SuSE Local Security Checks : SUSE: Security Advisory (SUSE-SU-2021:0742-1)

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.1.4.2021.0742.1

Category: SuSE Local Security Checks

Title: SUSE: Security Advisory (SUSE-SU-2021:0742-1)

Summary: The remote host is missing an update for the 'Linux Kernel' package(s) announced via the SUSE-SU-2021:0742-1 advisory.

Description: Summary:
The remote host is missing an update for the 'Linux Kernel' package(s) announced via the SUSE-SU-2021:0742-1 advisory.

Vulnerability Insight:
The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes.

The following security bug was fixed:

- CVE-2021-3348: Fixed a use-after-free read in nbd_queue_rq (bsc#1181504).

The following non-security bugs were fixed:

- ACPI: configfs: add missing check after configfs_register_default_group() (git-fixes).
- ACPI: property: Fix fwnode string properties matching (git-fixes).
- ACPI: property: Satisfy kernel doc validator (part 1) (git-fixes).
- ALSA: usb-audio: Fix PCM buffer allocation in non-vmalloc mode (git-fixes).
- arm64: Update config file. Set CONFIG_WATCHDOG_SYSFS to true (bsc#1182560)
- ASoC: cs42l56: fix up error handling in probe (git-fixes).
- ath9k: fix data bus crash when setting nf_override via debugfs (git-fixes).
- block: fix use-after-free in disk_part_iter_next (bsc#1182610).
- Bluetooth: btqcomsmd: Fix a resource leak in error handling paths in the probe function (git-fixes).
- Bluetooth: drop HCI device reference before return (git-fixes).
- Bluetooth: Fix initializing response id after clearing struct (git-fixes).
- Bluetooth: Put HCI device if inquiry procedure interrupts (git-fixes).
- bonding: Fix reference count leak in bond_sysfs_slave_add (git-fixes).
- bonding: wait for sysfs kobject destruction before freeing struct slave (git-fixes).
- BTRFS: Cleanup try_flush_qgroup (bsc#1182047).
- BTRFS: correctly calculate item size used when item key collision happens (bsc#1181996).
- BTRFS: correctly validate compression type (bsc#1182269).
- BTRFS: delete the ordered isize update code (bsc#1181998).
- BTRFS: Do not flush from btrfs_delayed_inode_reserve_metadata (bsc#1182047).
- BTRFS: do not set path->leave_spinning for truncate (bsc#1181998).
- BTRFS: factor out extent dropping code from hole punch handler (bsc#1182038).
- BTRFS: fix cloning range with a hole when using the NO_HOLES feature (bsc#1182038).
- BTRFS: fix data bytes_may_use underflow with fallocate due to failed quota reserve (bsc#1182130)
- BTRFS: fix ENOSPC errors, leading to transaction aborts, when cloning extents (bsc#1182038).
- BTRFS: fix hole extent items with a zero size after range cloning (bsc#1182038).
- BTRFS: fix lost i_size update after cloning inline extent (bsc#1181998).
- BTRFS: fix mount failure caused by race with umount (bsc#1182248).
- BTRFS: Fix race between extent freeing/allocation when using bitmaps (bsc#1181574).
- BTRFS: fix unexpected cow in run_delalloc_nocow (bsc#1181987).
- BTRFS: fix unexpected failure of nocow buffered writes after snapshotting when low on space (bsc#1181987).
- BTRFS: Free correct amount of space in btrfs_delayed_inode_reserve_metadata (bsc#1182047).
- BTRFS: incremental send, fix file corruption when no-holes feature is enabled (bsc#1182184).
- BTRFS: Introduce extent_io_tree::owner to distinguish different io_trees (bsc#1181998).
- BTRFS: introduce per-inode file extent tree (bsc#1181998).
- ... [Please see the references for more information on the vulnerabilities]

Affected Software/OS:
'Linux Kernel' package(s) on SUSE Linux Enterprise Server 12-SP5, SUSE Linux Enterprise Server for SAP Applications 12-SP5.

Solution:
Please install the updated package(s).

CVSS Score:
4.4

CVSS Vector:
AV:L/AC:M/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2021-3348
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b98e762e3d71e893b221f871825dc64694cfb258
https://www.openwall.com/lists/oss-security/2021/01/28/3
https://lists.debian.org/debian-lts-announce/2021/03/msg00035.html
http://www.openwall.com/lists/oss-security/2021/02/01/1

Copyright Copyright (C) 2021 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.1.4.2021.0742.1
Category:	SuSE Local Security Checks
Title:	SUSE: Security Advisory (SUSE-SU-2021:0742-1)
Summary:	The remote host is missing an update for the 'Linux Kernel' package(s) announced via the SUSE-SU-2021:0742-1 advisory.
Description:	Summary: The remote host is missing an update for the 'Linux Kernel' package(s) announced via the SUSE-SU-2021:0742-1 advisory. Vulnerability Insight: The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes. The following security bug was fixed: - CVE-2021-3348: Fixed a use-after-free read in nbd_queue_rq (bsc#1181504). The following non-security bugs were fixed: - ACPI: configfs: add missing check after configfs_register_default_group() (git-fixes). - ACPI: property: Fix fwnode string properties matching (git-fixes). - ACPI: property: Satisfy kernel doc validator (part 1) (git-fixes). - ALSA: usb-audio: Fix PCM buffer allocation in non-vmalloc mode (git-fixes). - arm64: Update config file. Set CONFIG_WATCHDOG_SYSFS to true (bsc#1182560) - ASoC: cs42l56: fix up error handling in probe (git-fixes). - ath9k: fix data bus crash when setting nf_override via debugfs (git-fixes). - block: fix use-after-free in disk_part_iter_next (bsc#1182610). - Bluetooth: btqcomsmd: Fix a resource leak in error handling paths in the probe function (git-fixes). - Bluetooth: drop HCI device reference before return (git-fixes). - Bluetooth: Fix initializing response id after clearing struct (git-fixes). - Bluetooth: Put HCI device if inquiry procedure interrupts (git-fixes). - bonding: Fix reference count leak in bond_sysfs_slave_add (git-fixes). - bonding: wait for sysfs kobject destruction before freeing struct slave (git-fixes). - BTRFS: Cleanup try_flush_qgroup (bsc#1182047). - BTRFS: correctly calculate item size used when item key collision happens (bsc#1181996). - BTRFS: correctly validate compression type (bsc#1182269). - BTRFS: delete the ordered isize update code (bsc#1181998). - BTRFS: Do not flush from btrfs_delayed_inode_reserve_metadata (bsc#1182047). - BTRFS: do not set path->leave_spinning for truncate (bsc#1181998). - BTRFS: factor out extent dropping code from hole punch handler (bsc#1182038). - BTRFS: fix cloning range with a hole when using the NO_HOLES feature (bsc#1182038). - BTRFS: fix data bytes_may_use underflow with fallocate due to failed quota reserve (bsc#1182130) - BTRFS: fix ENOSPC errors, leading to transaction aborts, when cloning extents (bsc#1182038). - BTRFS: fix hole extent items with a zero size after range cloning (bsc#1182038). - BTRFS: fix lost i_size update after cloning inline extent (bsc#1181998). - BTRFS: fix mount failure caused by race with umount (bsc#1182248). - BTRFS: Fix race between extent freeing/allocation when using bitmaps (bsc#1181574). - BTRFS: fix unexpected cow in run_delalloc_nocow (bsc#1181987). - BTRFS: fix unexpected failure of nocow buffered writes after snapshotting when low on space (bsc#1181987). - BTRFS: Free correct amount of space in btrfs_delayed_inode_reserve_metadata (bsc#1182047). - BTRFS: incremental send, fix file corruption when no-holes feature is enabled (bsc#1182184). - BTRFS: Introduce extent_io_tree::owner to distinguish different io_trees (bsc#1181998). - BTRFS: introduce per-inode file extent tree (bsc#1181998). - ... [Please see the references for more information on the vulnerabilities] Affected Software/OS: 'Linux Kernel' package(s) on SUSE Linux Enterprise Server 12-SP5, SUSE Linux Enterprise Server for SAP Applications 12-SP5. Solution: Please install the updated package(s). CVSS Score: 4.4 CVSS Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2021-3348 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b98e762e3d71e893b221f871825dc64694cfb258 https://www.openwall.com/lists/oss-security/2021/01/28/3 https://lists.debian.org/debian-lts-announce/2021/03/msg00035.html http://www.openwall.com/lists/oss-security/2021/02/01/1
Copyright	Copyright (C) 2021 Greenbone AG