Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 461
Alerts This Week
Warning Icon 1 461

SUSE 11-SP4 Security Update: SUSE-SU-2017:2389-1 Important Kernel Fix

suse
Calendar Grey September 8, 2017
Dist Suse Esm H88
SUSE Security Patch: Critical Linux Kernel update resolving 21 vulnerabilities. Update now accessible for affected systems.
An update that solves 21 vulnerabilities and has 92 fixes An update that solves 21 vulnerabilities and has 92 fixes An update that solves 21 vulnerabilities and has 92 fixes is now...

Summary

The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-7482: Several missing length checks ticket decode allowing for information leak or potentially code execution (bsc#1046107). - CVE-2016-10277: Potential privilege escalation due to a missing bounds check in the lp driver. A kernel command-line adversary can overflow the parport_nr array to execute code (bsc#1039456). - CVE-2017-7542: The ip6_find_1stfragopt function in net/ipv6/output_core.c in the Linux kernel allowed local users to cause a denial of service (integer overflow and infinite loop) by leveraging the ability to open a raw socket (bsc#1049882). - CVE-2017-7533: Bug in inotify code allowing privilege escalation (bsc#1049483).

References

#1000365 #1000380 #1012422 #1013018 #1015452

#1023051 #1029140 #1029850 #1030552 #1030593

#1030814 #1032340 #1032471 #1034026 #1034670

#1035576 #1035721 #1035777 #1035920 #1036056

#1036288 #1036629 #1037191 #1037193 #1037227

#1037232 #1037233 #1037356 #1037358 #1037359

#1037441 #1038544 #1038879 #1038981 #1038982

#1039258 #1039354 #1039456 #1039594 #1039882

#1039883 #1039885 #1040069 #1040351 #1041160

#1041431 #1041762 #1041975 #1042045 #1042615

#1042633 #1042687 #1042832 #1042863 #1043014

#1043234 #1043935 #1044015 #1044125 #1044216

#1044230 #1044854 #1044882 #1044913 #1045154

#1045356 #1045416 #1045479 #1045487 #1045525

#1045538 #1045547 #1045615 #1046107 #1046192

#1046715 #104...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2017:2389-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.