SUSE 11 SP1 LTSS: 2015:0652-1 Important: Linux Kernel DoS Issues

suse

April 2, 2015

An update that solves 17 vulnerabilities and has 10 fixes An update that solves 17 vulnerabilities and has 10 fixes An update that solves 17 vulnerabilities and has 10 fixes is now...

Summary

The SUSE Linux Enterprise 11 Service Pack 1 LTSS kernel was updated to fix security issues on kernels on the x86_64 architecture. The following security bugs have been fixed: * CVE-2013-4299: Interpretation conflict in drivers/md/dm-snap-persistent.c in the Linux kernel through 3.11.6 allowed remote authenticated users to obtain sensitive information or modify data via a crafted mapping to a snapshot block device (bnc#846404). * CVE-2014-8160: SCTP firewalling failed until the SCTP module was loaded (bnc#913059). * CVE-2014-9584: The parse_rock_ridge_inode_internal function in fs/isofs/rock.c in the Linux kernel before 3.18.2 did not validate a length value in the Extensions Reference (ER) System Use Field, which allowed local users to obtain sensitive information from

Topics Covered

security advisory denial of service kernel SUSE system crash important update sensitive information

References

#771619 #833820 #846404 #857643 #875051 #885077

#891211 #892235 #896390 #896391 #896779 #899338

#902346 #902349 #902351 #904700 #905100 #905312

#907822 #908870 #911325 #912654 #912705 #912916

#913059 #915335 #915826

Cross- CVE-2010-5313 CVE-2012-6657 CVE-2013-4299

CVE-2013-7263 CVE-2014-0181 CVE-2014-3184

CVE-2014-3185 CVE-2014-3673 CVE-2014-3687

CVE-2014-3688 CVE-2014-7841 CVE-2014-7842

CVE-2014-8160 CVE-2014-8709 CVE-2014-9420

CVE-2014-9584 CVE-2014-9585

Affected Products:

SUSE Linux Enterprise Server 11 SP1 LTSS

SLE 11 SERVER Unsupported Extras

https://www.suse.com/security/cve/CVE-2010-5313.html

https://www.suse.com/security/cve/CVE-2012-6657.html

https://www.suse.com/security/cve/CVE-2013-4299.html

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2015:0652-1

Rating: important

Topics Covered

security advisory denial of service kernel SUSE system crash important update sensitive information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE 11 SP1 LTSS: 2015:0652-1 Important: Linux Kernel DoS Issues

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE 11 SP1 LTSS: 2015:0652-1 Important: Linux Kernel DoS Issues

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!