The Linux Kernel imposes a size restriction on the arguments and environmental strings passed through RLIMIT_STACK/RLIM_INFINITY (1/4 of the size), but does not take the argument and environment pointers into account, which allows attackers to bypass this limitation. This affects Linux Kernel versions 4.11.5 and earlier. It appears that this feature was introduced in the Linux Kernel version 2.6.23.

Уязвимость реализации механизма Stack Guard-Page ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании

Security update for the Linux Kernel

Security update for the Linux Kernel

Security update for Linux Kernel Live Patch 1 for SLE 12 SP3

Security update for the Linux Kernel

Security update for the Linux Kernel

Security update for the Linux Kernel

Security update for the Linux Kernel

Security update for the Linux Kernel

The native Bluetooth stack in the Linux Kernel (BlueZ), starting at the Linux kernel version 2.6.32 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel space.

ELSA-2017-3620: Unbreakable Enterprise kernel security update (IMPORTANT)

ELSA-2017-2681: kernel security and bug fix update (IMPORTANT)

ELSA-2017-2679: kernel security update (IMPORTANT)

ELSA-2017-2679-1: kernel security update (IMPORTANT)

Уязвимость компонента модуля L2CAP пакета программ, реализующих стек протоколов Bluetooth, позволяющая нарушителю выполнить произвольный код

Security update for the Linux Kernel

Security update for Linux Kernel Live Patch 12 for SLE 12 SP2

Security update for Linux Kernel Live Patch 4 for SLE 12 SP2

Security update for Linux Kernel Live Patch 7 for SLE 12 SP2