rpm package

suse/kernel-xen&distro=SUSE Linux Enterprise Point of Sale 11 SP3

pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3

Vulnerabilities (198)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2016-4805	Hig	7.8	< 3.0.101-0.47.86.1	3.0.101-0.47.86.1	May 23, 2016	Use-after-free vulnerability in drivers/net/ppp/ppp_generic.c in the Linux kernel before 4.5.2 allows local users to cause a denial of service (memory corruption and system crash, or spinlock) or possibly have unspecified other impact by removing a network namespace, related to t
CVE-2016-4580	Hig	7.5	< 3.0.101-0.47.86.1	3.0.101-0.47.86.1	May 23, 2016	The x25_negotiate_facilities function in net/x25/x25_facilities.c in the Linux kernel before 4.5.5 does not properly initialize a certain data structure, which allows attackers to obtain sensitive information from kernel stack memory via an X.25 Call Request.
CVE-2016-4578	Med	5.5	< 3.0.101-0.47.86.1	3.0.101-0.47.86.1	May 23, 2016	sound/core/timer.c in the Linux kernel through 4.6 does not initialize certain r1 data structures, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface, related to the (1) snd_timer_user_ccallback and (2) sn
CVE-2016-4569	Med	5.5	< 3.0.101-0.47.86.1	3.0.101-0.47.86.1	May 23, 2016	The snd_timer_user_params function in sound/core/timer.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface.
CVE-2016-4565	Hig	7.8	< 3.0.101-0.47.86.1	3.0.101-0.47.86.1	May 23, 2016	The InfiniBand (aka IB) stack in the Linux kernel before 4.5.3 incorrectly relies on the write system call, which allows local users to cause a denial of service (kernel memory write operation) or possibly have unspecified other impact via a uAPI interface.
CVE-2016-4486	Low	3.3	< 3.0.101-0.47.86.1	3.0.101-0.47.86.1	May 23, 2016	The rtnl_fill_link_ifmap function in net/core/rtnetlink.c in the Linux kernel before 4.5.5 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory by reading a Netlink message.
CVE-2016-4485	Hig	7.5	< 3.0.101-0.47.86.1	3.0.101-0.47.86.1	May 23, 2016	The llc_cmsg_rcv function in net/llc/af_llc.c in the Linux kernel before 4.5.5 does not initialize a certain data structure, which allows attackers to obtain sensitive information from kernel stack memory by reading a message.
CVE-2016-4482	Med	6.2	< 3.0.101-0.47.86.1	3.0.101-0.47.86.1	May 23, 2016	The proc_connectinfo function in drivers/usb/core/devio.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted USBDEVFS_CONNECTINFO ioctl call.
CVE-2016-2187	Med	4.6	< 3.0.101-0.47.86.1	3.0.101-0.47.86.1	May 2, 2016	The gtco_probe function in drivers/input/tablet/gtco.c in the Linux kernel through 4.5.2 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device descriptor.
CVE-2016-2053	Med	4.7	< 3.0.101-0.47.86.1	3.0.101-0.47.86.1	May 2, 2016	The asn1_ber_decoder function in lib/asn1_decoder.c in the Linux kernel before 4.3 allows attackers to cause a denial of service (panic) via an ASN.1 BER file that lacks a public key, leading to mishandling by the public_key_verify_signature function in crypto/asymmetric_keys/pub
CVE-2015-1350	Med	5.5	< 3.0.101-0.47.96.1	3.0.101-0.47.96.1	May 2, 2016	The VFS subsystem in the Linux kernel 3.x provides an incomplete set of requirements for setattr operations that underspecifies removing extended privilege attributes, which allows local users to cause a denial of service (capability stripping) via a failed invocation of a system
CVE-2016-3134	Hig	8.4	< 3.0.101-0.47.86.1	3.0.101-0.47.86.1	Apr 27, 2016	The netfilter subsystem in the Linux kernel through 4.5.2 does not validate certain offset fields, which allows local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE setsockopt call.
CVE-2016-0823	Med	4.0	< 3.0.101-0.47.96.1	3.0.101-0.47.96.1	Mar 12, 2016	The pagemap_open function in fs/proc/task_mmu.c in the Linux kernel before 3.19.3, as used in Android 6.0.1 before 2016-03-01, allows local users to obtain sensitive physical-address information by reading a pagemap file, aka Android internal bug 25739721.
CVE-2015-7513	Med	6.5	< 3.0.101-0.47.86.1	3.0.101-0.47.86.1	Feb 8, 2016	arch/x86/kvm/x86.c in the Linux kernel before 4.4 does not reset the PIT counter values during state restoration, which allows guest OS users to cause a denial of service (divide-by-zero error and host OS crash) via a zero value, related to the kvm_vm_ioctl_set_pit and kvm_vm_ioc
CVE-2013-4312	Med	6.2	< 3.0.101-0.47.86.1	3.0.101-0.47.86.1	Feb 8, 2016	The Linux kernel before 4.4.1 allows local users to bypass file-descriptor limits and cause a denial of service (memory consumption) by sending each descriptor over a UNIX socket before closing it, related to net/unix/af_unix.c and net/unix/garbage.c.
CVE-2015-7833		—	< 3.0.101-0.47.86.1	3.0.101-0.47.86.1	Oct 19, 2015	The usbvision driver in the Linux kernel package 3.10.0-123.20.1.el7 through 3.10.0-229.14.1.el7 in Red Hat Enterprise Linux (RHEL) 7.1 allows physically proximate attackers to cause a denial of service (panic) via a nonzero bInterfaceNumber value in a USB device descriptor.
CVE-2015-5156		—	< 3.0.101-0.47.106.22.1	3.0.101-0.47.106.22.1	Oct 19, 2015	The virtnet_probe function in drivers/net/virtio_net.c in the Linux kernel before 4.2 attempts to support a FRAGLIST feature without proper memory allocation, which allows guest OS users to cause a denial of service (buffer overflow and memory corruption) via a crafted sequence o
CVE-2004-0230		—	< 3.0.101-0.47.96.1	3.0.101-0.47.96.1	May 5, 2004	TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, suc

CVE-2016-4805HigMay 23, 2016
affected < 3.0.101-0.47.86.1fixed 3.0.101-0.47.86.1
Use-after-free vulnerability in drivers/net/ppp/ppp_generic.c in the Linux kernel before 4.5.2 allows local users to cause a denial of service (memory corruption and system crash, or spinlock) or possibly have unspecified other impact by removing a network namespace, related to t
CVE-2016-4580HigMay 23, 2016
affected < 3.0.101-0.47.86.1fixed 3.0.101-0.47.86.1
The x25_negotiate_facilities function in net/x25/x25_facilities.c in the Linux kernel before 4.5.5 does not properly initialize a certain data structure, which allows attackers to obtain sensitive information from kernel stack memory via an X.25 Call Request.
CVE-2016-4578MedMay 23, 2016
affected < 3.0.101-0.47.86.1fixed 3.0.101-0.47.86.1
sound/core/timer.c in the Linux kernel through 4.6 does not initialize certain r1 data structures, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface, related to the (1) snd_timer_user_ccallback and (2) sn
CVE-2016-4569MedMay 23, 2016
affected < 3.0.101-0.47.86.1fixed 3.0.101-0.47.86.1
The snd_timer_user_params function in sound/core/timer.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface.
CVE-2016-4565HigMay 23, 2016
affected < 3.0.101-0.47.86.1fixed 3.0.101-0.47.86.1
The InfiniBand (aka IB) stack in the Linux kernel before 4.5.3 incorrectly relies on the write system call, which allows local users to cause a denial of service (kernel memory write operation) or possibly have unspecified other impact via a uAPI interface.
CVE-2016-4486LowMay 23, 2016
affected < 3.0.101-0.47.86.1fixed 3.0.101-0.47.86.1
The rtnl_fill_link_ifmap function in net/core/rtnetlink.c in the Linux kernel before 4.5.5 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory by reading a Netlink message.
CVE-2016-4485HigMay 23, 2016
affected < 3.0.101-0.47.86.1fixed 3.0.101-0.47.86.1
The llc_cmsg_rcv function in net/llc/af_llc.c in the Linux kernel before 4.5.5 does not initialize a certain data structure, which allows attackers to obtain sensitive information from kernel stack memory by reading a message.
CVE-2016-4482MedMay 23, 2016
affected < 3.0.101-0.47.86.1fixed 3.0.101-0.47.86.1
The proc_connectinfo function in drivers/usb/core/devio.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted USBDEVFS_CONNECTINFO ioctl call.
CVE-2016-2187MedMay 2, 2016
affected < 3.0.101-0.47.86.1fixed 3.0.101-0.47.86.1
The gtco_probe function in drivers/input/tablet/gtco.c in the Linux kernel through 4.5.2 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device descriptor.
CVE-2016-2053MedMay 2, 2016
affected < 3.0.101-0.47.86.1fixed 3.0.101-0.47.86.1
The asn1_ber_decoder function in lib/asn1_decoder.c in the Linux kernel before 4.3 allows attackers to cause a denial of service (panic) via an ASN.1 BER file that lacks a public key, leading to mishandling by the public_key_verify_signature function in crypto/asymmetric_keys/pub
CVE-2015-1350MedMay 2, 2016
affected < 3.0.101-0.47.96.1fixed 3.0.101-0.47.96.1
The VFS subsystem in the Linux kernel 3.x provides an incomplete set of requirements for setattr operations that underspecifies removing extended privilege attributes, which allows local users to cause a denial of service (capability stripping) via a failed invocation of a system
CVE-2016-3134HigApr 27, 2016
affected < 3.0.101-0.47.86.1fixed 3.0.101-0.47.86.1
The netfilter subsystem in the Linux kernel through 4.5.2 does not validate certain offset fields, which allows local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE setsockopt call.
CVE-2016-0823MedMar 12, 2016
affected < 3.0.101-0.47.96.1fixed 3.0.101-0.47.96.1
The pagemap_open function in fs/proc/task_mmu.c in the Linux kernel before 3.19.3, as used in Android 6.0.1 before 2016-03-01, allows local users to obtain sensitive physical-address information by reading a pagemap file, aka Android internal bug 25739721.
CVE-2015-7513MedFeb 8, 2016
affected < 3.0.101-0.47.86.1fixed 3.0.101-0.47.86.1
arch/x86/kvm/x86.c in the Linux kernel before 4.4 does not reset the PIT counter values during state restoration, which allows guest OS users to cause a denial of service (divide-by-zero error and host OS crash) via a zero value, related to the kvm_vm_ioctl_set_pit and kvm_vm_ioc
CVE-2013-4312MedFeb 8, 2016
affected < 3.0.101-0.47.86.1fixed 3.0.101-0.47.86.1
The Linux kernel before 4.4.1 allows local users to bypass file-descriptor limits and cause a denial of service (memory consumption) by sending each descriptor over a UNIX socket before closing it, related to net/unix/af_unix.c and net/unix/garbage.c.
CVE-2015-7833Oct 19, 2015
affected < 3.0.101-0.47.86.1fixed 3.0.101-0.47.86.1
The usbvision driver in the Linux kernel package 3.10.0-123.20.1.el7 through 3.10.0-229.14.1.el7 in Red Hat Enterprise Linux (RHEL) 7.1 allows physically proximate attackers to cause a denial of service (panic) via a nonzero bInterfaceNumber value in a USB device descriptor.
CVE-2015-5156Oct 19, 2015
affected < 3.0.101-0.47.106.22.1fixed 3.0.101-0.47.106.22.1
The virtnet_probe function in drivers/net/virtio_net.c in the Linux kernel before 4.2 attempts to support a FRAGLIST feature without proper memory allocation, which allows guest OS users to cause a denial of service (buffer overflow and memory corruption) via a crafted sequence o
CVE-2004-0230May 5, 2004
affected < 3.0.101-0.47.96.1fixed 3.0.101-0.47.96.1
TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, suc

Page 10 of 10