Jump to content
Compatible Support Forums
Sign in to follow this  
news

[security-announce] SUSE-SU-2016:2637-1: important: Security update for Linux Kernel Live Patch 6 for SLE 12 SP1

Recommended Posts

SUSE Security Update: Security update for Linux Kernel Live Patch 6 for SLE 12 SP1

______________________________________________________________________________

 

Announcement ID: SUSE-SU-2016:2637-1

Rating: important

References: #1001487 #1004419

Cross-References: CVE-2016-5195 CVE-2016-8666

Affected Products:

SUSE Linux Enterprise Live Patching 12

______________________________________________________________________________

 

An update that fixes two vulnerabilities is now available.

 

Description:

 

This update for the Linux Kernel 3.12.59-60_45 fixes several issues.

 

The following security bugs were fixed:

- CVE-2016-5195: A local privilege escalation using MAP_PRIVATE was fixed,

which is reportedly exploited in the wild (bsc#1004419).

- CVE-2016-8666: The IP stack in the Linux kernel allowed remote attackers

to cause a denial of service (stack consumption and panic) or possibly

have unspecified other impact by triggering use of the GRO path for

packets with tunnel stacking, as demonstrated by interleaved IPv4

headers and GRE headers, a related issue to CVE-2016-7039 (bsc#1001487).

 

 

Patch Instructions:

 

To install this SUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

 

- SUSE Linux Enterprise Live Patching 12:

 

zypper in -t patch SUSE-SLE-Live-Patching-12-2016-1552=1

 

To bring your system up-to-date, use "zypper patch".

 

 

Package List:

 

- SUSE Linux Enterprise Live Patching 12 (x86_64):

 

kgraft-patch-3_12_59-60_45-default-4-2.1

kgraft-patch-3_12_59-60_45-xen-4-2.1

 

 

References:

 

https://www.suse.com/security/cve/CVE-2016-5195.html

https://www.suse.com/security/cve/CVE-2016-8666.html

https://bugzilla.suse.com/1001487

https://bugzilla.suse.com/1004419

 

--

To unsubscribe, e-mail: opensuse-security-announce+unsubscribe ( -at -) opensuse.org

For additional commands, e-mail: opensuse-security-announce+help ( -at -) opensuse.org

 

 

 

Share this post


Link to post

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
Sign in to follow this  

×