SUSE Linux 11 SP4: SUSE-SU-2017:0437-1 Important: Kernel DoS Risks

suse

February 9, 2017

An update that solves 20 vulnerabilities and has 79 fixes An update that solves 20 vulnerabilities and has 79 fixes An update that solves 20 vulnerabilities and has 79 fixes is now...

Summary

The SUSE Linux Enterprise 11 SP4 kernel was updated to 3.0.101-94 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-5551: tmpfs: clear S_ISGID when setting posix ACLs (bsc#1021258). - CVE-2016-10088: The sg implementation in the Linux kernel did not properly restrict write operations in situations where the KERNEL_DS option is set, which allowed local users to read or write to arbitrary kernel memory locations or cause a denial of service (use-after-free) by leveraging access to a /dev/sg device NOTE: this vulnerability existed because of an incomplete fix for CVE-2016-9576 (bnc#1017710). - CVE-2016-5696: TCP, when using a large Window Size, made it easier for remote attackers to guess sequence numbers and cause a denial of service

Topics Covered

security advisory denial of service kernel system update patch update security issues SUSE Linux

References

#1003813 #1005877 #1007615 #1008557 #1008645

#1008831 #1008833 #1008893 #1009875 #1010150

#1010175 #1010201 #1010467 #1010501 #1010507

#1010711 #1010713 #1010716 #1011685 #1011820

#1012183 #1012411 #1012422 #1012832 #1012851

#1012852 #1012917 #1013018 #1013038 #1013042

#1013070 #1013531 #1013542 #1014410 #1014454

#1014746 #1015561 #1015752 #1015760 #1015796

#1015803 #1015817 #1015828 #1015844 #1015848

#1015878 #1015932 #1016320 #1016505 #1016520

#1016668 #1016688 #1016824 #1016831 #1017686

#1017710 #1019079 #1019148 #1019165 #1019348

#1019783 #1020214 #1021258 #748806 #786036

#790588 #795297 #800999 #821612 #824171 #851603

#853052 #871728 #901809 #909350 #909491 #913387

#914939 #...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2017:0437-1

Rating: important

Topics Covered

security advisory denial of service kernel system update patch update security issues SUSE Linux

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE Linux 11 SP4: SUSE-SU-2017:0437-1 Important: Kernel DoS Risks

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE Linux 11 SP4: SUSE-SU-2017:0437-1 Important: Kernel DoS Risks

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!