Security update for Linux Kernel Live Patch 10 for SLE 12 SP1 (important)

ID SUSE-SU-2017:0868-1
Type suse
Reporter Suse
Modified 2017-03-30T12:09:45


This update for the Linux Kernel 3.12.67-60_64_21 fixes one issue.

The following security bugs were fixed:

  • CVE-2017-7184: The XFRM processsing in the Linux kernel 16.10 allowed local users to obtain root privileges or cause a denial of service (heap-based out-of-bounds access) via an integer overflow, as demonstrated during a Pwn2Own competition at CanSecWest 2017 (bsc#1030575).