Detections
Analytics
SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2020:1146-1)
high Nessus Plugin ID 136168
Language:
Synopsis
The remote SUSE host is missing one or more security updates.Description
The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes.The following security bugs were fixed :
CVE-2020-8834: KVM on Power8 processors had a conflicting use of HSTATE_HOST_R1 to store r1 state in kvmppc_hv_entry plus in kvmppc_{save,restore}_tm, leading to a stack corruption. Because of this, an attacker with the ability to run code in kernel space of a guest VM can cause the host kernel to panic (bnc#1168276).
CVE-2020-11494: An issue was discovered in slc_bump in drivers/net/can/slcan.c, which allowed attackers to read uninitialized can_frame data, potentially containing sensitive information from kernel stack memory, if the configuration lacks CONFIG_INIT_STACK_ALL (bnc#1168424).
CVE-2020-10942: In get_raw_socket in drivers/vhost/net.c lacks validation of an sk_family field, which might allow attackers to trigger kernel stack corruption via crafted system calls (bnc#1167629).
CVE-2019-9458: In the video driver there was a use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed (bnc#1168295).
CVE-2019-3701: Fixed an issue in can_can_gw_rcv, which could cause a system crash (bnc#1120386).
CVE-2019-19770: Fixed a use-after-free in the debugfs_remove function (bsc#1159198).
CVE-2020-11669: Fixed an issue where arch/powerpc/kernel/idle_book3s.S did not have save/restore functionality for PNV_POWERSAVE_AMR, PNV_POWERSAVE_UAMOR, and PNV_POWERSAVE_AMOR (bnc#1169390).
The update package also includes non-security fixes. See advisory for details.
Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
Solution
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or 'zypper patch'.Alternatively you can run the command listed for your product :
SUSE Linux Enterprise Workstation Extension 15-SP1:zypper in -t patch SUSE-SLE-Product-WE-15-SP1-2020-1146=1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1:zypper in -t patch SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2020-1146=1
SUSE Linux Enterprise Module for Live Patching 15-SP1:zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP1-2020-1146=1
SUSE Linux Enterprise Module for Legacy Software 15-SP1:zypper in -t patch SUSE-SLE-Module-Legacy-15-SP1-2020-1146=1
SUSE Linux Enterprise Module for Development Tools 15-SP1:zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP1-2020-1146=1
SUSE Linux Enterprise Module for Basesystem 15-SP1:zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP1-2020-1146=1
SUSE Linux Enterprise High Availability 15-SP1:zypper in -t patch SUSE-SLE-Product-HA-15-SP1-2020-1146=1
See Also
https://bugzilla.suse.com/show_bug.cgi?id=1051510
https://bugzilla.suse.com/show_bug.cgi?id=1065600
https://bugzilla.suse.com/show_bug.cgi?id=1065729
https://bugzilla.suse.com/show_bug.cgi?id=1071995
https://bugzilla.suse.com/show_bug.cgi?id=1083647
https://bugzilla.suse.com/show_bug.cgi?id=1085030
https://bugzilla.suse.com/show_bug.cgi?id=1109911
https://bugzilla.suse.com/show_bug.cgi?id=1111666
https://bugzilla.suse.com/show_bug.cgi?id=1113956
https://bugzilla.suse.com/show_bug.cgi?id=1114279
https://bugzilla.suse.com/show_bug.cgi?id=1118338
https://bugzilla.suse.com/show_bug.cgi?id=1120386
https://bugzilla.suse.com/show_bug.cgi?id=1137325
https://bugzilla.suse.com/show_bug.cgi?id=1142685
https://bugzilla.suse.com/show_bug.cgi?id=1145051
https://bugzilla.suse.com/show_bug.cgi?id=1145929
https://bugzilla.suse.com/show_bug.cgi?id=1148868
https://bugzilla.suse.com/show_bug.cgi?id=1157424
https://bugzilla.suse.com/show_bug.cgi?id=1158983
https://bugzilla.suse.com/show_bug.cgi?id=1159037
https://bugzilla.suse.com/show_bug.cgi?id=1159198
https://bugzilla.suse.com/show_bug.cgi?id=1159199
https://bugzilla.suse.com/show_bug.cgi?id=1161561
https://bugzilla.suse.com/show_bug.cgi?id=1161951
https://bugzilla.suse.com/show_bug.cgi?id=1162171
https://bugzilla.suse.com/show_bug.cgi?id=1163403
https://bugzilla.suse.com/show_bug.cgi?id=1163897
https://bugzilla.suse.com/show_bug.cgi?id=1164284
https://bugzilla.suse.com/show_bug.cgi?id=1164777
https://bugzilla.suse.com/show_bug.cgi?id=1164780
https://bugzilla.suse.com/show_bug.cgi?id=1164893
https://bugzilla.suse.com/show_bug.cgi?id=1165019
https://bugzilla.suse.com/show_bug.cgi?id=1165182
https://bugzilla.suse.com/show_bug.cgi?id=1165185
https://bugzilla.suse.com/show_bug.cgi?id=1165211
https://bugzilla.suse.com/show_bug.cgi?id=1165823
https://bugzilla.suse.com/show_bug.cgi?id=1165949
https://bugzilla.suse.com/show_bug.cgi?id=1166780
https://bugzilla.suse.com/show_bug.cgi?id=1166860
https://bugzilla.suse.com/show_bug.cgi?id=1166861
https://bugzilla.suse.com/show_bug.cgi?id=1166862
https://bugzilla.suse.com/show_bug.cgi?id=1166864
https://bugzilla.suse.com/show_bug.cgi?id=1166866
https://bugzilla.suse.com/show_bug.cgi?id=1166867
https://bugzilla.suse.com/show_bug.cgi?id=1166868
https://bugzilla.suse.com/show_bug.cgi?id=1166870
https://bugzilla.suse.com/show_bug.cgi?id=1166940
https://bugzilla.suse.com/show_bug.cgi?id=1166982
https://bugzilla.suse.com/show_bug.cgi?id=1167005
https://bugzilla.suse.com/show_bug.cgi?id=1167216
https://bugzilla.suse.com/show_bug.cgi?id=1167288
https://bugzilla.suse.com/show_bug.cgi?id=1167290
https://bugzilla.suse.com/show_bug.cgi?id=1167316
https://bugzilla.suse.com/show_bug.cgi?id=1167421
https://bugzilla.suse.com/show_bug.cgi?id=1167423
https://bugzilla.suse.com/show_bug.cgi?id=1167627
https://bugzilla.suse.com/show_bug.cgi?id=1167629
https://bugzilla.suse.com/show_bug.cgi?id=1168075
https://bugzilla.suse.com/show_bug.cgi?id=1168202
https://bugzilla.suse.com/show_bug.cgi?id=1168273
https://bugzilla.suse.com/show_bug.cgi?id=1168276
https://bugzilla.suse.com/show_bug.cgi?id=1168295
https://bugzilla.suse.com/show_bug.cgi?id=1168367
https://bugzilla.suse.com/show_bug.cgi?id=1168424
https://bugzilla.suse.com/show_bug.cgi?id=1168443
https://bugzilla.suse.com/show_bug.cgi?id=1168486
https://bugzilla.suse.com/show_bug.cgi?id=1168552
https://bugzilla.suse.com/show_bug.cgi?id=1168760
https://bugzilla.suse.com/show_bug.cgi?id=1168762
https://bugzilla.suse.com/show_bug.cgi?id=1168763
https://bugzilla.suse.com/show_bug.cgi?id=1168764
https://bugzilla.suse.com/show_bug.cgi?id=1168765
https://bugzilla.suse.com/show_bug.cgi?id=1168829
https://bugzilla.suse.com/show_bug.cgi?id=1168854
https://bugzilla.suse.com/show_bug.cgi?id=1168881
https://bugzilla.suse.com/show_bug.cgi?id=1168884
https://bugzilla.suse.com/show_bug.cgi?id=1168952
https://bugzilla.suse.com/show_bug.cgi?id=1169013
https://bugzilla.suse.com/show_bug.cgi?id=1169057
https://bugzilla.suse.com/show_bug.cgi?id=1169307
https://bugzilla.suse.com/show_bug.cgi?id=1169308
https://bugzilla.suse.com/show_bug.cgi?id=1169390
https://bugzilla.suse.com/show_bug.cgi?id=1169514
https://bugzilla.suse.com/show_bug.cgi?id=1169625
https://www.suse.com/security/cve/CVE-2019-19770/
https://www.suse.com/security/cve/CVE-2019-3701/
https://www.suse.com/security/cve/CVE-2019-9458/
https://www.suse.com/security/cve/CVE-2020-10942/
https://www.suse.com/security/cve/CVE-2020-11494/
https://www.suse.com/security/cve/CVE-2020-11669/
Plugin Details
Severity: High
ID: 136168
File Name: suse_SU-2020-1146-1.nasl
Version: 1.4
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 4/30/2020
Updated: 3/14/2024
Supported Sensors: Agentless Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Medium
Base Score: 6.4
Temporal Score: 5
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:P
CVSS Score Source: CVE-2019-19770
CVSS v3
Risk Factor: High
Base Score: 8.2
Temporal Score: 7.4
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
Vulnerability Information
CPE: p-cpe:/a:novell:suse_linux:kernel-debug, p-cpe:/a:novell:suse_linux:kernel-debug-base, p-cpe:/a:novell:suse_linux:kernel-debug-base-debuginfo, p-cpe:/a:novell:suse_linux:kernel-debug-debuginfo, p-cpe:/a:novell:suse_linux:kernel-debug-debugsource, p-cpe:/a:novell:suse_linux:kernel-debug-devel, p-cpe:/a:novell:suse_linux:kernel-debug-devel-debuginfo, p-cpe:/a:novell:suse_linux:kernel-debug-livepatch-devel, p-cpe:/a:novell:suse_linux:kernel-default, p-cpe:/a:novell:suse_linux:kernel-default-base, p-cpe:/a:novell:suse_linux:kernel-default-base-debuginfo, p-cpe:/a:novell:suse_linux:kernel-default-debuginfo, p-cpe:/a:novell:suse_linux:kernel-default-debugsource, p-cpe:/a:novell:suse_linux:kernel-default-devel, p-cpe:/a:novell:suse_linux:kernel-default-devel-debuginfo, p-cpe:/a:novell:suse_linux:kernel-default-livepatch, p-cpe:/a:novell:suse_linux:kernel-default-man, p-cpe:/a:novell:suse_linux:kernel-kvmsmall, p-cpe:/a:novell:suse_linux:kernel-kvmsmall-base, p-cpe:/a:novell:suse_linux:kernel-kvmsmall-base-debuginfo, p-cpe:/a:novell:suse_linux:kernel-kvmsmall-debuginfo, p-cpe:/a:novell:suse_linux:kernel-kvmsmall-debugsource, p-cpe:/a:novell:suse_linux:kernel-kvmsmall-devel, p-cpe:/a:novell:suse_linux:kernel-kvmsmall-devel-debuginfo, p-cpe:/a:novell:suse_linux:kernel-kvmsmall-livepatch-devel, p-cpe:/a:novell:suse_linux:kernel-obs-build, p-cpe:/a:novell:suse_linux:kernel-obs-build-debugsource, p-cpe:/a:novell:suse_linux:kernel-obs-qa, p-cpe:/a:novell:suse_linux:kernel-syms, p-cpe:/a:novell:suse_linux:kernel-vanilla, p-cpe:/a:novell:suse_linux:kernel-vanilla-base, p-cpe:/a:novell:suse_linux:kernel-vanilla-base-debuginfo, p-cpe:/a:novell:suse_linux:kernel-vanilla-debuginfo, p-cpe:/a:novell:suse_linux:kernel-vanilla-debugsource, p-cpe:/a:novell:suse_linux:kernel-vanilla-devel, p-cpe:/a:novell:suse_linux:kernel-vanilla-devel-debuginfo, p-cpe:/a:novell:suse_linux:kernel-vanilla-livepatch-devel, p-cpe:/a:novell:suse_linux:kernel-zfcpdump-debuginfo, p-cpe:/a:novell:suse_linux:kernel-zfcpdump-debugsource, p-cpe:/a:novell:suse_linux:kernel-zfcpdump-man, p-cpe:/a:novell:suse_linux:kselftests-kmp-default, p-cpe:/a:novell:suse_linux:kselftests-kmp-default-debuginfo, p-cpe:/a:novell:suse_linux:reiserfs-kmp-default, p-cpe:/a:novell:suse_linux:reiserfs-kmp-default-debuginfo, cpe:/o:novell:suse_linux:15
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 4/29/2020
Vulnerability Publication Date: 1/3/2019
Reference Information
CVE: CVE-2019-19770, CVE-2019-3701, CVE-2019-9458, CVE-2020-10942, CVE-2020-11494, CVE-2020-11669, CVE-2020-8834