Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2018:2960-1

Опубликовано: 01 окт. 2018
Источник: suse-cvrf

Описание

Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP1)

This update for the Linux Kernel 3.12.74-60_64_63 fixes several issues.

The following security issues were fixed:

  • CVE-2018-5390: Prevent very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming TCP packet which can lead to a denial of service (bsc#1102682).
  • CVE-2018-10902: It was found that the raw midi kernel driver did not protect against concurrent access which lead to a double realloc (double free) in snd_rawmidi_input_params() and snd_rawmidi_output_status(), allowing a malicious local attacker to use this for privilege escalation (bsc#1105323).

Список пакетов

SUSE Linux Enterprise Server 12 SP1-LTSS
kgraft-patch-3_12_74-60_64_96-default-4-2.1
kgraft-patch-3_12_74-60_64_96-xen-4-2.1
kgraft-patch-3_12_74-60_64_93-default-4-2.1
kgraft-patch-3_12_74-60_64_93-xen-4-2.1
kgraft-patch-3_12_74-60_64_88-default-5-2.1
kgraft-patch-3_12_74-60_64_88-xen-5-2.1
kgraft-patch-3_12_74-60_64_82-default-7-2.1
kgraft-patch-3_12_74-60_64_82-xen-7-2.1
kgraft-patch-3_12_74-60_64_85-default-7-2.1
kgraft-patch-3_12_74-60_64_85-xen-7-2.1
kgraft-patch-3_12_74-60_64_69-default-7-2.1
kgraft-patch-3_12_74-60_64_69-xen-7-2.1
kgraft-patch-3_12_74-60_64_99-default-3-2.1
kgraft-patch-3_12_74-60_64_99-xen-3-2.1
kgraft-patch-3_12_74-60_64_60-default-11-2.1
kgraft-patch-3_12_74-60_64_60-xen-11-2.1
kgraft-patch-3_12_74-60_64_66-default-8-2.1
kgraft-patch-3_12_74-60_64_66-xen-8-2.1
kgraft-patch-3_12_74-60_64_63-default-9-2.1
kgraft-patch-3_12_74-60_64_63-xen-9-2.1
SUSE Linux Enterprise Server for SAP Applications 12 SP1
kgraft-patch-3_12_74-60_64_96-default-4-2.1
kgraft-patch-3_12_74-60_64_96-xen-4-2.1
kgraft-patch-3_12_74-60_64_93-default-4-2.1
kgraft-patch-3_12_74-60_64_93-xen-4-2.1
kgraft-patch-3_12_74-60_64_88-default-5-2.1
kgraft-patch-3_12_74-60_64_88-xen-5-2.1
kgraft-patch-3_12_74-60_64_82-default-7-2.1
kgraft-patch-3_12_74-60_64_82-xen-7-2.1
kgraft-patch-3_12_74-60_64_85-default-7-2.1
kgraft-patch-3_12_74-60_64_85-xen-7-2.1
kgraft-patch-3_12_74-60_64_69-default-7-2.1
kgraft-patch-3_12_74-60_64_69-xen-7-2.1
kgraft-patch-3_12_74-60_64_99-default-3-2.1
kgraft-patch-3_12_74-60_64_99-xen-3-2.1
kgraft-patch-3_12_74-60_64_60-default-11-2.1
kgraft-patch-3_12_74-60_64_60-xen-11-2.1
kgraft-patch-3_12_74-60_64_66-default-8-2.1
kgraft-patch-3_12_74-60_64_66-xen-8-2.1
kgraft-patch-3_12_74-60_64_63-default-9-2.1
kgraft-patch-3_12_74-60_64_63-xen-9-2.1

Ссылки

Описание

It was found that the raw midi kernel driver does not protect against concurrent access which leads to a double realloc (double free) in snd_rawmidi_input_params() and snd_rawmidi_output_status() which are part of snd_rawmidi_ioctl() handler in rawmidi.c file. A malicious local attacker could possibly use this for privilege escalation.

Затронутые продукты
SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_60-default-11-2.1
SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_60-xen-11-2.1
SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_63-default-9-2.1
SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_63-xen-9-2.1
Ссылки

Описание

Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.

Затронутые продукты
SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_60-default-11-2.1
SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_60-xen-11-2.1
SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_63-default-9-2.1
SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_63-xen-9-2.1
Ссылки
Уязвимость SUSE-SU-2018:2960-1