SUSE: 2018:2092-1 Important: Linux Kernel Security Advisory
suse
July 27, 2018
An update that solves 22 vulnerabilities and has 246 fixes is now available
Summary
The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes. The following new feature was added: - NVDIMM memory error notification (ACPI 6.2) The following security bugs were fixed: - CVE-2018-13406: An integer overflow in the uvesafb_setcmap function could have result in local attackers being able to crash the kernel or potentially elevate privileges because kmalloc_array is not used (bnc#1100418) - CVE-2018-13053: The alarm_timer_nsleep function had an integer overflow via a large relative timeout because ktime_add_safe was not used (bnc#1099924) - CVE-2018-9385: Prevent overread of the "driver_override" buffer (bsc#1100491) - CVE-2018-13405: The inode_init_owner function allowed local users to create files with an unintended group ownership allowing attackers to
References
#1046303 #1046305 #1046306 #1046307 #1046540
#1046542 #1046543 #1048129 #1050242 #1050252
#1050529 #1050536 #1050538 #1050545 #1050549
#1050662 #1051510 #1052766 #1055968 #1056427
#1056643 #1056651 #1056653 #1056657 #1056658
#1056662 #1056686 #1056787 #1058115 #1058513
#1058659 #1058717 #1060463 #1061024 #1061840
#1062897 #1064802 #1065600 #1066110 #1066129
#1068032 #1068054 #1071218 #1071995 #1072829
#1072856 #1073513 #1073765 #1073960 #1074562
#1074578 #1074701 #1074741 #1074873 #1074919
#1075006 #1075007 #1075262 #1075419 #1075748
#1075876 #1076049 #1076115 #1076372 #1076830
#1077338 #1078248 #1078353 #1079152 #1079747
#1080039 #1080542 #1081599 #1082485 #1082504
#1082869 #108...
Read the Full Advisory
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: SUSE-SU-2018:2092-1
Rating: important
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!