Security update for the Linux Kernel SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2015:1478-1 Final 1 1 2015-08-20T15:22:44Z current 2015-08-20T15:22:44Z 2015-08-20T15:22:44Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for the Linux Kernel The SUSE Linux Enterprise Server 11 SP2 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2015-5707: An integer overflow in the SCSI generic driver could be potentially used by local attackers to crash the kernel or execute code. - CVE-2015-2830: arch/x86/kernel/entry_64.S in the Linux kernel did not prevent the TS_COMPAT flag from reaching a user-mode task, which might have allowed local users to bypass the seccomp or audit protection mechanism via a crafted application that uses the (1) fork or (2) close system call, as demonstrated by an attack against seccomp before 3.16 (bnc#926240). - CVE-2015-0777: drivers/xen/usbback/usbback.c in the Linux kernel allowed guest OS users to obtain sensitive information from uninitialized locations in host OS kernel memory via unspecified vectors (bnc#917830). - CVE-2015-2150: Xen and the Linux kernel did not properly restrict access to PCI command registers, which might have allowed local guest users to cause a denial of service (non-maskable interrupt and host crash) by disabling the (1) memory or (2) I/O decoding for a PCI Express device and then accessing the device, which triggers an Unsupported Request (UR) response (bnc#919463). - CVE-2015-5364: A remote denial of service (hang) via UDP flood with incorrect package checksums was fixed. (bsc#936831). - CVE-2015-5366: A remote denial of service (unexpected error returns) via UDP flood with incorrect package checksums was fixed. (bsc#936831). - CVE-2015-1420: CVE-2015-1420: Race condition in the handle_to_path function in fs/fhandle.c in the Linux kernel allowed local users to bypass intended size restrictions and trigger read operations on additional memory locations by changing the handle_bytes value of a file handle during the execution of this function (bnc#915517). - CVE-2015-4700: A local user could have created a bad instruction in the JIT processed BPF code, leading to a kernel crash (bnc#935705). - CVE-2015-1805: The (1) pipe_read and (2) pipe_write implementations in fs/pipe.c in the Linux kernel did not properly consider the side effects of failed __copy_to_user_inatomic and __copy_from_user_inatomic calls, which allowed local users to cause a denial of service (system crash) or possibly gain privileges via a crafted application, aka an 'I/O vector array overrun' (bnc#933429). - CVE-2015-3331: The __driver_rfc4106_decrypt function in arch/x86/crypto/aesni-intel_glue.c in the Linux kernel did not properly determine the memory locations used for encrypted data, which allowed context-dependent attackers to cause a denial of service (buffer overflow and system crash) or possibly execute arbitrary code by triggering a crypto API call, as demonstrated by use of a libkcapi test program with an AF_ALG(aead) socket (bnc#927257). - CVE-2015-2922: The ndisc_router_discovery function in net/ipv6/ndisc.c in the Neighbor Discovery (ND) protocol implementation in the IPv6 stack in the Linux kernel allowed remote attackers to reconfigure a hop-limit setting via a small hop_limit value in a Router Advertisement (RA) message (bnc#922583). - CVE-2015-2041: net/llc/sysctl_net_llc.c in the Linux kernel used an incorrect data type in a sysctl table, which allowed local users to obtain potentially sensitive information from kernel memory or possibly have unspecified other impact by accessing a sysctl entry (bnc#919007). - CVE-2015-3636: The ping_unhash function in net/ipv4/ping.c in the Linux kernel did not initialize a certain list data structure during an unhash operation, which allowed local users to gain privileges or cause a denial of service (use-after-free and system crash) by leveraging the ability to make a SOCK_DGRAM socket system call for the IPPROTO_ICMP or IPPROTO_ICMPV6 protocol, and then making a connect system call after a disconnect (bnc#929525). - CVE-2014-8086: Race condition in the ext4_file_write_iter function in fs/ext4/file.c in the Linux kernel allowed local users to cause a denial of service (file unavailability) via a combination of a write action and an F_SETFL fcntl operation for the O_DIRECT flag (bnc#900881). - CVE-2014-8159: The InfiniBand (IB) implementation in the Linux kernel did not properly restrict use of User Verbs for registration of memory regions, which allowed local users to access arbitrary physical memory locations, and consequently cause a denial of service (system crash) or gain privileges, by leveraging permissions on a uverbs device under /dev/infiniband/ (bnc#914742). - CVE-2014-9683: Off-by-one error in the ecryptfs_decode_from_filename function in fs/ecryptfs/crypto.c in the eCryptfs subsystem in the Linux kernel allowed local users to cause a denial of service (buffer overflow and system crash) or possibly gain privileges via a crafted filename (bnc#918333). - CVE-2015-2042: net/rds/sysctl.c in the Linux kernel used an incorrect data type in a sysctl table, which allowed local users to obtain potentially sensitive information from kernel memory or possibly have unspecified other impact by accessing a sysctl entry (bnc#919018). - CVE-2015-1421: Use-after-free vulnerability in the sctp_assoc_update function in net/sctp/associola.c in the Linux kernel allowed remote attackers to cause a denial of service (slab corruption and panic) or possibly have unspecified other impact by triggering an INIT collision that leads to improper handling of shared-key data (bnc#915577). The following non-security bugs were fixed: - HID: add ALWAYS_POLL quirk for a Logitech 0xc007 (bnc#931474). - HID: add HP OEM mouse to quirk ALWAYS_POLL (bnc#931474). - HID: add quirk for PIXART OEM mouse used by HP (bnc#931474). - HID: usbhid: add always-poll quirk (bnc#931474). - HID: usbhid: add another mouse that needs QUIRK_ALWAYS_POLL (bnc#931474). - HID: usbhid: enable always-poll quirk for Elan Touchscreen 009b (bnc#931474). - HID: usbhid: enable always-poll quirk for Elan Touchscreen 0103 (bnc#931474). - HID: usbhid: enable always-poll quirk for Elan Touchscreen 016f (bnc#931474). - HID: usbhid: enable always-poll quirk for Elan Touchscreen. - HID: usbhid: fix PIXART optical mouse (bnc#931474). - HID: usbhid: more mice with ALWAYS_POLL (bnc#931474). - HID: usbhid: yet another mouse with ALWAYS_POLL (bnc#931474). - bnx2x: Fix kdump when iommu=on (bug#921769). - cifs: fix use-after-free bug in find_writable_file (bnc#909477). - coredump: ensure the fpu state is flushed for proper multi-threaded core dump (bsc#904671, bsc#929360). - dm: fixed that LVM merge snapshot of root logical volume were not working (bsc#928801) - deal with deadlock in d_walk fix (bnc#929148, bnc#929283). - e1000: do not enable dma receives until after dma address has been setup (bsc#821931). - fsnotify: Fix handling of renames in audit (bnc#915200). - inet: add a redirect generation id in inetpeer (bnc#860593). - inetpeer: initialize ->redirect_genid in inet_getpeer() (bnc#860593). - kabi: hide bnc#860593 changes of struct inetpeer_addr_base (bnc#860593). - kernel: fix data corruption when reading /proc/sysinfo (bsc#891087, bsc#937986, LTC#114480). - libata: prevent HSM state change race between ISR and PIO (bsc#923245). - time, ntp: Do not update time_state in middle of leap second (bsc#912916). - s390-3215-tty-close-crash.patch: kernel: 3215 tty close crash (bsc#916010, LTC#120873). - s390-3215-tty-close-race.patch: kernel: 3215 console crash (bsc#916010, LTC#94302). - s390-3215-tty-hang.patch: Renamed from patches.arch/s390-tty-hang.patch. - s390-3215-tty-hang.patch: Update references (bnc#898693, bnc#897995, LTC#114562). - s390-dasd-retry-partition-detection.patch: s390/dasd: retry partition detection (bsc#916010, LTC#94302). - s390-dasd-retry-partition-detection.patch: Update references (bsc#916010, LTC#120565). - s390-sclp-tty-refcount.patch: kernel: sclp console tty reference counting (bsc#916010, LTC#115466). - scsi: vmw_pvscsi: Fix pvscsi_abort() function (bnc#940398 bsc#930934). - scsi/sg: sg_start_req(): make sure that there is not too many elements in iovec (bsc#940338). - x86, xsave: remove thread_has_fpu() bug check in __sanitize_i387_state() (bsc#904671, bsc#929360). - x86-mm-send-tlb-flush-ipis-to-online-cpus-only.patch: x86, mm: Send tlb flush IPIs to online cpus only (bnc#798406). - x86/mm: Improve AMD Bulldozer ASLR workaround (bsc#937032). - x86/reboot: Fix a warning message triggered by stop_other_cpus() (bnc#930284). - xen: Correctly re-enable interrupts in xen_spin_wait() (bsc#879878, bsc#908870). - xfs: prevent deadlock trying to cover an active log (bsc#917093). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). slessp2-kernel-20150819-12065 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2015/suse-su-20151478-1/ Link for SUSE-SU-2015:1478-1 https://lists.suse.com/pipermail/sle-security-updates/2015-September/001563.html E-Mail link for SUSE-SU-2015:1478-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/798406 SUSE Bug 798406 https://bugzilla.suse.com/821931 SUSE Bug 821931 https://bugzilla.suse.com/860593 SUSE Bug 860593 https://bugzilla.suse.com/879878 SUSE Bug 879878 https://bugzilla.suse.com/891087 SUSE Bug 891087 https://bugzilla.suse.com/897995 SUSE Bug 897995 https://bugzilla.suse.com/898693 SUSE Bug 898693 https://bugzilla.suse.com/900881 SUSE Bug 900881 https://bugzilla.suse.com/904671 SUSE Bug 904671 https://bugzilla.suse.com/908870 SUSE Bug 908870 https://bugzilla.suse.com/909477 SUSE Bug 909477 https://bugzilla.suse.com/912916 SUSE Bug 912916 https://bugzilla.suse.com/914742 SUSE Bug 914742 https://bugzilla.suse.com/915200 SUSE Bug 915200 https://bugzilla.suse.com/915517 SUSE Bug 915517 https://bugzilla.suse.com/915577 SUSE Bug 915577 https://bugzilla.suse.com/916010 SUSE Bug 916010 https://bugzilla.suse.com/917093 SUSE Bug 917093 https://bugzilla.suse.com/917830 SUSE Bug 917830 https://bugzilla.suse.com/918333 SUSE Bug 918333 https://bugzilla.suse.com/919007 SUSE Bug 919007 https://bugzilla.suse.com/919018 SUSE Bug 919018 https://bugzilla.suse.com/919463 SUSE Bug 919463 https://bugzilla.suse.com/921769 SUSE Bug 921769 https://bugzilla.suse.com/922583 SUSE Bug 922583 https://bugzilla.suse.com/923245 SUSE Bug 923245 https://bugzilla.suse.com/926240 SUSE Bug 926240 https://bugzilla.suse.com/927257 SUSE Bug 927257 https://bugzilla.suse.com/928801 SUSE Bug 928801 https://bugzilla.suse.com/929148 SUSE Bug 929148 https://bugzilla.suse.com/929283 SUSE Bug 929283 https://bugzilla.suse.com/929360 SUSE Bug 929360 https://bugzilla.suse.com/929525 SUSE Bug 929525 https://bugzilla.suse.com/930284 SUSE Bug 930284 https://bugzilla.suse.com/930934 SUSE Bug 930934 https://bugzilla.suse.com/931474 SUSE Bug 931474 https://bugzilla.suse.com/933429 SUSE Bug 933429 https://bugzilla.suse.com/935705 SUSE Bug 935705 https://bugzilla.suse.com/936831 SUSE Bug 936831 https://bugzilla.suse.com/937032 SUSE Bug 937032 https://bugzilla.suse.com/937986 SUSE Bug 937986 https://bugzilla.suse.com/940338 SUSE Bug 940338 https://bugzilla.suse.com/940398 SUSE Bug 940398 https://www.suse.com/security/cve/CVE-2014-8086/ SUSE CVE CVE-2014-8086 page https://www.suse.com/security/cve/CVE-2014-8159/ SUSE CVE CVE-2014-8159 page https://www.suse.com/security/cve/CVE-2014-9683/ SUSE CVE CVE-2014-9683 page https://www.suse.com/security/cve/CVE-2015-0777/ SUSE CVE CVE-2015-0777 page https://www.suse.com/security/cve/CVE-2015-1420/ SUSE CVE CVE-2015-1420 page https://www.suse.com/security/cve/CVE-2015-1421/ SUSE CVE CVE-2015-1421 page https://www.suse.com/security/cve/CVE-2015-1805/ SUSE CVE CVE-2015-1805 page https://www.suse.com/security/cve/CVE-2015-2041/ SUSE CVE CVE-2015-2041 page https://www.suse.com/security/cve/CVE-2015-2042/ SUSE CVE CVE-2015-2042 page https://www.suse.com/security/cve/CVE-2015-2150/ SUSE CVE CVE-2015-2150 page https://www.suse.com/security/cve/CVE-2015-2830/ SUSE CVE CVE-2015-2830 page https://www.suse.com/security/cve/CVE-2015-2922/ SUSE CVE CVE-2015-2922 page https://www.suse.com/security/cve/CVE-2015-3331/ SUSE CVE CVE-2015-3331 page https://www.suse.com/security/cve/CVE-2015-3636/ SUSE CVE CVE-2015-3636 page https://www.suse.com/security/cve/CVE-2015-4700/ SUSE CVE CVE-2015-4700 page https://www.suse.com/security/cve/CVE-2015-5364/ SUSE CVE CVE-2015-5364 page https://www.suse.com/security/cve/CVE-2015-5366/ SUSE CVE CVE-2015-5366 page https://www.suse.com/security/cve/CVE-2015-5707/ SUSE CVE CVE-2015-5707 page SUSE Linux Enterprise Server 11 SP2-LTSS kernel-default-3.0.101-0.7.37.1 kernel-default-base-3.0.101-0.7.37.1 kernel-default-devel-3.0.101-0.7.37.1 kernel-default-man-3.0.101-0.7.37.1 kernel-ec2-3.0.101-0.7.37.1 kernel-ec2-base-3.0.101-0.7.37.1 kernel-ec2-devel-3.0.101-0.7.37.1 kernel-pae-3.0.101-0.7.37.1 kernel-pae-base-3.0.101-0.7.37.1 kernel-pae-devel-3.0.101-0.7.37.1 kernel-source-3.0.101-0.7.37.1 kernel-syms-3.0.101-0.7.37.1 kernel-trace-3.0.101-0.7.37.1 kernel-trace-base-3.0.101-0.7.37.1 kernel-trace-devel-3.0.101-0.7.37.1 kernel-xen-3.0.101-0.7.37.1 kernel-xen-base-3.0.101-0.7.37.1 kernel-xen-devel-3.0.101-0.7.37.1 kernel-default-3.0.101-0.7.37.1 as a component of SUSE Linux Enterprise Server 11 SP2-LTSS kernel-default-base-3.0.101-0.7.37.1 as a component of SUSE Linux Enterprise Server 11 SP2-LTSS kernel-default-devel-3.0.101-0.7.37.1 as a component of SUSE Linux Enterprise Server 11 SP2-LTSS kernel-default-man-3.0.101-0.7.37.1 as a component of SUSE Linux Enterprise Server 11 SP2-LTSS kernel-ec2-3.0.101-0.7.37.1 as a component of SUSE Linux Enterprise Server 11 SP2-LTSS kernel-ec2-base-3.0.101-0.7.37.1 as a component of SUSE Linux Enterprise Server 11 SP2-LTSS kernel-ec2-devel-3.0.101-0.7.37.1 as a component of SUSE Linux Enterprise Server 11 SP2-LTSS kernel-pae-3.0.101-0.7.37.1 as a component of SUSE Linux Enterprise Server 11 SP2-LTSS kernel-pae-base-3.0.101-0.7.37.1 as a component of SUSE Linux Enterprise Server 11 SP2-LTSS kernel-pae-devel-3.0.101-0.7.37.1 as a component of SUSE Linux Enterprise Server 11 SP2-LTSS kernel-source-3.0.101-0.7.37.1 as a component of SUSE Linux Enterprise Server 11 SP2-LTSS kernel-syms-3.0.101-0.7.37.1 as a component of SUSE Linux Enterprise Server 11 SP2-LTSS kernel-trace-3.0.101-0.7.37.1 as a component of SUSE Linux Enterprise Server 11 SP2-LTSS kernel-trace-base-3.0.101-0.7.37.1 as a component of SUSE Linux Enterprise Server 11 SP2-LTSS kernel-trace-devel-3.0.101-0.7.37.1 as a component of SUSE Linux Enterprise Server 11 SP2-LTSS kernel-xen-3.0.101-0.7.37.1 as a component of SUSE Linux Enterprise Server 11 SP2-LTSS kernel-xen-base-3.0.101-0.7.37.1 as a component of SUSE Linux Enterprise Server 11 SP2-LTSS kernel-xen-devel-3.0.101-0.7.37.1 as a component of SUSE Linux Enterprise Server 11 SP2-LTSS Race condition in the ext4_file_write_iter function in fs/ext4/file.c in the Linux kernel through 3.17 allows local users to cause a denial of service (file unavailability) via a combination of a write action and an F_SETFL fcntl operation for the O_DIRECT flag. CVE-2014-8086 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-man-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-source-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-syms-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-devel-3.0.101-0.7.37.1 moderate 4.7 AV:L/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20151478-1/ https://www.suse.com/security/cve/CVE-2014-8086.html CVE-2014-8086 https://bugzilla.suse.com/900881 SUSE Bug 900881 The InfiniBand (IB) implementation in the Linux kernel package before 2.6.32-504.12.2 on Red Hat Enterprise Linux (RHEL) 6 does not properly restrict use of User Verbs for registration of memory regions, which allows local users to access arbitrary physical memory locations, and consequently cause a denial of service (system crash) or gain privileges, by leveraging permissions on a uverbs device under /dev/infiniband/. CVE-2014-8159 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-man-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-source-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-syms-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-devel-3.0.101-0.7.37.1 moderate 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20151478-1/ https://www.suse.com/security/cve/CVE-2014-8159.html CVE-2014-8159 https://bugzilla.suse.com/903967 SUSE Bug 903967 https://bugzilla.suse.com/914742 SUSE Bug 914742 https://bugzilla.suse.com/939241 SUSE Bug 939241 Off-by-one error in the ecryptfs_decode_from_filename function in fs/ecryptfs/crypto.c in the eCryptfs subsystem in the Linux kernel before 3.18.2 allows local users to cause a denial of service (buffer overflow and system crash) or possibly gain privileges via a crafted filename. CVE-2014-9683 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-man-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-source-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-syms-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-devel-3.0.101-0.7.37.1 low 3.6 AV:L/AC:L/Au:N/C:N/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20151478-1/ https://www.suse.com/security/cve/CVE-2014-9683.html CVE-2014-9683 https://bugzilla.suse.com/918333 SUSE Bug 918333 drivers/xen/usbback/usbback.c in linux-2.6.18-xen-3.4.0 (aka the Xen 3.4.x support patches for the Linux kernel 2.6.18), as used in the Linux kernel 2.6.x and 3.x in SUSE Linux distributions, allows guest OS users to obtain sensitive information from uninitialized locations in host OS kernel memory via unspecified vectors. CVE-2015-0777 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-man-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-source-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-syms-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-devel-3.0.101-0.7.37.1 low 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20151478-1/ https://www.suse.com/security/cve/CVE-2015-0777.html CVE-2015-0777 https://bugzilla.suse.com/917830 SUSE Bug 917830 Race condition in the handle_to_path function in fs/fhandle.c in the Linux kernel through 3.19.1 allows local users to bypass intended size restrictions and trigger read operations on additional memory locations by changing the handle_bytes value of a file handle during the execution of this function. CVE-2015-1420 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-man-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-source-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-syms-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-devel-3.0.101-0.7.37.1 moderate 1.9 AV:L/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20151478-1/ https://www.suse.com/security/cve/CVE-2015-1420.html CVE-2015-1420 https://bugzilla.suse.com/915517 SUSE Bug 915517 Use-after-free vulnerability in the sctp_assoc_update function in net/sctp/associola.c in the Linux kernel before 3.18.8 allows remote attackers to cause a denial of service (slab corruption and panic) or possibly have unspecified other impact by triggering an INIT collision that leads to improper handling of shared-key data. CVE-2015-1421 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-man-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-source-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-syms-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-devel-3.0.101-0.7.37.1 moderate 10 AV:N/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20151478-1/ https://www.suse.com/security/cve/CVE-2015-1421.html CVE-2015-1421 https://bugzilla.suse.com/1115893 SUSE Bug 1115893 https://bugzilla.suse.com/915577 SUSE Bug 915577 https://bugzilla.suse.com/922004 SUSE Bug 922004 https://bugzilla.suse.com/939261 SUSE Bug 939261 The (1) pipe_read and (2) pipe_write implementations in fs/pipe.c in the Linux kernel before 3.16 do not properly consider the side effects of failed __copy_to_user_inatomic and __copy_from_user_inatomic calls, which allows local users to cause a denial of service (system crash) or possibly gain privileges via a crafted application, aka an "I/O vector array overrun." CVE-2015-1805 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-man-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-source-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-syms-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-devel-3.0.101-0.7.37.1 important 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20151478-1/ https://www.suse.com/security/cve/CVE-2015-1805.html CVE-2015-1805 https://bugzilla.suse.com/917839 SUSE Bug 917839 https://bugzilla.suse.com/933429 SUSE Bug 933429 https://bugzilla.suse.com/939270 SUSE Bug 939270 https://bugzilla.suse.com/964730 SUSE Bug 964730 https://bugzilla.suse.com/964732 SUSE Bug 964732 net/llc/sysctl_net_llc.c in the Linux kernel before 3.19 uses an incorrect data type in a sysctl table, which allows local users to obtain potentially sensitive information from kernel memory or possibly have unspecified other impact by accessing a sysctl entry. CVE-2015-2041 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-man-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-source-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-syms-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-devel-3.0.101-0.7.37.1 moderate 4.6 AV:L/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20151478-1/ https://www.suse.com/security/cve/CVE-2015-2041.html CVE-2015-2041 https://bugzilla.suse.com/903967 SUSE Bug 903967 https://bugzilla.suse.com/919007 SUSE Bug 919007 net/rds/sysctl.c in the Linux kernel before 3.19 uses an incorrect data type in a sysctl table, which allows local users to obtain potentially sensitive information from kernel memory or possibly have unspecified other impact by accessing a sysctl entry. CVE-2015-2042 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-man-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-source-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-syms-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-devel-3.0.101-0.7.37.1 moderate 4.6 AV:L/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20151478-1/ https://www.suse.com/security/cve/CVE-2015-2042.html CVE-2015-2042 https://bugzilla.suse.com/903967 SUSE Bug 903967 https://bugzilla.suse.com/919018 SUSE Bug 919018 Xen 3.3.x through 4.5.x and the Linux kernel through 3.19.1 do not properly restrict access to PCI command registers, which might allow local guest OS users to cause a denial of service (non-maskable interrupt and host crash) by disabling the (1) memory or (2) I/O decoding for a PCI Express device and then accessing the device, which triggers an Unsupported Request (UR) response. CVE-2015-2150 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-man-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-source-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-syms-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-devel-3.0.101-0.7.37.1 moderate 4.9 AV:L/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20151478-1/ https://www.suse.com/security/cve/CVE-2015-2150.html CVE-2015-2150 https://bugzilla.suse.com/800280 SUSE Bug 800280 https://bugzilla.suse.com/903967 SUSE Bug 903967 https://bugzilla.suse.com/919463 SUSE Bug 919463 arch/x86/kernel/entry_64.S in the Linux kernel before 3.19.2 does not prevent the TS_COMPAT flag from reaching a user-mode task, which might allow local users to bypass the seccomp or audit protection mechanism via a crafted application that uses the (1) fork or (2) close system call, as demonstrated by an attack against seccomp before 3.16. CVE-2015-2830 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-man-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-source-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-syms-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-devel-3.0.101-0.7.37.1 moderate 1.9 AV:L/AC:M/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20151478-1/ https://www.suse.com/security/cve/CVE-2015-2830.html CVE-2015-2830 https://bugzilla.suse.com/903967 SUSE Bug 903967 https://bugzilla.suse.com/926240 SUSE Bug 926240 The ndisc_router_discovery function in net/ipv6/ndisc.c in the Neighbor Discovery (ND) protocol implementation in the IPv6 stack in the Linux kernel before 3.19.6 allows remote attackers to reconfigure a hop-limit setting via a small hop_limit value in a Router Advertisement (RA) message. CVE-2015-2922 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-man-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-source-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-syms-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-devel-3.0.101-0.7.37.1 moderate 3.3 AV:A/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20151478-1/ https://www.suse.com/security/cve/CVE-2015-2922.html CVE-2015-2922 https://bugzilla.suse.com/903967 SUSE Bug 903967 https://bugzilla.suse.com/922583 SUSE Bug 922583 https://bugzilla.suse.com/926223 SUSE Bug 926223 The __driver_rfc4106_decrypt function in arch/x86/crypto/aesni-intel_glue.c in the Linux kernel before 3.19.3 does not properly determine the memory locations used for encrypted data, which allows context-dependent attackers to cause a denial of service (buffer overflow and system crash) or possibly execute arbitrary code by triggering a crypto API call, as demonstrated by use of a libkcapi test program with an AF_ALG(aead) socket. CVE-2015-3331 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-man-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-source-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-syms-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-devel-3.0.101-0.7.37.1 critical 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20151478-1/ https://www.suse.com/security/cve/CVE-2015-3331.html CVE-2015-3331 https://bugzilla.suse.com/1115893 SUSE Bug 1115893 https://bugzilla.suse.com/927257 SUSE Bug 927257 https://bugzilla.suse.com/931231 SUSE Bug 931231 https://bugzilla.suse.com/939262 SUSE Bug 939262 The ping_unhash function in net/ipv4/ping.c in the Linux kernel before 4.0.3 does not initialize a certain list data structure during an unhash operation, which allows local users to gain privileges or cause a denial of service (use-after-free and system crash) by leveraging the ability to make a SOCK_DGRAM socket system call for the IPPROTO_ICMP or IPPROTO_ICMPV6 protocol, and then making a connect system call after a disconnect. CVE-2015-3636 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-man-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-source-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-syms-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-devel-3.0.101-0.7.37.1 moderate 4.9 AV:L/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20151478-1/ https://www.suse.com/security/cve/CVE-2015-3636.html CVE-2015-3636 https://bugzilla.suse.com/929525 SUSE Bug 929525 https://bugzilla.suse.com/939277 SUSE Bug 939277 https://bugzilla.suse.com/994624 SUSE Bug 994624 The bpf_int_jit_compile function in arch/x86/net/bpf_jit_comp.c in the Linux kernel before 4.0.6 allows local users to cause a denial of service (system crash) by creating a packet filter and then loading crafted BPF instructions that trigger late convergence by the JIT compiler. CVE-2015-4700 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-man-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-source-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-syms-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-devel-3.0.101-0.7.37.1 moderate 4.9 AV:L/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20151478-1/ https://www.suse.com/security/cve/CVE-2015-4700.html CVE-2015-4700 https://bugzilla.suse.com/935705 SUSE Bug 935705 https://bugzilla.suse.com/939273 SUSE Bug 939273 The (1) udp_recvmsg and (2) udpv6_recvmsg functions in the Linux kernel before 4.0.6 do not properly consider yielding a processor, which allows remote attackers to cause a denial of service (system hang) via incorrect checksums within a UDP packet flood. CVE-2015-5364 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-man-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-source-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-syms-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-devel-3.0.101-0.7.37.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20151478-1/ https://www.suse.com/security/cve/CVE-2015-5364.html CVE-2015-5364 https://bugzilla.suse.com/1115893 SUSE Bug 1115893 https://bugzilla.suse.com/781018 SUSE Bug 781018 https://bugzilla.suse.com/936831 SUSE Bug 936831 https://bugzilla.suse.com/939276 SUSE Bug 939276 https://bugzilla.suse.com/945112 SUSE Bug 945112 The (1) udp_recvmsg and (2) udpv6_recvmsg functions in the Linux kernel before 4.0.6 provide inappropriate -EAGAIN return values, which allows remote attackers to cause a denial of service (EPOLLET epoll application read outage) via an incorrect checksum in a UDP packet, a different vulnerability than CVE-2015-5364. CVE-2015-5366 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-man-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-source-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-syms-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-devel-3.0.101-0.7.37.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20151478-1/ https://www.suse.com/security/cve/CVE-2015-5366.html CVE-2015-5366 https://bugzilla.suse.com/781018 SUSE Bug 781018 https://bugzilla.suse.com/936831 SUSE Bug 936831 https://bugzilla.suse.com/939276 SUSE Bug 939276 https://bugzilla.suse.com/945112 SUSE Bug 945112 Integer overflow in the sg_start_req function in drivers/scsi/sg.c in the Linux kernel 2.6.x through 4.x before 4.1 allows local users to cause a denial of service or possibly have unspecified other impact via a large iov_count value in a write request. CVE-2015-5707 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-default-man-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-ec2-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-pae-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-source-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-syms-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-trace-devel-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-base-3.0.101-0.7.37.1 SUSE Linux Enterprise Server 11 SP2-LTSS:kernel-xen-devel-3.0.101-0.7.37.1 important 4.6 AV:L/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20151478-1/ https://www.suse.com/security/cve/CVE-2015-5707.html CVE-2015-5707 https://bugzilla.suse.com/923755 SUSE Bug 923755 https://bugzilla.suse.com/940338 SUSE Bug 940338 https://bugzilla.suse.com/940342 SUSE Bug 940342 https://bugzilla.suse.com/963994 SUSE Bug 963994