rpm package

suse/kernel-rt_trace&distro=SUSE Linux Enterprise Real Time 11 SP4

pkg:rpm/suse/kernel-rt_trace&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4

Vulnerabilities (252)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2018-7492		—	< 3.0.101.rt130-69.33.1	3.0.101.rt130-69.33.1	Feb 26, 2018	A NULL pointer dereference was found in the net/rds/rdma.c __rds_rdma_map() function in the Linux kernel before 4.14.7 allowing local attackers to cause a system panic and a denial-of-service, related to RDS_GET_MR and RDS_GET_MR_FOR_DEST.
CVE-2018-6927		—	< 3.0.101.rt130-69.24.1	3.0.101.rt130-69.24.1	Feb 12, 2018	The futex_requeue function in kernel/futex.c in the Linux kernel before 4.14.15 might allow attackers to cause a denial of service (integer overflow) or possibly have unspecified other impact by triggering a negative wake or requeue value.
CVE-2017-16914		—	< 3.0.101.rt130-69.24.1	3.0.101.rt130-69.24.1	Jan 31, 2018	The "stub_send_ret_submit()" function (drivers/usb/usbip/stub_tx.c) in the Linux Kernel before version 4.14.8, 4.9.71, 4.1.49, and 4.4.107 allows attackers to cause a denial of service (NULL pointer dereference) via a specially crafted USB over IP packet.
CVE-2017-16913		—	< 3.0.101.rt130-69.24.1	3.0.101.rt130-69.24.1	Jan 31, 2018	The "stub_recv_cmd_submit()" function (drivers/usb/usbip/stub_rx.c) in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 when handling CMD_SUBMIT packets allows attackers to cause a denial of service (arbitrary memory allocation) via a specially crafted USB over IP pack
CVE-2017-16912		—	< 3.0.101.rt130-69.24.1	3.0.101.rt130-69.24.1	Jan 31, 2018	The "get_pipe()" function (drivers/usb/usbip/stub_rx.c) in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 allows attackers to cause a denial of service (out-of-bounds read) via a specially crafted USB over IP packet.
CVE-2017-16911		—	< 3.0.101.rt130-69.24.1	3.0.101.rt130-69.24.1	Jan 31, 2018	The vhci_hcd driver in the Linux Kernel before version 4.14.8 and 4.4.114 allows allows local attackers to disclose kernel memory addresses. Successful exploitation requires that a USB device is attached over IP.
CVE-2017-18079		—	< 3.0.101.rt130-69.21.1	3.0.101.rt130-69.21.1	Jan 29, 2018	drivers/input/serio/i8042.c in the Linux kernel before 4.12.4 allows attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact because the port->exists value can change after it is validated.
CVE-2015-1142857		—	< 3.0.101.rt130-69.21.1	3.0.101.rt130-69.21.1	Jan 23, 2018	On multiple SR-IOV cars it is possible for VF's assigned to guests to send ethernet flow control pause frames via the PF. This includes Linux kernel ixgbe driver before commit f079fa005aae08ee0e1bc32699874ff4f02e11c1, the Linux Kernel i40e/i40evf driver before e7358f54a3954df16d4
CVE-2018-1000004		—	< 3.0.101.rt130-69.21.1	3.0.101.rt130-69.21.1	Jan 16, 2018	In the Linux kernel 4.12, 3.10, 2.6 and possibly earlier versions a race condition vulnerability exists in the sound system, this can lead to a deadlock and denial of service condition.
CVE-2017-13215		—	< 3.0.101.rt130-69.21.1	3.0.101.rt130-69.21.1	Jan 12, 2018	A elevation of privilege vulnerability in the Upstream kernel skcipher. Product: Android. Versions: Android kernel. Android ID: A-64386293. References: Upstream kernel.
CVE-2018-5333		—	< 3.0.101.rt130-69.21.1	3.0.101.rt130-69.21.1	Jan 11, 2018	In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in net/rds/rdma.c mishandles cases where page pinning fails or an invalid address is supplied, leading to an rds_atomic_free_op NULL pointer dereference.
CVE-2018-5332		—	< 3.0.101.rt130-69.21.1	3.0.101.rt130-69.21.1	Jan 11, 2018	In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).
CVE-2017-5754		—	< 3.0.101.rt130-69.14.1	3.0.101.rt130-69.14.1	Jan 4, 2018	Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.
CVE-2017-5753		—	< 3.0.101.rt130-69.14.1	3.0.101.rt130-69.14.1	Jan 4, 2018	Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2017-5715		—	< 3.0.101.rt130-69.14.1	3.0.101.rt130-69.14.1	Jan 4, 2018	Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2017-18017		—	< 3.0.101.rt130-69.21.1	3.0.101.rt130-69.21.1	Jan 3, 2018	The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other impact by leveraging the presenc
CVE-2017-17806	Hig	7.8	< 3.0.101.rt130-69.14.1	3.0.101.rt130-69.14.1	Dec 20, 2017	The HMAC implementation (crypto/hmac.c) in the Linux kernel before 4.14.8 does not validate that the underlying cryptographic hash algorithm is unkeyed, allowing a local attacker able to use the AF_ALG-based hash interface (CONFIG_CRYPTO_USER_API_HASH) and the SHA-3 hash algorith
CVE-2017-17805	Hig	7.8	< 3.0.101.rt130-69.14.1	3.0.101.rt130-69.14.1	Dec 20, 2017	The Salsa20 encryption algorithm in the Linux kernel before 4.14.8 does not correctly handle zero-length inputs, allowing a local attacker able to use the AF_ALG-based skcipher interface (CONFIG_CRYPTO_USER_API_SKCIPHER) to cause a denial of service (uninitialized-memory free and
CVE-2017-17741	Med	6.5	< 3.0.101.rt130-69.21.1	3.0.101.rt130-69.21.1	Dec 18, 2017	The KVM implementation in the Linux kernel through 4.14.7 allows attackers to obtain potentially sensitive information from kernel memory, aka a write_mmio stack-based out-of-bounds read, related to arch/x86/kvm/x86.c and include/trace/events/kvm.h.
CVE-2017-17558	Med	6.6	< 3.0.101.rt130-69.14.1	3.0.101.rt130-69.14.1	Dec 12, 2017	The usb_destroy_configuration function in drivers/usb/core/config.c in the USB core subsystem in the Linux kernel through 4.14.5 does not consider the maximum number of configurations and interfaces before attempting to release resources, which allows local users to cause a denia

CVE-2018-7492Feb 26, 2018
affected < 3.0.101.rt130-69.33.1fixed 3.0.101.rt130-69.33.1
A NULL pointer dereference was found in the net/rds/rdma.c __rds_rdma_map() function in the Linux kernel before 4.14.7 allowing local attackers to cause a system panic and a denial-of-service, related to RDS_GET_MR and RDS_GET_MR_FOR_DEST.
CVE-2018-6927Feb 12, 2018
affected < 3.0.101.rt130-69.24.1fixed 3.0.101.rt130-69.24.1
The futex_requeue function in kernel/futex.c in the Linux kernel before 4.14.15 might allow attackers to cause a denial of service (integer overflow) or possibly have unspecified other impact by triggering a negative wake or requeue value.
CVE-2017-16914Jan 31, 2018
affected < 3.0.101.rt130-69.24.1fixed 3.0.101.rt130-69.24.1
The "stub_send_ret_submit()" function (drivers/usb/usbip/stub_tx.c) in the Linux Kernel before version 4.14.8, 4.9.71, 4.1.49, and 4.4.107 allows attackers to cause a denial of service (NULL pointer dereference) via a specially crafted USB over IP packet.
CVE-2017-16913Jan 31, 2018
affected < 3.0.101.rt130-69.24.1fixed 3.0.101.rt130-69.24.1
The "stub_recv_cmd_submit()" function (drivers/usb/usbip/stub_rx.c) in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 when handling CMD_SUBMIT packets allows attackers to cause a denial of service (arbitrary memory allocation) via a specially crafted USB over IP pack
CVE-2017-16912Jan 31, 2018
affected < 3.0.101.rt130-69.24.1fixed 3.0.101.rt130-69.24.1
The "get_pipe()" function (drivers/usb/usbip/stub_rx.c) in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 allows attackers to cause a denial of service (out-of-bounds read) via a specially crafted USB over IP packet.
CVE-2017-16911Jan 31, 2018
affected < 3.0.101.rt130-69.24.1fixed 3.0.101.rt130-69.24.1
The vhci_hcd driver in the Linux Kernel before version 4.14.8 and 4.4.114 allows allows local attackers to disclose kernel memory addresses. Successful exploitation requires that a USB device is attached over IP.
CVE-2017-18079Jan 29, 2018
affected < 3.0.101.rt130-69.21.1fixed 3.0.101.rt130-69.21.1
drivers/input/serio/i8042.c in the Linux kernel before 4.12.4 allows attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact because the port->exists value can change after it is validated.
CVE-2015-1142857Jan 23, 2018
affected < 3.0.101.rt130-69.21.1fixed 3.0.101.rt130-69.21.1
On multiple SR-IOV cars it is possible for VF's assigned to guests to send ethernet flow control pause frames via the PF. This includes Linux kernel ixgbe driver before commit f079fa005aae08ee0e1bc32699874ff4f02e11c1, the Linux Kernel i40e/i40evf driver before e7358f54a3954df16d4
CVE-2018-1000004Jan 16, 2018
affected < 3.0.101.rt130-69.21.1fixed 3.0.101.rt130-69.21.1
In the Linux kernel 4.12, 3.10, 2.6 and possibly earlier versions a race condition vulnerability exists in the sound system, this can lead to a deadlock and denial of service condition.
CVE-2017-13215Jan 12, 2018
affected < 3.0.101.rt130-69.21.1fixed 3.0.101.rt130-69.21.1
A elevation of privilege vulnerability in the Upstream kernel skcipher. Product: Android. Versions: Android kernel. Android ID: A-64386293. References: Upstream kernel.
CVE-2018-5333Jan 11, 2018
affected < 3.0.101.rt130-69.21.1fixed 3.0.101.rt130-69.21.1
In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in net/rds/rdma.c mishandles cases where page pinning fails or an invalid address is supplied, leading to an rds_atomic_free_op NULL pointer dereference.
CVE-2018-5332Jan 11, 2018
affected < 3.0.101.rt130-69.21.1fixed 3.0.101.rt130-69.21.1
In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).
CVE-2017-5754Jan 4, 2018
affected < 3.0.101.rt130-69.14.1fixed 3.0.101.rt130-69.14.1
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.
CVE-2017-5753Jan 4, 2018
affected < 3.0.101.rt130-69.14.1fixed 3.0.101.rt130-69.14.1
Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2017-5715Jan 4, 2018
affected < 3.0.101.rt130-69.14.1fixed 3.0.101.rt130-69.14.1
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2017-18017Jan 3, 2018
affected < 3.0.101.rt130-69.21.1fixed 3.0.101.rt130-69.21.1
The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other impact by leveraging the presenc
CVE-2017-17806HigDec 20, 2017
affected < 3.0.101.rt130-69.14.1fixed 3.0.101.rt130-69.14.1
The HMAC implementation (crypto/hmac.c) in the Linux kernel before 4.14.8 does not validate that the underlying cryptographic hash algorithm is unkeyed, allowing a local attacker able to use the AF_ALG-based hash interface (CONFIG_CRYPTO_USER_API_HASH) and the SHA-3 hash algorith
CVE-2017-17805HigDec 20, 2017
affected < 3.0.101.rt130-69.14.1fixed 3.0.101.rt130-69.14.1
The Salsa20 encryption algorithm in the Linux kernel before 4.14.8 does not correctly handle zero-length inputs, allowing a local attacker able to use the AF_ALG-based skcipher interface (CONFIG_CRYPTO_USER_API_SKCIPHER) to cause a denial of service (uninitialized-memory free and
CVE-2017-17741MedDec 18, 2017
affected < 3.0.101.rt130-69.21.1fixed 3.0.101.rt130-69.21.1
The KVM implementation in the Linux kernel through 4.14.7 allows attackers to obtain potentially sensitive information from kernel memory, aka a write_mmio stack-based out-of-bounds read, related to arch/x86/kvm/x86.c and include/trace/events/kvm.h.
CVE-2017-17558MedDec 12, 2017
affected < 3.0.101.rt130-69.14.1fixed 3.0.101.rt130-69.14.1
The usb_destroy_configuration function in drivers/usb/core/config.c in the USB core subsystem in the Linux kernel through 4.14.5 does not consider the maximum number of configurations and interfaces before attempting to release resources, which allows local users to cause a denia

Page 3 of 13