Security update for the Linux Kernel SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2020:14354-1 Final 1 1 2020-04-30T16:00:22Z current 2020-04-30T16:00:22Z 2020-04-30T16:00:22Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for the Linux Kernel The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-10942: In get_raw_socket in drivers/vhost/net.c lacks validation of an sk_family field, which might allow attackers to trigger kernel stack corruption via crafted system calls (bsc#1167629). - CVE-2020-8647: There was a use-after-free vulnerability in the vc_do_resize function in drivers/tty/vt/vt.c (bsc#1162929). - CVE-2020-8649: There was a use-after-free vulnerability in the vgacon_invert_region function in drivers/video/console/vgacon.c (bsc#1162931). - CVE-2020-9383: An issue was discovered set_fdc in drivers/block/floppy.c leads to a wait_til_ready out-of-bounds read because the FDC index is not checked for errors before assigning it (bsc#1165111). - CVE-2019-19768: Fixed a use-after-free in the __blk_add_trace function in kernel/trace/blktrace.c (bsc#1159285). - CVE-2020-11608: Fixed a NULL pointer dereferences in ov511_mode_init_regs and ov518_mode_init_regs when there are zero endpoints (bsc#1168829). - CVE-2020-8648: There was a use-after-free vulnerability in the n_tty_receive_buf_common function in drivers/tty/n_tty.c (bsc#1162928). - CVE-2019-14896: A heap-based buffer overflow vulnerability was found in Marvell WiFi chip driver. A remote attacker could cause a denial of service or possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP (bsc#1157157). - CVE-2019-14897: A stack-based buffer overflow was found in the Marvell WiFi chip driver. An attacker is able to cause a denial of service or possibly execute arbitrary code, when a STA works in IBSS mode and connects to another STA (bsc#1157155). - CVE-2019-18675: Fixed an Integer Overflow in cpia2_remap_buffer in drivers/media/usb/cpia2/cpia2_core.c because cpia2 has its own mmap implementation. This allowed local users to obtain read and write permissions on kernel physical pages, which can possibly result in a privilege escalation (bsc#1157804). - CVE-2019-19965: Fixed a NULL pointer dereference in drivers/scsi/libsas/sas_discover.c because of mishandling of port disconnection during discovery, related to a PHY down race condition (bsc#1159911). - CVE-2019-19066: A memory leak in the bfad_im_get_stats() function in drivers/scsi/bfa/bfad_attr.c allowed attackers to cause a denial of service by triggering bfa_port_get_stats() failures (bsc#1157303). - CVE-2019-20096: Fixed a memory leak in __feat_register_sp() in net/dccp/feat.c, which may cause denial of service (bsc#1159908). - CVE-2019-19966: Fixed a use-after-free in cpia2_exit() in drivers/media/usb/cpia2/cpia2_v4l.c that will cause denial of service (bsc#1159841). - CVE-2019-19532: Fixed multiple out-of-bounds write bugs that can be caused by a malicious USB device (bsc#1158824). - CVE-2019-19523: Fixed a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/adutux.c driver (bsc#115882). - CVE-2019-19537: Fixed a race condition that can be caused by a malicious USB device in the USB character device driver layer (bsc#1158904). - CVE-2019-19527, CVE-2019-19530, CVE-2019-19524: Fixed multiple use-after-free bug that could be caused by a malicious USB device (bsc#1158381, bsc#1158834, bsc#1158900). - CVE-2019-15213: Fixed a use-after-free caused by a malicious USB device in the drivers/media/usb/dvb-usb/dvb-usb-init.c driver (bsc#1146544). - CVE-2019-19531: Fixed a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/yurex.c driver (bsc#1158445). - CVE-2019-18660: The Linux kernel on powerpc allowed Information Exposure because the Spectre-RSB mitigation is not in place for all applicable CPUs (bsc#1157038). - CVE-2019-19227: Fixed a potential NULL pointer dereference in the AppleTalk subsystem (bsc#1157678). - CVE-2019-19074: Fixed a memory leak in the ath9k_wmi_cmd(), which allowed attackers to cause a denial of service (bsc#1157143). - CVE-2019-19073: Fixed multiple memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c, which allowed attackers to cause a denial of service (bsc#1157070). - CVE-2019-15916: Fixed a memory leak in register_queue_kobjects() in net/core/net-sysfs.c, which could cause denial of service (bsc#1149448). - CVE-2019-12456: Fixed a denial of service in _ctl_ioctl_main, which could be triggered by a local user (bsc#1136922). The following non-security bugs were fixed: - Input: add safety guards to input_set_keycode() (bsc#1168075). - blk: Fix kabi due to blk_trace_mutex addition (bsc#1159285). - blktrace: fix dereference after null check (bsc#1159285). - blktrace: fix trace mutex deadlock (bsc#1159285). - block: Fix oops scsi_disk_get() (bsc#1105327). - fs/xfs: fix f_ffree value for statfs when project quota is set (bsc#1165985). - kaiser: Fix for 32bit KAISER implementations (bsc#1157344). - klist: fix starting point removed bug in klist iterators (bsc#1156652). - kobject: Export kobject_get_unless_zero() (bsc#1105327). - kobject: fix kset_find_obj() race with concurrent last kobject_put() (bsc#1105327). - kref: minor cleanup (bsc#1105327). - media: ov519: add missing endpoint sanity checks (bsc#1168829). - media: stv06xx: add missing descriptor sanity checks (bsc#1168854). - netfilter: nf_nat: do not bug when mapping already exists (bsc#1146612). - powerpc/64: Make meltdown reporting Book3S 64 specific (bsc#1091041). - powerpc/pseries/mobility: notify network peers after migration (bsc#1152631 ltc#181798). - powerpc/security/book3s64: Report L1TF status in sysfs (bsc#1091041). - powerpc/security: Fix wrong message when RFI Flush is disable (bsc#1131107). - rpm/kernel-binary.spec.in: Replace Novell with SUSE - sched: Fix race between task_group and sched_task_group (bsc#1136471). - sched: Remove lockdep check in sched_move_task() (bsc#1136471). - scsi: lpfc: Fix driver crash in target reset handler (bsc#1148871). - writeback: fix race that cause writeback hung (bsc#1161358). - x86: fix speculation bug reporting (bsc#1012382). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). slessp4-kernel-source-14354,slexsp3-kernel-source-14354 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ Link for SUSE-SU-2020:14354-1 https://lists.suse.com/pipermail/sle-security-updates/2020-April/006770.html E-Mail link for SUSE-SU-2020:14354-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1012382 SUSE Bug 1012382 https://bugzilla.suse.com/1091041 SUSE Bug 1091041 https://bugzilla.suse.com/1105327 SUSE Bug 1105327 https://bugzilla.suse.com/1131107 SUSE Bug 1131107 https://bugzilla.suse.com/1136471 SUSE Bug 1136471 https://bugzilla.suse.com/1136922 SUSE Bug 1136922 https://bugzilla.suse.com/1146519 SUSE Bug 1146519 https://bugzilla.suse.com/1146544 SUSE Bug 1146544 https://bugzilla.suse.com/1146612 SUSE Bug 1146612 https://bugzilla.suse.com/1148871 SUSE Bug 1148871 https://bugzilla.suse.com/1149448 SUSE Bug 1149448 https://bugzilla.suse.com/1152631 SUSE Bug 1152631 https://bugzilla.suse.com/1156652 SUSE Bug 1156652 https://bugzilla.suse.com/1157038 SUSE Bug 1157038 https://bugzilla.suse.com/1157070 SUSE Bug 1157070 https://bugzilla.suse.com/1157143 SUSE Bug 1157143 https://bugzilla.suse.com/1157155 SUSE Bug 1157155 https://bugzilla.suse.com/1157157 SUSE Bug 1157157 https://bugzilla.suse.com/1157303 SUSE Bug 1157303 https://bugzilla.suse.com/1157344 SUSE Bug 1157344 https://bugzilla.suse.com/1157678 SUSE Bug 1157678 https://bugzilla.suse.com/1157804 SUSE Bug 1157804 https://bugzilla.suse.com/1157923 SUSE Bug 1157923 https://bugzilla.suse.com/1158381 SUSE Bug 1158381 https://bugzilla.suse.com/1158410 SUSE Bug 1158410 https://bugzilla.suse.com/1158413 SUSE Bug 1158413 https://bugzilla.suse.com/1158427 SUSE Bug 1158427 https://bugzilla.suse.com/1158445 SUSE Bug 1158445 https://bugzilla.suse.com/1158823 SUSE Bug 1158823 https://bugzilla.suse.com/1158824 SUSE Bug 1158824 https://bugzilla.suse.com/1158834 SUSE Bug 1158834 https://bugzilla.suse.com/1158900 SUSE Bug 1158900 https://bugzilla.suse.com/1158904 SUSE Bug 1158904 https://bugzilla.suse.com/1159285 SUSE Bug 1159285 https://bugzilla.suse.com/1159841 SUSE Bug 1159841 https://bugzilla.suse.com/1159908 SUSE Bug 1159908 https://bugzilla.suse.com/1159911 SUSE Bug 1159911 https://bugzilla.suse.com/1161358 SUSE Bug 1161358 https://bugzilla.suse.com/1162928 SUSE Bug 1162928 https://bugzilla.suse.com/1162929 SUSE Bug 1162929 https://bugzilla.suse.com/1162931 SUSE Bug 1162931 https://bugzilla.suse.com/1164078 SUSE Bug 1164078 https://bugzilla.suse.com/1165111 SUSE Bug 1165111 https://bugzilla.suse.com/1165985 SUSE Bug 1165985 https://bugzilla.suse.com/1167629 SUSE Bug 1167629 https://bugzilla.suse.com/1168075 SUSE Bug 1168075 https://bugzilla.suse.com/1168829 SUSE Bug 1168829 https://bugzilla.suse.com/1168854 SUSE Bug 1168854 https://www.suse.com/security/cve/CVE-2019-12456/ SUSE CVE CVE-2019-12456 page https://www.suse.com/security/cve/CVE-2019-14896/ SUSE CVE CVE-2019-14896 page https://www.suse.com/security/cve/CVE-2019-14897/ SUSE CVE CVE-2019-14897 page https://www.suse.com/security/cve/CVE-2019-15213/ SUSE CVE CVE-2019-15213 page https://www.suse.com/security/cve/CVE-2019-15916/ SUSE CVE CVE-2019-15916 page https://www.suse.com/security/cve/CVE-2019-18660/ SUSE CVE CVE-2019-18660 page https://www.suse.com/security/cve/CVE-2019-18675/ SUSE CVE CVE-2019-18675 page https://www.suse.com/security/cve/CVE-2019-19066/ SUSE CVE CVE-2019-19066 page https://www.suse.com/security/cve/CVE-2019-19073/ SUSE CVE CVE-2019-19073 page https://www.suse.com/security/cve/CVE-2019-19074/ SUSE CVE CVE-2019-19074 page https://www.suse.com/security/cve/CVE-2019-19227/ SUSE CVE CVE-2019-19227 page https://www.suse.com/security/cve/CVE-2019-19523/ SUSE CVE CVE-2019-19523 page https://www.suse.com/security/cve/CVE-2019-19524/ SUSE CVE CVE-2019-19524 page https://www.suse.com/security/cve/CVE-2019-19527/ SUSE CVE CVE-2019-19527 page https://www.suse.com/security/cve/CVE-2019-19530/ SUSE CVE CVE-2019-19530 page https://www.suse.com/security/cve/CVE-2019-19531/ SUSE CVE CVE-2019-19531 page https://www.suse.com/security/cve/CVE-2019-19532/ SUSE CVE CVE-2019-19532 page https://www.suse.com/security/cve/CVE-2019-19537/ SUSE CVE CVE-2019-19537 page https://www.suse.com/security/cve/CVE-2019-19768/ SUSE CVE CVE-2019-19768 page https://www.suse.com/security/cve/CVE-2019-19965/ SUSE CVE CVE-2019-19965 page https://www.suse.com/security/cve/CVE-2019-19966/ SUSE CVE CVE-2019-19966 page https://www.suse.com/security/cve/CVE-2019-20096/ SUSE CVE CVE-2019-20096 page https://www.suse.com/security/cve/CVE-2020-10942/ SUSE CVE CVE-2020-10942 page https://www.suse.com/security/cve/CVE-2020-11608/ SUSE CVE CVE-2020-11608 page https://www.suse.com/security/cve/CVE-2020-8647/ SUSE CVE CVE-2020-8647 page https://www.suse.com/security/cve/CVE-2020-8648/ SUSE CVE CVE-2020-8648 page https://www.suse.com/security/cve/CVE-2020-8649/ SUSE CVE CVE-2020-8649 page https://www.suse.com/security/cve/CVE-2020-9383/ SUSE CVE CVE-2020-9383 page SUSE Linux Enterprise Server 11 SP4-LTSS kernel-bigmem-3.0.101-108.111.1 kernel-bigmem-base-3.0.101-108.111.1 kernel-bigmem-devel-3.0.101-108.111.1 kernel-default-3.0.101-108.111.1 kernel-default-base-3.0.101-108.111.1 kernel-default-devel-3.0.101-108.111.1 kernel-default-man-3.0.101-108.111.1 kernel-ec2-3.0.101-108.111.1 kernel-ec2-base-3.0.101-108.111.1 kernel-ec2-devel-3.0.101-108.111.1 kernel-pae-3.0.101-108.111.1 kernel-pae-base-3.0.101-108.111.1 kernel-pae-devel-3.0.101-108.111.1 kernel-ppc64-3.0.101-108.111.1 kernel-ppc64-base-3.0.101-108.111.1 kernel-ppc64-devel-3.0.101-108.111.1 kernel-source-3.0.101-108.111.1 kernel-syms-3.0.101-108.111.1 kernel-trace-3.0.101-108.111.1 kernel-trace-base-3.0.101-108.111.1 kernel-trace-devel-3.0.101-108.111.1 kernel-xen-3.0.101-108.111.1 kernel-xen-base-3.0.101-108.111.1 kernel-xen-devel-3.0.101-108.111.1 kernel-bigmem-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-bigmem-base-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-bigmem-devel-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-default-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-default-base-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-default-devel-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-default-man-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-ec2-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-ec2-base-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-ec2-devel-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-pae-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-pae-base-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-pae-devel-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-ppc64-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-ppc64-base-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-ppc64-devel-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-source-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-syms-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-trace-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-trace-base-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-trace-devel-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-xen-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-xen-base-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-xen-devel-3.0.101-108.111.1 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS ** DISPUTED ** An issue was discovered in the MPT3COMMAND case in _ctl_ioctl_main in drivers/scsi/mpt3sas/mpt3sas_ctl.c in the Linux kernel through 5.1.5. It allows local users to cause a denial of service or possibly have unspecified other impact by changing the value of ioc_number between two kernel reads of that value, aka a "double fetch" vulnerability. NOTE: a third party reports that this is unexploitable because the doubly fetched value is not used. CVE-2019-12456 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-12456.html CVE-2019-12456 https://bugzilla.suse.com/1136922 SUSE Bug 1136922 https://bugzilla.suse.com/1136993 SUSE Bug 1136993 A heap-based buffer overflow vulnerability was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP. CVE-2019-14896 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-14896.html CVE-2019-14896 https://bugzilla.suse.com/1157157 SUSE Bug 1157157 https://bugzilla.suse.com/1160468 SUSE Bug 1160468 A stack-based buffer overflow was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. An attacker is able to cause a denial of service (system crash) or, possibly execute arbitrary code, when a STA works in IBSS mode (allows connecting stations together without the use of an AP) and connects to another STA. CVE-2019-14897 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-14897.html CVE-2019-14897 https://bugzilla.suse.com/1157155 SUSE Bug 1157155 https://bugzilla.suse.com/1160467 SUSE Bug 1160467 https://bugzilla.suse.com/1160468 SUSE Bug 1160468 An issue was discovered in the Linux kernel before 5.2.3. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/dvb-usb/dvb-usb-init.c driver. CVE-2019-15213 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-15213.html CVE-2019-15213 https://bugzilla.suse.com/1146519 SUSE Bug 1146519 https://bugzilla.suse.com/1146544 SUSE Bug 1146544 https://bugzilla.suse.com/1158381 SUSE Bug 1158381 https://bugzilla.suse.com/1158834 SUSE Bug 1158834 An issue was discovered in the Linux kernel before 5.0.1. There is a memory leak in register_queue_kobjects() in net/core/net-sysfs.c, which will cause denial of service. CVE-2019-15916 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-15916.html CVE-2019-15916 https://bugzilla.suse.com/1149448 SUSE Bug 1149448 The Linux kernel before 5.4.1 on powerpc allows Information Exposure because the Spectre-RSB mitigation is not in place for all applicable CPUs, aka CID-39e72bf96f58. This is related to arch/powerpc/kernel/entry_64.S and arch/powerpc/kernel/security.c. CVE-2019-18660 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-18660.html CVE-2019-18660 https://bugzilla.suse.com/1157038 SUSE Bug 1157038 https://bugzilla.suse.com/1157923 SUSE Bug 1157923 The Linux kernel through 5.3.13 has a start_offset+size Integer Overflow in cpia2_remap_buffer in drivers/media/usb/cpia2/cpia2_core.c because cpia2 has its own mmap implementation. This allows local users (with /dev/video0 access) to obtain read and write permissions on kernel physical pages, which can possibly result in a privilege escalation. CVE-2019-18675 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-18675.html CVE-2019-18675 https://bugzilla.suse.com/1157804 SUSE Bug 1157804 A memory leak in the bfad_im_get_stats() function in drivers/scsi/bfa/bfad_attr.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering bfa_port_get_stats() failures, aka CID-0e62395da2bd. CVE-2019-19066 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-19066.html CVE-2019-19066 https://bugzilla.suse.com/1157303 SUSE Bug 1157303 Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel through 5.3.11 allow attackers to cause a denial of service (memory consumption) by triggering wait_for_completion_timeout() failures. This affects the htc_config_pipe_credits() function, the htc_setup_complete() function, and the htc_connect_service() function, aka CID-853acf7caf10. CVE-2019-19073 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-19073.html CVE-2019-19073 https://bugzilla.suse.com/1157070 SUSE Bug 1157070 A memory leak in the ath9k_wmi_cmd() function in drivers/net/wireless/ath/ath9k/wmi.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption), aka CID-728c1e2a05e4. CVE-2019-19074 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-19074.html CVE-2019-19074 https://bugzilla.suse.com/1157143 SUSE Bug 1157143 In the AppleTalk subsystem in the Linux kernel before 5.1, there is a potential NULL pointer dereference because register_snap_client may return NULL. This will lead to denial of service in net/appletalk/aarp.c and net/appletalk/ddp.c, as demonstrated by unregister_snap_client, aka CID-9804501fa122. CVE-2019-19227 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-19227.html CVE-2019-19227 https://bugzilla.suse.com/1157678 SUSE Bug 1157678 In the Linux kernel before 5.3.7, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/adutux.c driver, aka CID-44efc269db79. CVE-2019-19523 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-19523.html CVE-2019-19523 https://bugzilla.suse.com/1158381 SUSE Bug 1158381 https://bugzilla.suse.com/1158823 SUSE Bug 1158823 https://bugzilla.suse.com/1158834 SUSE Bug 1158834 In the Linux kernel before 5.3.12, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/input/ff-memless.c driver, aka CID-fa3a5a1880c9. CVE-2019-19524 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-19524.html CVE-2019-19524 https://bugzilla.suse.com/1158381 SUSE Bug 1158381 https://bugzilla.suse.com/1158413 SUSE Bug 1158413 https://bugzilla.suse.com/1158834 SUSE Bug 1158834 In the Linux kernel before 5.2.10, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver, aka CID-9c09b214f30e. CVE-2019-19527 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-19527.html CVE-2019-19527 https://bugzilla.suse.com/1158381 SUSE Bug 1158381 https://bugzilla.suse.com/1158834 SUSE Bug 1158834 https://bugzilla.suse.com/1158900 SUSE Bug 1158900 In the Linux kernel before 5.2.10, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/class/cdc-acm.c driver, aka CID-c52873e5a1ef. CVE-2019-19530 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-19530.html CVE-2019-19530 https://bugzilla.suse.com/1158381 SUSE Bug 1158381 https://bugzilla.suse.com/1158410 SUSE Bug 1158410 https://bugzilla.suse.com/1158834 SUSE Bug 1158834 In the Linux kernel before 5.2.9, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/yurex.c driver, aka CID-fc05481b2fca. CVE-2019-19531 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-19531.html CVE-2019-19531 https://bugzilla.suse.com/1158381 SUSE Bug 1158381 https://bugzilla.suse.com/1158427 SUSE Bug 1158427 https://bugzilla.suse.com/1158445 SUSE Bug 1158445 https://bugzilla.suse.com/1158834 SUSE Bug 1158834 In the Linux kernel before 5.3.9, there are multiple out-of-bounds write bugs that can be caused by a malicious USB device in the Linux kernel HID drivers, aka CID-d9d4b1e46d95. This affects drivers/hid/hid-axff.c, drivers/hid/hid-dr.c, drivers/hid/hid-emsff.c, drivers/hid/hid-gaff.c, drivers/hid/hid-holtekff.c, drivers/hid/hid-lg2ff.c, drivers/hid/hid-lg3ff.c, drivers/hid/hid-lg4ff.c, drivers/hid/hid-lgff.c, drivers/hid/hid-logitech-hidpp.c, drivers/hid/hid-microsoft.c, drivers/hid/hid-sony.c, drivers/hid/hid-tmff.c, and drivers/hid/hid-zpff.c. CVE-2019-19532 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-19532.html CVE-2019-19532 https://bugzilla.suse.com/1158381 SUSE Bug 1158381 https://bugzilla.suse.com/1158823 SUSE Bug 1158823 https://bugzilla.suse.com/1158824 SUSE Bug 1158824 https://bugzilla.suse.com/1158834 SUSE Bug 1158834 In the Linux kernel before 5.2.10, there is a race condition bug that can be caused by a malicious USB device in the USB character device driver layer, aka CID-303911cfc5b9. This affects drivers/usb/core/file.c. CVE-2019-19537 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-19537.html CVE-2019-19537 https://bugzilla.suse.com/1158381 SUSE Bug 1158381 https://bugzilla.suse.com/1158834 SUSE Bug 1158834 https://bugzilla.suse.com/1158904 SUSE Bug 1158904 In the Linux kernel 5.4.0-rc2, there is a use-after-free (read) in the __blk_add_trace function in kernel/trace/blktrace.c (which is used to fill out a blk_io_trace structure and place it in a per-cpu sub-buffer). CVE-2019-19768 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-19768.html CVE-2019-19768 https://bugzilla.suse.com/1159285 SUSE Bug 1159285 In the Linux kernel through 5.4.6, there is a NULL pointer dereference in drivers/scsi/libsas/sas_discover.c because of mishandling of port disconnection during discovery, related to a PHY down race condition, aka CID-f70267f379b5. CVE-2019-19965 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-19965.html CVE-2019-19965 https://bugzilla.suse.com/1159911 SUSE Bug 1159911 In the Linux kernel before 5.1.6, there is a use-after-free in cpia2_exit() in drivers/media/usb/cpia2/cpia2_v4l.c that will cause denial of service, aka CID-dea37a972655. CVE-2019-19966 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-19966.html CVE-2019-19966 https://bugzilla.suse.com/1159841 SUSE Bug 1159841 In the Linux kernel before 5.1, there is a memory leak in __feat_register_sp() in net/dccp/feat.c, which may cause denial of service, aka CID-1d3ff0950e2b. CVE-2019-20096 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2019-20096.html CVE-2019-20096 https://bugzilla.suse.com/1159908 SUSE Bug 1159908 In the Linux kernel before 5.5.8, get_raw_socket in drivers/vhost/net.c lacks validation of an sk_family field, which might allow attackers to trigger kernel stack corruption via crafted system calls. CVE-2020-10942 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2020-10942.html CVE-2020-10942 https://bugzilla.suse.com/1167629 SUSE Bug 1167629 An issue was discovered in the Linux kernel before 5.6.1. drivers/media/usb/gspca/ov519.c allows NULL pointer dereferences in ov511_mode_init_regs and ov518_mode_init_regs when there are zero endpoints, aka CID-998912346c0d. CVE-2020-11608 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2020-11608.html CVE-2020-11608 https://bugzilla.suse.com/1168829 SUSE Bug 1168829 There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the vc_do_resize function in drivers/tty/vt/vt.c. CVE-2020-8647 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2020-8647.html CVE-2020-8647 https://bugzilla.suse.com/1162929 SUSE Bug 1162929 https://bugzilla.suse.com/1164078 SUSE Bug 1164078 There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the n_tty_receive_buf_common function in drivers/tty/n_tty.c. CVE-2020-8648 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2020-8648.html CVE-2020-8648 https://bugzilla.suse.com/1162928 SUSE Bug 1162928 There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the vgacon_invert_region function in drivers/video/console/vgacon.c. CVE-2020-8649 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2020-8649.html CVE-2020-8649 https://bugzilla.suse.com/1162929 SUSE Bug 1162929 https://bugzilla.suse.com/1162931 SUSE Bug 1162931 An issue was discovered in the Linux kernel 3.16 through 5.5.6. set_fdc in drivers/block/floppy.c leads to a wait_til_ready out-of-bounds read because the FDC index is not checked for errors before assigning it, aka CID-2e90ca68b0d2. CVE-2020-9383 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.111.1 SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.111.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-202014354-1/ https://www.suse.com/security/cve/CVE-2020-9383.html CVE-2020-9383 https://bugzilla.suse.com/1165111 SUSE Bug 1165111