Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 433
Alerts This Week
Warning Icon 1 433

openSUSE 15.0: 2019:2503-1 Important: Linux Kernel Security Issues

opensuse
Calendar Grey November 14, 2019
Dist Opensuse Esm H88
This important security patch for Fedora's kernel tackles serious vulnerabilities, accompanied by multiple updates now available.
An update that solves 10 vulnerabilities and has 38 fixes is now available.

Description

The openSUSE Leap 15.0 kernel was updated to receive various security and

bugfixes.

The following security bugs were fixed:

- CVE-2019-0154: An unprotected read access to i915 registers has been

fixed that could have been abused to facilitate a local

denial-of-service attack. (bsc#1135966)

- CVE-2019-0155: A privilege escalation vulnerability has been fixed in

the i915 module that allowed batch buffers from user mode to gain super

user privileges. (bsc#1135967)

- CVE-2019-16231: drivers/net/fjes/fjes_main.c did not check the

alloc_workqueue return value, leading to a NULL pointer dereference

(bnc#1150466).

- CVE-2019-18805: There was a net/ipv4/tcp_input.c signed integer overflow

in tcp_ack_update_rtt() when userspace writes a very large integer to

/proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or

possibly unspecified other impact, aka CID-19fad20d15a6 (bnc#1156187).

- CVE-2019-17055:...

Read the Full Advisory

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 15.0:

zypper in -t patch openSUSE-2019-2503=1

Package List

- openSUSE Leap 15.0 (noarch):

kernel-devel-4.12.14-lp150.12.82.1

kernel-docs-4.12.14-lp150.12.82.1

kernel-docs-html-4.12.14-lp150.12.82.1

kernel-macros-4.12.14-lp150.12.82.1

kernel-source-4.12.14-lp150.12.82.1

kernel-source-vanilla-4.12.14-lp150.12.82.1

- openSUSE Leap 15.0 (x86_64):

kernel-debug-4.12.14-lp150.12.82.1

kernel-debug-base-4.12.14-lp150.12.82.1

kernel-debug-base-debuginfo-4.12.14-lp150.12.82.1

kernel-debug-debuginfo-4.12.14-lp150.12.82.1

kernel-debug-debugsource-4.12.14-lp150.12.82.1

kernel-debug-devel-4.12.14-lp150.12.82.1

kernel-debug-devel-debuginfo-4.12.14-lp150.12.82.1

kernel-default-4.12.14-lp150.12.82.1

kernel-default-base-4.12.14-lp150.12.82.1

kernel-default-base-debuginfo-4.12.14-lp150.12.82.1

kernel-default-debuginfo-4.12.14-lp150.12.82.1

kernel-default-debugsource-4.12.14-lp150.12.82.1

kernel-default-devel-4.12.14-lp150.12.82.1

kernel-default-devel-debuginfo-4.12.14-lp150.12.82.1

kernel-kvmsmall-4.12.14-lp150.12.82.1

kernel-kvmsmall-base-4.12.14-lp150.12.82.1

kernel-kvmsmall-base-debu...

Read the Full Advisory

References

https://www.suse.com/security/cve/CVE-2018-12207.html

https://www.suse.com/security/cve/CVE-2019-0154.html

https://www.suse.com/security/cve/CVE-2019-0155.html

https://www.suse.com/security/cve/CVE-2019-10220.html

https://www.suse.com/security/cve/CVE-2019-11135.html

https://www.suse.com/security/cve/CVE-2019-16231.html

https://www.suse.com/security/cve/CVE-2019-16233.html

https://www.suse.com/security/cve/CVE-2019-16995.html

https://www.suse.com/security/cve/CVE-2019-17055.html

https://www.suse.com/security/cve/CVE-2019-18805.html

https://bugzilla.suse.com/1048942

https://bugzilla.suse.com/1051510

https://bugzilla.suse.com/1082635

https://bugzilla.suse.com/1083647

https://bugzilla.suse.com/1090631

https://bugzilla.suse.com/1096254

https://bugzilla.suse.com/1117665

https://bugzilla.suse.com/1119461

https://bugzilla.suse.com/1119465

https://bugzilla.suse.com/1123034

https://bugzilla.suse.com/1135966

https://bugzilla.suse.com/1135967

https://bugzilla.suse.com/1137040

https://bugzilla.suse.com/1138190

https://bu...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2019:2503-1
Rating: important
Affected Products: openSUSE Leap 15.0 le.

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.