Alerts This Week
Warning Icon 1 659
Alerts This Week
Warning Icon 1 659

openSUSE Leap 42.1 Security Advisory 2016:1641-1 Critical Kernel DoS Risk

opensuse
Calendar Grey June 21, 2016
Dist Opensuse Esm H88
A significant update for Fedora addresses 25 vulnerabilities and implements several corrections for the Linux core.
An update that solves 19 vulnerabilities and has 17 fixes An update that solves 19 vulnerabilities and has 17 fixes An update that solves 19 vulnerabilities and has 17 fixes is now...

Description

The openSUSE Leap 42.1 kernel was updated to 4.1.26 to receive various

security and bugfixes.

The following security bugs were fixed:

- CVE-2016-1583: Prevent the usage of mmap when the lower file system does

not allow it. This could have lead to local privilege escalation when

ecryptfs-utils was installed and /sbin/mount.ecryptfs_private was setuid

(bsc#983143).

- CVE-2016-4565: The InfiniBand (aka IB) stack in the Linux kernel

incorrectly relies on the write system call, which allows local users to

cause a denial of service (kernel memory write operation) or possibly

have unspecified other impact via a uAPI interface. (bsc#979548)

- CVE-2016-4805: Use-after-free vulnerability in

drivers/net/ppp/ppp_generic.c in the Linux kernel allowed local users to

cause a denial of service (memory corruption and system crash,

or spinlock) or possibly have unspecified other impact by removing a

network namespace, related to...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory denial of service update important kernel fixes openSUSE

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE Leap 42.1:

zypper in -t patch openSUSE-2016-753=1

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE Leap 42.1 (i686 x86_64):

kernel-debug-4.1.26-21.1

kernel-debug-base-4.1.26-21.1

kernel-debug-base-debuginfo-4.1.26-21.1

kernel-debug-debuginfo-4.1.26-21.1

kernel-debug-debugsource-4.1.26-21.1

kernel-debug-devel-4.1.26-21.1

kernel-debug-devel-debuginfo-4.1.26-21.1

kernel-ec2-4.1.26-21.1

kernel-ec2-base-4.1.26-21.1

kernel-ec2-base-debuginfo-4.1.26-21.1

kernel-ec2-debuginfo-4.1.26-21.1

kernel-ec2-debugsource-4.1.26-21.1

kernel-ec2-devel-4.1.26-21.1

kernel-pv-4.1.26-21.1

kernel-pv-base-4.1.26-21.1

kernel-pv-base-debuginfo-4.1.26-21.1

kernel-pv-debuginfo-4.1.26-21.1

kernel-pv-debugsource-4.1.26-21.1

kernel-pv-devel-4.1.26-21.1

kernel-vanilla-4.1.26-21.1

kernel-vanilla-debuginfo-4.1.26-21.1

kernel-vanilla-debugsource-4.1.26-21.1

kernel-vanilla-devel-4.1.26-21.1

kernel-xen-4.1.26-21.1

kernel-xen-base-4.1.26-21.1

kernel-xen-base-debuginfo-4.1.26-21.1

kernel-xen-debuginfo-4.1.26-21.1

kernel-xen-debugsource-4.1.26-21.1

kernel-xen-devel-4.1.26-21.1

- openSUSE Leap 42.1 (i586 x86_64):

kernel-default-4.1.26-21.1

kernel...

Read the Full Advisory

References

https://www.suse.com/security/cve/CVE-2013-7446.html

https://www.suse.com/security/cve/CVE-2016-0758.html

https://www.suse.com/security/cve/CVE-2016-1583.html

https://www.suse.com/security/cve/CVE-2016-2053.html

https://www.suse.com/security/cve/CVE-2016-3134.html

https://www.suse.com/security/cve/CVE-2016-3672.html

https://www.suse.com/security/cve/CVE-2016-3955.html

https://www.suse.com/security/cve/CVE-2016-4482.html

https://www.suse.com/security/cve/CVE-2016-4485.html

https://www.suse.com/security/cve/CVE-2016-4486.html

https://www.suse.com/security/cve/CVE-2016-4557.html

https://www.suse.com/security/cve/CVE-2016-4565.html

https://www.suse.com/security/cve/CVE-2016-4569.html

https://www.suse.com/security/cve/CVE-2016-4578.html

https://www.suse.com/security/cve/CVE-2016-4580.html

https://www.suse.com/security/cve/CVE-2016-4581.html

https://www.suse.com/security/cve/CVE-2016-4805.html

https://www.suse.com/security/cve/CVE-2016-4951.html

https://www.suse.com/security/cve/CVE-2016-5244.html

https://bugz...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2016:1641-1
Rating: important
Affected Products: openSUSE Leap 42.1

Topics%20covered

Topics Covered

security advisory denial of service update important kernel fixes openSUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here