SUSE: 2020:4567-2 Critical: Linux Kernel Vulnerability Patch
suse
October 22, 2019
An update that solves 40 vulnerabilities and has 225 fixes is now available
Summary
The SUSE Linux Enterprise 15 SP1 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2019-14835: A buffer overflow flaw was found in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could have used this flaw to increase their privileges on the host (bnc#1150112). - CVE-2019-15216: There was a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c driver (bnc#1146361). - CVE-2019-15924: fm10k_init_module in drivers/net/ethernet/intel/fm10k/fm10k_main.c had a NULL pointer
Topics Covered
References
#1047238 #1050911 #1051510 #1054914 #1055117
#1056686 #1060662 #1061840 #1061843 #1064597
#1064701 #1065600 #1065729 #1066369 #1071009
#1071306 #1078248 #1082555 #1082635 #1085030
#1085536 #1085539 #1086103 #1087092 #1090734
#1091171 #1093205 #1102097 #1103990 #1104353
#1104427 #1104745 #1104902 #1106061 #1106284
#1106434 #1108382 #1109837 #1111666 #1112178
#1112374 #1112894 #1112899 #1112902 #1112903
#1112905 #1112906 #1112907 #1113722 #1113994
#1114279 #1114542 #1118689 #1119086 #1119113
#1120046 #1120876 #1120902 #1123105 #1123959
#1124370 #1129424 #1129519 #1129664 #1131107
#1131281 #1131489 #1131565 #1132426 #1133021
#1134291 #1134476 #1134881 #1134882 #1135219
#1135642 #113...
Read the Full Advisory
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: SUSE-SU-2019:2738-1
Rating: important
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!