Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 433
Alerts This Week
Warning Icon 1 433

openSUSE Leap 15.0: 2019:2392-1 Important: Kernel Buffer Overflows

opensuse
Calendar Grey October 27, 2019
Dist Opensuse Esm H88
openSUSE Security Update: Security update for the Linux Kernel _____________________________________
An update that solves 5 vulnerabilities and has 98 fixes is now available.

Description

The openSUSE Leap 15.0 kernel was updated to receive various security and

bugfixes.

The following security bugs were fixed:

- CVE-2019-17666: rtl_p2p_noa_ie in

drivers/net/wireless/realtek/rtlwifi/ps.c lacked a certain upper-bound

check, leading to a buffer overflow (bnc#1154372).

- CVE-2019-16232: drivers/net/wireless/marvell/libertas/if_sdio.c did not

check the alloc_workqueue return value, leading to a NULL pointer

dereference (bnc#1150465).

- CVE-2019-16234: drivers/net/wireless/intel/iwlwifi/pcie/trans.c did not

check the alloc_workqueue return value, leading to a NULL pointer

dereference (bnc#1150452).

- CVE-2019-17133: cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c

did not reject a long SSID IE, leading to a Buffer Overflow

(bnc#1153158).

- CVE-2019-17056: llcp_sock_create in net/nfc/llcp_sock.c in the AF_NFC

network module did not enforce CAP_NET_RAW, which means that

unprivileged users can...

Read the Full Advisory

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 15.0:

zypper in -t patch openSUSE-2019-2392=1

Package List

- openSUSE Leap 15.0 (noarch):

kernel-devel-4.12.14-lp150.12.79.1

kernel-docs-4.12.14-lp150.12.79.1

kernel-docs-html-4.12.14-lp150.12.79.1

kernel-macros-4.12.14-lp150.12.79.1

kernel-source-4.12.14-lp150.12.79.1

kernel-source-vanilla-4.12.14-lp150.12.79.1

- openSUSE Leap 15.0 (x86_64):

kernel-debug-4.12.14-lp150.12.79.1

kernel-debug-base-4.12.14-lp150.12.79.1

kernel-debug-base-debuginfo-4.12.14-lp150.12.79.1

kernel-debug-debuginfo-4.12.14-lp150.12.79.1

kernel-debug-debugsource-4.12.14-lp150.12.79.1

kernel-debug-devel-4.12.14-lp150.12.79.1

kernel-debug-devel-debuginfo-4.12.14-lp150.12.79.1

kernel-default-4.12.14-lp150.12.79.1

kernel-default-base-4.12.14-lp150.12.79.1

kernel-default-base-debuginfo-4.12.14-lp150.12.79.1

kernel-default-debuginfo-4.12.14-lp150.12.79.1

kernel-default-debugsource-4.12.14-lp150.12.79.1

kernel-default-devel-4.12.14-lp150.12.79.1

kernel-default-devel-debuginfo-4.12.14-lp150.12.79.1

kernel-kvmsmall-4.12.14-lp150.12.79.1

kernel-kvmsmall-base-4.12.14-lp150.12.79.1

kernel-kvmsmall-base-debu...

Read the Full Advisory

References

https://www.suse.com/security/cve/CVE-2019-16232.html

https://www.suse.com/security/cve/CVE-2019-16234.html

https://www.suse.com/security/cve/CVE-2019-17056.html

https://www.suse.com/security/cve/CVE-2019-17133.html

https://www.suse.com/security/cve/CVE-2019-17666.html

https://bugzilla.suse.com/1046299

https://bugzilla.suse.com/1046303

https://bugzilla.suse.com/1046305

https://bugzilla.suse.com/1050244

https://bugzilla.suse.com/1050536

https://bugzilla.suse.com/1050545

https://bugzilla.suse.com/1051510

https://bugzilla.suse.com/1055186

https://bugzilla.suse.com/1061840

https://bugzilla.suse.com/1064802

https://bugzilla.suse.com/1065600

https://bugzilla.suse.com/1066129

https://bugzilla.suse.com/1073513

https://bugzilla.suse.com/1086323

https://bugzilla.suse.com/1087092

https://bugzilla.suse.com/1089644

https://bugzilla.suse.com/1093205

https://bugzilla.suse.com/1097583

https://bugzilla.suse.com/1097584

https://bugzilla.suse.com/1097585

https://bugzilla.suse.com/1097586

https://bugzilla.suse.com/1097587

https://b...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2019:2392-1
Rating: important
Affected Products: openSUSE Leap 15.0 le.

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.