SUSE-SU-2017:2042-1

Опубликовано: 04 авг. 2017

Источник: suse-cvrf

Описание

Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP1 kernel was updated to 3.12.74 to receive the following security fix:

CVE-2017-7533: Bug in inotify code allowed privilege escalation (bnc#1049483).

Список пакетов

SUSE Linux Enterprise Module for Public Cloud 12

kernel-ec2-3.12.74-60.64.51.1

kernel-ec2-devel-3.12.74-60.64.51.1

kernel-ec2-extra-3.12.74-60.64.51.1

SUSE Linux Enterprise Server 12 SP1-LTSS

kernel-default-3.12.74-60.64.51.1

kernel-default-base-3.12.74-60.64.51.1

kernel-default-devel-3.12.74-60.64.51.1

kernel-default-man-3.12.74-60.64.51.1

kernel-devel-3.12.74-60.64.51.1

kernel-macros-3.12.74-60.64.51.1

kernel-source-3.12.74-60.64.51.1

kernel-syms-3.12.74-60.64.51.1

kernel-xen-3.12.74-60.64.51.1

kernel-xen-base-3.12.74-60.64.51.1

kernel-xen-devel-3.12.74-60.64.51.1

kgraft-patch-3_12_74-60_64_51-default-1-2.1

kgraft-patch-3_12_74-60_64_51-xen-1-2.1

SUSE Linux Enterprise Server for SAP Applications 12 SP1

kernel-default-3.12.74-60.64.51.1

kernel-default-base-3.12.74-60.64.51.1

kernel-default-devel-3.12.74-60.64.51.1

kernel-devel-3.12.74-60.64.51.1

kernel-macros-3.12.74-60.64.51.1

kernel-source-3.12.74-60.64.51.1

kernel-syms-3.12.74-60.64.51.1

kernel-xen-3.12.74-60.64.51.1

kernel-xen-base-3.12.74-60.64.51.1

kernel-xen-devel-3.12.74-60.64.51.1

kgraft-patch-3_12_74-60_64_51-default-1-2.1

kgraft-patch-3_12_74-60_64_51-xen-1-2.1

SUSE OpenStack Cloud 6

kernel-default-3.12.74-60.64.51.1

kernel-default-base-3.12.74-60.64.51.1

kernel-default-devel-3.12.74-60.64.51.1

kernel-devel-3.12.74-60.64.51.1

kernel-macros-3.12.74-60.64.51.1

kernel-source-3.12.74-60.64.51.1

kernel-syms-3.12.74-60.64.51.1

kernel-xen-3.12.74-60.64.51.1

kernel-xen-base-3.12.74-60.64.51.1

kernel-xen-devel-3.12.74-60.64.51.1

kgraft-patch-3_12_74-60_64_51-default-1-2.1

kgraft-patch-3_12_74-60_64_51-xen-1-2.1

Ссылки

https://www.suse.com/support/update/announcement/2017/suse-su-20172042-1/
Link for SUSE-SU-2017:2042-1
https://lists.suse.com/pipermail/sle-security-updates/2017-August/003085.html
E-Mail link for SUSE-SU-2017:2042-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1049483
SUSE Bug 1049483
https://www.suse.com/security/cve/CVE-2017-7533/
SUSE CVE CVE-2017-7533 page

Описание

Race condition in the fsnotify implementation in the Linux kernel through 4.12.4 allows local users to gain privileges or cause a denial of service (memory corruption) via a crafted application that leverages simultaneous execution of the inotify_handle_event and vfs_rename functions.

Затронутые продукты

SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.51.1

SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.51.1

SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.51.1

SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.51.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-7533.html
CVE-2017-7533
https://bugzilla.suse.com/1049483
SUSE Bug 1049483
https://bugzilla.suse.com/1050677
SUSE Bug 1050677
https://bugzilla.suse.com/1050751
SUSE Bug 1050751
https://bugzilla.suse.com/1053919
SUSE Bug 1053919

SUSE-SU-2017:2042-1

Описание

Список пакетов

SUSE Linux Enterprise Module for Public Cloud 12

SUSE Linux Enterprise Server 12 SP1-LTSS

SUSE Linux Enterprise Server for SAP Applications 12 SP1

SUSE OpenStack Cloud 6

Ссылки

Уязвимость: CVE-2017-7533

Описание

Затронутые продукты

Ссылки