rpm package

suse/lttng-modules&distro=SUSE Linux Enterprise Server 12 SP1-LTSS

pkg:rpm/suse/lttng-modules&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSS

Vulnerabilities (39)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2018-19407		—	< 2.7.0-4.4.1	2.7.0-4.4.1	Nov 21, 2018	The vcpu_scan_ioapic function in arch/x86/kvm/x86.c in the Linux kernel through 4.19.2 allows local users to cause a denial of service (NULL pointer dereference and BUG) via crafted system calls that reach a situation where ioapic is uninitialized.
CVE-2018-9516		—	< 2.7.0-4.4.1	2.7.0-4.4.1	Nov 6, 2018	In hid_debug_events_read of drivers/hid/hid-debug.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android
CVE-2018-18281		—	< 2.7.0-4.4.1	2.7.0-4.4.1	Oct 30, 2018	Since Linux kernel version 3.2, the mremap() syscall performs TLB flushes after dropping pagetable locks. If a syscall such as ftruncate() removes entries from the pagetables of a task that is in the middle of mremap(), a stale TLB entry can remain for a short time that permits a
CVE-2018-18710		—	< 2.7.0-4.4.1	2.7.0-4.4.1	Oct 27, 2018	An issue was discovered in the Linux kernel through 4.19. An information leak in cdrom_ioctl_select_disc in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking. This is similar to CV
CVE-2018-18690		—	< 2.7.0-4.4.1	2.7.0-4.4.1	Oct 26, 2018	In the Linux kernel before 4.17, a local attacker able to set attributes on an xfs filesystem could make this filesystem non-operational until the next mount by triggering an unchecked error condition during an xfs attribute change, because xfs_attr_shortform_addname in fs/xfs/li
CVE-2018-18386		—	< 2.7.0-4.4.1	2.7.0-4.4.1	Oct 17, 2018	drivers/tty/n_tty.c in the Linux kernel before 4.14.11 allows local attackers (who are able to access pseudo terminals) to hang/block further usage of any pseudo terminal devices due to an EXTPROC versus ICANON confusion in TIOCINQ.
CVE-2018-14633		—	< 2.7.0-4.4.1	2.7.0-4.4.1	Sep 25, 2018	A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in the Linux kernel in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes
CVE-2018-5391		—	< 2.7.0-4.4.1	2.7.0-4.4.1	Sep 6, 2018	The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in I
CVE-2018-15572		—	< 2.7.0-4.4.1	2.7.0-4.4.1	Aug 20, 2018	The spectre_v2_select_mitigation function in arch/x86/kernel/cpu/bugs.c in the Linux kernel before 4.18.1 does not always fill RSB upon a context switch, which makes it easier for attackers to conduct userspace-userspace spectreRSB attacks.
CVE-2018-3646		—	< 2.7.0-4.2.1	2.7.0-4.2.1	Aug 14, 2018	Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis
CVE-2018-3620		—	< 2.7.0-4.2.1	2.7.0-4.2.1	Aug 14, 2018	Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault and a side-channel analysis.
CVE-2018-14734		—	< 2.7.0-4.2.1	2.7.0-4.2.1	Jul 29, 2018	drivers/infiniband/core/ucma.c in the Linux kernel through 4.17.11 allows ucma_leave_multicast to access a certain data structure after a cleanup step in ucma_process_join, which allows attackers to cause a denial of service (use-after-free).
CVE-2018-13406		—	< 2.7.0-4.2.1	2.7.0-4.2.1	Jul 6, 2018	An integer overflow in the uvesafb_setcmap function in drivers/video/fbdev/uvesafb.c in the Linux kernel before 4.17.4 could result in local attackers being able to crash the kernel or potentially elevate privileges because kmalloc_array is not used.
CVE-2018-13405		—	< 2.7.0-4.2.1	2.7.0-4.2.1	Jul 6, 2018	The inode_init_owner function in fs/inode.c in the Linux kernel through 3.16 allows local users to create files with an unintended group ownership, in a scenario where a directory is SGID to a certain group and is writable by a user who is not a member of that group. Here, the no
CVE-2018-13053		—	< 2.7.0-4.2.1	2.7.0-4.2.1	Jul 2, 2018	The alarm_timer_nsleep function in kernel/time/alarmtimer.c in the Linux kernel through 4.17.3 has an integer overflow via a large relative timeout because ktime_add_safe is not used.
CVE-2017-1000407	Hig	7.4	< 2.7.0-4.4.1	2.7.0-4.4.1	Dec 11, 2017	The Linux Kernel 2.6.32 and later are affected by a denial of service, by flooding the diagnostic port 0x80 an exception can be triggered leading to a kernel panic.
CVE-2017-16533	Med	6.6	< 2.7.0-4.4.1	2.7.0-4.4.1	Nov 4, 2017	The usbhid_parse function in drivers/hid/usbhid/hid-core.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.
CVE-2017-7472	Med	5.5	< 2.7.0-4.4.1	2.7.0-4.4.1	May 11, 2017	The KEYS subsystem in the Linux kernel before 4.10.13 allows local users to cause a denial of service (memory consumption) via a series of KEY_REQKEY_DEFL_THREAD_KEYRING keyctl_set_reqkey_keyring calls.
CVE-2017-7273	Med	6.6	< 2.7.0-4.4.1	2.7.0-4.4.1	Mar 27, 2017	The cp_report_fixup function in drivers/hid/hid-cypress.c in the Linux kernel 3.2 and 4.x before 4.9.4 allows physically proximate attackers to cause a denial of service (integer underflow) or possibly have unspecified other impact via a crafted HID report.

CVE-2018-19407Nov 21, 2018
affected < 2.7.0-4.4.1fixed 2.7.0-4.4.1
The vcpu_scan_ioapic function in arch/x86/kvm/x86.c in the Linux kernel through 4.19.2 allows local users to cause a denial of service (NULL pointer dereference and BUG) via crafted system calls that reach a situation where ioapic is uninitialized.
CVE-2018-9516Nov 6, 2018
affected < 2.7.0-4.4.1fixed 2.7.0-4.4.1
In hid_debug_events_read of drivers/hid/hid-debug.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android
CVE-2018-18281Oct 30, 2018
affected < 2.7.0-4.4.1fixed 2.7.0-4.4.1
Since Linux kernel version 3.2, the mremap() syscall performs TLB flushes after dropping pagetable locks. If a syscall such as ftruncate() removes entries from the pagetables of a task that is in the middle of mremap(), a stale TLB entry can remain for a short time that permits a
CVE-2018-18710Oct 27, 2018
affected < 2.7.0-4.4.1fixed 2.7.0-4.4.1
An issue was discovered in the Linux kernel through 4.19. An information leak in cdrom_ioctl_select_disc in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking. This is similar to CV
CVE-2018-18690Oct 26, 2018
affected < 2.7.0-4.4.1fixed 2.7.0-4.4.1
In the Linux kernel before 4.17, a local attacker able to set attributes on an xfs filesystem could make this filesystem non-operational until the next mount by triggering an unchecked error condition during an xfs attribute change, because xfs_attr_shortform_addname in fs/xfs/li
CVE-2018-18386Oct 17, 2018
affected < 2.7.0-4.4.1fixed 2.7.0-4.4.1
drivers/tty/n_tty.c in the Linux kernel before 4.14.11 allows local attackers (who are able to access pseudo terminals) to hang/block further usage of any pseudo terminal devices due to an EXTPROC versus ICANON confusion in TIOCINQ.
CVE-2018-14633Sep 25, 2018
affected < 2.7.0-4.4.1fixed 2.7.0-4.4.1
A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in the Linux kernel in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes
CVE-2018-5391Sep 6, 2018
affected < 2.7.0-4.4.1fixed 2.7.0-4.4.1
The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in I
CVE-2018-15572Aug 20, 2018
affected < 2.7.0-4.4.1fixed 2.7.0-4.4.1
The spectre_v2_select_mitigation function in arch/x86/kernel/cpu/bugs.c in the Linux kernel before 4.18.1 does not always fill RSB upon a context switch, which makes it easier for attackers to conduct userspace-userspace spectreRSB attacks.
CVE-2018-3646Aug 14, 2018
affected < 2.7.0-4.2.1fixed 2.7.0-4.2.1
Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis
CVE-2018-3620Aug 14, 2018
affected < 2.7.0-4.2.1fixed 2.7.0-4.2.1
Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault and a side-channel analysis.
CVE-2018-14734Jul 29, 2018
affected < 2.7.0-4.2.1fixed 2.7.0-4.2.1
drivers/infiniband/core/ucma.c in the Linux kernel through 4.17.11 allows ucma_leave_multicast to access a certain data structure after a cleanup step in ucma_process_join, which allows attackers to cause a denial of service (use-after-free).
CVE-2018-13406Jul 6, 2018
affected < 2.7.0-4.2.1fixed 2.7.0-4.2.1
An integer overflow in the uvesafb_setcmap function in drivers/video/fbdev/uvesafb.c in the Linux kernel before 4.17.4 could result in local attackers being able to crash the kernel or potentially elevate privileges because kmalloc_array is not used.
CVE-2018-13405Jul 6, 2018
affected < 2.7.0-4.2.1fixed 2.7.0-4.2.1
The inode_init_owner function in fs/inode.c in the Linux kernel through 3.16 allows local users to create files with an unintended group ownership, in a scenario where a directory is SGID to a certain group and is writable by a user who is not a member of that group. Here, the no
CVE-2018-13053Jul 2, 2018
affected < 2.7.0-4.2.1fixed 2.7.0-4.2.1
The alarm_timer_nsleep function in kernel/time/alarmtimer.c in the Linux kernel through 4.17.3 has an integer overflow via a large relative timeout because ktime_add_safe is not used.
CVE-2017-1000407HigDec 11, 2017
affected < 2.7.0-4.4.1fixed 2.7.0-4.4.1
The Linux Kernel 2.6.32 and later are affected by a denial of service, by flooding the diagnostic port 0x80 an exception can be triggered leading to a kernel panic.
CVE-2017-16533MedNov 4, 2017
affected < 2.7.0-4.4.1fixed 2.7.0-4.4.1
The usbhid_parse function in drivers/hid/usbhid/hid-core.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.
CVE-2017-7472MedMay 11, 2017
affected < 2.7.0-4.4.1fixed 2.7.0-4.4.1
The KEYS subsystem in the Linux kernel before 4.10.13 allows local users to cause a denial of service (memory consumption) via a series of KEY_REQKEY_DEFL_THREAD_KEYRING keyctl_set_reqkey_keyring calls.
CVE-2017-7273MedMar 27, 2017
affected < 2.7.0-4.4.1fixed 2.7.0-4.4.1
The cp_report_fixup function in drivers/hid/hid-cypress.c in the Linux kernel 3.2 and 4.x before 4.9.4 allows physically proximate attackers to cause a denial of service (integer underflow) or possibly have unspecified other impact via a crafted HID report.

Page 2 of 2