Detections
Analytics
openSUSE 15 Security Update : kernel (openSUSE-SU-2021:1271-1)
high Nessus Plugin ID 153414
Language:
Synopsis
The remote SUSE host is missing one or more security updates.Description
The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1271-1 advisory.- In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because the protection mechanism neglects the possibility of uninitialized memory locations on the BPF stack. (CVE-2021-34556)
- In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because a certain preempting store operation does not necessarily occur before a store operation that has an attacker-controlled value.
(CVE-2021-35477)
- kernel: SVM nested virtualization issue in KVM (AVIC support) (CVE-2021-3653)
- ** DISPUTED ** In drivers/char/virtio_console.c in the Linux kernel before 5.13.4, data corruption or loss can be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size. NOTE:
the vendor indicates that the cited data corruption is not a vulnerability in any existing use case; the length validation was added solely for robustness in the face of anomalous host OS behavior.
(CVE-2021-38160)
- arch/x86/kvm/mmu/paging_tmpl.h in the Linux kernel before 5.12.11 incorrectly computes the access permissions of a shadow page, leading to a missing guest protection page fault. (CVE-2021-38198)
- drivers/usb/host/max3421-hcd.c in the Linux kernel before 5.13.6 allows physically proximate attackers to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations. (CVE-2021-38204)
- drivers/net/ethernet/xilinx/xilinx_emaclite.c in the Linux kernel before 5.13.3 makes it easier for attackers to defeat an ASLR protection mechanism because it prints a kernel pointer (i.e., the real IOMEM pointer). (CVE-2021-38205)
- drivers/net/ethernet/xilinx/ll_temac_main.c in the Linux kernel before 5.12.13 allows remote attackers to cause a denial of service (buffer overflow and lockup) by sending heavy network traffic for about ten minutes. (CVE-2021-38207)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Update the affected packages.See Also
https://bugzilla.suse.com/1181006
https://bugzilla.suse.com/1181148
https://bugzilla.suse.com/1181972
https://bugzilla.suse.com/1184114
https://bugzilla.suse.com/1184180
https://bugzilla.suse.com/1185675
https://bugzilla.suse.com/1186731
https://bugzilla.suse.com/1187211
https://bugzilla.suse.com/1187455
https://bugzilla.suse.com/1187468
https://bugzilla.suse.com/1187619
https://bugzilla.suse.com/1188067
https://bugzilla.suse.com/1188172
https://bugzilla.suse.com/1188418
https://bugzilla.suse.com/1188439
https://bugzilla.suse.com/1188616
https://bugzilla.suse.com/1188878
https://bugzilla.suse.com/1189384
https://bugzilla.suse.com/1189385
https://bugzilla.suse.com/1189392
https://bugzilla.suse.com/1189399
https://bugzilla.suse.com/1189400
https://bugzilla.suse.com/1189427
https://bugzilla.suse.com/1189449
https://bugzilla.suse.com/1189503
https://bugzilla.suse.com/1189504
https://bugzilla.suse.com/1189505
https://bugzilla.suse.com/1189506
https://bugzilla.suse.com/1189507
https://bugzilla.suse.com/1189562
https://bugzilla.suse.com/1189563
https://bugzilla.suse.com/1189564
https://bugzilla.suse.com/1189565
https://bugzilla.suse.com/1189566
https://bugzilla.suse.com/1189567
https://bugzilla.suse.com/1189760
https://bugzilla.suse.com/1189832
https://bugzilla.suse.com/1189841
https://bugzilla.suse.com/1189870
https://bugzilla.suse.com/1189883
https://bugzilla.suse.com/1190022
https://bugzilla.suse.com/1190025
https://bugzilla.suse.com/1190115
https://bugzilla.suse.com/1190117
https://bugzilla.suse.com/1190131
https://bugzilla.suse.com/1190181
https://bugzilla.suse.com/1190358
https://bugzilla.suse.com/1190412
https://bugzilla.suse.com/1190428
http://www.nessus.org/u?45c08ea3
https://www.suse.com/security/cve/CVE-2021-34556
https://www.suse.com/security/cve/CVE-2021-35477
https://www.suse.com/security/cve/CVE-2021-3640
https://www.suse.com/security/cve/CVE-2021-3653
https://www.suse.com/security/cve/CVE-2021-3656
https://www.suse.com/security/cve/CVE-2021-3732
https://www.suse.com/security/cve/CVE-2021-3739
https://www.suse.com/security/cve/CVE-2021-3743
https://www.suse.com/security/cve/CVE-2021-3753
https://www.suse.com/security/cve/CVE-2021-3759
https://www.suse.com/security/cve/CVE-2021-38160
https://www.suse.com/security/cve/CVE-2021-38198
https://www.suse.com/security/cve/CVE-2021-38204
https://www.suse.com/security/cve/CVE-2021-38205
https://www.suse.com/security/cve/CVE-2021-38207
https://bugzilla.suse.com/1040364
https://bugzilla.suse.com/1124431
https://bugzilla.suse.com/1127650
https://bugzilla.suse.com/1135481
https://bugzilla.suse.com/1152489
https://bugzilla.suse.com/1160010
https://bugzilla.suse.com/1167032
https://bugzilla.suse.com/1168202
https://bugzilla.suse.com/1171420
https://bugzilla.suse.com/1174969
https://bugzilla.suse.com/1175052
https://bugzilla.suse.com/1175543
https://bugzilla.suse.com/1177399
https://bugzilla.suse.com/1180141
https://bugzilla.suse.com/1180347
https://bugzilla.suse.com/1188885
https://bugzilla.suse.com/1188924
https://bugzilla.suse.com/1188982
https://bugzilla.suse.com/1188983
https://bugzilla.suse.com/1188985
https://bugzilla.suse.com/1189153
https://bugzilla.suse.com/1189197
https://bugzilla.suse.com/1189209
https://bugzilla.suse.com/1189210
https://bugzilla.suse.com/1189212
https://bugzilla.suse.com/1189213
https://bugzilla.suse.com/1189214
https://bugzilla.suse.com/1189215
https://bugzilla.suse.com/1189216
https://bugzilla.suse.com/1189217
https://bugzilla.suse.com/1189218
https://bugzilla.suse.com/1189219
https://bugzilla.suse.com/1189220
https://bugzilla.suse.com/1189221
https://bugzilla.suse.com/1189222
https://bugzilla.suse.com/1189229
https://bugzilla.suse.com/1189262
https://bugzilla.suse.com/1189291
https://bugzilla.suse.com/1189292
https://bugzilla.suse.com/1189298
https://bugzilla.suse.com/1189301
https://bugzilla.suse.com/1189305
https://bugzilla.suse.com/1189323
https://bugzilla.suse.com/1189568
https://bugzilla.suse.com/1189569
https://bugzilla.suse.com/1189573
https://bugzilla.suse.com/1189574
https://bugzilla.suse.com/1189575
https://bugzilla.suse.com/1189576
https://bugzilla.suse.com/1189577
https://bugzilla.suse.com/1189579
https://bugzilla.suse.com/1189581
https://bugzilla.suse.com/1189582
https://bugzilla.suse.com/1189583
https://bugzilla.suse.com/1189585
https://bugzilla.suse.com/1189586
Plugin Details
Severity: High
ID: 153414
File Name: openSUSE-2021-1271.nasl
Version: 1.4
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 9/16/2021
Updated: 11/30/2023
Supported Sensors: Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: High
Score: 7.3
CVSS v2
Risk Factor: High
Base Score: 7.2
Temporal Score: 5.6
Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2021-38160
CVSS v3
Risk Factor: High
Base Score: 8.8
Temporal Score: 7.9
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
CVSS Score Source: CVE-2021-3656
Vulnerability Information
CPE: p-cpe:/a:novell:opensuse:kernel-debug, p-cpe:/a:novell:opensuse:kernel-debug-devel, p-cpe:/a:novell:opensuse:kernel-default, p-cpe:/a:novell:opensuse:kernel-default-base, p-cpe:/a:novell:opensuse:kernel-default-base-rebuild, p-cpe:/a:novell:opensuse:kernel-default-devel, p-cpe:/a:novell:opensuse:kernel-devel, p-cpe:/a:novell:opensuse:kernel-kvmsmall, p-cpe:/a:novell:opensuse:kernel-kvmsmall-devel, p-cpe:/a:novell:opensuse:kernel-macros, p-cpe:/a:novell:opensuse:kernel-obs-build, p-cpe:/a:novell:opensuse:kernel-obs-qa, p-cpe:/a:novell:opensuse:kernel-preempt, p-cpe:/a:novell:opensuse:kernel-preempt-devel, p-cpe:/a:novell:opensuse:kernel-source, p-cpe:/a:novell:opensuse:kernel-source-vanilla, p-cpe:/a:novell:opensuse:kernel-syms, cpe:/o:novell:opensuse:15.2
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 9/15/2021
Vulnerability Publication Date: 8/2/2021
Reference Information
CVE: CVE-2021-34556, CVE-2021-35477, CVE-2021-3640, CVE-2021-3653, CVE-2021-3656, CVE-2021-3732, CVE-2021-3739, CVE-2021-3743, CVE-2021-3753, CVE-2021-3759, CVE-2021-38160, CVE-2021-38198, CVE-2021-38204, CVE-2021-38205, CVE-2021-38207