openSUSE Leap 15.0: 2018:2407-1 Important Kernel Security Update
opensuse
August 17, 2018
An update that solves 12 vulnerabilities and has 60 fixes is now available.
Description
The openSUSE Leap 15.0 kernel was updated to receive various security and
bugfixes.
The following security bugs were fixed:
- CVE-2018-10853: A flaw was found in KVM in which certain instructions
such as sgdt/sidt call segmented_write_std doesn't propagate access
correctly. As such, during userspace induced exception, the guest can
incorrectly assume that the exception happened in the kernel and panic
(bnc#1097104).
- CVE-2018-10876: A flaw was found in the ext4 filesystem code. A
use-after-free is possible in ext4_ext_remove_space() function when
mounting and operating a crafted ext4 image. (bnc#1099811)
- CVE-2018-10877: Linux kernel ext4 filesystem is vulnerable to an
out-of-bound access in the ext4_ext_drop_refs() function when operating
on a crafted ext4 filesystem image. (bnc#1099846)
- CVE-2018-10878: A flaw was found in the ext4 filesystem. A local user
can cause an out-of-bounds write and a denial of...
Read the Full Advisory
Patch
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.0:
zypper in -t patch openSUSE-2018-886=1
Package List
- openSUSE Leap 15.0 (x86_64):
kernel-debug-4.12.14-lp150.12.16.1
kernel-debug-base-4.12.14-lp150.12.16.1
kernel-debug-base-debuginfo-4.12.14-lp150.12.16.1
kernel-debug-debuginfo-4.12.14-lp150.12.16.1
kernel-debug-debugsource-4.12.14-lp150.12.16.1
kernel-debug-devel-4.12.14-lp150.12.16.1
kernel-debug-devel-debuginfo-4.12.14-lp150.12.16.1
kernel-default-4.12.14-lp150.12.16.1
kernel-default-base-4.12.14-lp150.12.16.1
kernel-default-base-debuginfo-4.12.14-lp150.12.16.1
kernel-default-debuginfo-4.12.14-lp150.12.16.1
kernel-default-debugsource-4.12.14-lp150.12.16.1
kernel-default-devel-4.12.14-lp150.12.16.1
kernel-default-devel-debuginfo-4.12.14-lp150.12.16.1
kernel-kvmsmall-4.12.14-lp150.12.16.1
kernel-kvmsmall-base-4.12.14-lp150.12.16.1
kernel-kvmsmall-base-debuginfo-4.12.14-lp150.12.16.1
kernel-kvmsmall-debuginfo-4.12.14-lp150.12.16.1
kernel-kvmsmall-debugsource-4.12.14-lp150.12.16.1
kernel-kvmsmall-devel-4.12.14-lp150.12.16.1
kernel-kvmsmall-devel-debuginfo-4.12.14-lp150.12.16.1
kernel-obs-build-4.12.14-lp15...
Read the Full AdvisoryReferences
https://www.suse.com/security/cve/CVE-2018-10853.html
https://www.suse.com/security/cve/CVE-2018-10876.html
https://www.suse.com/security/cve/CVE-2018-10877.html
https://www.suse.com/security/cve/CVE-2018-10878.html
https://www.suse.com/security/cve/CVE-2018-10879.html
https://www.suse.com/security/cve/CVE-2018-10880.html
https://www.suse.com/security/cve/CVE-2018-10881.html
https://www.suse.com/security/cve/CVE-2018-10882.html
https://www.suse.com/security/cve/CVE-2018-10883.html
https://www.suse.com/security/cve/CVE-2018-3620.html
https://www.suse.com/security/cve/CVE-2018-3646.html
https://www.suse.com/security/cve/CVE-2018-5391.html
https://bugzilla.suse.com/1065600
https://bugzilla.suse.com/1081917
https://bugzilla.suse.com/1083647
https://bugzilla.suse.com/1086288
https://bugzilla.suse.com/1086314
https://bugzilla.suse.com/1086315
https://bugzilla.suse.com/1086317
https://bugzilla.suse.com/1086327
https://bugzilla.suse.com/1086331
https://bugzilla.suse.com/1086906
https://bugzilla.suse.com/1087081
http...
Read the Full Advisory
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: openSUSE-SU-2018:2407-1
Rating: important
Affected Products:
openSUSE Leap 15.0
le.
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!