Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
suseSuseSUSE-SU-2016:0434-1
HistoryFeb 11, 2016 - 9:11 p.m.

Security update for kernel live patch 1 (important)

2016-02-1121:11:07
lists.opensuse.org
20

0.0005 Low

EPSS

Percentile

14.4%

JSON

This kernel live patch for Linux Kernel 3.12.32-33.1 fixes security issues
and bugs:

Security issues fixed:

  • CVE-2015-8539: A negatively instantiated user key could have been used
    by a local user to leverage privileges (bnc#958601).

  • CVE-2015-6937: A NULL pointer dereference flaw was found in the Reliable
    Datagram Sockets (RDS) implementation allowing a local user to cause
    system DoS. A verification was missing that the underlying transport
    exists when a connection was created. (bsc#953052)

  • CVE-2015-7990: RDS: Verify the underlying transport exists before
    creating a connection, preventing possible DoS (bsc#953052).

  • CVE-2015-7872: Possible crash when trying to garbage collect an
    uninstantiated keyring (bsc#951542).

  • CVE-2015-2925: The prepend_path function in fs/dcache.c in the Linux
    kernel did not properly handle rename actions inside a bind mount, which
    allowed local users to bypass an intended container protection mechanism
    by renaming a directory, related to a "double-chroot attack (bnc#951625).

Non-security bugfix were also done:

  • xfs: Fix lost direct IO write in the last block (bsc#954005).
  • simple fix in kallsyms initialization (bsc#940342 bsc#916225)

Related

suse 17
f5 6
nessus 54
ubuntucve 5
debiancve 5
prion 5
cve 5
openvas 45
debian 6
oraclelinux 3
osv 4
veracode 3
virtuozzo 1
securityvulns 1
fedora 9
redhat 5
centos 2
ubuntu 18
amazon 1
cloudfoundry 2
mageia 2
suse
suse
Security update for kernel live patch 4 (important)
2016-02-08 18:13:14
Security update for kernel live patch SP1 0 (important)
2016-02-04 19:13:10
Security update for kernel live patch 7 (important)
2016-02-08 18:22:32
f5
f5
K98102572 : Linux kernel vulnerability CVE-2015-7990
2016-01-28 00:00:00
SOL98102572 - Linux kernel vulnerability CVE-2015-7990
2016-01-28 00:00:00
SOL94105604 - Linux kernel vulnerability CVE-2015-7872
2016-01-13 00:00:00
nessus
nessus
F5 Networks BIG-IP : Linux kernel vulnerability (K98102572)
2017-07-10 00:00:00
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2016-3501)
2016-01-11 00:00:00
Debian DSA-3396-1 : linux - security update
2015-11-11 00:00:00
ubuntucve
ubuntucve
CVE-2015-7990
2015-12-28 00:00:00
CVE-2015-6937
2015-09-14 00:00:00
CVE-2015-8539
2016-02-07 00:00:00
debiancve
debiancve
CVE-2015-7990
2015-12-28 11:59:00
CVE-2015-8539
2016-02-08 03:59:00
CVE-2015-7872
2015-11-16 11:59:00
prion
prion
Race condition
2015-12-28 11:59:00
Code injection
2016-02-08 03:59:00
Null pointer dereference
2015-10-19 10:59:00
cve
cve
CVE-2015-7990
2015-12-28 11:59:00
CVE-2015-6937
2015-10-19 10:59:00
CVE-2015-8539
2016-02-08 03:59:00
openvas
openvas
Debian Security Advisory DSA 3396-1 (linux - security update)
2015-11-10 00:00:00
Debian: Security Advisory (DSA-3396-1)
2015-11-09 00:00:00
Oracle: Security Advisory (ELSA-2016-3501)
2016-01-11 00:00:00
debian
debian
[SECURITY] [DSA 3396-1] linux security update
2015-11-10 08:08:51
[SECURITY] [DSA 3396-1] linux security update
2015-11-10 08:08:51
[SECURITY] [DSA 3364-1] linux security update
2015-09-21 18:43:25
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2016-01-08 00:00:00
kernel security and bug fix update
2015-12-15 00:00:00
kernel security and bug fix update
2016-02-16 00:00:00
osv
osv
linux - security update
2015-11-10 00:00:00
linux-2.6 - security update
2015-12-08 00:00:00
linux - security update
2015-09-21 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:20:34
Denial Of Service (DoS)
2019-05-02 05:24:43
Improper Access Control
2019-05-02 05:20:50
virtuozzo
virtuozzo
Important kernel security update: vulnerability fix for CVE-2015-8539, new kernel 2.6.32-042stab120.18; Virtuozzo 6.0 Update 12 Hotfix 1 (6.0.12-3656)
2017-01-18 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3364-1] linux security update
2015-10-05 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: kernel-4.1.8-200.fc22
2015-10-03 21:26:13
[SECURITY] Fedora 23 Update: kernel-4.2.1-300.fc23
2015-09-24 05:23:44
[SECURITY] Fedora 21 Update: kernel-4.1.8-100.fc21
2015-10-03 21:55:06
redhat
redhat
(RHSA-2015:2636) Important: kernel security and bug fix update
2015-12-15 00:00:00
(RHSA-2016:0224) Important: kernel-rt security, bug fix, and enhancement update
2016-02-16 00:00:00
(RHSA-2016:0185) Important: kernel security and bug fix update
2016-02-16 10:28:15
centos
centos
kernel, perf, python security update
2015-12-16 00:07:51
kernel, perf, python security update
2016-02-17 03:38:06
ubuntu
ubuntu
Linux kernel (Utopic HWE) vulnerability
2015-12-01 00:00:00
Linux kernel (OMAP4) vulnerability
2015-12-17 00:00:00
Linux kernel (Vivid HWE) vulnerabilities
2015-12-04 00:00:00
amazon
amazon
Medium: kernel
2015-11-23 13:41:00
cloudfoundry
cloudfoundry
USN-2829-1 Linux kernel vulnerability | Cloud Foundry
2016-01-07 00:00:00
USN-2798-1 Linux kernel vulnerability | Cloud Foundry
2015-11-12 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2016-01-11 13:44:41
Updated kernel-linus packages fix security vulnerabilities
2016-01-14 04:44:39

0.0005 Low

EPSS

Percentile

14.4%

JSON
Related for SUSE-SU-2016:0434-1
suse17f56nessus54ubuntucve5debiancve5prion5cve5openvas45debian6oraclelinux3osv4veracode3virtuozzo1securityvulns1fedora9redhat5centos2ubuntu18amazon1cloudfoundry2mageia2