[SUSE-SU-2015:1490-1] Live patch for the Linux Kernel
Live patch for the Linux Kernel
This update contains a kernel live patch for the 3.12.43-52.6 SUSE Linux Enterprise
Server 12 Kernel, fixing following security issues.
CVE-2015-5364/CVE-2015-5366: Two denial of service attacks via a flood
of UDP packets with invalid checksums were fixed that could be used
by remote attackers to delay execution. (bsc#939276)CVE-2015-1805: The (1) pipe_read and (2) pipe_write implementations in
fs/pipe.c in the Linux kernel did not properly consider the side effects
of failed __copy_to_user_inatomic and __copy_from_user_inatomic calls,
which allowed local users to cause a denial of service (system crash)
or possibly gain privileges via a crafted application, aka an 'I/O vector
array overrun.' (bsc#939270)CVE-2015-4700: A BPF Jit optimization flaw could allow local users
to panic the kernel. (bsc#939273)
- ID
- SUSE-SU-2015:1490-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2015/suse-su-20151490-1/
- Published
-
2015-08-14T12:59:33
(9 years ago) - Modified
-
2015-08-14T12:59:33
(9 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS-2015-565
- DSA-3290-1
- DSA-3313-1
- DSA-3329-1
- ELSA-2015-1042
- ELSA-2015-1081
- ELSA-2015-1137
- ELSA-2015-1623
- ELSA-2015-1778
- ELSA-2015-3071
- ELSA-2015-3072
- ELSA-2015-3073
- ELSA-2015-3098
- ELSA-2016-0045
- ELSA-2017-3534
- ELSA-2017-3535
- RHSA-2015:1081
- RHSA-2015:1137
- RHSA-2015:1139
- RHSA-2015:1623
- RHSA-2015:1778
- RHSA-2015:1788
- SUSE-SU-2015:1224-1
- SUSE-SU-2015:1324-1
- SUSE-SU-2015:1478-1
- SUSE-SU-2015:1487-1
- SUSE-SU-2015:1488-1
- SUSE-SU-2015:1489-1
- SUSE-SU-2015:1491-1
- SUSE-SU-2015:1592-1
- SUSE-SU-2015:1611-1
- SUSE-SU-2015:1678-1
- SUSE-SU-2015:2167-1
- USN-2664-1
- USN-2666-1
- USN-2678-1
- USN-2679-1
- USN-2680-1
- USN-2681-1
- USN-2682-1
- USN-2683-1
- USN-2684-1
- USN-2685-1
- USN-2713-1
- USN-2714-1
Source | # ID | Name | URL |
---|---|---|---|
Suse | SUSE ratings | https://www.suse.com/support/security/rating/ | |
Suse | URL of this CSAF notice | https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_1490-1.json | |
Suse | URL for SUSE-SU-2015:1490-1 | https://www.suse.com/support/update/announcement/2015/suse-su-20151490-1/ | |
Suse | E-Mail link for SUSE-SU-2015:1490-1 | https://lists.suse.com/pipermail/sle-security-updates/2015-September/001573.html | |
Bugzilla | SUSE Bug 939044 | https://bugzilla.suse.com/939044 | |
Bugzilla | SUSE Bug 939270 | https://bugzilla.suse.com/939270 | |
Bugzilla | SUSE Bug 939273 | https://bugzilla.suse.com/939273 | |
Bugzilla | SUSE Bug 939276 | https://bugzilla.suse.com/939276 | |
CVE | SUSE CVE CVE-2015-1805 page | https://www.suse.com/security/cve/CVE-2015-1805/ | |
CVE | SUSE CVE CVE-2015-4700 page | https://www.suse.com/security/cve/CVE-2015-4700/ | |
CVE | SUSE CVE CVE-2015-5364 page | https://www.suse.com/security/cve/CVE-2015-5364/ | |
CVE | SUSE CVE CVE-2015-5366 page | https://www.suse.com/security/cve/CVE-2015-5366/ |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |