[SUSE-SU-2015:1490-1] Live patch for the Linux Kernel
Live patch for the Linux Kernel
This update contains a kernel live patch for the 3.12.43-52.6 SUSE Linux Enterprise
Server 12 Kernel, fixing following security issues.
CVE-2015-5364/CVE-2015-5366: Two denial of service attacks via a flood
of UDP packets with invalid checksums were fixed that could be used
by remote attackers to delay execution. (bsc#939276)CVE-2015-1805: The (1) pipe_read and (2) pipe_write implementations in
fs/pipe.c in the Linux kernel did not properly consider the side effects
of failed __copy_to_user_inatomic and __copy_from_user_inatomic calls,
which allowed local users to cause a denial of service (system crash)
or possibly gain privileges via a crafted application, aka an 'I/O vector
array overrun.' (bsc#939270)CVE-2015-4700: A BPF Jit optimization flaw could allow local users
to panic the kernel. (bsc#939273)
- ID
- SUSE-SU-2015:1490-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2015/suse-su-20151490-1/
- Published
-
2015-08-14T12:59:33
(9 years ago) - Modified
-
2015-08-14T12:59:33
(9 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
-
ALAS-2015-565
-
DSA-3290-1
-
DSA-3313-1
-
DSA-3329-1
-
ELSA-2015-1042
-
ELSA-2015-1081
-
ELSA-2015-1137
-
ELSA-2015-1623
-
ELSA-2015-1778
-
ELSA-2015-3071
-
ELSA-2015-3072
-
ELSA-2015-3073
-
ELSA-2015-3098
-
ELSA-2016-0045
-
ELSA-2017-3534
-
ELSA-2017-3535
-
RHSA-2015:1081
-
RHSA-2015:1137
-
RHSA-2015:1139
-
RHSA-2015:1623
-
RHSA-2015:1778
-
RHSA-2015:1788
-
SUSE-SU-2015:1224-1
-
SUSE-SU-2015:1324-1
-
SUSE-SU-2015:1478-1
-
SUSE-SU-2015:1487-1
-
SUSE-SU-2015:1488-1
-
SUSE-SU-2015:1489-1
-
SUSE-SU-2015:1491-1
-
SUSE-SU-2015:1592-1
-
SUSE-SU-2015:1611-1
-
SUSE-SU-2015:1678-1
-
SUSE-SU-2015:2167-1
-
USN-2664-1
-
USN-2666-1
-
USN-2678-1
-
USN-2679-1
-
USN-2680-1
-
USN-2681-1
-
USN-2682-1
-
USN-2683-1
-
USN-2684-1
-
USN-2685-1
-
USN-2713-1
-
USN-2714-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| Suse | SUSE ratings |
|
|
| Suse | URL of this CSAF notice |
|
|
| Suse | URL for SUSE-SU-2015:1490-1 |
|
|
| Suse | E-Mail link for SUSE-SU-2015:1490-1 |
|
|
| Bugzilla | SUSE Bug 939044 |
|
|
| Bugzilla | SUSE Bug 939270 |
|
|
| Bugzilla | SUSE Bug 939273 |
|
|
| Bugzilla | SUSE Bug 939276 |
|
|
| CVE | SUSE CVE CVE-2015-1805 page |
|
|
| CVE | SUSE CVE CVE-2015-4700 page |
|
|
| CVE | SUSE CVE CVE-2015-5364 page |
|
|
| CVE | SUSE CVE CVE-2015-5366 page |
|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |