SUSE 12 SP1: 2017:2908-1 Important: Linux Kernel Security Fixes

suse

October 30, 2017

An update that solves 30 vulnerabilities and has 38 fixes An update that solves 30 vulnerabilities and has 38 fixes An update that solves 30 vulnerabilities and has 38 fixes is now...

Summary

The SUSE Linux Enterprise 12 SP1 LTS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-15649: net/packet/af_packet.c in the Linux kernel allowed local users to gain privileges via crafted system calls that trigger mishandling of packet_fanout data structures, because of a race condition (involving fanout_add and packet_do_bind) that leads to a use-after-free, a different vulnerability than CVE-2017-6346 (bnc#1064388). - CVE-2017-13080: Wi-Fi Protected Access (WPA and WPA2) allowed reinstallation of the Group Temporal Key (GTK) during the group key handshake, allowing an attacker within radio range to replay frames from access points to clients (bnc#1063667). - CVE-2017-15274: security/keys/keyctl.c in the Linux kernel did not

Topics Covered

security advisory denial of service buffer overflow security fix important SUSE Linux Kernel

References

#1001459 #1012985 #1023287 #1027149 #1028217

#1030531 #1030552 #1031515 #1033960 #1034405

#1035531 #1035738 #1037182 #1037183 #1037994

#1038544 #1038564 #1038879 #1038883 #1038981

#1038982 #1039348 #1039354 #1039456 #1039721

#1039864 #1039882 #1039883 #1039885 #1040069

#1041160 #1041429 #1041431 #1042696 #1042832

#1042863 #1044125 #1045327 #1045487 #1045922

#1046107 #1048275 #1048788 #1049645 #1049882

#1053148 #1053152 #1053317 #1056588 #1056982

#1057179 #1058410 #1058507 #1058524 #1059863

#1062471 #1062520 #1063667 #1064388 #856774

#860250 #863764 #878240 #922855 #922871 #986924

#993099 #994364

Cross- CVE-2017-1000363 CVE-2017-1000365 CVE-2017-1000380

CVE-2017-10661 CVE-2017-11176 CVE-2017-12153

...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2017:2908-1

Rating: important

Topics Covered

security advisory denial of service buffer overflow security fix important SUSE Linux Kernel

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE 12 SP1: 2017:2908-1 Important: Linux Kernel Security Fixes

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE 12 SP1: 2017:2908-1 Important: Linux Kernel Security Fixes

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!