Описание
Security update for the Linux Kernel (Live Patch 1 for SLE 12 SP4)
This update for the Linux Kernel 4.12.14-95_3 fixes several issues.
The following security issues were fixed:
- CVE-2019-15917: Fixed a use-after-free when hci_uart_register_dev() fails in hci_uart_set_proto() (bsc#1156334).
- CVE-2018-20856: Fixed a use-after-free in block/blk-core.c due to improper error handling (bsc#1156331).
- CVE-2019-13272: Fixed a privilege escalation from user to root due to improper handling of credentials by leveraging certain scenarios with a parent-child process relationship (bsc#1156321).
- CVE-2018-16871: Fixed an issue where an attacker, who could mount an exported NFS filesystem, was able to trigger a null pointer dereference by using an invalid NFS sequence leading to kernel panic and deny of access to the NFS server (bsc#1156320).
- CVE-2019-10220: Fixed an issue where samba servers could inject relative paths in directory entry lists (bsc#1153108).
Список пакетов
SUSE Linux Enterprise Live Patching 12 SP4
Ссылки
- Link for SUSE-SU-2019:3252-1
- E-Mail link for SUSE-SU-2019:3252-1
- SUSE Security Ratings
- SUSE Bug 1153108
- SUSE Bug 1156320
- SUSE Bug 1156321
- SUSE Bug 1156331
- SUSE Bug 1156334
- SUSE CVE CVE-2018-16871 page
- SUSE CVE CVE-2018-20856 page
- SUSE CVE CVE-2019-10220 page
- SUSE CVE CVE-2019-13272 page
- SUSE CVE CVE-2019-15917 page
Описание
A flaw was found in the Linux kernel's NFS implementation, all versions 3.x and all versions 4.x up to 4.20. An attacker, who is able to mount an exported NFS filesystem, is able to trigger a null pointer dereference by using an invalid NFS sequence. This can panic the machine and deny access to the NFS server. Any outstanding disk writes to the NFS server will be lost.
Затронутые продукты
Ссылки
- CVE-2018-16871
- SUSE Bug 1137103
- SUSE Bug 1156320
Описание
An issue was discovered in the Linux kernel before 4.18.7. In block/blk-core.c, there is an __blk_drain_queue() use-after-free because a certain error case is mishandled.
Затронутые продукты
Ссылки
- CVE-2018-20856
- SUSE Bug 1143048
- SUSE Bug 1156331
Описание
Linux kernel CIFS implementation, version 4.9.0 is vulnerable to a relative paths injection in directory entry lists.
Затронутые продукты
Ссылки
- CVE-2019-10220
- SUSE Bug 1144903
- SUSE Bug 1153108
Описание
In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by leveraging certain scenarios with a parent-child process relationship, where a parent drops privileges and calls execve (potentially allowing control by an attacker). One contributing factor is an object lifetime issue (which can also cause a panic). Another contributing factor is incorrect marking of a ptrace relationship as privileged, which is exploitable through (for example) Polkit's pkexec helper with PTRACE_TRACEME. NOTE: SELinux deny_ptrace might be a usable workaround in some environments.
Затронутые продукты
Ссылки
- CVE-2019-13272
- SUSE Bug 1140671
- SUSE Bug 1156321
- SUSE Bug 1198122
Описание
An issue was discovered in the Linux kernel before 5.0.5. There is a use-after-free issue when hci_uart_register_dev() fails in hci_uart_set_proto() in drivers/bluetooth/hci_ldisc.c.
Затронутые продукты
Ссылки
- CVE-2019-15917
- SUSE Bug 1149539
- SUSE Bug 1156334