rpm package

suse/kernel-source&distro=SUSE Linux Enterprise Server 12 SP3

pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3

Vulnerabilities (174)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2017-12153	Med	4.4	< 4.4.92-6.18.1	4.4.92-6.18.1	Sep 21, 2017	A security flaw was discovered in the nl80211_set_rekey_data() function in net/wireless/nl80211.c in the Linux kernel through 4.13.3. This function does not check whether the required attributes are present in a Netlink request. This request can be issued by a user with the CAP_N
CVE-2017-14489	Med	5.5	< 4.4.92-6.18.1	4.4.92-6.18.1	Sep 15, 2017	The iscsi_if_rx function in drivers/scsi/scsi_transport_iscsi.c in the Linux kernel through 4.13.2 allows local users to cause a denial of service (panic) by leveraging incorrect length validation.
CVE-2017-1000251	Hig	8.0	< 4.4.82-6.6.1	4.4.82-6.6.1	Sep 12, 2017	The native Bluetooth stack in the Linux Kernel (BlueZ), starting at the Linux kernel version 2.6.32 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel spa
CVE-2017-14106	Med	5.5	< 4.4.92-6.18.1	4.4.92-6.18.1	Sep 1, 2017	The tcp_disconnect function in net/ipv4/tcp.c in the Linux kernel before 4.12 allows local users to cause a denial of service (__tcp_select_window divide-by-zero error and system crash) by triggering a disconnect within a certain tcp_recvmsg code path.
CVE-2017-14051	Med	4.4	< 4.4.92-6.18.1	4.4.92-6.18.1	Aug 31, 2017	An integer overflow in the qla2x00_sysfs_write_optrom_ctl function in drivers/scsi/qla2xxx/qla_attr.c in the Linux kernel through 4.12.10 allows local users to cause a denial of service (memory corruption and system crash) by leveraging root access.
CVE-2017-12134	Hig	8.8	< 4.4.92-6.18.1	4.4.92-6.18.1	Aug 24, 2017	The xen_biovec_phys_mergeable function in drivers/xen/biomerge.c in Xen might allow local OS guest users to corrupt block device data streams and consequently obtain sensitive memory information, cause a denial of service, or gain host OS privileges by leveraging incorrect block
CVE-2017-7533	Hig	7.0	< 4.4.82-6.3.1	4.4.82-6.3.1	Aug 5, 2017	Race condition in the fsnotify implementation in the Linux kernel through 4.12.4 allows local users to gain privileges or cause a denial of service (memory corruption) via a crafted application that leverages simultaneous execution of the inotify_handle_event and vfs_rename funct
CVE-2017-7541	Hig	7.8	< 4.4.82-6.3.1	4.4.82-6.3.1	Jul 25, 2017	The brcmf_cfg80211_mgmt_tx function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux kernel before 4.12.3 allows local users to cause a denial of service (buffer overflow and system crash) or possibly gain privileges via a crafted NL80211_CMD_FRAME Netl
CVE-2017-11600	Hig	7.0	< 4.4.103-6.33.1	4.4.103-6.33.1	Jul 24, 2017	net/xfrm/xfrm_policy.c in the Linux kernel through 4.12.3, when CONFIG_XFRM_MIGRATE is enabled, does not ensure that the dir value of xfrm_userpolicy_id is XFRM_POLICY_MAX or less, which allows local users to cause a denial of service (out-of-bounds access) or possibly have unspe
CVE-2017-7542	Med	5.5	< 4.4.82-6.3.1	4.4.82-6.3.1	Jul 21, 2017	The ip6_find_1stfragopt function in net/ipv6/output_core.c in the Linux kernel through 4.12.3 allows local users to cause a denial of service (integer overflow and infinite loop) by leveraging the ability to open a raw socket.
CVE-2017-11473	Hig	7.8	< 4.4.82-6.3.1	4.4.82-6.3.1	Jul 20, 2017	Buffer overflow in the mp_override_legacy_irq() function in arch/x86/kernel/acpi/boot.c in the Linux kernel through 3.2 allows local users to gain privileges via a crafted ACPI table.
CVE-2017-11472	Hig	7.1	< 4.4.92-6.18.1	4.4.92-6.18.1	Jul 20, 2017	The acpi_ns_terminate() function in drivers/acpi/acpica/nsutils.c in the Linux kernel before 4.12 does not flush the operand cache and causes a kernel stack dump, which allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism
CVE-2017-10810	Hig	7.5	< 4.4.82-6.3.1	4.4.82-6.3.1	Jul 4, 2017	Memory leak in the virtio_gpu_object_create function in drivers/gpu/drm/virtio/virtgpu_object.c in the Linux kernel through 4.11.8 allows attackers to cause a denial of service (memory consumption) by triggering object-initialization failures.
CVE-2017-8831	Med	6.4	< 4.4.82-6.3.1	4.4.82-6.3.1	May 8, 2017	The saa7164_bus_get function in drivers/media/pci/saa7164/saa7164-bus.c in the Linux kernel through 4.11.5 allows local users to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact by changing a certain sequence-number value, aka a "do

CVE-2017-12153MedSep 21, 2017
affected < 4.4.92-6.18.1fixed 4.4.92-6.18.1
A security flaw was discovered in the nl80211_set_rekey_data() function in net/wireless/nl80211.c in the Linux kernel through 4.13.3. This function does not check whether the required attributes are present in a Netlink request. This request can be issued by a user with the CAP_N
CVE-2017-14489MedSep 15, 2017
affected < 4.4.92-6.18.1fixed 4.4.92-6.18.1
The iscsi_if_rx function in drivers/scsi/scsi_transport_iscsi.c in the Linux kernel through 4.13.2 allows local users to cause a denial of service (panic) by leveraging incorrect length validation.
CVE-2017-1000251HigSep 12, 2017
affected < 4.4.82-6.6.1fixed 4.4.82-6.6.1
The native Bluetooth stack in the Linux Kernel (BlueZ), starting at the Linux kernel version 2.6.32 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel spa
CVE-2017-14106MedSep 1, 2017
affected < 4.4.92-6.18.1fixed 4.4.92-6.18.1
The tcp_disconnect function in net/ipv4/tcp.c in the Linux kernel before 4.12 allows local users to cause a denial of service (__tcp_select_window divide-by-zero error and system crash) by triggering a disconnect within a certain tcp_recvmsg code path.
CVE-2017-14051MedAug 31, 2017
affected < 4.4.92-6.18.1fixed 4.4.92-6.18.1
An integer overflow in the qla2x00_sysfs_write_optrom_ctl function in drivers/scsi/qla2xxx/qla_attr.c in the Linux kernel through 4.12.10 allows local users to cause a denial of service (memory corruption and system crash) by leveraging root access.
CVE-2017-12134HigAug 24, 2017
affected < 4.4.92-6.18.1fixed 4.4.92-6.18.1
The xen_biovec_phys_mergeable function in drivers/xen/biomerge.c in Xen might allow local OS guest users to corrupt block device data streams and consequently obtain sensitive memory information, cause a denial of service, or gain host OS privileges by leveraging incorrect block
CVE-2017-7533HigAug 5, 2017
affected < 4.4.82-6.3.1fixed 4.4.82-6.3.1
Race condition in the fsnotify implementation in the Linux kernel through 4.12.4 allows local users to gain privileges or cause a denial of service (memory corruption) via a crafted application that leverages simultaneous execution of the inotify_handle_event and vfs_rename funct
CVE-2017-7541HigJul 25, 2017
affected < 4.4.82-6.3.1fixed 4.4.82-6.3.1
The brcmf_cfg80211_mgmt_tx function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux kernel before 4.12.3 allows local users to cause a denial of service (buffer overflow and system crash) or possibly gain privileges via a crafted NL80211_CMD_FRAME Netl
CVE-2017-11600HigJul 24, 2017
affected < 4.4.103-6.33.1fixed 4.4.103-6.33.1
net/xfrm/xfrm_policy.c in the Linux kernel through 4.12.3, when CONFIG_XFRM_MIGRATE is enabled, does not ensure that the dir value of xfrm_userpolicy_id is XFRM_POLICY_MAX or less, which allows local users to cause a denial of service (out-of-bounds access) or possibly have unspe
CVE-2017-7542MedJul 21, 2017
affected < 4.4.82-6.3.1fixed 4.4.82-6.3.1
The ip6_find_1stfragopt function in net/ipv6/output_core.c in the Linux kernel through 4.12.3 allows local users to cause a denial of service (integer overflow and infinite loop) by leveraging the ability to open a raw socket.
CVE-2017-11473HigJul 20, 2017
affected < 4.4.82-6.3.1fixed 4.4.82-6.3.1
Buffer overflow in the mp_override_legacy_irq() function in arch/x86/kernel/acpi/boot.c in the Linux kernel through 3.2 allows local users to gain privileges via a crafted ACPI table.
CVE-2017-11472HigJul 20, 2017
affected < 4.4.92-6.18.1fixed 4.4.92-6.18.1
The acpi_ns_terminate() function in drivers/acpi/acpica/nsutils.c in the Linux kernel before 4.12 does not flush the operand cache and causes a kernel stack dump, which allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism
CVE-2017-10810HigJul 4, 2017
affected < 4.4.82-6.3.1fixed 4.4.82-6.3.1
Memory leak in the virtio_gpu_object_create function in drivers/gpu/drm/virtio/virtgpu_object.c in the Linux kernel through 4.11.8 allows attackers to cause a denial of service (memory consumption) by triggering object-initialization failures.
CVE-2017-8831MedMay 8, 2017
affected < 4.4.82-6.3.1fixed 4.4.82-6.3.1
The saa7164_bus_get function in drivers/media/pci/saa7164/saa7164-bus.c in the Linux kernel through 4.11.5 allows local users to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact by changing a certain sequence-number value, aka a "do

Page 9 of 9