- Home
- CVEs with nessus.description==The SUSE Linux Enterprise 12 SP3 kernel was updated to 4.4.120 to
receive various security and bugfixes. The following security bugs
were fixed :
- CVE-2017-13166: An elevation of privilege vulnerability
in the v4l2 video driver. (bnc#1072865).
- CVE-2017-15951: The KEYS subsystem did not correctly
synchronize the actions of updating versus finding a key
in the 'negative' state to avoid a race condition, which
allowed local users to cause a denial of service or
possibly have unspecified other impact via crafted
system calls (bnc#1062840 bnc#1065615).
- CVE-2017-16644: The hdpvr_probe function in
drivers/media/usb/hdpvr/hdpvr-core.c allowed local users
to cause a denial of service (improper error handling
and system crash) or possibly have unspecified other
impact via a crafted USB device (bnc#1067118).
- CVE-2017-16912: The 'get_pipe()' function
(drivers/usb/usbip/stub_rx.c) allowed attackers to cause
a denial of service (out-of-bounds read) via a specially
crafted USB over IP packet (bnc#1078673).
- CVE-2017-16913: The 'stub_recv_cmd_submit()' function
(drivers/usb/usbip/stub_rx.c) when handling CMD_SUBMIT
packets allowed attackers to cause a denial of service
(arbitrary memory allocation) via a specially crafted
USB over IP packet (bnc#1078672).
- CVE-2017-17975: Use-after-free in the usbtv_probe
function in drivers/media/usb/usbtv/usbtv-core.c allowed
attackers to cause a denial of service (system crash) or
possibly have unspecified other impact by triggering
failure of audio registration, because a kfree of the
usbtv data structure occurs during a usbtv_video_free
call, but the usbtv_video_fail label's code attempts to
both access and free this data structure (bnc#1074426).
- CVE-2017-18174: The amd_gpio_remove function in
drivers/pinctrl/pinctrl-amd.c calls the
pinctrl_unregister function, leading to a double free
(bnc#1080533).
- CVE-2017-18208: The madvise_willneed function in
mm/madvise.c allowed local users to cause a denial of
service (infinite loop) by triggering use of
MADVISE_WILLNEED for a DAX mapping (bnc#1083494).
- CVE-2018-1000026: A insufficient input validation
vulnerability in bnx2x network card driver could result
in DoS: Network card firmware assertion takes card
off-line. This attack appear to be exploitable via An
attacker on a must pass a very large, specially crafted
packet to the bnx2x card. This can be done from an
untrusted guest VM. (bnc#1079384).
- CVE-2018-8087: Memory leak in the hwsim_new_radio_nl
function in drivers/net/wireless/mac80211_hwsim.c
allowed local users to cause a denial of service (memory
consumption) by triggering an out-of-array error case
(bnc#1085053).
- CVE-2018-1068: Insufficient user provided offset
checking in the ebtables compat code allowed local
attackers to overwrite kernel memory and potentially
execute code. (bsc#1085107)
The update package also includes non-security fixes. See advisory for
details.
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top