[SUSE-SU-2018:0269-1] Security update for the Linux Kernel (Live Patch 8 for SLE 12 SP2)
Severity
Important
CVEs
2
Security update for the Linux Kernel (Live Patch 8 for SLE 12 SP2)
This update for the Linux Kernel 4.4.59-92_20 fixes several issues.
The following security issues were fixed:
- CVE-2017-17712: The raw_sendmsg() function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges (bsc#1073230).
- CVE-2017-16939: The XFRM dump policy implementation allowed local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages (bsc#1069708).
- ID
- SUSE-SU-2018:0269-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2018/suse-su-20180269-1/
- Published
-
2018-01-29T19:02:25
(6 years ago) - Modified
-
2018-01-29T19:02:25
(6 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS-2018-1023
- ALAS-2018-944
- ALAS2-2018-1023
- ASA-201801-1
- ASA-201801-2
- ASA-201801-3
- ASA-201801-4
- DSA-4073-1
- DSA-4082-1
- ELSA-2018-1318
- ELSA-2018-4025
- ELSA-2018-4131
- FEDORA-2017-7810b7c59f
- FEDORA-2017-f7cb245861
- FEDORA-2018-1c80fea1cd
- FEDORA-2018-1e033dc308
- FEDORA-2018-2a0f8b2c9d
- FEDORA-2018-2ee3411cb8
- FEDORA-2018-2f6df9abfb
- FEDORA-2018-49bda79bd5
- FEDORA-2018-4ca01704a2
- FEDORA-2018-6367a17aa3
- FEDORA-2018-79d7c3d2df
- FEDORA-2018-8484550fff
- FEDORA-2018-884a105c04
- FEDORA-2018-93c2e74446
- FEDORA-2018-94315e9a6b
- FEDORA-2018-9d0e4e40b5
- FEDORA-2018-b57db4753c
- FEDORA-2018-b68776e5b0
- FEDORA-2018-b997780dca
- FEDORA-2018-c0a1284064
- FEDORA-2018-c449dc1c9c
- FEDORA-2018-d77cc41f35
- FEDORA-2018-e71875c4aa
- FEDORA-2018-e8f793bbfc
- RHSA-2018:1318
- RHSA-2018:1355
- SUSE-SU-2017:3210-1
- SUSE-SU-2017:3225-1
- SUSE-SU-2017:3226-1
- SUSE-SU-2017:3249-1
- SUSE-SU-2017:3284-1
- SUSE-SU-2017:3285-1
- SUSE-SU-2017:3286-1
- SUSE-SU-2017:3287-1
- SUSE-SU-2017:3288-1
- SUSE-SU-2017:3289-1
- SUSE-SU-2017:3290-1
- SUSE-SU-2017:3291-1
- SUSE-SU-2017:3292-1
- SUSE-SU-2017:3293-1
- SUSE-SU-2017:3295-1
- SUSE-SU-2017:3296-1
- SUSE-SU-2017:3297-1
- SUSE-SU-2017:3299-1
- SUSE-SU-2017:3300-1
- SUSE-SU-2017:3301-1
- SUSE-SU-2017:3302-1
- SUSE-SU-2017:3303-1
- SUSE-SU-2017:3304-1
- SUSE-SU-2017:3305-1
- SUSE-SU-2017:3306-1
- SUSE-SU-2017:3307-1
- SUSE-SU-2017:3308-1
- SUSE-SU-2017:3309-1
- SUSE-SU-2017:3310-1
- SUSE-SU-2017:3312-1
- SUSE-SU-2017:3313-1
- SUSE-SU-2017:3314-1
- SUSE-SU-2017:3316-1
- SUSE-SU-2017:3317-1
- SUSE-SU-2017:3318-1
- SUSE-SU-2017:3319-1
- SUSE-SU-2017:3320-1
- SUSE-SU-2017:3321-1
- SUSE-SU-2017:3322-1
- SUSE-SU-2017:3323-1
- SUSE-SU-2017:3324-1
- SUSE-SU-2017:3332-1
- SUSE-SU-2017:3336-1
- SUSE-SU-2017:3337-1
- SUSE-SU-2017:3338-1
- SUSE-SU-2017:3340-1
- SUSE-SU-2018:0011-1
- SUSE-SU-2018:0040-1
- SUSE-SU-2018:0180-1
- SUSE-SU-2018:0213-1
- SUSE-SU-2018:0237-1
- SUSE-SU-2018:0238-1
- SUSE-SU-2018:0239-1
- SUSE-SU-2018:0240-1
- SUSE-SU-2018:0241-1
- SUSE-SU-2018:0242-1
- SUSE-SU-2018:0244-1
- SUSE-SU-2018:0245-1
- SUSE-SU-2018:0249-1
- SUSE-SU-2018:0250-1
- SUSE-SU-2018:0251-1
- SUSE-SU-2018:0252-1
- SUSE-SU-2018:0253-1
- SUSE-SU-2018:0265-1
- SUSE-SU-2018:0266-1
- SUSE-SU-2018:0268-1
- SUSE-SU-2018:0270-1
- SUSE-SU-2018:0271-1
- SUSE-SU-2018:0272-1
- SUSE-SU-2018:0273-1
- SUSE-SU-2018:0274-1
- SUSE-SU-2018:0275-1
- SUSE-SU-2018:0276-1
- SUSE-SU-2018:0277-1
- SUSE-SU-2018:0278-1
- SUSE-SU-2018:0280-1
- SUSE-SU-2018:0281-1
- SUSE-SU-2018:0282-1
- SUSE-SU-2018:0294-1
- SUSE-SU-2018:0296-1
- SUSE-SU-2018:0297-1
- SUSE-SU-2018:0298-1
- SUSE-SU-2018:0301-1
- SUSE-SU-2018:0340-1
- SUSE-SU-2018:0345-1
- SUSE-SU-2018:0346-1
- SUSE-SU-2018:0347-1
- SUSE-SU-2018:0383-1
- SUSE-SU-2018:0416-1
- SUSE-SU-2018:0431-1
- SUSE-SU-2018:0433-1
- SUSE-SU-2018:0436-1
- SUSE-SU-2018:0482-1
- SUSE-SU-2018:0986-1
- SUSE-SU-2019:0148-1
- SUSE-SU-2019:0320-1
- USN-3507-1
- USN-3507-2
- USN-3508-1
- USN-3508-2
- USN-3509-1
- USN-3509-2
- USN-3510-1
- USN-3510-2
- USN-3511-1
- USN-3581-1
- USN-3581-2
- USN-3581-3
- USN-3582-1
- USN-3582-2
Source | # ID | Name | URL |
---|---|---|---|
Suse | SUSE ratings | https://www.suse.com/support/security/rating/ | |
Suse | URL of this CSAF notice | https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_0269-1.json | |
Suse | URL for SUSE-SU-2018:0269-1 | https://www.suse.com/support/update/announcement/2018/suse-su-20180269-1/ | |
Suse | E-Mail link for SUSE-SU-2018:0269-1 | https://lists.suse.com/pipermail/sle-security-updates/2018-January/003664.html | |
Bugzilla | SUSE Bug 1069708 | https://bugzilla.suse.com/1069708 | |
Bugzilla | SUSE Bug 1070307 | https://bugzilla.suse.com/1070307 | |
Bugzilla | SUSE Bug 1073230 | https://bugzilla.suse.com/1073230 | |
CVE | SUSE CVE CVE-2017-16939 page | https://www.suse.com/security/cve/CVE-2017-16939/ | |
CVE | SUSE CVE CVE-2017-17712 page | https://www.suse.com/security/cve/CVE-2017-17712/ |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |