Описание
Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP1)
This update for the Linux Kernel 4.12.14-197_15 fixes several issues.
The following security issues were fixed:
- CVE-2019-10220: Fixed a relative path escape in the Samba client module (bsc#1144903, bsc#1153108).
- CVE-2019-17133: Fixed a buffer overflow in cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c caused by long SSID IEs (bsc#1153158).
Список пакетов
SUSE Linux Enterprise Live Patching 15 SP1
Ссылки
- Link for SUSE-SU-2019:2864-1
- E-Mail link for SUSE-SU-2019:2864-1
- SUSE Security Ratings
- SUSE Bug 1103203
- SUSE Bug 1144903
- SUSE Bug 1149841
- SUSE Bug 1151021
- SUSE Bug 1153108
- SUSE Bug 1153158
- SUSE Bug 1153161
- SUSE Bug 904970
- SUSE Bug 907150
- SUSE Bug 920615
- SUSE Bug 920633
- SUSE Bug 930408
- SUSE CVE CVE-2019-10220 page
- SUSE CVE CVE-2019-14835 page
- SUSE CVE CVE-2019-17133 page
Описание
Linux kernel CIFS implementation, version 4.9.0 is vulnerable to a relative paths injection in directory entry lists.
Затронутые продукты
Ссылки
- CVE-2019-10220
- SUSE Bug 1144903
- SUSE Bug 1153108
Описание
A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host.
Затронутые продукты
Ссылки
- CVE-2019-14835
- SUSE Bug 1150112
- SUSE Bug 1151021
Описание
In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow.
Затронутые продукты
Ссылки
- CVE-2019-17133
- SUSE Bug 1153158
- SUSE Bug 1153161