Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 519
Alerts This Week
Warning Icon 1 519

openSUSE 42.2 Important Security Update: Kernel Critical Fixes

opensuse
Calendar Grey February 13, 2017
Dist Opensuse Esm H88
A critical patch for the Linux kernel that remedies various security flaws has just been released for openSUSE.
An update that solves 11 vulnerabilities and has 98 fixes An update that solves 11 vulnerabilities and has 98 fixes An update that solves 11 vulnerabilities and has 98 fixes is now...

Description

The openSUSE 42.2 kernel was updated to 4.4.42 stable release.

The following security bugs were fixed:

- CVE-2016-7117: Use-after-free vulnerability in the __sys_recvmmsg

function in net/socket.c in the Linux kernel allowed remote attackers to

execute arbitrary code via vectors involving a recvmmsg system call that

is mishandled during error processing (bnc#1003077 1003253).

- CVE-2017-5576, CVE-2017-5577: A buffer overflow in the VC4_SUBMIT_CL

IOCTL in the VideoCore DRM driver for Raspberry Pi was fixed.

(bsc#1021294)

- CVE-2017-5551: tmpfs: Fixed a bug that could have allowed users to set

setgid bits on files they don't down. (bsc#1021258).

- CVE-2017-2583: A Linux kernel built with the Kernel-based Virtual

Machine (CONFIG_KVM) support was vulnerable to an incorrect segment

selector(SS) value error. A user/process inside guest could have used

this flaw to crash the guest resulting in DoS or potentially escalate

...

Read the Full Advisory

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE Leap 42.2:

zypper in -t patch openSUSE-2017-245=1

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE Leap 42.2 (x86_64):

kernel-debug-4.4.46-11.1

kernel-debug-base-4.4.46-11.1

kernel-debug-base-debuginfo-4.4.46-11.1

kernel-debug-debuginfo-4.4.46-11.1

kernel-debug-debugsource-4.4.46-11.1

kernel-debug-devel-4.4.46-11.1

kernel-debug-devel-debuginfo-4.4.46-11.1

kernel-default-4.4.46-11.1

kernel-default-base-4.4.46-11.1

kernel-default-base-debuginfo-4.4.46-11.1

kernel-default-debuginfo-4.4.46-11.1

kernel-default-debugsource-4.4.46-11.1

kernel-default-devel-4.4.46-11.1

kernel-obs-build-4.4.46-11.1

kernel-obs-build-debugsource-4.4.46-11.1

kernel-obs-qa-4.4.46-11.1

kernel-syms-4.4.46-11.1

kernel-vanilla-4.4.46-11.1

kernel-vanilla-base-4.4.46-11.1

kernel-vanilla-base-debuginfo-4.4.46-11.1

kernel-vanilla-debuginfo-4.4.46-11.1

kernel-vanilla-debugsource-4.4.46-11.1

kernel-vanilla-devel-4.4.46-11.1

- openSUSE Leap 42.2 (noarch):

kernel-devel-4.4.46-11.1

kernel-docs-4.4.46-11.3

kernel-docs-html-4.4.46-11.3

kernel-docs-pdf-4.4.46-11.3

kernel-macros-4.4.46-11.1

kernel-source-4.4.46-11.1

kernel-source-vanilla-4.4.46-11....

Read the Full Advisory

References

https://www.suse.com/security/cve/CVE-2015-8709.html

https://www.suse.com/security/cve/CVE-2016-7117.html

https://www.suse.com/security/cve/CVE-2016-8645.html

https://www.suse.com/security/cve/CVE-2016-9793.html

https://www.suse.com/security/cve/CVE-2016-9806.html

https://www.suse.com/security/cve/CVE-2016-9919.html

https://www.suse.com/security/cve/CVE-2017-2583.html

https://www.suse.com/security/cve/CVE-2017-2584.html

https://www.suse.com/security/cve/CVE-2017-5551.html

https://www.suse.com/security/cve/CVE-2017-5576.html

https://www.suse.com/security/cve/CVE-2017-5577.html

https://bugzilla.suse.com/1000092

https://bugzilla.suse.com/1000619

https://bugzilla.suse.com/1003077

https://bugzilla.suse.com/1003253

https://bugzilla.suse.com/1005918

https://bugzilla.suse.com/1006469

https://bugzilla.suse.com/1006472

https://bugzilla.suse.com/1007729

https://bugzilla.suse.com/1008742

https://bugzilla.suse.com/1009546

https://bugzilla.suse.com/1009674

https://bugzilla.suse.com/1009718

https://bugzilla.suse.com/100991...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2017:0456-1
Rating: important
Affected Products: openSUSE Leap 42.2

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.