File _patchinfo of Package patchinfo.22147

Overview Repositories Revisions Requests Users Attributes Meta

File _patchinfo of Package patchinfo.22147

<patchinfo incident="22147">
  <issue id="1191813" tracker="bnc">VUL-0: CVE-2021-20322: kernel live patch: new DNS Cache Poisoning Attack based on ICMP fragment needed packets replies</issue>
  <issue id="1192048" tracker="bnc">VUL-0: CVE-2021-0941: kernel live patch: In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free</issue>
  <issue id="2021-0941" tracker="cve" />
  <issue id="2021-20322" tracker="cve" />
  <category>security</category>
  <rating>important</rating>
  <packager>nstange</packager> 
  <description>This update for the Linux Kernel 5.3.18-24_46 fixes several issues.

The following security issues were fixed:

- CVE-2021-0941: In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192045).
- CVE-2021-20322: Make the ipv4 and ipv6 ICMP exception caches less predictive to avoid information leaks about UDP ports in use. (bsc#1191790)
</description>
<summary>Security update for the Linux Kernel (Live Patch 9 for SLE 15 SP2)</summary>
</patchinfo>

Places

File _patchinfo of Package patchinfo.22147

Places