Security update for Linux Kernel Live Patch 18 for SLE 12 (important)

2017-03-21T00:09:37
ID SUSE-SU-2017:0766-1
Type suse
Reporter Suse
Modified 2017-03-21T00:09:37

Description

This update for the Linux Kernel 3.12.60-52_63 fixes one issue.

The following security bug was fixed:

  • CVE-2017-5970: The ipv4_pktinfo_prepare function in net/ipv4/ip_sockglue.c in the Linux kernel allowed attackers to cause a denial of service (system crash) via (1) an application that made crafted system calls or possibly (2) IPv4 traffic with invalid IP options (bsc#1025013).