- Home
- CVEs with nessus.description==The SUSE Linux Enterprise 12 SP3 kernel was updated to 4.4.103 to
receive various security and bugfixes. The following security bugs
were fixed :
- CVE-2017-1000410: The Linux kernel was affected by an
information lea that lies in the processing of incoming
L2CAP commands - ConfigRequest, and ConfigResponse
messages. (bnc#1070535).
- CVE-2017-11600: net/xfrm/xfrm_policy.c in the Linux
kernel did not ensure that the dir value of
xfrm_userpolicy_id is XFRM_POLICY_MAX or less, which
allowed local users to cause a denial of service
(out-of-bounds access) or possibly have unspecified
other impact via an XFRM_MSG_MIGRATE xfrm Netlink
message (bnc#1050231).
- CVE-2017-12193: The
assoc_array_insert_into_terminal_node function in
lib/assoc_array.c in the Linux kernel mishandled node
splitting, which allowed local users to cause a denial
of service (NULL pointer dereference and panic) via a
crafted application, as demonstrated by the keyring key
type, and key addition and link creation operations
(bnc#1066192).
- CVE-2017-15115: The sctp_do_peeloff function in
net/sctp/socket.c in the Linux kernel did not check
whether the intended netns is used in a peel-off action,
which allowed local users to cause a denial of service
(use-after-free and system crash) or possibly have
unspecified other impact via crafted system calls
(bnc#1068671).
- CVE-2017-16528: sound/core/seq_device.c in the Linux
kernel allowed local users to cause a denial of service
(snd_rawmidi_dev_seq_free use-after-free and system
crash) or possibly have unspecified other impact via a
crafted USB device (bnc#1066629).
- CVE-2017-16536: The cx231xx_usb_probe function in
drivers/media/usb/cx231xx/cx231xx-cards.c in the Linux
kernel allowed local users to cause a denial of service
(NULL pointer dereference and system crash) or possibly
have unspecified other impact via a crafted USB device
(bnc#1066606).
- CVE-2017-16537: The imon_probe function in
drivers/media/rc/imon.c in the Linux kernel allowed
local users to cause a denial of service (NULL pointer
dereference and system crash) or possibly have
unspecified other impact via a crafted USB device
(bnc#1066573).
- CVE-2017-16645: The ims_pcu_get_cdc_union_desc function
in drivers/input/misc/ims-pcu.c in the Linux kernel
allowed local users to cause a denial of service
(ims_pcu_parse_cdc_data out-of-bounds read and system
crash) or possibly have unspecified other impact via a
crafted USB device (bnc#1067132).
- CVE-2017-16646:
drivers/media/usb/dvb-usb/dib0700_devices.c in the Linux
kernel allowed local users to cause a denial of service
(BUG and system crash) or possibly have unspecified
other impact via a crafted USB device (bnc#1067105).
- CVE-2017-16994: The walk_hugetlb_range function in
mm/pagewalk.c in the Linux kernel mishandled holes in
hugetlb ranges, which allowed local users to obtain
sensitive information from uninitialized kernel memory
via crafted use of the mincore() system call
(bnc#1069996).
- CVE-2017-17448: net/netfilter/nfnetlink_cthelper.c in
the Linux kernel did not require the CAP_NET_ADMIN
capability for new, get, and del operations, which
allowed local users to bypass intended access
restrictions because the nfnl_cthelper_list data
structure is shared across all net namespaces
(bnc#1071693).
- CVE-2017-17449: The __netlink_deliver_tap_skb function
in net/netlink/af_netlink.c in the Linux kernel did not
restrict observations of Netlink messages to a single
net namespace, which allowed local users to obtain
sensitive information by leveraging the CAP_NET_ADMIN
capability to sniff an nlmon interface for all Netlink
activity on the system (bnc#1071694).
- CVE-2017-17450: net/netfilter/xt_osf.c in the Linux
kernel did not require the CAP_NET_ADMIN capability for
add_callback and remove_callback operations, which
allowed local users to bypass intended access
restrictions because the xt_osf_fingers data structure
is shared across all net namespaces (bnc#1071695).
- CVE-2017-7482: Fixed an overflow when decoding a krb5
principal. (bnc#1046107).
- CVE-2017-8824: The dccp_disconnect function in
net/dccp/proto.c in the Linux kernel allowed local users
to gain privileges or cause a denial of service
(use-after-free) via an AF_UNSPEC connect system call
during the DCCP_LISTEN state (bnc#1070771).
The update package also includes non-security fixes. See advisory for
details.
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top