Security update for the Linux Kernel (Live Patch 10 for SLE 12 SP3) SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2018:1225-1 Final 1 1 2018-05-11T17:58:56Z current 2018-05-11T17:58:56Z 2018-05-11T17:58:56Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for the Linux Kernel (Live Patch 10 for SLE 12 SP3) This update for the Linux Kernel 4.4.120-94_17 fixes one issue. The following security issue was fixed: - CVE-2018-1000199: A bug in x86 debug register handling of ptrace() could lead to memory corruption, possibly a denial of service or privilege escalation (bsc#1090036). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-SLE-Live-Patching-12-SP3-2018-896 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2018/suse-su-20181225-1/ Link for SUSE-SU-2018:1225-1 https://lists.suse.com/pipermail/sle-security-updates/2018-May/004002.html E-Mail link for SUSE-SU-2018:1225-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1090036 SUSE Bug 1090036 https://www.suse.com/security/cve/CVE-2018-1000199/ SUSE CVE CVE-2018-1000199 page SUSE Linux Enterprise Live Patching 12 SP3 kgraft-patch-4_4_120-94_17-default-2-2.2 kgraft-patch-4_4_120-94_17-default-2-2.2 as a component of SUSE Linux Enterprise Live Patching 12 SP3 The Linux Kernel version 3.18 contains a dangerous feature vulnerability in modify_user_hw_breakpoint() that can result in crash and possibly memory corruption. This attack appear to be exploitable via local code execution and the ability to use ptrace. This vulnerability appears to have been fixed in git commit f67b15037a7a50c57f72e69a6d59941ad90a0f0f. CVE-2018-1000199 SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_120-94_17-default-2-2.2 important 4.9 AV:L/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20181225-1/ https://www.suse.com/security/cve/CVE-2018-1000199.html CVE-2018-1000199 https://bugzilla.suse.com/1089895 SUSE Bug 1089895 https://bugzilla.suse.com/1090036 SUSE Bug 1090036