SUSE: 2019:1870-1 Important: Linux Kernel Security Update Summary

suse

July 17, 2019

An update that solves 7 vulnerabilities and has three fixes is now available

Summary

The SUSE Linux Enterprise 12 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2018-5390 aka "SegmentSmack": A remote attacker even with relatively low bandwidth could have caused lots of CPU usage by triggering the worst case scenario during IP and/or TCP fragment reassembly (bsc#1102340) - CVE-2018-7191: In the tun subsystem in the Linux kernel, dev_get_valid_name was not called before register_netdevice. This allowed local users to cause a denial of service (NULL pointer dereference and panic) via an ioctl(TUNSETIFF) call with a dev name containing a / character. (bnc#1135603) - CVE-2018-20836: A race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c, could have lead

Topics Covered

security advisory denial of service important kernel security updates SUSE Linux Bug fixes

References

#1102340 #1112824 #1130159 #1133190 #1134395

#1135603 #1136922 #1137194 #1138293 #1139751

Cross- CVE-2018-20836 CVE-2018-5390 CVE-2018-7191

CVE-2019-11487 CVE-2019-12456 CVE-2019-12614

CVE-2019-12818

Affected Products:

SUSE Linux Enterprise Server for SAP 12-SP1

SUSE Linux Enterprise Server 12-SP1-LTSS

SUSE Linux Enterprise Module for Public Cloud 12

https://www.suse.com/security/cve/CVE-2018-20836.html

https://www.suse.com/security/cve/CVE-2018-5390.html

https://www.suse.com/security/cve/CVE-2018-7191.html

https://www.suse.com/security/cve/CVE-2019-11487.html

https://www.suse.com/security/cve/CVE-2019-12456.html

https://www.suse.com/security/cve/CVE-2019-12614.html

https://www.suse.com/security/cve/CVE-2019-12818.html

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2019:1870-1

Rating: important

Topics Covered

security advisory denial of service important kernel security updates SUSE Linux Bug fixes

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2019:1870-1 Important: Linux Kernel Security Update Summary

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2019:1870-1 Important: Linux Kernel Security Update Summary

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!