Security update for Linux Kernel Live Patch 9 for SLE 12 SP1 (important)

2017-03-30T12:17:55
ID SUSE-SU-2017:0887-1
Type suse
Reporter Suse
Modified 2017-03-30T12:17:55

Description

This update for the Linux Kernel 3.12.67-60_64_18 fixes one issue.

The following security bugs were fixed:

  • CVE-2017-7184: The XFRM processsing in the Linux kernel 16.10 allowed local users to obtain root privileges or cause a denial of service (heap-based out-of-bounds access) via an integer overflow, as demonstrated during a Pwn2Own competition at CanSecWest 2017 (bsc#1030575).