Security update for Linux Kernel Live Patch 17 for SLE 12 (important)

ID SUSE-SU-2017:0876-1
Type suse
Reporter Suse
Modified 2017-03-30T12:12:56


This update for the Linux Kernel 3.12.60-52_60 fixes one issue.

The following security bugs were fixed:

  • CVE-2017-7184: The XFRM processsing in the Linux kernel 16.10 allowed local users to obtain root privileges or cause a denial of service (heap-based out-of-bounds access) via an integer overflow, as demonstrated during a Pwn2Own competition at CanSecWest 2017 (bsc#1030575).