[SUSE-SU-2015:2087-1] Security update for Linux Kernel Live Patch 6
Severity
Important
CVEs
2
Security update for Linux Kernel Live Patch 6
This kernel live patch for Linux Kernel 3.12.44-52.10.1 fixes two security issues:
- CVE-2015-7613: A race condition in the IPC object implementation in the Linux kernel allowed local users to gain privileges by triggering an ipc_addid call that leads to uid and gid comparisons against uninitialized data, related to msg.c, shm.c, and util.c. (bsc#948701 bsc#948536)
- CVE-2015-5707: Integer overflow in the sg_start_req function in drivers/scsi/sg.c in the Linux kernel allowed local users to cause a denial of service or possibly have unspecified other impact via a large iov_count value in a write request. (bsc#940342 bsc#940338)
- ID
- SUSE-SU-2015:2087-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2015/suse-su-20152087-1/
- Published
-
2015-11-24T14:48:39
(8 years ago) - Modified
-
2015-11-24T14:48:39
(8 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS-2015-603
- DSA-3329-1
- DSA-3372-1
- ELSA-2015-2152
- ELSA-2015-2636
- ELSA-2015-3101
- ELSA-2016-3502
- ELSA-2016-3503
- ELSA-2017-3534
- ELSA-2017-3535
- FEDORA-2015-43145298f4
- FEDORA-2015-d7e074ba30
- FEDORA-2015-dcc260f2f2
- RHSA-2015:2152
- RHSA-2015:2411
- RHSA-2015:2636
- SUSE-SU-2015:1478-1
- SUSE-SU-2015:1592-1
- SUSE-SU-2015:1611-1
- SUSE-SU-2015:1678-1
- SUSE-SU-2015:1727-1
- SUSE-SU-2015:2084-1
- SUSE-SU-2015:2085-1
- SUSE-SU-2015:2086-1
- SUSE-SU-2015:2089-1
- SUSE-SU-2015:2090-1
- SUSE-SU-2015:2091-1
- SUSE-SU-2015:2167-1
- SUSE-SU-2016:0585-1
- SUSE-SU-2016:0785-1
- USN-2733-1
- USN-2734-1
- USN-2737-1
- USN-2738-1
- USN-2750-1
- USN-2759-1
- USN-2760-1
- USN-2761-1
- USN-2762-1
- USN-2763-1
- USN-2764-1
- USN-2765-1
- USN-2792-1
- USN-2796-1
Source | # ID | Name | URL |
---|---|---|---|
Suse | SUSE ratings | https://www.suse.com/support/security/rating/ | |
Suse | URL of this CSAF notice | https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_2087-1.json | |
Suse | URL for SUSE-SU-2015:2087-1 | https://www.suse.com/support/update/announcement/2015/suse-su-20152087-1/ | |
Suse | E-Mail link for SUSE-SU-2015:2087-1 | https://lists.suse.com/pipermail/sle-security-updates/2015-November/001695.html | |
Bugzilla | SUSE Bug 940338 | https://bugzilla.suse.com/940338 | |
Bugzilla | SUSE Bug 940342 | https://bugzilla.suse.com/940342 | |
Bugzilla | SUSE Bug 948536 | https://bugzilla.suse.com/948536 | |
Bugzilla | SUSE Bug 948701 | https://bugzilla.suse.com/948701 | |
CVE | SUSE CVE CVE-2015-5707 page | https://www.suse.com/security/cve/CVE-2015-5707/ | |
CVE | SUSE CVE CVE-2015-7613 page | https://www.suse.com/security/cve/CVE-2015-7613/ |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |