Explore top 10 tips to secure your open-source projects now. Read More
×
The openSUSE Leap 15.0 kernel was updated to receive various security and
bugfixes.
The following security bugs were fixed:
- CVE-2019-17666: rtl_p2p_noa_ie in
drivers/net/wireless/realtek/rtlwifi/ps.c lacked a certain upper-bound
check, leading to a buffer overflow (bnc#1154372).
- CVE-2019-16232: drivers/net/wireless/marvell/libertas/if_sdio.c did not
check the alloc_workqueue return value, leading to a NULL pointer
dereference (bnc#1150465).
- CVE-2019-16234: drivers/net/wireless/intel/iwlwifi/pcie/trans.c did not
check the alloc_workqueue return value, leading to a NULL pointer
dereference (bnc#1150452).
- CVE-2019-17133: cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c
did not reject a long SSID IE, leading to a Buffer Overflow
(bnc#1153158).
- CVE-2019-17056: llcp_sock_create in net/nfc/llcp_sock.c in the AF_NFC
network module did not enforce CAP_NET_RAW, which means that
unprivileged users can...
Read the Full AdvisoryPatch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.0:
zypper in -t patch openSUSE-2019-2392=1
- openSUSE Leap 15.0 (noarch):
kernel-devel-4.12.14-lp150.12.79.1
kernel-docs-4.12.14-lp150.12.79.1
kernel-docs-html-4.12.14-lp150.12.79.1
kernel-macros-4.12.14-lp150.12.79.1
kernel-source-4.12.14-lp150.12.79.1
kernel-source-vanilla-4.12.14-lp150.12.79.1
- openSUSE Leap 15.0 (x86_64):
kernel-debug-4.12.14-lp150.12.79.1
kernel-debug-base-4.12.14-lp150.12.79.1
kernel-debug-base-debuginfo-4.12.14-lp150.12.79.1
kernel-debug-debuginfo-4.12.14-lp150.12.79.1
kernel-debug-debugsource-4.12.14-lp150.12.79.1
kernel-debug-devel-4.12.14-lp150.12.79.1
kernel-debug-devel-debuginfo-4.12.14-lp150.12.79.1
kernel-default-4.12.14-lp150.12.79.1
kernel-default-base-4.12.14-lp150.12.79.1
kernel-default-base-debuginfo-4.12.14-lp150.12.79.1
kernel-default-debuginfo-4.12.14-lp150.12.79.1
kernel-default-debugsource-4.12.14-lp150.12.79.1
kernel-default-devel-4.12.14-lp150.12.79.1
kernel-default-devel-debuginfo-4.12.14-lp150.12.79.1
kernel-kvmsmall-4.12.14-lp150.12.79.1
kernel-kvmsmall-base-4.12.14-lp150.12.79.1
kernel-kvmsmall-base-debu...
Read the Full Advisoryhttps://www.suse.com/security/cve/CVE-2019-16232.html
https://www.suse.com/security/cve/CVE-2019-16234.html
https://www.suse.com/security/cve/CVE-2019-17056.html
https://www.suse.com/security/cve/CVE-2019-17133.html
https://www.suse.com/security/cve/CVE-2019-17666.html
https://bugzilla.suse.com/1046299
https://bugzilla.suse.com/1046303
https://bugzilla.suse.com/1046305
https://bugzilla.suse.com/1050244
https://bugzilla.suse.com/1050536
https://bugzilla.suse.com/1050545
https://bugzilla.suse.com/1051510
https://bugzilla.suse.com/1055186
https://bugzilla.suse.com/1061840
https://bugzilla.suse.com/1064802
https://bugzilla.suse.com/1065600
https://bugzilla.suse.com/1066129
https://bugzilla.suse.com/1073513
https://bugzilla.suse.com/1086323
https://bugzilla.suse.com/1087092
https://bugzilla.suse.com/1089644
https://bugzilla.suse.com/1093205
https://bugzilla.suse.com/1097583
https://bugzilla.suse.com/1097584
https://bugzilla.suse.com/1097585
https://bugzilla.suse.com/1097586
https://bugzilla.suse.com/1097587
https://b...
Read the Full AdvisoryGet the latest Linux and open source security news straight to your inbox.