Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 493
Alerts This Week
Warning Icon 1 493

openSUSE Leap 42.2: 2017:1140-1 Important: Linux Kernel Denial Of Service

opensuse
Calendar Grey May 2, 2017
Dist Opensuse Esm H88
A significant security enhancement for openSUSE Leap 42.2 addresses 10 severe vulnerabilities in the Linux Kernel, delivering essential updates.
An update that solves 10 vulnerabilities and has 49 fixes An update that solves 10 vulnerabilities and has 49 fixes An update that solves 10 vulnerabilities and has 49 fixes is now...

Description

The openSUSE Leap 42.2 kernel was updated to 4.4.62 to receive various

security and bugfixes.

The following security bugs were fixed:

- CVE-2017-7618: crypto/ahash.c in the Linux kernel allowed attackers to

cause a denial of service (API operation calling its own callback, and

infinite recursion) by triggering EBUSY on a full queue (bnc#1033340).

- CVE-2016-4997: The compat IPT_SO_SET_REPLACE and IP6T_SO_SET_REPLACE

setsockopt implementations in the netfilter subsystem in the Linux

kernel allowed local users to gain privileges or cause a denial of

service (memory corruption) by leveraging in-container root access to

provide a crafted offset value that triggers an unintended decrement

(bnc#986362).

- CVE-2016-4998: The IPT_SO_SET_REPLACE setsockopt implementation in the

netfilter subsystem in the Linux kernel allowed local users to cause a

denial of service (out-of-bounds read) or possibly obtain sensitive

...

Read the Full Advisory

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE Leap 42.2:

zypper in -t patch openSUSE-2017-532=1

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE Leap 42.2 (x86_64):

kernel-debug-4.4.62-18.6.1

kernel-debug-base-4.4.62-18.6.1

kernel-debug-base-debuginfo-4.4.62-18.6.1

kernel-debug-debuginfo-4.4.62-18.6.1

kernel-debug-debugsource-4.4.62-18.6.1

kernel-debug-devel-4.4.62-18.6.1

kernel-debug-devel-debuginfo-4.4.62-18.6.1

kernel-default-4.4.62-18.6.1

kernel-default-base-4.4.62-18.6.1

kernel-default-base-debuginfo-4.4.62-18.6.1

kernel-default-debuginfo-4.4.62-18.6.1

kernel-default-debugsource-4.4.62-18.6.1

kernel-default-devel-4.4.62-18.6.1

kernel-obs-build-4.4.62-18.6.1

kernel-obs-build-debugsource-4.4.62-18.6.1

kernel-obs-qa-4.4.62-18.6.1

kernel-syms-4.4.62-18.6.1

kernel-vanilla-4.4.62-18.6.1

kernel-vanilla-base-4.4.62-18.6.1

kernel-vanilla-base-debuginfo-4.4.62-18.6.1

kernel-vanilla-debuginfo-4.4.62-18.6.1

kernel-vanilla-debugsource-4.4.62-18.6.1

kernel-vanilla-devel-4.4.62-18.6.1

- openSUSE Leap 42.2 (noarch):

kernel-devel-4.4.62-18.6.1

kernel-docs-4.4.62-18.6.2

kernel-docs-html-4.4.62-18.6.2

kernel-docs-pdf-4.4.62-18.6.2

kernel-macros-4.4.62-18.6.1

k...

Read the Full Advisory

References

https://www.suse.com/security/cve/CVE-2016-4997.html

https://www.suse.com/security/cve/CVE-2016-4998.html

https://www.suse.com/security/cve/CVE-2017-2671.html

https://www.suse.com/security/cve/CVE-2017-7187.html

https://www.suse.com/security/cve/CVE-2017-7261.html

https://www.suse.com/security/cve/CVE-2017-7294.html

https://www.suse.com/security/cve/CVE-2017-7308.html

https://www.suse.com/security/cve/CVE-2017-7374.html

https://www.suse.com/security/cve/CVE-2017-7616.html

https://www.suse.com/security/cve/CVE-2017-7618.html

https://bugzilla.suse.com/1010032

https://bugzilla.suse.com/1012452

https://bugzilla.suse.com/1012829

https://bugzilla.suse.com/1013887

https://bugzilla.suse.com/1014136

https://bugzilla.suse.com/1017461

https://bugzilla.suse.com/1019614

https://bugzilla.suse.com/1021424

https://bugzilla.suse.com/1021762

https://bugzilla.suse.com/1022340

https://bugzilla.suse.com/1023287

https://bugzilla.suse.com/1027153

https://bugzilla.suse.com/1027512

https://bugzilla.suse.com/1027616

https://bugzilla.s...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2017:1140-1
Rating: important
Affected Products: openSUSE Leap 42.2

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.