[SUSE-SU-2018:3029-1] Security update for the Linux Kernel (Live Patch 2 for SLE 12 SP3)
Severity
Important
CVEs
4
Security update for the Linux Kernel (Live Patch 2 for SLE 12 SP3)
This update for the Linux Kernel 4.4.82-6_6 fixes several issues.
The following security issues were fixed:
- CVE-2018-5390: Prevent very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming TCP packet which can lead to a denial of service (bsc#1102682).
- CVE-2018-1000026: Fixed an insufficient input validation in bnx2x network card driver that can result in DoS via very large, specially crafted packet to the bnx2x card due to a network card firmware assertion that will take the card offline (bsc#1096723).
- CVE-2018-10938: Fixed an infinite loop in the cipso_v4_optptr() function leading to a denial-of-service via crafted network packets (bsc#1106191).
- CVE-2018-10902: It was found that the raw midi kernel driver did not protect against concurrent access which lead to a double realloc (double free) in snd_rawmidi_input_params() and snd_rawmidi_output_status(), allowing a malicious local attacker to use this for privilege escalation (bsc#1105323).
- ID
- SUSE-SU-2018:3029-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2018/suse-su-20183029-1/
- Published
-
2018-10-05T11:23:56
(6 years ago) - Modified
-
2018-10-05T11:23:56
(6 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
-
ALAS-2018-1049
-
ALAS2-2018-1050
-
ASA-201808-4
-
ASA-201808-5
-
ASA-201808-6
-
ASA-201808-7
-
CISCO-SA-20180824-LINUX-TCP
-
DSA-4266-1
-
DSA-4308-1
-
ELSA-2018-2384
-
ELSA-2018-2390
-
ELSA-2018-3083
-
ELSA-2018-4189
-
ELSA-2018-4190
-
ELSA-2018-4208
-
ELSA-2018-4216
-
ELSA-2018-4299
-
ELSA-2018-4300
-
ELSA-2019-0415
-
ELSA-2019-4316
-
ELSA-2019-4570
-
ELSA-2021-9534
-
FEDORA-2018-03a6606cb5
-
FEDORA-2018-1c80fea1cd
-
FEDORA-2018-1e033dc308
-
FEDORA-2018-2a0f8b2c9d
-
FEDORA-2018-2ee3411cb8
-
FEDORA-2018-2f6df9abfb
-
FEDORA-2018-49bda79bd5
-
FEDORA-2018-4ca01704a2
-
FEDORA-2018-6367a17aa3
-
FEDORA-2018-79d7c3d2df
-
FEDORA-2018-7a62047e30
-
FEDORA-2018-8484550fff
-
FEDORA-2018-884a105c04
-
FEDORA-2018-93c2e74446
-
FEDORA-2018-94315e9a6b
-
FEDORA-2018-9d0e4e40b5
-
FEDORA-2018-b57db4753c
-
FEDORA-2018-b68776e5b0
-
FEDORA-2018-b997780dca
-
FEDORA-2018-c0a1284064
-
FEDORA-2018-c449dc1c9c
-
FEDORA-2018-d77cc41f35
-
FEDORA-2018-e71875c4aa
-
FEDORA-2018-e8f793bbfc
-
RHSA-2018:2384
-
RHSA-2018:2390
-
RHSA-2018:2395
-
RHSA-2018:3083
-
RHSA-2018:3096
-
RHSA-2019:0415
-
SSA:2019-169-01
-
SUSE-SU-2018:0785-1
-
SUSE-SU-2018:0786-1
-
SUSE-SU-2018:0986-1
-
SUSE-SU-2018:2222-1
-
SUSE-SU-2018:2223-1
-
SUSE-SU-2018:2328-1
-
SUSE-SU-2018:2344-1
-
SUSE-SU-2018:2344-2
-
SUSE-SU-2018:2374-1
-
SUSE-SU-2018:2472-1
-
SUSE-SU-2018:2474-1
-
SUSE-SU-2018:2538-1
-
SUSE-SU-2018:2539-1
-
SUSE-SU-2018:2596-1
-
SUSE-SU-2018:2775-1
-
SUSE-SU-2018:2776-1
-
SUSE-SU-2018:2787-1
-
SUSE-SU-2018:2858-1
-
SUSE-SU-2018:2860-1
-
SUSE-SU-2018:2862-1
-
SUSE-SU-2018:2864-1
-
SUSE-SU-2018:2879-1
-
SUSE-SU-2018:2907-1
-
SUSE-SU-2018:2908-1
-
SUSE-SU-2018:2908-2
-
SUSE-SU-2018:2935-1
-
SUSE-SU-2018:2938-1
-
SUSE-SU-2018:2940-1
-
SUSE-SU-2018:2960-1
-
SUSE-SU-2018:2961-1
-
SUSE-SU-2018:2962-1
-
SUSE-SU-2018:2963-1
-
SUSE-SU-2018:2964-1
-
SUSE-SU-2018:2980-1
-
SUSE-SU-2018:2981-1
-
SUSE-SU-2018:3083-1
-
SUSE-SU-2018:3084-1
-
SUSE-SU-2018:3088-1
-
SUSE-SU-2018:3172-1
-
SUSE-SU-2018:3265-1
-
SUSE-SU-2018:3328-1
-
SUSE-SU-2018:3470-1
-
SUSE-SU-2018:3789-1
-
SUSE-SU-2018:3961-1
-
SUSE-SU-2019:0955-1
-
SUSE-SU-2019:1425-1
-
SUSE-SU-2019:1767-1
-
SUSE-SU-2019:1870-1
-
SUSE-SU-2019:2230-1
-
SUSE-SU-2019:2601-1
-
SUSE-SU-2019:2821-1
-
SUSE-SU-2021:0452-1
-
USN-3617-1
-
USN-3617-2
-
USN-3617-3
-
USN-3619-1
-
USN-3619-2
-
USN-3620-1
-
USN-3620-2
-
USN-3632-1
-
USN-3732-1
-
USN-3732-2
-
USN-3741-1
-
USN-3741-2
-
USN-3742-1
-
USN-3742-2
-
USN-3763-1
-
USN-3776-1
-
USN-3776-2
-
USN-3797-1
-
USN-3797-2
-
USN-3847-1
-
USN-3847-2
-
USN-3847-3
-
USN-3849-1
-
USN-3849-2
-
VU:962459
-
| Source | # ID | Name | URL |
|---|---|---|---|
| Suse | SUSE ratings |
|
|
| Suse | URL of this CSAF notice |
|
|
| Suse | URL for SUSE-SU-2018:3029-1 |
|
|
| Suse | E-Mail link for SUSE-SU-2018:3029-1 |
|
|
| Bugzilla | SUSE Bug 1096723 |
|
|
| Bugzilla | SUSE Bug 1102682 |
|
|
| Bugzilla | SUSE Bug 1105323 |
|
|
| Bugzilla | SUSE Bug 1106191 |
|
|
| CVE | SUSE CVE CVE-2018-1000026 page |
|
|
| CVE | SUSE CVE CVE-2018-10902 page |
|
|
| CVE | SUSE CVE CVE-2018-10938 page |
|
|
| CVE | SUSE CVE CVE-2018-5390 page |
|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |