SUSE: 2015:0068-1 Critical: Kernel Denial of Service Update

suse

January 16, 2015

An update that solves 11 vulnerabilities and has 62 fixes An update that solves 11 vulnerabilities and has 62 fixes An update that solves 11 vulnerabilities and has 62 fixes is now...

Summary

The SUSE Linux Enterprise 12 kernel was updated to 3.12.31 to receive various security and bugfixes. Security issues fixed: CVE-2014-9322: A local privilege escalation in the x86_64 32bit compatibility signal handling was fixed, which could be used by local attackers to crash the machine or execute code. CVE-2014-9090: Various issues in LDT handling in 32bit compatibility mode on the x86_64 platform were fixed, where local attackers could crash the machine. CVE-2014-8133: Insufficient validation of TLS register usage could leak information from the kernel stack to userspace. CVE-2014-7826: kernel/trace/trace_syscalls.c in the Linux kernel did not properly handle private syscall numbers during use of the ftrace subsystem, which allowed local users to gain privileges or cause a denial

Topics Covered

security advisory critical local privilege escalation kernel Denial of Service SUSE system crash

References

#851603 #853040 #860441 #862957 #863526 #870498

#873228 #874025 #877622 #879255 #880767 #880892

#881085 #883139 #887046 #887382 #887418 #889295

#889297 #891259 #891619 #892254 #892612 #892650

#892860 #893454 #894057 #894863 #895221 #895387

#895468 #895680 #895983 #896391 #897101 #897736

#897770 #897912 #898234 #898297 #899192 #899489

#899551 #899785 #899787 #899908 #900126 #901090

#901774 #901809 #901925 #902010 #902016 #902346

#902893 #902898 #903279 #903307 #904013 #904077

#904115 #904354 #904871 #905087 #905100 #905296

#905758 #905772 #907818 #908184 #909077 #910251

#910697

Cross- CVE-2013-6405 CVE-2014-3185 CVE-2014-3610

CVE-2014-3611 CVE-2014-3647 CVE-2014-3673

CVE-2014-7826 CVE-2014-7841 CVE-2...

Read the Full Advisory

Severity

critical

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2015:0068-1

Rating: important

Topics Covered

security advisory critical local privilege escalation kernel Denial of Service SUSE system crash

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2015:0068-1 Critical: Kernel Denial of Service Update

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2015:0068-1 Critical: Kernel Denial of Service Update

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!