Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 438
Alerts This Week
Warning Icon 1 438

openSUSE Leap 42.1: 2017:0458-1 Important Security Update for Kernel

opensuse
Calendar Grey February 13, 2017
Dist Opensuse Esm H88
openSUSE releases a critical patch for the Linux Kernel, targeting various vulnerability concerns and applying necessary corrections.
An update that solves 8 vulnerabilities and has 12 fixes is now available.

Description

The openSUSE Leap 42.1 kernel to 4.1.38 to receive various security and

bugfixes.

The following security bugs were fixed:

- CVE-2016-7117: Use-after-free vulnerability in the __sys_recvmmsg

function in net/socket.c in the Linux kernel allowed remote attackers to

execute arbitrary code via vectors involving a recvmmsg system call that

is mishandled during error processing (bnc#1003077).

- CVE-2017-5551: tmpfs: Fixed a bug that could have allowed users to set

setgid bits on files they don't down (bsc#1021258).

- CVE-2016-10147: crypto/mcryptd.c in the Linux kernel allowed local users to cause a denial of service (NULL pointer dereference and system crash)

by using an AF_ALG socket with an incompatible algorithm, as

demonstrated by mcryptd(md5) (bnc#1020381).

- CVE-2016-10088: The sg implementation in the Linux kernel did not

properly restrict write operations in situations where the KERNEL_DS

option is set, which...

Read the Full Advisory

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE Leap 42.1:

zypper in -t patch openSUSE-2017-246=1

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE Leap 42.1 (i686 x86_64):

kernel-debug-4.1.38-47.1

kernel-debug-base-4.1.38-47.1

kernel-debug-base-debuginfo-4.1.38-47.1

kernel-debug-debuginfo-4.1.38-47.1

kernel-debug-debugsource-4.1.38-47.1

kernel-debug-devel-4.1.38-47.1

kernel-debug-devel-debuginfo-4.1.38-47.1

kernel-ec2-4.1.38-47.1

kernel-ec2-base-4.1.38-47.1

kernel-ec2-base-debuginfo-4.1.38-47.1

kernel-ec2-debuginfo-4.1.38-47.1

kernel-ec2-debugsource-4.1.38-47.1

kernel-ec2-devel-4.1.38-47.1

kernel-pv-4.1.38-47.1

kernel-pv-base-4.1.38-47.1

kernel-pv-base-debuginfo-4.1.38-47.1

kernel-pv-debuginfo-4.1.38-47.1

kernel-pv-debugsource-4.1.38-47.1

kernel-pv-devel-4.1.38-47.1

kernel-vanilla-4.1.38-47.1

kernel-vanilla-debuginfo-4.1.38-47.1

kernel-vanilla-debugsource-4.1.38-47.1

kernel-vanilla-devel-4.1.38-47.1

kernel-xen-4.1.38-47.1

kernel-xen-base-4.1.38-47.1

kernel-xen-base-debuginfo-4.1.38-47.1

kernel-xen-debuginfo-4.1.38-47.1

kernel-xen-debugsource-4.1.38-47.1

kernel-xen-devel-4.1.38-47.1

- openSUSE Leap 42.1 (i586 x86_64):

kernel-default-4.1.38-47.1

kernel...

Read the Full Advisory

References

https://www.suse.com/security/cve/CVE-2016-10088.html

https://www.suse.com/security/cve/CVE-2016-10147.html

https://www.suse.com/security/cve/CVE-2016-7117.html

https://www.suse.com/security/cve/CVE-2016-7917.html

https://www.suse.com/security/cve/CVE-2016-8645.html

https://www.suse.com/security/cve/CVE-2016-9793.html

https://www.suse.com/security/cve/CVE-2016-9806.html

https://www.suse.com/security/cve/CVE-2017-5551.html

https://bugzilla.suse.com/1003077

https://bugzilla.suse.com/1007886

https://bugzilla.suse.com/1009969

https://bugzilla.suse.com/1010444

https://bugzilla.suse.com/1011820

https://bugzilla.suse.com/1013273

https://bugzilla.suse.com/1013531

https://bugzilla.suse.com/1013540

https://bugzilla.suse.com/1013542

https://bugzilla.suse.com/1017589

https://bugzilla.suse.com/1017710

https://bugzilla.suse.com/1019658

https://bugzilla.suse.com/1019660

https://bugzilla.suse.com/1019784

https://bugzilla.suse.com/1020214

https://bugzilla.suse.com/1020381

https://bugzilla.suse.com/1021258

https://bugzilla.suse...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2017:0458-1
Rating: important
Affected Products: openSUSE Leap 42.1 le.

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.