Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 555
Alerts This Week
Warning Icon 1 555

SUSE: 2019:0645-1 Important: Kernel Live Patch Issues Resolved

suse
Calendar Grey March 19, 2019
Dist Suse Esm H88
A critical patch for the SUSE Linux Kernel tackles several vulnerabilities in Live Patch 34 for SLE 15 distributions.
An update that fixes three vulnerabilities is now available

Summary

This update for the Linux Kernel 3.12.61-52_125 fixes several issues. The following security issues were fixed: - CVE-2019-9213: Expand_downwards in mm/mmap.c lacked a check for the mmap minimum address, which made it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. This is related to a capability check for the wrong task (bsc#1128378). - CVE-2019-7221: Fixed a user-after-free vulnerability in the KVM hypervisor related to the emulation of a preemption timer, allowing an guest user/process to crash the host kernel. (bsc#1124734). - CVE-2018-5391: The Linux kernel was vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker might have caused a denial of service

References

#1103098 #1124734 #1128378

Cross- CVE-2018-5391 CVE-2019-7221 CVE-2019-9213

Affected Products:

SUSE Linux Enterprise Server 12-LTSS

https://www.suse.com/security/cve/CVE-2018-5391.html

https://www.suse.com/security/cve/CVE-2019-7221.html

https://www.suse.com/security/cve/CVE-2019-9213.html

https://bugzilla.suse.com/1103098

https://bugzilla.suse.com/1124734

https://bugzilla.suse.com/1128378

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2019:0645-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.