[SUSE-SU-2016:0755-1] Security update for kernel live patch 1
Security update for kernel live patch 1
This kernel live patch for Linux Kernel 3.12.51-60.20.2 fixes three security
issues:
Fixes:
- CVE-2016-0728: A reference leak in keyring handling with
join_session_keyring() could lead to local attackers gain root
privileges. (bsc#962078).
- CVE-2015-8660: The ovl_setattr function in fs/overlayfs/inode.c in the
Linux kernel through 4.3.3 attempts to merge distinct setattr
operations, which allows local users to bypass intended access
restrictions and modify the attributes of arbitrary overlay files via
a crafted application. (bsc#960329)
- CVE-2013-7446: Use-after-free vulnerability in net/unix/af_unix.c in
the Linux kernel allowed local users to bypass intended AF_UNIX socket
permissions or cause a denial of service (panic) via crafted epoll_ctl
calls. (bsc#955837)
- ID
- SUSE-SU-2016:0755-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2016/suse-su-20160755-1/
- Published
-
2016-03-14T13:31:04
(8 years ago) - Modified
-
2016-03-14T13:31:04
(8 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
-
ALAS-2016-642
-
DSA-3426-1
-
DSA-3448-1
-
ELSA-2016-0064
-
ELSA-2016-1539
-
ELSA-2016-3509
-
ELSA-2016-3510
-
ELSA-2016-3593
-
ELSA-2017-3515
-
ELSA-2017-3516
-
FEDORA-2015-c1c2f5e168
-
FEDORA-2015-c59710b05d
-
FEDORA-2016-5d43766e33
-
FEDORA-2016-b59fd603be
-
RHSA-2016:0064
-
RHSA-2016:0065
-
RHSA-2016:1539
-
RHSA-2016:1541
-
SUSE-SU-2016:0186-1
-
SUSE-SU-2016:0205-1
-
SUSE-SU-2016:0341-1
-
SUSE-SU-2016:0585-1
-
SUSE-SU-2016:0745-1
-
SUSE-SU-2016:0746-1
-
SUSE-SU-2016:0747-1
-
SUSE-SU-2016:0749-1
-
SUSE-SU-2016:0750-1
-
SUSE-SU-2016:0751-1
-
SUSE-SU-2016:0752-1
-
SUSE-SU-2016:0753-1
-
SUSE-SU-2016:0754-1
-
SUSE-SU-2016:0756-1
-
SUSE-SU-2016:0757-1
-
SUSE-SU-2016:0785-1
-
SUSE-SU-2016:0911-1
-
SUSE-SU-2016:1102-1
-
SUSE-SU-2016:1203-1
-
SUSE-SU-2016:1961-1
-
SUSE-SU-2016:1994-1
-
SUSE-SU-2016:1995-1
-
SUSE-SU-2016:2000-1
-
SUSE-SU-2016:2001-1
-
SUSE-SU-2016:2002-1
-
SUSE-SU-2016:2003-1
-
SUSE-SU-2016:2005-1
-
SUSE-SU-2016:2006-1
-
SUSE-SU-2016:2007-1
-
SUSE-SU-2016:2009-1
-
SUSE-SU-2016:2010-1
-
SUSE-SU-2016:2011-1
-
SUSE-SU-2016:2014-1
-
SUSE-SU-2016:2074-1
-
USN-2857-1
-
USN-2857-2
-
USN-2858-1
-
USN-2858-2
-
USN-2858-3
-
USN-2870-1
-
USN-2870-2
-
USN-2871-1
-
USN-2871-2
-
USN-2872-1
-
USN-2872-2
-
USN-2872-3
-
USN-2873-1
-
USN-2886-1
-
USN-2886-2
-
USN-2887-1
-
USN-2887-2
-
USN-2888-1
-
USN-2889-1
-
USN-2889-2
-
USN-2890-1
-
USN-2890-2
-
USN-2890-3
-
| Source | # ID | Name | URL |
|---|---|---|---|
| Suse | SUSE ratings |
|
|
| Suse | URL of this CSAF notice |
|
|
| Suse | URL for SUSE-SU-2016:0755-1 |
|
|
| Suse | E-Mail link for SUSE-SU-2016:0755-1 |
|
|
| Bugzilla | SUSE Bug 955837 |
|
|
| Bugzilla | SUSE Bug 960329 |
|
|
| Bugzilla | SUSE Bug 962078 |
|
|
| CVE | SUSE CVE CVE-2013-7446 page |
|
|
| CVE | SUSE CVE CVE-2015-8660 page |
|
|
| CVE | SUSE CVE CVE-2016-0728 page |
|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |