Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 454
Alerts This Week
Warning Icon 1 454

SUSE: 2017:2525-1 Important: Kernel Security Update and Fixes

suse
Calendar Grey September 19, 2017
Dist Suse Esm H88
SUSE has introduced a crucial kernel update that tackles 44 concerns, encompassing vulnerabilities and enhancements to system reliability.
An update that solves 40 vulnerabilities and has 44 fixes An update that solves 40 vulnerabilities and has 44 fixes An update that solves 40 vulnerabilities and has 44 fixes is now...

Summary

The SUSE Linux Enterprise 11 SP3 LTSS kernel was updated receive various security and bugfixes. The following security bugs were fixed: - CVE-2016-5243: The tipc_nl_compat_link_dump function in net/tipc/netlink_compat.c in the Linux kernel did not properly copy a certain string, which allowed local users to obtain sensitive information from kernel stack memory by reading a Netlink message (bnc#983212) - CVE-2016-10200: Race condition in the L2TPv3 IP Encapsulation feature in the Linux kernel allowed local users to gain privileges or cause a denial of service (use-after-free) by making multiple bind system calls without properly ascertaining whether a socket has the SOCK_ZAPPED status, related to net/l2tp/l2tp_ip.c and net/l2tp/l2tp_ip6.c (bnc#1028415)

References

#1006919 #1012422 #1013862 #1017143 #1020229

#1021256 #1023051 #1024938 #1025013 #1025235

#1026024 #1026722 #1026914 #1027066 #1027101

#1027178 #1027179 #1027406 #1028415 #1028880

#1029212 #1029850 #1030213 #1030573 #1030575

#1030593 #1031003 #1031052 #1031440 #1031481

#1031579 #1031660 #1033287 #1033336 #1034670

#1034838 #1035576 #1037182 #1037183 #1037994

#1038544 #1038564 #1038879 #1038883 #1038981

#1038982 #1039349 #1039354 #1039456 #1039594

#1039882 #1039883 #1039885 #1040069 #1041431

#1042364 #1042863 #1042892 #1044125 #1045416

#1045487 #1046107 #1048232 #1048275 #1049483

#1049603 #1049882 #1050677 #1052311 #1053148

#1053152 #1053760 #1056588 #870618 #948562

#957988 #957990...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2017:2525-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.