SUSE-SU-2021:0694-1
- Source
- https://www.suse.com/support/update/announcement/2021/suse-su-20210694-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:0694-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2021:0694-1
- Related
- Published
- 2021-03-03T17:15:43Z
- Modified
- 2021-03-03T17:15:43Z
- Summary
- Security update for kernel-firmware
- Details
-
This update for kernel-firmware fixes the following issues:
- CVE-2020-12373: Fixed an expired pointer dereference may lead to DOS (bsc#1181738).
- CVE-2020-12364: Fixed a null pointer reference may lead to DOS (bsc#1181736).
- CVE-2020-12362: Fixed an integer overflow which could have led to privilege escalation (bsc#1181720).
- CVE-2020-12363: Fixed an improper input validation which may have led to DOS (bsc#1181735).
- References
-
- https://www.suse.com/support/update/announcement/2021/suse-su-20210694-1/
- https://bugzilla.suse.com/1181720
- https://bugzilla.suse.com/1181735
- https://bugzilla.suse.com/1181736
- https://bugzilla.suse.com/1181738
- https://www.suse.com/security/cve/CVE-2020-12362
- https://www.suse.com/security/cve/CVE-2020-12363
- https://www.suse.com/security/cve/CVE-2020-12364
- https://www.suse.com/security/cve/CVE-2020-12373
Affected packages
SUSE:Linux Enterprise Module for Basesystem 15 SP2 / kernel-firmware
Package
- Name
- kernel-firmware
- Purl
- purl:rpm/suse/kernel-firmware&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2
SUSE:Linux Enterprise High Performance Computing 15 SP1-ESPOS / kernel-firmware
Package
- Name
- kernel-firmware
- Purl
- purl:rpm/suse/kernel-firmware&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOS
SUSE:Linux Enterprise High Performance Computing 15 SP1-LTSS / kernel-firmware
Package
- Name
- kernel-firmware
- Purl
- purl:rpm/suse/kernel-firmware&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSS
SUSE:Linux Enterprise Server 15 SP1-BCL / kernel-firmware
Package
- Name
- kernel-firmware
- Purl
- purl:rpm/suse/kernel-firmware&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCL
SUSE:Linux Enterprise Server 15 SP1-LTSS / kernel-firmware
Package
- Name
- kernel-firmware
- Purl
- purl:rpm/suse/kernel-firmware&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSS
SUSE:Linux Enterprise Server for SAP Applications 15 SP1 / kernel-firmware
Package
- Name
- kernel-firmware
- Purl
- purl:rpm/suse/kernel-firmware&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1
SUSE:Manager Proxy 4.0 / kernel-firmware
Package
- Name
- kernel-firmware
- Purl
- purl:rpm/suse/kernel-firmware&distro=SUSE%20Manager%20Proxy%204.0
SUSE:Manager Retail Branch Server 4.0 / kernel-firmware
Package
- Name
- kernel-firmware
- Purl
- purl:rpm/suse/kernel-firmware&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.0
SUSE:Manager Server 4.0 / kernel-firmware
Package
- Name
- kernel-firmware
- Purl
- purl:rpm/suse/kernel-firmware&distro=SUSE%20Manager%20Server%204.0