SUSE-SU-2019:0326-1

Опубликовано: 11 фев. 2019

Источник: suse-cvrf

Описание

Security update for the Linux Kernel (Live Patch 35 for SLE 12)

This update for the Linux Kernel 3.12.61-52_133 fixes one issue.

The following security issue was fixed:

CVE-2018-16884: A flaw was found in the Linux kernel's NFS41+ subsystem. NFS41+ shares mounted in different network namespaces at the same time could make bc_svc_process() use wrong back-channel IDs and cause a use-after-free vulnerability. Thus a malicious container user could cause a host kernel memory corruption and a system panic. Due to the nature of the flaw, privilege escalation cannot be fully ruled out (bsc#1119947).

Список пакетов

SUSE Linux Enterprise Server 12-LTSS

kgraft-patch-3_12_61-52_141-default-7-2.1

kgraft-patch-3_12_61-52_141-xen-7-2.1

kgraft-patch-3_12_61-52_136-default-8-2.1

kgraft-patch-3_12_61-52_136-xen-8-2.1

kgraft-patch-3_12_61-52_119-default-12-2.1

kgraft-patch-3_12_61-52_119-xen-12-2.1

kgraft-patch-3_12_61-52_146-default-5-2.1

kgraft-patch-3_12_61-52_146-xen-5-2.1

kgraft-patch-3_12_61-52_125-default-11-2.1

kgraft-patch-3_12_61-52_125-xen-11-2.1

kgraft-patch-3_12_61-52_128-default-9-2.1

kgraft-patch-3_12_61-52_128-xen-9-2.1

kgraft-patch-3_12_61-52_122-default-12-2.1

kgraft-patch-3_12_61-52_122-xen-12-2.1

kgraft-patch-3_12_61-52_133-default-8-2.1

kgraft-patch-3_12_61-52_133-xen-8-2.1

Ссылки

https://www.suse.com/support/update/announcement/2019/suse-su-20190326-1/
Link for SUSE-SU-2019:0326-1
https://lists.suse.com/pipermail/sle-security-updates/2019-February/005102.html
E-Mail link for SUSE-SU-2019:0326-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1119947
SUSE Bug 1119947
https://www.suse.com/security/cve/CVE-2018-16884/
SUSE CVE CVE-2018-16884 page

Описание

A flaw was found in the Linux kernel's NFS41+ subsystem. NFS41+ shares mounted in different network namespaces at the same time can make bc_svc_process() use wrong back-channel IDs and cause a use-after-free vulnerability. Thus a malicious container user can cause a host kernel memory corruption and a system panic. Due to the nature of the flaw, privilege escalation cannot be fully ruled out.

Затронутые продукты

SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_119-default-12-2.1

SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_119-xen-12-2.1

SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_122-default-12-2.1

SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_122-xen-12-2.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-16884.html
CVE-2018-16884
https://bugzilla.suse.com/1119946
SUSE Bug 1119946
https://bugzilla.suse.com/1119947
SUSE Bug 1119947

SUSE-SU-2019:0326-1

Описание

Список пакетов

SUSE Linux Enterprise Server 12-LTSS

Ссылки

Уязвимость: CVE-2018-16884

Описание

Затронутые продукты

Ссылки