180 matches found
SUSE-SU-2018:0562-1 Security update for the Linux Kernel (Live Patch 31 for SLE 12)
This update for the Linux Kernel 3.12.61-52119 fixes several issues. The following security issue was fixed: - CVE-2017-15649: net/packet/afpacket.c in the Linux kernel allowed local users to gain privileges via crafted system calls that trigger mishandling of packetfanout data structures, becaus...
MGASA-2018-0125 Updated kernel packages fix security vulnerabilities
This kernel update is based on the upstream 4.14.18 and adds some support for mitigating Spectre, variant 1 CVE-2017-5753 and as it is built with the retpoline-aware gcc-5.5.0-1.mga6, it now provides full retpoline mitigation for Spectre, variant 2 CVE-2017-5715. WireGuard has been updated to...
MGASA-2018-0106 Updated kernel packages fix security vulnerabilities
This kernel update is based on the upstream 4.14.16 and fixes several security issues. The most important fixes in this update is for the security issue named "Spectre, variant 2 CVE-2017-5715" that is partly mitigated by enabling retpoline support. For full retpoline mitigation, kernel needs to ...
SUSE-SU-2018:0280-1 Security update for the Linux Kernel (Live Patch 11 for SLE 12 SP2)
This update for the Linux Kernel 4.4.74-9232 fixes several issues. The following security issues were fixed: - CVE-2017-17712: The rawsendmsg function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges bsc1073230. -...
MGASA-2018-0078 Updated kernel-linus packages fix security vulnerabilities
This kernel-linus update provided the upstream 4.14.13 and fixes several security issues. The most important fix in this update is for the security issue named "Meltdown" that is fixed in theese kernels by enabling kernel Page Table Isolation KTPI. Note that according to AMD, this issue does not...
MGASA-2018-0077 Updated kernel-tmb packages fix security vulnerabilities
This kernel-tmb update is based on the upstream 4.14.13 and fixes several security issues. The most important fix in this update is for the security issue named "Meltdown" that is fixed in theese kernels by enabling kernel Page Table Isolation KTPI. Note that according to AMD, this issue does not...
MGASA-2018-0076 Updated kernel packages fix security vulnerabilities
This kernel update is based on the upstream 4.14.13 and fixes several security issues. The most important fix in this update is for the security issue named "Meltdown" that is fixed in theese kernels by enabling kernel Page Table Isolation KPTI. Note that according to AMD, this issue does not...
MGASA-2018-0073 Updated kernel packages fix security vulnerabilities
This kernel update is based on the upstream 4.4.111 and fixes several security issues. The most important fix in this update is for the security issue named "Meltdown" that is fixed in theese kernels by enabling kernel Page Table Isolation KTPI. Note that according to AMD, this issue does not...
MGASA-2018-0064 kernel-linus update provides 4.14 series and fixes security vulnerabilities
This kernel-linus update provides an upgrade to the 4.14 longterm branch, currently based on 4.14.10. It also fixes at least the following security issues: An elevation of privilege vulnerability in the Broadcom wi-fi driver CVE-2017-0786. Use-after-free vulnerability in the sndpcminfo function i...
SUSE-SU-2017:3139-1 Security update for the Linux Kernel (Live Patch 6 for SLE 12 SP2)
This update for the Linux Kernel 4.4.49-9214 fixes several issues. The following security issues were fixed: - CVE-2017-15649: net/packet/afpacket.c in the Linux kernel allowed local users to gain privileges via crafted system calls that trigger mishandling of packetfanout data structures, becaus...
MGASA-2017-0388 Updated kernel-tmb packages fix security vulnerabilities
This kernel-tmb update is based on upstream 4.4.92 and fixes at least the following security issues: A security flaw was discovered in nl80211setrekeydata function in the Linux kernel since v3.1-rc1 through v4.13. This function does not check whether the required attributes are present in a netli...
MGASA-2017-0386 Updated kernel packages fix security vulnerabilities
This kernel update is based on upstream 4.4.92 and fixes at least the following security issues: A security flaw was discovered in nl80211setrekeydata function in the Linux kernel since v3.1-rc1 through v4.13. This function does not check whether the required attributes are present in a netlink...
MGASA-2017-0287 Updated kernel-linus packages fixes security and other bugs
This kernel-linus update is based on upstream 4.9.43 and fixes at least the following security issues: The curseg-segno call in f2fs driver can be malformed so that it will have a value that triggers an out of boundary write that could cause memory corruption on the affected devices, leading to...
MGASA-2017-0261 Updated kernel-tmb packages fixes security and other bugs
This kernel-tmb update is based on upstream 4.4.79 and fixes at least the following security issues: Linux kernel built with the VirtIO GPU driverCONFIGDRMVIRTIOGPU support is vulnerable to a memory leakage issue. It could occur while creating a virtio gpu object in virtiogpuobjectcreate. A...
SUSE-SU-2017:2070-1 Security update for Linux Kernel Live Patch 6 for SLE 12 SP2
This update for the Linux Kernel 4.4.49-9214 fixes several issues. The following security bugs were fixed: - CVE-2017-7533: A bug in inotify code allowed local users to escalate privilege bsc1050751. - CVE-2017-8797: The NFSv4 server in the Linux kernel did not properly validate the layout type...
MGASA-2017-0242 Updated kernel packages fixes security and other bugs
This kernel update is based on upstream 4.4.79 and fixes at least the following security issues: Linux kernel built with the VirtIO GPU driverCONFIGDRMVIRTIOGPU support is vulnerable to a memory leakage issue. It could occur while creating a virtio gpu object in virtiogpuobjectcreate. A...
SUSE-SU-2017:1283-1 Security update for Linux Kernel Live Patch 5 for SLE 12 SP2
This update for the Linux Kernel 4.4.49-9211 fixes several issues. The following security bugs were fixed: - CVE-2017-7308: The packetsetring function in net/packet/afpacket.c in the Linux kernel did not properly validate certain block-size data, which allowed local users to cause a denial of...
MGASA-2017-0136 Updated kernel packages fixes security vulnerabilities
This kernel update is based on upstream 4.4.65 and fixes at least the following security issues: fs/namespace.c in the Linux kernel before 4.9 does not restrict how many mounts may exist in a mount namespace, which allows local users to cause a denial of service memory consumption and deadlock vi...
Unbreakable Enterprise kernel security update
2.6.39-400.294.7 - udp: properly support MSGPEEK with truncated buffers Eric Dumazet Orabug: 25874741 CVE-2016-10229 - block: fix use-after-free in seq file Vegard Nossum Orabug: 25877531 CVE-2016-7910...
MGASA-2017-0088 Updated kernel packages fixes security vulnerabilities
This kernel update is based on upstream 4.4.55 and fixes at least the following security issues: Race condition in drivers/tty/nhdlc.c in the Linux kernel through 4.10.1 allows local users to gain privileges or cause a denial of service double free by setting the HDLC line discipline CVE-2017-263...