Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

SUSE: 2016:1707-1 Important: Kernel Update Resolves Denial of Service Flaws

suse
Calendar Grey June 30, 2016
Dist Suse Esm H88
SUSE releases urgent kernel patch addressing 17 vulnerabilities. Key security updates are now accessible for Linux platforms.
An update that solves 17 vulnerabilities and has 25 fixes An update that solves 17 vulnerabilities and has 25 fixes An update that solves 17 vulnerabilities and has 25 fixes is now...

Summary

The SUSE Linux Enterprise 11 SP4 Realtime kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2015-1339: Memory leak in the cuse_channel_release function in fs/fuse/cuse.c in the Linux kernel allowed local users to cause a denial of service (memory consumption) or possibly have unspecified other impact by opening /dev/cuse many times (bnc#969356). - CVE-2015-7566: The clie_5_attach function in drivers/usb/serial/visor.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by inserting a USB device that lacks a bulk-out endpoint (bnc#961512). - CVE-2015-8551: The PCI backend driver in Xen, when running on an x86

Topics%20covered

Topics Covered

security advisory denial of service security issue kernel update bug fix SUSE Linux important update

References

#898592 #940413 #946122 #949752 #956852 #957988

#957990 #959381 #960458 #961512 #963998 #965319

#965860 #965923 #967863 #968010 #968018 #968141

#968566 #968670 #968687 #969356 #970504 #970892

#970909 #970911 #970948 #970956 #970958 #970970

#971124 #971125 #971360 #971433 #971729 #972363

#973237 #973378 #973556 #973570 #975772 #975945

Cross- CVE-2015-1339 CVE-2015-7566 CVE-2015-8551

CVE-2015-8552 CVE-2015-8816 CVE-2016-2143

CVE-2016-2184 CVE-2016-2185 CVE-2016-2186

CVE-2016-2188 CVE-2016-2782 CVE-2016-2847

CVE-2016-3137 CVE-2016-3138 CVE-2016-3139

CVE-2016-3140 CVE-2016-3156

Affected Products:

SUSE Linux Enterprise Real Time Extension 11-SP4

SUSE Linux Enterprise Debuginfo 11-SP4

https://www.suse.com/sec...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2016:1707-1
Rating: important

Topics%20covered

Topics Covered

security advisory denial of service security issue kernel update bug fix SUSE Linux important update

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here