SUSE-SU-2019:2262-1
- Source
- https://www.suse.com/support/update/announcement/2019/suse-su-20192262-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2019:2262-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2019:2262-1
- Related
- Published
- 2019-09-02T07:05:01Z
- Modified
- 2019-09-02T07:05:01Z
- Summary
- Security update for the Linux Kernel
- Details
-
The SUSE Linux Enterprise 12 SP1 kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
- CVE-2019-1125: Enable Spectre v1 swapgs mitigations (bsc#1139358).
- CVE-2018-20855: An issue was discovered in createqpcommon in drivers/infiniband/hw/mlx5/qp.c, mlx5ibcreateqpresp was never initialized, resulting in a leak of stack memory to userspace (bsc#1143045).
- CVE-2019-14284: The drivers/block/floppy.c allowed a denial of service by setupformatparams division-by-zero. Two consecutive ioctls can trigger the bug: the first one should set the drive geometry with .sect and .rate values that make FSECTPER_TRACK be zero. Next, the floppy format operation should be called. It can be triggered by an unprivileged local user even when a floppy disk has not been inserted. NOTE: QEMU creates the floppy device by default (bsc#1143189).
- CVE-2019-14283: The function set_geometry in drivers/block/floppy.c did not validate the sect and head fields, as demonstrated by an integer overflow and out-of-bounds read. It can be triggered by an unprivileged local user when a floppy disk has been inserted. NOTE: QEMU creates the floppy device by default (bsc#1143191).
- CVE-2019-11810: A NULL pointer dereference can occur when megasascreateframepool() fails in megasasalloccmds() in drivers/scsi/megaraid/megaraidsas_base.c. This causes a Denial of Service, related to a use-after-free (bsc#1134399).
- CVE-2019-13648: In the Linux kernel on the powerpc platform, when hardware transactional memory is disabled, a local user can cause a denial of service (TM Bad Thing exception and system crash) via a sigreturn() system call that sends a crafted signal frame. This affects arch/powerpc/kernel/signal32.c and arch/powerpc/kernel/signal64.c (bnc#1142254).
- CVE-2019-13631: In parsehidreport_descriptor in drivers/input/tablet/gtco.c, a malicious USB device can send an HID report that triggers an out-of-bounds write during generation of debugging messages (bsc#1142023).
The following non-security bugs were fixed:
- bcache: Revert 'bcache: fix high CPU occupancy during journal' (bsc#1140652, bsc#1144288).
- bcache: Revert 'bcache: free heap cacheset->flushbtree in bchjournalfree' (bsc#1140652, bsc#1144288).
- bcache: add reclaimedjournalbuckets to struct cache_set (bsc#1140652, bsc#1144288).
- bcache: fix race in btreeflushwrite() (bsc#1140652, bsc#1144288).
- bcache: fix stack corruption by PRECEDING_KEY() (bsc#1130972, bsc#1144257).
- bcache: only set BCACHEDEVWB_RUNNING when cached device attached (bsc#1130972, bsc#1144273).
- bcache: performance improvement for btreeflushwrite() (bsc#1140652, bsc#1144288).
- bcache: remove retryflushwrite from struct cache_set (bsc#1140652, bsc#1144288).
- mm: check VMA flags to avoid invalid PROT_NONE NUMA balancing (bsc#1142098).
- powerpc/watchpoint: Restore NV GPRs while returning from exception (bsc#1140945, bsc#1141401, bsc#1141402, bsc#1141452, bsc#1141453, bsc#1141454).
- xen-netfront: use napi_complete() correctly to prevent Rx stalling (bsc#1138744).
- References
-
- https://www.suse.com/support/update/announcement/2019/suse-su-20192262-1/
- https://bugzilla.suse.com/1130972
- https://bugzilla.suse.com/1134399
- https://bugzilla.suse.com/1138744
- https://bugzilla.suse.com/1139358
- https://bugzilla.suse.com/1140652
- https://bugzilla.suse.com/1140945
- https://bugzilla.suse.com/1141401
- https://bugzilla.suse.com/1141402
- https://bugzilla.suse.com/1141452
- https://bugzilla.suse.com/1141453
- https://bugzilla.suse.com/1141454
- https://bugzilla.suse.com/1142023
- https://bugzilla.suse.com/1142098
- https://bugzilla.suse.com/1142254
- https://bugzilla.suse.com/1143045
- https://bugzilla.suse.com/1143189
- https://bugzilla.suse.com/1143191
- https://bugzilla.suse.com/1144257
- https://bugzilla.suse.com/1144273
- https://bugzilla.suse.com/1144288
- https://www.suse.com/security/cve/CVE-2018-20855
- https://www.suse.com/security/cve/CVE-2019-1125
- https://www.suse.com/security/cve/CVE-2019-11810
- https://www.suse.com/security/cve/CVE-2019-13631
- https://www.suse.com/security/cve/CVE-2019-13648
- https://www.suse.com/security/cve/CVE-2019-14283
- https://www.suse.com/security/cve/CVE-2019-14284
Affected packages
SUSE:Linux Enterprise Module for Public Cloud 12 / kernel-ec2
Package
- Name
- kernel-ec2
- Purl
- purl:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2012
SUSE:Linux Enterprise Server for SAP Applications 12 SP1 / kernel-default
Package
- Name
- kernel-default
- Purl
- purl:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.12.74-60.64.121.1
Ecosystem specific
{
"binaries": [
{
"kernel-macros": "3.12.74-60.64.121.1",
"kernel-devel": "3.12.74-60.64.121.1",
"kernel-default-base": "3.12.74-60.64.121.1",
"kernel-xen-devel": "3.12.74-60.64.121.1",
"kernel-default": "3.12.74-60.64.121.1",
"kernel-source": "3.12.74-60.64.121.1",
"kernel-xen-base": "3.12.74-60.64.121.1",
"kernel-syms": "3.12.74-60.64.121.1",
"kgraft-patch-3_12_74-60_64_121-default": "1-2.3.1",
"kernel-default-devel": "3.12.74-60.64.121.1",
"kgraft-patch-3_12_74-60_64_121-xen": "1-2.3.1",
"kernel-xen": "3.12.74-60.64.121.1"
}
]
}
SUSE:Linux Enterprise Server for SAP Applications 12 SP1 / kernel-source
Package
- Name
- kernel-source
- Purl
- purl:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.12.74-60.64.121.1
Ecosystem specific
{
"binaries": [
{
"kernel-macros": "3.12.74-60.64.121.1",
"kernel-devel": "3.12.74-60.64.121.1",
"kernel-default-base": "3.12.74-60.64.121.1",
"kernel-xen-devel": "3.12.74-60.64.121.1",
"kernel-default": "3.12.74-60.64.121.1",
"kernel-source": "3.12.74-60.64.121.1",
"kernel-xen-base": "3.12.74-60.64.121.1",
"kernel-syms": "3.12.74-60.64.121.1",
"kgraft-patch-3_12_74-60_64_121-default": "1-2.3.1",
"kernel-default-devel": "3.12.74-60.64.121.1",
"kgraft-patch-3_12_74-60_64_121-xen": "1-2.3.1",
"kernel-xen": "3.12.74-60.64.121.1"
}
]
}
SUSE:Linux Enterprise Server for SAP Applications 12 SP1 / kernel-syms
Package
- Name
- kernel-syms
- Purl
- purl:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.12.74-60.64.121.1
Ecosystem specific
{
"binaries": [
{
"kernel-macros": "3.12.74-60.64.121.1",
"kernel-devel": "3.12.74-60.64.121.1",
"kernel-default-base": "3.12.74-60.64.121.1",
"kernel-xen-devel": "3.12.74-60.64.121.1",
"kernel-default": "3.12.74-60.64.121.1",
"kernel-source": "3.12.74-60.64.121.1",
"kernel-xen-base": "3.12.74-60.64.121.1",
"kernel-syms": "3.12.74-60.64.121.1",
"kgraft-patch-3_12_74-60_64_121-default": "1-2.3.1",
"kernel-default-devel": "3.12.74-60.64.121.1",
"kgraft-patch-3_12_74-60_64_121-xen": "1-2.3.1",
"kernel-xen": "3.12.74-60.64.121.1"
}
]
}
SUSE:Linux Enterprise Server for SAP Applications 12 SP1 / kernel-xen
Package
- Name
- kernel-xen
- Purl
- purl:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.12.74-60.64.121.1
Ecosystem specific
{
"binaries": [
{
"kernel-macros": "3.12.74-60.64.121.1",
"kernel-devel": "3.12.74-60.64.121.1",
"kernel-default-base": "3.12.74-60.64.121.1",
"kernel-xen-devel": "3.12.74-60.64.121.1",
"kernel-default": "3.12.74-60.64.121.1",
"kernel-source": "3.12.74-60.64.121.1",
"kernel-xen-base": "3.12.74-60.64.121.1",
"kernel-syms": "3.12.74-60.64.121.1",
"kgraft-patch-3_12_74-60_64_121-default": "1-2.3.1",
"kernel-default-devel": "3.12.74-60.64.121.1",
"kgraft-patch-3_12_74-60_64_121-xen": "1-2.3.1",
"kernel-xen": "3.12.74-60.64.121.1"
}
]
}
SUSE:Linux Enterprise Server for SAP Applications 12 SP1 / kgraft-patch-SLE12-SP1_Update_36
Package
- Name
- kgraft-patch-SLE12-SP1_Update_36
- Purl
- purl:rpm/suse/kgraft-patch-SLE12-SP1_Update_36&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1-2.3.1
Ecosystem specific
{
"binaries": [
{
"kernel-macros": "3.12.74-60.64.121.1",
"kernel-devel": "3.12.74-60.64.121.1",
"kernel-default-base": "3.12.74-60.64.121.1",
"kernel-xen-devel": "3.12.74-60.64.121.1",
"kernel-default": "3.12.74-60.64.121.1",
"kernel-source": "3.12.74-60.64.121.1",
"kernel-xen-base": "3.12.74-60.64.121.1",
"kernel-syms": "3.12.74-60.64.121.1",
"kgraft-patch-3_12_74-60_64_121-default": "1-2.3.1",
"kernel-default-devel": "3.12.74-60.64.121.1",
"kgraft-patch-3_12_74-60_64_121-xen": "1-2.3.1",
"kernel-xen": "3.12.74-60.64.121.1"
}
]
}
SUSE:Linux Enterprise Server 12 SP1-LTSS / kernel-default
Package
- Name
- kernel-default
- Purl
- purl:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.12.74-60.64.121.1
Ecosystem specific
{
"binaries": [
{
"kernel-macros": "3.12.74-60.64.121.1",
"kernel-devel": "3.12.74-60.64.121.1",
"kernel-default-base": "3.12.74-60.64.121.1",
"kernel-default-man": "3.12.74-60.64.121.1",
"kernel-xen-devel": "3.12.74-60.64.121.1",
"kernel-default": "3.12.74-60.64.121.1",
"kernel-source": "3.12.74-60.64.121.1",
"kernel-xen-base": "3.12.74-60.64.121.1",
"kernel-syms": "3.12.74-60.64.121.1",
"kgraft-patch-3_12_74-60_64_121-default": "1-2.3.1",
"kernel-default-devel": "3.12.74-60.64.121.1",
"kgraft-patch-3_12_74-60_64_121-xen": "1-2.3.1",
"kernel-xen": "3.12.74-60.64.121.1"
}
]
}
SUSE:Linux Enterprise Server 12 SP1-LTSS / kernel-source
Package
- Name
- kernel-source
- Purl
- purl:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.12.74-60.64.121.1
Ecosystem specific
{
"binaries": [
{
"kernel-macros": "3.12.74-60.64.121.1",
"kernel-devel": "3.12.74-60.64.121.1",
"kernel-default-base": "3.12.74-60.64.121.1",
"kernel-default-man": "3.12.74-60.64.121.1",
"kernel-xen-devel": "3.12.74-60.64.121.1",
"kernel-default": "3.12.74-60.64.121.1",
"kernel-source": "3.12.74-60.64.121.1",
"kernel-xen-base": "3.12.74-60.64.121.1",
"kernel-syms": "3.12.74-60.64.121.1",
"kgraft-patch-3_12_74-60_64_121-default": "1-2.3.1",
"kernel-default-devel": "3.12.74-60.64.121.1",
"kgraft-patch-3_12_74-60_64_121-xen": "1-2.3.1",
"kernel-xen": "3.12.74-60.64.121.1"
}
]
}
SUSE:Linux Enterprise Server 12 SP1-LTSS / kernel-syms
Package
- Name
- kernel-syms
- Purl
- purl:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.12.74-60.64.121.1
Ecosystem specific
{
"binaries": [
{
"kernel-macros": "3.12.74-60.64.121.1",
"kernel-devel": "3.12.74-60.64.121.1",
"kernel-default-base": "3.12.74-60.64.121.1",
"kernel-default-man": "3.12.74-60.64.121.1",
"kernel-xen-devel": "3.12.74-60.64.121.1",
"kernel-default": "3.12.74-60.64.121.1",
"kernel-source": "3.12.74-60.64.121.1",
"kernel-xen-base": "3.12.74-60.64.121.1",
"kernel-syms": "3.12.74-60.64.121.1",
"kgraft-patch-3_12_74-60_64_121-default": "1-2.3.1",
"kernel-default-devel": "3.12.74-60.64.121.1",
"kgraft-patch-3_12_74-60_64_121-xen": "1-2.3.1",
"kernel-xen": "3.12.74-60.64.121.1"
}
]
}
SUSE:Linux Enterprise Server 12 SP1-LTSS / kernel-xen
Package
- Name
- kernel-xen
- Purl
- purl:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.12.74-60.64.121.1
Ecosystem specific
{
"binaries": [
{
"kernel-macros": "3.12.74-60.64.121.1",
"kernel-devel": "3.12.74-60.64.121.1",
"kernel-default-base": "3.12.74-60.64.121.1",
"kernel-default-man": "3.12.74-60.64.121.1",
"kernel-xen-devel": "3.12.74-60.64.121.1",
"kernel-default": "3.12.74-60.64.121.1",
"kernel-source": "3.12.74-60.64.121.1",
"kernel-xen-base": "3.12.74-60.64.121.1",
"kernel-syms": "3.12.74-60.64.121.1",
"kgraft-patch-3_12_74-60_64_121-default": "1-2.3.1",
"kernel-default-devel": "3.12.74-60.64.121.1",
"kgraft-patch-3_12_74-60_64_121-xen": "1-2.3.1",
"kernel-xen": "3.12.74-60.64.121.1"
}
]
}
SUSE:Linux Enterprise Server 12 SP1-LTSS / kgraft-patch-SLE12-SP1_Update_36
Package
- Name
- kgraft-patch-SLE12-SP1_Update_36
- Purl
- purl:rpm/suse/kgraft-patch-SLE12-SP1_Update_36&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1-2.3.1
Ecosystem specific
{
"binaries": [
{
"kernel-macros": "3.12.74-60.64.121.1",
"kernel-devel": "3.12.74-60.64.121.1",
"kernel-default-base": "3.12.74-60.64.121.1",
"kernel-default-man": "3.12.74-60.64.121.1",
"kernel-xen-devel": "3.12.74-60.64.121.1",
"kernel-default": "3.12.74-60.64.121.1",
"kernel-source": "3.12.74-60.64.121.1",
"kernel-xen-base": "3.12.74-60.64.121.1",
"kernel-syms": "3.12.74-60.64.121.1",
"kgraft-patch-3_12_74-60_64_121-default": "1-2.3.1",
"kernel-default-devel": "3.12.74-60.64.121.1",
"kgraft-patch-3_12_74-60_64_121-xen": "1-2.3.1",
"kernel-xen": "3.12.74-60.64.121.1"
}
]
}