Описание
Live patch for the Linux Kernel
This update contains a kernel live patch for the 3.12.43-52.6 SUSE Linux Enterprise Server 12 Kernel, fixing following security issues.
-
CVE-2015-5364/CVE-2015-5366: Two denial of service attacks via a flood of UDP packets with invalid checksums were fixed that could be used by remote attackers to delay execution. (bsc#939276)
-
CVE-2015-1805: The (1) pipe_read and (2) pipe_write implementations in fs/pipe.c in the Linux kernel did not properly consider the side effects of failed __copy_to_user_inatomic and __copy_from_user_inatomic calls, which allowed local users to cause a denial of service (system crash) or possibly gain privileges via a crafted application, aka an 'I/O vector array overrun.' (bsc#939270)
-
CVE-2015-4700: A BPF Jit optimization flaw could allow local users to panic the kernel. (bsc#939273)
Список пакетов
SUSE Linux Enterprise Live Patching 12
Ссылки
- Link for SUSE-SU-2015:1490-1
- E-Mail link for SUSE-SU-2015:1490-1
- SUSE Security Ratings
- SUSE Bug 939044
- SUSE Bug 939270
- SUSE Bug 939273
- SUSE Bug 939276
- SUSE CVE CVE-2015-1805 page
- SUSE CVE CVE-2015-4700 page
- SUSE CVE CVE-2015-5364 page
- SUSE CVE CVE-2015-5366 page
Описание
The (1) pipe_read and (2) pipe_write implementations in fs/pipe.c in the Linux kernel before 3.16 do not properly consider the side effects of failed __copy_to_user_inatomic and __copy_from_user_inatomic calls, which allows local users to cause a denial of service (system crash) or possibly gain privileges via a crafted application, aka an "I/O vector array overrun."
Затронутые продукты
Ссылки
- CVE-2015-1805
- SUSE Bug 917839
- SUSE Bug 933429
- SUSE Bug 939270
- SUSE Bug 964730
- SUSE Bug 964732
Описание
The bpf_int_jit_compile function in arch/x86/net/bpf_jit_comp.c in the Linux kernel before 4.0.6 allows local users to cause a denial of service (system crash) by creating a packet filter and then loading crafted BPF instructions that trigger late convergence by the JIT compiler.
Затронутые продукты
Ссылки
- CVE-2015-4700
- SUSE Bug 935705
- SUSE Bug 939273
Описание
The (1) udp_recvmsg and (2) udpv6_recvmsg functions in the Linux kernel before 4.0.6 do not properly consider yielding a processor, which allows remote attackers to cause a denial of service (system hang) via incorrect checksums within a UDP packet flood.
Затронутые продукты
Ссылки
- CVE-2015-5364
- SUSE Bug 1115893
- SUSE Bug 781018
- SUSE Bug 936831
- SUSE Bug 939276
- SUSE Bug 945112
Описание
The (1) udp_recvmsg and (2) udpv6_recvmsg functions in the Linux kernel before 4.0.6 provide inappropriate -EAGAIN return values, which allows remote attackers to cause a denial of service (EPOLLET epoll application read outage) via an incorrect checksum in a UDP packet, a different vulnerability than CVE-2015-5364.
Затронутые продукты
Ссылки
- CVE-2015-5366
- SUSE Bug 781018
- SUSE Bug 936831
- SUSE Bug 939276
- SUSE Bug 945112