Описание
Security update for crash
This update for crash fixes the following issues:
- Exclude openSUSE from RT KMP build (bsc#1013843)
This update also rebuilds the crash kernel module packages with retpoline support to mitigate Spectre Variant 2. (bsc#1068032 CVE-2017-5715)
Список пакетов
SUSE Linux Enterprise Real Time 12 SP2
crash-kmp-rt-7.1.5_k4.4.21_6-15.3.45
SUSE Linux Enterprise Server 12 SP2
crash-7.1.5-15.3.45
crash-kmp-default-7.1.5_k4.4.114_92.67-15.3.45
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
crash-7.1.5-15.3.45
crash-kmp-default-7.1.5_k4.4.114_92.67-15.3.45
SUSE Linux Enterprise Server for SAP Applications 12 SP2
crash-7.1.5-15.3.45
crash-kmp-default-7.1.5_k4.4.114_92.67-15.3.45
SUSE Linux Enterprise Software Development Kit 12 SP2
crash-devel-7.1.5-15.3.45
Ссылки
- Link for SUSE-SU-2018:0757-1
- E-Mail link for SUSE-SU-2018:0757-1
- SUSE Security Ratings
- SUSE Bug 1013843
- SUSE Bug 1068032
- SUSE CVE CVE-2017-5715 page
Описание
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
Затронутые продукты
SUSE Linux Enterprise Real Time 12 SP2:crash-kmp-rt-7.1.5_k4.4.21_6-15.3.45
SUSE Linux Enterprise Server 12 SP2:crash-7.1.5-15.3.45
SUSE Linux Enterprise Server 12 SP2:crash-kmp-default-7.1.5_k4.4.114_92.67-15.3.45
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:crash-7.1.5-15.3.45
Ссылки
- CVE-2017-5715
- SUSE Bug 1068032
- SUSE Bug 1074562
- SUSE Bug 1074578
- SUSE Bug 1074701
- SUSE Bug 1074741
- SUSE Bug 1074919
- SUSE Bug 1075006
- SUSE Bug 1075007
- SUSE Bug 1075262
- SUSE Bug 1075419
- SUSE Bug 1076115
- SUSE Bug 1076372
- SUSE Bug 1076606
- SUSE Bug 1078353
- SUSE Bug 1080039
- SUSE Bug 1087887
- SUSE Bug 1087939
- SUSE Bug 1088147
- SUSE Bug 1089055