Описание
Security update for the Linux Kernel
The SUSE Linux Enterprise 12 SP1 kernel was updated to fix the following two issues:
- CVE-2017-5970: Remote attackers could have potentially caused a denial of service by sending bad IP options on a socket (bsc#1024938)
- Fix a regression in MD RAID1 which could have caused wrong data to be read (bsc#1020048)
Список пакетов
SUSE Linux Enterprise Desktop 12 SP1
kernel-default-3.12.69-60.64.32.1
kernel-default-devel-3.12.69-60.64.32.1
kernel-default-extra-3.12.69-60.64.32.1
kernel-devel-3.12.69-60.64.32.1
kernel-macros-3.12.69-60.64.32.1
kernel-source-3.12.69-60.64.32.1
kernel-syms-3.12.69-60.64.32.1
kernel-xen-3.12.69-60.64.32.1
kernel-xen-devel-3.12.69-60.64.32.1
SUSE Linux Enterprise Live Patching 12
kgraft-patch-3_12_69-60_64_32-default-1-2.1
kgraft-patch-3_12_69-60_64_32-xen-1-2.1
SUSE Linux Enterprise Module for Public Cloud 12
kernel-ec2-3.12.69-60.64.32.1
kernel-ec2-devel-3.12.69-60.64.32.1
kernel-ec2-extra-3.12.69-60.64.32.1
SUSE Linux Enterprise Server 12 SP1
kernel-default-3.12.69-60.64.32.1
kernel-default-base-3.12.69-60.64.32.1
kernel-default-devel-3.12.69-60.64.32.1
kernel-default-man-3.12.69-60.64.32.1
kernel-devel-3.12.69-60.64.32.1
kernel-macros-3.12.69-60.64.32.1
kernel-source-3.12.69-60.64.32.1
kernel-syms-3.12.69-60.64.32.1
kernel-xen-3.12.69-60.64.32.1
kernel-xen-base-3.12.69-60.64.32.1
kernel-xen-devel-3.12.69-60.64.32.1
SUSE Linux Enterprise Server for SAP Applications 12 SP1
kernel-default-3.12.69-60.64.32.1
kernel-default-base-3.12.69-60.64.32.1
kernel-default-devel-3.12.69-60.64.32.1
kernel-default-man-3.12.69-60.64.32.1
kernel-devel-3.12.69-60.64.32.1
kernel-macros-3.12.69-60.64.32.1
kernel-source-3.12.69-60.64.32.1
kernel-syms-3.12.69-60.64.32.1
kernel-xen-3.12.69-60.64.32.1
kernel-xen-base-3.12.69-60.64.32.1
kernel-xen-devel-3.12.69-60.64.32.1
SUSE Linux Enterprise Software Development Kit 12 SP1
kernel-docs-3.12.69-60.64.32.3
kernel-obs-build-3.12.69-60.64.32.1
SUSE Linux Enterprise Workstation Extension 12 SP1
kernel-default-extra-3.12.69-60.64.32.1
Ссылки
- Link for SUSE-SU-2017:0517-1
- E-Mail link for SUSE-SU-2017:0517-1
- SUSE Security Ratings
- SUSE Bug 1020048
- SUSE Bug 1024938
- SUSE CVE CVE-2017-5970 page
Описание
The ipv4_pktinfo_prepare function in net/ipv4/ip_sockglue.c in the Linux kernel through 4.9.9 allows attackers to cause a denial of service (system crash) via (1) an application that makes crafted system calls or possibly (2) IPv4 traffic with invalid IP options.
Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP1:kernel-default-3.12.69-60.64.32.1
SUSE Linux Enterprise Desktop 12 SP1:kernel-default-devel-3.12.69-60.64.32.1
SUSE Linux Enterprise Desktop 12 SP1:kernel-default-extra-3.12.69-60.64.32.1
SUSE Linux Enterprise Desktop 12 SP1:kernel-devel-3.12.69-60.64.32.1
Ссылки
- CVE-2017-5970
- SUSE Bug 1024938
- SUSE Bug 1025013
- SUSE Bug 1115893