SUSE-SU-2018:1761-1
- Source
- https://www.suse.com/support/update/announcement/2018/suse-su-20181761-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2018:1761-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2018:1761-1
- Upstream
- Related
- Published
- 2018-06-20T09:43:16Z
- Modified
- 2025-05-02T04:06:22.959631Z
- Summary
- Security update for the Linux Kernel
- Details
-
The SUSE Linux Enterprise 12 SP1 LTSS kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
- CVE-2018-3665: Prevent disclosure of FPU registers (including XMM and AVX registers) between processes. These registers might contain encryption keys when doing SSE accelerated AES enc/decryption (bsc#1087086)
- CVE-2018-5848: In the function wmisetie(), the length validation code did not handle unsigned integer overflow properly. As a result, a large value of the 'ie_len' argument could have caused a buffer overflow (bnc#1097356)
- CVE-2018-1000204: Prevent infoleak caused by incorrect handling of the SG_IO ioctl (bsc#1096728)
- CVE-2017-13305: Prevent information disclosure vulnerability in encrypted-keys (bsc#1094353)
- CVE-2018-1094: The ext4fillsuper function did not always initialize the crc32c checksum driver, which allowed attackers to cause a denial of service (ext4xattrinode_hash NULL pointer dereference and system crash) via a crafted ext4 image (bsc#1087007).
- CVE-2018-1093: The ext4validblock_bitmap function allowed attackers to cause a denial of service (out-of-bounds read and system crash) via a crafted ext4 image because balloc.c and ialloc.c do not validate bitmap block numbers (bsc#1087095).
- CVE-2018-1092: The ext4iget function mishandled the case of a root directory with a zero ilinkscount, which allowed attackers to cause a denial of service (ext4processfreeddata NULL pointer dereference and OOPS) via a crafted ext4 image (bsc#1087012).
- CVE-2018-1130: NULL pointer dereference in dccpwritexmit() function that allowed a local user to cause a denial of service by a number of certain crafted system calls (bsc#1092904)
- CVE-2018-5803: Prevent error in the 'sctpmake_chunk()' function when handling SCTP packets length that could have been exploited to cause a kernel crash (bnc#1083900)
- CVE-2018-7492: Prevent NULL pointer dereference in the net/rds/rdma.c _rdsrdmamap() function that allowed local attackers to cause a system panic and a denial-of-service, related to RDSGETMR and RDSGETMRFOR_DEST (bsc#1082962)
The following non-security bugs were fixed:
- Btrfs: fix unexpected balance crash due to BUG_ON (bsc#1038553).
- Fix excessive newline in /proc/*/status (bsc#1094823).
- KVM: x86: Sync back MSRIA32SPEC_CTRL to VCPU data structure (bsc#1096242, bsc#1096281).
- dm thin metadata: call precommit before saving the roots (bsc#1083382).
- dm thin: fix inability to discard blocks when in out-of-data-space mode (bsc#1083382).
- dm thin: fix missing out-of-data-space to write mode transition if blocks are released (bsc#1083382).
- dm thin: restore requested 'errorifno_space' setting on OODS to WRITE transition (bsc#1083382).
- dm: fix various targets to dmregistertarget after module __init resources created (bsc#1083382).
- kABI: work around BPF SSBD removal (bsc#1087082).
- kgraft/bnx2fc: Do not block kGraft in bnx2fcl2rcv kthread (bsc#1094033).
- mm, pagealloc: do not break _GFP_THISNODE by zonelist reset (bsc#1079152).
- usbip: usbip_host: fix NULL-ptr deref and use-after-free errors (bsc#1096480).
- usbip: usbiphost: fix bad unlock balance during stubprobe() (bsc#1096480).
- x86/boot: Fix early command-line parsing when matching at end (bsc#1096281).
- x86/boot: Fix early command-line parsing when partial word matches (bsc#1096281).
- x86/bugs: specctrl must be cleared from cpucaps_set when being disabled (bsc#1096140).
- x86/kaiser: export symbol kaisersetshadow_pgd() (bsc#1092813)
- xen-netfront: fix req_prod check to avoid RX hang when index wraps (bsc#1046610).
- References
-
- https://www.suse.com/support/update/announcement/2018/suse-su-20181761-1/
- https://bugzilla.suse.com/1038553
- https://bugzilla.suse.com/1046610
- https://bugzilla.suse.com/1079152
- https://bugzilla.suse.com/1082962
- https://bugzilla.suse.com/1083382
- https://bugzilla.suse.com/1083900
- https://bugzilla.suse.com/1087007
- https://bugzilla.suse.com/1087012
- https://bugzilla.suse.com/1087082
- https://bugzilla.suse.com/1087086
- https://bugzilla.suse.com/1087095
- https://bugzilla.suse.com/1092813
- https://bugzilla.suse.com/1092904
- https://bugzilla.suse.com/1094033
- https://bugzilla.suse.com/1094353
- https://bugzilla.suse.com/1094823
- https://bugzilla.suse.com/1096140
- https://bugzilla.suse.com/1096242
- https://bugzilla.suse.com/1096281
- https://bugzilla.suse.com/1096480
- https://bugzilla.suse.com/1096728
- https://bugzilla.suse.com/1097356
- https://www.suse.com/security/cve/CVE-2017-13305
- https://www.suse.com/security/cve/CVE-2018-1000204
- https://www.suse.com/security/cve/CVE-2018-1092
- https://www.suse.com/security/cve/CVE-2018-1093
- https://www.suse.com/security/cve/CVE-2018-1094
- https://www.suse.com/security/cve/CVE-2018-1130
- https://www.suse.com/security/cve/CVE-2018-3665
- https://www.suse.com/security/cve/CVE-2018-5803
- https://www.suse.com/security/cve/CVE-2018-5848
- https://www.suse.com/security/cve/CVE-2018-7492
Affected packages
SUSE:Linux Enterprise Module for Public Cloud 12
kernel-ec2
SUSE:Linux Enterprise Server 12 SP1-LTSS
kernel-default
Package
- Name
- kernel-default
- Purl
- pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.12.74-60.64.96.1
Ecosystem specific
{
"binaries": [
{
"kernel-xen": "3.12.74-60.64.96.1",
"kernel-xen-base": "3.12.74-60.64.96.1",
"kernel-syms": "3.12.74-60.64.96.1",
"kernel-xen-devel": "3.12.74-60.64.96.1",
"kgraft-patch-3_12_74-60_64_96-xen": "1-2.3.1",
"kernel-default": "3.12.74-60.64.96.1",
"kernel-macros": "3.12.74-60.64.96.1",
"kernel-devel": "3.12.74-60.64.96.1",
"kernel-default-man": "3.12.74-60.64.96.1",
"kgraft-patch-3_12_74-60_64_96-default": "1-2.3.1",
"kernel-default-devel": "3.12.74-60.64.96.1",
"kernel-default-base": "3.12.74-60.64.96.1",
"kernel-source": "3.12.74-60.64.96.1"
}
]
}kernel-source
Package
- Name
- kernel-source
- Purl
- pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.12.74-60.64.96.1
Ecosystem specific
{
"binaries": [
{
"kernel-xen": "3.12.74-60.64.96.1",
"kernel-xen-base": "3.12.74-60.64.96.1",
"kernel-syms": "3.12.74-60.64.96.1",
"kernel-xen-devel": "3.12.74-60.64.96.1",
"kgraft-patch-3_12_74-60_64_96-xen": "1-2.3.1",
"kernel-default": "3.12.74-60.64.96.1",
"kernel-macros": "3.12.74-60.64.96.1",
"kernel-devel": "3.12.74-60.64.96.1",
"kernel-default-man": "3.12.74-60.64.96.1",
"kgraft-patch-3_12_74-60_64_96-default": "1-2.3.1",
"kernel-default-devel": "3.12.74-60.64.96.1",
"kernel-default-base": "3.12.74-60.64.96.1",
"kernel-source": "3.12.74-60.64.96.1"
}
]
}kernel-syms
Package
- Name
- kernel-syms
- Purl
- pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.12.74-60.64.96.1
Ecosystem specific
{
"binaries": [
{
"kernel-xen": "3.12.74-60.64.96.1",
"kernel-xen-base": "3.12.74-60.64.96.1",
"kernel-syms": "3.12.74-60.64.96.1",
"kernel-xen-devel": "3.12.74-60.64.96.1",
"kgraft-patch-3_12_74-60_64_96-xen": "1-2.3.1",
"kernel-default": "3.12.74-60.64.96.1",
"kernel-macros": "3.12.74-60.64.96.1",
"kernel-devel": "3.12.74-60.64.96.1",
"kernel-default-man": "3.12.74-60.64.96.1",
"kgraft-patch-3_12_74-60_64_96-default": "1-2.3.1",
"kernel-default-devel": "3.12.74-60.64.96.1",
"kernel-default-base": "3.12.74-60.64.96.1",
"kernel-source": "3.12.74-60.64.96.1"
}
]
}kernel-xen
Package
- Name
- kernel-xen
- Purl
- pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.12.74-60.64.96.1
Ecosystem specific
{
"binaries": [
{
"kernel-xen": "3.12.74-60.64.96.1",
"kernel-xen-base": "3.12.74-60.64.96.1",
"kernel-syms": "3.12.74-60.64.96.1",
"kernel-xen-devel": "3.12.74-60.64.96.1",
"kgraft-patch-3_12_74-60_64_96-xen": "1-2.3.1",
"kernel-default": "3.12.74-60.64.96.1",
"kernel-macros": "3.12.74-60.64.96.1",
"kernel-devel": "3.12.74-60.64.96.1",
"kernel-default-man": "3.12.74-60.64.96.1",
"kgraft-patch-3_12_74-60_64_96-default": "1-2.3.1",
"kernel-default-devel": "3.12.74-60.64.96.1",
"kernel-default-base": "3.12.74-60.64.96.1",
"kernel-source": "3.12.74-60.64.96.1"
}
]
}kgraft-patch-SLE12-SP1_Update_29
Package
- Name
- kgraft-patch-SLE12-SP1_Update_29
- Purl
- pkg:rpm/suse/kgraft-patch-SLE12-SP1_Update_29&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1-2.3.1
Ecosystem specific
{
"binaries": [
{
"kernel-xen": "3.12.74-60.64.96.1",
"kernel-xen-base": "3.12.74-60.64.96.1",
"kernel-syms": "3.12.74-60.64.96.1",
"kernel-xen-devel": "3.12.74-60.64.96.1",
"kgraft-patch-3_12_74-60_64_96-xen": "1-2.3.1",
"kernel-default": "3.12.74-60.64.96.1",
"kernel-macros": "3.12.74-60.64.96.1",
"kernel-devel": "3.12.74-60.64.96.1",
"kernel-default-man": "3.12.74-60.64.96.1",
"kgraft-patch-3_12_74-60_64_96-default": "1-2.3.1",
"kernel-default-devel": "3.12.74-60.64.96.1",
"kernel-default-base": "3.12.74-60.64.96.1",
"kernel-source": "3.12.74-60.64.96.1"
}
]
}SUSE:Linux Enterprise Server for SAP Applications 12 SP1
kernel-default
Package
- Name
- kernel-default
- Purl
- pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.12.74-60.64.96.1
Ecosystem specific
{
"binaries": [
{
"kernel-xen": "3.12.74-60.64.96.1",
"kernel-xen-base": "3.12.74-60.64.96.1",
"kernel-syms": "3.12.74-60.64.96.1",
"kernel-xen-devel": "3.12.74-60.64.96.1",
"kgraft-patch-3_12_74-60_64_96-xen": "1-2.3.1",
"kernel-default": "3.12.74-60.64.96.1",
"kernel-macros": "3.12.74-60.64.96.1",
"kernel-devel": "3.12.74-60.64.96.1",
"kgraft-patch-3_12_74-60_64_96-default": "1-2.3.1",
"kernel-default-devel": "3.12.74-60.64.96.1",
"kernel-default-base": "3.12.74-60.64.96.1",
"kernel-source": "3.12.74-60.64.96.1"
}
]
}kernel-source
Package
- Name
- kernel-source
- Purl
- pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.12.74-60.64.96.1
Ecosystem specific
{
"binaries": [
{
"kernel-xen": "3.12.74-60.64.96.1",
"kernel-xen-base": "3.12.74-60.64.96.1",
"kernel-syms": "3.12.74-60.64.96.1",
"kernel-xen-devel": "3.12.74-60.64.96.1",
"kgraft-patch-3_12_74-60_64_96-xen": "1-2.3.1",
"kernel-default": "3.12.74-60.64.96.1",
"kernel-macros": "3.12.74-60.64.96.1",
"kernel-devel": "3.12.74-60.64.96.1",
"kgraft-patch-3_12_74-60_64_96-default": "1-2.3.1",
"kernel-default-devel": "3.12.74-60.64.96.1",
"kernel-default-base": "3.12.74-60.64.96.1",
"kernel-source": "3.12.74-60.64.96.1"
}
]
}kernel-syms
Package
- Name
- kernel-syms
- Purl
- pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.12.74-60.64.96.1
Ecosystem specific
{
"binaries": [
{
"kernel-xen": "3.12.74-60.64.96.1",
"kernel-xen-base": "3.12.74-60.64.96.1",
"kernel-syms": "3.12.74-60.64.96.1",
"kernel-xen-devel": "3.12.74-60.64.96.1",
"kgraft-patch-3_12_74-60_64_96-xen": "1-2.3.1",
"kernel-default": "3.12.74-60.64.96.1",
"kernel-macros": "3.12.74-60.64.96.1",
"kernel-devel": "3.12.74-60.64.96.1",
"kgraft-patch-3_12_74-60_64_96-default": "1-2.3.1",
"kernel-default-devel": "3.12.74-60.64.96.1",
"kernel-default-base": "3.12.74-60.64.96.1",
"kernel-source": "3.12.74-60.64.96.1"
}
]
}kernel-xen
Package
- Name
- kernel-xen
- Purl
- pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.12.74-60.64.96.1
Ecosystem specific
{
"binaries": [
{
"kernel-xen": "3.12.74-60.64.96.1",
"kernel-xen-base": "3.12.74-60.64.96.1",
"kernel-syms": "3.12.74-60.64.96.1",
"kernel-xen-devel": "3.12.74-60.64.96.1",
"kgraft-patch-3_12_74-60_64_96-xen": "1-2.3.1",
"kernel-default": "3.12.74-60.64.96.1",
"kernel-macros": "3.12.74-60.64.96.1",
"kernel-devel": "3.12.74-60.64.96.1",
"kgraft-patch-3_12_74-60_64_96-default": "1-2.3.1",
"kernel-default-devel": "3.12.74-60.64.96.1",
"kernel-default-base": "3.12.74-60.64.96.1",
"kernel-source": "3.12.74-60.64.96.1"
}
]
}kgraft-patch-SLE12-SP1_Update_29
Package
- Name
- kgraft-patch-SLE12-SP1_Update_29
- Purl
- pkg:rpm/suse/kgraft-patch-SLE12-SP1_Update_29&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1-2.3.1
Ecosystem specific
{
"binaries": [
{
"kernel-xen": "3.12.74-60.64.96.1",
"kernel-xen-base": "3.12.74-60.64.96.1",
"kernel-syms": "3.12.74-60.64.96.1",
"kernel-xen-devel": "3.12.74-60.64.96.1",
"kgraft-patch-3_12_74-60_64_96-xen": "1-2.3.1",
"kernel-default": "3.12.74-60.64.96.1",
"kernel-macros": "3.12.74-60.64.96.1",
"kernel-devel": "3.12.74-60.64.96.1",
"kgraft-patch-3_12_74-60_64_96-default": "1-2.3.1",
"kernel-default-devel": "3.12.74-60.64.96.1",
"kernel-default-base": "3.12.74-60.64.96.1",
"kernel-source": "3.12.74-60.64.96.1"
}
]
}