Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 428
Alerts This Week
Warning Icon 1 428

SUSE: 2017:2090-1 Important: Kernel Live Patch Escalation Fix

suse
Calendar Grey August 8, 2017
Dist Suse Esm H88
Important revision for Red Hat Kernel Live Patching 14 resolves several vulnerabilities for RHEL 7.8, improving overall performance.
An update that fixes three vulnerabilities is now available

Summary

This update for the Linux Kernel 3.12.74-60_64_45 fixes several issues. The following security bugs were fixed: - CVE-2017-7533: A bug in inotify code allowed local users to escalate privilege (bsc#1050751). - CVE-2017-9242: The __ip6_append_data function in net/ipv6/ip6_output.c in the Linux kernel is too late in checking whether an overwrite of an skb data structure may occur, which allowed local users to cause a denial of service (system crash) via crafted system calls (bsc#1042892). - CVE-2017-8890: The inet_csk_clone_lock function in net/ipv4/inet_connection_sock.c in the Linux kernel allowed attackers to cause a denial of service (double free) or possibly have unspecified other impact by leveraging use of the accept system call (bsc#1038564). Patch Instructions:

References

#1038564 #1042892 #1050751

Cross- CVE-2017-7533 CVE-2017-8890 CVE-2017-9242

Affected Products:

SUSE Linux Enterprise Server for SAP 12-SP1

SUSE Linux Enterprise Server 12-SP1-LTSS

https://www.suse.com/security/cve/CVE-2017-7533.html

https://www.suse.com/security/cve/CVE-2017-8890.html

https://www.suse.com/security/cve/CVE-2017-9242.html

https://bugzilla.suse.com/1038564

https://bugzilla.suse.com/1042892

https://bugzilla.suse.com/1050751

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2017:2090-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.