Описание
Security update for the Linux Kernel
The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
- CVE-2018-17182: An issue was discovered in the Linux kernel The vmacache_flush_all function in mm/vmacache.c mishandled sequence number overflows. An attacker can trigger a use-after-free (and possibly gain privileges) via certain thread creation, map, unmap, invalidation, and dereference operations (bnc#1108399).
The following non-security bugs were fixed:
- x86/fpu: Do not do __thread_fpu_end() if use_eager_fpu() (bnc#1109967).
Список пакетов
SUSE Linux Enterprise Server 11 SP4
kernel-bigmem-3.0.101-108.77.1
kernel-bigmem-base-3.0.101-108.77.1
kernel-bigmem-devel-3.0.101-108.77.1
kernel-default-3.0.101-108.77.1
kernel-default-base-3.0.101-108.77.1
kernel-default-devel-3.0.101-108.77.1
kernel-default-man-3.0.101-108.77.1
kernel-ec2-3.0.101-108.77.1
kernel-ec2-base-3.0.101-108.77.1
kernel-ec2-devel-3.0.101-108.77.1
kernel-pae-3.0.101-108.77.1
kernel-pae-base-3.0.101-108.77.1
kernel-pae-devel-3.0.101-108.77.1
kernel-ppc64-3.0.101-108.77.1
kernel-ppc64-base-3.0.101-108.77.1
kernel-ppc64-devel-3.0.101-108.77.1
kernel-source-3.0.101-108.77.1
kernel-syms-3.0.101-108.77.1
kernel-trace-3.0.101-108.77.1
kernel-trace-base-3.0.101-108.77.1
kernel-trace-devel-3.0.101-108.77.1
kernel-xen-3.0.101-108.77.1
kernel-xen-base-3.0.101-108.77.1
kernel-xen-devel-3.0.101-108.77.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4
kernel-bigmem-3.0.101-108.77.1
kernel-bigmem-base-3.0.101-108.77.1
kernel-bigmem-devel-3.0.101-108.77.1
kernel-default-3.0.101-108.77.1
kernel-default-base-3.0.101-108.77.1
kernel-default-devel-3.0.101-108.77.1
kernel-default-man-3.0.101-108.77.1
kernel-ec2-3.0.101-108.77.1
kernel-ec2-base-3.0.101-108.77.1
kernel-ec2-devel-3.0.101-108.77.1
kernel-pae-3.0.101-108.77.1
kernel-pae-base-3.0.101-108.77.1
kernel-pae-devel-3.0.101-108.77.1
kernel-ppc64-3.0.101-108.77.1
kernel-ppc64-base-3.0.101-108.77.1
kernel-ppc64-devel-3.0.101-108.77.1
kernel-source-3.0.101-108.77.1
kernel-syms-3.0.101-108.77.1
kernel-trace-3.0.101-108.77.1
kernel-trace-base-3.0.101-108.77.1
kernel-trace-devel-3.0.101-108.77.1
kernel-xen-3.0.101-108.77.1
kernel-xen-base-3.0.101-108.77.1
kernel-xen-devel-3.0.101-108.77.1
SUSE Linux Enterprise Software Development Kit 11 SP4
kernel-docs-3.0.101-108.77.1
Ссылки
- Link for SUSE-SU-2018:3100-1
- E-Mail link for SUSE-SU-2018:3100-1
- SUSE Security Ratings
- SUSE Bug 1108399
- SUSE Bug 1109967
- SUSE CVE CVE-2018-17182 page
Описание
An issue was discovered in the Linux kernel through 4.18.8. The vmacache_flush_all function in mm/vmacache.c mishandles sequence number overflows. An attacker can trigger a use-after-free (and possibly gain privileges) via certain thread creation, map, unmap, invalidation, and dereference operations.
Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:kernel-bigmem-3.0.101-108.77.1
SUSE Linux Enterprise Server 11 SP4:kernel-bigmem-base-3.0.101-108.77.1
SUSE Linux Enterprise Server 11 SP4:kernel-bigmem-devel-3.0.101-108.77.1
SUSE Linux Enterprise Server 11 SP4:kernel-default-3.0.101-108.77.1
Ссылки
- CVE-2018-17182
- SUSE Bug 1108399
- SUSE Bug 1110233