openSUSE Leap 42.3: 2019:1085-1 Important: Kernel Security Update
opensuse
March 30, 2019
An update that solves two vulnerabilities and has 53 fixes is now available.
Description
The openSUSE Leap 42.3 kernel was updated to 4.4.176 to receive various
security and bugfixes.
The following security bugs were fixed:
- CVE-2019-9213: expand_downwards in mm/mmap.c lacked a check for the mmap
minimum address, which made it easier for attackers to exploit kernel
NULL pointer dereferences on non-SMAP platforms. This is related to a
capability check for the wrong task (bnc#1128166).
- CVE-2019-2024: A use-after-free when disconnecting a source was fixed
which could lead to crashes. bnc#1129179).
The following non-security bugs were fixed:
- ax25: fix possible use-after-free (bnc#1012382).
- block_dev: fix crash on chained bios with O_DIRECT (bsc#1090435).
- block: do not use bio->bi_vcnt to figure out segment number
(bsc#1128893).
- bnxt_re: Fix couple of memory leaks that could lead to IOMMU call traces
(bsc#1020413).
- bpf: fix replace_map_fd_with_map_ptr's ldimm64 second imm field
...
Read the Full Advisory
Patch
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 42.3:
zypper in -t patch openSUSE-2019-1085=1
Package List
- openSUSE Leap 42.3 (x86_64):
kernel-debug-4.4.176-96.1
kernel-debug-base-4.4.176-96.1
kernel-debug-base-debuginfo-4.4.176-96.1
kernel-debug-debuginfo-4.4.176-96.1
kernel-debug-debugsource-4.4.176-96.1
kernel-debug-devel-4.4.176-96.1
kernel-debug-devel-debuginfo-4.4.176-96.1
kernel-default-4.4.176-96.1
kernel-default-base-4.4.176-96.1
kernel-default-base-debuginfo-4.4.176-96.1
kernel-default-debuginfo-4.4.176-96.1
kernel-default-debugsource-4.4.176-96.1
kernel-default-devel-4.4.176-96.1
kernel-obs-build-4.4.176-96.1
kernel-obs-build-debugsource-4.4.176-96.1
kernel-obs-qa-4.4.176-96.1
kernel-syms-4.4.176-96.1
kernel-vanilla-4.4.176-96.1
kernel-vanilla-base-4.4.176-96.1
kernel-vanilla-base-debuginfo-4.4.176-96.1
kernel-vanilla-debuginfo-4.4.176-96.1
kernel-vanilla-debugsource-4.4.176-96.1
kernel-vanilla-devel-4.4.176-96.1
- openSUSE Leap 42.3 (noarch):
kernel-devel-4.4.176-96.1
kernel-docs-4.4.176-96.1
kernel-docs-html-4.4.176-96.1
kernel-docs-pdf-4.4.176-96.1
kernel-macros-4.4.176-96.1
kernel-source-4.4.176-96.1
ker...
Read the Full AdvisoryReferences
https://www.suse.com/security/cve/CVE-2019-2024.html
https://www.suse.com/security/cve/CVE-2019-9213.html
https://bugzilla.suse.com/1012382
https://bugzilla.suse.com/1020413
https://bugzilla.suse.com/1065600
https://bugzilla.suse.com/1070767
https://bugzilla.suse.com/1075697
https://bugzilla.suse.com/1082943
https://bugzilla.suse.com/1087092
https://bugzilla.suse.com/1090435
https://bugzilla.suse.com/1102959
https://bugzilla.suse.com/1103429
https://bugzilla.suse.com/1106929
https://bugzilla.suse.com/1109137
https://bugzilla.suse.com/1109248
https://bugzilla.suse.com/1119019
https://bugzilla.suse.com/1119843
https://bugzilla.suse.com/1120691
https://bugzilla.suse.com/1120902
https://bugzilla.suse.com/1121713
https://bugzilla.suse.com/1121805
https://bugzilla.suse.com/1124235
https://bugzilla.suse.com/1125315
https://bugzilla.suse.com/1125446
https://bugzilla.suse.com/1126389
https://bugzilla.suse.com/1126772
https://bugzilla.suse.com/1126773
https://bugzilla.suse.com/1126805
https://bugzilla.suse.com/1127082
https...
Read the Full Advisory
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: openSUSE-SU-2019:1085-1
Rating: important
Affected Products:
openSUSE Leap 42.3
le.
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!