EUVD-2017-5992

Malware in sbrugna...

SUSE CVE-2017-14489

The iscsiifrx function in drivers/scsi/scsitransportiscsi.c in the Linux kernel through 4.13.2 allows local users to cause a denial of service panic by leveraging incorrect length validation...

Updated kernel-linus packages fix security vulnerabilities

This kernel-linus update is based on upstream 4.4.105 and fixes at least the following security issues: A security flaw was discovered in nl80211setrekeydata function in the Linux kernel since v3.1-rc1 through v4.13. This function does not check whether the required attributes are present in a...

Updated kernel packages fix security vulnerabilities

This kernel update is based on upstream 4.4.105 and fixes at least the following security issues: A security flaw was discovered in nl80211setrekeydata function in the Linux kernel since v3.1-rc1 through v4.13. This function does not check whether the required attributes are present in a netlink...

Updated kernel-linus packages fix security vulnerabilities

This kernel-linus update is based on upstream 4.4.92 and fixes at least the following security issues: A security flaw was discovered in nl80211setrekeydata function in the Linux kernel since v3.1-rc1 through v4.13. This function does not check whether the required attributes are present in a...

openSUSE: Security Advisory for kernel (openSUSE-SU-2017:2741-1)

The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2017-085)

According to the versions of the parallels-server-bm-release / vzkernel / etc packages installed, the Virtuozzo installation on the remote host is affected by the following vulnerabilities : - Kernel crash due to missing error handling for negatively instantiated keys. - A stack buffer overflow...

Virtuozzo 7 : readykernel-patch (VZA-2017-082)

According to the version of the vzkernel package and the readykernel-patch installed, the Virtuozzo installation on the remote host is affected by the following vulnerabilities : - An unprivileged user inside a container could cause a denial of service kernel crash in userread function using a...

CVE-2017-14489

The iscsiifrx function in 'drivers/scsi/scsitransportiscsi.c' in the Linux kernel from v2.6.24-rc1 through 4.13.2 allows local users to cause a denial of service a system panic by making a number of certain syscalls by leveraging incorrect length validation in the kernel code...

CVE-2017-14489

CVE-2017-14489 affects the Linux kernel iSCSI transport (drivers/scsi/scsi_transport_iscsi.c: iscsi_if_rx). The root cause is incorrect length validation, enabling a local authenticated attacker to trigger a denial of service (kernel panic) or memory corruption. Affected as of kernel versions up ...