuginfo: before 5.3.18-39.1
kernel-rt_debug-devel: before 5.3.18-39.1
kernel-rt_debug-debugsource: before 5.3.18-39.1
kernel-rt_debug-debuginfo: before 5.3.18-39.1
kernel-rt_debug: before 5.3.18-39.1
kernel-rt-devel-debuginfo: before 5.3.18-39.1
kernel-rt-devel: before 5.3.18-39.1
kernel-rt-debugsource: before 5.3.18-39.1
kernel-rt-debuginfo: before 5.3.18-39.1
kernel-rt: before 5.3.18-39.1
gfs2-kmp-rt-debuginfo: before 5.3.18-39.1
gfs2-kmp-rt: before 5.3.18-39.1
dlm-kmp-rt-debuginfo: before 5.3.18-39.1
dlm-kmp-rt: before 5.3.18-39.1
cluster-md-kmp-rt-debuginfo: before 5.3.18-39.1
cluster-md-kmp-rt: before 5.3.18-39.1
CPE2.3http://www.suse.com/support/update/announcement/2021/suse-su-20211889-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU68301
Risk: Low
CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2021-3491
CWE-ID:
CWE-787 - Out-of-bounds write
Exploit availability: No
Description The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to the io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_BUFFERS
operation, which led to negative values being used in mem_rw when reading
/proc/<PID>/mem. A local user can trigger a heap overflow and execute arbitrary code with elevated privileges.
Update the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Module for Realtime: 15-SP2
kernel-source-rt: before 5.3.18-39.1
kernel-devel-rt: before 5.3.18-39.1
ocfs2-kmp-rt-debuginfo: before 5.3.18-39.1
ocfs2-kmp-rt: before 5.3.18-39.1
kernel-syms-rt: before 5.3.18-39.1
kernel-rt_debug-devel-debuginfo: before 5.3.18-39.1
kernel-rt_debug-devel: before 5.3.18-39.1
kernel-rt_debug-debugsource: before 5.3.18-39.1
kernel-rt_debug-debuginfo: before 5.3.18-39.1
kernel-rt_debug: before 5.3.18-39.1
kernel-rt-devel-debuginfo: before 5.3.18-39.1
kernel-rt-devel: before 5.3.18-39.1
kernel-rt-debugsource: before 5.3.18-39.1
kernel-rt-debuginfo: before 5.3.18-39.1
kernel-rt: before 5.3.18-39.1
gfs2-kmp-rt-debuginfo: before 5.3.18-39.1
gfs2-kmp-rt: before 5.3.18-39.1
dlm-kmp-rt-debuginfo: before 5.3.18-39.1
dlm-kmp-rt: before 5.3.18-39.1
cluster-md-kmp-rt-debuginfo: before 5.3.18-39.1
cluster-md-kmp-rt: before 5.3.18-39.1
CPE2.3http://www.suse.com/support/update/announcement/2021/suse-su-20211889-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.