rpm package

suse/kernel-xen&distro=SUSE Linux Enterprise Server 11 SP3-LTSS

pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSS

Vulnerabilities (238)

CVE	Sev	CVSS	KEV	Affected versions	Fixed in	Published	Description
CVE-2017-16536	Med	6.6		< 3.0.101-0.47.106.11.1	3.0.101-0.47.106.11.1	Nov 4, 2017	The cx231xx_usb_probe function in drivers/media/usb/cx231xx/cx231xx-cards.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.
CVE-2017-16535	Med	6.6		< 3.0.101-0.47.106.11.1	3.0.101-0.47.106.11.1	Nov 4, 2017	The usb_get_bos_descriptor function in drivers/usb/core/config.c in the Linux kernel before 4.13.10 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.
CVE-2017-16534	Med	6.8		< 3.0.101-0.47.106.11.1	3.0.101-0.47.106.11.1	Nov 4, 2017	The cdc_parse_cdc_header function in drivers/usb/core/message.c in the Linux kernel before 4.13.6 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.
CVE-2017-16533	Med	6.6		< 3.0.101-0.47.106.59.1	3.0.101-0.47.106.59.1	Nov 4, 2017	The usbhid_parse function in drivers/hid/usbhid/hid-core.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.
CVE-2017-16531	Med	6.6		< 3.0.101-0.47.106.11.1	3.0.101-0.47.106.11.1	Nov 4, 2017	drivers/usb/core/config.c in the Linux kernel before 4.13.6 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device, related to the USB_DT_INTERFACE_ASSOCIATION descriptor.
CVE-2017-16529	Med	6.6		< 3.0.101-0.47.106.11.1	3.0.101-0.47.106.11.1	Nov 4, 2017	The snd_usb_create_streams function in sound/usb/card.c in the Linux kernel before 4.13.6 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.
CVE-2017-16527	Med	6.6		< 3.0.101-0.47.106.11.1	3.0.101-0.47.106.11.1	Nov 4, 2017	sound/usb/mixer.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service (snd_usb_mixer_interrupt use-after-free and system crash) or possibly have unspecified other impact via a crafted USB device.
CVE-2017-16525	Med	6.6		< 3.0.101-0.47.106.11.1	3.0.101-0.47.106.11.1	Nov 4, 2017	The usb_serial_console_disconnect function in drivers/usb/serial/console.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service (use-after-free and system crash) or possibly have unspecified other impact via a crafted USB device, related to disconnect
CVE-2017-13080	Med	5.3		< 3.0.101-0.47.106.11.1	3.0.101-0.47.106.11.1	Oct 17, 2017	Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the group key handshake, allowing an attacker within radio range to replay frames from access points to clients.
CVE-2017-15265	Hig	7.0		< 3.0.101-0.47.106.11.1	3.0.101-0.47.106.11.1	Oct 16, 2017	Race condition in the ALSA subsystem in the Linux kernel before 4.13.8 allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted /dev/snd/seq ioctl calls, related to sound/core/seq/seq_clientmgr.c and sound/core/seq/seq
CVE-2017-15274	Med	5.5		< 3.0.101-0.47.106.11.1	3.0.101-0.47.106.11.1	Oct 12, 2017	security/keys/keyctl.c in the Linux kernel before 4.11.5 does not consider the case of a NULL payload in conjunction with a nonzero length value, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) via a crafted add_key or keyctl system call,
CVE-2017-1000253	Hig	7.8	KEV	< 3.0.101-0.47.106.8.1	3.0.101-0.47.106.8.1	Oct 5, 2017	Linux distributions that have not patched their long-term kernels with https://git.kernel.org/linus/a87938b2e246b81b4fb713edb371a9fa3c5c3c86 (committed on April 14, 2015). This kernel vulnerability was fixed in April 2015 by commit a87938b2e246b81b4fb713edb371a9fa3c5c3c86 (backpo
CVE-2017-1000112	Hig	7.0		< 3.0.101-0.47.106.5.1	3.0.101-0.47.106.5.1	Oct 5, 2017	Linux kernel: Exploitable memory corruption due to UFO to non-UFO path switch. When building a UFO packet with MSG_MORE __ip_append_data() calls ip_ufo_append_data() to append. However in between two send() calls, the append path can be switched from UFO to non-UFO one, which lea
CVE-2017-14340	Med	5.5		< 3.0.101-0.47.106.11.1	3.0.101-0.47.106.11.1	Sep 15, 2017	The XFS_IS_REALTIME_INODE macro in fs/xfs/xfs_linux.h in the Linux kernel before 4.13.2 does not verify that a filesystem has a realtime device, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) via vectors related to setting an RHINHERIT f
CVE-2017-1000251	Hig	8.0		< 3.0.101-0.47.106.11.1	3.0.101-0.47.106.11.1	Sep 12, 2017	The native Bluetooth stack in the Linux Kernel (BlueZ), starting at the Linux kernel version 2.6.32 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel spa
CVE-2017-14140	Med	5.5		< 3.0.101-0.47.106.11.1	3.0.101-0.47.106.11.1	Sep 5, 2017	The move_pages system call in mm/migrate.c in the Linux kernel before 4.12.9 doesn't check the effective uid of the target process, enabling a local attacker to learn the memory layout of a setuid executable despite ASLR.
CVE-2017-14106	Med	5.5		< 3.0.101-0.47.106.11.1	3.0.101-0.47.106.11.1	Sep 1, 2017	The tcp_disconnect function in net/ipv4/tcp.c in the Linux kernel before 4.12 allows local users to cause a denial of service (__tcp_select_window divide-by-zero error and system crash) by triggering a disconnect within a certain tcp_recvmsg code path.
CVE-2017-14051	Med	4.4		< 3.0.101-0.47.106.5.1	3.0.101-0.47.106.5.1	Aug 31, 2017	An integer overflow in the qla2x00_sysfs_write_optrom_ctl function in drivers/scsi/qla2xxx/qla_attr.c in the Linux kernel through 4.12.10 allows local users to cause a denial of service (memory corruption and system crash) by leveraging root access.
CVE-2017-10661	Hig	7.0		< 3.0.101-0.47.106.5.1	3.0.101-0.47.106.5.1	Aug 19, 2017	Race condition in fs/timerfd.c in the Linux kernel before 4.10.15 allows local users to gain privileges or cause a denial of service (list corruption or use-after-free) via simultaneous file-descriptor operations that leverage improper might_cancel queueing.
CVE-2017-12762	Cri	9.8		< 3.0.101-0.47.106.5.1	3.0.101-0.47.106.5.1	Aug 9, 2017	In /drivers/isdn/i4l/isdn_net.c: A user-controlled buffer is copied into a local buffer of constant size using strcpy without a length check which can cause a buffer overflow. This affects the Linux kernel 4.9-stable tree, 4.12-stable tree, 3.18-stable tree, and 4.4-stable tree.

CVE-2017-16536MedNov 4, 2017
affected < 3.0.101-0.47.106.11.1fixed 3.0.101-0.47.106.11.1
The cx231xx_usb_probe function in drivers/media/usb/cx231xx/cx231xx-cards.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.
CVE-2017-16535MedNov 4, 2017
affected < 3.0.101-0.47.106.11.1fixed 3.0.101-0.47.106.11.1
The usb_get_bos_descriptor function in drivers/usb/core/config.c in the Linux kernel before 4.13.10 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.
CVE-2017-16534MedNov 4, 2017
affected < 3.0.101-0.47.106.11.1fixed 3.0.101-0.47.106.11.1
The cdc_parse_cdc_header function in drivers/usb/core/message.c in the Linux kernel before 4.13.6 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.
CVE-2017-16533MedNov 4, 2017
affected < 3.0.101-0.47.106.59.1fixed 3.0.101-0.47.106.59.1
The usbhid_parse function in drivers/hid/usbhid/hid-core.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.
CVE-2017-16531MedNov 4, 2017
affected < 3.0.101-0.47.106.11.1fixed 3.0.101-0.47.106.11.1
drivers/usb/core/config.c in the Linux kernel before 4.13.6 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device, related to the USB_DT_INTERFACE_ASSOCIATION descriptor.
CVE-2017-16529MedNov 4, 2017
affected < 3.0.101-0.47.106.11.1fixed 3.0.101-0.47.106.11.1
The snd_usb_create_streams function in sound/usb/card.c in the Linux kernel before 4.13.6 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.
CVE-2017-16527MedNov 4, 2017
affected < 3.0.101-0.47.106.11.1fixed 3.0.101-0.47.106.11.1
sound/usb/mixer.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service (snd_usb_mixer_interrupt use-after-free and system crash) or possibly have unspecified other impact via a crafted USB device.
CVE-2017-16525MedNov 4, 2017
affected < 3.0.101-0.47.106.11.1fixed 3.0.101-0.47.106.11.1
The usb_serial_console_disconnect function in drivers/usb/serial/console.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service (use-after-free and system crash) or possibly have unspecified other impact via a crafted USB device, related to disconnect
CVE-2017-13080MedOct 17, 2017
affected < 3.0.101-0.47.106.11.1fixed 3.0.101-0.47.106.11.1
Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the group key handshake, allowing an attacker within radio range to replay frames from access points to clients.
CVE-2017-15265HigOct 16, 2017
affected < 3.0.101-0.47.106.11.1fixed 3.0.101-0.47.106.11.1
Race condition in the ALSA subsystem in the Linux kernel before 4.13.8 allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted /dev/snd/seq ioctl calls, related to sound/core/seq/seq_clientmgr.c and sound/core/seq/seq
CVE-2017-15274MedOct 12, 2017
affected < 3.0.101-0.47.106.11.1fixed 3.0.101-0.47.106.11.1
security/keys/keyctl.c in the Linux kernel before 4.11.5 does not consider the case of a NULL payload in conjunction with a nonzero length value, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) via a crafted add_key or keyctl system call,
CVE-2017-1000253HigKEVOct 5, 2017
affected < 3.0.101-0.47.106.8.1fixed 3.0.101-0.47.106.8.1
Linux distributions that have not patched their long-term kernels with https://git.kernel.org/linus/a87938b2e246b81b4fb713edb371a9fa3c5c3c86 (committed on April 14, 2015). This kernel vulnerability was fixed in April 2015 by commit a87938b2e246b81b4fb713edb371a9fa3c5c3c86 (backpo
CVE-2017-1000112HigOct 5, 2017
affected < 3.0.101-0.47.106.5.1fixed 3.0.101-0.47.106.5.1
Linux kernel: Exploitable memory corruption due to UFO to non-UFO path switch. When building a UFO packet with MSG_MORE __ip_append_data() calls ip_ufo_append_data() to append. However in between two send() calls, the append path can be switched from UFO to non-UFO one, which lea
CVE-2017-14340MedSep 15, 2017
affected < 3.0.101-0.47.106.11.1fixed 3.0.101-0.47.106.11.1
The XFS_IS_REALTIME_INODE macro in fs/xfs/xfs_linux.h in the Linux kernel before 4.13.2 does not verify that a filesystem has a realtime device, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) via vectors related to setting an RHINHERIT f
CVE-2017-1000251HigSep 12, 2017
affected < 3.0.101-0.47.106.11.1fixed 3.0.101-0.47.106.11.1
The native Bluetooth stack in the Linux Kernel (BlueZ), starting at the Linux kernel version 2.6.32 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel spa
CVE-2017-14140MedSep 5, 2017
affected < 3.0.101-0.47.106.11.1fixed 3.0.101-0.47.106.11.1
The move_pages system call in mm/migrate.c in the Linux kernel before 4.12.9 doesn't check the effective uid of the target process, enabling a local attacker to learn the memory layout of a setuid executable despite ASLR.
CVE-2017-14106MedSep 1, 2017
affected < 3.0.101-0.47.106.11.1fixed 3.0.101-0.47.106.11.1
The tcp_disconnect function in net/ipv4/tcp.c in the Linux kernel before 4.12 allows local users to cause a denial of service (__tcp_select_window divide-by-zero error and system crash) by triggering a disconnect within a certain tcp_recvmsg code path.
CVE-2017-14051MedAug 31, 2017
affected < 3.0.101-0.47.106.5.1fixed 3.0.101-0.47.106.5.1
An integer overflow in the qla2x00_sysfs_write_optrom_ctl function in drivers/scsi/qla2xxx/qla_attr.c in the Linux kernel through 4.12.10 allows local users to cause a denial of service (memory corruption and system crash) by leveraging root access.
CVE-2017-10661HigAug 19, 2017
affected < 3.0.101-0.47.106.5.1fixed 3.0.101-0.47.106.5.1
Race condition in fs/timerfd.c in the Linux kernel before 4.10.15 allows local users to gain privileges or cause a denial of service (list corruption or use-after-free) via simultaneous file-descriptor operations that leverage improper might_cancel queueing.
CVE-2017-12762CriAug 9, 2017
affected < 3.0.101-0.47.106.5.1fixed 3.0.101-0.47.106.5.1
In /drivers/isdn/i4l/isdn_net.c: A user-controlled buffer is copied into a local buffer of constant size using strcpy without a length check which can cause a buffer overflow. This affects the Linux kernel 4.9-stable tree, 4.12-stable tree, 3.18-stable tree, and 4.4-stable tree.

Page 5 of 12