Security update for kernel-firmware
This update for kernel-firmware fixes the following issues:
- CVE-2020-12373: Fixed an expired pointer dereference may lead to DOS (bsc#1181738).
- CVE-2020-12364: Fixed a null pointer reference may lead to DOS (bsc#1181736).
- CVE-2020-12362: Fixed an integer overflow which could have led to privilege escalation (bsc#1181720).
- CVE-2020-12363: Fixed an improper input validation which may have led to DOS (bsc#1181735).
This update was imported from the SUSE:SLE-15-SP1:Update update project.
-
Submitted by
Takashi Iwai (tiwai)
Fixed bugs
bnc#1181738
VUL-1: CVE-2020-12373: kernel-source: Expired pointer dereference may lead to DOS
bnc#1181736
VUL-1: CVE-2020-12364: kernel-source: Null pointer reference may lead to DOS
bnc#1181720
VUL-0: CVE-2020-12362: kernel-source: intel graphics security issues Feb 2021
bnc#1181735
VUL-1: CVE-2020-12363: kernel-source: Improper input validation may lead to DOS
