Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 524
Alerts This Week
Warning Icon 1 524

SUSE Linux 12 SP1: 2017:0464-1 Important: Privilege Escalation and DoS

suse
Calendar Grey February 15, 2017
Dist Suse Esm H88
ubuntu: A crucial software update addresses 25 vulnerabilities and strengthens system integrity across multiple platforms.
An update that solves 19 vulnerabilities and has 58 fixes An update that solves 19 vulnerabilities and has 58 fixes An update that solves 19 vulnerabilities and has 58 fixes is now...

Summary

The SUSE Linux Enterprise 12 SP1 kernel was updated to 3.12.69 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2015-8962: Double free vulnerability in the sg_common_write function in drivers/scsi/sg.c in the Linux kernel allowed local users to gain privileges or cause a denial of service (memory corruption and system crash) by detaching a device during an SG_IO ioctl call (bnc#1010501). - CVE-2015-8963: Race condition in kernel/events/core.c in the Linux kernel allowed local users to gain privileges or cause a denial of service (use-after-free) by leveraging incorrect handling of an swevent data structure during a CPU unplug operation (bnc#1010502). - CVE-2015-8964: The tty_set_termios_ldisc function in

References

#1003813 #1005666 #1007197 #1008557 #1008567

#1008833 #1008876 #1008979 #1009062 #1009969

#1010040 #1010213 #1010294 #1010475 #1010478

#1010501 #1010502 #1010507 #1010612 #1010711

#1010716 #1012060 #1012422 #1012917 #1012985

#1013001 #1013038 #1013479 #1013531 #1013540

#1013542 #1014410 #1014746 #1016713 #1016725

#1016961 #1017164 #1017170 #1017410 #1017589

#1017710 #1018100 #1019032 #1019148 #1019260

#1019300 #1019783 #1019851 #1020214 #1020602

#1021258 #856380 #857394 #858727 #921338

#921778 #922052 #922056 #923036 #923037 #924381

#938963 #972993 #980560 #981709 #983087 #983348

#984194 #984419 #985850 #987192 #987576 #990384

#991273 #993739 #997807 #999101

Cross- CVE-2015-8962 CVE-2015-8963 CVE-...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2017:0464-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.