[SUSE-SU-2017:2694-1] Security update for the Linux Kernel
Severity
Important
CVEs
8
Security update for the Linux Kernel
The SUSE Linux Enterprise 11 SP4 RT kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
- CVE-2017-1000251: The native Bluetooth stack was vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in remote code execution in kernel space (bnc#1057389).
- CVE-2017-14340: The XFS_IS_REALTIME_INODE macro in fs/xfs/xfs_linux.h did not verify that a filesystem has a realtime device, which allowed local users to cause a denial of service (NULL pointer dereference and OOPS) via vectors related to setting an RHINHERIT flag on a directory (bnc#1058524).
- CVE-2017-14140: The move_pages system call in mm/migrate.c did not check the effective uid of the target process, enabling a local attacker to learn the memory layout of a setuid executable despite ASLR (bnc#1057179).
- CVE-2017-14051: An integer overflow in the qla2x00_sysfs_write_optrom_ctl function in drivers/scsi/qla2xxx/qla_attr.c allowed local users to cause a denial of service (memory corruption and system crash) by leveraging root access (bnc#1056588).
- CVE-2017-10661: Race condition in fs/timerfd.c allowed local users to gain privileges or cause a denial of service (list corruption or use-after-free) via simultaneous file-descriptor operations that leverage improper might_cancel queueing (bnc#1053152).
- CVE-2017-12762: In /drivers/isdn/i4l/isdn_net.c a user-controlled buffer was copied into a local buffer of constant size using strcpy without a length check which can cause a buffer overflow (bnc#1053148).
- CVE-2017-8831: The saa7164_bus_get function allowed local users to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact by changing a certain sequence-number value, aka a 'double fetch' vulnerability (bnc#1037994).
- CVE-2017-1000112: Prevent race condition in net-packet code that could have been exploited by unprivileged users to gain root access.(bnc#1052311).
The following non-security bugs were fixed:
- ALSA: Fix Lewisburg audio issue
- Drop commit 96234ae:kvm_io_bus_unregister_dev() should never fail (bsc#1055680)
- Fixup build warnings in drivers/scsi/scsi.c (bsc#1031358)
- NFS: Cache aggressively when file is open for writing (bsc#1053933).
- NFS: Do drop directory dentry when error clearly requires it (bsc#1051932).
- NFS: Do not flush caches for a getattr that races with writeback (bsc#1053933).
- NFS: Optimize fallocate by refreshing mapping when needed (bsc#1053933).
- NFS: invalidate file size when taking a lock (bsc#1053933).
- PCI: fix hotplug related issues (bnc#1054247).
- af_key: do not use GFP_KERNEL in atomic contexts (bsc#1054093).
- avoid deadlock in xenbus (bnc#1047523).
- blacklist 9754d45e9970 tpm: read burstcount from TPM_STS in one 32-bit transaction
- blkback/blktap: do not leak stack data via response ring (bsc#1042863 XSA-216).
- cx231xx-audio: fix NULL-deref at probe (bsc#1050431).
- cx82310_eth: use skb_cow_head() to deal with cloned skbs (bsc#1045154).
- fuse: do not use iocb after it may have been freed (bsc#1054706).
- fuse: fix fuse_write_end() if zero bytes were copied (bsc#1054706).
- fuse: fsync() did not return IO errors (bsc#1054076).
- fuse: fuse_flush must check mapping->flags for errors (bsc#1054706).
- gspca: konica: add missing endpoint sanity check (bsc#1050431).
- kabi/severities: Ignore zpci symbol changes (bsc#1054247)
- lib/mpi: mpi_read_raw_data(): fix nbits calculation
- media: platform: davinci: return -EINVAL for VPFE_CMD_S_CCDC_RAW_PARAMS ioctl (bsc#1050431).
- net: Fix RCU splat in af_key (bsc#1054093).
- powerpc/fadump: add reschedule point while releasing memory (bsc#1040609 bsc#1024450).
- powerpc/fadump: avoid duplicates in crash memory ranges (bsc#1037669 bsc#1037667).
- powerpc/fadump: provide a helpful error message (bsc#1037669 bsc#1037667).
- powerpc/prom: Increase minimum RMA size to 512MB (bsc#984530, bsc#1052370).
- powerpc/slb: Force a full SLB flush when we insert for a bad EA (bsc#1054070).
- reiserfs: fix race in XXXXXXX (bsc#1039803).
- s390/pci: do not cleanup in arch_setup_msi_irqs (bnc#1054247).
- s390/pci: fix handling of PEC 306 (bnc#1054247).
- s390/pci: improve error handling during fmb (de)registration (bnc#1054247).
- s390/pci: improve error handling during interrupt deregistration (bnc#1054247).
- s390/pci: improve pci hotplug (bnc#1054247).
- s390/pci: improve unreg_ioat error handling (bnc#1054247).
- s390/pci: introduce clp_get_state (bnc#1054247).
- s390/pci: provide more debug information (bnc#1054247).
- scsi: avoid system stall due to host_busy race (bsc#1031358).
- scsi: close race when updating blocked counters (bsc#1031358).
- ser_gigaset: return -ENOMEM on error instead of success (bsc#1037441).
- supported.conf: clear mistaken external support flag for cifs.ko (bsc#1053802).
- tpm: fix a kernel memory leak in tpm-sysfs.c (bsc#1050381).
- uwb: fix device quirk on big-endian hosts (bsc#1036629).
- xfs: fix inobt inode allocation search optimization (bsc#1013018).
- ID
- SUSE-SU-2017:2694-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2017/suse-su-20172694-1/
- Published
-
2017-10-10T12:16:47
(7 years ago) - Modified
-
2017-10-10T12:16:47
(7 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS-2017-868
- ALAS-2017-870
- ALAS-2017-914
- ASA-201709-12
- ASA-201709-4
- ASA-201709-8
- ASA-201709-9
- DSA-3981-1
- ELSA-2017-2679
- ELSA-2017-2681
- ELSA-2017-2930
- ELSA-2017-3200
- ELSA-2017-3620
- ELSA-2017-3621
- ELSA-2017-3622
- ELSA-2017-3631
- ELSA-2017-3636
- ELSA-2017-3637
- ELSA-2018-1062
- ELSA-2018-3083
- ELSA-2018-4025
- ELSA-2019-4316
- ELSA-2019-4317
- FEDORA-2017-4336d64e21
- FEDORA-2017-6764d16965
- FEDORA-2017-7369ea045c
- FEDORA-2017-73f71456d7
- FEDORA-2017-a3a8638a60
- FEDORA-2017-e07d7fb18e
- FEDORA-2018-4ca01704a2
- FEDORA-2018-6367a17aa3
- FEDORA-2018-884a105c04
- RHSA-2017:2679
- RHSA-2017:2681
- RHSA-2017:2704
- RHSA-2017:2930
- RHSA-2017:2931
- RHSA-2017:3200
- RHSA-2018:0676
- RHSA-2018:1062
- RHSA-2018:3083
- RHSA-2018:3096
- SSA:2017-258-02
- SUSE-SU-2017:2131-1
- SUSE-SU-2017:2142-1
- SUSE-SU-2017:2150-1
- SUSE-SU-2017:2286-1
- SUSE-SU-2017:2423-1
- SUSE-SU-2017:2424-1
- SUSE-SU-2017:2436-1
- SUSE-SU-2017:2437-1
- SUSE-SU-2017:2438-1
- SUSE-SU-2017:2438-2
- SUSE-SU-2017:2439-1
- SUSE-SU-2017:2440-1
- SUSE-SU-2017:2441-1
- SUSE-SU-2017:2442-1
- SUSE-SU-2017:2443-1
- SUSE-SU-2017:2446-1
- SUSE-SU-2017:2447-1
- SUSE-SU-2017:2448-1
- SUSE-SU-2017:2454-1
- SUSE-SU-2017:2455-1
- SUSE-SU-2017:2456-1
- SUSE-SU-2017:2457-1
- SUSE-SU-2017:2458-1
- SUSE-SU-2017:2459-1
- SUSE-SU-2017:2464-1
- SUSE-SU-2017:2465-1
- SUSE-SU-2017:2467-1
- SUSE-SU-2017:2469-1
- SUSE-SU-2017:2471-1
- SUSE-SU-2017:2472-1
- SUSE-SU-2017:2473-1
- SUSE-SU-2017:2474-1
- SUSE-SU-2017:2475-1
- SUSE-SU-2017:2476-1
- SUSE-SU-2017:2497-1
- SUSE-SU-2017:2498-1
- SUSE-SU-2017:2499-1
- SUSE-SU-2017:2500-1
- SUSE-SU-2017:2506-1
- SUSE-SU-2017:2508-1
- SUSE-SU-2017:2509-1
- SUSE-SU-2017:2510-1
- SUSE-SU-2017:2511-1
- SUSE-SU-2017:2521-1
- SUSE-SU-2017:2523-1
- SUSE-SU-2017:2525-1
- SUSE-SU-2017:2534-1
- SUSE-SU-2017:2548-1
- SUSE-SU-2017:2769-1
- SUSE-SU-2017:2770-1
- SUSE-SU-2017:2771-1
- SUSE-SU-2017:2772-1
- SUSE-SU-2017:2773-1
- SUSE-SU-2017:2774-1
- SUSE-SU-2017:2775-1
- SUSE-SU-2017:2776-1
- SUSE-SU-2017:2777-1
- SUSE-SU-2017:2778-1
- SUSE-SU-2017:2779-1
- SUSE-SU-2017:2780-1
- SUSE-SU-2017:2781-1
- SUSE-SU-2017:2782-1
- SUSE-SU-2017:2783-1
- SUSE-SU-2017:2784-1
- SUSE-SU-2017:2785-1
- SUSE-SU-2017:2786-1
- SUSE-SU-2017:2787-1
- SUSE-SU-2017:2788-1
- SUSE-SU-2017:2790-1
- SUSE-SU-2017:2791-1
- SUSE-SU-2017:2792-1
- SUSE-SU-2017:2793-1
- SUSE-SU-2017:2794-1
- SUSE-SU-2017:2796-1
- SUSE-SU-2017:2797-1
- SUSE-SU-2017:2798-1
- SUSE-SU-2017:2799-1
- SUSE-SU-2017:2800-1
- SUSE-SU-2017:2801-1
- SUSE-SU-2017:2802-1
- SUSE-SU-2017:2803-1
- SUSE-SU-2017:2804-1
- SUSE-SU-2017:2805-1
- SUSE-SU-2017:2806-1
- SUSE-SU-2017:2807-1
- SUSE-SU-2017:2809-1
- SUSE-SU-2017:2811-1
- SUSE-SU-2017:2813-1
- SUSE-SU-2017:2816-1
- SUSE-SU-2017:2847-1
- SUSE-SU-2017:2869-1
- SUSE-SU-2017:2908-1
- SUSE-SU-2017:2920-1
- SUSE-SU-2017:2956-1
- SUSE-SU-2017:3265-1
- SUSE-SU-2017:3286-1
- SUSE-SU-2017:3287-1
- SUSE-SU-2017:3288-1
- SUSE-SU-2017:3289-1
- SUSE-SU-2017:3290-1
- SUSE-SU-2017:3291-1
- SUSE-SU-2017:3292-1
- SUSE-SU-2017:3293-1
- SUSE-SU-2017:3296-1
- SUSE-SU-2017:3299-1
- SUSE-SU-2017:3301-1
- SUSE-SU-2017:3302-1
- SUSE-SU-2017:3303-1
- SUSE-SU-2017:3304-1
- SUSE-SU-2017:3305-1
- SUSE-SU-2017:3306-1
- SUSE-SU-2017:3308-1
- SUSE-SU-2017:3309-1
- SUSE-SU-2017:3310-1
- SUSE-SU-2017:3312-1
- SUSE-SU-2017:3313-1
- SUSE-SU-2017:3316-1
- SUSE-SU-2017:3318-1
- SUSE-SU-2017:3320-1
- SUSE-SU-2017:3321-1
- SUSE-SU-2017:3322-1
- SUSE-SU-2017:3323-1
- SUSE-SU-2017:3332-1
- SUSE-SU-2017:3336-1
- SUSE-SU-2017:3337-1
- SUSE-SU-2017:3340-1
- SUSE-SU-2018:0040-1
- USN-3384-1
- USN-3384-2
- USN-3385-1
- USN-3385-2
- USN-3386-1
- USN-3386-2
- USN-3419-1
- USN-3419-2
- USN-3420-1
- USN-3420-2
- USN-3422-1
- USN-3422-2
- USN-3423-1
- USN-3444-1
- USN-3444-2
- USN-3468-1
- USN-3468-2
- USN-3468-3
- USN-3469-1
- USN-3469-2
- USN-3470-1
- USN-3470-2
- USN-3583-1
- USN-3583-2
- USN-3620-1
- USN-3620-2
- USN-3754-1
- VU:240311
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |