openSUSE 13.1 Security Update: 2014:0678-1 Critical Kernel Threat Fixes
opensuse
May 19, 2014
An update that solves 17 vulnerabilities and has 23 fixes An update that solves 17 vulnerabilities and has 23 fixes An update that solves 17 vulnerabilities and has 23 fixes is now...
Description
This Linux kernel security update fixes various security issues and bugs.
The Linux Kernel was updated to fix various security issues and bugs.
Main security issues fixed:
A security issue in the tty layer that was fixed that could be used by
local attackers for code execution (CVE-2014-0196).
Two security issues in the floppy driver were fixed that could be used by
local attackers on machines with the floppy to crash the kernel or
potentially execute code in the kernel (CVE-2014-1737 CVE-2014-1738).
Other security issues and bugfixes:
- netfilter: nf_nat: fix access to uninitialized buffer in IRC NAT helper
(bnc#860835 CVE-2014-1690).
- net: sctp: fix sctp_sf_do_5_1D_ce to verify if we/peer is AUTH
(bnc#866102, CVE-2014-0101).
- [media] ivtv: Fix Oops when no firmware is loaded (bnc#875440).
- ALSA: hda - Add dock pin setups for Thinkpad T440 (bnc#876699).
- ip6tnl: fix double free of fb_tnl_dev on exit (bnc#876531).
-...
Read the Full Advisory
Patch
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE 13.1:
zypper in -t patch openSUSE-2014-375
To bring your system up-to-date, use "zypper patch".
Package List
- openSUSE 13.1 (i586 x86_64):
cloop-2.639-11.7.1
cloop-debuginfo-2.639-11.7.1
cloop-debugsource-2.639-11.7.1
cloop-kmp-default-2.639_k3.11.10_11-11.7.1
cloop-kmp-default-debuginfo-2.639_k3.11.10_11-11.7.1
cloop-kmp-desktop-2.639_k3.11.10_11-11.7.1
cloop-kmp-desktop-debuginfo-2.639_k3.11.10_11-11.7.1
cloop-kmp-xen-2.639_k3.11.10_11-11.7.1
cloop-kmp-xen-debuginfo-2.639_k3.11.10_11-11.7.1
crash-7.0.2-2.7.1
crash-debuginfo-7.0.2-2.7.1
crash-debugsource-7.0.2-2.7.1
crash-devel-7.0.2-2.7.1
crash-doc-7.0.2-2.7.1
crash-eppic-7.0.2-2.7.1
crash-eppic-debuginfo-7.0.2-2.7.1
crash-gcore-7.0.2-2.7.1
crash-gcore-debuginfo-7.0.2-2.7.1
crash-kmp-default-7.0.2_k3.11.10_11-2.7.1
crash-kmp-default-debuginfo-7.0.2_k3.11.10_11-2.7.1
crash-kmp-desktop-7.0.2_k3.11.10_11-2.7.1
crash-kmp-desktop-debuginfo-7.0.2_k3.11.10_11-2.7.1
crash-kmp-xen-7.0.2_k3.11.10_11-2.7.1
crash-kmp-xen-debuginfo-7.0.2_k3.11.10_11-2.7.1
hdjmod-debugsource-1.28-16.7.1
hdjmod-kmp-default-1.28_k3.11.10_11-16.7.1
hdjmod-kmp-default-debuginfo-1.28_k3.11.10_11-16.7....
Read the Full AdvisoryReferences
https://www.suse.com/security/cve/CVE-2013-4579.html
https://www.suse.com/security/cve/CVE-2013-6885.html
https://www.suse.com/security/cve/CVE-2013-7263.html
https://www.suse.com/security/cve/CVE-2013-7264.html
https://www.suse.com/security/cve/CVE-2013-7265.html
https://www.suse.com/security/cve/CVE-2013-7281.html
https://www.suse.com/security/cve/CVE-2014-0069.html
https://www.suse.com/security/cve/CVE-2014-0101.html
https://www.suse.com/security/cve/CVE-2014-0196.html
https://www.suse.com/security/cve/CVE-2014-1438.html
https://www.suse.com/security/cve/CVE-2014-1446.html
https://www.suse.com/security/cve/CVE-2014-1690.html
https://www.suse.com/security/cve/CVE-2014-1737.html
https://www.suse.com/security/cve/CVE-2014-1738.html
https://www.suse.com/security/cve/CVE-2014-1874.html
https://www.suse.com/security/cve/CVE-2014-2523.html
https://www.suse.com/security/cve/CVE-2014-2672.html
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: openSUSE-SU-2014:0678-1
Rating: important
Affected Products:
openSUSE 13.1
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!