Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 439
Alerts This Week
Warning Icon 1 439

openSUSE Leap 42.2: 2016:2301-1 Essential Linux Kernel Patch

opensuse
Calendar Grey September 12, 2016
Dist Opensuse Esm H88
Important patch released for openSUSE Leap 42.1 tackling 17 vulnerabilities in the Linux Kernel, incorporating a range of enhancements.
An update that solves 17 vulnerabilities and has 9 fixes is now available.

Description

The openSUSE Leap 42.1 kernel was updated to 4.1.31 to receive various

security and bugfixes.

The following security bugs were fixed:

- CVE-2016-2847: fs/pipe.c in the Linux kernel did not limit the amount of

unread data in pipes, which allowed local users to cause a denial of

service (memory consumption) by creating many pipes with non-default

sizes (bnc#970948).

- CVE-2016-3134: The netfilter subsystem in the Linux kernel did not

validate certain offset fields, which allowed local users to gain

privileges or cause a denial of service (heap memory corruption) via an

IPT_SO_SET_REPLACE setsockopt call (bnc#971126).

- CVE-2016-3156: The IPv4 implementation in the Linux kernel mishandled

destruction of device objects, which allowed guest OS users to cause a

denial of service (host OS networking outage) by arranging for a large

number of IP addresses (bnc#971360).

- CVE-2016-4485: The llc_cmsg_rcv function in...

Read the Full Advisory

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE Leap 42.1:

zypper in -t patch openSUSE-2016-1076=1

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE Leap 42.1 (i586 x86_64):

hdjmod-debugsource-1.28-24.1

hdjmod-kmp-default-1.28_k4.1.31_30-24.1

hdjmod-kmp-default-debuginfo-1.28_k4.1.31_30-24.1

hdjmod-kmp-pv-1.28_k4.1.31_30-24.1

hdjmod-kmp-pv-debuginfo-1.28_k4.1.31_30-24.1

hdjmod-kmp-xen-1.28_k4.1.31_30-24.1

hdjmod-kmp-xen-debuginfo-1.28_k4.1.31_30-24.1

ipset-6.25.1-5.1

ipset-debuginfo-6.25.1-5.1

ipset-debugsource-6.25.1-5.1

ipset-devel-6.25.1-5.1

ipset-kmp-default-6.25.1_k4.1.31_30-5.1

ipset-kmp-default-debuginfo-6.25.1_k4.1.31_30-5.1

ipset-kmp-pv-6.25.1_k4.1.31_30-5.1

ipset-kmp-pv-debuginfo-6.25.1_k4.1.31_30-5.1

ipset-kmp-xen-6.25.1_k4.1.31_30-5.1

ipset-kmp-xen-debuginfo-6.25.1_k4.1.31_30-5.1

kernel-default-4.1.31-30.2

kernel-default-base-4.1.31-30.2

kernel-default-base-debuginfo-4.1.31-30.2

kernel-default-debuginfo-4.1.31-30.2

kernel-default-debugsource-4.1.31-30.2

kernel-default-devel-4.1.31-30.2

kernel-obs-build-4.1.31-30.3

kernel-obs-build-debugsource-4.1.31-30.3

kernel-obs-qa-4.1.31-30.1

kernel-obs-qa-xen-4.1.31-30.1

kernel-syms-4.1.31-30.1

libi...

Read the Full Advisory

References

https://www.suse.com/security/cve/CVE-2015-8787.html

https://www.suse.com/security/cve/CVE-2016-1237.html

https://www.suse.com/security/cve/CVE-2016-2847.html

https://www.suse.com/security/cve/CVE-2016-3134.html

https://www.suse.com/security/cve/CVE-2016-3156.html

https://www.suse.com/security/cve/CVE-2016-4485.html

https://www.suse.com/security/cve/CVE-2016-4486.html

https://www.suse.com/security/cve/CVE-2016-4557.html

https://www.suse.com/security/cve/CVE-2016-4569.html

https://www.suse.com/security/cve/CVE-2016-4578.html

https://www.suse.com/security/cve/CVE-2016-4580.html

https://www.suse.com/security/cve/CVE-2016-4805.html

https://www.suse.com/security/cve/CVE-2016-4951.html

https://www.suse.com/security/cve/CVE-2016-4998.html

https://www.suse.com/security/cve/CVE-2016-5696.html

https://www.suse.com/security/cve/CVE-2016-6480.html

https://www.suse.com/security/cve/CVE-2016-6828.html

https://bugzilla.suse.com/963931

https://bugzilla.suse.com/970948

https://bugzilla.suse.com/971126

https://bugzilla.sus...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2016:2290-1
Rating: important
Affected Products: openSUSE Leap 42.1 le.

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.