SUSE: 2015:0812-1 Important: Denial Of Service and Security Fixes

suse

April 30, 2015

An update that fixes 39 vulnerabilities is now available

Summary

The SUSE Linux Enterprise 10 SP4 LTSS kernel was updated to receive various security and bugfixes. The following security bugs have been fixed: * CVE-2015-2041: A information leak in the llc2_timeout_table was fixed (bnc#919007). * CVE-2014-9322: arch/x86/kernel/entry_64.S in the Linux kernel did not properly handle faults associated with the Stack Segment (SS) segment register, which allowed local users to gain privileges by triggering an IRET instruction that leads to access to a GS Base address from the wrong space (bnc#910251). * CVE-2014-9090: The do_double_fault function in arch/x86/kernel/traps.c in the Linux kernel did not properly handle faults associated with the Stack Segment (SS) segment register, which allowed local users to cause a denial of service (panic) via a

Topics Covered

security advisory information leak important linux kernel Denial Of Service

References

#677286 #679812 #681175 #681999 #683282 #685402

#687812 #730118 #730200 #738400 #758813 #760902

#769784 #823260 #846404 #853040 #854722 #863335

#874307 #875051 #880484 #883223 #883795 #885422

#891844 #892490 #896390 #896391 #896779 #902346

#907818 #908382 #910251 #911325

Cross- CVE-2011-1090 CVE-2011-1163 CVE-2011-1476

CVE-2011-1477 CVE-2011-1493 CVE-2011-1494

CVE-2011-1495 CVE-2011-1585 CVE-2011-4127

CVE-2011-4132 CVE-2011-4913 CVE-2011-4914

CVE-2012-2313 CVE-2012-2319 CVE-2012-3400

CVE-2012-6657 CVE-2013-2147 CVE-2013-4299

CVE-2013-6405 CVE-2013-6463 CVE-2014-0181

CVE-2014-1874 CVE-2014-3184 CVE-2014-3185

CVE-2014-3673 CVE-2014-3917 CVE-2014-4652

CVE-2014-4653 CVE-2014-4654 CVE-2014-4655

...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2015:0812-1

Rating: important

Topics Covered

security advisory information leak important linux kernel Denial Of Service

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2015:0812-1 Important: Denial Of Service and Security Fixes

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2015:0812-1 Important: Denial Of Service and Security Fixes

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!