openSUSE 13.1: Security Notice on Kernel Updates - Various Problems Fixed
opensuse
August 29, 2016
An update that solves 21 vulnerabilities and has 49 fixes An update that solves 21 vulnerabilities and has 49 fixes An update that solves 21 vulnerabilities and has 49 fixes is now...
Description
The openSUSE 13.1 kernel was updated to 3.12.62 to receive various
security and bugfixes.
The following security bugs were fixed:
- CVE-2014-9904: The snd_compress_check_input function in
sound/core/compress_offload.c in the ALSA subsystem in the Linux kernel
did not properly check for an integer overflow, which allowed local
users to cause a denial of service (insufficient memory allocation) or
possibly have unspecified other impact via a crafted
SNDRV_COMPRESS_SET_PARAMS ioctl call (bnc#986811).
- CVE-2015-7833: The usbvision driver in the Linux kernel allowed
physically proximate attackers to cause a denial of service (panic) via
a nonzero bInterfaceNumber value in a USB device descriptor (bnc#950998).
- CVE-2015-8551: The PCI backend driver in Xen, when running on an x86
system and using Linux 3.1.x through 4.3.x as the driver domain, allowed
local guest administrators to hit BUG conditions and cause a denial of
...
Read the Full Advisory
Patch
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE 13.1:
zypper in -t patch openSUSE-2016-1029=1
To bring your system up-to-date, use "zypper patch".
Package List
- openSUSE 13.1 (i586 x86_64):
cloop-2.639-11.32.2
cloop-debuginfo-2.639-11.32.2
cloop-debugsource-2.639-11.32.2
cloop-kmp-default-2.639_k3.12.62_52-11.32.2
cloop-kmp-default-debuginfo-2.639_k3.12.62_52-11.32.2
cloop-kmp-desktop-2.639_k3.12.62_52-11.32.2
cloop-kmp-desktop-debuginfo-2.639_k3.12.62_52-11.32.2
cloop-kmp-xen-2.639_k3.12.62_52-11.32.2
cloop-kmp-xen-debuginfo-2.639_k3.12.62_52-11.32.2
crash-7.0.2-2.32.7
crash-debuginfo-7.0.2-2.32.7
crash-debugsource-7.0.2-2.32.7
crash-devel-7.0.2-2.32.7
crash-doc-7.0.2-2.32.7
crash-eppic-7.0.2-2.32.7
crash-eppic-debuginfo-7.0.2-2.32.7
crash-gcore-7.0.2-2.32.7
crash-gcore-debuginfo-7.0.2-2.32.7
crash-kmp-default-7.0.2_k3.12.62_52-2.32.7
crash-kmp-default-debuginfo-7.0.2_k3.12.62_52-2.32.7
crash-kmp-desktop-7.0.2_k3.12.62_52-2.32.7
crash-kmp-desktop-debuginfo-7.0.2_k3.12.62_52-2.32.7
crash-kmp-xen-7.0.2_k3.12.62_52-2.32.7
crash-kmp-xen-debuginfo-7.0.2_k3.12.62_52-2.32.7
hdjmod-debugsource-1.28-16.32.2
hdjmod-kmp-default-1.28_k3.12.62_52-16.32.2
hdjmod-kmp-default-debugi...
Read the Full AdvisoryReferences
https://www.suse.com/security/cve/CVE-2014-9904.html
https://www.suse.com/security/cve/CVE-2015-7833.html
https://www.suse.com/security/cve/CVE-2015-8551.html
https://www.suse.com/security/cve/CVE-2015-8552.html
https://www.suse.com/security/cve/CVE-2015-8845.html
https://www.suse.com/security/cve/CVE-2016-0758.html
https://www.suse.com/security/cve/CVE-2016-1583.html
https://www.suse.com/security/cve/CVE-2016-2053.html
https://www.suse.com/security/cve/CVE-2016-3672.html
https://www.suse.com/security/cve/CVE-2016-4470.html
https://www.suse.com/security/cve/CVE-2016-4482.html
https://www.suse.com/security/cve/CVE-2016-4486.html
https://www.suse.com/security/cve/CVE-2016-4565.html
https://www.suse.com/security/cve/CVE-2016-4569.html
https://www.suse.com/security/cve/CVE-2016-4578.html
https://www.suse.com/security/cve/CVE-2016-4805.html
https://www.suse.com/security/cve/CVE-2016-4997.html
https://www.suse.com/security/cve/CVE-2016-4998.html
https://www.suse.com/security/cve/CVE-2016-5244.html
https://www....
Read the Full Advisory
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: openSUSE-SU-2016:2184-1
Rating: important
Affected Products:
openSUSE 13.1
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!