VYPR

rpm package

suse/ocfs2&distro=SUSE Linux Enterprise High Availability Extension 11 SP4

pkg:rpm/suse/ocfs2&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2011%20SP4

Vulnerabilities (67)

  • CVE-2018-1000004MedJan 16, 2018
    affected < 1.6-0.28.5.6fixed 1.6-0.28.5.6

    In the Linux kernel 4.12, 3.10, 2.6 and possibly earlier versions a race condition vulnerability exists in the sound system, this can lead to a deadlock and denial of service condition.

  • CVE-2017-13215HigJan 12, 2018
    affected < 1.6-0.28.5.6fixed 1.6-0.28.5.6

    A elevation of privilege vulnerability in the Upstream kernel skcipher. Product: Android. Versions: Android kernel. Android ID: A-64386293. References: Upstream kernel.

  • CVE-2018-5333MedJan 11, 2018
    affected < 1.6-0.28.5.6fixed 1.6-0.28.5.6

    In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in net/rds/rdma.c mishandles cases where page pinning fails or an invalid address is supplied, leading to an rds_atomic_free_op NULL pointer dereference.

  • CVE-2018-5332HigJan 11, 2018
    affected < 1.6-0.28.5.6fixed 1.6-0.28.5.6

    In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).

  • CVE-2017-5715MedJan 4, 2018
    affected < 1.6-0.28.5.6fixed 1.6-0.28.5.6

    Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.

  • CVE-2017-18017CriJan 3, 2018
    affected < 1.6-0.28.5.6fixed 1.6-0.28.5.6

    The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other impact by leveraging the presenc

  • CVE-2017-17741MedDec 18, 2017
    affected < 1.6-0.28.5.6fixed 1.6-0.28.5.6

    The KVM implementation in the Linux kernel through 4.14.7 allows attackers to obtain potentially sensitive information from kernel memory, aka a write_mmio stack-based out-of-bounds read, related to arch/x86/kvm/x86.c and include/trace/events/kvm.h.

  • CVE-2017-7533HigAug 5, 2017
    affected < 1.6-0.28.3.4fixed 1.6-0.28.3.4

    Race condition in the fsnotify implementation in the Linux kernel through 4.12.4 allows local users to gain privileges or cause a denial of service (memory corruption) via a crafted application that leverages simultaneous execution of the inotify_handle_event and vfs_rename funct

  • CVE-2017-7542MedJul 21, 2017
    affected < 1.6-0.28.3.4fixed 1.6-0.28.3.4

    The ip6_find_1stfragopt function in net/ipv6/output_core.c in the Linux kernel through 4.12.3 allows local users to cause a denial of service (integer overflow and infinite loop) by leveraging the ability to open a raw socket.

  • CVE-2017-11473HigJul 20, 2017
    affected < 1.6-0.28.3.4fixed 1.6-0.28.3.4

    Buffer overflow in the mp_override_legacy_irq() function in arch/x86/kernel/acpi/boot.c in the Linux kernel through 3.2 allows local users to gain privileges via a crafted ACPI table.

  • CVE-2017-1000363HigJul 17, 2017
    affected < 1.6-0.28.3.4fixed 1.6-0.28.3.4

    Linux drivers/char/lp.c Out-of-Bounds Write. Due to a missing bounds check, and the fact that parport_ptr integer is static, a 'secure boot' kernel command line adversary (can happen due to bootloader vulns, e.g. Google Nexus 6's CVE-2016-10277, where due to a vulnerability the a

  • CVE-2017-11176HigJul 11, 2017
    affected < 1.6-0.28.3.4fixed 1.6-0.28.3.4

    The mq_notify function in the Linux kernel through 4.11.9 does not set the sock pointer to NULL upon entry into the retry logic. During a user-space close of a Netlink socket, it allows attackers to cause a denial of service (use-after-free) or possibly have unspecified other imp

  • CVE-2017-1000365HigJun 19, 2017
    affected < 1.6-0.28.3.4fixed 1.6-0.28.3.4

    The Linux Kernel imposes a size restriction on the arguments and environmental strings passed through RLIMIT_STACK/RLIM_INFINITY (1/4 of the size), but does not take the argument and environment pointers into account, which allows attackers to bypass this limitation. This affects

  • CVE-2017-1000380MedJun 17, 2017
    affected < 1.6-0.28.3.4fixed 1.6-0.28.3.4

    sound/core/timer.c in the Linux kernel before 4.11.5 is vulnerable to a data race in the ALSA /dev/snd/timer driver resulting in local users being able to read information belonging to other users, i.e., uninitialized memory contents may be disclosed when a read and an ioctl happ

  • CVE-2017-9242MedMay 27, 2017
    affected < 1.6-0.28.3.4fixed 1.6-0.28.3.4

    The __ip6_append_data function in net/ipv6/ip6_output.c in the Linux kernel through 4.11.3 is too late in checking whether an overwrite of an skb data structure may occur, which allows local users to cause a denial of service (system crash) via crafted system calls.

  • CVE-2017-9077HigMay 19, 2017
    affected < 1.6-0.28.3.4fixed 1.6-0.28.3.4

    The tcp_v6_syn_recv_sock function in net/ipv6/tcp_ipv6.c in the Linux kernel through 4.11.1 mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890.

  • CVE-2017-9076HigMay 19, 2017
    affected < 1.6-0.28.3.4fixed 1.6-0.28.3.4

    The dccp_v6_request_recv_sock function in net/dccp/ipv6.c in the Linux kernel through 4.11.1 mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890.

  • CVE-2017-9075HigMay 19, 2017
    affected < 1.6-0.28.3.4fixed 1.6-0.28.3.4

    The sctp_v6_create_accept_sk function in net/sctp/ipv6.c in the Linux kernel through 4.11.1 mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890.

  • CVE-2017-9074HigMay 19, 2017
    affected < 1.6-0.28.3.4fixed 1.6-0.28.3.4

    The IPv6 fragmentation implementation in the Linux kernel through 4.11.1 does not consider that the nexthdr field may be associated with an invalid option, which allows local users to cause a denial of service (out-of-bounds read and BUG) or possibly have unspecified other impact

  • CVE-2017-7487HigMay 14, 2017
    affected < 1.6-0.28.3.4fixed 1.6-0.28.3.4

    The ipxitf_ioctl function in net/ipx/af_ipx.c in the Linux kernel through 4.11.1 mishandles reference counts, which allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via a failed SIOCGIFADDR ioctl call for an IPX interface.