suse-ru-2018:0779-1
Vulnerability from csaf_suse
Published
2018-03-22 13:45
Modified
2018-03-22 13:45
Summary
Recommended update for drbd and drbd-utils

Notes

Title of the patch
Recommended update for drbd and drbd-utils
Description of the patch
This update for drbd and drbd-utils provides the following fixes: Changes in drbd: - Fix a possible kernel trace while starting the initial syncing of a stacked drbd. (bsc#1058770) - Fix auto promotion after split-brain. (bsc#1074228) - Support passing '--force' to drbdadm dump-md. (bsc#1077176) - Many upstream fixes in version 9.0.8 (bsc#1045473): * Fix a race condition between adding connections and receiving data. * Fix a OOPS on a diskfull node when a request from a diskless node. * Fix a distributed deadlock when doing a discard/write-same burst. * Fix an issue with diskless nodes adopting wrong current UUIDs. * Fix wrongly rejected two-phase-state transactions. * Fix initial resync, triggered by '--force primary'. * Speed-up AL-updates with bio flags REQ_META and REQ_PRIO. * Merged changes from 8.4.10 and with that compatibility with Linux-4.12. - The kernel modules were rebuilt with retpoline support to mitigate Spectre v2 (bsc#1068032 CVE-2017-5715) Changes in drbd-utils: - Fix the wrong device due to udev change. (bsc#1059566) - Support passing '--force' to drbdadm dump-md. (bsc#1077176) - Fix a possible kernel trace while starting the initial syncing of a stacked drbd. (bsc#1058770) - Backport some fixes of peer_device objects. - Do not hardcode loglevel local5 and make it possible to change that using --logfacility. (bsc#1064402) - Update documentation and examples regarding fencing: it is now moved from the dir to the net section. (bsc#1061145) - Skip running drbdadm sh-b-pri in drbd9. (bsc#1061147) - Disable quorum in default configuration. (bsc#1032142) - Fix auto promotion after split-brain. (bsc#1074228) - Use upstream's RA.
Patchnames
SUSE-SLE-HA-12-SP2-2018-530
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).


To clipboard 

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Recommended update for drbd and drbd-utils",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "\nThis update for drbd and drbd-utils provides the following fixes:\n\nChanges in drbd:\n\n- Fix a possible kernel trace while starting the initial syncing of a stacked drbd.\n  (bsc#1058770)\n- Fix auto promotion after split-brain. (bsc#1074228)\n- Support passing \u0027--force\u0027 to drbdadm dump-md. (bsc#1077176)\n- Many upstream fixes in version 9.0.8 (bsc#1045473):\n  * Fix a race condition between adding connections and receiving data.\n  * Fix a OOPS on a diskfull node when a request from a diskless node.\n  * Fix a distributed deadlock when doing a discard/write-same burst.\n  * Fix an issue with diskless nodes adopting wrong current UUIDs.\n  * Fix wrongly rejected two-phase-state transactions.\n  * Fix initial resync, triggered by \u0027--force primary\u0027.\n  * Speed-up AL-updates with bio flags REQ_META and REQ_PRIO.\n  * Merged changes from 8.4.10 and with that compatibility with Linux-4.12.\n- The kernel modules were rebuilt with retpoline support to mitigate Spectre v2 (bsc#1068032 CVE-2017-5715)\n\nChanges in drbd-utils:\n\n- Fix the wrong device due to udev change. (bsc#1059566)\n- Support passing \u0027--force\u0027 to drbdadm dump-md. (bsc#1077176)\n- Fix a possible kernel trace while starting the initial syncing of a stacked drbd.\n  (bsc#1058770)\n- Backport some fixes of peer_device objects.\n- Do not hardcode loglevel local5 and make it possible to change that using --logfacility.\n  (bsc#1064402)\n- Update documentation and examples regarding fencing: it is now moved from the dir to\n  the net section. (bsc#1061145)\n- Skip running drbdadm sh-b-pri in drbd9. (bsc#1061147)\n- Disable quorum in default configuration. (bsc#1032142)\n- Fix auto promotion after split-brain. (bsc#1074228)\n- Use upstream\u0027s RA.\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-HA-12-SP2-2018-530",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-ru-2018_0779-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-RU-2018:0779-1",
        "url": "https://www.suse.com/support/update/announcement//suse-ru-20180779-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-RU-2018:0779-1",
        "url": "https://lists.suse.com/pipermail/sle-updates/2018-March/008124.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1032142",
        "url": "https://bugzilla.suse.com/1032142"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1045473",
        "url": "https://bugzilla.suse.com/1045473"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1058770",
        "url": "https://bugzilla.suse.com/1058770"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1059566",
        "url": "https://bugzilla.suse.com/1059566"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1061145",
        "url": "https://bugzilla.suse.com/1061145"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1061147",
        "url": "https://bugzilla.suse.com/1061147"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1064402",
        "url": "https://bugzilla.suse.com/1064402"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1068032",
        "url": "https://bugzilla.suse.com/1068032"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1074228",
        "url": "https://bugzilla.suse.com/1074228"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1077176",
        "url": "https://bugzilla.suse.com/1077176"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-5715 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-5715/"
      }
    ],
    "title": "Recommended update for drbd and drbd-utils",
    "tracking": {
      "current_release_date": "2018-03-22T13:45:01Z",
      "generator": {
        "date": "2018-03-22T13:45:01Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-RU-2018:0779-1",
      "initial_release_date": "2018-03-22T13:45:01Z",
      "revision_history": [
        {
          "date": "2018-03-22T13:45:01Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "drbd-9.0.8+git.c8bc3670-10.8.1.ppc64le",
                "product": {
                  "name": "drbd-9.0.8+git.c8bc3670-10.8.1.ppc64le",
                  "product_id": "drbd-9.0.8+git.c8bc3670-10.8.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.ppc64le",
                "product": {
                  "name": "drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.ppc64le",
                  "product_id": "drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "drbd-utils-9.0.0-8.15.1.ppc64le",
                "product": {
                  "name": "drbd-utils-9.0.0-8.15.1.ppc64le",
                  "product_id": "drbd-utils-9.0.0-8.15.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "drbd-9.0.8+git.c8bc3670-10.8.1.s390x",
                "product": {
                  "name": "drbd-9.0.8+git.c8bc3670-10.8.1.s390x",
                  "product_id": "drbd-9.0.8+git.c8bc3670-10.8.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.s390x",
                "product": {
                  "name": "drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.s390x",
                  "product_id": "drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "drbd-utils-9.0.0-8.15.1.s390x",
                "product": {
                  "name": "drbd-utils-9.0.0-8.15.1.s390x",
                  "product_id": "drbd-utils-9.0.0-8.15.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "drbd-9.0.8+git.c8bc3670-10.8.1.x86_64",
                "product": {
                  "name": "drbd-9.0.8+git.c8bc3670-10.8.1.x86_64",
                  "product_id": "drbd-9.0.8+git.c8bc3670-10.8.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.x86_64",
                "product": {
                  "name": "drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.x86_64",
                  "product_id": "drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "drbd-utils-9.0.0-8.15.1.x86_64",
                "product": {
                  "name": "drbd-utils-9.0.0-8.15.1.x86_64",
                  "product_id": "drbd-utils-9.0.0-8.15.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Availability Extension 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise High Availability Extension 12 SP2",
                  "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-ha:12:sp2"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "drbd-9.0.8+git.c8bc3670-10.8.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-9.0.8+git.c8bc3670-10.8.1.ppc64le"
        },
        "product_reference": "drbd-9.0.8+git.c8bc3670-10.8.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "drbd-9.0.8+git.c8bc3670-10.8.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-9.0.8+git.c8bc3670-10.8.1.s390x"
        },
        "product_reference": "drbd-9.0.8+git.c8bc3670-10.8.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "drbd-9.0.8+git.c8bc3670-10.8.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-9.0.8+git.c8bc3670-10.8.1.x86_64"
        },
        "product_reference": "drbd-9.0.8+git.c8bc3670-10.8.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.ppc64le"
        },
        "product_reference": "drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.s390x"
        },
        "product_reference": "drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.x86_64"
        },
        "product_reference": "drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "drbd-utils-9.0.0-8.15.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-utils-9.0.0-8.15.1.ppc64le"
        },
        "product_reference": "drbd-utils-9.0.0-8.15.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "drbd-utils-9.0.0-8.15.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-utils-9.0.0-8.15.1.s390x"
        },
        "product_reference": "drbd-utils-9.0.0-8.15.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "drbd-utils-9.0.0-8.15.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-utils-9.0.0-8.15.1.x86_64"
        },
        "product_reference": "drbd-utils-9.0.0-8.15.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-5715",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-5715"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-9.0.8+git.c8bc3670-10.8.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-9.0.8+git.c8bc3670-10.8.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-9.0.8+git.c8bc3670-10.8.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-utils-9.0.0-8.15.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-utils-9.0.0-8.15.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-utils-9.0.0-8.15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-5715",
          "url": "https://www.suse.com/security/cve/CVE-2017-5715"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1068032 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1068032"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074562 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074578 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074701 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074701"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074741 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074741"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074919 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074919"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075006 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075007 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075007"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075262 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075262"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075419 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075419"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076115 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076115"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076372 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076372"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076606 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076606"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1078353 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1078353"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1080039 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1080039"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087887 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1087887"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087939 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1087939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1088147 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1088147"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1089055 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1089055"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1091815"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1095735 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1095735"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102517 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1102517"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1105108 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1105108"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1126516 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1126516"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173489 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1173489"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178658 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1178658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201457 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1201457"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201877 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1201877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1203236 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1203236"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-9.0.8+git.c8bc3670-10.8.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-9.0.8+git.c8bc3670-10.8.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-9.0.8+git.c8bc3670-10.8.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-utils-9.0.0-8.15.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-utils-9.0.0-8.15.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-utils-9.0.0-8.15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-9.0.8+git.c8bc3670-10.8.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-9.0.8+git.c8bc3670-10.8.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-9.0.8+git.c8bc3670-10.8.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-kmp-default-9.0.8+git.c8bc3670_k4.4.114_92.67-10.8.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-utils-9.0.0-8.15.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-utils-9.0.0-8.15.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:drbd-utils-9.0.0-8.15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-03-22T13:45:01Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-5715"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.