SUSE-SU-2018:2177-1

Source
https://www.suse.com/support/update/announcement/2018/suse-su-20182177-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2018:2177-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2018:2177-1
Related
Published
2018-08-02T14:40:22Z
Modified
2018-08-02T14:40:22Z
Summary
Security update for the Linux Kernel
Details

The SUSE Linux Enterprise 11 SP4 RT kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • CVE-2014-3688: The SCTP implementation allowed remote attackers to cause a denial of service (memory consumption) by triggering a large number of chunks in an association's output queue (bsc#902351)

The following non-security bugs were fixed:

  • ALSA: hda/ca0132: fix build failure when a local macro is defined (bsc#1045538).
  • ALSA: seq: Do not allow resizing pool in use (bsc#1045538).
  • Delete patches.fixes/0001-ipc-shm-Fix-shmat-mmap-nil-page-protection.patch (bsc# 1090078)
  • IB/mlx4: fix sprintf format warning (bnc#786036).
  • RDMA/mlx4: Discard unknown SQP work requests (bnc#786036).
  • USB: uss720: fix NULL-deref at probe (bnc#1047487).
  • bna: integer overflow bug in debugfs (bnc#780242).
  • e1000e: Ignore TSYNCRXCTL when getting I219 clock attributes (bug#923242).
  • e1000e: Undo e1000epmfreeze if _e1000shutdown fails (bug#909495).
  • fix a leak in /proc/schedstats (bsc#1094876).
  • ixgbe: Initialize 64-bit stats seqcounts (bnc#795301).
  • mm: fix the NULL mapping case in _isolatelru_page() (git-fixes).
  • module/retpoline: Warn about missing retpoline in module (bnc#1099177).
  • net/mlx4core: Fix error handling in mlx4initportinfo (bnc#786036).
  • net/mlx4_en: Change default QoS settings (bnc#786036).
  • net/mlx4en: Use _force to fix a sparse warning in TX datapath (bug#925105).
  • netxen: fix incorrect loop counter decrement (bnc#784815).
  • powerpc: Machine check interrupt is a non-maskable interrupt (bsc#1094244).
  • s390/qdio: do not merge ERROR output buffers (bnc#1099709).
  • s390/qeth: do not dump control cmd twice (bnc#1099709).
  • s390/qeth: fix SETIP command handling (bnc#1099709).
  • s390/qeth: free netdevice when removing a card (bnc#1099709).
  • s390/qeth: lock read device while queueing next buffer (bnc#1099709).
  • s390/qeth: when thread completes, wake up all waiters (bnc#1099709).
  • sched/sysctl: Check user input value of sysctlschedtime_avg (bsc#1100089).
  • scsi: sg: mitigate read/write abuse (bsc#1101296).
  • tg3: do not clear stats while tg3_close (bnc#790588).
  • video/stifb: Return -ENOMEM after a failed kzalloc() in stifbinitfb() (bnc#1099966).
  • vmxnet3: use correct flag to indicate LRO feature (bsc#936423).
  • x86-32/kaiser: Add CPL check for CR3 switch before iret (bsc#1098408).
  • x86-non-upstream-eager-fpu 32bit fix (bnc#1087086 bnc#1100091 bnc#1099598).
  • x86/cpu/bugs: Make retpoline module warning conditional (bnc#1099177).
  • xen/x86/spectrev1: Disable compiler optimizations over arrayindexmasknospec() (bsc#1068032).
References

Affected packages

SUSE:Linux Enterprise Real Time 11 SP4 / kernel-rt

Package

Name
kernel-rt
Purl
pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.101.rt130-69.30.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-rt_trace-base": "3.0.101.rt130-69.30.1",
            "kernel-rt-devel": "3.0.101.rt130-69.30.1",
            "kernel-rt_trace": "3.0.101.rt130-69.30.1",
            "kernel-rt_trace-devel": "3.0.101.rt130-69.30.1",
            "kernel-source-rt": "3.0.101.rt130-69.30.1",
            "kernel-rt": "3.0.101.rt130-69.30.1",
            "kernel-syms-rt": "3.0.101.rt130-69.30.1",
            "kernel-rt-base": "3.0.101.rt130-69.30.1"
        }
    ]
}

SUSE:Linux Enterprise Real Time 11 SP4 / kernel-rt_trace

Package

Name
kernel-rt_trace
Purl
pkg:rpm/suse/kernel-rt_trace&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.101.rt130-69.30.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-rt_trace-base": "3.0.101.rt130-69.30.1",
            "kernel-rt-devel": "3.0.101.rt130-69.30.1",
            "kernel-rt_trace": "3.0.101.rt130-69.30.1",
            "kernel-rt_trace-devel": "3.0.101.rt130-69.30.1",
            "kernel-source-rt": "3.0.101.rt130-69.30.1",
            "kernel-rt": "3.0.101.rt130-69.30.1",
            "kernel-syms-rt": "3.0.101.rt130-69.30.1",
            "kernel-rt-base": "3.0.101.rt130-69.30.1"
        }
    ]
}

SUSE:Linux Enterprise Real Time 11 SP4 / kernel-source-rt

Package

Name
kernel-source-rt
Purl
pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.101.rt130-69.30.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-rt_trace-base": "3.0.101.rt130-69.30.1",
            "kernel-rt-devel": "3.0.101.rt130-69.30.1",
            "kernel-rt_trace": "3.0.101.rt130-69.30.1",
            "kernel-rt_trace-devel": "3.0.101.rt130-69.30.1",
            "kernel-source-rt": "3.0.101.rt130-69.30.1",
            "kernel-rt": "3.0.101.rt130-69.30.1",
            "kernel-syms-rt": "3.0.101.rt130-69.30.1",
            "kernel-rt-base": "3.0.101.rt130-69.30.1"
        }
    ]
}

SUSE:Linux Enterprise Real Time 11 SP4 / kernel-syms-rt

Package

Name
kernel-syms-rt
Purl
pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.101.rt130-69.30.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-rt_trace-base": "3.0.101.rt130-69.30.1",
            "kernel-rt-devel": "3.0.101.rt130-69.30.1",
            "kernel-rt_trace": "3.0.101.rt130-69.30.1",
            "kernel-rt_trace-devel": "3.0.101.rt130-69.30.1",
            "kernel-source-rt": "3.0.101.rt130-69.30.1",
            "kernel-rt": "3.0.101.rt130-69.30.1",
            "kernel-syms-rt": "3.0.101.rt130-69.30.1",
            "kernel-rt-base": "3.0.101.rt130-69.30.1"
        }
    ]
}