Security update for Linux Kernel Live Patch 20 for SLE 12 (important)

ID SUSE-SU-2017:1281-1
Type suse
Reporter Suse
Modified 2017-05-15T21:13:19


This update the for Linux Kernel 3.12.61-52.69 fixes one issue.

The following security bug was fixed:

  • CVE-2017-5970: The ipv4_pktinfo_prepare function in net/ipv4/ip_sockglue.c in the Linux kernel allowed attackers to cause a denial of service (system crash) via (1) an application that made crafted system calls or possibly (2) IPv4 traffic with invalid IP options (bsc#1025013).
  • CVE-2017-7308: The packet_set_ring function in net/packet/af_packet.c in the Linux kernel did not properly validate certain block-size data, which allowed local users to cause a denial of service (overflow) or possibly have unspecified other impact via crafted system calls (bsc#1030575, bsc#1031660).