SUSE-SU-2017:3295-1 Security update for the Linux Kernel (Live Patch 12 for SLE 12 SP2)

This update for the Linux Kernel 4.4.74-9235 fixes several issues. The following security issues were fixed: - CVE-2017-1000405: Problematic use of pmdmkdirty in the touchpmd function allowed users to overwrite read-only huge pages e.g. the zero huge page and sealed shmem files bsc1070307. -...

SUSE-SU-2017:3288-1 Security update for the Linux Kernel (Live Patch 4 for SLE 12 SP2)

This update for the Linux Kernel 4.4.38-93 fixes several issues. The following security issues were fixed: - CVE-2017-16939: The XFRM dump policy implementation in net/xfrm/xfrmuser.c kernel allowed local users to gain privileges or cause a denial of service use-after-free via a crafted SORCVBUF...

Apple XNU Kernel - Memory Corruption due to Integer Overflow in __offsetof Usage in posix_spawn on 3

Exploit for macOS platform in category dos / poc is a pointer to a further arguments descriptor in userspace with the following structure on 32-bit: struct user32posixspawnargsdesc uint32t attrsize; / size of attributes block / uint32t attrp; / pointer to block / uint32t fileactionssize; / size o...

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-118.20.1 - tty: Fix race in ptywrite leading to NULL deref Todd Vierling Orabug: 25392692 - ocfs2/dlm: ignore cleaning the migration mle that is inuse xuejiufei Orabug: 26479780 - KEYS: fix dereferencing NULL payload with nonzero length Eric Biggers Orabug: 26592025 - oracleasm:...

SUSE-SU-2017:3146-1 Security update for the Linux Kernel (Live Patch 22 for SLE 12)

This update for the Linux Kernel 3.12.61-5277 fixes several issues. The following security issues were fixed: - CVE-2017-15649: net/packet/afpacket.c in the Linux kernel allowed local users to gain privileges via crafted system calls that trigger mishandling of packetfanout data structures, becau...

SUSE-SU-2017:3147-1 Security update for the Linux Kernel (Live Patch 11 for SLE 12 SP1)

This update for the Linux Kernel 3.12.67-606424 fixes several issues. The following security issues were fixed: - CVE-2017-15649: net/packet/afpacket.c in the Linux kernel allowed local users to gain privileges via crafted system calls that trigger mishandling of packetfanout data structures,...

SUSE-SU-2017:3158-1 Security update for the Linux Kernel (Live Patch 21 for SLE 12 SP1)

This update for the Linux Kernel 3.12.74-606460 fixes several issues. The following security issues were fixed: - CVE-2017-15649: net/packet/afpacket.c in the Linux kernel allowed local users to gain privileges via crafted system calls that trigger mishandling of packetfanout data structures,...

kernel security and bug fix update

3.10.0-693.11.1.0.1.el7.OL7 - ipc ipc/sem.c: bugfix for semctl,,GETZCNT Manfred Spraul orabug 22552377 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676...

SUSE-SU-2017:3117-1 Security update for the Linux Kernel (Live Patch 17 for SLE 12)

This update for the Linux Kernel 3.12.60-5260 fixes several issues. The following security issues were fixed: - CVE-2017-15649: net/packet/afpacket.c in the Linux kernel allowed local users to gain privileges via crafted system calls that trigger mishandling of packetfanout data structures, becau...

SUSE-SU-2017:3132-1 Security update for the Linux Kernel (Live Patch 27 for SLE 12)

This update for the Linux Kernel 3.12.61-5292 fixes several issues. The following security issues were fixed: - CVE-2017-15649: net/packet/afpacket.c in the Linux kernel allowed local users to gain privileges via crafted system calls that trigger mishandling of packetfanout data structures, becau...

SUSE-SU-2017:3124-1 Security update for the Linux Kernel (Live Patch 10 for SLE 12 SP1)

This update for the Linux Kernel 3.12.67-606421 fixes several issues. The following security issues were fixed: - CVE-2017-15649: net/packet/afpacket.c in the Linux kernel allowed local users to gain privileges via crafted system calls that trigger mishandling of packetfanout data structures,...

SUSE-SU-2017:3118-1 Security update for the Linux Kernel (Live Patch 13 for SLE 12 SP1)

This update for the Linux Kernel 3.12.69-606432 fixes several issues. The following security issues were fixed: - CVE-2017-15649: net/packet/afpacket.c in the Linux kernel allowed local users to gain privileges via crafted system calls that trigger mishandling of packetfanout data structures,...

SUSE-SU-2017:3127-1 Security update for the Linux Kernel (Live Patch 14 for SLE 12 SP1)

This update for the Linux Kernel 3.12.69-606435 fixes several issues. The following security issues were fixed: - CVE-2017-15649: net/packet/afpacket.c in the Linux kernel allowed local users to gain privileges via crafted system calls that trigger mishandling of packetfanout data structures,...

Kernel security update: CVE-2017-15265; new kernel 2.6.32-042stab126.1 for Virtuozzo Containers for Linux 4.7, Server Bare Metal 5.0

This update provides a new Virtuozzo Containers for Linux 4.7 and Server Bare Metal 5.0 kernel 2.6.32-042stab126.1 based on the Red Hat Enterprise Linux 6.9 kernel 2.6.32-696.16.1.el6. The new kernel inherits several non-security bugfixes from the RHEL kernel as we have already fixed the security...

kernel security and bug fix update

2.6.32-696.16.1.OL6 - Update genkey bug 25599697 2.6.32-696.16.1 - net packet: fix tpreserve race in packetsetring Stefano Brivio 1481941 1481943 CVE-2017-1000111 - net packet: fix overflow in check for tpframenr Stefano Brivio 1481941 1481943 CVE-2017-1000111 - net packet: fix overflow in check...

Unbreakable Enterprise kernel security update

4.1.12-103.9.4 - thp: run vmaadjusttranshuge outside immaprwsem Kirill A. Shutemov Orabug: 27026180 4.1.12-103.9.3 - selinux: fix off-by-one in setprocattr Stephen Smalley Orabug: 27001717 CVE-2017-2618 CVE-2017-2618 CVE-2017-2618 - sysctl: Drop reference added by grabheader in procsysreaddir Zho...

CVE-2017-16537

The imonprobe function in drivers/media/rc/imon.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact via a crafted USB device...

Unbreakable Enterprise kernel security update

2.6.39-400.297.12 - xsigo: backport Fix race in freeing aged Forwarding tables Pradeep Gopanapalli Orabug: 24823234 - ocfs2: fix deadlock issue when taking inode lock at vfs entry points Eric Ren Orabug: 25671723 - ocfs2/dlmglue: prepare tracking logic to avoid recursive cluster lock Eric Ren...

Important kernel security update: CVE-2017-15649; Virtuozzo ReadyKernel patch 36.1 for Virtuozzo 7.0.4, 7.0.4 HF3, and 7.0.5

The cumulative Virtuozzo ReadyKernel patch was updated with security and stability fixes. The patch applies to Virtuozzo kernels 3.10.0-514.16.1.vz7.30.10 Virtuozzo 7.0.4, 3.10.0-514.16.1.vz7.30.15 Virtuozzo 7.0.4 HF3, and 3.10.0-514.26.1.vz7.33.22 Virtuozzo 7.0.5. Vulnerability id: CVE-2017-1564...

Important kernel security update: CVE-2017-15649; Virtuozzo ReadyKernel patch 36.1 for Virtuozzo 7.0.0, 7.0.1, and 7.0.3

The cumulative Virtuozzo ReadyKernel patch was updated with security and stability fixes. The patch applies to Virtuozzo kernels 3.10.0-327.18.2.vz7.15.2 Virtuozzo 7.0.0, 3.10.0-327.36.1.vz7.18.7 Virtuozzo 7.0.1, 3.10.0-327.36.1.vz7.20.18 Virtuozzo 7.0.3. Vulnerability id: CVE-2017-15649 It was...