SUSE Linux Enterprise 11 SP2: 2015:0481-1 Critical: Kernel Memory Issues

suse

March 11, 2015

An update that solves 34 vulnerabilities and has 13 fixes An update that solves 34 vulnerabilities and has 13 fixes An update that solves 34 vulnerabilities and has 13 fixes is now...

Summary

The SUSE Linux Enterprise 11 Service Pack 2 LTSS kernel has been updated to fix security issues on kernels on the x86_64 architecture. The following security bugs have been fixed: * CVE-2012-4398: The __request_module function in kernel/kmod.c in the Linux kernel before 3.4 did not set a certain killable attribute, which allowed local users to cause a denial of service (memory consumption) via a crafted application (bnc#779488). * CVE-2013-2893: The Human Interface Device (HID) subsystem in the Linux kernel through 3.11, when CONFIG_LOGITECH_FF, CONFIG_LOGIG940_FF, or CONFIG_LOGIWHEELS_FF is enabled, allowed physically proximate attackers to cause a denial of service (heap-based out-of-bounds write) via a crafted device, related to (1) drivers/hid/hid-lgff.c, (2) drivers/hid/hid-lg3ff.c, and (3)

Topics Covered

security advisory denial of service critical issue kernel update memory corruption system protection SUSE Linux Enterprise

References

#771619 #779488 #833588 #835839 #847652 #857643

#864049 #865442 #867531 #867723 #870161 #875051

#876633 #880892 #883096 #883948 #887082 #892490

#892782 #895680 #896382 #896390 #896391 #896392

#897995 #898693 #899192 #901885 #902232 #902346

#902349 #902351 #902675 #903640 #904013 #904700

#905100 #905312 #905799 #906586 #907189 #907338

#907396 #909078 #912654 #912705 #915335

Cross- CVE-2012-4398 CVE-2013-2893 CVE-2013-2897

CVE-2013-2899 CVE-2013-2929 CVE-2013-7263

CVE-2014-0131 CVE-2014-0181 CVE-2014-2309

CVE-2014-3181 CVE-2014-3184 CVE-2014-3185

CVE-2014-3186 CVE-2014-3601 CVE-2014-3610

CVE-2014-3646 CVE-2014-3647 CVE-2014-3673

CVE-2014-3687 CVE-2014-3688 CVE-2014-3690

CVE-2014-4608 CVE-2014-4943 CVE-2014...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2015:0481-1

Rating: important

Topics Covered

security advisory denial of service critical issue kernel update memory corruption system protection SUSE Linux Enterprise

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE Linux Enterprise 11 SP2: 2015:0481-1 Critical: Kernel Memory Issues

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE Linux Enterprise 11 SP2: 2015:0481-1 Critical: Kernel Memory Issues

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!