Описание
Security update for Linux Kernel Live Patch 6 for SLE 12 SP1
This update for the Linux Kernel 3.12.59-60_45 fixes several issues.
The following security bugs were fixed:
- CVE-2016-5195: A local privilege escalation using MAP_PRIVATE was fixed, which is reportedly exploited in the wild (bsc#1004419).
- CVE-2016-8666: The IP stack in the Linux kernel allowed remote attackers to cause a denial of service (stack consumption and panic) or possibly have unspecified other impact by triggering use of the GRO path for packets with tunnel stacking, as demonstrated by interleaved IPv4 headers and GRE headers, a related issue to CVE-2016-7039 (bsc#1001487).
Список пакетов
SUSE Linux Enterprise Live Patching 12
Ссылки
- Link for SUSE-SU-2016:2637-1
- E-Mail link for SUSE-SU-2016:2637-1
- SUSE Security Ratings
- SUSE Bug 1001487
- SUSE Bug 1004419
- SUSE CVE CVE-2016-5195 page
- SUSE CVE CVE-2016-8666 page
Описание
Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write (COW) feature to write to a read-only memory mapping, as exploited in the wild in October 2016, aka "Dirty COW."
Затронутые продукты
Ссылки
- CVE-2016-5195
- SUSE Bug 1004418
- SUSE Bug 1004419
- SUSE Bug 1004436
- SUSE Bug 1006323
- SUSE Bug 1006695
- SUSE Bug 1007291
- SUSE Bug 1008110
- SUSE Bug 1030118
- SUSE Bug 1046453
- SUSE Bug 1069496
- SUSE Bug 1149725
- SUSE Bug 870618
- SUSE Bug 986445
- SUSE Bug 998689
Описание
The IP stack in the Linux kernel before 4.6 allows remote attackers to cause a denial of service (stack consumption and panic) or possibly have unspecified other impact by triggering use of the GRO path for packets with tunnel stacking, as demonstrated by interleaved IPv4 headers and GRE headers, a related issue to CVE-2016-7039.
Затронутые продукты
Ссылки
- CVE-2016-8666
- SUSE Bug 1001486
- SUSE Bug 1001487
- SUSE Bug 1003964