[SUSE-SU-2017:3304-1] Security update for the Linux Kernel (Live Patch 18 for SLE 12)
Severity
Important
Affected Packages
2
CVEs
2
Security update for the Linux Kernel (Live Patch 18 for SLE 12)
This update for the Linux Kernel 3.12.60-52_63 fixes several issues.
The following security issues were fixed:
- CVE-2017-16939: The XFRM dump policy implementation in net/xfrm/xfrm_user.c allowed local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages (bsc#1069708).
- CVE-2017-10661: Race condition in fs/timerfd.c allowed local users to gain privileges or cause a denial of service (list corruption or use-after-free) via simultaneous file-descriptor operations that leverage improper might_cancel queueing (bsc#1053153).
Package | Affected Version |
---|---|
pkg:rpm/suse/kgraft-patch-3_12_60-52_63-xen?arch=x86_64&distro=sles-12 | < 11-2.1 |
pkg:rpm/suse/kgraft-patch-3_12_60-52_63-default?arch=x86_64&distro=sles-12 | < 11-2.1 |
- ID
- SUSE-SU-2017:3304-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2017/suse-su-20173304-1/
- Published
-
2017-12-14T10:49:36
(6 years ago) - Modified
-
2017-12-14T10:49:36
(6 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS-2018-1023
- ALAS2-2018-1023
- DSA-4082-1
- ELSA-2017-3636
- ELSA-2017-3637
- ELSA-2018-1318
- ELSA-2018-3083
- ELSA-2018-4131
- RHSA-2018:1318
- RHSA-2018:1355
- RHSA-2018:3083
- RHSA-2018:3096
- SUSE-SU-2017:2525-1
- SUSE-SU-2017:2694-1
- SUSE-SU-2017:2908-1
- SUSE-SU-2017:2920-1
- SUSE-SU-2017:3210-1
- SUSE-SU-2017:3225-1
- SUSE-SU-2017:3226-1
- SUSE-SU-2017:3249-1
- SUSE-SU-2017:3265-1
- SUSE-SU-2017:3284-1
- SUSE-SU-2017:3285-1
- SUSE-SU-2017:3286-1
- SUSE-SU-2017:3287-1
- SUSE-SU-2017:3288-1
- SUSE-SU-2017:3289-1
- SUSE-SU-2017:3290-1
- SUSE-SU-2017:3291-1
- SUSE-SU-2017:3292-1
- SUSE-SU-2017:3293-1
- SUSE-SU-2017:3295-1
- SUSE-SU-2017:3296-1
- SUSE-SU-2017:3297-1
- SUSE-SU-2017:3299-1
- SUSE-SU-2017:3300-1
- SUSE-SU-2017:3301-1
- SUSE-SU-2017:3302-1
- SUSE-SU-2017:3303-1
- SUSE-SU-2017:3305-1
- SUSE-SU-2017:3306-1
- SUSE-SU-2017:3307-1
- SUSE-SU-2017:3308-1
- SUSE-SU-2017:3309-1
- SUSE-SU-2017:3310-1
- SUSE-SU-2017:3312-1
- SUSE-SU-2017:3313-1
- SUSE-SU-2017:3314-1
- SUSE-SU-2017:3316-1
- SUSE-SU-2017:3317-1
- SUSE-SU-2017:3318-1
- SUSE-SU-2017:3319-1
- SUSE-SU-2017:3320-1
- SUSE-SU-2017:3321-1
- SUSE-SU-2017:3322-1
- SUSE-SU-2017:3323-1
- SUSE-SU-2017:3324-1
- SUSE-SU-2017:3332-1
- SUSE-SU-2017:3336-1
- SUSE-SU-2017:3337-1
- SUSE-SU-2017:3338-1
- SUSE-SU-2017:3340-1
- SUSE-SU-2018:0011-1
- SUSE-SU-2018:0040-1
- SUSE-SU-2018:0180-1
- SUSE-SU-2018:0213-1
- SUSE-SU-2018:0237-1
- SUSE-SU-2018:0238-1
- SUSE-SU-2018:0239-1
- SUSE-SU-2018:0240-1
- SUSE-SU-2018:0241-1
- SUSE-SU-2018:0242-1
- SUSE-SU-2018:0244-1
- SUSE-SU-2018:0245-1
- SUSE-SU-2018:0249-1
- SUSE-SU-2018:0250-1
- SUSE-SU-2018:0251-1
- SUSE-SU-2018:0252-1
- SUSE-SU-2018:0253-1
- SUSE-SU-2018:0265-1
- SUSE-SU-2018:0266-1
- SUSE-SU-2018:0268-1
- SUSE-SU-2018:0269-1
- SUSE-SU-2018:0270-1
- SUSE-SU-2018:0271-1
- SUSE-SU-2018:0272-1
- SUSE-SU-2018:0273-1
- SUSE-SU-2018:0274-1
- SUSE-SU-2018:0275-1
- SUSE-SU-2018:0276-1
- SUSE-SU-2018:0277-1
- SUSE-SU-2018:0278-1
- SUSE-SU-2018:0280-1
- SUSE-SU-2018:0281-1
- SUSE-SU-2018:0282-1
- SUSE-SU-2018:0296-1
- SUSE-SU-2018:0297-1
- SUSE-SU-2018:0340-1
- SUSE-SU-2018:0345-1
- SUSE-SU-2018:0346-1
- SUSE-SU-2018:0347-1
- SUSE-SU-2019:0148-1
- SUSE-SU-2019:0320-1
- USN-3470-1
- USN-3470-2
- USN-3507-1
- USN-3507-2
- USN-3508-1
- USN-3508-2
- USN-3509-1
- USN-3509-2
- USN-3510-1
- USN-3510-2
- USN-3511-1
Source | # ID | Name | URL |
---|---|---|---|
Suse | SUSE ratings | https://www.suse.com/support/security/rating/ | |
Suse | URL of this CSAF notice | https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_3304-1.json | |
Suse | URL for SUSE-SU-2017:3304-1 | https://www.suse.com/support/update/announcement/2017/suse-su-20173304-1/ | |
Suse | E-Mail link for SUSE-SU-2017:3304-1 | https://lists.suse.com/pipermail/sle-security-updates/2017-December/003512.html | |
Bugzilla | SUSE Bug 1053153 | https://bugzilla.suse.com/1053153 | |
Bugzilla | SUSE Bug 1069708 | https://bugzilla.suse.com/1069708 | |
CVE | SUSE CVE CVE-2017-10661 page | https://www.suse.com/security/cve/CVE-2017-10661/ | |
CVE | SUSE CVE CVE-2017-16939 page | https://www.suse.com/security/cve/CVE-2017-16939/ |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/suse/kgraft-patch-3_12_60-52_63-xen?arch=x86_64&distro=sles-12 | suse | kgraft-patch-3_12_60-52_63-xen | < 11-2.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/kgraft-patch-3_12_60-52_63-default?arch=x86_64&distro=sles-12 | suse | kgraft-patch-3_12_60-52_63-default | < 11-2.1 | sles-12 | x86_64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |