Alerts This Week
Warning Icon 1 566
Alerts This Week
Warning Icon 1 566

SUSE 12-SP1: SUSE-SU-2020:1234-1 Urgent Kernel Patch Release

suse
Calendar Grey December 30, 2016
Dist Suse Esm H88
SUSE Patch Notification for the Linux Kernel: urgent resolutions for significant weaknesses discovered in 2016.
An update that solves 13 vulnerabilities and has 118 fixes An update that solves 13 vulnerabilities and has 118 fixes An update that solves 13 vulnerabilities and has 118 fixes is ...

Summary

The SUSE Linux Enterprise 12 SP1 RT kernel was updated to 3.12.67 to receive various security and bugfixes. This feature was added: - fate#320805: Execute in place (XIP) support for the ext2 filesystem. The following security bugs were fixed: - CVE-2016-2069: Race condition in arch/x86/mm/tlb.c in the Linux kernel allowed local users to gain privileges by triggering access to a paging structure by a different CPU (bnc#963767). - CVE-2016-4998: The IPT_SO_SET_REPLACE setsockopt implementation in the netfilter subsystem in the Linux kernel allowed local users to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from kernel heap memory by leveraging in-container root access to provide a crafted offset value that leads to crossing a ruleset blob boundary (bnc#986362).

Topics%20covered

Topics Covered

security advisory denial of service local privilege escalation important Linux Kernel

References

#1000189 #1000287 #1000304 #1000776 #1001419

#1001486 #1002165 #1003079 #1003153 #1003400

#1003568 #1003925 #1004252 #1004418 #1004462

#1004517 #1004520 #1005666 #1006691 #1007615

#1007886 #744692 #789311 #857397 #860441

#865545 #866130 #868923 #874131 #875631 #876145

#876463 #898675 #904489 #909994 #911687 #915183

#921338 #921784 #922064 #922634 #924381 #924384

#930399 #934067 #937086 #937888 #941420 #946309

#955446 #956514 #959463 #961257 #962846 #963655

#963767 #966864 #967640 #970943 #971975 #971989

#974406 #974620 #975596 #975772 #976195 #977687

#978094 #979451 #979681 #979928 #980371 #981597

#982783 #983619 #984194 #984419 #984779 #984992

#985562 #986362 #986365 #986445 #987192 #987333

...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2016:3304-1
Rating: important

Topics%20covered

Topics Covered

security advisory denial of service local privilege escalation important Linux Kernel

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here