Lucene search

K
suseSuseSUSE-SU-2016:3252-1
HistoryDec 22, 2016 - 8:08 p.m.

Security update for the Linux Kernel (important)

2016-12-2220:08:19
lists.opensuse.org
62

EPSS

0

Percentile

10.1%

The SUSE Linux Enterprise 11 SP 2 kernel was updated to fix two security
issues.

The following security bugs were fixed:

  • CVE-2016-9576: A use-after-free vulnerability in the SCSI generic driver
    allows users with write access to /dev/sg* or /dev/bsg* to elevate their
    privileges (bsc#1013604).
  • CVE-2016-9794: A use-after-free vulnerability in the ALSA pcm layer
    allowed local users to cause a denial of service, memory corruption or
    possibly even to elevate their privileges (bsc#1013533).