SUSE-SU-2019:1889-1

Опубликовано: 18 июл. 2019

Источник: suse-cvrf

Описание

Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP1)

This update for the Linux Kernel 4.12.14-195 fixes several issues.

The following security issues were fixed:

CVE-2019-11477: Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an integer overflow when handling TCP Selective Acknowledgments (SACKs). A remote attacker could use this to cause a denial of service. (bsc#1137586)
CVE-2019-11478: Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment could be fragmented when handling certain TCP Selective Acknowledgment (SACK) sequences. A remote attacker could use this to cause a denial of service. (bsc#1137586)

This update contains a regression fix for CVE-2019-11477 and CVE-2019-11478 (bsc#1140747).

Список пакетов

SUSE Linux Enterprise Live Patching 15 SP1

kernel-livepatch-4_12_14-195-default-4-10.1

Ссылки

https://www.suse.com/support/update/announcement/2019/suse-su-20191889-1/
Link for SUSE-SU-2019:1889-1
https://lists.suse.com/pipermail/sle-security-updates/2019-July/005730.html
E-Mail link for SUSE-SU-2019:1889-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1137597
SUSE Bug 1137597
https://bugzilla.suse.com/1140747
SUSE Bug 1140747
https://www.suse.com/security/cve/CVE-2019-11477/
SUSE CVE CVE-2019-11477 page
https://www.suse.com/security/cve/CVE-2019-11478/
SUSE CVE CVE-2019-11478 page

Описание

Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments (SACKs). A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commit 3b4929f65b0d8249f19a50245cd88ed1a2f78cff.

Затронутые продукты

SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-195-default-4-10.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-11477.html
CVE-2019-11477
https://bugzilla.suse.com/1132686
SUSE Bug 1132686
https://bugzilla.suse.com/1137586
SUSE Bug 1137586
https://bugzilla.suse.com/1142129
SUSE Bug 1142129
https://bugzilla.suse.com/1153242
SUSE Bug 1153242

Описание

Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment in the Linux kernel could be fragmented when handling certain TCP Selective Acknowledgment (SACK) sequences. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commit f070ef2ac66716357066b683fb0baf55f8191a2e.

Затронутые продукты

SUSE Linux Enterprise Live Patching 15 SP1:kernel-livepatch-4_12_14-195-default-4-10.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-11478.html
CVE-2019-11478
https://bugzilla.suse.com/1132686
SUSE Bug 1132686
https://bugzilla.suse.com/1137586
SUSE Bug 1137586
https://bugzilla.suse.com/1142129
SUSE Bug 1142129
https://bugzilla.suse.com/1143542
SUSE Bug 1143542

SUSE-SU-2019:1889-1

Описание

Список пакетов

SUSE Linux Enterprise Live Patching 15 SP1

Ссылки

Уязвимость: CVE-2019-11477

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2019-11478

Описание

Затронутые продукты

Ссылки