{"affected":[{"ecosystem_specific":{"binaries":[{"kernel-azure":"4.12.14-16.53.1","kernel-azure-base":"4.12.14-16.53.1","kernel-azure-devel":"4.12.14-16.53.1","kernel-devel-azure":"4.12.14-16.53.1","kernel-source-azure":"4.12.14-16.53.1","kernel-syms-azure":"4.12.14-16.53.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 12 SP5","name":"kernel-azure","purl":"pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.12.14-16.53.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-azure":"4.12.14-16.53.1","kernel-azure-base":"4.12.14-16.53.1","kernel-azure-devel":"4.12.14-16.53.1","kernel-devel-azure":"4.12.14-16.53.1","kernel-source-azure":"4.12.14-16.53.1","kernel-syms-azure":"4.12.14-16.53.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 12 SP5","name":"kernel-source-azure","purl":"pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.12.14-16.53.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-azure":"4.12.14-16.53.1","kernel-azure-base":"4.12.14-16.53.1","kernel-azure-devel":"4.12.14-16.53.1","kernel-devel-azure":"4.12.14-16.53.1","kernel-source-azure":"4.12.14-16.53.1","kernel-syms-azure":"4.12.14-16.53.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 12 SP5","name":"kernel-syms-azure","purl":"pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.12.14-16.53.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-azure":"4.12.14-16.53.1","kernel-azure-base":"4.12.14-16.53.1","kernel-azure-devel":"4.12.14-16.53.1","kernel-devel-azure":"4.12.14-16.53.1","kernel-source-azure":"4.12.14-16.53.1","kernel-syms-azure":"4.12.14-16.53.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 12 SP5","name":"kernel-azure","purl":"pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.12.14-16.53.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-azure":"4.12.14-16.53.1","kernel-azure-base":"4.12.14-16.53.1","kernel-azure-devel":"4.12.14-16.53.1","kernel-devel-azure":"4.12.14-16.53.1","kernel-source-azure":"4.12.14-16.53.1","kernel-syms-azure":"4.12.14-16.53.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 12 SP5","name":"kernel-source-azure","purl":"pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.12.14-16.53.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-azure":"4.12.14-16.53.1","kernel-azure-base":"4.12.14-16.53.1","kernel-azure-devel":"4.12.14-16.53.1","kernel-devel-azure":"4.12.14-16.53.1","kernel-source-azure":"4.12.14-16.53.1","kernel-syms-azure":"4.12.14-16.53.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 12 SP5","name":"kernel-syms-azure","purl":"pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.12.14-16.53.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2020-25670, CVE-2020-25671, CVE-2020-25672, CVE-2020-25673: Fixed multiple bugs in NFC subsytem (bsc#1178181).\n- CVE-2020-36311: Fixed a denial of service (soft lockup) by triggering destruction of a large SEV VM (bsc#1184511).\n- CVE-2021-29154: Fixed incorrect computation of branch displacements, allowing arbitrary code execution (bsc#1184391).\n- CVE-2021-30002: Fixed a memory leak for large arguments in video_usercopy (bsc#1184120).\n- CVE-2021-3483: Fixed a use-after-free in nosy.c (bsc#1184393).\n- CVE-2021-20219: Fixed a denial of service in n_tty_receive_char_special (bsc#1184397).\n\nThe following non-security bugs were fixed:\n\n- cifs: do not send close in compound create+close requests (bsc#1181507).\n- net: sched: disable TCQ_F_NOLOCK for pfifo_fast (bsc#1183405)\n- powerpc/64s: Fix instruction encoding for lis in ppc_function_entry() (bsc#1065729).\n- powerpc/pmem: Include pmem prototypes (bsc#1113295 git-fixes).\n- powerpc/pseries/ras: Remove unused variable 'status' (bsc#1065729).\n- s390/pci: Fix s390_mmio_read/write with MIO (LTC#192079 bsc#1183755).\n- vsprintf: Do not have bprintf dereference pointers (bsc#1184494).\n- vsprintf: Do not preprocess non-dereferenced pointers for bprintf (%px and %pK) (bsc#1184494).\n- vsprintf: Fix off-by-one bug in bstr_printf() processing dereferenced pointers (bsc#1184494).\n- x86/mem_encrypt: Correct physical address calculation in __set_clr_pte_enc() (12sp5).\n- xen/events: fix setting irq affinity (bsc#1184583).\n","id":"SUSE-SU-2021:1248-1","modified":"2021-04-16T13:23:55Z","published":"2021-04-16T13:23:55Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2021/suse-su-20211248-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1065729"},{"type":"REPORT","url":"https://bugzilla.suse.com/1113295"},{"type":"REPORT","url":"https://bugzilla.suse.com/1178181"},{"type":"REPORT","url":"https://bugzilla.suse.com/1181507"},{"type":"REPORT","url":"https://bugzilla.suse.com/1183405"},{"type":"REPORT","url":"https://bugzilla.suse.com/1183755"},{"type":"REPORT","url":"https://bugzilla.suse.com/1184120"},{"type":"REPORT","url":"https://bugzilla.suse.com/1184170"},{"type":"REPORT","url":"https://bugzilla.suse.com/1184391"},{"type":"REPORT","url":"https://bugzilla.suse.com/1184393"},{"type":"REPORT","url":"https://bugzilla.suse.com/1184397"},{"type":"REPORT","url":"https://bugzilla.suse.com/1184494"},{"type":"REPORT","url":"https://bugzilla.suse.com/1184511"},{"type":"REPORT","url":"https://bugzilla.suse.com/1184583"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-25670"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-25671"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-25672"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-25673"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-36311"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-20219"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-29154"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30002"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-3483"}],"related":["CVE-2020-25670","CVE-2020-25671","CVE-2020-25672","CVE-2020-25673","CVE-2020-36311","CVE-2021-20219","CVE-2021-29154","CVE-2021-30002","CVE-2021-3483"],"summary":"Security update for the Linux Kernel","upstream":["CVE-2020-25670","CVE-2020-25671","CVE-2020-25672","CVE-2020-25673","CVE-2020-36311","CVE-2021-20219","CVE-2021-29154","CVE-2021-30002","CVE-2021-3483"]}