SUSE-SU-2018:2933-1

Опубликовано: 28 сент. 2018

Источник: suse-cvrf

Описание

Security update for the Linux Kernel (Live Patch 3 for SLE 15)

This update for the Linux Kernel 4.12.14-25_11 fixes several issues.

The following security issues were fixed:

CVE-2018-15471: An issue was discovered in xenvif_set_hash_mapping in drivers/net/xen-netback/hash.c. The Linux netback driver allowed frontends to control mapping of requests to request queues. When processing a request to set or change this mapping, some input validation (e.g., for an integer overflow) was missing or flawed, leading to OOB access in hash handling. A malicious or buggy frontend may cause the (usually privileged) backend to make out of bounds memory accesses, potentially resulting in one or more of privilege escalation, Denial of Service (DoS), or information leaks (bsc#1105026).
CVE-2018-10853: A KVM guest userspace to guest kernel write was fixed, which could be used by guest users to crash the guest kernel (bsc#1097108).

Список пакетов

SUSE Linux Enterprise Live Patching 15

kernel-livepatch-4_12_14-25_13-default-2-2.2

Ссылки

https://www.suse.com/support/update/announcement/2018/suse-su-20182933-1/
Link for SUSE-SU-2018:2933-1
https://lists.suse.com/pipermail/sle-security-updates/2018-September/004621.html
E-Mail link for SUSE-SU-2018:2933-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1097108
SUSE Bug 1097108
https://bugzilla.suse.com/1103203
SUSE Bug 1103203
https://bugzilla.suse.com/1105026
SUSE Bug 1105026
https://www.suse.com/security/cve/CVE-2018-10853/
SUSE CVE CVE-2018-10853 page
https://www.suse.com/security/cve/CVE-2018-15471/
SUSE CVE CVE-2018-15471 page

Описание

A flaw was found in the way Linux kernel KVM hypervisor before 4.18 emulated instructions such as sgdt/sidt/fxsave/fxrstor. It did not check current privilege(CPL) level while emulating unprivileged instructions. An unprivileged guest user/process could use this flaw to potentially escalate privileges inside guest.

Затронутые продукты

SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-25_13-default-2-2.2

Ссылки

https://www.suse.com/security/cve/CVE-2018-10853.html
CVE-2018-10853
https://bugzilla.suse.com/1097104
SUSE Bug 1097104
https://bugzilla.suse.com/1097108
SUSE Bug 1097108

Описание

An issue was discovered in xenvif_set_hash_mapping in drivers/net/xen-netback/hash.c in the Linux kernel through 4.18.1, as used in Xen through 4.11.x and other products. The Linux netback driver allows frontends to control mapping of requests to request queues. When processing a request to set or change this mapping, some input validation (e.g., for an integer overflow) was missing or flawed, leading to OOB access in hash handling. A malicious or buggy frontend may cause the (usually privileged) backend to make out of bounds memory accesses, potentially resulting in one or more of privilege escalation, Denial of Service (DoS), or information leaks.

Затронутые продукты

SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-25_13-default-2-2.2

Ссылки

https://www.suse.com/security/cve/CVE-2018-15471.html
CVE-2018-15471
https://bugzilla.suse.com/1103277
SUSE Bug 1103277
https://bugzilla.suse.com/1104641
SUSE Bug 1104641
https://bugzilla.suse.com/1105026
SUSE Bug 1105026

SUSE-SU-2018:2933-1

Описание

Список пакетов

SUSE Linux Enterprise Live Patching 15

Ссылки

Уязвимость: CVE-2018-10853

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2018-15471

Описание

Затронутые продукты

Ссылки