[SUSE-SU-2019:2572-1] Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP1)
Severity
Important
CVEs
1
Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP1)
This update for the Linux Kernel 4.12.14-195 fixes several issues.
The following security issue was fixed:
- CVE-2019-14835: A buffer overflow flaw was found in the way vhost functionality, that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host (bsc#1151021).
- ID
- SUSE-SU-2019:2572-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2019/suse-su-20192572-1/
- Published
-
2019-10-08T07:57:48
(5 years ago) - Modified
-
2019-10-08T07:57:48
(5 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS-2019-1293
- ALAS2-2019-1293
- DSA-4531-1
- ELSA-2019-2827
- ELSA-2019-2829
- ELSA-2019-2863
- ELSA-2019-4789
- ELSA-2019-4820
- ELSA-2019-4850
- FEDORA-2019-a570a92d5a
- FEDORA-2019-e3010166bd
- openSUSE-SU-2019:2173-1
- openSUSE-SU-2019:2181-1
- RHSA-2019:2827
- RHSA-2019:2828
- RHSA-2019:2829
- RHSA-2019:2830
- RHSA-2019:2854
- RHSA-2019:2863
- SSA:2019-311-01
- SUSE-SU-2019:2412-1
- SUSE-SU-2019:2414-1
- SUSE-SU-2019:2424-1
- SUSE-SU-2019:2600-1
- SUSE-SU-2019:2601-1
- SUSE-SU-2019:2613-1
- SUSE-SU-2019:2648-1
- SUSE-SU-2019:2651-1
- SUSE-SU-2019:2658-1
- SUSE-SU-2019:2738-1
- SUSE-SU-2019:2756-1
- SUSE-SU-2019:2821-1
- SUSE-SU-2019:2864-1
- SUSE-SU-2019:2949-1
- SUSE-SU-2019:2950-1
- SUSE-SU-2019:2984-1
- SUSE-SU-2019:3200-1
- SUSE-SU-2020:0093-1
- SUSE-SU-2020:0183-1
- USN-4135-1
- USN-4135-2
Source | # ID | Name | URL |
---|---|---|---|
Suse | SUSE ratings | https://www.suse.com/support/security/rating/ | |
Suse | URL of this CSAF notice | https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_2572-1.json | |
Suse | URL for SUSE-SU-2019:2572-1 | https://www.suse.com/support/update/announcement/2019/suse-su-20192572-1/ | |
Suse | E-Mail link for SUSE-SU-2019:2572-1 | https://lists.suse.com/pipermail/sle-security-updates/2019-October/005993.html | |
Bugzilla | SUSE Bug 1149841 | https://bugzilla.suse.com/1149841 | |
Bugzilla | SUSE Bug 1151021 | https://bugzilla.suse.com/1151021 | |
CVE | SUSE CVE CVE-2019-14835 page | https://www.suse.com/security/cve/CVE-2019-14835/ |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |