Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 433
Alerts This Week
Warning Icon 1 433

openSUSE Leap 15.1: 2019:2507-1 Critical: Linux Kernel DoS Bug Patches

opensuse
Calendar Grey November 14, 2019
Dist Opensuse Esm H88
openSUSE Security Update: Security update for the Linux Kernel _____________________________________
An update that solves 8 vulnerabilities and has 29 fixes is now available.

Description

The openSUSE Leap 15.1 kernel was updated to receive various security and

bugfixes.

The following security bugs were fixed:

- CVE-2019-0154: An unprotected read access to i915 registers has been

fixed that could have been abused to facilitate a local

denial-of-service attack. (bsc#1135966)

- CVE-2019-0155: A privilege escalation vulnerability has been fixed in

the i915 module that allowed batch buffers from user mode to gain super

user privileges. (bsc#1135967)

- CVE-2019-16231: drivers/net/fjes/fjes_main.c did not check the

alloc_workqueue return value, leading to a NULL pointer dereference

(bnc#1150466).

- CVE-2019-18805: There was a net/ipv4/tcp_input.c signed integer overflow

in tcp_ack_update_rtt() when userspace writes a very large integer to

/proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or

possibly unspecified other impact, aka CID-19fad20d15a6 (bnc#1156187).

- CVE-2019-17055:...

Read the Full Advisory

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 15.1:

zypper in -t patch openSUSE-2019-2507=1

Package List

- openSUSE Leap 15.1 (noarch):

kernel-devel-4.12.14-lp151.28.32.1

kernel-docs-4.12.14-lp151.28.32.1

kernel-docs-html-4.12.14-lp151.28.32.1

kernel-macros-4.12.14-lp151.28.32.1

kernel-source-4.12.14-lp151.28.32.1

kernel-source-vanilla-4.12.14-lp151.28.32.1

- openSUSE Leap 15.1 (x86_64):

kernel-debug-4.12.14-lp151.28.32.1

kernel-debug-base-4.12.14-lp151.28.32.1

kernel-debug-base-debuginfo-4.12.14-lp151.28.32.1

kernel-debug-debuginfo-4.12.14-lp151.28.32.1

kernel-debug-debugsource-4.12.14-lp151.28.32.1

kernel-debug-devel-4.12.14-lp151.28.32.1

kernel-debug-devel-debuginfo-4.12.14-lp151.28.32.1

kernel-default-4.12.14-lp151.28.32.1

kernel-default-base-4.12.14-lp151.28.32.1

kernel-default-base-debuginfo-4.12.14-lp151.28.32.1

kernel-default-debuginfo-4.12.14-lp151.28.32.1

kernel-default-debugsource-4.12.14-lp151.28.32.1

kernel-default-devel-4.12.14-lp151.28.32.1

kernel-default-devel-debuginfo-4.12.14-lp151.28.32.1

kernel-kvmsmall-4.12.14-lp151.28.32.1

kernel-kvmsmall-base-4.12.14-lp151.28.32.1

kernel-kvmsmall-base-debu...

Read the Full Advisory

References

https://www.suse.com/security/cve/CVE-2018-12207.html

https://www.suse.com/security/cve/CVE-2019-0154.html

https://www.suse.com/security/cve/CVE-2019-0155.html

https://www.suse.com/security/cve/CVE-2019-10220.html

https://www.suse.com/security/cve/CVE-2019-11135.html

https://www.suse.com/security/cve/CVE-2019-16231.html

https://www.suse.com/security/cve/CVE-2019-17055.html

https://www.suse.com/security/cve/CVE-2019-18805.html

https://bugzilla.suse.com/1048942

https://bugzilla.suse.com/1051510

https://bugzilla.suse.com/1082635

https://bugzilla.suse.com/1090631

https://bugzilla.suse.com/1096254

https://bugzilla.suse.com/1111666

https://bugzilla.suse.com/1117665

https://bugzilla.suse.com/1119461

https://bugzilla.suse.com/1119465

https://bugzilla.suse.com/1123034

https://bugzilla.suse.com/1135966

https://bugzilla.suse.com/1135967

https://bugzilla.suse.com/1138190

https://bugzilla.suse.com/1139073

https://bugzilla.suse.com/1140090

https://bugzilla.suse.com/1143706

https://bugzilla.suse.com/1144903

https://bugzilla....

Read the Full Advisory

Severity
critical
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2019:2507-1
Rating: important
Affected Products: openSUSE Leap 15.1 le.

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.