[SUSE-SU-2018:2474-1] Security update for the Linux Kernel (Live Patch 0 for SLE 15)

Severity Important

CVEs 5

Security update for the Linux Kernel (Live Patch 0 for SLE 15)

This update for the Linux Kernel 4.12.14-23 fixes several issues.

The following security issues were fixed:

CVE-2018-5390: Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service (bsc#1102682).
CVE-2018-3646: Local attackers in virtualized guest systems could use speculative code patterns on hyperthreaded processors to read data present in the L1 Datacache used by other hyperthreads on the same CPU core, potentially leaking sensitive data, even from other virtual machines or the host system (bsc#1099306).
CVE-2017-18344: The timer_create syscall implementation in kernel/time/posix-timers.c didn't properly validate the sigevent->sigev_notify field, which lead to out-of-bounds access in the show_timer function (called when /proc/$PID/timers is read). This allowed userspace applications to read arbitrary kernel memory (on a kernel built with CONFIG_POSIX_TIMERS and CONFIG_CHECKPOINT_RESTORE) (bsc#1103203). before 4.14.8
CVE-2018-12904: In arch/x86/kvm/vmx.c local attackers could cause L1 KVM guests to VMEXIT, potentially allowing privilege escalations and denial of service attacks due to lack of checking of CPL (bsc#1099258).
CVE-2018-10853: A flaw was found in kvm. In which certain instructions such as sgdt/sidt call segmented_write_std didn't propagate access correctly. As such, during userspace induced exception, the guest can incorrectly assume that the exception happened in the kernel and panic. (bsc#1097108).

ID

SUSE-SU-2018:2474-1

Severity

important

URL

Published

2018-08-21T15:13:27
(6 years ago)

Modified

2018-08-21T15:13:27
(6 years ago)

Rights

Other Advisories

Source	Name	URL
Suse	SUSE ratings	https://www.suse.com/support/security/rating/
Suse	URL of this CSAF notice	https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_2474-1.json
Suse	URL for SUSE-SU-2018:2474-1	https://www.suse.com/support/update/announcement/2018/suse-su-20182474-1/
Suse	E-Mail link for SUSE-SU-2018:2474-1	https://lists.suse.com/pipermail/sle-security-updates/2018-August/004487.html
Bugzilla	SUSE Bug 1097108	https://bugzilla.suse.com/1097108
Bugzilla	SUSE Bug 1099258	https://bugzilla.suse.com/1099258
Bugzilla	SUSE Bug 1099306	https://bugzilla.suse.com/1099306
Bugzilla	SUSE Bug 1102682	https://bugzilla.suse.com/1102682
Bugzilla	SUSE Bug 1103203	https://bugzilla.suse.com/1103203
CVE	SUSE CVE CVE-2017-18344 page	https://www.suse.com/security/cve/CVE-2017-18344/
CVE	SUSE CVE CVE-2018-10853 page	https://www.suse.com/security/cve/CVE-2018-10853/
CVE	SUSE CVE CVE-2018-12904 page	https://www.suse.com/security/cve/CVE-2018-12904/
CVE	SUSE CVE CVE-2018-3646 page	https://www.suse.com/security/cve/CVE-2018-3646/
CVE	SUSE CVE CVE-2018-5390 page	https://www.suse.com/security/cve/CVE-2018-5390/

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date