947 matches found
SUSE-SU-2017:3287-1 Security update for the Linux Kernel (Live Patch 20 for SLE 12)
This update for the Linux Kernel 3.12.61-5269 fixes several issues. The following security issues were fixed: - CVE-2017-16939: The XFRM dump policy implementation in net/xfrm/xfrmuser.c allowed local users to gain privileges or cause a denial of service use-after-free via a crafted SORCVBUF...
SUSE-SU-2017:3308-1 Security update for the Linux Kernel (Live Patch 19 for SLE 12)
This update for the Linux Kernel 3.12.61-5266 fixes several issues. The following security issues were fixed: - CVE-2017-16939: The XFRM dump policy implementation in net/xfrm/xfrmuser.c allowed local users to gain privileges or cause a denial of service use-after-free via a crafted SORCVBUF...
SUSE-SU-2017:3295-1 Security update for the Linux Kernel (Live Patch 12 for SLE 12 SP2)
This update for the Linux Kernel 4.4.74-9235 fixes several issues. The following security issues were fixed: - CVE-2017-1000405: Problematic use of pmdmkdirty in the touchpmd function allowed users to overwrite read-only huge pages e.g. the zero huge page and sealed shmem files bsc1070307. -...
SUSE-SU-2017:3288-1 Security update for the Linux Kernel (Live Patch 4 for SLE 12 SP2)
This update for the Linux Kernel 4.4.38-93 fixes several issues. The following security issues were fixed: - CVE-2017-16939: The XFRM dump policy implementation in net/xfrm/xfrmuser.c kernel allowed local users to gain privileges or cause a denial of service use-after-free via a crafted SORCVBUF...
SUSE-SU-2017:3146-1 Security update for the Linux Kernel (Live Patch 22 for SLE 12)
This update for the Linux Kernel 3.12.61-5277 fixes several issues. The following security issues were fixed: - CVE-2017-15649: net/packet/afpacket.c in the Linux kernel allowed local users to gain privileges via crafted system calls that trigger mishandling of packetfanout data structures, becau...
SUSE-SU-2017:3147-1 Security update for the Linux Kernel (Live Patch 11 for SLE 12 SP1)
This update for the Linux Kernel 3.12.67-606424 fixes several issues. The following security issues were fixed: - CVE-2017-15649: net/packet/afpacket.c in the Linux kernel allowed local users to gain privileges via crafted system calls that trigger mishandling of packetfanout data structures,...
SUSE-SU-2017:3158-1 Security update for the Linux Kernel (Live Patch 21 for SLE 12 SP1)
This update for the Linux Kernel 3.12.74-606460 fixes several issues. The following security issues were fixed: - CVE-2017-15649: net/packet/afpacket.c in the Linux kernel allowed local users to gain privileges via crafted system calls that trigger mishandling of packetfanout data structures,...
SUSE-SU-2017:3117-1 Security update for the Linux Kernel (Live Patch 17 for SLE 12)
This update for the Linux Kernel 3.12.60-5260 fixes several issues. The following security issues were fixed: - CVE-2017-15649: net/packet/afpacket.c in the Linux kernel allowed local users to gain privileges via crafted system calls that trigger mishandling of packetfanout data structures, becau...
SUSE-SU-2017:3118-1 Security update for the Linux Kernel (Live Patch 13 for SLE 12 SP1)
This update for the Linux Kernel 3.12.69-606432 fixes several issues. The following security issues were fixed: - CVE-2017-15649: net/packet/afpacket.c in the Linux kernel allowed local users to gain privileges via crafted system calls that trigger mishandling of packetfanout data structures,...
SUSE-SU-2017:3127-1 Security update for the Linux Kernel (Live Patch 14 for SLE 12 SP1)
This update for the Linux Kernel 3.12.69-606435 fixes several issues. The following security issues were fixed: - CVE-2017-15649: net/packet/afpacket.c in the Linux kernel allowed local users to gain privileges via crafted system calls that trigger mishandling of packetfanout data structures,...
CVE-2017-16537
The imonprobe function in drivers/media/rc/imon.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact via a crafted USB device...
MGASA-2017-0383 Updated kernel-linus packages fix security vulnerabilities
This kernel-linus update is based on upstream 4.9.56 and fixes at least the following security issues: A flaw was found in the way the Linux KVM module processed the trap flagTF bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exceptionDB being raised in the guest...
SUSE-SU-2017:2806-1 Security update for Linux Kernel Live Patch 11 for SLE 12 SP2
This update for the Linux Kernel 4.4.74-9232 fixes several issues. The following security bugs were fixed: - CVE-2017-1000251: The native Bluetooth stack in the Linux Kernel BlueZ was vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remo...
SUSE-SU-2017:2799-1 Security update for Linux Kernel Live Patch 8 for SLE 12 SP2
This update for the Linux Kernel 4.4.59-9220 fixes several issues. The following security bugs were fixed: - CVE-2017-1000251: The native Bluetooth stack in the Linux Kernel BlueZ was vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remo...
SUSE-SU-2017:2769-1 Security update for Linux Kernel Live Patch 20 for SLE 12
This update for the Linux Kernel 3.12.61-5269 fixes one issue. The following security bugs were fixed: - CVE-2017-15274: security/keys/keyctl.c in the Linux kernel did not consider the case of a NULL payload in conjunction with a nonzero length value, which allowed local users to cause a denial o...
CVE-2017-14991
The sgioctl function in drivers/scsi/sg.c in the Linux kernel before 4.13.4 allows local users to obtain sensitive information from uninitialized kernel heap-memory locations via an SGGETREQUESTTABLE ioctl call for /dev/sg0...
SUSE-SU-2017:2497-1 Security update for Linux Kernel Live Patch 24 for SLE 12
This update for the Linux Kernel 3.12.61-5283 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access bsc1052368. - CVE-2017-7645: The NFSv2/NFSv3 server ...
SUSE-SU-2017:2093-1 Security update for Linux Kernel Live Patch 17 for SLE 12
This update for the Linux Kernel 3.12.60-5260 fixes several issues. The following security bugs were fixed: - CVE-2017-7533: A bug in inotify code allowed local users to escalate privilege bsc1050751. - CVE-2017-7645: The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel allowed remote...
Code injection
In all Android releases from CAF using the Linux kernel, there was an issue related to RPMB processing...
SUSE-SU-2017:1280-1 Security update for Linux Kernel Live Patch 13 for SLE 12 SP1
This update for the Linux Kernel 3.12.69-606432 fixes several issues. The following security bugs were fixed: - CVE-2017-7308: The packetsetring function in net/packet/afpacket.c in the Linux kernel did not properly validate certain block-size data, which allowed local users to cause a denial of...