1. Home
  2. Security Advisories
  3. SUSE
  4. SUSE-SU-2019:2984-1

[SUSE-SU-2019:2984-1] Security update for the Linux Kernel

Severity Important
Affected Packages 18
CVEs 49
Info Packages References Vulnerabilities

Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP2 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • CVE-2018-12207: Untrusted virtual machines on Intel CPUs could exploit a race
    condition in the Instruction Fetch Unit of the Intel CPU to cause a Machine
    Exception during Page Size Change, causing the CPU core to be non-functional.

    The Linux Kernel kvm hypervisor was adjusted to avoid page size changes in
    executable pages by splitting / merging huge pages into small pages as
    needed. More information can be found on https://www.suse.com/support/kb/doc/?id=7023735

  • CVE-2019-16995: Fix a memory leak in hsr_dev_finalize() if hsr_add_port
    failed to add a port, which may have caused denial of service (bsc#1152685).

  • CVE-2019-11135: Aborting an asynchronous TSX operation on Intel CPUs with
    Transactional Memory support could be used to facilitate sidechannel
    information leaks out of microarchitectural buffers, similar to the
    previously described 'Microarchitectural Data Sampling' attack.

    The Linux kernel was supplemented with the option to disable TSX operation
    altogether (requiring CPU Microcode updates on older systems) and better
    flushing of microarchitectural buffers (VERW).

    The set of options available is described in our TID at https://www.suse.com/support/kb/doc/?id=7024251

  • CVE-2019-16233: drivers/scsi/qla2xxx/qla_os.c did not check the
    alloc_workqueue return value, leading to a NULL pointer dereference.
    (bsc#1150457).

  • CVE-2019-10220: Added sanity checks on the pathnames passed to the user
    space. (bsc#1144903).

  • CVE-2019-17666: rtlwifi: Fix potential overflow in P2P code (bsc#1154372).

  • CVE-2019-17133: cfg80211 wireless extension did not reject a long SSID IE,
    leading to a Buffer Overflow (bsc#1153158).

  • CVE-2019-16232: Fix a potential NULL pointer dereference in the Marwell
    libertas driver (bsc#1150465).

  • CVE-2019-16234: iwlwifi pcie driver did not check the alloc_workqueue return
    value, leading to a NULL pointer dereference. (bsc#1150452).

  • CVE-2019-17055: The AF_ISDN network module in the Linux kernel did not
    enforce CAP_NET_RAW, which meant that unprivileged users could create a raw
    socket (bnc#1152782).

  • CVE-2019-17056: The AF_NFC network module did not enforce CAP_NET_RAW, which
    meant that unprivileged users could create a raw socket (bsc#1152788).

  • CVE-2019-16413: The 9p filesystem did not protect i_size_write() properly,
    which caused an i_size_read() infinite loop and denial of service on SMP
    systems (bnc#1151347).

  • CVE-2019-15902: A backporting issue was discovered that re-introduced the
    Spectre vulnerability it had aimed to eliminate. This occurred because the
    backport process depends on cherry picking specific commits, and because two
    (correctly ordered) code lines were swapped (bnc#1149376).

  • CVE-2019-15291: Fixed a NULL pointer dereference issue that could be caused
    by a malicious USB device (bnc#1146519).

  • CVE-2019-15807: Fixed a memory leak in the SCSI module that could be abused
    to cause denial of service (bnc#1148938).

  • CVE-2019-13272: Fixed a mishandled the recording of the credentials of a
    process that wants to create a ptrace relationship, which allowed local users
    to obtain root access by leveraging certain scenarios with a parent-child
    process relationship, where a parent drops privileges and calls execve
    (potentially allowing control by an attacker). (bnc#1140671).

  • CVE-2019-14821: An out-of-bounds access issue was fixed in the kernel's kvm
    hypervisor. An unprivileged host user or process with access to '/dev/kvm'
    device could use this flaw to crash the host kernel, resulting in a denial of
    service or potentially escalating privileges on the system (bnc#1151350).

  • CVE-2019-15505: An out-of-bounds issue had been fixed that could be caused by
    crafted USB device traffic (bnc#1147122).

  • CVE-2017-18595: A double free in allocate_trace_buffer was fixed
    (bnc#1149555).

  • CVE-2019-14835: A buffer overflow flaw was found in the kernel's vhost
    functionality that translates virtqueue buffers to IOVs. A privileged guest
    user able to pass descriptors with invalid length to the host could use this
    flaw to increase their privileges on the host (bnc#1150112).

  • CVE-2019-15216: A NULL pointer dereference was fixed that could be malicious
    USB device (bnc#1146361).

  • CVE-2019-15924: A a NULL pointer dereference has been fixed in the
    drivers/net/ethernet/intel/fm10k module (bnc#1149612).

  • CVE-2019-9456: An out-of-bounds write in the USB monitor driver has been
    fixed. This issue could lead to local escalation of privilege with System
    execution privileges needed. (bnc#1150025).

  • CVE-2019-15926: An out-of-bounds access was fixed in the
    drivers/net/wireless/ath/ath6kl module. (bnc#1149527).

  • CVE-2019-15927: An out-of-bounds access was fixed in the sound/usb/mixer
    module (bnc#1149522).

  • CVE-2019-15666: There was an out-of-bounds array access in the net/xfrm
    module that could cause denial of service (bnc#1148394).

  • CVE-2019-15219: A NULL pointer dereference was fixed that could be abused by
    a malicious USB device (bnc#1146519 1146524).

  • CVE-2019-15220: A use-after-free issue was fixed that could be caused by a
    malicious USB device (bnc#1146519 1146526).

  • CVE-2019-15221: A NULL pointer dereference was fixed that could be caused by
    a malicious USB device (bnc#1146519 1146529).

  • CVE-2019-14814: A heap-based buffer overflow was fixed in the marvell wifi
    chip driver. That issue allowed local users to cause a denial of service
    (system crash) or possibly execute arbitrary code (bnc#1146512).

  • CVE-2019-14815: A missing length check while parsing WMM IEs was fixed
    (bsc#1146512, bsc#1146514, bsc#1146516).

  • CVE-2019-14816: A heap-based buffer overflow in the marvell wifi chip driver
    was fixed. Local users would have abused this issue to cause a denial of
    service (system crash) or possibly execute arbitrary code (bnc#1146516).

  • CVE-2017-18509: An issue in net/ipv6 as fixed. By setting a specific socket
    option, an attacker could control a pointer in kernel land and cause an
    inet_csk_listen_stop general protection fault, or potentially execute
    arbitrary code under certain circumstances. The issue can be triggered as
    root (e.g., inside a default LXC container or with the CAP_NET_ADMIN
    capability) or after namespace unsharing. (bnc#1145477)

  • CVE-2019-9506: The Bluetooth BR/EDR specification used to permit sufficiently
    low encryption key length and did not prevent an attacker from influencing
    the key length negotiation. This allowed practical brute-force attacks (aka
    'KNOB') that could decrypt traffic and inject arbitrary ciphertext without
    the victim noticing (bnc#1137865).

  • CVE-2019-15098: A NULL pointer dereference in drivers/net/wireless/ath was
    fixed (bnc#1146378).

  • CVE-2019-15290: A NULL pointer dereference in ath6kl_usb_alloc_urb_from_pipe
    was fixed (bsc#1146378).

  • CVE-2019-15212: A double-free issue was fixed in drivers/usb driver
    (bnc#1146391).

  • CVE-2016-10906: A use-after-free issue was fixed in drivers/net/ethernet/arc
    (bnc#1146584).

  • CVE-2019-15211: A use-after-free issue caused by a malicious USB device was
    fixed in the drivers/media/v4l2-core driver (bnc#1146519).

  • CVE-2019-15217: A a NULL pointer dereference issue caused by a malicious USB
    device was fixed in the drivers/media/usb/zr364xx driver (bnc#1146519).

  • CVE-2019-15214: An a use-after-free issue in the sound subsystem was fixed
    (bnc#1146519).

  • CVE-2019-15218: A NULL pointer dereference caused by a malicious USB device
    was fixed in the drivers/media/usb/siano driver (bnc#1146413).

  • CVE-2019-15215: A use-after-free issue caused by a malicious USB device was
    fixed in the drivers/media/usb/cpia2 driver (bnc#1146425).

  • CVE-2018-20976: A use-after-free issue was fixed in the fs/xfs driver
    (bnc#1146285).

  • CVE-2019-0154: An unprotected read access to i915 registers has been fixed
    that could have been abused to facilitate a local denial-of-service attack.
    (bsc#1135966)

  • CVE-2019-0155: A privilege escalation vulnerability has been fixed in the
    i915 module that allowed batch buffers from user mode to gain super user
    privileges. (bsc#1135967)

  • CVE-2019-16231: The fjes driver did not check the alloc_workqueue return value, leading to a NULL pointer dereference. (bnc#1150466)

  • CVE-2019-18805: Fix signed integer overflow in tcp_ack_update_rtt() that could have lead to a denial of service or possibly unspecified other impact (bsc#1156187)

  • CVE-2019-18680: A NULL pointer dereference in rds_tcp_kill_sock() could cause denial of service (bnc#1155898)

The following non-security bugs were fixed:

  • cpu/speculation: Uninline and export CPU mitigations helpers (bnc#1117665).
  • documentation: Add ITLB_MULTIHIT documentation (bnc#1117665).
  • ib/core: Add mitigation for Spectre V1 (bsc#1155671)
  • ib/core: array_index_nospec: Sanitize speculative array (bsc#1155671)
  • ipv6: Update ipv6 defrag code (add bsc#1141054).
  • ksm: cleanup stable_node chain collapse case (bnc#1144338).
  • ksm: fix use after free with merge_across_nodes = 0 (bnc#1144338).
  • ksm: introduce ksm_max_page_sharing per page deduplication limit (bnc#1144338).
  • ksm: optimize refile of stable_node_dup at the head of the chain (bnc#1144338).
  • ksm: swap the two output parameters of chain/chain_prune (bnc#1144338).
  • kvm kABI Fix for NX patches (bsc#1117665).
  • kvm: Convert kvm_lock to a mutex (bsc#1117665).
  • kvm: MMU: drop vcpu param in gpte_access (bsc#1117665).
  • kvm: MMU: introduce kvm_mmu_gfn_{allow,disallow}_lpage (bsc#1117665).
  • kvm: MMU: rename has_wrprotected_page to mmu_gfn_lpage_is_disallowed (bsc#1117665).
  • kvm: vmx, svm: always run with EFER.NXE=1 when shadow paging is active (bsc#1117665).
  • kvm: x86, powerpc: do not allow clearing largepages debugfs entry (bsc#1117665).
  • kvm: x86: Do not release the page inside mmu_set_spte() (bsc#1117665).
  • kvm: x86: MMU: Consolidate quickly_check_mmio_pf() and is_mmio_page_fault() (bsc#1117665).
  • kvm: x86: MMU: Encapsulate the type of rmap-chain head in a new struct (bsc#1117665).
  • kvm: x86: MMU: Move handle_mmio_page_fault() call to kvm_mmu_page_fault() (bsc#1117665).
  • kvm: x86: MMU: Move initialization of parent_ptes out from kvm_mmu_alloc_page() (bsc#1117665).
  • kvm: x86: MMU: Move parent_pte handling from kvm_mmu_get_page() to link_shadow_page() (bsc#1117665).
  • kvm: x86: MMU: Remove unused parameter parent_pte from kvm_mmu_get_page() (bsc#1117665).
  • kvm: x86: MMU: always set accessed bit in shadow PTEs (bsc#1117665).
  • kvm: x86: add tracepoints around __direct_map and FNAME(fetch) (bsc#1117665).
  • kvm: x86: adjust kvm_mmu_page member to save 8 bytes (bsc#1117665).
  • kvm: x86: change kvm_mmu_page_get_gfn BUG_ON to WARN_ON (bsc#1117665).
  • kvm: x86: extend usage of RET_MMIO_PF_* constants (bsc#1117665).
  • kvm: x86: make FNAME(fetch) and __direct_map more similar (bsc#1117665).
  • kvm: x86: mmu: Apply global mitigations knob to ITLB_MULTIHIT (bnc#1117665).
  • kvm: x86: remove now unneeded hugepage gfn adjustment (bsc#1117665).
  • kvm: x86: simplify ept_misconfig (bsc#1117665).
  • media: smsusb: better handle optional alignment (bsc#1146413).
  • mm: use upstream patch for bsc#1106913
  • scsi: scsi_transport_fc: Drop double list_del() (bsc#1084878)
  • x86/bugs: correctly force-disable IBRS on !SKL systems (bsc#1068032, bsc#1092497).
  • x86/cpu: Add Atom Tremont (Jacobsville) (bsc#1117665).
  • x86/headers: Do not include asm/processor.h in asm/atomic.h (bsc#1150223).
  • x86/mitigations: Backport the STIBP pile See bsc#1139550
  • xen-blkfront: avoid ENOMEM in blkif_recover after migration (bsc#1149849).
Package Affected Version
pkg:rpm/suse/kgraft-patch-4_4_121-92_125-default?arch=x86_64&distro=sles-12&sp=2 < 1-3.5.1
pkg:rpm/suse/kgraft-patch-4_4_121-92_125-default?arch=ppc64le&distro=sles-12&sp=2 < 1-3.5.1
pkg:rpm/suse/kernel-syms?arch=x86_64&distro=sles-12&sp=2 < 4.4.121-92.125.1
pkg:rpm/suse/kernel-syms?arch=s390x&distro=sles-12&sp=2 < 4.4.121-92.125.1
pkg:rpm/suse/kernel-syms?arch=ppc64le&distro=sles-12&sp=2 < 4.4.121-92.125.1
pkg:rpm/suse/kernel-source?arch=noarch&distro=sles-12&sp=2 < 4.4.121-92.125.1
pkg:rpm/suse/kernel-macros?arch=noarch&distro=sles-12&sp=2 < 4.4.121-92.125.1
pkg:rpm/suse/kernel-devel?arch=noarch&distro=sles-12&sp=2 < 4.4.121-92.125.1
pkg:rpm/suse/kernel-default?arch=x86_64&distro=sles-12&sp=2 < 4.4.121-92.125.1
pkg:rpm/suse/kernel-default?arch=s390x&distro=sles-12&sp=2 < 4.4.121-92.125.1
pkg:rpm/suse/kernel-default?arch=ppc64le&distro=sles-12&sp=2 < 4.4.121-92.125.1
pkg:rpm/suse/kernel-default-man?arch=s390x&distro=sles-12&sp=2 < 4.4.121-92.125.1
pkg:rpm/suse/kernel-default-devel?arch=x86_64&distro=sles-12&sp=2 < 4.4.121-92.125.1
pkg:rpm/suse/kernel-default-devel?arch=s390x&distro=sles-12&sp=2 < 4.4.121-92.125.1
pkg:rpm/suse/kernel-default-devel?arch=ppc64le&distro=sles-12&sp=2 < 4.4.121-92.125.1
pkg:rpm/suse/kernel-default-base?arch=x86_64&distro=sles-12&sp=2 < 4.4.121-92.125.1
pkg:rpm/suse/kernel-default-base?arch=s390x&distro=sles-12&sp=2 < 4.4.121-92.125.1
pkg:rpm/suse/kernel-default-base?arch=ppc64le&distro=sles-12&sp=2 < 4.4.121-92.125.1
ID
SUSE-SU-2019:2984-1
Severity
important
URL
https://www.suse.com/support/update/announcement/2019/suse-su-20192984-1/
Published
2019-11-20T10:32:05
(4 years ago)
Modified
2019-11-20T10:32:05
(4 years ago)
Rights
Copyright 2024 SUSE LLC. All rights reserved.
Other Advisories
Source # ID Name URL
Suse SUSE ratings https://www.suse.com/support/security/rating/
Suse URL of this CSAF notice https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_2984-1.json
Suse URL for SUSE-SU-2019:2984-1 https://www.suse.com/support/update/announcement/2019/suse-su-20192984-1/
Suse E-Mail link for SUSE-SU-2019:2984-1 https://lists.suse.com/pipermail/sle-security-updates/2019-November/006143.html
Bugzilla SUSE Bug 1068032 https://bugzilla.suse.com/1068032
Bugzilla SUSE Bug 1084878 https://bugzilla.suse.com/1084878
Bugzilla SUSE Bug 1092497 https://bugzilla.suse.com/1092497
Bugzilla SUSE Bug 1106913 https://bugzilla.suse.com/1106913
Bugzilla SUSE Bug 1117665 https://bugzilla.suse.com/1117665
Bugzilla SUSE Bug 1135966 https://bugzilla.suse.com/1135966
Bugzilla SUSE Bug 1135967 https://bugzilla.suse.com/1135967
Bugzilla SUSE Bug 1137865 https://bugzilla.suse.com/1137865
Bugzilla SUSE Bug 1139550 https://bugzilla.suse.com/1139550
Bugzilla SUSE Bug 1140671 https://bugzilla.suse.com/1140671
Bugzilla SUSE Bug 1141054 https://bugzilla.suse.com/1141054
Bugzilla SUSE Bug 1144338 https://bugzilla.suse.com/1144338
Bugzilla SUSE Bug 1144903 https://bugzilla.suse.com/1144903
Bugzilla SUSE Bug 1145477 https://bugzilla.suse.com/1145477
Bugzilla SUSE Bug 1146285 https://bugzilla.suse.com/1146285
Bugzilla SUSE Bug 1146361 https://bugzilla.suse.com/1146361
Bugzilla SUSE Bug 1146378 https://bugzilla.suse.com/1146378
Bugzilla SUSE Bug 1146391 https://bugzilla.suse.com/1146391
Bugzilla SUSE Bug 1146413 https://bugzilla.suse.com/1146413
Bugzilla SUSE Bug 1146425 https://bugzilla.suse.com/1146425
Bugzilla SUSE Bug 1146512 https://bugzilla.suse.com/1146512
Bugzilla SUSE Bug 1146514 https://bugzilla.suse.com/1146514
Bugzilla SUSE Bug 1146516 https://bugzilla.suse.com/1146516
Bugzilla SUSE Bug 1146519 https://bugzilla.suse.com/1146519
Bugzilla SUSE Bug 1146584 https://bugzilla.suse.com/1146584
Bugzilla SUSE Bug 1147122 https://bugzilla.suse.com/1147122
Bugzilla SUSE Bug 1148394 https://bugzilla.suse.com/1148394
Bugzilla SUSE Bug 1148938 https://bugzilla.suse.com/1148938
Bugzilla SUSE Bug 1149376 https://bugzilla.suse.com/1149376
Bugzilla SUSE Bug 1149522 https://bugzilla.suse.com/1149522
Bugzilla SUSE Bug 1149527 https://bugzilla.suse.com/1149527
Bugzilla SUSE Bug 1149555 https://bugzilla.suse.com/1149555
Bugzilla SUSE Bug 1149612 https://bugzilla.suse.com/1149612
Bugzilla SUSE Bug 1149849 https://bugzilla.suse.com/1149849
Bugzilla SUSE Bug 1150025 https://bugzilla.suse.com/1150025
Bugzilla SUSE Bug 1150112 https://bugzilla.suse.com/1150112
Bugzilla SUSE Bug 1150223 https://bugzilla.suse.com/1150223
Bugzilla SUSE Bug 1150452 https://bugzilla.suse.com/1150452
Bugzilla SUSE Bug 1150457 https://bugzilla.suse.com/1150457
Bugzilla SUSE Bug 1150465 https://bugzilla.suse.com/1150465
Bugzilla SUSE Bug 1150466 https://bugzilla.suse.com/1150466
Bugzilla SUSE Bug 1151347 https://bugzilla.suse.com/1151347
Bugzilla SUSE Bug 1151350 https://bugzilla.suse.com/1151350
Bugzilla SUSE Bug 1152685 https://bugzilla.suse.com/1152685
Bugzilla SUSE Bug 1152782 https://bugzilla.suse.com/1152782
Bugzilla SUSE Bug 1152788 https://bugzilla.suse.com/1152788
Bugzilla SUSE Bug 1153158 https://bugzilla.suse.com/1153158
Bugzilla SUSE Bug 1154372 https://bugzilla.suse.com/1154372
Bugzilla SUSE Bug 1155671 https://bugzilla.suse.com/1155671
Bugzilla SUSE Bug 1155898 https://bugzilla.suse.com/1155898
Bugzilla SUSE Bug 1156187 https://bugzilla.suse.com/1156187
CVE SUSE CVE CVE-2016-10906 page https://www.suse.com/security/cve/CVE-2016-10906/
CVE SUSE CVE CVE-2017-18509 page https://www.suse.com/security/cve/CVE-2017-18509/
CVE SUSE CVE CVE-2017-18595 page https://www.suse.com/security/cve/CVE-2017-18595/
CVE SUSE CVE CVE-2018-12207 page https://www.suse.com/security/cve/CVE-2018-12207/
CVE SUSE CVE CVE-2018-20976 page https://www.suse.com/security/cve/CVE-2018-20976/
CVE SUSE CVE CVE-2019-0154 page https://www.suse.com/security/cve/CVE-2019-0154/
CVE SUSE CVE CVE-2019-0155 page https://www.suse.com/security/cve/CVE-2019-0155/
CVE SUSE CVE CVE-2019-10220 page https://www.suse.com/security/cve/CVE-2019-10220/
CVE SUSE CVE CVE-2019-11135 page https://www.suse.com/security/cve/CVE-2019-11135/
CVE SUSE CVE CVE-2019-13272 page https://www.suse.com/security/cve/CVE-2019-13272/
CVE SUSE CVE CVE-2019-14814 page https://www.suse.com/security/cve/CVE-2019-14814/
CVE SUSE CVE CVE-2019-14815 page https://www.suse.com/security/cve/CVE-2019-14815/
CVE SUSE CVE CVE-2019-14816 page https://www.suse.com/security/cve/CVE-2019-14816/
CVE SUSE CVE CVE-2019-14821 page https://www.suse.com/security/cve/CVE-2019-14821/
CVE SUSE CVE CVE-2019-14835 page https://www.suse.com/security/cve/CVE-2019-14835/
CVE SUSE CVE CVE-2019-15098 page https://www.suse.com/security/cve/CVE-2019-15098/
CVE SUSE CVE CVE-2019-15211 page https://www.suse.com/security/cve/CVE-2019-15211/
CVE SUSE CVE CVE-2019-15212 page https://www.suse.com/security/cve/CVE-2019-15212/
CVE SUSE CVE CVE-2019-15214 page https://www.suse.com/security/cve/CVE-2019-15214/
CVE SUSE CVE CVE-2019-15215 page https://www.suse.com/security/cve/CVE-2019-15215/
CVE SUSE CVE CVE-2019-15216 page https://www.suse.com/security/cve/CVE-2019-15216/
CVE SUSE CVE CVE-2019-15217 page https://www.suse.com/security/cve/CVE-2019-15217/
CVE SUSE CVE CVE-2019-15218 page https://www.suse.com/security/cve/CVE-2019-15218/
CVE SUSE CVE CVE-2019-15219 page https://www.suse.com/security/cve/CVE-2019-15219/
CVE SUSE CVE CVE-2019-15220 page https://www.suse.com/security/cve/CVE-2019-15220/
CVE SUSE CVE CVE-2019-15221 page https://www.suse.com/security/cve/CVE-2019-15221/
CVE SUSE CVE CVE-2019-15290 page https://www.suse.com/security/cve/CVE-2019-15290/
CVE SUSE CVE CVE-2019-15291 page https://www.suse.com/security/cve/CVE-2019-15291/
CVE SUSE CVE CVE-2019-15505 page https://www.suse.com/security/cve/CVE-2019-15505/
CVE SUSE CVE CVE-2019-15666 page https://www.suse.com/security/cve/CVE-2019-15666/
CVE SUSE CVE CVE-2019-15807 page https://www.suse.com/security/cve/CVE-2019-15807/
CVE SUSE CVE CVE-2019-15902 page https://www.suse.com/security/cve/CVE-2019-15902/
CVE SUSE CVE CVE-2019-15924 page https://www.suse.com/security/cve/CVE-2019-15924/
CVE SUSE CVE CVE-2019-15926 page https://www.suse.com/security/cve/CVE-2019-15926/
CVE SUSE CVE CVE-2019-15927 page https://www.suse.com/security/cve/CVE-2019-15927/
CVE SUSE CVE CVE-2019-16231 page https://www.suse.com/security/cve/CVE-2019-16231/
CVE SUSE CVE CVE-2019-16232 page https://www.suse.com/security/cve/CVE-2019-16232/
CVE SUSE CVE CVE-2019-16233 page https://www.suse.com/security/cve/CVE-2019-16233/
CVE SUSE CVE CVE-2019-16234 page https://www.suse.com/security/cve/CVE-2019-16234/
CVE SUSE CVE CVE-2019-16413 page https://www.suse.com/security/cve/CVE-2019-16413/
CVE SUSE CVE CVE-2019-16995 page https://www.suse.com/security/cve/CVE-2019-16995/
CVE SUSE CVE CVE-2019-17055 page https://www.suse.com/security/cve/CVE-2019-17055/
CVE SUSE CVE CVE-2019-17056 page https://www.suse.com/security/cve/CVE-2019-17056/
CVE SUSE CVE CVE-2019-17133 page https://www.suse.com/security/cve/CVE-2019-17133/
CVE SUSE CVE CVE-2019-17666 page https://www.suse.com/security/cve/CVE-2019-17666/
CVE SUSE CVE CVE-2019-18680 page https://www.suse.com/security/cve/CVE-2019-18680/
CVE SUSE CVE CVE-2019-18805 page https://www.suse.com/security/cve/CVE-2019-18805/
CVE SUSE CVE CVE-2019-9456 page https://www.suse.com/security/cve/CVE-2019-9456/
CVE SUSE CVE CVE-2019-9506 page https://www.suse.com/security/cve/CVE-2019-9506/
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/suse/kgraft-patch-4_4_121-92_125-default?arch=x86_64&distro=sles-12&sp=2 suse kgraft-patch-4_4_121-92_125-default < 1-3.5.1 sles-12 x86_64
Affected pkg:rpm/suse/kgraft-patch-4_4_121-92_125-default?arch=ppc64le&distro=sles-12&sp=2 suse kgraft-patch-4_4_121-92_125-default < 1-3.5.1 sles-12 ppc64le
Affected pkg:rpm/suse/kernel-syms?arch=x86_64&distro=sles-12&sp=2 suse kernel-syms < 4.4.121-92.125.1 sles-12 x86_64
Affected pkg:rpm/suse/kernel-syms?arch=s390x&distro=sles-12&sp=2 suse kernel-syms < 4.4.121-92.125.1 sles-12 s390x
Affected pkg:rpm/suse/kernel-syms?arch=ppc64le&distro=sles-12&sp=2 suse kernel-syms < 4.4.121-92.125.1 sles-12 ppc64le
Affected pkg:rpm/suse/kernel-source?arch=noarch&distro=sles-12&sp=2 suse kernel-source < 4.4.121-92.125.1 sles-12 noarch
Affected pkg:rpm/suse/kernel-macros?arch=noarch&distro=sles-12&sp=2 suse kernel-macros < 4.4.121-92.125.1 sles-12 noarch
Affected pkg:rpm/suse/kernel-devel?arch=noarch&distro=sles-12&sp=2 suse kernel-devel < 4.4.121-92.125.1 sles-12 noarch
Affected pkg:rpm/suse/kernel-default?arch=x86_64&distro=sles-12&sp=2 suse kernel-default < 4.4.121-92.125.1 sles-12 x86_64
Affected pkg:rpm/suse/kernel-default?arch=s390x&distro=sles-12&sp=2 suse kernel-default < 4.4.121-92.125.1 sles-12 s390x
Affected pkg:rpm/suse/kernel-default?arch=ppc64le&distro=sles-12&sp=2 suse kernel-default < 4.4.121-92.125.1 sles-12 ppc64le
Affected pkg:rpm/suse/kernel-default-man?arch=s390x&distro=sles-12&sp=2 suse kernel-default-man < 4.4.121-92.125.1 sles-12 s390x
Affected pkg:rpm/suse/kernel-default-devel?arch=x86_64&distro=sles-12&sp=2 suse kernel-default-devel < 4.4.121-92.125.1 sles-12 x86_64
Affected pkg:rpm/suse/kernel-default-devel?arch=s390x&distro=sles-12&sp=2 suse kernel-default-devel < 4.4.121-92.125.1 sles-12 s390x
Affected pkg:rpm/suse/kernel-default-devel?arch=ppc64le&distro=sles-12&sp=2 suse kernel-default-devel < 4.4.121-92.125.1 sles-12 ppc64le
Affected pkg:rpm/suse/kernel-default-base?arch=x86_64&distro=sles-12&sp=2 suse kernel-default-base < 4.4.121-92.125.1 sles-12 x86_64
Affected pkg:rpm/suse/kernel-default-base?arch=s390x&distro=sles-12&sp=2 suse kernel-default-base < 4.4.121-92.125.1 sles-12 s390x
Affected pkg:rpm/suse/kernel-default-base?arch=ppc64le&distro=sles-12&sp=2 suse kernel-default-base < 4.4.121-92.125.1 sles-12 ppc64le
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date