Описание
Security update for the Linux Kernel
The openSUSE 42.1 kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
- CVE-2016-9756: KVM: x86: drop error recovery in em_jmp_far and em_ret_far (bsc#1013038).
The following non-security bugs were fixed:
- scsi: megaraid_sas: fix macro MEGASAS_IS_LOGICAL to avoid regression (bsc#1014943).
Список пакетов
openSUSE Leap 42.1
kernel-debug-4.1.36-44.1
kernel-debug-base-4.1.36-44.1
kernel-debug-devel-4.1.36-44.1
kernel-default-4.1.36-44.1
kernel-default-base-4.1.36-44.1
kernel-default-devel-4.1.36-44.1
kernel-devel-4.1.36-44.1
kernel-docs-4.1.36-44.2
kernel-docs-html-4.1.36-44.2
kernel-docs-pdf-4.1.36-44.2
kernel-ec2-4.1.36-44.1
kernel-ec2-base-4.1.36-44.1
kernel-ec2-devel-4.1.36-44.1
kernel-macros-4.1.36-44.1
kernel-obs-build-4.1.36-44.3
kernel-obs-qa-4.1.36-44.1
kernel-pae-4.1.36-44.1
kernel-pae-base-4.1.36-44.1
kernel-pae-devel-4.1.36-44.1
kernel-pv-4.1.36-44.1
kernel-pv-base-4.1.36-44.1
kernel-pv-devel-4.1.36-44.1
kernel-source-4.1.36-44.1
kernel-source-vanilla-4.1.36-44.1
kernel-syms-4.1.36-44.1
kernel-vanilla-4.1.36-44.1
kernel-vanilla-devel-4.1.36-44.1
kernel-xen-4.1.36-44.1
kernel-xen-base-4.1.36-44.1
kernel-xen-devel-4.1.36-44.1
Ссылки
- E-Mail link for openSUSE-SU-2017:0002-1
- SUSE Security Ratings
Описание
arch/x86/kvm/emulate.c in the Linux kernel before 4.8.12 does not properly initialize Code Segment (CS) in certain error cases, which allows local users to obtain sensitive information from kernel stack memory via a crafted application.
Затронутые продукты
openSUSE Leap 42.1:kernel-debug-4.1.36-44.1
openSUSE Leap 42.1:kernel-debug-base-4.1.36-44.1
openSUSE Leap 42.1:kernel-debug-devel-4.1.36-44.1
openSUSE Leap 42.1:kernel-default-4.1.36-44.1
Ссылки
- CVE-2016-9756
- SUSE Bug 1013038