Security update for the Linux Kernel (important)

The Linux kernel for openSUSE Leap 42.1 was updated to the 4.1.15 stable release, and also includes security and bugfixes. Following security bugs were fixed: - CVE-2016-0728: A reference leak in keyring handling with joinsessionkeyring could lead to local attackers gain root privileges. bsc96207...

CVE-2015-8569

The 1 pptpbind and 2 pptpconnect functions in drivers/net/ppp/pptp.c in the Linux kernel through 4.3.3 do not verify an address length, which allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism via a crafted application...

CVE-2015-8569

The CVE-2015-8569 issue affects the Linux kernel’s PPTP path: pptp_bind() and pptp_connect() in drivers/net/ppp/pptp.c do not verify the length of the sockaddr, enabling a local attacker to copy kernel memory to user space and bypass KASLR via a crafted application. The vulnerability is present i...