[SUSE-SU-2018:3029-1] Security update for the Linux Kernel (Live Patch 2 for SLE 12 SP3)
Severity
Important
CVEs
4
Security update for the Linux Kernel (Live Patch 2 for SLE 12 SP3)
This update for the Linux Kernel 4.4.82-6_6 fixes several issues.
The following security issues were fixed:
- CVE-2018-5390: Prevent very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming TCP packet which can lead to a denial of service (bsc#1102682).
- CVE-2018-1000026: Fixed an insufficient input validation in bnx2x network card driver that can result in DoS via very large, specially crafted packet to the bnx2x card due to a network card firmware assertion that will take the card offline (bsc#1096723).
- CVE-2018-10938: Fixed an infinite loop in the cipso_v4_optptr() function leading to a denial-of-service via crafted network packets (bsc#1106191).
- CVE-2018-10902: It was found that the raw midi kernel driver did not protect against concurrent access which lead to a double realloc (double free) in snd_rawmidi_input_params() and snd_rawmidi_output_status(), allowing a malicious local attacker to use this for privilege escalation (bsc#1105323).
- ID
- SUSE-SU-2018:3029-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2018/suse-su-20183029-1/
- Published
-
2018-10-05T11:23:56
(6 years ago) - Modified
-
2018-10-05T11:23:56
(6 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS-2018-1049
- ALAS2-2018-1050
- ASA-201808-4
- ASA-201808-5
- ASA-201808-6
- ASA-201808-7
- CISCO-SA-20180824-LINUX-TCP
- DSA-4266-1
- DSA-4308-1
- ELSA-2018-2384
- ELSA-2018-2390
- ELSA-2018-3083
- ELSA-2018-4189
- ELSA-2018-4190
- ELSA-2018-4208
- ELSA-2018-4216
- ELSA-2018-4299
- ELSA-2018-4300
- ELSA-2019-0415
- ELSA-2019-4316
- ELSA-2019-4570
- ELSA-2021-9534
- FEDORA-2018-03a6606cb5
- FEDORA-2018-1c80fea1cd
- FEDORA-2018-1e033dc308
- FEDORA-2018-2a0f8b2c9d
- FEDORA-2018-2ee3411cb8
- FEDORA-2018-2f6df9abfb
- FEDORA-2018-49bda79bd5
- FEDORA-2018-4ca01704a2
- FEDORA-2018-6367a17aa3
- FEDORA-2018-79d7c3d2df
- FEDORA-2018-7a62047e30
- FEDORA-2018-8484550fff
- FEDORA-2018-884a105c04
- FEDORA-2018-93c2e74446
- FEDORA-2018-94315e9a6b
- FEDORA-2018-9d0e4e40b5
- FEDORA-2018-b57db4753c
- FEDORA-2018-b68776e5b0
- FEDORA-2018-b997780dca
- FEDORA-2018-c0a1284064
- FEDORA-2018-c449dc1c9c
- FEDORA-2018-d77cc41f35
- FEDORA-2018-e71875c4aa
- FEDORA-2018-e8f793bbfc
- RHSA-2018:2384
- RHSA-2018:2390
- RHSA-2018:2395
- RHSA-2018:3083
- RHSA-2018:3096
- RHSA-2019:0415
- SSA:2019-169-01
- SUSE-SU-2018:0785-1
- SUSE-SU-2018:0786-1
- SUSE-SU-2018:0986-1
- SUSE-SU-2018:2222-1
- SUSE-SU-2018:2223-1
- SUSE-SU-2018:2328-1
- SUSE-SU-2018:2344-1
- SUSE-SU-2018:2344-2
- SUSE-SU-2018:2374-1
- SUSE-SU-2018:2472-1
- SUSE-SU-2018:2474-1
- SUSE-SU-2018:2538-1
- SUSE-SU-2018:2539-1
- SUSE-SU-2018:2596-1
- SUSE-SU-2018:2775-1
- SUSE-SU-2018:2776-1
- SUSE-SU-2018:2787-1
- SUSE-SU-2018:2858-1
- SUSE-SU-2018:2860-1
- SUSE-SU-2018:2862-1
- SUSE-SU-2018:2864-1
- SUSE-SU-2018:2879-1
- SUSE-SU-2018:2907-1
- SUSE-SU-2018:2908-1
- SUSE-SU-2018:2908-2
- SUSE-SU-2018:2935-1
- SUSE-SU-2018:2938-1
- SUSE-SU-2018:2940-1
- SUSE-SU-2018:2960-1
- SUSE-SU-2018:2961-1
- SUSE-SU-2018:2962-1
- SUSE-SU-2018:2963-1
- SUSE-SU-2018:2964-1
- SUSE-SU-2018:2980-1
- SUSE-SU-2018:2981-1
- SUSE-SU-2018:3083-1
- SUSE-SU-2018:3084-1
- SUSE-SU-2018:3088-1
- SUSE-SU-2018:3172-1
- SUSE-SU-2018:3265-1
- SUSE-SU-2018:3328-1
- SUSE-SU-2018:3470-1
- SUSE-SU-2018:3789-1
- SUSE-SU-2018:3961-1
- SUSE-SU-2019:0955-1
- SUSE-SU-2019:1425-1
- SUSE-SU-2019:1767-1
- SUSE-SU-2019:1870-1
- SUSE-SU-2019:2230-1
- SUSE-SU-2019:2601-1
- SUSE-SU-2019:2821-1
- SUSE-SU-2021:0452-1
- USN-3617-1
- USN-3617-2
- USN-3617-3
- USN-3619-1
- USN-3619-2
- USN-3620-1
- USN-3620-2
- USN-3632-1
- USN-3732-1
- USN-3732-2
- USN-3741-1
- USN-3741-2
- USN-3742-1
- USN-3742-2
- USN-3763-1
- USN-3776-1
- USN-3776-2
- USN-3797-1
- USN-3797-2
- USN-3847-1
- USN-3847-2
- USN-3847-3
- USN-3849-1
- USN-3849-2
- VU:962459
Source | # ID | Name | URL |
---|---|---|---|
Suse | SUSE ratings | https://www.suse.com/support/security/rating/ | |
Suse | URL of this CSAF notice | https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_3029-1.json | |
Suse | URL for SUSE-SU-2018:3029-1 | https://www.suse.com/support/update/announcement/2018/suse-su-20183029-1/ | |
Suse | E-Mail link for SUSE-SU-2018:3029-1 | https://lists.suse.com/pipermail/sle-security-updates/2018-October/004645.html | |
Bugzilla | SUSE Bug 1096723 | https://bugzilla.suse.com/1096723 | |
Bugzilla | SUSE Bug 1102682 | https://bugzilla.suse.com/1102682 | |
Bugzilla | SUSE Bug 1105323 | https://bugzilla.suse.com/1105323 | |
Bugzilla | SUSE Bug 1106191 | https://bugzilla.suse.com/1106191 | |
CVE | SUSE CVE CVE-2018-1000026 page | https://www.suse.com/security/cve/CVE-2018-1000026/ | |
CVE | SUSE CVE CVE-2018-10902 page | https://www.suse.com/security/cve/CVE-2018-10902/ | |
CVE | SUSE CVE CVE-2018-10938 page | https://www.suse.com/security/cve/CVE-2018-10938/ | |
CVE | SUSE CVE CVE-2018-5390 page | https://www.suse.com/security/cve/CVE-2018-5390/ |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |