[SUSE-SU-2017:0876-1] Security update for Linux Kernel Live Patch 17 for SLE 12

Severity Important
Affected Packages 2
CVEs 1

Security update for Linux Kernel Live Patch 17 for SLE 12

This update for the Linux Kernel 3.12.60-52_60 fixes one issue.

The following security bugs were fixed:

  • CVE-2017-7184: The XFRM processsing in the Linux kernel 16.10 allowed local users to obtain root privileges or cause a denial of service (heap-based out-of-bounds access) via an integer overflow, as demonstrated during a Pwn2Own competition at CanSecWest 2017 (bsc#1030575).
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/suse/kgraft-patch-3_12_60-52_60-xen?arch=x86_64&distro=sles-12 suse kgraft-patch-3_12_60-52_60-xen < 4-2.1 sles-12 x86_64
Affected pkg:rpm/suse/kgraft-patch-3_12_60-52_60-default?arch=x86_64&distro=sles-12 suse kgraft-patch-3_12_60-52_60-default < 4-2.1 sles-12 x86_64
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date
Loading...