SUSE: 2014:1319-1 Important: Linux Kernel DoS Threat Fix

suse

October 23, 2014

An update that solves 13 vulnerabilities and has 75 fixes An update that solves 13 vulnerabilities and has 75 fixes An update that solves 13 vulnerabilities and has 75 fixes is now...

Summary

The SUSE Linux Enterprise 11 Service Pack 3 kernel has been updated to fix various bugs and security issues. The following security bugs have been fixed: * CVE-2014-1739: The media_device_enum_entities function in drivers/media/media-device.c in the Linux kernel before 3.14.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel memory by leveraging /dev/media0 read access for a MEDIA_IOC_ENUM_ENTITIES ioctl call (bnc#882804). * CVE-2014-4171: mm/shmem.c in the Linux kernel through 3.15.1 does not properly implement the interaction between range notification and hole punching, which allows local users to cause a denial of service (i_mutex hold) by using the mmap system call to access a hole, as demonstrated by

Topics Covered

security advisory update critical DoS kernel SUSE escalation

References

#774818 #806990 #816708 #826486 #832309 #833820

#849123 #855657 #859840 #860441 #860593 #863586

#866130 #866615 #866864 #866911 #869055 #869934

#870161 #871134 #871797 #876017 #876055 #876114

#876590 #879304 #879921 #880344 #880370 #880892

#881051 #881759 #882317 #882639 #882804 #882900

#883096 #883376 #883518 #883724 #884333 #884582

#884725 #884767 #885262 #885382 #885422 #885509

#886840 #887082 #887418 #887503 #887608 #887645

#887680 #888058 #888105 #888591 #888607 #888847

#888849 #888968 #889061 #889173 #889451 #889614

#889727 #890297 #890426 #890513 #890526 #891087

#891259 #891281 #891619 #891746 #892200 #892490

#892723 #893064 #893496 #893596 #894200 #895221

#895608 #895680 #895983 #896689

Cros...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2014:1319-1

Rating: important

Topics Covered

security advisory update critical DoS kernel SUSE escalation

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2014:1319-1 Important: Linux Kernel DoS Threat Fix

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2014:1319-1 Important: Linux Kernel DoS Threat Fix

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!