From sle-security-updates at lists.suse.com Fri Sep 1 10:08:17 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Fri, 1 Sep 2017 18:08:17 +0200 (CEST) Subject: SUSE-SU-2017:2326-1: important: Security update for xen Message-ID: <20170901160817.AC47BF433@maintenance.suse.de> SUSE Security Update: Security update for xen ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2326-1 Rating: important References: #1002573 #1026236 #1035231 #1037840 #1046637 #1049578 #1051787 #1051788 #1051789 #1052686 #1055695 Cross-References: CVE-2016-9603 CVE-2017-10664 CVE-2017-11434 CVE-2017-12135 CVE-2017-12136 CVE-2017-12137 CVE-2017-12855 Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP2 SUSE Container as a Service Platform ALL ______________________________________________________________________________ An update that solves 7 vulnerabilities and has four fixes is now available. Description: This update for xen to version 4.7.3 fixes several issues. These security issues were fixed: - CVE-2017-12135: Unbounded recursion in grant table code allowed a malicious guest to crash the host or potentially escalate privileges/leak information (XSA-226, bsc#1051787). - CVE-2017-12137: Incorrectly-aligned updates to pagetables allowed for privilege escalation (XSA-227, bsc#1051788). - CVE-2017-12136: Race conditions with maptrack free list handling allows a malicious guest administrator to crash the host or escalate their privilege to that of the host (XSA-228, bsc#1051789). - CVE-2017-11434: The dhcp_decode function in slirp/bootp.c allowed local guest OS users to cause a denial of service (out-of-bounds read) via a crafted DHCP options string (bsc#1049578). - CVE-2017-10664: qemu-nbd did not ignore SIGPIPE, which allowed remote attackers to cause a denial of service (daemon crash) by disconnecting during a server-to-client reply attempt (bsc#1046637). - CVE-2017-12855: Premature clearing of GTF_writing / GTF_reading lead to potentially leaking sensitive information (XSA-230 CVE-2017-12855). These non-security issues were fixed: - bsc#1055695: XEN: 11SP4 and 12SP3 HVM guests can not be restored after the save using xl stack - bsc#1035231: Migration of HVM domU did not use superpages on destination dom0 - bsc#1002573: Optimized LVM functions in block-dmmd block-dmmd - bsc#1037840: Xen-detect always showed HVM for PV guests Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP2: zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1438=1 - SUSE Linux Enterprise Server 12-SP2: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1438=1 - SUSE Linux Enterprise Desktop 12-SP2: zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-1438=1 - SUSE Container as a Service Platform ALL: zypper in -t patch SUSE-CAASP-ALL-2017-1438=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 x86_64): xen-debugsource-4.7.3_03-43.9.1 xen-devel-4.7.3_03-43.9.1 - SUSE Linux Enterprise Server 12-SP2 (x86_64): xen-4.7.3_03-43.9.1 xen-debugsource-4.7.3_03-43.9.1 xen-doc-html-4.7.3_03-43.9.1 xen-libs-32bit-4.7.3_03-43.9.1 xen-libs-4.7.3_03-43.9.1 xen-libs-debuginfo-32bit-4.7.3_03-43.9.1 xen-libs-debuginfo-4.7.3_03-43.9.1 xen-tools-4.7.3_03-43.9.1 xen-tools-debuginfo-4.7.3_03-43.9.1 xen-tools-domU-4.7.3_03-43.9.1 xen-tools-domU-debuginfo-4.7.3_03-43.9.1 - SUSE Linux Enterprise Desktop 12-SP2 (x86_64): xen-4.7.3_03-43.9.1 xen-debugsource-4.7.3_03-43.9.1 xen-libs-32bit-4.7.3_03-43.9.1 xen-libs-4.7.3_03-43.9.1 xen-libs-debuginfo-32bit-4.7.3_03-43.9.1 xen-libs-debuginfo-4.7.3_03-43.9.1 - SUSE Container as a Service Platform ALL (x86_64): xen-debugsource-4.7.3_03-43.9.1 xen-libs-4.7.3_03-43.9.1 xen-libs-debuginfo-4.7.3_03-43.9.1 xen-tools-domU-4.7.3_03-43.9.1 xen-tools-domU-debuginfo-4.7.3_03-43.9.1 References: https://www.suse.com/security/cve/CVE-2016-9603.html https://www.suse.com/security/cve/CVE-2017-10664.html https://www.suse.com/security/cve/CVE-2017-11434.html https://www.suse.com/security/cve/CVE-2017-12135.html https://www.suse.com/security/cve/CVE-2017-12136.html https://www.suse.com/security/cve/CVE-2017-12137.html https://www.suse.com/security/cve/CVE-2017-12855.html https://bugzilla.suse.com/1002573 https://bugzilla.suse.com/1026236 https://bugzilla.suse.com/1035231 https://bugzilla.suse.com/1037840 https://bugzilla.suse.com/1046637 https://bugzilla.suse.com/1049578 https://bugzilla.suse.com/1051787 https://bugzilla.suse.com/1051788 https://bugzilla.suse.com/1051789 https://bugzilla.suse.com/1052686 https://bugzilla.suse.com/1055695 From sle-security-updates at lists.suse.com Fri Sep 1 10:10:28 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Fri, 1 Sep 2017 18:10:28 +0200 (CEST) Subject: SUSE-SU-2017:2327-1: important: Security update for xen Message-ID: <20170901161028.AD756FCA0@maintenance.suse.de> SUSE Security Update: Security update for xen ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2327-1 Rating: important References: #1002573 #1026236 #1027519 #1035231 #1046637 #1049578 #1051787 #1051788 #1051789 #1052686 #1055695 Cross-References: CVE-2017-10664 CVE-2017-11434 CVE-2017-12135 CVE-2017-12136 CVE-2017-12137 CVE-2017-12855 Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Desktop 12-SP3 ______________________________________________________________________________ An update that solves 6 vulnerabilities and has 5 fixes is now available. Description: This update for xen fixes several issues. These security issues were fixed: - CVE-2017-12135: Unbounded recursion in grant table code allowed a malicious guest to crash the host or potentially escalate privileges/leak information (XSA-226, bsc#1051787). - CVE-2017-12137: Incorrectly-aligned updates to pagetables allowed for privilege escalation (XSA-227, bsc#1051788). - CVE-2017-12136: Race conditions with maptrack free list handling allows a malicious guest administrator to crash the host or escalate their privilege to that of the host (XSA-228, bsc#1051789). - CVE-2017-11434: The dhcp_decode function in slirp/bootp.c allowed local guest OS users to cause a denial of service (out-of-bounds read) via a crafted DHCP options string (bsc#1049578). - CVE-2017-10664: qemu-nbd did not ignore SIGPIPE, which allowed remote attackers to cause a denial of service (daemon crash) by disconnecting during a server-to-client reply attempt (bsc#1046637). - CVE-2017-12855: Premature clearing of GTF_writing / GTF_reading lead to potentially leaking sensitive information (XSA-230 bsc#1052686. These non-security issues were fixed: - bsc#1055695: XEN: 11SP4 and 12SP3 HVM guests can not be restored after the save using xl stack - bsc#1035231: Migration of HVM domU did not use superpages on destination dom0 - bsc#1002573: Optimized LVM functions in block-dmmd block-dmmd Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2017-1437=1 - SUSE Linux Enterprise Desktop 12-SP3: zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2017-1437=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 x86_64): xen-debugsource-4.9.0_11-3.9.1 xen-devel-4.9.0_11-3.9.1 - SUSE Linux Enterprise Desktop 12-SP3 (x86_64): xen-4.9.0_11-3.9.1 xen-debugsource-4.9.0_11-3.9.1 xen-libs-32bit-4.9.0_11-3.9.1 xen-libs-4.9.0_11-3.9.1 xen-libs-debuginfo-32bit-4.9.0_11-3.9.1 xen-libs-debuginfo-4.9.0_11-3.9.1 References: https://www.suse.com/security/cve/CVE-2017-10664.html https://www.suse.com/security/cve/CVE-2017-11434.html https://www.suse.com/security/cve/CVE-2017-12135.html https://www.suse.com/security/cve/CVE-2017-12136.html https://www.suse.com/security/cve/CVE-2017-12137.html https://www.suse.com/security/cve/CVE-2017-12855.html https://bugzilla.suse.com/1002573 https://bugzilla.suse.com/1026236 https://bugzilla.suse.com/1027519 https://bugzilla.suse.com/1035231 https://bugzilla.suse.com/1046637 https://bugzilla.suse.com/1049578 https://bugzilla.suse.com/1051787 https://bugzilla.suse.com/1051788 https://bugzilla.suse.com/1051789 https://bugzilla.suse.com/1052686 https://bugzilla.suse.com/1055695 From sle-security-updates at lists.suse.com Mon Sep 4 10:08:51 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Mon, 4 Sep 2017 18:08:51 +0200 (CEST) Subject: SUSE-SU-2017:2339-1: important: Security update for xen Message-ID: <20170904160851.6B2E3FCA0@maintenance.suse.de> SUSE Security Update: Security update for xen ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2339-1 Rating: important References: #1046637 #1048920 #1049578 #1051787 #1051788 #1052686 Cross-References: CVE-2017-10664 CVE-2017-11334 CVE-2017-11434 CVE-2017-12135 CVE-2017-12137 CVE-2017-12855 Affected Products: SUSE Linux Enterprise Server 11-SP3-LTSS SUSE Linux Enterprise Point of Sale 11-SP3 SUSE Linux Enterprise Debuginfo 11-SP3 ______________________________________________________________________________ An update that fixes 6 vulnerabilities is now available. Description: This update for xen fixes the following issues: - CVE-2017-12855: Premature clearing of GTF_writing / GTF_reading lead to potentially leaking sensitive information (XSA-230, bsc#1052686). - CVE-2017-12135: Unbounded recursion in grant table code allowed a malicious guest to crash the host or potentially escalate privileges/leak information (XSA-226, bsc#1051787). - CVE-2017-12137: Incorrectly-aligned updates to pagetables allowed for privilege escalation (XSA-227, bsc#1051788). - CVE-2017-11334: The address_space_write_continue function in exec.c allowed local guest OS privileged users to cause a denial of service (out-of-bounds access and guest instance crash) by leveraging use of qemu_map_ram_ptr to access guest ram block area (bsc#1048920). - CVE-2017-11434: The dhcp_decode function in slirp/bootp.c allowed local guest OS users to cause a denial of service (out-of-bounds read) via a crafted DHCP options string (bsc#1049578). - CVE-2017-10664: qemu-nbd did not ignore SIGPIPE, which allowed remote attackers to cause a denial of service (daemon crash) by disconnecting during a server-to-client reply attempt (bsc#1046637). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 11-SP3-LTSS: zypper in -t patch slessp3-xen-13259=1 - SUSE Linux Enterprise Point of Sale 11-SP3: zypper in -t patch sleposp3-xen-13259=1 - SUSE Linux Enterprise Debuginfo 11-SP3: zypper in -t patch dbgsp3-xen-13259=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server 11-SP3-LTSS (i586 x86_64): xen-kmp-default-4.2.5_21_3.0.101_0.47.105-45.5.1 xen-libs-4.2.5_21-45.5.1 xen-tools-domU-4.2.5_21-45.5.1 - SUSE Linux Enterprise Server 11-SP3-LTSS (x86_64): xen-4.2.5_21-45.5.1 xen-doc-html-4.2.5_21-45.5.1 xen-doc-pdf-4.2.5_21-45.5.1 xen-libs-32bit-4.2.5_21-45.5.1 xen-tools-4.2.5_21-45.5.1 - SUSE Linux Enterprise Server 11-SP3-LTSS (i586): xen-kmp-pae-4.2.5_21_3.0.101_0.47.105-45.5.1 - SUSE Linux Enterprise Point of Sale 11-SP3 (i586): xen-kmp-default-4.2.5_21_3.0.101_0.47.105-45.5.1 xen-kmp-pae-4.2.5_21_3.0.101_0.47.105-45.5.1 xen-libs-4.2.5_21-45.5.1 xen-tools-domU-4.2.5_21-45.5.1 - SUSE Linux Enterprise Debuginfo 11-SP3 (i586 x86_64): xen-debuginfo-4.2.5_21-45.5.1 xen-debugsource-4.2.5_21-45.5.1 References: https://www.suse.com/security/cve/CVE-2017-10664.html https://www.suse.com/security/cve/CVE-2017-11334.html https://www.suse.com/security/cve/CVE-2017-11434.html https://www.suse.com/security/cve/CVE-2017-12135.html https://www.suse.com/security/cve/CVE-2017-12137.html https://www.suse.com/security/cve/CVE-2017-12855.html https://bugzilla.suse.com/1046637 https://bugzilla.suse.com/1048920 https://bugzilla.suse.com/1049578 https://bugzilla.suse.com/1051787 https://bugzilla.suse.com/1051788 https://bugzilla.suse.com/1052686 From sle-security-updates at lists.suse.com Mon Sep 4 13:11:06 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Mon, 4 Sep 2017 21:11:06 +0200 (CEST) Subject: SUSE-SU-2017:2342-1: important: Security update for the Linux Kernel Message-ID: <20170904191106.606BFFCA0@maintenance.suse.de> SUSE Security Update: Security update for the Linux Kernel ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2342-1 Rating: important References: #1003077 #1005651 #1008374 #1008850 #1008893 #1012422 #1013018 #1013070 #1013800 #1013862 #1016489 #1017143 #1018074 #1018263 #1018446 #1019168 #1020229 #1021256 #1021913 #1022971 #1023014 #1023051 #1023163 #1023888 #1024508 #1024788 #1024938 #1025235 #1025702 #1026024 #1026260 #1026722 #1026914 #1027066 #1027101 #1027178 #1027565 #1028372 #1028415 #1028880 #1029140 #1029212 #1029770 #1029850 #1030213 #1030552 #1030573 #1030593 #1030814 #1031003 #1031052 #1031440 #1031579 #1032141 #1032340 #1032471 #1033287 #1033336 #1033771 #1033794 #1033804 #1033816 #1034026 #1034670 #1035576 #1035777 #1035920 #1036056 #1036288 #1036629 #1037182 #1037183 #1037191 #1037193 #1037227 #1037232 #1037233 #1037356 #1037358 #1037359 #1037441 #1038544 #1038879 #1038981 #1038982 #1039258 #1039348 #1039354 #1039456 #1039594 #1039882 #1039883 #1039885 #1040069 #1040351 #1041160 #1041431 #1041762 #1041975 #1042045 #1042200 #1042615 #1042633 #1042687 #1042832 #1043014 #1043234 #1043935 #1044015 #1044125 #1044216 #1044230 #1044854 #1044882 #1044913 #1044985 #1045154 #1045340 #1045356 #1045406 #1045416 #1045525 #1045538 #1045547 #1045615 #1046107 #1046122 #1046192 #1046715 #1047027 #1047053 #1047343 #1047354 #1047487 #1047523 #1047653 #1048185 #1048221 #1048232 #1048275 #1049483 #1049603 #1049688 #1049882 #1050154 #1050431 #1051478 #1051515 #1051770 #784815 #792863 #799133 #870618 #909486 #909618 #911105 #919382 #928138 #931620 #938352 #943786 #948562 #962257 #970956 #971975 #972891 #979021 #982783 #983212 #985561 #986362 #986365 #986924 #988065 #989056 #990682 #991651 #995542 #999245 Cross-References: CVE-2014-9922 CVE-2015-3288 CVE-2015-8970 CVE-2016-10200 CVE-2016-2188 CVE-2016-4997 CVE-2016-4998 CVE-2016-5243 CVE-2016-7117 CVE-2017-1000363 CVE-2017-1000364 CVE-2017-1000365 CVE-2017-1000380 CVE-2017-11176 CVE-2017-11473 CVE-2017-2636 CVE-2017-2647 CVE-2017-2671 CVE-2017-5669 CVE-2017-5970 CVE-2017-5986 CVE-2017-6074 CVE-2017-6214 CVE-2017-6348 CVE-2017-6353 CVE-2017-6951 CVE-2017-7184 CVE-2017-7187 CVE-2017-7261 CVE-2017-7294 CVE-2017-7308 CVE-2017-7482 CVE-2017-7487 CVE-2017-7533 CVE-2017-7542 CVE-2017-7616 CVE-2017-8890 CVE-2017-8924 CVE-2017-8925 CVE-2017-9074 CVE-2017-9075 CVE-2017-9076 CVE-2017-9077 CVE-2017-9242 Affected Products: SUSE Linux Enterprise Real Time Extension 11-SP4 SUSE Linux Enterprise Debuginfo 11-SP4 ______________________________________________________________________________ An update that solves 44 vulnerabilities and has 135 fixes is now available. Description: The SUSE Linux Enterprise 11 SP4 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2014-9922: The eCryptfs subsystem in the Linux kernel allowed local users to gain privileges via a large filesystem stack that includes an overlayfs layer, related to fs/ecryptfs/main.c and fs/overlayfs/super.c (bsc#1032340). - CVE-2015-3288: mm/memory.c in the Linux kernel mishandled anonymous pages, which allowed local users to gain privileges or cause a denial of service (page tainting) via a crafted application that triggers writing to page zero (bnc#979021). - CVE-2015-8970: crypto/algif_skcipher.c in the Linux kernel did not verify that a setkey operation has been performed on an AF_ALG socket before an accept system call is processed, which allowed local users to cause a denial of service (NULL pointer dereference and system crash) via a crafted application that did not supply a key, related to the lrw_crypt function in crypto/lrw.c (bnc#1008374 bsc#1008850). - CVE-2016-10200: Race condition in the L2TPv3 IP Encapsulation feature in the Linux kernel allowed local users to gain privileges or cause a denial of service (use-after-free) by making multiple bind system calls without properly ascertaining whether a socket has the SOCK_ZAPPED status, related to net/l2tp/l2tp_ip.c and net/l2tp/l2tp_ip6.c (bnc#1028415). - CVE-2016-2188: The iowarrior_probe function in drivers/usb/misc/iowarrior.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device descriptor (bnc#970956). - CVE-2016-4997: The compat IPT_SO_SET_REPLACE and IP6T_SO_SET_REPLACE setsockopt implementations in the netfilter subsystem in the Linux kernel allow local users to gain privileges or cause a denial of service (memory corruption) by leveraging in-container root access to provide a crafted offset value that triggers an unintended decrement (bnc#986362). - CVE-2016-4998: The IPT_SO_SET_REPLACE setsockopt implementation in the netfilter subsystem in the Linux kernel allowed local users to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from kernel heap memory by leveraging in-container root access to provide a crafted offset value that leads to crossing a ruleset blob boundary (bnc#986365). - CVE-2016-5243: The tipc_nl_compat_link_dump function in net/tipc/netlink_compat.c in the Linux kernel did not properly copy a certain string, which allowed local users to obtain sensitive information from kernel stack memory by reading a Netlink message (bnc#983212). - CVE-2016-7117: Use-after-free vulnerability in the __sys_recvmmsg function in net/socket.c in the Linux kernel allowed remote attackers to execute arbitrary code via vectors involving a recvmmsg system call that is mishandled during error processing (bnc#1003077). - CVE-2017-1000363: A buffer overflow in kernel commandline handling of the "lp" parameter could be used to bypass certain secure boot settings. (bnc#1039456). - CVE-2017-1000364: An issue was discovered in the size of the stack guard page on Linux, specifically a 4k stack guard page is not sufficiently large and can be "jumped" over (the stack guard page is bypassed), this affects Linux Kernel versions 4.11.5 and earlier (the stackguard page was introduced in 2010) (bnc#1039348). - CVE-2017-1000365: The Linux Kernel imposes a size restriction on the arguments and environmental strings passed through RLIMIT_STACK/RLIM_INFINITY (1/4 of the size), but did not take the argument and environment pointers into account, which allowed attackers to bypass this limitation (bnc#1039354). - CVE-2017-1000380: sound/core/timer.c in the Linux kernel is vulnerable to a data race in the ALSA /dev/snd/timer driver resulting in local users being able to read information belonging to other users, i.e., uninitialized memory contents may be disclosed when a read and an ioctl happen at the same time (bnc#1044125). - CVE-2017-11176: The mq_notify function in the Linux kernel did not set the sock pointer to NULL upon entry into the retry logic. During a user-space close of a Netlink socket, it allowed attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact (bnc#1048275). - CVE-2017-11473: Buffer overflow in the mp_override_legacy_irq() function in arch/x86/kernel/acpi/boot.c in the Linux kernel allowed local users to gain privileges via a crafted ACPI table (bsc#1049603). - CVE-2017-2636: Race condition in drivers/tty/n_hdlc.c in the Linux kernel allowed local users to gain privileges or cause a denial of service (double free) by setting the HDLC line discipline (bnc#1027565 bsc#1028372). - CVE-2017-2647: The KEYS subsystem in the Linux kernel allowed local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) via vectors involving a NULL value for a certain match field, related to the keyring_search_iterator function in keyring.c (bnc#1030593). - CVE-2017-2671: The ping_unhash function in net/ipv4/ping.c in the Linux kernel is too late in obtaining a certain lock and consequently cannot ensure that disconnect function calls are safe, which allowed local users to cause a denial of service (panic) by leveraging access to the protocol value of IPPROTO_ICMP in a socket system call (bnc#1031003). - CVE-2017-5669: The do_shmat function in ipc/shm.c in the Linux kernel did not restrict the address calculated by a certain rounding operation, which allowed local users to map page zero, and consequently bypass a protection mechanism that exists for the mmap system call, by making crafted shmget and shmat system calls in a privileged context (bnc#1026914). - CVE-2017-5970: The ipv4_pktinfo_prepare function in net/ipv4/ip_sockglue.c in the Linux kernel allowed attackers to cause a denial of service (system crash) via (1) an application that made crafted system calls or possibly (2) IPv4 traffic with invalid IP options (bnc#1024938). - CVE-2017-5986: Race condition in the sctp_wait_for_sndbuf function in net/sctp/socket.c in the Linux kernel allowed local users to cause a denial of service (assertion failure and panic) via a multithreaded application that peels off an association in a certain buffer-full state (bnc#1025235). - CVE-2017-6074: The dccp_rcv_state_process function in net/dccp/input.c in the Linux kernel mishandled DCCP_PKT_REQUEST packet data structures in the LISTEN state, which allowed local users to obtain root privileges or cause a denial of service (double free) via an application that made an IPV6_RECVPKTINFO setsockopt system call (bnc#1026024 bsc#1033287). - CVE-2017-6214: The tcp_splice_read function in net/ipv4/tcp.c in the Linux kernel allowed remote attackers to cause a denial of service (infinite loop and soft lockup) via vectors involving a TCP packet with the URG flag (bnc#1026722). - CVE-2017-6348: The hashbin_delete function in net/irda/irqueue.c in the Linux kernel improperly manages lock dropping, which allowed local users to cause a denial of service (deadlock) via crafted operations on IrDA devices (bnc#1027178). - CVE-2017-6353: net/sctp/socket.c in the Linux kernel did not properly restrict association peel-off operations during certain wait states, which allowed local users to cause a denial of service (invalid unlock and double free) via a multithreaded application. NOTE: this vulnerability exists because of an incorrect fix for CVE-2017-5986 (bnc#1027066). - CVE-2017-6951: The keyring_search_aux function in security/keys/keyring.c in the Linux kernel allowed local users to cause a denial of service (NULL pointer dereference and OOPS) via a request_key system call for the "dead" type (bnc#1029850). - CVE-2017-7184: The xfrm_replay_verify_len function in net/xfrm/xfrm_user.c in the Linux kernel did not validate certain size data after an XFRM_MSG_NEWAE update, which allowed local users to obtain root privileges or cause a denial of service (heap-based out-of-bounds access) by leveraging the CAP_NET_ADMIN capability, as demonstrated during a Pwn2Own competition at CanSecWest 2017 for the Ubuntu 16.10 linux-image-* package 4.8.0.41.52 (bnc#1030573). - CVE-2017-7187: The sg_ioctl function in drivers/scsi/sg.c in the Linux kernel allowed local users to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact via a large command size in an SG_NEXT_CMD_LEN ioctl call, leading to out-of-bounds write access in the sg_write function (bnc#1030213). - CVE-2017-7261: The vmw_surface_define_ioctl function in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c in the Linux kernel did not check for a zero value of certain levels data, which allowed local users to cause a denial of service (ZERO_SIZE_PTR dereference, and GPF and possibly panic) via a crafted ioctl call for a /dev/dri/renderD* device (bnc#1031052). - CVE-2017-7294: The vmw_surface_define_ioctl function in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c in the Linux kernel did not validate addition of certain levels data, which allowed local users to trigger an integer overflow and out-of-bounds write, and cause a denial of service (system hang or crash) or possibly gain privileges, via a crafted ioctl call for a /dev/dri/renderD* device (bnc#1031440). - CVE-2017-7308: The packet_set_ring function in net/packet/af_packet.c in the Linux kernel did not properly validate certain block-size data, which allowed local users to cause a denial of service (integer signedness error and out-of-bounds write), or gain privileges (if the CAP_NET_RAW capability is held), via crafted system calls (bnc#1031579). - CVE-2017-7482: Fixed a potential overflow in the net/rxprc where a padded len isn't checked in ticket decode (bsc#1046107). - CVE-2017-7487: The ipxitf_ioctl function in net/ipx/af_ipx.c in the Linux kernel mishandled reference counts, which allowed local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via a failed SIOCGIFADDR ioctl call for an IPX interface (bnc#1038879). - CVE-2017-7533: Race condition in the fsnotify implementation in the Linux kernel allowed local users to gain privileges or cause a denial of service (memory corruption) via a crafted application that leverages simultaneous execution of the inotify_handle_event and vfs_rename functions (bsc#1049483). - CVE-2017-7542: The ip6_find_1stfragopt function in net/ipv6/output_core.c in the Linux kernel allowed local users to cause a denial of service (integer overflow and infinite loop) by leveraging the ability to open a raw socket (bsc#1049882). - CVE-2017-7616: Incorrect error handling in the set_mempolicy and mbind compat syscalls in mm/mempolicy.c in the Linux kernel allowed local users to obtain sensitive information from uninitialized stack data by triggering failure of a certain bitmap operation (bnc#1033336). - CVE-2017-8890: The inet_csk_clone_lock function in net/ipv4/inet_connection_sock.c in the Linux kernel allowed attackers to cause a denial of service (double free) or possibly have unspecified other impact by leveraging use of the accept system call (bnc#1038544). - CVE-2017-8924: The edge_bulk_in_callback function in drivers/usb/serial/io_ti.c in the Linux kernel allowed local users to obtain sensitive information (in the dmesg ringbuffer and syslog) from uninitialized kernel memory by using a crafted USB device (posing as an io_ti USB serial device) to trigger an integer underflow (bnc#1037182 bsc#1038982). - CVE-2017-8925: The omninet_open function in drivers/usb/serial/omninet.c in the Linux kernel allowed local users to cause a denial of service (tty exhaustion) by leveraging reference count mishandling (bnc#1037183 bsc#1038981). - CVE-2017-9074: The IPv6 fragmentation implementation in the Linux kernel did not consider that the nexthdr field may be associated with an invalid option, which allowed local users to cause a denial of service (out-of-bounds read and BUG) or possibly have unspecified other impact via crafted socket and send system calls (bnc#1039882). - CVE-2017-9075: The sctp_v6_create_accept_sk function in net/sctp/ipv6.c in the Linux kernel mishandled inheritance, which allowed local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890 (bnc#1039883). - CVE-2017-9076: The dccp_v6_request_recv_sock function in net/dccp/ipv6.c in the Linux kernel mishandled inheritance, which allowed local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890 (bnc#1039885). - CVE-2017-9077: The tcp_v6_syn_recv_sock function in net/ipv6/tcp_ipv6.c in the Linux kernel mishandled inheritance, which allowed local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890 (bnc#1040069). - CVE-2017-9242: The __ip6_append_data function in net/ipv6/ip6_output.c in the Linux kernel is too late in checking whether an overwrite of an skb data structure may occur, which allowed local users to cause a denial of service (system crash) via crafted system calls (bnc#1041431). The following non-security bugs were fixed: - 8250: use callbacks to access UART_DLL/UART_DLM. - acpi: Disable APEI error injection if securelevel is set (bsc#972891, bsc#1023051). - af_key: Add lock to key dump (bsc#1047653). - af_key: Fix slab-out-of-bounds in pfkey_compile_policy (bsc#1047354). - alsa: ctxfi: Fallback DMA mask to 32bit (bsc#1045538). - alsa: hda - Fix regression of HD-audio controller fallback modes (bsc#1045538). - alsa: hda/realtek - Correction of fixup codes for PB V7900 laptop (bsc#1045538). - alsa: hda/realtek - Fix COEF widget NID for ALC260 replacer fixup (bsc#1045538). - alsa: hda - using uninitialized data (bsc#1045538). - alsa: off by one bug in snd_riptide_joystick_probe() (bsc#1045538). - alsa: seq: Fix snd_seq_call_port_info_ioctl in compat mode (bsc#1045538). - ath9k: fix buffer overrun for ar9287 (bsc#1045538). - __bitmap_parselist: fix bug in empty string handling (bnc#1042633). - blacklist.conf: Add a few inapplicable items (bsc#1045538). - blacklist.conf: blacklisted 1fe89e1b6d27 (bnc#1046122) - block: do not allow updates through sysfs until registration completes (bsc#1047027). - block: fix ext_dev_lock lockdep report (bsc#1050154). - btrfs: Don't clear SGID when inheriting ACLs (bsc#1030552). - cifs: backport prepath matching fix (bsc#799133). - cifs: don't compare uniqueids in cifs_prime_dcache unless server inode numbers are in use (bsc#1041975). - cifs: small underflow in cnvrtDosUnixTm() (bsc#1043935). - cifs: Timeout on SMBNegotiate request (bsc#1044913). - clocksource: Remove "weak" from clocksource_default_clock() declaration (bnc#1013018). - cputime: Avoid multiplication overflow on utime scaling (bnc#938352). - crypto: nx - off by one bug in nx_of_update_msc() (fate#314588,bnc#792863). - decompress_bunzip2: off by one in get_next_block() (git-fixes). - devres: fix a for loop bounds check (git-fixes). - dlm: backport "fix lvb invalidation conditions" (bsc#1005651). - dm: fix ioctl retry termination with signal (bsc#1050154). - drm/mgag200: Add support for G200eH3 (bnc#1044216, fate#323551) - drm/mgag200: Add support for G200e rev 4 (bnc#995542, comment #81) - edac, amd64_edac: Shift wrapping issue in f1x_get_norm_dct_addr() (fate#313937). - enic: set skb->hash type properly (bsc#911105 FATE#317501). - ext2: Don't clear SGID when inheriting ACLs (bsc#1030552). - ext3: Don't clear SGID when inheriting ACLs (bsc#1030552). - ext4: Don't clear SGID when inheriting ACLs (bsc#1030552). - ext4: fix fdatasync(2) after extent manipulation operations (bsc#1013018). - ext4: fix mballoc breakage with 64k block size (bsc#1013018). - ext4: fix stack memory corruption with 64k block size (bsc#1013018). - ext4: keep existing extra fields when inode expands (bsc#1013018). - ext4: reject inodes with negative size (bsc#1013018). - fbdev/efifb: Fix 16 color palette entry calculation (bsc#1041762). - firmware: fix directory creation rule matching with make 3.80 (bsc#1012422). - firmware: fix directory creation rule matching with make 3.82 (bsc#1012422). - fixed invalid assignment of 64bit mask to host dma_boundary for scatter gather segment boundary limit (bsc#1042045). - Fix soft lockup in svc_rdma_send (bsc#1044854). - fnic: Return 'DID_IMM_RETRY' if rport is not ready (bsc#1035920). - fnic: Using rport->dd_data to check rport online instead of rport_lookup (bsc#1035920). - fs/block_dev: always invalidate cleancache in invalidate_bdev() (git-fixes). - fs: fix data invalidation in the cleancache during direct IO (git-fixes). - fs/xattr.c: zero out memory copied to userspace in getxattr (bsc#1013018). - fuse: add missing FR_FORCE (bsc#1013018). - fuse: initialize fc->release before calling it (bsc#1013018). - genirq: Prevent proc race against freeing of irq descriptors (bnc#1044230). - hrtimer: Allow concurrent hrtimer_start() for self restarting timers (bnc#1013018). - i40e: avoid null pointer dereference (bsc#909486 FATE#317393). - i40e: Fix TSO with more than 8 frags per segment issue (bsc#985561). - i40e/i40evf: Break up xmit_descriptor_count from maybe_stop_tx (bsc#985561). - i40e/i40evf: Fix mixed size frags and linearization (bsc#985561). - i40e/i40evf: Limit TSO to 7 descriptors for payload instead of 8 per packet (bsc#985561). - i40e/i40evf: Rewrite logic for 8 descriptor per packet check (bsc#985561). - i40e: Impose a lower limit on gso size (bsc#985561). - i40e: Limit TX descriptor count in cases where frag size is greater than 16K (bsc#985561). - ib/mlx4: Demote mcg message from warning to debug (bsc#919382). - ib/mlx4: Fix ib device initialization error flow (bsc#919382). - ib/mlx4: Fix port query for 56Gb Ethernet links (bsc#919382). - ib/mlx4: Handle well-known-gid in mad_demux processing (bsc#919382). - ib/mlx4: Reduce SRIOV multicast cleanup warning message to debug level (bsc#919382). - ib/mlx4: Set traffic class in AH (bsc#919382). - Implement an ioctl to support the USMTMC-USB488 READ_STATUS_BYTE operation (bsc#1036288). - initial cr0 bits (bnc#1036056, LTC#153612). - input: cm109 - validate number of endpoints before using them (bsc#1037193). - input: hanwang - validate number of endpoints before using them (bsc#1037232). - input: yealink - validate number of endpoints before using them (bsc#1037227). - ipmr, ip6mr: fix scheduling while atomic and a deadlock with ipmr_get_route (git-fixes). - irq: Fix race condition (bsc#1042615). - isdn/gigaset: fix NULL-deref at probe (bsc#1037356). - isofs: Do not return EACCES for unknown filesystems (bsc#1013018). - jbd: do not wait (forever) for stale tid caused by wraparound (bsc#1020229). - jbd: Fix oops in journal_remove_journal_head() (bsc#1017143). - jsm: add support for additional Neo cards (bsc#1045615). - kabi fix (bsc#1008893). - kABI: mask struct xfs_icdinode change (bsc#1024788). - kabi: Protect xfs_mount and xfs_buftarg (bsc#1024508). - kabi:severeties: Add splice_write_to_file PASS This function is part of an xfs-specific fix which never went upstream and is not expected to have 3rdparty users other than xfs itself. - kernel-binary.spec: Propagate MAKE_ARGS to %build (bsc#1012422) - keys: Disallow keyrings beginning with '.' to be joined as session keyrings (bnc#1035576). - kvm: kvm_io_bus_unregister_dev() should never fail. - libata: fix sff host state machine locking while polling (bsc#1045525). - libceph: NULL deref on crush_decode() error path (bsc#1044015). - libceph: potential NULL dereference in ceph_msg_data_create() (bsc#1051515). - libfc: fixup locking in fc_disc_stop() (bsc#1029140). - libfc: move 'pending' and 'requested' setting (bsc#1029140). - libfc: only restart discovery after timeout if not already running (bsc#1029140). - lockd: use init_utsname for id encoding (bsc#1033804). - lockd: use rpc client's cl_nodename for id encoding (bsc#1033804). - locking/rtmutex: Prevent dequeue vs. unlock race (bnc#1013018). - math64: New div64_u64_rem helper (bnc#938352). - md: ensure md devices are freed before module is unloaded (git-fixes). - md: fix a null dereference (bsc#1040351). - md: flush ->event_work before stopping array (git-fixes). - md linear: fix a race between linear_add() and linear_congested() (bsc#1018446). - md/linear: shutup lockdep warnning (bsc#1018446). - md: make sure GET_ARRAY_INFO ioctl reports correct "clean" status (git-fixes). - md/raid0: apply base queue limits *before* disk_stack_limits (git-fixes). - md/raid1: extend spinlock to protect raid1_end_read_request against inconsistencies (git-fixes). - md/raid1: fix test for 'was read error from last working device' (git-fixes). - md/raid5: do not record new size if resize_stripes fails (git-fixes). - md/raid5: Fix CPU hotplug callback registration (git-fixes). - md: use separate bio_pool for metadata writes (bsc#1040351). - megaraid_sas: add missing curly braces in ioctl handler (bsc#1050154). - mlx4: reduce OOM risk on arches with large pages (bsc#919382). - mmc: core: add missing pm event in mmc_pm_notify to fix hib restore (bsc#1045547). - mmc: ushc: fix NULL-deref at probe (bsc#1037191). - mm: do not collapse stack gap into THP (bnc#1039348) - mm: enlarge stack guard gap (bnc#1039348). - mm/huge_memory: replace VM_NO_THP VM_BUG_ON with actual VMA check (VM Functionality, bsc#1042832). - mm: hugetlb: call huge_pte_alloc() only if ptep is null (VM Functionality, bsc#1042832). - mm/memory-failure.c: use compound_head() flags for huge pages (bnc#971975 VM -- git fixes). - mm/mempolicy.c: do not put mempolicy before using its nodemask (References: VM Performance, bnc#931620). - mm, mmap: do not blow on PROT_NONE MAP_FIXED holes in the stack (bnc#1039348, bnc#1045340, bnc#1045406). - module: fix memory leak on early load_module() failures (bsc#1043014). - Move nr_cpus_allowed into a hole in struct_sched_entity instead of the one below task_struct.policy. RT fills the hole 29baa7478ba4 used, which will screw up kABI for RT instead of curing the space needed problem in sched_rt_entity caused by adding ff77e4685359. This leaves nr_cpus_alowed in an odd spot, but safely allows the RT entity specific data added by ff77e4685359 to reside where it belongs.. nr_cpus_allowed just moves from one odd spot to another. - mwifiex: printk() overflow with 32-byte SSIDs (bsc#1048185). - net: avoid reference counter overflows on fib_rules in multicast forwarding (git-fixes). - net: ip6mr: fix static mfc/dev leaks on table destruction (git-fixes). - net: ipmr: fix static mfc/dev leaks on table destruction (git-fixes). - net/mlx4_core: Eliminate warning messages for SRQ_LIMIT under SRIOV (bsc#919382). - net/mlx4_core: Enhance the MAD_IFC wrapper to convert VF port to physical (bsc#919382). - net/mlx4_core: Fix VF overwrite of module param which disables DMFS on new probed PFs (bsc#919382). - net/mlx4_core: Fix when to save some qp context flags for dynamic VST to VGT transitions (bsc#919382). - net/mlx4_core: Get num_tc using netdev_get_num_tc (bsc#919382). - net/mlx4_core: Prevent VF from changing port configuration (bsc#919382). - net/mlx4_core: Use-after-free causes a resource leak in flow-steering detach (bsc#919382). - net/mlx4_core: Use cq quota in SRIOV when creating completion EQs (bsc#919382). - net/mlx4_en: Avoid adding steering rules with invalid ring (bsc#919382). - net/mlx4_en: Change the error print to debug print (bsc#919382). - net/mlx4_en: fix overflow in mlx4_en_init_timestamp() (bsc#919382). - net/mlx4_en: Fix type mismatch for 32-bit systems (bsc#919382). - net/mlx4_en: Resolve dividing by zero in 32-bit system (bsc#919382). - net/mlx4_en: Wake TX queues only when there's enough room (bsc#1039258). - net/mlx4: Fix the check in attaching steering rules (bsc#919382). - net/mlx4: Fix uninitialized fields in rule when adding promiscuous mode to device managed flow steering (bsc#919382). - net: wimax/i2400m: fix NULL-deref at probe (bsc#1037358). - netxen_nic: set rcode to the return status from the call to netxen_issue_cmd (bnc#784815 FATE#313898). - nfs: Avoid getting confused by confused server (bsc#1045416). - nfsd4: minor NFSv2/v3 write decoding cleanup (bsc#1034670). - nfsd: check for oversized NFSv2/v3 arguments (bsc#1034670). - nfsd: do not risk using duplicate owner/file/delegation ids (bsc#1029212). - nfsd: Don't use state id of 0 - it is reserved (bsc#1049688 bsc#1051770). - nfsd: stricter decoding of write-like NFSv2/v3 ops (bsc#1034670). - nfs: Fix another OPEN_DOWNGRADE bug (git-next). - nfs: fix nfs_size_to_loff_t (git-fixes). - nfs: Fix size of NFSACL SETACL operations (git-fixes). - nfs: Make nfs_readdir revalidate less often (bsc#1048232). - nfs: tidy up nfs_show_mountd_netid (git-fixes). - nfsv4: Do not call put_rpccred() under the rcu_read_lock() (git-fixes). - nfsv4: Fix another bug in the close/open_downgrade code (git-fixes). - nfsv4: fix getacl head length estimation (git-fixes). - nfsv4: Fix problems with close in the presence of a delegation (git-fixes). - nfsv4: Fix the underestimation of delegation XDR space reservation (git-fixes). - ocfs2: do not write error flag to user structure we cannot copy from/to (bsc#1013018). - ocfs2: Don't clear SGID when inheriting ACLs (bsc#1030552). - ocfs2: fix crash caused by stale lvb with fsdlm plugin (bsc#1013800). - ocfs2: fix error return code in ocfs2_info_handle_freefrag() (bsc#1013018). - ocfs2: NFS hangs in __ocfs2_cluster_lock due to race with ocfs2_unblock_lock (bsc#962257). - ocfs2: null deref on allocation error (bsc#1013018). - pci: Allow access to VPD attributes with size 0 (bsc#1018074). - pciback: only check PF if actually dealing with a VF (bsc#999245). - pciback: use pci_physfn() (bsc#999245). - pci: Fix devfn for VPD access through function 0 (bnc#943786 git-fixes). - perf/core: Correct event creation with PERF_FORMAT_GROUP (bnc#1013018). - perf/core: Fix event inheritance on fork() (bnc#1013018). - posix-timers: Fix stack info leak in timer_create() (bnc#1013018). - powerpc,cpuidle: Dont toggle CPUIDLE_FLAG_IGNORE while setting smt_snooze_delay (bsc#1023163). - powerpc: Drop support for pre-POWER4 cpus (fate#322495, bsc#1032471). - powerpc/fadump: Fix the race in crash_fadump() (bsc#1022971). - powerpc/fadump: Reserve memory at an offset closer to bottom of RAM (bsc#1032141). - powerpc/fadump: Update fadump documentation (bsc#1032141). - powerpc/mm: Do not alias user region to other regions below PAGE_OFFSET (bsc#928138,fate#319026). - powerpc/mm/hash: Check for non-kernel address in get_kernel_vsid() (fate#322495, bsc#1032471). - powerpc/mm/hash: Convert mask to unsigned long (fate#322495, bsc#1032471). - powerpc/mm/hash: Increase VA range to 128TB (fate#322495, bsc#1032471). - powerpc/mm/hash: Properly mask the ESID bits when building proto VSID (fate#322495, bsc#1032471). - powerpc/mm/hash: Support 68 bit VA (fate#322495, bsc#1032471). - powerpc/mm/hash: Use context ids 1-4 for the kernel (fate#322495, bsc#1032471). - powerpc/mm: Remove checks that TASK_SIZE_USER64 is too small (fate#322495, bsc#1032471). - powerpc/mm/slice: Convert slice_mask high slice to a bitmap (fate#322495, bsc#1032471). - powerpc/mm/slice: Fix off-by-1 error when computing slice mask (fate#322495, bsc#1032471). - powerpc/mm/slice: Move slice_mask struct definition to slice.c (fate#322495, bsc#1032471). - powerpc/mm/slice: Update slice mask printing to use bitmap printing (fate#322495, bsc#1032471). - powerpc/mm/slice: Update the function prototype (fate#322495, bsc#1032471). - powerpc/mm: use macro PGTABLE_EADDR_SIZE instead of digital (fate#322495, bsc#1032471). - powerpc/nvram: Fix an incorrect partition merge (bsc#1016489). - powerpc/pseries: Release DRC when configure_connector fails (bsc#1035777, Pending Base Kernel Fixes). - powerpc: Remove STAB code (fate#322495, bsc#1032471). - powerpc/vdso64: Use double word compare on pointers (bsc#1016489). - raid1: avoid unnecessary spin locks in I/O barrier code (bsc#982783,bsc#1026260). - random32: fix off-by-one in seeding requirement (git-fixes). - rcu: Call out dangers of expedited RCU primitives (bsc#1008893). - rcu: Direct algorithmic SRCU implementation (bsc#1008893). - rcu: Flip ->completed only once per SRCU grace period (bsc#1008893). - rcu: Implement a variant of Peter's SRCU algorithm (bsc#1008893). - rcu: Increment upper bit only for srcu_read_lock() (bsc#1008893). - rcu: Remove fast check path from __synchronize_srcu() (bsc#1008893). - reiserfs: Don't clear SGID when inheriting ACLs (bsc#1030552). - reiserfs: don't preallocate blocks for extended attributes (bsc#990682). - Remove patches causing regression (bsc#1043234) - Remove superfluous make flags (bsc#1012422) - Return short read or 0 at end of a raw device, not EIO (bsc#1039594). - Revert "kabi:severeties: Add splice_write_to_file PASS" This reverts commit 05ecf7ab16b2ea555fadd1ce17d8177394de88f2. - Revert "math64: New div64_u64_rem helper" (bnc#938352). - Revert "xfs: fix up xfs_swap_extent_forks inline extent handling (bsc#1023888)." I was baing my assumption of SLE11-SP4 needing this patch on an old kernel build (3.0.101-63). Re-testing with the latest one 3.0.101-94 shows that the issue is not present. Furthermore this one was causing some crashes. This reverts commit 16ceeac70f7286b6232861c3170ed32e39dcc68c. - rfkill: fix rfkill_fop_read wait_event usage (bsc#1046192). - s390/kmsg: add missing kmsg descriptions (bnc#1025702, LTC#151573). - s390/qdio: clear DSCI prior to scanning multiple input queues (bnc#1046715, LTC#156234). - s390/qeth: no ETH header for outbound AF_IUCV (bnc#1046715, LTC#156276). - s390/qeth: size calculation outbound buffers (bnc#1046715, LTC#156276). - s390/vmlogrdr: fix IUCV buffer allocation (bnc#1025702, LTC#152144). - s390/zcrypt: Introduce CEX6 toleration (FATE#321782, LTC#147505). - sched: Always initialize cpu-power (bnc#1013018). - sched: Avoid cputime scaling overflow (bnc#938352). - sched: Avoid prev->stime underflow (bnc#938352). - sched/core: Fix TASK_DEAD race in finish_task_switch() (bnc#1013018). - sched/core: Remove false-positive warning from wake_up_process() (bnc#1044882). - sched/cputime: Do not scale when utime == 0 (bnc#938352). - sched/debug: Print the scheduler topology group mask (bnc#1013018). - sched: Do not account bogus utime (bnc#938352). - sched/fair, cpumask: Export for_each_cpu_wrap() (bnc#1013018). - sched/fair: Fix min_vruntime tracking (bnc#1013018). - sched: Fix domain iteration (bnc#1013018). - sched: Fix SD_OVERLAP (bnc#1013018). - sched/loadavg: Fix loadavg artifacts on fully idle and on fully loaded systems (bnc#1013018). - sched: Lower chances of cputime scaling overflow (bnc#938352). - sched: Move nr_cpus_allowed out of 'struct sched_rt_entity' (bnc#1013018). Prep for b60205c7c558 sched/fair: Fix min_vruntime tracking - sched: Rename a misleading variable in build_overlap_sched_groups() (bnc#1013018). - sched/rt: Fix PI handling vs. sched_setscheduler() (bnc#1013018). Prep for b60205c7c558 sched/fair: Fix min_vruntime tracking - sched/topology: Fix building of overlapping sched-groups (bnc#1013018). - sched/topology: Fix overlapping sched_group_capacity (bnc#1013018). - sched/topology: Fix overlapping sched_group_mask (bnc#1013018). - sched/topology: Move comment about asymmetric node setups (bnc#1013018). - sched/topology: Optimize build_group_mask() (bnc#1013018). - sched/topology: Refactor function build_overlap_sched_groups() (bnc#1013018). - sched/topology: Remove FORCE_SD_OVERLAP (bnc#1013018). - sched/topology: Simplify build_overlap_sched_groups() (bnc#1013018). - sched/topology: Verify the first group matches the child domain (bnc#1013018). - sched: Use swap() macro in scale_stime() (bnc#938352). - scsi: bnx2i: missing error code in bnx2i_ep_connect() (bsc#1048221). - scsi: fix race between simultaneous decrements of ->host_failed (bsc#1050154). - scsi: fnic: Correcting rport check location in fnic_queuecommand_lck (bsc#1035920). - scsi: mvsas: fix command_active typo (bsc#1050154). - scsi: qla2xxx: Fix scsi scan hang triggered if adapter fails during init (bsc#1050154). - scsi: virtio_scsi: fix memory leak on full queue condition (bsc#1028880). - scsi: zfcp: do not trace pure benign residual HBA responses at default level (bnc#1025702, LTC#151317). - scsi: zfcp: fix rport unblock race with LUN recovery (bnc#1025702, LTC#151319). - scsi: zfcp: fix use-after-free by not tracing WKA port open/close on failed send (bnc#1025702, LTC#151365). - scsi: zfcp: fix use-after-"free" in FC ingress path after TMF (bnc#1025702, LTC#151312). - sfc: do not device_attach if a reset is pending (bsc#909618 FATE#317521). - sfc: reduce severity of PIO buffer alloc failures (bsc#1019168). - smsc75xx: use skb_cow_head() to deal with cloned skbs (bsc#1045154). - splice: Stub splice_write_to_file (bsc#1043234). - sunrpc: Clean up the slot table allocation (bsc#1013862). - sunrpc: Fix a memory leak in the backchannel code (git-fixes). - sunrpc: Initalise the struct xprt upon allocation (bsc#1013862). - svcrdma: Fix send_reply() scatter/gather set-up (git-fixes). - target/iscsi: Fix double free in lio_target_tiqn_addtpg() (bsc#1050154). - tcp: abort orphan sockets stalling on zero window probes (bsc#1021913). - tracing: Fix syscall_*regfunc() vs copy_process() race (bnc#1042687). - tracing/kprobes: Enforce kprobes teardown after testing (bnc#1013018). - udf: Fix deadlock between writeback and udf_setsize() (bsc#1013018). - udf: Fix races with i_size changes during readpage (bsc#1013018). - Update metadata for serial fixes (bsc#1013070) - Update patches.fixes/nfs-svc-rdma.fix (bsc#1044854). - usb: cdc-acm: fix broken runtime suspend (bsc#1033771). - usb: cdc-acm: fix open and suspend race (bsc#1033771). - usb: cdc-acm: fix potential urb leak and PM imbalance in write (bsc#1033771). - usb: cdc-acm: fix runtime PM for control messages (bsc#1033771). - usb: cdc-acm: fix runtime PM imbalance at shutdown (bsc#1033771). - usb: cdc-acm: fix shutdown and suspend race (bsc#1033771). - usb: cdc-acm: fix write and resume race (bsc#1033771). - usb: cdc-acm: fix write and suspend race (bsc#1033771). - usb: class: usbtmc.c: Cleaning up uninitialized variables (bsc#1036288). - usb: class: usbtmc: do not print error when allocating urb fails (bsc#1036288). - usb: class: usbtmc: do not print on ENOMEM (bsc#1036288). - usb: hub: Fix crash after failure to read BOS descriptor (FATE#317453). - usb: iowarrior: fix info ioctl on big-endian hosts (bsc#1037441). - usb: iowarrior: fix NULL-deref in write (bsc#1037359). - usb: r8a66597-hcd: select a different endpoint on timeout (bsc#1047053). - usb: serial: ark3116: fix register-accessor error handling (git-fixes). - usb: serial: ch341: fix open error handling (bsc#1037441). - usb: serial: cp210x: fix tiocmget error handling (bsc#1037441). - usb: serial: ftdi_sio: fix line-status over-reporting (bsc#1037441). - usb: serial: io_edgeport: fix epic-descriptor handling (bsc#1037441). - usb: serial: io_ti: fix information leak in completion handler (git-fixes). - usb: serial: iuu_phoenix: fix NULL-deref at open (bsc#1033794). - usb: serial: kl5kusb105: fix line-state error handling (bsc#1021256). - usb: serial: mos7720: fix NULL-deref at open (bsc#1033816). - usb: serial: mos7720: fix parallel probe (bsc#1033816). - usb: serial: mos7720: fix parport use-after-free on probe errors (bsc#1033816). - usb: serial: mos7720: fix use-after-free on probe errors (bsc#1033816). - usb: serial: mos7840: fix another NULL-deref at open (bsc#1034026). - usb: serial: mos7840: fix NULL-deref at open (bsc#1034026). - usb: serial: oti6858: fix NULL-deref at open (bsc#1037441). - usb: serial: sierra: fix bogus alternate-setting assumption (bsc#1037441). - usb: serial: spcp8x5: fix NULL-deref at open (bsc#1037441). - usbtmc: remove redundant braces (bsc#1036288). - usbtmc: remove trailing spaces (bsc#1036288). - usb: usbip: fix nonconforming hub descriptor (bsc#1047487). - usb: usbtmc: add device quirk for Rigol DS6104 (bsc#1036288). - usb: usbtmc: Add flag rigol_quirk to usbtmc_device_data (bsc#1036288). - usb: usbtmc: add missing endpoint sanity check (bsc#1036288). - usb: usbtmc: Change magic number to constant (bsc#1036288). - usb: usbtmc: fix big-endian probe of Rigol devices (bsc#1036288). - usb: usbtmc: fix DMA on stack (bsc#1036288). - usb: usbtmc: fix probe error path (bsc#1036288). - usb: usbtmc: Set rigol_quirk if device is listed (bsc#1036288). - usb: usbtmc: TMC request code segregated from usbtmc_read (bsc#1036288). - usb: usbtmc: usbtmc_read sends multiple TMC header based on rigol_quirk (bsc#1036288). - usbvision: fix NULL-deref at probe (bsc#1050431). - usb: xhci-mem: use passed in GFP flags instead of GFP_KERNEL (bsc#1023014). - Use make --output-sync feature when available (bsc#1012422). The mesages in make output can interleave making it impossible to extract warnings reliably. Since version 4 GNU Make supports --output-sync flag that prints output of each sub-command atomically preventing this issue. Detect the flag and use it if available. SLE11 has make 3.81 so it is required to include make 4 in the kernel OBS projects to take advantege of this. - Use PF_LESS_THROTTLE in loop device thread (bsc#1027101). - uwb: hwa-rc: fix NULL-deref at probe (bsc#1037233). - uwb: i1480-dfu: fix NULL-deref at probe (bsc#1036629). - vb2: Fix an off by one error in 'vb2_plane_vaddr' (bsc#1050431). - vfs: split generic splice code from i_mutex locking (bsc#1024788). - vmxnet3: avoid calling pskb_may_pull with interrupts disabled (bsc#1045356). - vmxnet3: fix checks for dma mapping errors (bsc#1045356). - vmxnet3: fix lock imbalance in vmxnet3_tq_xmit() (bsc#1045356). - vmxnet3: segCnt can be 1 for LRO packets (bsc#988065, bsc#1029770). - x86, mm, paravirt: Fix vmalloc_fault oops during lazy MMU updates (bsc#948562). - x86/pci-calgary: Fix iommu_free() comparison of unsigned expression >= 0 (bsc#1051478). - xen: avoid deadlock in xenbus (bnc#1047523). - xen-blkfront: correct maximum segment accounting (bsc#1018263). - xen-blkfront: do not call talk_to_blkback when already connected to blkback. - xen-blkfront: free resources if xlvbd_alloc_gendisk fails. - xen/PCI-MSI: fix sysfs teardown in DomU (bsc#986924). - xfrm: dst_entries_init() per-net dst_ops (bsc#1030814). - xfrm: NULL dereference on allocation failure (bsc#1047343). - xfrm: Oops on error in pfkey_msg2xfrm_state() (bsc#1047653). - xfs_dmapi: fix the debug compilation of xfs_dmapi (bsc#989056). - xfs: do not assert fail on non-async buffers on ioacct decrement (bsc#1024508). - xfs: exclude never-released buffers from buftarg I/O accounting (bsc#1024508). - xfs: fix buffer overflow dm_get_dirattrs/dm_get_dirattrs2 (bsc#989056). - xfs: Fix lock ordering in splice write (bsc#1024788). - xfs: fix up xfs_swap_extent_forks inline extent handling (bsc#1023888). - xfs: kill xfs_itruncate_start (bsc#1024788). - xfs: Make xfs_icdinode->di_dmstate atomic_t (bsc#1024788). - xfs: remove the i_new_size field in struct xfs_inode (bsc#1024788). - xfs: remove the i_size field in struct xfs_inode (bsc#1024788). - xfs: remove xfs_itruncate_data (bsc#1024788). - xfs: replace global xfslogd wq with per-mount wq (bsc#1024508). - xfs: split xfs_itruncate_finish (bsc#1024788). - xfs: split xfs_setattr (bsc#1024788). - xfs: Synchronize xfs_buf disposal routines (bsc#1041160). - xfs: track and serialize in-flight async buffers against unmount (bsc#1024508). - xfs: use ->b_state to fix buffer I/O accounting release race (bsc#1041160). - xprtrdma: Free the pd if ib_query_qp() fails (git-fixes). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Real Time Extension 11-SP4: zypper in -t patch slertesp4-kernel-rt-13262=1 - SUSE Linux Enterprise Debuginfo 11-SP4: zypper in -t patch dbgsp4-kernel-rt-13262=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Real Time Extension 11-SP4 (x86_64): kernel-rt-3.0.101.rt130-69.5.1 kernel-rt-base-3.0.101.rt130-69.5.1 kernel-rt-devel-3.0.101.rt130-69.5.1 kernel-rt_trace-3.0.101.rt130-69.5.1 kernel-rt_trace-base-3.0.101.rt130-69.5.1 kernel-rt_trace-devel-3.0.101.rt130-69.5.1 kernel-source-rt-3.0.101.rt130-69.5.1 kernel-syms-rt-3.0.101.rt130-69.5.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (x86_64): kernel-rt-debuginfo-3.0.101.rt130-69.5.1 kernel-rt-debugsource-3.0.101.rt130-69.5.1 kernel-rt_debug-debuginfo-3.0.101.rt130-69.5.1 kernel-rt_debug-debugsource-3.0.101.rt130-69.5.1 kernel-rt_trace-debuginfo-3.0.101.rt130-69.5.1 kernel-rt_trace-debugsource-3.0.101.rt130-69.5.1 References: https://www.suse.com/security/cve/CVE-2014-9922.html https://www.suse.com/security/cve/CVE-2015-3288.html https://www.suse.com/security/cve/CVE-2015-8970.html https://www.suse.com/security/cve/CVE-2016-10200.html https://www.suse.com/security/cve/CVE-2016-2188.html https://www.suse.com/security/cve/CVE-2016-4997.html https://www.suse.com/security/cve/CVE-2016-4998.html https://www.suse.com/security/cve/CVE-2016-5243.html https://www.suse.com/security/cve/CVE-2016-7117.html https://www.suse.com/security/cve/CVE-2017-1000363.html https://www.suse.com/security/cve/CVE-2017-1000364.html https://www.suse.com/security/cve/CVE-2017-1000365.html https://www.suse.com/security/cve/CVE-2017-1000380.html https://www.suse.com/security/cve/CVE-2017-11176.html https://www.suse.com/security/cve/CVE-2017-11473.html https://www.suse.com/security/cve/CVE-2017-2636.html https://www.suse.com/security/cve/CVE-2017-2647.html https://www.suse.com/security/cve/CVE-2017-2671.html https://www.suse.com/security/cve/CVE-2017-5669.html https://www.suse.com/security/cve/CVE-2017-5970.html https://www.suse.com/security/cve/CVE-2017-5986.html https://www.suse.com/security/cve/CVE-2017-6074.html https://www.suse.com/security/cve/CVE-2017-6214.html https://www.suse.com/security/cve/CVE-2017-6348.html https://www.suse.com/security/cve/CVE-2017-6353.html https://www.suse.com/security/cve/CVE-2017-6951.html https://www.suse.com/security/cve/CVE-2017-7184.html https://www.suse.com/security/cve/CVE-2017-7187.html https://www.suse.com/security/cve/CVE-2017-7261.html https://www.suse.com/security/cve/CVE-2017-7294.html https://www.suse.com/security/cve/CVE-2017-7308.html https://www.suse.com/security/cve/CVE-2017-7482.html https://www.suse.com/security/cve/CVE-2017-7487.html https://www.suse.com/security/cve/CVE-2017-7533.html https://www.suse.com/security/cve/CVE-2017-7542.html https://www.suse.com/security/cve/CVE-2017-7616.html https://www.suse.com/security/cve/CVE-2017-8890.html https://www.suse.com/security/cve/CVE-2017-8924.html https://www.suse.com/security/cve/CVE-2017-8925.html https://www.suse.com/security/cve/CVE-2017-9074.html https://www.suse.com/security/cve/CVE-2017-9075.html https://www.suse.com/security/cve/CVE-2017-9076.html https://www.suse.com/security/cve/CVE-2017-9077.html https://www.suse.com/security/cve/CVE-2017-9242.html https://bugzilla.suse.com/1003077 https://bugzilla.suse.com/1005651 https://bugzilla.suse.com/1008374 https://bugzilla.suse.com/1008850 https://bugzilla.suse.com/1008893 https://bugzilla.suse.com/1012422 https://bugzilla.suse.com/1013018 https://bugzilla.suse.com/1013070 https://bugzilla.suse.com/1013800 https://bugzilla.suse.com/1013862 https://bugzilla.suse.com/1016489 https://bugzilla.suse.com/1017143 https://bugzilla.suse.com/1018074 https://bugzilla.suse.com/1018263 https://bugzilla.suse.com/1018446 https://bugzilla.suse.com/1019168 https://bugzilla.suse.com/1020229 https://bugzilla.suse.com/1021256 https://bugzilla.suse.com/1021913 https://bugzilla.suse.com/1022971 https://bugzilla.suse.com/1023014 https://bugzilla.suse.com/1023051 https://bugzilla.suse.com/1023163 https://bugzilla.suse.com/1023888 https://bugzilla.suse.com/1024508 https://bugzilla.suse.com/1024788 https://bugzilla.suse.com/1024938 https://bugzilla.suse.com/1025235 https://bugzilla.suse.com/1025702 https://bugzilla.suse.com/1026024 https://bugzilla.suse.com/1026260 https://bugzilla.suse.com/1026722 https://bugzilla.suse.com/1026914 https://bugzilla.suse.com/1027066 https://bugzilla.suse.com/1027101 https://bugzilla.suse.com/1027178 https://bugzilla.suse.com/1027565 https://bugzilla.suse.com/1028372 https://bugzilla.suse.com/1028415 https://bugzilla.suse.com/1028880 https://bugzilla.suse.com/1029140 https://bugzilla.suse.com/1029212 https://bugzilla.suse.com/1029770 https://bugzilla.suse.com/1029850 https://bugzilla.suse.com/1030213 https://bugzilla.suse.com/1030552 https://bugzilla.suse.com/1030573 https://bugzilla.suse.com/1030593 https://bugzilla.suse.com/1030814 https://bugzilla.suse.com/1031003 https://bugzilla.suse.com/1031052 https://bugzilla.suse.com/1031440 https://bugzilla.suse.com/1031579 https://bugzilla.suse.com/1032141 https://bugzilla.suse.com/1032340 https://bugzilla.suse.com/1032471 https://bugzilla.suse.com/1033287 https://bugzilla.suse.com/1033336 https://bugzilla.suse.com/1033771 https://bugzilla.suse.com/1033794 https://bugzilla.suse.com/1033804 https://bugzilla.suse.com/1033816 https://bugzilla.suse.com/1034026 https://bugzilla.suse.com/1034670 https://bugzilla.suse.com/1035576 https://bugzilla.suse.com/1035777 https://bugzilla.suse.com/1035920 https://bugzilla.suse.com/1036056 https://bugzilla.suse.com/1036288 https://bugzilla.suse.com/1036629 https://bugzilla.suse.com/1037182 https://bugzilla.suse.com/1037183 https://bugzilla.suse.com/1037191 https://bugzilla.suse.com/1037193 https://bugzilla.suse.com/1037227 https://bugzilla.suse.com/1037232 https://bugzilla.suse.com/1037233 https://bugzilla.suse.com/1037356 https://bugzilla.suse.com/1037358 https://bugzilla.suse.com/1037359 https://bugzilla.suse.com/1037441 https://bugzilla.suse.com/1038544 https://bugzilla.suse.com/1038879 https://bugzilla.suse.com/1038981 https://bugzilla.suse.com/1038982 https://bugzilla.suse.com/1039258 https://bugzilla.suse.com/1039348 https://bugzilla.suse.com/1039354 https://bugzilla.suse.com/1039456 https://bugzilla.suse.com/1039594 https://bugzilla.suse.com/1039882 https://bugzilla.suse.com/1039883 https://bugzilla.suse.com/1039885 https://bugzilla.suse.com/1040069 https://bugzilla.suse.com/1040351 https://bugzilla.suse.com/1041160 https://bugzilla.suse.com/1041431 https://bugzilla.suse.com/1041762 https://bugzilla.suse.com/1041975 https://bugzilla.suse.com/1042045 https://bugzilla.suse.com/1042200 https://bugzilla.suse.com/1042615 https://bugzilla.suse.com/1042633 https://bugzilla.suse.com/1042687 https://bugzilla.suse.com/1042832 https://bugzilla.suse.com/1043014 https://bugzilla.suse.com/1043234 https://bugzilla.suse.com/1043935 https://bugzilla.suse.com/1044015 https://bugzilla.suse.com/1044125 https://bugzilla.suse.com/1044216 https://bugzilla.suse.com/1044230 https://bugzilla.suse.com/1044854 https://bugzilla.suse.com/1044882 https://bugzilla.suse.com/1044913 https://bugzilla.suse.com/1044985 https://bugzilla.suse.com/1045154 https://bugzilla.suse.com/1045340 https://bugzilla.suse.com/1045356 https://bugzilla.suse.com/1045406 https://bugzilla.suse.com/1045416 https://bugzilla.suse.com/1045525 https://bugzilla.suse.com/1045538 https://bugzilla.suse.com/1045547 https://bugzilla.suse.com/1045615 https://bugzilla.suse.com/1046107 https://bugzilla.suse.com/1046122 https://bugzilla.suse.com/1046192 https://bugzilla.suse.com/1046715 https://bugzilla.suse.com/1047027 https://bugzilla.suse.com/1047053 https://bugzilla.suse.com/1047343 https://bugzilla.suse.com/1047354 https://bugzilla.suse.com/1047487 https://bugzilla.suse.com/1047523 https://bugzilla.suse.com/1047653 https://bugzilla.suse.com/1048185 https://bugzilla.suse.com/1048221 https://bugzilla.suse.com/1048232 https://bugzilla.suse.com/1048275 https://bugzilla.suse.com/1049483 https://bugzilla.suse.com/1049603 https://bugzilla.suse.com/1049688 https://bugzilla.suse.com/1049882 https://bugzilla.suse.com/1050154 https://bugzilla.suse.com/1050431 https://bugzilla.suse.com/1051478 https://bugzilla.suse.com/1051515 https://bugzilla.suse.com/1051770 https://bugzilla.suse.com/784815 https://bugzilla.suse.com/792863 https://bugzilla.suse.com/799133 https://bugzilla.suse.com/870618 https://bugzilla.suse.com/909486 https://bugzilla.suse.com/909618 https://bugzilla.suse.com/911105 https://bugzilla.suse.com/919382 https://bugzilla.suse.com/928138 https://bugzilla.suse.com/931620 https://bugzilla.suse.com/938352 https://bugzilla.suse.com/943786 https://bugzilla.suse.com/948562 https://bugzilla.suse.com/962257 https://bugzilla.suse.com/970956 https://bugzilla.suse.com/971975 https://bugzilla.suse.com/972891 https://bugzilla.suse.com/979021 https://bugzilla.suse.com/982783 https://bugzilla.suse.com/983212 https://bugzilla.suse.com/985561 https://bugzilla.suse.com/986362 https://bugzilla.suse.com/986365 https://bugzilla.suse.com/986924 https://bugzilla.suse.com/988065 https://bugzilla.suse.com/989056 https://bugzilla.suse.com/990682 https://bugzilla.suse.com/991651 https://bugzilla.suse.com/995542 https://bugzilla.suse.com/999245 From sle-security-updates at lists.suse.com Mon Sep 4 13:42:35 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Mon, 4 Sep 2017 21:42:35 +0200 (CEST) Subject: SUSE-SU-2017:2344-1: important: Security update for libzypp, zypper Message-ID: <20170904194235.BF0BEFCA1@maintenance.suse.de> SUSE Security Update: Security update for libzypp, zypper ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2344-1 Rating: important References: #1008325 #1038984 #1045735 #1047785 #1054088 #1054671 #1055920 Cross-References: CVE-2017-7436 Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Desktop 12-SP3 ______________________________________________________________________________ An update that solves one vulnerability and has 6 fixes is now available. Description: The Software Update Stack was updated to receive fixes and enhancements. libzypp: - Adapt to work with GnuPG 2.1.23. (bsc#1054088) - Support signing with subkeys. (bsc#1008325) - Enhance sort order for media.1/products. (bsc#1054671) zypper: - Also show a gpg key's subkeys. (bsc#1008325) - Improve signature check callback messages. (bsc#1045735) - Add options to tune the GPG check settings. (bsc#1045735) - Adapt download callback to report and handle unsigned packages. (bsc#1038984, CVE-2017-7436) - Report missing/optional files as 'not found' rather than 'error'. (bsc#1047785) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2017-1447=1 - SUSE Linux Enterprise Server 12-SP3: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2017-1447=1 - SUSE Linux Enterprise Desktop 12-SP3: zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2017-1447=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 ppc64le s390x x86_64): libzypp-debuginfo-16.15.6-2.8.1 libzypp-debugsource-16.15.6-2.8.1 libzypp-devel-16.15.6-2.8.1 libzypp-devel-doc-16.15.6-2.8.1 - SUSE Linux Enterprise Server 12-SP3 (aarch64 ppc64le s390x x86_64): libzypp-16.15.6-2.8.1 libzypp-debuginfo-16.15.6-2.8.1 libzypp-debugsource-16.15.6-2.8.1 zypper-1.13.32-21.3.2 zypper-debuginfo-1.13.32-21.3.2 zypper-debugsource-1.13.32-21.3.2 - SUSE Linux Enterprise Server 12-SP3 (noarch): zypper-log-1.13.32-21.3.2 - SUSE Linux Enterprise Desktop 12-SP3 (noarch): zypper-log-1.13.32-21.3.2 - SUSE Linux Enterprise Desktop 12-SP3 (x86_64): libzypp-16.15.6-2.8.1 libzypp-debuginfo-16.15.6-2.8.1 libzypp-debugsource-16.15.6-2.8.1 zypper-1.13.32-21.3.2 zypper-debuginfo-1.13.32-21.3.2 zypper-debugsource-1.13.32-21.3.2 References: https://www.suse.com/security/cve/CVE-2017-7436.html https://bugzilla.suse.com/1008325 https://bugzilla.suse.com/1038984 https://bugzilla.suse.com/1045735 https://bugzilla.suse.com/1047785 https://bugzilla.suse.com/1054088 https://bugzilla.suse.com/1054671 https://bugzilla.suse.com/1055920 From sle-security-updates at lists.suse.com Tue Sep 5 10:08:01 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Tue, 5 Sep 2017 18:08:01 +0200 (CEST) Subject: SUSE-SU-2017:2350-1: important: Security update for python-pycrypto Message-ID: <20170905160801.E0B7AFC9D@maintenance.suse.de> SUSE Security Update: Security update for python-pycrypto ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2350-1 Rating: important References: #1017420 #1047666 Cross-References: CVE-2013-7459 Affected Products: SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 6 SUSE Manager Tools 12 SUSE Manager Server 3.1 SUSE Manager Server 3.0 SUSE Manager Proxy 3.1 SUSE Manager Proxy 3.0 SUSE Linux Enterprise Point of Sale 12-SP2 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Enterprise Storage 4 SUSE Enterprise Storage 3 SUSE Container as a Service Platform ALL OpenStack Cloud Magnum Orchestration 7 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for python-pycrypto fixes the following issues: - CVE-2013-7459: Fixed a potential heap buffer overflow in ALGnew (bsc#1017420). python-paramiko was adjusted to work together with this python-pycrypto change. (bsc#1047666) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud 7: zypper in -t patch SUSE-OpenStack-Cloud-7-2017-1457=1 - SUSE OpenStack Cloud 6: zypper in -t patch SUSE-OpenStack-Cloud-6-2017-1457=1 - SUSE Manager Tools 12: zypper in -t patch SUSE-SLE-Manager-Tools-12-2017-1457=1 - SUSE Manager Server 3.1: zypper in -t patch SUSE-SUSE-Manager-Server-3.1-2017-1457=1 - SUSE Manager Server 3.0: zypper in -t patch SUSE-SUSE-Manager-Server-3.0-2017-1457=1 - SUSE Manager Proxy 3.1: zypper in -t patch SUSE-SUSE-Manager-Proxy-3.1-2017-1457=1 - SUSE Manager Proxy 3.0: zypper in -t patch SUSE-SUSE-Manager-Proxy-3.0-2017-1457=1 - SUSE Linux Enterprise Point of Sale 12-SP2: zypper in -t patch SUSE-SLE-POS-12-SP2-2017-1457=1 - SUSE Linux Enterprise Module for Web Scripting 12: zypper in -t patch SUSE-SLE-Module-Web-Scripting-12-2017-1457=1 - SUSE Linux Enterprise Module for Public Cloud 12: zypper in -t patch SUSE-SLE-Module-Public-Cloud-12-2017-1457=1 - SUSE Linux Enterprise Module for Advanced Systems Management 12: zypper in -t patch SUSE-SLE-Module-Adv-Systems-Management-12-2017-1457=1 - SUSE Enterprise Storage 4: zypper in -t patch SUSE-Storage-4-2017-1457=1 - SUSE Enterprise Storage 3: zypper in -t patch SUSE-Storage-3-2017-1457=1 - SUSE Container as a Service Platform ALL: zypper in -t patch SUSE-CAASP-ALL-2017-1457=1 - OpenStack Cloud Magnum Orchestration 7: zypper in -t patch SUSE-OpenStack-Cloud-Magnum-Orchestration-7-2017-1457=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE OpenStack Cloud 7 (aarch64 s390x x86_64): python-pycrypto-2.6.1-10.3.1 - SUSE OpenStack Cloud 7 (s390x x86_64): python-pycrypto-debuginfo-2.6.1-10.3.1 - SUSE OpenStack Cloud 6 (noarch): python-paramiko-1.15.2-2.3.1 - SUSE OpenStack Cloud 6 (x86_64): python-pycrypto-2.6.1-10.3.1 python-pycrypto-debuginfo-2.6.1-10.3.1 - SUSE Manager Tools 12 (aarch64 ppc64le s390x x86_64): python-pycrypto-2.6.1-10.3.1 - SUSE Manager Tools 12 (ppc64le s390x x86_64): python-pycrypto-debuginfo-2.6.1-10.3.1 - SUSE Manager Server 3.1 (ppc64le s390x x86_64): python-pycrypto-2.6.1-10.3.1 python-pycrypto-debuginfo-2.6.1-10.3.1 - SUSE Manager Server 3.0 (s390x x86_64): python-pycrypto-2.6.1-10.3.1 python-pycrypto-debuginfo-2.6.1-10.3.1 - SUSE Manager Proxy 3.1 (ppc64le x86_64): python-pycrypto-2.6.1-10.3.1 python-pycrypto-debuginfo-2.6.1-10.3.1 - SUSE Manager Proxy 3.0 (x86_64): python-pycrypto-2.6.1-10.3.1 python-pycrypto-debuginfo-2.6.1-10.3.1 - SUSE Linux Enterprise Point of Sale 12-SP2 (x86_64): python-pycrypto-2.6.1-10.3.1 python-pycrypto-debuginfo-2.6.1-10.3.1 - SUSE Linux Enterprise Module for Web Scripting 12 (aarch64 ppc64le s390x x86_64): python-pycrypto-2.6.1-10.3.1 - SUSE Linux Enterprise Module for Web Scripting 12 (ppc64le s390x x86_64): python-pycrypto-debuginfo-2.6.1-10.3.1 - SUSE Linux Enterprise Module for Public Cloud 12 (aarch64 ppc64le s390x x86_64): python-pycrypto-2.6.1-10.3.1 - SUSE Linux Enterprise Module for Public Cloud 12 (ppc64le s390x x86_64): python-pycrypto-debuginfo-2.6.1-10.3.1 - SUSE Linux Enterprise Module for Public Cloud 12 (noarch): python-paramiko-1.15.2-2.6.1 - SUSE Linux Enterprise Module for Advanced Systems Management 12 (ppc64le s390x x86_64): python-pycrypto-2.6.1-10.3.1 python-pycrypto-debuginfo-2.6.1-10.3.1 - SUSE Enterprise Storage 4 (aarch64 x86_64): python-pycrypto-2.6.1-10.3.1 - SUSE Enterprise Storage 4 (x86_64): python-pycrypto-debuginfo-2.6.1-10.3.1 - SUSE Enterprise Storage 3 (aarch64 x86_64): python-pycrypto-2.6.1-10.3.1 - SUSE Enterprise Storage 3 (noarch): python-paramiko-1.15.2-2.3.1 - SUSE Enterprise Storage 3 (x86_64): python-pycrypto-debuginfo-2.6.1-10.3.1 - SUSE Container as a Service Platform ALL (x86_64): python-pycrypto-2.6.1-10.3.1 python-pycrypto-debuginfo-2.6.1-10.3.1 - SUSE Container as a Service Platform ALL (noarch): python-paramiko-1.16.0-10.3.5 - OpenStack Cloud Magnum Orchestration 7 (x86_64): python-pycrypto-2.6.1-10.3.1 python-pycrypto-debuginfo-2.6.1-10.3.1 References: https://www.suse.com/security/cve/CVE-2013-7459.html https://bugzilla.suse.com/1017420 https://bugzilla.suse.com/1047666 From sle-security-updates at lists.suse.com Tue Sep 5 10:08:49 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Tue, 5 Sep 2017 18:08:49 +0200 (CEST) Subject: SUSE-SU-2017:2351-1: Security update for python-XStatic-jquery-ui Message-ID: <20170905160849.11703F7BD@maintenance.suse.de> SUSE Security Update: Security update for python-XStatic-jquery-ui ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2351-1 Rating: low References: #996004 Cross-References: CVE-2016-7103 Affected Products: SUSE OpenStack Cloud 7 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for python-XStatic-jquery-ui fixes the following issues: - CVE-2016-7103: possible cross-site scripting in dialog closeText could lead to arbitrary code injection (bsc#996004) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud 7: zypper in -t patch SUSE-OpenStack-Cloud-7-2017-1458=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE OpenStack Cloud 7 (noarch): python-XStatic-jquery-ui-1.11.0.1-2.3.1 References: https://www.suse.com/security/cve/CVE-2016-7103.html https://bugzilla.suse.com/996004 From sle-security-updates at lists.suse.com Tue Sep 5 13:07:09 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Tue, 5 Sep 2017 21:07:09 +0200 (CEST) Subject: SUSE-SU-2017:2354-1: moderate: Security update for curl Message-ID: <20170905190709.F3165FCA8@maintenance.suse.de> SUSE Security Update: Security update for curl ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2354-1 Rating: moderate References: #1051644 Cross-References: CVE-2017-1000100 Affected Products: SUSE Studio Onsite 1.3 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for curl fixes the following issues: - CVE-2017-1000100: TFP sends more than buffer size and it could lead to a denial of service (bsc#1051644) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Studio Onsite 1.3: zypper in -t patch slestso13-curl-13265=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Studio Onsite 1.3 (x86_64): libcurl-devel-7.19.7-1.20.53.3.1 References: https://www.suse.com/security/cve/CVE-2017-1000100.html https://bugzilla.suse.com/1051644 From sle-security-updates at lists.suse.com Tue Sep 5 13:07:37 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Tue, 5 Sep 2017 21:07:37 +0200 (CEST) Subject: SUSE-SU-2017:2355-1: important: Security update for postgresql94 Message-ID: <20170905190737.7795BF7BD@maintenance.suse.de> SUSE Security Update: Security update for postgresql94 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2355-1 Rating: important References: #1051684 #1051685 #1053259 Cross-References: CVE-2017-7546 CVE-2017-7547 CVE-2017-7548 Affected Products: SUSE OpenStack Cloud 6 SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server for SAP 12-SP1 SUSE Linux Enterprise Server for SAP 12 SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Server 12-SP1-LTSS SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Desktop 12-SP2 ______________________________________________________________________________ An update that fixes three vulnerabilities is now available. Description: This update for postgresql94 fixes the following issues: * CVE-2017-7547: Further restrict visibility of pg_user_mappings.umoptions, to protect passwords stored as user mapping options. (bsc#1051685) * CVE-2017-7546: Disallow empty passwords in all password-based authentication methods. (bsc#1051684) * CVE-2017-7548: lo_put() function ignores ACLs. (bsc#1053259) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud 6: zypper in -t patch SUSE-OpenStack-Cloud-6-2017-1460=1 - SUSE Linux Enterprise Software Development Kit 12-SP2: zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1460=1 - SUSE Linux Enterprise Server for SAP 12-SP1: zypper in -t patch SUSE-SLE-SAP-12-SP1-2017-1460=1 - SUSE Linux Enterprise Server for SAP 12: zypper in -t patch SUSE-SLE-SAP-12-2017-1460=1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2: zypper in -t patch SUSE-SLE-RPI-12-SP2-2017-1460=1 - SUSE Linux Enterprise Server 12-SP2: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1460=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1460=1 - SUSE Linux Enterprise Server 12-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-2017-1460=1 - SUSE Linux Enterprise Desktop 12-SP2: zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-1460=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE OpenStack Cloud 6 (noarch): postgresql94-docs-9.4.13-21.5.1 - SUSE OpenStack Cloud 6 (x86_64): postgresql94-9.4.13-21.5.1 postgresql94-contrib-9.4.13-21.5.1 postgresql94-contrib-debuginfo-9.4.13-21.5.1 postgresql94-debuginfo-9.4.13-21.5.1 postgresql94-debugsource-9.4.13-21.5.1 postgresql94-server-9.4.13-21.5.1 postgresql94-server-debuginfo-9.4.13-21.5.1 - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 ppc64le s390x x86_64): postgresql94-devel-9.4.13-21.5.1 postgresql94-devel-debuginfo-9.4.13-21.5.1 postgresql94-libs-debugsource-9.4.13-21.5.1 - SUSE Linux Enterprise Server for SAP 12-SP1 (ppc64le x86_64): postgresql94-9.4.13-21.5.1 postgresql94-contrib-9.4.13-21.5.1 postgresql94-contrib-debuginfo-9.4.13-21.5.1 postgresql94-debuginfo-9.4.13-21.5.1 postgresql94-debugsource-9.4.13-21.5.1 postgresql94-server-9.4.13-21.5.1 postgresql94-server-debuginfo-9.4.13-21.5.1 - SUSE Linux Enterprise Server for SAP 12-SP1 (noarch): postgresql94-docs-9.4.13-21.5.1 - SUSE Linux Enterprise Server for SAP 12 (noarch): postgresql94-docs-9.4.13-21.5.1 - SUSE Linux Enterprise Server for SAP 12 (x86_64): postgresql94-9.4.13-21.5.1 postgresql94-contrib-9.4.13-21.5.1 postgresql94-contrib-debuginfo-9.4.13-21.5.1 postgresql94-debuginfo-9.4.13-21.5.1 postgresql94-debugsource-9.4.13-21.5.1 postgresql94-server-9.4.13-21.5.1 postgresql94-server-debuginfo-9.4.13-21.5.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (aarch64): postgresql94-9.4.13-21.5.1 postgresql94-contrib-9.4.13-21.5.1 postgresql94-contrib-debuginfo-9.4.13-21.5.1 postgresql94-debuginfo-9.4.13-21.5.1 postgresql94-debugsource-9.4.13-21.5.1 postgresql94-server-9.4.13-21.5.1 postgresql94-server-debuginfo-9.4.13-21.5.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (noarch): postgresql94-docs-9.4.13-21.5.1 - SUSE Linux Enterprise Server 12-SP2 (aarch64 ppc64le s390x x86_64): postgresql94-9.4.13-21.5.1 postgresql94-contrib-9.4.13-21.5.1 postgresql94-contrib-debuginfo-9.4.13-21.5.1 postgresql94-debuginfo-9.4.13-21.5.1 postgresql94-debugsource-9.4.13-21.5.1 postgresql94-server-9.4.13-21.5.1 postgresql94-server-debuginfo-9.4.13-21.5.1 - SUSE Linux Enterprise Server 12-SP2 (noarch): postgresql94-docs-9.4.13-21.5.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (ppc64le s390x x86_64): postgresql94-9.4.13-21.5.1 postgresql94-contrib-9.4.13-21.5.1 postgresql94-contrib-debuginfo-9.4.13-21.5.1 postgresql94-debuginfo-9.4.13-21.5.1 postgresql94-debugsource-9.4.13-21.5.1 postgresql94-server-9.4.13-21.5.1 postgresql94-server-debuginfo-9.4.13-21.5.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (noarch): postgresql94-docs-9.4.13-21.5.1 - SUSE Linux Enterprise Server 12-LTSS (ppc64le s390x x86_64): postgresql94-9.4.13-21.5.1 postgresql94-contrib-9.4.13-21.5.1 postgresql94-contrib-debuginfo-9.4.13-21.5.1 postgresql94-debuginfo-9.4.13-21.5.1 postgresql94-debugsource-9.4.13-21.5.1 postgresql94-server-9.4.13-21.5.1 postgresql94-server-debuginfo-9.4.13-21.5.1 - SUSE Linux Enterprise Server 12-LTSS (noarch): postgresql94-docs-9.4.13-21.5.1 - SUSE Linux Enterprise Desktop 12-SP2 (x86_64): postgresql94-9.4.13-21.5.1 postgresql94-debuginfo-9.4.13-21.5.1 postgresql94-debugsource-9.4.13-21.5.1 References: https://www.suse.com/security/cve/CVE-2017-7546.html https://www.suse.com/security/cve/CVE-2017-7547.html https://www.suse.com/security/cve/CVE-2017-7548.html https://bugzilla.suse.com/1051684 https://bugzilla.suse.com/1051685 https://bugzilla.suse.com/1053259 From sle-security-updates at lists.suse.com Tue Sep 5 13:08:25 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Tue, 5 Sep 2017 21:08:25 +0200 (CEST) Subject: SUSE-SU-2017:2356-1: important: Security update for postgresql96 Message-ID: <20170905190825.D0085F7BD@maintenance.suse.de> SUSE Security Update: Security update for postgresql96 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2356-1 Rating: important References: #1051684 #1051685 #1053259 Cross-References: CVE-2017-7546 CVE-2017-7547 CVE-2017-7548 Affected Products: SUSE OpenStack Cloud 6 SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server for SAP 12-SP1 SUSE Linux Enterprise Server for SAP 12 SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Server 12-SP1-LTSS SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Desktop 12-SP3 SUSE Linux Enterprise Desktop 12-SP2 ______________________________________________________________________________ An update that fixes three vulnerabilities is now available. Description: This update for postgresql96 fixes the following issues: * CVE-2017-7547: Further restrict visibility of pg_user_mappings.umoptions, to protect passwords stored as user mapping options. (bsc#1051685) * CVE-2017-7546: Disallow empty passwords in all password-based authentication methods. (bsc#1051684) * CVE-2017-7548: lo_put() function ignores ACLs. (bsc#1053259) The changelog for this release is here: https://www.postgresql.org/docs/9.6/static/release-9-6-4.html Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud 6: zypper in -t patch SUSE-OpenStack-Cloud-6-2017-1461=1 - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2017-1461=1 - SUSE Linux Enterprise Software Development Kit 12-SP2: zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1461=1 - SUSE Linux Enterprise Server for SAP 12-SP1: zypper in -t patch SUSE-SLE-SAP-12-SP1-2017-1461=1 - SUSE Linux Enterprise Server for SAP 12: zypper in -t patch SUSE-SLE-SAP-12-2017-1461=1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2: zypper in -t patch SUSE-SLE-RPI-12-SP2-2017-1461=1 - SUSE Linux Enterprise Server 12-SP3: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2017-1461=1 - SUSE Linux Enterprise Server 12-SP2: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1461=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1461=1 - SUSE Linux Enterprise Server 12-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-2017-1461=1 - SUSE Linux Enterprise Desktop 12-SP3: zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2017-1461=1 - SUSE Linux Enterprise Desktop 12-SP2: zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-1461=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE OpenStack Cloud 6 (x86_64): libecpg6-9.6.4-3.6.1 libecpg6-debuginfo-9.6.4-3.6.1 libpq5-32bit-9.6.4-3.6.1 libpq5-9.6.4-3.6.1 libpq5-debuginfo-32bit-9.6.4-3.6.1 libpq5-debuginfo-9.6.4-3.6.1 postgresql96-9.6.4-3.6.1 postgresql96-contrib-9.6.4-3.6.1 postgresql96-contrib-debuginfo-9.6.4-3.6.1 postgresql96-debuginfo-9.6.4-3.6.1 postgresql96-debugsource-9.6.4-3.6.1 postgresql96-libs-debugsource-9.6.4-3.6.1 postgresql96-server-9.6.4-3.6.1 postgresql96-server-debuginfo-9.6.4-3.6.1 - SUSE OpenStack Cloud 6 (noarch): postgresql96-docs-9.6.4-3.6.1 - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 ppc64le s390x x86_64): postgresql96-devel-9.6.4-3.6.1 postgresql96-devel-debuginfo-9.6.4-3.6.1 postgresql96-libs-debugsource-9.6.4-3.6.1 - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 ppc64le s390x x86_64): postgresql96-devel-9.6.4-3.6.1 postgresql96-devel-debuginfo-9.6.4-3.6.1 postgresql96-libs-debugsource-9.6.4-3.6.1 - SUSE Linux Enterprise Server for SAP 12-SP1 (ppc64le x86_64): libecpg6-9.6.4-3.6.1 libecpg6-debuginfo-9.6.4-3.6.1 libpq5-9.6.4-3.6.1 libpq5-debuginfo-9.6.4-3.6.1 postgresql96-9.6.4-3.6.1 postgresql96-contrib-9.6.4-3.6.1 postgresql96-contrib-debuginfo-9.6.4-3.6.1 postgresql96-debuginfo-9.6.4-3.6.1 postgresql96-debugsource-9.6.4-3.6.1 postgresql96-libs-debugsource-9.6.4-3.6.1 postgresql96-server-9.6.4-3.6.1 postgresql96-server-debuginfo-9.6.4-3.6.1 - SUSE Linux Enterprise Server for SAP 12-SP1 (noarch): postgresql96-docs-9.6.4-3.6.1 - SUSE Linux Enterprise Server for SAP 12-SP1 (x86_64): libpq5-32bit-9.6.4-3.6.1 libpq5-debuginfo-32bit-9.6.4-3.6.1 - SUSE Linux Enterprise Server for SAP 12 (noarch): postgresql96-docs-9.6.4-3.6.1 - SUSE Linux Enterprise Server for SAP 12 (x86_64): libecpg6-9.6.4-3.6.1 libecpg6-debuginfo-9.6.4-3.6.1 libpq5-32bit-9.6.4-3.6.1 libpq5-9.6.4-3.6.1 libpq5-debuginfo-32bit-9.6.4-3.6.1 libpq5-debuginfo-9.6.4-3.6.1 postgresql96-9.6.4-3.6.1 postgresql96-contrib-9.6.4-3.6.1 postgresql96-contrib-debuginfo-9.6.4-3.6.1 postgresql96-debuginfo-9.6.4-3.6.1 postgresql96-debugsource-9.6.4-3.6.1 postgresql96-libs-debugsource-9.6.4-3.6.1 postgresql96-server-9.6.4-3.6.1 postgresql96-server-debuginfo-9.6.4-3.6.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (aarch64): libecpg6-9.6.4-3.6.1 libecpg6-debuginfo-9.6.4-3.6.1 libpq5-9.6.4-3.6.1 libpq5-debuginfo-9.6.4-3.6.1 postgresql96-9.6.4-3.6.1 postgresql96-contrib-9.6.4-3.6.1 postgresql96-contrib-debuginfo-9.6.4-3.6.1 postgresql96-debuginfo-9.6.4-3.6.1 postgresql96-debugsource-9.6.4-3.6.1 postgresql96-libs-debugsource-9.6.4-3.6.1 postgresql96-server-9.6.4-3.6.1 postgresql96-server-debuginfo-9.6.4-3.6.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (noarch): postgresql96-docs-9.6.4-3.6.1 - SUSE Linux Enterprise Server 12-SP3 (aarch64 ppc64le s390x x86_64): libecpg6-9.6.4-3.6.1 libecpg6-debuginfo-9.6.4-3.6.1 libpq5-9.6.4-3.6.1 libpq5-debuginfo-9.6.4-3.6.1 postgresql96-9.6.4-3.6.1 postgresql96-contrib-9.6.4-3.6.1 postgresql96-contrib-debuginfo-9.6.4-3.6.1 postgresql96-debuginfo-9.6.4-3.6.1 postgresql96-debugsource-9.6.4-3.6.1 postgresql96-libs-debugsource-9.6.4-3.6.1 postgresql96-server-9.6.4-3.6.1 postgresql96-server-debuginfo-9.6.4-3.6.1 - SUSE Linux Enterprise Server 12-SP3 (s390x x86_64): libpq5-32bit-9.6.4-3.6.1 libpq5-debuginfo-32bit-9.6.4-3.6.1 - SUSE Linux Enterprise Server 12-SP3 (noarch): postgresql96-docs-9.6.4-3.6.1 - SUSE Linux Enterprise Server 12-SP2 (aarch64 ppc64le s390x x86_64): libecpg6-9.6.4-3.6.1 libecpg6-debuginfo-9.6.4-3.6.1 libpq5-9.6.4-3.6.1 libpq5-debuginfo-9.6.4-3.6.1 postgresql96-9.6.4-3.6.1 postgresql96-contrib-9.6.4-3.6.1 postgresql96-contrib-debuginfo-9.6.4-3.6.1 postgresql96-debuginfo-9.6.4-3.6.1 postgresql96-debugsource-9.6.4-3.6.1 postgresql96-libs-debugsource-9.6.4-3.6.1 postgresql96-server-9.6.4-3.6.1 postgresql96-server-debuginfo-9.6.4-3.6.1 - SUSE Linux Enterprise Server 12-SP2 (s390x x86_64): libpq5-32bit-9.6.4-3.6.1 libpq5-debuginfo-32bit-9.6.4-3.6.1 - SUSE Linux Enterprise Server 12-SP2 (noarch): postgresql96-docs-9.6.4-3.6.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (ppc64le s390x x86_64): libecpg6-9.6.4-3.6.1 libecpg6-debuginfo-9.6.4-3.6.1 libpq5-9.6.4-3.6.1 libpq5-debuginfo-9.6.4-3.6.1 postgresql96-9.6.4-3.6.1 postgresql96-contrib-9.6.4-3.6.1 postgresql96-contrib-debuginfo-9.6.4-3.6.1 postgresql96-debuginfo-9.6.4-3.6.1 postgresql96-debugsource-9.6.4-3.6.1 postgresql96-libs-debugsource-9.6.4-3.6.1 postgresql96-server-9.6.4-3.6.1 postgresql96-server-debuginfo-9.6.4-3.6.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (s390x x86_64): libpq5-32bit-9.6.4-3.6.1 libpq5-debuginfo-32bit-9.6.4-3.6.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (noarch): postgresql96-docs-9.6.4-3.6.1 - SUSE Linux Enterprise Server 12-LTSS (ppc64le s390x x86_64): libecpg6-9.6.4-3.6.1 libecpg6-debuginfo-9.6.4-3.6.1 libpq5-9.6.4-3.6.1 libpq5-debuginfo-9.6.4-3.6.1 postgresql96-9.6.4-3.6.1 postgresql96-contrib-9.6.4-3.6.1 postgresql96-contrib-debuginfo-9.6.4-3.6.1 postgresql96-debuginfo-9.6.4-3.6.1 postgresql96-debugsource-9.6.4-3.6.1 postgresql96-libs-debugsource-9.6.4-3.6.1 postgresql96-server-9.6.4-3.6.1 postgresql96-server-debuginfo-9.6.4-3.6.1 - SUSE Linux Enterprise Server 12-LTSS (s390x x86_64): libpq5-32bit-9.6.4-3.6.1 libpq5-debuginfo-32bit-9.6.4-3.6.1 - SUSE Linux Enterprise Server 12-LTSS (noarch): postgresql96-docs-9.6.4-3.6.1 - SUSE Linux Enterprise Desktop 12-SP3 (x86_64): libecpg6-9.6.4-3.6.1 libecpg6-debuginfo-9.6.4-3.6.1 libpq5-32bit-9.6.4-3.6.1 libpq5-9.6.4-3.6.1 libpq5-debuginfo-32bit-9.6.4-3.6.1 libpq5-debuginfo-9.6.4-3.6.1 postgresql96-9.6.4-3.6.1 postgresql96-debuginfo-9.6.4-3.6.1 postgresql96-debugsource-9.6.4-3.6.1 postgresql96-libs-debugsource-9.6.4-3.6.1 - SUSE Linux Enterprise Desktop 12-SP2 (x86_64): libecpg6-9.6.4-3.6.1 libecpg6-debuginfo-9.6.4-3.6.1 libpq5-32bit-9.6.4-3.6.1 libpq5-9.6.4-3.6.1 libpq5-debuginfo-32bit-9.6.4-3.6.1 libpq5-debuginfo-9.6.4-3.6.1 postgresql96-9.6.4-3.6.1 postgresql96-debuginfo-9.6.4-3.6.1 postgresql96-debugsource-9.6.4-3.6.1 postgresql96-libs-debugsource-9.6.4-3.6.1 References: https://www.suse.com/security/cve/CVE-2017-7546.html https://www.suse.com/security/cve/CVE-2017-7547.html https://www.suse.com/security/cve/CVE-2017-7548.html https://bugzilla.suse.com/1051684 https://bugzilla.suse.com/1051685 https://bugzilla.suse.com/1053259 From sle-security-updates at lists.suse.com Wed Sep 6 07:07:22 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 6 Sep 2017 15:07:22 +0200 (CEST) Subject: SUSE-SU-2017:2375-1: moderate: Security update for expat Message-ID: <20170906130722.30F62FCA0@maintenance.suse.de> SUSE Security Update: Security update for expat ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2375-1 Rating: moderate References: #1047236 #1047240 Cross-References: CVE-2016-9063 CVE-2017-9233 Affected Products: SUSE Studio Onsite 1.3 SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 SUSE Linux Enterprise Debuginfo 11-SP4 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for expat fixes the following issues: - CVE-2016-9063: Possible integer overflow to fix inside XML_Parse leading to unexpected behaviour (bsc#1047240) - CVE-2017-9233: External Entity Vulnerability could lead to denial of service (bsc#1047236) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Studio Onsite 1.3: zypper in -t patch slestso13-expat-13267=1 - SUSE Linux Enterprise Software Development Kit 11-SP4: zypper in -t patch sdksp4-expat-13267=1 - SUSE Linux Enterprise Server 11-SP4: zypper in -t patch slessp4-expat-13267=1 - SUSE Linux Enterprise Debuginfo 11-SP4: zypper in -t patch dbgsp4-expat-13267=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Studio Onsite 1.3 (x86_64): libexpat-devel-2.0.1-88.42.3.2 - SUSE Linux Enterprise Software Development Kit 11-SP4 (i586 ia64 ppc64 s390x x86_64): libexpat-devel-2.0.1-88.42.3.2 - SUSE Linux Enterprise Server 11-SP4 (i586 ia64 ppc64 s390x x86_64): expat-2.0.1-88.42.3.2 libexpat1-2.0.1-88.42.3.2 - SUSE Linux Enterprise Server 11-SP4 (ppc64 s390x x86_64): libexpat1-32bit-2.0.1-88.42.3.2 - SUSE Linux Enterprise Server 11-SP4 (ia64): libexpat1-x86-2.0.1-88.42.3.2 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ia64 ppc64 s390x x86_64): expat-debuginfo-2.0.1-88.42.3.2 expat-debugsource-2.0.1-88.42.3.2 References: https://www.suse.com/security/cve/CVE-2016-9063.html https://www.suse.com/security/cve/CVE-2017-9233.html https://bugzilla.suse.com/1047236 https://bugzilla.suse.com/1047240 From sle-security-updates at lists.suse.com Wed Sep 6 10:10:59 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 6 Sep 2017 18:10:59 +0200 (CEST) Subject: SUSE-SU-2017:2380-1: moderate: Security update for gcc48 Message-ID: <20170906161059.07167FCA0@maintenance.suse.de> SUSE Security Update: Security update for gcc48 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2380-1 Rating: moderate References: #1011348 #1022062 #1028744 #1039513 #1044016 #1050947 Cross-References: CVE-2017-11671 Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Debuginfo 11-SP4 ______________________________________________________________________________ An update that solves one vulnerability and has 5 fixes is now available. Description: This update for gcc48 fixes the following issues: Security issues fixed: - A new option -fstack-clash-protection is now offered, which mitigates the stack clash type of attacks. [bnc#1039513] - CVE-2017-11671: Fixed rdrand/rdseed code generation issue [bsc#1050947] Bugs fixed: - Enable LFS support in 32bit libgcov.a. [bsc#1044016] - Bump libffi version in libffi.pc to 3.0.11. - Properly diagnose missing -fsanitize=address support on ppc64le. [bsc#1028744] - Backport patch for PR65612. [bsc#1022062] Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 11-SP4: zypper in -t patch sdksp4-gcc48-13268=1 - SUSE Linux Enterprise Debuginfo 11-SP4: zypper in -t patch dbgsp4-gcc48-13268=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 11-SP4 (i586 ia64 ppc64 s390x x86_64): cpp48-4.8.5-5.3.1 gcc48-4.8.5-5.3.1 gcc48-c++-4.8.5-5.3.1 gcc48-fortran-4.8.5-5.3.1 gcc48-info-4.8.5-5.3.1 gcc48-locale-4.8.5-5.3.1 libstdc++48-devel-4.8.5-5.3.1 - SUSE Linux Enterprise Software Development Kit 11-SP4 (ppc64 s390x x86_64): gcc48-32bit-4.8.5-5.3.1 gcc48-fortran-32bit-4.8.5-5.3.1 libstdc++48-devel-32bit-4.8.5-5.3.1 - SUSE Linux Enterprise Software Development Kit 11-SP4 (i586 ppc64 x86_64): libasan0-4.8.5-5.3.1 - SUSE Linux Enterprise Software Development Kit 11-SP4 (ppc64 x86_64): libasan0-32bit-4.8.5-5.3.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ia64 ppc64 s390x x86_64): gcc48-debuginfo-4.8.5-5.3.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (ia64): gcc48-debugsource-4.8.5-5.3.1 References: https://www.suse.com/security/cve/CVE-2017-11671.html https://bugzilla.suse.com/1011348 https://bugzilla.suse.com/1022062 https://bugzilla.suse.com/1028744 https://bugzilla.suse.com/1039513 https://bugzilla.suse.com/1044016 https://bugzilla.suse.com/1050947 From sle-security-updates at lists.suse.com Wed Sep 6 13:07:29 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 6 Sep 2017 21:07:29 +0200 (CEST) Subject: SUSE-SU-2017:2381-1: important: Security update for gdk-pixbuf Message-ID: <20170906190729.B0062FC9D@maintenance.suse.de> SUSE Security Update: Security update for gdk-pixbuf ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2381-1 Rating: important References: #1027024 #1027025 #1027026 #1048289 #1048544 #1049877 Cross-References: CVE-2017-2862 CVE-2017-2870 CVE-2017-6312 CVE-2017-6313 CVE-2017-6314 Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP3 SUSE Linux Enterprise Desktop 12-SP2 ______________________________________________________________________________ An update that solves 5 vulnerabilities and has one errata is now available. Description: This update for gdk-pixbuf fixes the following issues: - CVE-2017-2862: JPEG gdk_pixbuf__jpeg_image_load_increment Code Execution Vulnerability (bsc#1048289) - CVE-2017-2870: tiff_image_parse Code Execution Vulnerability (bsc#1048544) - CVE-2017-6313: A dangerous integer underflow in io-icns.c (bsc#1027024) - CVE-2017-6314: Infinite loop in io-tiff.c (bsc#1027025) - CVE-2017-6312: Out-of-bounds read on io-ico.c (bsc#1027026) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2017-1471=1 - SUSE Linux Enterprise Software Development Kit 12-SP2: zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1471=1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2: zypper in -t patch SUSE-SLE-RPI-12-SP2-2017-1471=1 - SUSE Linux Enterprise Server 12-SP3: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2017-1471=1 - SUSE Linux Enterprise Server 12-SP2: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1471=1 - SUSE Linux Enterprise Desktop 12-SP3: zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2017-1471=1 - SUSE Linux Enterprise Desktop 12-SP2: zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-1471=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 ppc64le s390x x86_64): gdk-pixbuf-debugsource-2.34.0-19.5.1 gdk-pixbuf-devel-2.34.0-19.5.1 gdk-pixbuf-devel-debuginfo-2.34.0-19.5.1 - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 ppc64le s390x x86_64): gdk-pixbuf-debugsource-2.34.0-19.5.1 gdk-pixbuf-devel-2.34.0-19.5.1 gdk-pixbuf-devel-debuginfo-2.34.0-19.5.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (aarch64): gdk-pixbuf-debugsource-2.34.0-19.5.1 gdk-pixbuf-query-loaders-2.34.0-19.5.1 gdk-pixbuf-query-loaders-debuginfo-2.34.0-19.5.1 libgdk_pixbuf-2_0-0-2.34.0-19.5.1 libgdk_pixbuf-2_0-0-debuginfo-2.34.0-19.5.1 typelib-1_0-GdkPixbuf-2_0-2.34.0-19.5.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (noarch): gdk-pixbuf-lang-2.34.0-19.5.1 - SUSE Linux Enterprise Server 12-SP3 (aarch64 ppc64le s390x x86_64): gdk-pixbuf-debugsource-2.34.0-19.5.1 gdk-pixbuf-query-loaders-2.34.0-19.5.1 gdk-pixbuf-query-loaders-debuginfo-2.34.0-19.5.1 libgdk_pixbuf-2_0-0-2.34.0-19.5.1 libgdk_pixbuf-2_0-0-debuginfo-2.34.0-19.5.1 typelib-1_0-GdkPixbuf-2_0-2.34.0-19.5.1 - SUSE Linux Enterprise Server 12-SP3 (s390x x86_64): gdk-pixbuf-query-loaders-32bit-2.34.0-19.5.1 gdk-pixbuf-query-loaders-debuginfo-32bit-2.34.0-19.5.1 libgdk_pixbuf-2_0-0-32bit-2.34.0-19.5.1 libgdk_pixbuf-2_0-0-debuginfo-32bit-2.34.0-19.5.1 - SUSE Linux Enterprise Server 12-SP3 (noarch): gdk-pixbuf-lang-2.34.0-19.5.1 - SUSE Linux Enterprise Server 12-SP2 (aarch64 ppc64le s390x x86_64): gdk-pixbuf-debugsource-2.34.0-19.5.1 gdk-pixbuf-query-loaders-2.34.0-19.5.1 gdk-pixbuf-query-loaders-debuginfo-2.34.0-19.5.1 libgdk_pixbuf-2_0-0-2.34.0-19.5.1 libgdk_pixbuf-2_0-0-debuginfo-2.34.0-19.5.1 typelib-1_0-GdkPixbuf-2_0-2.34.0-19.5.1 - SUSE Linux Enterprise Server 12-SP2 (s390x x86_64): gdk-pixbuf-query-loaders-32bit-2.34.0-19.5.1 gdk-pixbuf-query-loaders-debuginfo-32bit-2.34.0-19.5.1 libgdk_pixbuf-2_0-0-32bit-2.34.0-19.5.1 libgdk_pixbuf-2_0-0-debuginfo-32bit-2.34.0-19.5.1 - SUSE Linux Enterprise Server 12-SP2 (noarch): gdk-pixbuf-lang-2.34.0-19.5.1 - SUSE Linux Enterprise Desktop 12-SP3 (x86_64): gdk-pixbuf-debugsource-2.34.0-19.5.1 gdk-pixbuf-query-loaders-2.34.0-19.5.1 gdk-pixbuf-query-loaders-32bit-2.34.0-19.5.1 gdk-pixbuf-query-loaders-debuginfo-2.34.0-19.5.1 gdk-pixbuf-query-loaders-debuginfo-32bit-2.34.0-19.5.1 libgdk_pixbuf-2_0-0-2.34.0-19.5.1 libgdk_pixbuf-2_0-0-32bit-2.34.0-19.5.1 libgdk_pixbuf-2_0-0-debuginfo-2.34.0-19.5.1 libgdk_pixbuf-2_0-0-debuginfo-32bit-2.34.0-19.5.1 typelib-1_0-GdkPixbuf-2_0-2.34.0-19.5.1 - SUSE Linux Enterprise Desktop 12-SP3 (noarch): gdk-pixbuf-lang-2.34.0-19.5.1 - SUSE Linux Enterprise Desktop 12-SP2 (noarch): gdk-pixbuf-lang-2.34.0-19.5.1 - SUSE Linux Enterprise Desktop 12-SP2 (x86_64): gdk-pixbuf-debugsource-2.34.0-19.5.1 gdk-pixbuf-query-loaders-2.34.0-19.5.1 gdk-pixbuf-query-loaders-32bit-2.34.0-19.5.1 gdk-pixbuf-query-loaders-debuginfo-2.34.0-19.5.1 gdk-pixbuf-query-loaders-debuginfo-32bit-2.34.0-19.5.1 libgdk_pixbuf-2_0-0-2.34.0-19.5.1 libgdk_pixbuf-2_0-0-32bit-2.34.0-19.5.1 libgdk_pixbuf-2_0-0-debuginfo-2.34.0-19.5.1 libgdk_pixbuf-2_0-0-debuginfo-32bit-2.34.0-19.5.1 typelib-1_0-GdkPixbuf-2_0-2.34.0-19.5.1 References: https://www.suse.com/security/cve/CVE-2017-2862.html https://www.suse.com/security/cve/CVE-2017-2870.html https://www.suse.com/security/cve/CVE-2017-6312.html https://www.suse.com/security/cve/CVE-2017-6313.html https://www.suse.com/security/cve/CVE-2017-6314.html https://bugzilla.suse.com/1027024 https://bugzilla.suse.com/1027025 https://bugzilla.suse.com/1027026 https://bugzilla.suse.com/1048289 https://bugzilla.suse.com/1048544 https://bugzilla.suse.com/1049877 From sle-security-updates at lists.suse.com Thu Sep 7 13:07:19 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 7 Sep 2017 21:07:19 +0200 (CEST) Subject: SUSE-SU-2017:2387-1: Security update for nginx-1.0 Message-ID: <20170907190719.B0B6BF3F9@maintenance.suse.de> SUSE Security Update: Security update for nginx-1.0 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2387-1 Rating: low References: #1048265 Cross-References: CVE-2017-7529 Affected Products: SUSE Webyast 1.3 SUSE Studio Onsite 1.3 SUSE Lifecycle Management Server 1.3 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for NGINX fixes the following issues: Security issue fixed: - CVE-2017-7529: Integer overflow in nginx range filter module leading to memory disclosure. (bsc#1048265) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Webyast 1.3: zypper in -t patch slewyst13-nginx-1.0-13271=1 - SUSE Studio Onsite 1.3: zypper in -t patch slestso13-nginx-1.0-13271=1 - SUSE Lifecycle Management Server 1.3: zypper in -t patch sleslms13-nginx-1.0-13271=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Webyast 1.3 (i586 ia64 ppc64 s390x x86_64): nginx-1.0-1.0.15-0.35.3.1 - SUSE Studio Onsite 1.3 (x86_64): nginx-1.0-1.0.15-0.35.3.1 - SUSE Lifecycle Management Server 1.3 (x86_64): nginx-1.0-1.0.15-0.35.3.1 References: https://www.suse.com/security/cve/CVE-2017-7529.html https://bugzilla.suse.com/1048265 From sle-security-updates at lists.suse.com Fri Sep 8 10:09:04 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Fri, 8 Sep 2017 18:09:04 +0200 (CEST) Subject: SUSE-SU-2017:2389-1: important: Security update for the Linux Kernel Message-ID: <20170908160904.B3CB7FC98@maintenance.suse.de> SUSE Security Update: Security update for the Linux Kernel ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2389-1 Rating: important References: #1000365 #1000380 #1012422 #1013018 #1015452 #1023051 #1029140 #1029850 #1030552 #1030593 #1030814 #1032340 #1032471 #1034026 #1034670 #1035576 #1035721 #1035777 #1035920 #1036056 #1036288 #1036629 #1037191 #1037193 #1037227 #1037232 #1037233 #1037356 #1037358 #1037359 #1037441 #1038544 #1038879 #1038981 #1038982 #1039258 #1039354 #1039456 #1039594 #1039882 #1039883 #1039885 #1040069 #1040351 #1041160 #1041431 #1041762 #1041975 #1042045 #1042615 #1042633 #1042687 #1042832 #1042863 #1043014 #1043234 #1043935 #1044015 #1044125 #1044216 #1044230 #1044854 #1044882 #1044913 #1045154 #1045356 #1045416 #1045479 #1045487 #1045525 #1045538 #1045547 #1045615 #1046107 #1046192 #1046715 #1047027 #1047053 #1047343 #1047354 #1047487 #1047523 #1047653 #1048185 #1048221 #1048232 #1048275 #1049128 #1049483 #1049603 #1049688 #1049882 #1050154 #1050431 #1051478 #1051515 #1051770 #1055680 #784815 #792863 #799133 #909618 #919382 #928138 #938352 #943786 #948562 #962257 #971975 #972891 #986924 #990682 #995542 Cross-References: CVE-2014-9922 CVE-2016-10277 CVE-2017-1000363 CVE-2017-1000365 CVE-2017-1000380 CVE-2017-11176 CVE-2017-11473 CVE-2017-2647 CVE-2017-6951 CVE-2017-7482 CVE-2017-7487 CVE-2017-7533 CVE-2017-7542 CVE-2017-8890 CVE-2017-8924 CVE-2017-8925 CVE-2017-9074 CVE-2017-9075 CVE-2017-9076 CVE-2017-9077 CVE-2017-9242 Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 SUSE Linux Enterprise Server 11-EXTRA SUSE Linux Enterprise Real Time Extension 11-SP4 SUSE Linux Enterprise High Availability Extension 11-SP4 SUSE Linux Enterprise Debuginfo 11-SP4 ______________________________________________________________________________ An update that solves 21 vulnerabilities and has 92 fixes is now available. Description: The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-7482: Several missing length checks ticket decode allowing for information leak or potentially code execution (bsc#1046107). - CVE-2016-10277: Potential privilege escalation due to a missing bounds check in the lp driver. A kernel command-line adversary can overflow the parport_nr array to execute code (bsc#1039456). - CVE-2017-7542: The ip6_find_1stfragopt function in net/ipv6/output_core.c in the Linux kernel allowed local users to cause a denial of service (integer overflow and infinite loop) by leveraging the ability to open a raw socket (bsc#1049882). - CVE-2017-7533: Bug in inotify code allowing privilege escalation (bsc#1049483). - CVE-2017-11176: The mq_notify function in the Linux kernel did not set the sock pointer to NULL upon entry into the retry logic. During a user-space close of a Netlink socket, it allowed attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact (bsc#1048275). - CVE-2017-11473: Buffer overflow in the mp_override_legacy_irq() function in arch/x86/kernel/acpi/boot.c in the Linux kernel allowed local users to gain privileges via a crafted ACPI table (bnc#1049603). - CVE-2017-1000365: The Linux Kernel imposed a size restriction on the arguments and environmental strings passed through RLIMIT_STACK/RLIM_INFINITY (1/4 of the size), but did not take the argument and environment pointers into account, which allowed attackers to bypass this limitation. (bnc#1039354) - CVE-2014-9922: The eCryptfs subsystem in the Linux kernel allowed local users to gain privileges via a large filesystem stack that includes an overlayfs layer, related to fs/ecryptfs/main.c and fs/overlayfs/super.c (bnc#1032340) - CVE-2017-8924: The edge_bulk_in_callback function in drivers/usb/serial/io_ti.c in the Linux kernel allowed local users to obtain sensitive information (in the dmesg ringbuffer and syslog) from uninitialized kernel memory by using a crafted USB device (posing as an io_ti USB serial device) to trigger an integer underflow (bnc#1038982). - CVE-2017-8925: The omninet_open function in drivers/usb/serial/omninet.c in the Linux kernel allowed local users to cause a denial of service (tty exhaustion) by leveraging reference count mishandling (bnc#1038981). - CVE-2017-1000380: sound/core/timer.c was vulnerable to a data race in the ALSA /dev/snd/timer driver resulting in local users being able to read information belonging to other users, i.e., uninitialized memory contents could have bene disclosed when a read and an ioctl happen at the same time (bnc#1044125) - CVE-2017-9242: The __ip6_append_data function in net/ipv6/ip6_output.c was too late in checking whether an overwrite of an skb data structure may occur, which allowed local users to cause a denial of service (system crash) via crafted system calls (bnc#1041431) - CVE-2017-1000363: A buffer overflow in kernel commandline handling of the "lp" parameter could be used by local console attackers to bypass certain secure boot settings. (bnc#1039456) - CVE-2017-9076: The dccp_v6_request_recv_sock function in net/dccp/ipv6.c in the Linux kernel mishandled inheritance, which allowed local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890 (bnc#1039885) - CVE-2017-9077: The tcp_v6_syn_recv_sock function in net/ipv6/tcp_ipv6.c in the Linux kernel mishandled inheritance, which allowed local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890 (bnc#1040069) - CVE-2017-9075: The sctp_v6_create_accept_sk function in net/sctp/ipv6.c in the Linux kernel mishandled inheritance, which allowed local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890 (bnc#1039883) - CVE-2017-9074: The IPv6 fragmentation implementation in the Linux kernel did not consider that the nexthdr field may be associated with an invalid option, which allowed local users to cause a denial of service (out-of-bounds read and BUG) or possibly have unspecified other impact via crafted socket and send system calls (bnc#1039882) - CVE-2017-7487: The ipxitf_ioctl function in net/ipx/af_ipx.c in the Linux kernel mishandled reference counts, which allowed local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via a failed SIOCGIFADDR ioctl call for an IPX interface (bnc#1038879) - CVE-2017-8890: The inet_csk_clone_lock function in net/ipv4/inet_connection_sock.c in the Linux kernel allowed attackers to cause a denial of service (double free) or possibly have unspecified other impact by leveraging use of the accept system call (bnc#1038544) - CVE-2017-2647: The KEYS subsystem in the Linux kernel allowed local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) via vectors involving a NULL value for a certain match field, related to the keyring_search_iterator function in keyring.c (bnc#1030593) - CVE-2017-6951: The keyring_search_aux function in security/keys/keyring.c in the Linux kernel allowed local users to cause a denial of service (NULL pointer dereference and OOPS) via a request_key system call for the "dead" type (bnc#1029850) The following non-security bugs were fixed: - 8250: use callbacks to access UART_DLL/UART_DLM. - ALSA: ctxfi: Fallback DMA mask to 32bit (bsc#1045538). - ALSA: hda - Fix regression of HD-audio controller fallback modes (bsc#1045538). - ALSA: hda - using uninitialized data (bsc#1045538). - ALSA: hda/realtek - Correction of fixup codes for PB V7900 laptop (bsc#1045538). - ALSA: hda/realtek - Fix COEF widget NID for ALC260 replacer fixup (bsc#1045538). - ALSA: off by one bug in snd_riptide_joystick_probe() (bsc#1045538). - ALSA: seq: Fix snd_seq_call_port_info_ioctl in compat mode (bsc#1045538). - Add CVE tag to references - CIFS: backport prepath matching fix (bsc#799133). - Drop CONFIG_PPC_CELL from bigmem (bsc#1049128). - EDAC, amd64_edac: Shift wrapping issue in f1x_get_norm_dct_addr(). - Fix scripts/bigmem-generate-ifdef-guard to work on all branches - Fix soft lockup in svc_rdma_send (bsc#1044854). - IB/mlx4: Demote mcg message from warning to debug (bsc#919382). - IB/mlx4: Fix ib device initialization error flow (bsc#919382). - IB/mlx4: Fix port query for 56Gb Ethernet links (bsc#919382). - IB/mlx4: Handle well-known-gid in mad_demux processing (bsc#919382). - IB/mlx4: Reduce SRIOV multicast cleanup warning message to debug level (bsc#919382). - IB/mlx4: Set traffic class in AH (bsc#919382). - Implement an ioctl to support the USMTMC-USB488 READ_STATUS_BYTE operation (bsc#1036288). - Input: cm109 - validate number of endpoints before using them (bsc#1037193). - Input: hanwang - validate number of endpoints before using them (bsc#1037232). - Input: yealink - validate number of endpoints before using them (bsc#1037227). - KEYS: Disallow keyrings beginning with '.' to be joined as session keyrings (bnc#1035576). - NFS: Avoid getting confused by confused server (bsc#1045416). - NFS: Fix another OPEN_DOWNGRADE bug (git-next). - NFS: Fix size of NFSACL SETACL operations (git-fixes). - NFS: Make nfs_readdir revalidate less often (bsc#1048232). - NFS: tidy up nfs_show_mountd_netid (git-fixes). - NFSD: Do not use state id of 0 - it is reserved (bsc#1049688 bsc#1051770). - NFSv4: Do not call put_rpccred() under the rcu_read_lock() (git-fixes). - NFSv4: Fix another bug in the close/open_downgrade code (git-fixes). - NFSv4: Fix problems with close in the presence of a delegation (git-fixes). - NFSv4: Fix the underestimation of delegation XDR space reservation (git-fixes). - NFSv4: fix getacl head length estimation (git-fixes). - PCI: Fix devfn for VPD access through function 0 (bnc#943786 git-fixes). - Remove superfluous make flags (bsc#1012422) - Return short read or 0 at end of a raw device, not EIO (bsc#1039594). - Revert "math64: New div64_u64_rem helper" (bnc#938352). - SUNRPC: Fix a memory leak in the backchannel code (git-fixes). - Staging: vt6655-6: potential NULL dereference in hostap_disable_hostapd() (bsc#1045479). - USB: class: usbtmc.c: Cleaning up uninitialized variables (bsc#1036288). - USB: class: usbtmc: do not print error when allocating urb fails (bsc#1036288). - USB: class: usbtmc: do not print on ENOMEM (bsc#1036288). - USB: iowarrior: fix NULL-deref in write (bsc#1037359). - USB: iowarrior: fix info ioctl on big-endian hosts (bsc#1037441). - USB: r8a66597-hcd: select a different endpoint on timeout (bsc#1047053). - USB: serial: ark3116: fix register-accessor error handling (git-fixes). - USB: serial: ch341: fix open error handling (bsc#1037441). - USB: serial: cp210x: fix tiocmget error handling (bsc#1037441). - USB: serial: ftdi_sio: fix line-status over-reporting (bsc#1037441). - USB: serial: io_edgeport: fix epic-descriptor handling (bsc#1037441). - USB: serial: io_ti: fix information leak in completion handler (git-fixes). - USB: serial: mos7840: fix another NULL-deref at open (bsc#1034026). - USB: serial: oti6858: fix NULL-deref at open (bsc#1037441). - USB: serial: sierra: fix bogus alternate-setting assumption (bsc#1037441). - USB: serial: spcp8x5: fix NULL-deref at open (bsc#1037441). - USB: usbip: fix nonconforming hub descriptor (bsc#1047487). - USB: usbtmc: Add flag rigol_quirk to usbtmc_device_data (bsc#1036288). - USB: usbtmc: Change magic number to constant (bsc#1036288). - USB: usbtmc: Set rigol_quirk if device is listed (bsc#1036288). - USB: usbtmc: TMC request code segregated from usbtmc_read (bsc#1036288). - USB: usbtmc: add device quirk for Rigol DS6104 (bsc#1036288). - USB: usbtmc: add missing endpoint sanity check (bsc#1036288). - USB: usbtmc: fix DMA on stack (bsc#1036288). - USB: usbtmc: fix big-endian probe of Rigol devices (bsc#1036288). - USB: usbtmc: fix probe error path (bsc#1036288). - USB: usbtmc: usbtmc_read sends multiple TMC header based on rigol_quirk (bsc#1036288). - USB: wusbcore: fix NULL-deref at probe (bsc#1045487). - Update patches.fixes/nfs-svc-rdma.fix (bsc#1044854). - Use make --output-sync feature when available (bsc#1012422). - Xen/PCI-MSI: fix sysfs teardown in DomU (bsc#986924). - __bitmap_parselist: fix bug in empty string handling (bnc#1042633). - acpi: Disable APEI error injection if securelevel is set (bsc#972891, bsc#1023051). - af_key: Add lock to key dump (bsc#1047653). - af_key: Fix slab-out-of-bounds in pfkey_compile_policy (bsc#1047354). - ath9k: fix buffer overrun for ar9287 (bsc#1045538). - blacklist b50a6c584bb4 powerpc/perf: Clear MMCR2 when enabling PMU (bsc#1035721). - blacklist.conf: Add a few inapplicable items (bsc#1045538). - blacklist.conf: Blacklist 847fa1a6d3d0 ('ftrace/x86_32: Set ftrace_stub to weak to prevent gcc from using short jumps to it') The released kernels are not build with a gas new enough to optimize the jmps so that this patch would be required. (bsc#1051478) - blkback/blktap: do not leak stack data via response ring (bsc#1042863 XSA-216). - block: do not allow updates through sysfs until registration completes (bsc#1047027). - block: fix ext_dev_lock lockdep report (bsc#1050154). - btrfs: Do not clear SGID when inheriting ACLs (bsc#1030552). - cifs: Timeout on SMBNegotiate request (bsc#1044913). - cifs: do not compare uniqueids in cifs_prime_dcache unless server inode numbers are in use (bsc#1041975). backporting upstream commit 2f2591a34db6c9361faa316c91a6e320cb4e6aee - cifs: small underflow in cnvrtDosUnixTm() (bsc#1043935). - cputime: Avoid multiplication overflow on utime scaling (bnc#938352). - crypto: nx - off by one bug in nx_of_update_msc() (bnc#792863). - decompress_bunzip2: off by one in get_next_block() (git-fixes). - dentry name snapshots (bsc#1049483). - devres: fix a for loop bounds check (git-fixes). - dm: fix ioctl retry termination with signal (bsc#1050154). - drm/mgag200: Add support for G200eH3 (bnc#1044216) - drm/mgag200: Fix to always set HiPri for G200e4 (bsc#1015452, bsc#995542). - ext2: Do not clear SGID when inheriting ACLs (bsc#1030552). - ext3: Do not clear SGID when inheriting ACLs (bsc#1030552). - ext4: Do not clear SGID when inheriting ACLs (bsc#1030552). - ext4: fix fdatasync(2) after extent manipulation operations (bsc#1013018). - ext4: keep existing extra fields when inode expands (bsc#1013018). - fbdev/efifb: Fix 16 color palette entry calculation (bsc#1041762). - firmware: fix directory creation rule matching with make 3.80 (bsc#1012422). - firmware: fix directory creation rule matching with make 3.82 (bsc#1012422). - fixed invalid assignment of 64bit mask to host dma_boundary for scatter gather segment boundary limit (bsc#1042045). - fnic: Return 'DID_IMM_RETRY' if rport is not ready (bsc#1035920). - fnic: Using rport->dd_data to check rport online instead of rport_lookup (bsc#1035920). - fs/block_dev: always invalidate cleancache in invalidate_bdev() (git-fixes). - fs/xattr.c: zero out memory copied to userspace in getxattr (bsc#1013018). - fs: fix data invalidation in the cleancache during direct IO (git-fixes). - fuse: add missing FR_FORCE (bsc#1013018). - genirq: Prevent proc race against freeing of irq descriptors (bnc#1044230). - hrtimer: Allow concurrent hrtimer_start() for self restarting timers (bnc#1013018). - initial cr0 bits (bnc#1036056, LTC#153612). - ipmr, ip6mr: fix scheduling while atomic and a deadlock with ipmr_get_route (git-fixes). - irq: Fix race condition (bsc#1042615). - isdn/gigaset: fix NULL-deref at probe (bsc#1037356). - isofs: Do not return EACCES for unknown filesystems (bsc#1013018). - jsm: add support for additional Neo cards (bsc#1045615). - kernel-binary.spec: Propagate MAKE_ARGS to %build (bsc#1012422) - libata: fix sff host state machine locking while polling (bsc#1045525). - libceph: NULL deref on crush_decode() error path (bsc#1044015). - libceph: potential NULL dereference in ceph_msg_data_create() (bsc#1051515). - libfc: fixup locking in fc_disc_stop() (bsc#1029140). - libfc: move 'pending' and 'requested' setting (bsc#1029140). - libfc: only restart discovery after timeout if not already running (bsc#1029140). - locking/rtmutex: Prevent dequeue vs. unlock race (bnc#1013018). - math64: New div64_u64_rem helper (bnc#938352). - md/raid0: apply base queue limits *before* disk_stack_limits (git-fixes). - md/raid1: extend spinlock to protect raid1_end_read_request against inconsistencies (git-fixes). - md/raid1: fix test for 'was read error from last working device' (git-fixes). - md/raid5: Fix CPU hotplug callback registration (git-fixes). - md/raid5: do not record new size if resize_stripes fails (git-fixes). - md: ensure md devices are freed before module is unloaded (git-fixes). - md: fix a null dereference (bsc#1040351). - md: flush ->event_work before stopping array (git-fixes). - md: make sure GET_ARRAY_INFO ioctl reports correct "clean" status (git-fixes). - md: use separate bio_pool for metadata writes (bsc#1040351). - megaraid_sas: add missing curly braces in ioctl handler (bsc#1050154). - mlx4: reduce OOM risk on arches with large pages (bsc#919382). - mm/huge_memory: replace VM_NO_THP VM_BUG_ON with actual VMA check (VM Functionality, bsc#1042832). - mm/memory-failure.c: use compound_head() flags for huge pages (bnc#971975 VM -- git fixes). - mm: hugetlb: call huge_pte_alloc() only if ptep is null (VM Functionality, bsc#1042832). - mmc: core: add missing pm event in mmc_pm_notify to fix hib restore (bsc#1045547). - mmc: ushc: fix NULL-deref at probe (bsc#1037191). - module: fix memory leak on early load_module() failures (bsc#1043014). - mwifiex: printk() overflow with 32-byte SSIDs (bsc#1048185). - net/mlx4: Fix the check in attaching steering rules (bsc#919382). - net/mlx4: Fix uninitialized fields in rule when adding promiscuous mode to device managed flow steering (bsc#919382). - net/mlx4_core: Eliminate warning messages for SRQ_LIMIT under SRIOV (bsc#919382). - net/mlx4_core: Enhance the MAD_IFC wrapper to convert VF port to physical (bsc#919382). - net/mlx4_core: Fix VF overwrite of module param which disables DMFS on new probed PFs (bsc#919382). - net/mlx4_core: Fix when to save some qp context flags for dynamic VST to VGT transitions (bsc#919382). - net/mlx4_core: Get num_tc using netdev_get_num_tc (bsc#919382). - net/mlx4_core: Prevent VF from changing port configuration (bsc#919382). - net/mlx4_core: Use cq quota in SRIOV when creating completion EQs (bsc#919382). - net/mlx4_core: Use-after-free causes a resource leak in flow-steering detach (bsc#919382). - net/mlx4_en: Avoid adding steering rules with invalid ring (bsc#919382). - net/mlx4_en: Change the error print to debug print (bsc#919382). - net/mlx4_en: Fix type mismatch for 32-bit systems (bsc#919382). - net/mlx4_en: Resolve dividing by zero in 32-bit system (bsc#919382). - net/mlx4_en: Wake TX queues only when there's enough room (bsc#1039258). - net/mlx4_en: fix overflow in mlx4_en_init_timestamp() (bsc#919382). - net: avoid reference counter overflows on fib_rules in multicast forwarding (git-fixes). - net: ip6mr: fix static mfc/dev leaks on table destruction (git-fixes). - net: ipmr: fix static mfc/dev leaks on table destruction (git-fixes). - net: wimax/i2400m: fix NULL-deref at probe (bsc#1037358). - netxen_nic: set rcode to the return status from the call to netxen_issue_cmd (bnc#784815). - nfs: fix nfs_size_to_loff_t (git-fixes). - nfsd4: minor NFSv2/v3 write decoding cleanup (bsc#1034670). - nfsd: check for oversized NFSv2/v3 arguments (bsc#1034670). - nfsd: stricter decoding of write-like NFSv2/v3 ops (bsc#1034670). - ocfs2: Do not clear SGID when inheriting ACLs (bsc#1030552). - ocfs2: NFS hangs in __ocfs2_cluster_lock due to race with ocfs2_unblock_lock (bsc#962257). - perf/core: Correct event creation with PERF_FORMAT_GROUP (bnc#1013018). - perf/core: Fix event inheritance on fork() (bnc#1013018). - powerpc/ibmebus: Fix device reference leaks in sysfs interface (bsc#1035777 [2017-04-24] Pending Base Kernel Fixes). - powerpc/ibmebus: Fix further device reference leaks (bsc#1035777 [2017-04-24] Pending Base Kernel Fixes). - powerpc/mm/hash: Check for non-kernel address in get_kernel_vsid() (bsc#1032471). - powerpc/mm/hash: Convert mask to unsigned long (bsc#1032471). - powerpc/mm/hash: Increase VA range to 128TB (bsc#1032471). - powerpc/mm/hash: Properly mask the ESID bits when building proto VSID (bsc#1032471). - powerpc/mm/hash: Support 68 bit VA (bsc#1032471). - powerpc/mm/hash: Use context ids 1-4 for the kernel (bsc#1032471). - powerpc/mm/slice: Convert slice_mask high slice to a bitmap (bsc#1032471). - powerpc/mm/slice: Fix off-by-1 error when computing slice mask (bsc#1032471). - powerpc/mm/slice: Move slice_mask struct definition to slice.c (bsc#1032471). - powerpc/mm/slice: Update slice mask printing to use bitmap printing (bsc#1032471). - powerpc/mm/slice: Update the function prototype (bsc#1032471). - powerpc/mm: Do not alias user region to other regions below PAGE_OFFSET (bsc#928138). - powerpc/mm: Remove checks that TASK_SIZE_USER64 is too small (bsc#1032471). - powerpc/mm: use macro PGTABLE_EADDR_SIZE instead of digital (bsc#1032471). - powerpc/pci/rpadlpar: Fix device reference leaks (bsc#1035777 [2017-04-24] Pending Base Kernel Fixes). - powerpc/pseries: Release DRC when configure_connector fails (bsc#1035777, Pending Base Kernel Fixes). - powerpc: Drop support for pre-POWER4 cpus (bsc#1032471). - powerpc: Remove STAB code (bsc#1032471). - random32: fix off-by-one in seeding requirement (git-fixes). - reiserfs: Do not clear SGID when inheriting ACLs (bsc#1030552). - reiserfs: do not preallocate blocks for extended attributes (bsc#990682). - rfkill: fix rfkill_fop_read wait_event usage (bsc#1046192). - s390/qdio: clear DSCI prior to scanning multiple input queues (bnc#1046715, LTC#156234). - s390/qeth: no ETH header for outbound AF_IUCV (bnc#1046715, LTC#156276). - s390/qeth: size calculation outbound buffers (bnc#1046715, LTC#156276). - sched/core: Remove false-positive warning from wake_up_process() (bnc#1044882). - sched/cputime: Do not scale when utime == 0 (bnc#938352). - sched/debug: Print the scheduler topology group mask (bnc#1013018). - sched/fair, cpumask: Export for_each_cpu_wrap() (bnc#1013018). - sched/fair: Fix min_vruntime tracking (bnc#1013018). - sched/rt: Fix PI handling vs. sched_setscheduler() (bnc#1013018). Prep for b60205c7c558 sched/fair: Fix min_vruntime tracking - sched/topology: Fix building of overlapping sched-groups (bnc#1013018). - sched/topology: Fix overlapping sched_group_capacity (bnc#1013018). - sched/topology: Fix overlapping sched_group_mask (bnc#1013018). - sched/topology: Move comment about asymmetric node setups (bnc#1013018). - sched/topology: Optimize build_group_mask() (bnc#1013018). - sched/topology: Refactor function build_overlap_sched_groups() (bnc#1013018). - sched/topology: Remove FORCE_SD_OVERLAP (bnc#1013018). - sched/topology: Simplify build_overlap_sched_groups() (bnc#1013018). - sched/topology: Verify the first group matches the child domain (bnc#1013018). - sched: Always initialize cpu-power (bnc#1013018). - sched: Avoid cputime scaling overflow (bnc#938352). - sched: Avoid prev->stime underflow (bnc#938352). - sched: Do not account bogus utime (bnc#938352). - sched: Fix SD_OVERLAP (bnc#1013018). - sched: Fix domain iteration (bnc#1013018). - sched: Lower chances of cputime scaling overflow (bnc#938352). - sched: Move nr_cpus_allowed out of 'struct sched_rt_entity' (bnc#1013018). Prep for b60205c7c558 sched/fair: Fix min_vruntime tracking - sched: Rename a misleading variable in build_overlap_sched_groups() (bnc#1013018). - sched: Use swap() macro in scale_stime() (bnc#938352). - scsi: bnx2i: missing error code in bnx2i_ep_connect() (bsc#1048221). - scsi: fix race between simultaneous decrements of ->host_failed (bsc#1050154). - scsi: fnic: Correcting rport check location in fnic_queuecommand_lck (bsc#1035920). - scsi: mvsas: fix command_active typo (bsc#1050154). - scsi: qla2xxx: Fix scsi scan hang triggered if adapter fails during init (bsc#1050154). - sfc: do not device_attach if a reset is pending (bsc#909618). - smsc75xx: use skb_cow_head() to deal with cloned skbs (bsc#1045154). - splice: Stub splice_write_to_file (bsc#1043234). - svcrdma: Fix send_reply() scatter/gather set-up (git-fixes). - target/iscsi: Fix double free in lio_target_tiqn_addtpg() (bsc#1050154). - tracing/kprobes: Enforce kprobes teardown after testing (bnc#1013018). - tracing: Fix syscall_*regfunc() vs copy_process() race (bnc#1042687). - udf: Fix deadlock between writeback and udf_setsize() (bsc#1013018). - udf: Fix races with i_size changes during readpage (bsc#1013018). - usbtmc: remove redundant braces (bsc#1036288). - usbtmc: remove trailing spaces (bsc#1036288). - usbvision: fix NULL-deref at probe (bsc#1050431). - uwb: hwa-rc: fix NULL-deref at probe (bsc#1037233). - uwb: i1480-dfu: fix NULL-deref at probe (bsc#1036629). - vb2: Fix an off by one error in 'vb2_plane_vaddr' (bsc#1050431). - vmxnet3: avoid calling pskb_may_pull with interrupts disabled (bsc#1045356). - vmxnet3: fix checks for dma mapping errors (bsc#1045356). - vmxnet3: fix lock imbalance in vmxnet3_tq_xmit() (bsc#1045356). - x86, mm, paravirt: Fix vmalloc_fault oops during lazy MMU updates (bsc#948562). - x86/pci-calgary: Fix iommu_free() comparison of unsigned expression greater than 0 (bsc#1051478). - xen: avoid deadlock in xenbus (bnc#1047523). - xfrm: NULL dereference on allocation failure (bsc#1047343). - xfrm: Oops on error in pfkey_msg2xfrm_state() (bsc#1047653). - xfrm: dst_entries_init() per-net dst_ops (bsc#1030814). - xfs: Synchronize xfs_buf disposal routines (bsc#1041160). - xfs: use ->b_state to fix buffer I/O accounting release race (bsc#1041160). - xprtrdma: Free the pd if ib_query_qp() fails (git-fixes). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 11-SP4: zypper in -t patch sdksp4-kernel-13274=1 - SUSE Linux Enterprise Server 11-SP4: zypper in -t patch slessp4-kernel-13274=1 - SUSE Linux Enterprise Server 11-EXTRA: zypper in -t patch slexsp3-kernel-13274=1 - SUSE Linux Enterprise Real Time Extension 11-SP4: zypper in -t patch slertesp4-kernel-13274=1 - SUSE Linux Enterprise High Availability Extension 11-SP4: zypper in -t patch slehasp4-kernel-13274=1 - SUSE Linux Enterprise Debuginfo 11-SP4: zypper in -t patch dbgsp4-kernel-13274=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 11-SP4 (noarch): kernel-docs-3.0.101-108.7.2 - SUSE Linux Enterprise Server 11-SP4 (i586 ia64 ppc64 s390x x86_64): kernel-default-3.0.101-108.7.1 kernel-default-base-3.0.101-108.7.1 kernel-default-devel-3.0.101-108.7.1 kernel-source-3.0.101-108.7.1 kernel-syms-3.0.101-108.7.1 kernel-trace-3.0.101-108.7.1 kernel-trace-base-3.0.101-108.7.1 kernel-trace-devel-3.0.101-108.7.1 - SUSE Linux Enterprise Server 11-SP4 (i586 x86_64): kernel-ec2-3.0.101-108.7.1 kernel-ec2-base-3.0.101-108.7.1 kernel-ec2-devel-3.0.101-108.7.1 kernel-xen-3.0.101-108.7.1 kernel-xen-base-3.0.101-108.7.1 kernel-xen-devel-3.0.101-108.7.1 - SUSE Linux Enterprise Server 11-SP4 (s390x): kernel-default-man-3.0.101-108.7.1 - SUSE Linux Enterprise Server 11-SP4 (ppc64): kernel-bigmem-3.0.101-108.7.1 kernel-bigmem-base-3.0.101-108.7.1 kernel-bigmem-devel-3.0.101-108.7.1 kernel-ppc64-3.0.101-108.7.1 kernel-ppc64-base-3.0.101-108.7.1 kernel-ppc64-devel-3.0.101-108.7.1 - SUSE Linux Enterprise Server 11-SP4 (i586): kernel-pae-3.0.101-108.7.1 kernel-pae-base-3.0.101-108.7.1 kernel-pae-devel-3.0.101-108.7.1 - SUSE Linux Enterprise Server 11-EXTRA (i586 ia64 ppc64 s390x x86_64): kernel-default-extra-3.0.101-108.7.1 - SUSE Linux Enterprise Server 11-EXTRA (i586 x86_64): kernel-xen-extra-3.0.101-108.7.1 - SUSE Linux Enterprise Server 11-EXTRA (x86_64): kernel-trace-extra-3.0.101-108.7.1 - SUSE Linux Enterprise Server 11-EXTRA (ppc64): kernel-ppc64-extra-3.0.101-108.7.1 - SUSE Linux Enterprise Server 11-EXTRA (i586): kernel-pae-extra-3.0.101-108.7.1 - SUSE Linux Enterprise Real Time Extension 11-SP4 (x86_64): cluster-network-kmp-rt-1.4_3.0.101_rt130_68-2.32.2.14 cluster-network-kmp-rt_trace-1.4_3.0.101_rt130_68-2.32.2.14 drbd-kmp-rt-8.4.4_3.0.101_rt130_68-0.27.2.13 drbd-kmp-rt_trace-8.4.4_3.0.101_rt130_68-0.27.2.13 gfs2-kmp-rt-2_3.0.101_rt130_68-0.24.2.14 gfs2-kmp-rt_trace-2_3.0.101_rt130_68-0.24.2.14 ocfs2-kmp-rt-1.6_3.0.101_rt130_68-0.28.3.4 ocfs2-kmp-rt_trace-1.6_3.0.101_rt130_68-0.28.3.4 - SUSE Linux Enterprise High Availability Extension 11-SP4 (i586 ia64 ppc64 s390x x86_64): cluster-network-kmp-default-1.4_3.0.101_108.7-2.32.2.14 cluster-network-kmp-trace-1.4_3.0.101_108.7-2.32.2.14 drbd-8.4.4-0.27.2.1 drbd-bash-completion-8.4.4-0.27.2.1 drbd-heartbeat-8.4.4-0.27.2.1 drbd-kmp-default-8.4.4_3.0.101_108.7-0.27.2.13 drbd-kmp-trace-8.4.4_3.0.101_108.7-0.27.2.13 drbd-pacemaker-8.4.4-0.27.2.1 drbd-udev-8.4.4-0.27.2.1 drbd-utils-8.4.4-0.27.2.1 gfs2-kmp-default-2_3.0.101_108.7-0.24.2.14 gfs2-kmp-trace-2_3.0.101_108.7-0.24.2.14 ocfs2-kmp-default-1.6_3.0.101_108.7-0.28.3.4 ocfs2-kmp-trace-1.6_3.0.101_108.7-0.28.3.4 - SUSE Linux Enterprise High Availability Extension 11-SP4 (i586 x86_64): cluster-network-kmp-xen-1.4_3.0.101_108.7-2.32.2.14 drbd-kmp-xen-8.4.4_3.0.101_108.7-0.27.2.13 gfs2-kmp-xen-2_3.0.101_108.7-0.24.2.14 ocfs2-kmp-xen-1.6_3.0.101_108.7-0.28.3.4 - SUSE Linux Enterprise High Availability Extension 11-SP4 (x86_64): drbd-xen-8.4.4-0.27.2.1 - SUSE Linux Enterprise High Availability Extension 11-SP4 (ppc64): cluster-network-kmp-bigmem-1.4_3.0.101_108.7-2.32.2.14 cluster-network-kmp-ppc64-1.4_3.0.101_108.7-2.32.2.14 drbd-kmp-bigmem-8.4.4_3.0.101_108.7-0.27.2.13 drbd-kmp-ppc64-8.4.4_3.0.101_108.7-0.27.2.13 gfs2-kmp-bigmem-2_3.0.101_108.7-0.24.2.14 gfs2-kmp-ppc64-2_3.0.101_108.7-0.24.2.14 ocfs2-kmp-bigmem-1.6_3.0.101_108.7-0.28.3.4 ocfs2-kmp-ppc64-1.6_3.0.101_108.7-0.28.3.4 - SUSE Linux Enterprise High Availability Extension 11-SP4 (i586): cluster-network-kmp-pae-1.4_3.0.101_108.7-2.32.2.14 drbd-kmp-pae-8.4.4_3.0.101_108.7-0.27.2.13 gfs2-kmp-pae-2_3.0.101_108.7-0.24.2.14 ocfs2-kmp-pae-1.6_3.0.101_108.7-0.28.3.4 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ia64 ppc64 s390x x86_64): drbd-debuginfo-8.4.4-0.27.2.1 drbd-debugsource-8.4.4-0.27.2.1 kernel-default-debuginfo-3.0.101-108.7.1 kernel-default-debugsource-3.0.101-108.7.1 kernel-trace-debuginfo-3.0.101-108.7.1 kernel-trace-debugsource-3.0.101-108.7.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ia64 s390x x86_64): kernel-default-devel-debuginfo-3.0.101-108.7.1 kernel-trace-devel-debuginfo-3.0.101-108.7.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 x86_64): kernel-ec2-debuginfo-3.0.101-108.7.1 kernel-ec2-debugsource-3.0.101-108.7.1 kernel-xen-debuginfo-3.0.101-108.7.1 kernel-xen-debugsource-3.0.101-108.7.1 kernel-xen-devel-debuginfo-3.0.101-108.7.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (ppc64): kernel-bigmem-debuginfo-3.0.101-108.7.1 kernel-bigmem-debugsource-3.0.101-108.7.1 kernel-ppc64-debuginfo-3.0.101-108.7.1 kernel-ppc64-debugsource-3.0.101-108.7.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586): kernel-pae-debuginfo-3.0.101-108.7.1 kernel-pae-debugsource-3.0.101-108.7.1 kernel-pae-devel-debuginfo-3.0.101-108.7.1 References: https://www.suse.com/security/cve/CVE-2014-9922.html https://www.suse.com/security/cve/CVE-2016-10277.html https://www.suse.com/security/cve/CVE-2017-1000363.html https://www.suse.com/security/cve/CVE-2017-1000365.html https://www.suse.com/security/cve/CVE-2017-1000380.html https://www.suse.com/security/cve/CVE-2017-11176.html https://www.suse.com/security/cve/CVE-2017-11473.html https://www.suse.com/security/cve/CVE-2017-2647.html https://www.suse.com/security/cve/CVE-2017-6951.html https://www.suse.com/security/cve/CVE-2017-7482.html https://www.suse.com/security/cve/CVE-2017-7487.html https://www.suse.com/security/cve/CVE-2017-7533.html https://www.suse.com/security/cve/CVE-2017-7542.html https://www.suse.com/security/cve/CVE-2017-8890.html https://www.suse.com/security/cve/CVE-2017-8924.html https://www.suse.com/security/cve/CVE-2017-8925.html https://www.suse.com/security/cve/CVE-2017-9074.html https://www.suse.com/security/cve/CVE-2017-9075.html https://www.suse.com/security/cve/CVE-2017-9076.html https://www.suse.com/security/cve/CVE-2017-9077.html https://www.suse.com/security/cve/CVE-2017-9242.html https://bugzilla.suse.com/1000365 https://bugzilla.suse.com/1000380 https://bugzilla.suse.com/1012422 https://bugzilla.suse.com/1013018 https://bugzilla.suse.com/1015452 https://bugzilla.suse.com/1023051 https://bugzilla.suse.com/1029140 https://bugzilla.suse.com/1029850 https://bugzilla.suse.com/1030552 https://bugzilla.suse.com/1030593 https://bugzilla.suse.com/1030814 https://bugzilla.suse.com/1032340 https://bugzilla.suse.com/1032471 https://bugzilla.suse.com/1034026 https://bugzilla.suse.com/1034670 https://bugzilla.suse.com/1035576 https://bugzilla.suse.com/1035721 https://bugzilla.suse.com/1035777 https://bugzilla.suse.com/1035920 https://bugzilla.suse.com/1036056 https://bugzilla.suse.com/1036288 https://bugzilla.suse.com/1036629 https://bugzilla.suse.com/1037191 https://bugzilla.suse.com/1037193 https://bugzilla.suse.com/1037227 https://bugzilla.suse.com/1037232 https://bugzilla.suse.com/1037233 https://bugzilla.suse.com/1037356 https://bugzilla.suse.com/1037358 https://bugzilla.suse.com/1037359 https://bugzilla.suse.com/1037441 https://bugzilla.suse.com/1038544 https://bugzilla.suse.com/1038879 https://bugzilla.suse.com/1038981 https://bugzilla.suse.com/1038982 https://bugzilla.suse.com/1039258 https://bugzilla.suse.com/1039354 https://bugzilla.suse.com/1039456 https://bugzilla.suse.com/1039594 https://bugzilla.suse.com/1039882 https://bugzilla.suse.com/1039883 https://bugzilla.suse.com/1039885 https://bugzilla.suse.com/1040069 https://bugzilla.suse.com/1040351 https://bugzilla.suse.com/1041160 https://bugzilla.suse.com/1041431 https://bugzilla.suse.com/1041762 https://bugzilla.suse.com/1041975 https://bugzilla.suse.com/1042045 https://bugzilla.suse.com/1042615 https://bugzilla.suse.com/1042633 https://bugzilla.suse.com/1042687 https://bugzilla.suse.com/1042832 https://bugzilla.suse.com/1042863 https://bugzilla.suse.com/1043014 https://bugzilla.suse.com/1043234 https://bugzilla.suse.com/1043935 https://bugzilla.suse.com/1044015 https://bugzilla.suse.com/1044125 https://bugzilla.suse.com/1044216 https://bugzilla.suse.com/1044230 https://bugzilla.suse.com/1044854 https://bugzilla.suse.com/1044882 https://bugzilla.suse.com/1044913 https://bugzilla.suse.com/1045154 https://bugzilla.suse.com/1045356 https://bugzilla.suse.com/1045416 https://bugzilla.suse.com/1045479 https://bugzilla.suse.com/1045487 https://bugzilla.suse.com/1045525 https://bugzilla.suse.com/1045538 https://bugzilla.suse.com/1045547 https://bugzilla.suse.com/1045615 https://bugzilla.suse.com/1046107 https://bugzilla.suse.com/1046192 https://bugzilla.suse.com/1046715 https://bugzilla.suse.com/1047027 https://bugzilla.suse.com/1047053 https://bugzilla.suse.com/1047343 https://bugzilla.suse.com/1047354 https://bugzilla.suse.com/1047487 https://bugzilla.suse.com/1047523 https://bugzilla.suse.com/1047653 https://bugzilla.suse.com/1048185 https://bugzilla.suse.com/1048221 https://bugzilla.suse.com/1048232 https://bugzilla.suse.com/1048275 https://bugzilla.suse.com/1049128 https://bugzilla.suse.com/1049483 https://bugzilla.suse.com/1049603 https://bugzilla.suse.com/1049688 https://bugzilla.suse.com/1049882 https://bugzilla.suse.com/1050154 https://bugzilla.suse.com/1050431 https://bugzilla.suse.com/1051478 https://bugzilla.suse.com/1051515 https://bugzilla.suse.com/1051770 https://bugzilla.suse.com/1055680 https://bugzilla.suse.com/784815 https://bugzilla.suse.com/792863 https://bugzilla.suse.com/799133 https://bugzilla.suse.com/909618 https://bugzilla.suse.com/919382 https://bugzilla.suse.com/928138 https://bugzilla.suse.com/938352 https://bugzilla.suse.com/943786 https://bugzilla.suse.com/948562 https://bugzilla.suse.com/962257 https://bugzilla.suse.com/971975 https://bugzilla.suse.com/972891 https://bugzilla.suse.com/986924 https://bugzilla.suse.com/990682 https://bugzilla.suse.com/995542 From sle-security-updates at lists.suse.com Fri Sep 8 10:30:30 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Fri, 8 Sep 2017 18:30:30 +0200 (CEST) Subject: SUSE-SU-2017:2390-1: important: Security update for evince Message-ID: <20170908163030.6AC1CF402@maintenance.suse.de> SUSE Security Update: Security update for evince ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2390-1 Rating: important References: #1046856 Cross-References: CVE-2017-1000083 Affected Products: SUSE Linux Enterprise Workstation Extension 12-SP3 SUSE Linux Enterprise Workstation Extension 12-SP2 SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP3 SUSE Linux Enterprise Desktop 12-SP2 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for evince fixes the following issue: - CVE-2017-1000083: Remote attackers could have used the comicbook mode of evince to inject shell code (bsc#1046856). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Workstation Extension 12-SP3: zypper in -t patch SUSE-SLE-WE-12-SP3-2017-1479=1 - SUSE Linux Enterprise Workstation Extension 12-SP2: zypper in -t patch SUSE-SLE-WE-12-SP2-2017-1479=1 - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2017-1479=1 - SUSE Linux Enterprise Software Development Kit 12-SP2: zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1479=1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2: zypper in -t patch SUSE-SLE-RPI-12-SP2-2017-1479=1 - SUSE Linux Enterprise Server 12-SP3: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2017-1479=1 - SUSE Linux Enterprise Server 12-SP2: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1479=1 - SUSE Linux Enterprise Desktop 12-SP3: zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2017-1479=1 - SUSE Linux Enterprise Desktop 12-SP2: zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-1479=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Workstation Extension 12-SP3 (x86_64): evince-debuginfo-3.20.1-6.16.1 evince-debugsource-3.20.1-6.16.1 typelib-1_0-EvinceDocument-3_0-3.20.1-6.16.1 typelib-1_0-EvinceView-3_0-3.20.1-6.16.1 - SUSE Linux Enterprise Workstation Extension 12-SP2 (x86_64): evince-debuginfo-3.20.1-6.16.1 evince-debugsource-3.20.1-6.16.1 typelib-1_0-EvinceDocument-3_0-3.20.1-6.16.1 typelib-1_0-EvinceView-3_0-3.20.1-6.16.1 - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 ppc64le s390x x86_64): evince-debuginfo-3.20.1-6.16.1 evince-debugsource-3.20.1-6.16.1 evince-devel-3.20.1-6.16.1 typelib-1_0-EvinceDocument-3_0-3.20.1-6.16.1 typelib-1_0-EvinceView-3_0-3.20.1-6.16.1 - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 ppc64le s390x x86_64): evince-debuginfo-3.20.1-6.16.1 evince-debugsource-3.20.1-6.16.1 evince-devel-3.20.1-6.16.1 typelib-1_0-EvinceDocument-3_0-3.20.1-6.16.1 typelib-1_0-EvinceView-3_0-3.20.1-6.16.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (aarch64): evince-3.20.1-6.16.1 evince-browser-plugin-3.20.1-6.16.1 evince-browser-plugin-debuginfo-3.20.1-6.16.1 evince-debuginfo-3.20.1-6.16.1 evince-debugsource-3.20.1-6.16.1 evince-plugin-djvudocument-3.20.1-6.16.1 evince-plugin-djvudocument-debuginfo-3.20.1-6.16.1 evince-plugin-dvidocument-3.20.1-6.16.1 evince-plugin-dvidocument-debuginfo-3.20.1-6.16.1 evince-plugin-pdfdocument-3.20.1-6.16.1 evince-plugin-pdfdocument-debuginfo-3.20.1-6.16.1 evince-plugin-psdocument-3.20.1-6.16.1 evince-plugin-psdocument-debuginfo-3.20.1-6.16.1 evince-plugin-tiffdocument-3.20.1-6.16.1 evince-plugin-tiffdocument-debuginfo-3.20.1-6.16.1 evince-plugin-xpsdocument-3.20.1-6.16.1 evince-plugin-xpsdocument-debuginfo-3.20.1-6.16.1 libevdocument3-4-3.20.1-6.16.1 libevdocument3-4-debuginfo-3.20.1-6.16.1 libevview3-3-3.20.1-6.16.1 libevview3-3-debuginfo-3.20.1-6.16.1 nautilus-evince-3.20.1-6.16.1 nautilus-evince-debuginfo-3.20.1-6.16.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (noarch): evince-lang-3.20.1-6.16.1 - SUSE Linux Enterprise Server 12-SP3 (aarch64 ppc64le s390x x86_64): evince-3.20.1-6.16.1 evince-browser-plugin-3.20.1-6.16.1 evince-browser-plugin-debuginfo-3.20.1-6.16.1 evince-debuginfo-3.20.1-6.16.1 evince-debugsource-3.20.1-6.16.1 evince-plugin-djvudocument-3.20.1-6.16.1 evince-plugin-djvudocument-debuginfo-3.20.1-6.16.1 evince-plugin-dvidocument-3.20.1-6.16.1 evince-plugin-dvidocument-debuginfo-3.20.1-6.16.1 evince-plugin-pdfdocument-3.20.1-6.16.1 evince-plugin-pdfdocument-debuginfo-3.20.1-6.16.1 evince-plugin-psdocument-3.20.1-6.16.1 evince-plugin-psdocument-debuginfo-3.20.1-6.16.1 evince-plugin-tiffdocument-3.20.1-6.16.1 evince-plugin-tiffdocument-debuginfo-3.20.1-6.16.1 evince-plugin-xpsdocument-3.20.1-6.16.1 evince-plugin-xpsdocument-debuginfo-3.20.1-6.16.1 libevdocument3-4-3.20.1-6.16.1 libevdocument3-4-debuginfo-3.20.1-6.16.1 libevview3-3-3.20.1-6.16.1 libevview3-3-debuginfo-3.20.1-6.16.1 nautilus-evince-3.20.1-6.16.1 nautilus-evince-debuginfo-3.20.1-6.16.1 - SUSE Linux Enterprise Server 12-SP3 (noarch): evince-lang-3.20.1-6.16.1 - SUSE Linux Enterprise Server 12-SP2 (aarch64 ppc64le s390x x86_64): evince-3.20.1-6.16.1 evince-browser-plugin-3.20.1-6.16.1 evince-browser-plugin-debuginfo-3.20.1-6.16.1 evince-debuginfo-3.20.1-6.16.1 evince-debugsource-3.20.1-6.16.1 evince-plugin-djvudocument-3.20.1-6.16.1 evince-plugin-djvudocument-debuginfo-3.20.1-6.16.1 evince-plugin-dvidocument-3.20.1-6.16.1 evince-plugin-dvidocument-debuginfo-3.20.1-6.16.1 evince-plugin-pdfdocument-3.20.1-6.16.1 evince-plugin-pdfdocument-debuginfo-3.20.1-6.16.1 evince-plugin-psdocument-3.20.1-6.16.1 evince-plugin-psdocument-debuginfo-3.20.1-6.16.1 evince-plugin-tiffdocument-3.20.1-6.16.1 evince-plugin-tiffdocument-debuginfo-3.20.1-6.16.1 evince-plugin-xpsdocument-3.20.1-6.16.1 evince-plugin-xpsdocument-debuginfo-3.20.1-6.16.1 libevdocument3-4-3.20.1-6.16.1 libevdocument3-4-debuginfo-3.20.1-6.16.1 libevview3-3-3.20.1-6.16.1 libevview3-3-debuginfo-3.20.1-6.16.1 nautilus-evince-3.20.1-6.16.1 nautilus-evince-debuginfo-3.20.1-6.16.1 - SUSE Linux Enterprise Server 12-SP2 (noarch): evince-lang-3.20.1-6.16.1 - SUSE Linux Enterprise Desktop 12-SP3 (noarch): evince-lang-3.20.1-6.16.1 - SUSE Linux Enterprise Desktop 12-SP3 (x86_64): evince-3.20.1-6.16.1 evince-browser-plugin-3.20.1-6.16.1 evince-browser-plugin-debuginfo-3.20.1-6.16.1 evince-debuginfo-3.20.1-6.16.1 evince-debugsource-3.20.1-6.16.1 evince-plugin-djvudocument-3.20.1-6.16.1 evince-plugin-djvudocument-debuginfo-3.20.1-6.16.1 evince-plugin-dvidocument-3.20.1-6.16.1 evince-plugin-dvidocument-debuginfo-3.20.1-6.16.1 evince-plugin-pdfdocument-3.20.1-6.16.1 evince-plugin-pdfdocument-debuginfo-3.20.1-6.16.1 evince-plugin-psdocument-3.20.1-6.16.1 evince-plugin-psdocument-debuginfo-3.20.1-6.16.1 evince-plugin-tiffdocument-3.20.1-6.16.1 evince-plugin-tiffdocument-debuginfo-3.20.1-6.16.1 evince-plugin-xpsdocument-3.20.1-6.16.1 evince-plugin-xpsdocument-debuginfo-3.20.1-6.16.1 libevdocument3-4-3.20.1-6.16.1 libevdocument3-4-debuginfo-3.20.1-6.16.1 libevview3-3-3.20.1-6.16.1 libevview3-3-debuginfo-3.20.1-6.16.1 nautilus-evince-3.20.1-6.16.1 nautilus-evince-debuginfo-3.20.1-6.16.1 typelib-1_0-EvinceDocument-3_0-3.20.1-6.16.1 typelib-1_0-EvinceView-3_0-3.20.1-6.16.1 - SUSE Linux Enterprise Desktop 12-SP2 (x86_64): evince-3.20.1-6.16.1 evince-browser-plugin-3.20.1-6.16.1 evince-browser-plugin-debuginfo-3.20.1-6.16.1 evince-debuginfo-3.20.1-6.16.1 evince-debugsource-3.20.1-6.16.1 evince-plugin-djvudocument-3.20.1-6.16.1 evince-plugin-djvudocument-debuginfo-3.20.1-6.16.1 evince-plugin-dvidocument-3.20.1-6.16.1 evince-plugin-dvidocument-debuginfo-3.20.1-6.16.1 evince-plugin-pdfdocument-3.20.1-6.16.1 evince-plugin-pdfdocument-debuginfo-3.20.1-6.16.1 evince-plugin-psdocument-3.20.1-6.16.1 evince-plugin-psdocument-debuginfo-3.20.1-6.16.1 evince-plugin-tiffdocument-3.20.1-6.16.1 evince-plugin-tiffdocument-debuginfo-3.20.1-6.16.1 evince-plugin-xpsdocument-3.20.1-6.16.1 evince-plugin-xpsdocument-debuginfo-3.20.1-6.16.1 libevdocument3-4-3.20.1-6.16.1 libevdocument3-4-debuginfo-3.20.1-6.16.1 libevview3-3-3.20.1-6.16.1 libevview3-3-debuginfo-3.20.1-6.16.1 nautilus-evince-3.20.1-6.16.1 nautilus-evince-debuginfo-3.20.1-6.16.1 typelib-1_0-EvinceDocument-3_0-3.20.1-6.16.1 typelib-1_0-EvinceView-3_0-3.20.1-6.16.1 - SUSE Linux Enterprise Desktop 12-SP2 (noarch): evince-lang-3.20.1-6.16.1 References: https://www.suse.com/security/cve/CVE-2017-1000083.html https://bugzilla.suse.com/1046856 From sle-security-updates at lists.suse.com Mon Sep 11 13:07:18 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Mon, 11 Sep 2017 21:07:18 +0200 (CEST) Subject: SUSE-SU-2017:2416-1: important: Security update for qemu Message-ID: <20170911190718.73D13FC98@maintenance.suse.de> SUSE Security Update: Security update for qemu ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2416-1 Rating: important References: #1011144 #1031692 #1046636 #1047674 #1048296 #1048902 #1049381 #1050268 Cross-References: CVE-2017-10664 CVE-2017-10806 CVE-2017-11334 CVE-2017-11434 Affected Products: SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Desktop 12-SP3 ______________________________________________________________________________ An update that solves four vulnerabilities and has four fixes is now available. Description: This update for qemu fixes the following issues: Security issues fixed: * CVE-2017-10664: Fix DOS vulnerability in qemu-nbd (bsc#1046636) * CVE-2017-10806: Fix DOS from stack overflow in debug messages of usb redirection support (bsc#1047674) * CVE-2017-11334: Fix OOB access during DMA operation (bsc#1048902) * CVE-2017-11434: Fix OOB access parsing dhcp slirp options (bsc#1049381) Following non-security issues were fixed: - Postrequire acl for setfacl - Prerequire shadow for groupadd - The recent security fix for CVE-2017-11334 adversely affects Xen. Include two additional patches to make sure Xen is going to be OK. - Pre-add group kvm for qemu-tools (bsc#1011144) - Fixed a few more inaccuracies in the support docs. - Fix support docs to indicate ARM64 is now fully L3 supported in SLES 12 SP3. Apply a few additional clarifications in the support docs. (bsc#1050268) - Adjust to libvdeplug-devel package naming changes. - Fix migration with xhci (bsc#1048296) - Increase VNC delay to fix missing keyboard input events (bsc#1031692) - Remove build dependency package iasl used for seabios Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 12-SP3: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2017-1490=1 - SUSE Linux Enterprise Desktop 12-SP3: zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2017-1490=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server 12-SP3 (aarch64 ppc64le s390x x86_64): qemu-2.9.0-6.3.1 qemu-block-curl-2.9.0-6.3.1 qemu-block-curl-debuginfo-2.9.0-6.3.1 qemu-block-ssh-2.9.0-6.3.1 qemu-block-ssh-debuginfo-2.9.0-6.3.1 qemu-debugsource-2.9.0-6.3.1 qemu-guest-agent-2.9.0-6.3.1 qemu-guest-agent-debuginfo-2.9.0-6.3.1 qemu-lang-2.9.0-6.3.1 qemu-tools-2.9.0-6.3.1 qemu-tools-debuginfo-2.9.0-6.3.1 - SUSE Linux Enterprise Server 12-SP3 (aarch64 x86_64): qemu-block-rbd-2.9.0-6.3.1 qemu-block-rbd-debuginfo-2.9.0-6.3.1 - SUSE Linux Enterprise Server 12-SP3 (s390x x86_64): qemu-kvm-2.9.0-6.3.1 - SUSE Linux Enterprise Server 12-SP3 (aarch64): qemu-arm-2.9.0-6.3.1 qemu-arm-debuginfo-2.9.0-6.3.1 - SUSE Linux Enterprise Server 12-SP3 (ppc64le): qemu-ppc-2.9.0-6.3.1 qemu-ppc-debuginfo-2.9.0-6.3.1 - SUSE Linux Enterprise Server 12-SP3 (x86_64): qemu-x86-2.9.0-6.3.1 - SUSE Linux Enterprise Server 12-SP3 (noarch): qemu-ipxe-1.0.0-6.3.1 qemu-seabios-1.10.2-6.3.1 qemu-sgabios-8-6.3.1 qemu-vgabios-1.10.2-6.3.1 - SUSE Linux Enterprise Server 12-SP3 (s390x): qemu-s390-2.9.0-6.3.1 qemu-s390-debuginfo-2.9.0-6.3.1 - SUSE Linux Enterprise Desktop 12-SP3 (noarch): qemu-ipxe-1.0.0-6.3.1 qemu-seabios-1.10.2-6.3.1 qemu-sgabios-8-6.3.1 qemu-vgabios-1.10.2-6.3.1 - SUSE Linux Enterprise Desktop 12-SP3 (x86_64): qemu-2.9.0-6.3.1 qemu-block-curl-2.9.0-6.3.1 qemu-block-curl-debuginfo-2.9.0-6.3.1 qemu-debugsource-2.9.0-6.3.1 qemu-kvm-2.9.0-6.3.1 qemu-tools-2.9.0-6.3.1 qemu-tools-debuginfo-2.9.0-6.3.1 qemu-x86-2.9.0-6.3.1 References: https://www.suse.com/security/cve/CVE-2017-10664.html https://www.suse.com/security/cve/CVE-2017-10806.html https://www.suse.com/security/cve/CVE-2017-11334.html https://www.suse.com/security/cve/CVE-2017-11434.html https://bugzilla.suse.com/1011144 https://bugzilla.suse.com/1031692 https://bugzilla.suse.com/1046636 https://bugzilla.suse.com/1047674 https://bugzilla.suse.com/1048296 https://bugzilla.suse.com/1048902 https://bugzilla.suse.com/1049381 https://bugzilla.suse.com/1050268 From sle-security-updates at lists.suse.com Tue Sep 12 13:07:22 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Tue, 12 Sep 2017 21:07:22 +0200 (CEST) Subject: SUSE-SU-2017:2419-1: moderate: Security update for cvs Message-ID: <20170912190722.14F4DF3F9@maintenance.suse.de> SUSE Security Update: Security update for cvs ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2419-1 Rating: moderate References: #1053364 Cross-References: CVE-2017-12836 Affected Products: SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP3 SUSE Linux Enterprise Desktop 12-SP2 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for cvs fixes the following issues: - CVE-2017-12836: A leading dash in the argument of the "-d" option could lead to argument injection (bsc#1053364) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2: zypper in -t patch SUSE-SLE-RPI-12-SP2-2017-1499=1 - SUSE Linux Enterprise Server 12-SP3: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2017-1499=1 - SUSE Linux Enterprise Server 12-SP2: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1499=1 - SUSE Linux Enterprise Desktop 12-SP3: zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2017-1499=1 - SUSE Linux Enterprise Desktop 12-SP2: zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-1499=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (aarch64): cvs-1.12.12-182.3.1 cvs-debuginfo-1.12.12-182.3.1 cvs-debugsource-1.12.12-182.3.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (noarch): cvs-doc-1.12.12-182.3.1 - SUSE Linux Enterprise Server 12-SP3 (aarch64 ppc64le s390x x86_64): cvs-1.12.12-182.3.1 cvs-debuginfo-1.12.12-182.3.1 cvs-debugsource-1.12.12-182.3.1 - SUSE Linux Enterprise Server 12-SP3 (noarch): cvs-doc-1.12.12-182.3.1 - SUSE Linux Enterprise Server 12-SP2 (aarch64 ppc64le s390x x86_64): cvs-1.12.12-182.3.1 cvs-debuginfo-1.12.12-182.3.1 cvs-debugsource-1.12.12-182.3.1 - SUSE Linux Enterprise Server 12-SP2 (noarch): cvs-doc-1.12.12-182.3.1 - SUSE Linux Enterprise Desktop 12-SP3 (x86_64): cvs-1.12.12-182.3.1 cvs-debuginfo-1.12.12-182.3.1 cvs-debugsource-1.12.12-182.3.1 - SUSE Linux Enterprise Desktop 12-SP2 (x86_64): cvs-1.12.12-182.3.1 cvs-debuginfo-1.12.12-182.3.1 cvs-debugsource-1.12.12-182.3.1 References: https://www.suse.com/security/cve/CVE-2017-12836.html https://bugzilla.suse.com/1053364 From sle-security-updates at lists.suse.com Tue Sep 12 13:07:57 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Tue, 12 Sep 2017 21:07:57 +0200 (CEST) Subject: SUSE-SU-2017:2420-1: important: Security update for xen Message-ID: <20170912190757.54171F3F9@maintenance.suse.de> SUSE Security Update: Security update for xen ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2420-1 Rating: important References: #1027519 #1055695 #1056278 #1056280 #1056281 #1056282 #1057358 Cross-References: CVE-2017-14316 CVE-2017-14317 CVE-2017-14318 CVE-2017-14319 Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Desktop 12-SP3 ______________________________________________________________________________ An update that solves four vulnerabilities and has three fixes is now available. Description: This update for xen fixes several issues. These security issues were fixed: - CVE-2017-14316: Missing bound check in function `alloc_heap_pages` for an internal array allowed attackers using crafted hypercalls to execute arbitrary code within Xen (XSA-231, bsc#1056278) - CVE-2017-14318: The function __gnttab_cache_flush missed a check for grant tables, allowing a malicious guest to crash the host or for x86 PV guests to potentially escalate privileges (XSA-232, bsc#1056280) - CVE-2017-14317: A race in cxenstored may have cause a double-free allowind for DoS of the xenstored daemon (XSA-233, bsc#1056281). - CVE-2017-14319: An error while handling grant mappings allowed malicious or buggy x86 PV guest to escalate its privileges or crash the hypervisor (XSA-234, bsc#1056282). These non-security issues were fixed: - bsc#1057358: Fixed boot into SUSE Linux Enterprise 12.3 with secure boot - bsc#1055695: Fixed restoring updates for HVM guests for ballooned domUs Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2017-1500=1 - SUSE Linux Enterprise Server 12-SP3: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2017-1500=1 - SUSE Linux Enterprise Desktop 12-SP3: zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2017-1500=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 x86_64): xen-debugsource-4.9.0_12-3.15.1 xen-devel-4.9.0_12-3.15.1 - SUSE Linux Enterprise Server 12-SP3 (x86_64): xen-4.9.0_12-3.15.1 xen-debugsource-4.9.0_12-3.15.1 xen-doc-html-4.9.0_12-3.15.1 xen-libs-32bit-4.9.0_12-3.15.1 xen-libs-4.9.0_12-3.15.1 xen-libs-debuginfo-32bit-4.9.0_12-3.15.1 xen-libs-debuginfo-4.9.0_12-3.15.1 xen-tools-4.9.0_12-3.15.1 xen-tools-debuginfo-4.9.0_12-3.15.1 xen-tools-domU-4.9.0_12-3.15.1 xen-tools-domU-debuginfo-4.9.0_12-3.15.1 - SUSE Linux Enterprise Desktop 12-SP3 (x86_64): xen-4.9.0_12-3.15.1 xen-debugsource-4.9.0_12-3.15.1 xen-libs-32bit-4.9.0_12-3.15.1 xen-libs-4.9.0_12-3.15.1 xen-libs-debuginfo-32bit-4.9.0_12-3.15.1 xen-libs-debuginfo-4.9.0_12-3.15.1 References: https://www.suse.com/security/cve/CVE-2017-14316.html https://www.suse.com/security/cve/CVE-2017-14317.html https://www.suse.com/security/cve/CVE-2017-14318.html https://www.suse.com/security/cve/CVE-2017-14319.html https://bugzilla.suse.com/1027519 https://bugzilla.suse.com/1055695 https://bugzilla.suse.com/1056278 https://bugzilla.suse.com/1056280 https://bugzilla.suse.com/1056281 https://bugzilla.suse.com/1056282 https://bugzilla.suse.com/1057358 From sle-security-updates at lists.suse.com Tue Sep 12 13:10:15 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Tue, 12 Sep 2017 21:10:15 +0200 (CEST) Subject: SUSE-SU-2017:2422-1: moderate: Security update for cvs Message-ID: <20170912191015.3BEECF402@maintenance.suse.de> SUSE Security Update: Security update for cvs ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2422-1 Rating: moderate References: #1053364 Cross-References: CVE-2017-12836 Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 SUSE Linux Enterprise Debuginfo 11-SP4 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for cvs fixes the following issues: - CVE-2017-12836: A leading dash in the argument of the "-d" option could lead to argument injection (bsc#1053364) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 11-SP4: zypper in -t patch sdksp4-cvs-13279=1 - SUSE Linux Enterprise Server 11-SP4: zypper in -t patch slessp4-cvs-13279=1 - SUSE Linux Enterprise Debuginfo 11-SP4: zypper in -t patch dbgsp4-cvs-13279=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 11-SP4 (i586 x86_64): cvs-doc-1.12.12-144.23.5.3.1 - SUSE Linux Enterprise Server 11-SP4 (i586 ia64 ppc64 s390x x86_64): cvs-1.12.12-144.23.5.3.1 cvs-doc-1.12.12-144.23.5.3.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ia64 ppc64 s390x x86_64): cvs-debuginfo-1.12.12-144.23.5.3.1 cvs-debugsource-1.12.12-144.23.5.3.1 References: https://www.suse.com/security/cve/CVE-2017-12836.html https://bugzilla.suse.com/1053364 From sle-security-updates at lists.suse.com Tue Sep 12 13:10:48 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Tue, 12 Sep 2017 21:10:48 +0200 (CEST) Subject: SUSE-SU-2017:2423-1: important: Security update for Linux Kernel Live Patch 11 for SLE 12 SP1 Message-ID: <20170912191048.513E4F3F9@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 11 for SLE 12 SP1 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2423-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Server for SAP 12-SP1 SUSE Linux Enterprise Server 12-SP1-LTSS ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 3.12.67-60_64_24 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server for SAP 12-SP1: zypper in -t patch SUSE-SLE-SAP-12-SP1-2017-1502=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1502=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server for SAP 12-SP1 (x86_64): kgraft-patch-3_12_67-60_64_24-default-8-2.1 kgraft-patch-3_12_67-60_64_24-xen-8-2.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (x86_64): kgraft-patch-3_12_67-60_64_24-default-8-2.1 kgraft-patch-3_12_67-60_64_24-xen-8-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Tue Sep 12 13:11:32 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Tue, 12 Sep 2017 21:11:32 +0200 (CEST) Subject: SUSE-SU-2017:2424-1: important: Security update for Linux Kernel Live Patch 10 for SLE 12 SP1 Message-ID: <20170912191132.B9341F402@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 10 for SLE 12 SP1 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2424-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Server for SAP 12-SP1 SUSE Linux Enterprise Server 12-SP1-LTSS ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 3.12.67-60_64_21 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server for SAP 12-SP1: zypper in -t patch SUSE-SLE-SAP-12-SP1-2017-1501=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1501=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server for SAP 12-SP1 (x86_64): kgraft-patch-3_12_67-60_64_21-default-9-2.2 kgraft-patch-3_12_67-60_64_21-xen-9-2.2 - SUSE Linux Enterprise Server 12-SP1-LTSS (x86_64): kgraft-patch-3_12_67-60_64_21-default-9-2.2 kgraft-patch-3_12_67-60_64_21-xen-9-2.2 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Tue Sep 12 19:07:06 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 13 Sep 2017 03:07:06 +0200 (CEST) Subject: SUSE-SU-2017:2436-1: important: Security update for Linux Kernel Live Patch 15 for SLE 12 SP1 Message-ID: <20170913010706.306B6FC98@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 15 for SLE 12 SP1 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2436-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Server for SAP 12-SP1 SUSE Linux Enterprise Server 12-SP1-LTSS ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 3.12.74-60_64_40 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server for SAP 12-SP1: zypper in -t patch SUSE-SLE-SAP-12-SP1-2017-1507=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1507=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server for SAP 12-SP1 (x86_64): kgraft-patch-3_12_74-60_64_40-default-4-2.1 kgraft-patch-3_12_74-60_64_40-xen-4-2.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (x86_64): kgraft-patch-3_12_74-60_64_40-default-4-2.1 kgraft-patch-3_12_74-60_64_40-xen-4-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Tue Sep 12 19:07:46 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 13 Sep 2017 03:07:46 +0200 (CEST) Subject: SUSE-SU-2017:2437-1: important: Security update for Linux Kernel Live Patch 12 for SLE 12 SP1 Message-ID: <20170913010746.515F5F402@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 12 for SLE 12 SP1 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2437-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Server for SAP 12-SP1 SUSE Linux Enterprise Server 12-SP1-LTSS ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 3.12.69-60_64_29 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server for SAP 12-SP1: zypper in -t patch SUSE-SLE-SAP-12-SP1-2017-1505=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1505=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server for SAP 12-SP1 (x86_64): kgraft-patch-3_12_69-60_64_29-default-7-2.1 kgraft-patch-3_12_69-60_64_29-xen-7-2.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (x86_64): kgraft-patch-3_12_69-60_64_29-default-7-2.1 kgraft-patch-3_12_69-60_64_29-xen-7-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Tue Sep 12 19:08:26 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 13 Sep 2017 03:08:26 +0200 (CEST) Subject: SUSE-SU-2017:2438-1: important: Security update for Linux Kernel Live Patch 8 for SLE 12 SP1 Message-ID: <20170913010826.D68EBF402@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 8 for SLE 12 SP1 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2438-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Server 12-SP1-LTSS ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 3.12.62-60_64_8 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1504=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server 12-SP1-LTSS (x86_64): kgraft-patch-3_12_62-60_64_8-default-11-2.1 kgraft-patch-3_12_62-60_64_8-xen-11-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Tue Sep 12 19:09:05 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 13 Sep 2017 03:09:05 +0200 (CEST) Subject: SUSE-SU-2017:2439-1: important: Security update for Linux Kernel Live Patch 16 for SLE 12 SP1 Message-ID: <20170913010905.6A61EF402@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 16 for SLE 12 SP1 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2439-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Server for SAP 12-SP1 SUSE Linux Enterprise Server 12-SP1-LTSS ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 3.12.74-60_64_45 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server for SAP 12-SP1: zypper in -t patch SUSE-SLE-SAP-12-SP1-2017-1508=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1508=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server for SAP 12-SP1 (x86_64): kgraft-patch-3_12_74-60_64_45-default-4-2.1 kgraft-patch-3_12_74-60_64_45-xen-4-2.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (x86_64): kgraft-patch-3_12_74-60_64_45-default-4-2.1 kgraft-patch-3_12_74-60_64_45-xen-4-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Tue Sep 12 19:09:46 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 13 Sep 2017 03:09:46 +0200 (CEST) Subject: SUSE-SU-2017:2440-1: important: Security update for Linux Kernel Live Patch 13 for SLE 12 SP1 Message-ID: <20170913010946.93EDFF7BE@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 13 for SLE 12 SP1 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2440-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Server for SAP 12-SP1 SUSE Linux Enterprise Server 12-SP1-LTSS ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 3.12.69-60_64_32 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server for SAP 12-SP1: zypper in -t patch SUSE-SLE-SAP-12-SP1-2017-1506=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1506=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server for SAP 12-SP1 (x86_64): kgraft-patch-3_12_69-60_64_32-default-6-2.1 kgraft-patch-3_12_69-60_64_32-xen-6-2.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (x86_64): kgraft-patch-3_12_69-60_64_32-default-6-2.1 kgraft-patch-3_12_69-60_64_32-xen-6-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Tue Sep 12 19:10:27 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 13 Sep 2017 03:10:27 +0200 (CEST) Subject: SUSE-SU-2017:2441-1: important: Security update for Linux Kernel Live Patch 17 for SLE 12 SP1 Message-ID: <20170913011027.7A5D5F402@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 17 for SLE 12 SP1 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2441-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Server for SAP 12-SP1 SUSE Linux Enterprise Server 12-SP1-LTSS ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 3.12.74-60_64_48 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server for SAP 12-SP1: zypper in -t patch SUSE-SLE-SAP-12-SP1-2017-1509=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1509=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server for SAP 12-SP1 (x86_64): kgraft-patch-3_12_74-60_64_48-default-3-2.1 kgraft-patch-3_12_74-60_64_48-xen-3-2.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (x86_64): kgraft-patch-3_12_74-60_64_48-default-3-2.1 kgraft-patch-3_12_74-60_64_48-xen-3-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Wed Sep 13 09:21:16 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 13 Sep 2017 17:21:16 +0200 (CEST) Subject: SUSE-SU-2017:2442-1: important: Security update for Linux Kernel Live Patch 14 for SLE 12 SP1 Message-ID: <20170913152116.71D9EF39D@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 14 for SLE 12 SP1 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2442-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Server for SAP 12-SP1 SUSE Linux Enterprise Server 12-SP1-LTSS ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 3.12.69-60_64_35 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server for SAP 12-SP1: zypper in -t patch SUSE-SLE-SAP-12-SP1-2017-1512=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1512=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server for SAP 12-SP1 (x86_64): kgraft-patch-3_12_69-60_64_35-default-5-2.1 kgraft-patch-3_12_69-60_64_35-xen-5-2.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (x86_64): kgraft-patch-3_12_69-60_64_35-default-5-2.1 kgraft-patch-3_12_69-60_64_35-xen-5-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Wed Sep 13 09:21:56 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 13 Sep 2017 17:21:56 +0200 (CEST) Subject: SUSE-SU-2017:2443-1: important: Security update for Linux Kernel Live Patch 9 for SLE 12 SP1 Message-ID: <20170913152156.A064AF3F9@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 9 for SLE 12 SP1 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2443-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Server for SAP 12-SP1 SUSE Linux Enterprise Server 12-SP1-LTSS ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 3.12.67-60_64_18 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server for SAP 12-SP1: zypper in -t patch SUSE-SLE-SAP-12-SP1-2017-1511=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1511=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server for SAP 12-SP1 (x86_64): kgraft-patch-3_12_67-60_64_18-default-10-2.1 kgraft-patch-3_12_67-60_64_18-xen-10-2.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (x86_64): kgraft-patch-3_12_67-60_64_18-default-10-2.1 kgraft-patch-3_12_67-60_64_18-xen-10-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Wed Sep 13 09:25:21 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 13 Sep 2017 17:25:21 +0200 (CEST) Subject: SUSE-SU-2017:2446-1: important: Security update for Linux Kernel Live Patch 19 for SLE 12 SP1 Message-ID: <20170913152521.5658CF39D@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 19 for SLE 12 SP1 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2446-1 Rating: important References: #1038564 #1042892 #1052311 #1052368 Cross-References: CVE-2017-1000112 CVE-2017-8890 CVE-2017-9242 Affected Products: SUSE Linux Enterprise Server for SAP 12-SP1 SUSE Linux Enterprise Server 12-SP1-LTSS ______________________________________________________________________________ An update that solves three vulnerabilities and has one errata is now available. Description: This update for the Linux Kernel 3.12.74-60_64_54 fixes several issues. The following security bugs were fixed: - CVE-2017-9242: The __ip6_append_data function in net/ipv6/ip6_output.c in the Linux kernel was too late in checking whether an overwrite of an skb data structure may occur, which allowed local users to cause a denial of service (system crash) via crafted system calls (bsc#1038564, bsc#1042892). - CVE-2017-8890: The inet_csk_clone_lock function in net/ipv4/inet_connection_sock.c in the Linux kernel allowed attackers to cause a denial of service (double free) or possibly have unspecified other impact by leveraging use of the accept system call (bsc#1038564). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server for SAP 12-SP1: zypper in -t patch SUSE-SLE-SAP-12-SP1-2017-1514=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1514=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server for SAP 12-SP1 (x86_64): kgraft-patch-3_12_74-60_64_54-default-2-2.1 kgraft-patch-3_12_74-60_64_54-xen-2-2.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (x86_64): kgraft-patch-3_12_74-60_64_54-default-2-2.1 kgraft-patch-3_12_74-60_64_54-xen-2-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://www.suse.com/security/cve/CVE-2017-8890.html https://www.suse.com/security/cve/CVE-2017-9242.html https://bugzilla.suse.com/1038564 https://bugzilla.suse.com/1042892 https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Wed Sep 13 09:26:20 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 13 Sep 2017 17:26:20 +0200 (CEST) Subject: SUSE-SU-2017:2447-1: important: Security update for Linux Kernel Live Patch 18 for SLE 12 SP1 Message-ID: <20170913152620.6476CF39D@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 18 for SLE 12 SP1 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2447-1 Rating: important References: #1038564 #1042892 #1052311 #1052368 Cross-References: CVE-2017-1000112 CVE-2017-8890 CVE-2017-9242 Affected Products: SUSE Linux Enterprise Server for SAP 12-SP1 SUSE Linux Enterprise Server 12-SP1-LTSS ______________________________________________________________________________ An update that solves three vulnerabilities and has one errata is now available. Description: This update for the Linux Kernel 3.12.74-60_64_51 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). - CVE-2017-9242: The __ip6_append_data function in net/ipv6/ip6_output.c in the Linux kernel was too late in checking whether an overwrite of an skb data structure may occur, which allowed local users to cause a denial of service (system crash) via crafted system calls (bsc#1038564, bsc#1042892). - CVE-2017-8890: The inet_csk_clone_lock function in net/ipv4/inet_connection_sock.c in the Linux kernel allowed attackers to cause a denial of service (double free) or possibly have unspecified other impact by leveraging use of the accept system call (bsc#1038564). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server for SAP 12-SP1: zypper in -t patch SUSE-SLE-SAP-12-SP1-2017-1513=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1513=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server for SAP 12-SP1 (x86_64): kgraft-patch-3_12_74-60_64_51-default-2-2.1 kgraft-patch-3_12_74-60_64_51-xen-2-2.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (x86_64): kgraft-patch-3_12_74-60_64_51-default-2-2.1 kgraft-patch-3_12_74-60_64_51-xen-2-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://www.suse.com/security/cve/CVE-2017-8890.html https://www.suse.com/security/cve/CVE-2017-9242.html https://bugzilla.suse.com/1038564 https://bugzilla.suse.com/1042892 https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Wed Sep 13 09:27:19 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 13 Sep 2017 17:27:19 +0200 (CEST) Subject: SUSE-SU-2017:2448-1: important: Security update for Linux Kernel Live Patch 20 for SLE 12 SP1 Message-ID: <20170913152719.8E265F7BE@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 20 for SLE 12 SP1 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2448-1 Rating: important References: #1038564 #1042892 #1052311 #1052368 Cross-References: CVE-2017-1000112 CVE-2017-8890 CVE-2017-9242 Affected Products: SUSE Linux Enterprise Server for SAP 12-SP1 SUSE Linux Enterprise Server 12-SP1-LTSS ______________________________________________________________________________ An update that solves three vulnerabilities and has one errata is now available. Description: This update for the Linux Kernel 3.12.74-60_64_57 fixes several issues. The following security bugs were fixed: - CVE-2017-9242: The __ip6_append_data function in net/ipv6/ip6_output.c in the Linux kernel was too late in checking whether an overwrite of an skb data structure may occur, which allowed local users to cause a denial of service (system crash) via crafted system calls (bsc#1038564, bsc#1042892). - CVE-2017-8890: The inet_csk_clone_lock function in net/ipv4/inet_connection_sock.c in the Linux kernel allowed attackers to cause a denial of service (double free) or possibly have unspecified other impact by leveraging use of the accept system call (bsc#1038564). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server for SAP 12-SP1: zypper in -t patch SUSE-SLE-SAP-12-SP1-2017-1515=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1515=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server for SAP 12-SP1 (x86_64): kgraft-patch-3_12_74-60_64_57-default-2-2.1 kgraft-patch-3_12_74-60_64_57-xen-2-2.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (x86_64): kgraft-patch-3_12_74-60_64_57-default-2-2.1 kgraft-patch-3_12_74-60_64_57-xen-2-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://www.suse.com/security/cve/CVE-2017-8890.html https://www.suse.com/security/cve/CVE-2017-9242.html https://bugzilla.suse.com/1038564 https://bugzilla.suse.com/1042892 https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Wed Sep 13 09:28:18 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 13 Sep 2017 17:28:18 +0200 (CEST) Subject: SUSE-SU-2017:2449-1: moderate: Recommended update for apache2 Message-ID: <20170913152818.D1678F402@maintenance.suse.de> SUSE Security Update: Recommended update for apache2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2449-1 Rating: moderate References: #1035829 #1041830 #1043484 #1043607 #1045060 #1045062 #1045065 #1048576 Cross-References: CVE-2017-3167 CVE-2017-3169 CVE-2017-7679 CVE-2017-9788 Affected Products: SUSE OpenStack Cloud 6 SUSE Linux Enterprise Server for SAP 12-SP1 SUSE Linux Enterprise Server 12-SP1-LTSS ______________________________________________________________________________ An update that solves four vulnerabilities and has four fixes is now available. Description: This update for apache2 provides the following fixes: Security issues fixed: * CVE-2017-9788: The value placeholder in [Proxy-]Authorization headers of type 'Digest' was not initialized or reset before or between successive key=value assignments by mod_auth_digest. Providing an initial key with no '=' assignment could reflect the stale value of uninitialized pool memory used by the prior request, leading to leakage of potentially confidential information, and a segfault in other cases resulting in denial of service. (bsc#1048576) * CVE-2017-7679: mod_mime could have read one byte past the end of a buffer when sending a malicious Content-Type response header leading to information leak or crash. (bsc#1045060) * CVE-2017-3169: mod_ssl may have dereferenced a NULL pointer when third-party modules call ap_hook_process_connection() during an HTTP request to an HTTPS port leading to crash. (bsc#1045062) * CVE-2017-3167: Use of the ap_get_basic_auth_pw() by third-party modules outside of the authentication phase may have lead to authentication requirements being bypassed. (bsc#1045065) Non-security issues fixed: - Re-order cipher suites to keep exclusion list at the end. (bsc#1043484, bsc#1043607) - Remove /usr/bin/http2 link only during apache2 package uninstall, not upgrade. (bsc#1041830) - In gensslcert, use hostname when fqdn is too long. (bsc#1035829) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud 6: zypper in -t patch SUSE-OpenStack-Cloud-6-2017-1510=1 - SUSE Linux Enterprise Server for SAP 12-SP1: zypper in -t patch SUSE-SLE-SAP-12-SP1-2017-1510=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1510=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE OpenStack Cloud 6 (noarch): apache2-doc-2.4.16-20.10.1 - SUSE OpenStack Cloud 6 (x86_64): apache2-2.4.16-20.10.1 apache2-debuginfo-2.4.16-20.10.1 apache2-debugsource-2.4.16-20.10.1 apache2-example-pages-2.4.16-20.10.1 apache2-prefork-2.4.16-20.10.1 apache2-prefork-debuginfo-2.4.16-20.10.1 apache2-utils-2.4.16-20.10.1 apache2-utils-debuginfo-2.4.16-20.10.1 apache2-worker-2.4.16-20.10.1 apache2-worker-debuginfo-2.4.16-20.10.1 - SUSE Linux Enterprise Server for SAP 12-SP1 (ppc64le x86_64): apache2-2.4.16-20.10.1 apache2-debuginfo-2.4.16-20.10.1 apache2-debugsource-2.4.16-20.10.1 apache2-example-pages-2.4.16-20.10.1 apache2-prefork-2.4.16-20.10.1 apache2-prefork-debuginfo-2.4.16-20.10.1 apache2-utils-2.4.16-20.10.1 apache2-utils-debuginfo-2.4.16-20.10.1 apache2-worker-2.4.16-20.10.1 apache2-worker-debuginfo-2.4.16-20.10.1 - SUSE Linux Enterprise Server for SAP 12-SP1 (noarch): apache2-doc-2.4.16-20.10.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (ppc64le s390x x86_64): apache2-2.4.16-20.10.1 apache2-debuginfo-2.4.16-20.10.1 apache2-debugsource-2.4.16-20.10.1 apache2-example-pages-2.4.16-20.10.1 apache2-prefork-2.4.16-20.10.1 apache2-prefork-debuginfo-2.4.16-20.10.1 apache2-utils-2.4.16-20.10.1 apache2-utils-debuginfo-2.4.16-20.10.1 apache2-worker-2.4.16-20.10.1 apache2-worker-debuginfo-2.4.16-20.10.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (noarch): apache2-doc-2.4.16-20.10.1 References: https://www.suse.com/security/cve/CVE-2017-3167.html https://www.suse.com/security/cve/CVE-2017-3169.html https://www.suse.com/security/cve/CVE-2017-7679.html https://www.suse.com/security/cve/CVE-2017-9788.html https://bugzilla.suse.com/1035829 https://bugzilla.suse.com/1041830 https://bugzilla.suse.com/1043484 https://bugzilla.suse.com/1043607 https://bugzilla.suse.com/1045060 https://bugzilla.suse.com/1045062 https://bugzilla.suse.com/1045065 https://bugzilla.suse.com/1048576 From sle-security-updates at lists.suse.com Wed Sep 13 10:07:58 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 13 Sep 2017 18:07:58 +0200 (CEST) Subject: SUSE-SU-2017:2450-1: important: Security update for xen Message-ID: <20170913160758.CEE81FC98@maintenance.suse.de> SUSE Security Update: Security update for xen ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2450-1 Rating: important References: #1027519 #1032598 #1037413 #1046637 #1047675 #1048920 #1049578 #1051787 #1051788 #1052686 #1056278 #1056281 #1056282 Cross-References: CVE-2017-10664 CVE-2017-10806 CVE-2017-11334 CVE-2017-11434 CVE-2017-12135 CVE-2017-12137 CVE-2017-12855 CVE-2017-14316 CVE-2017-14317 CVE-2017-14319 Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 SUSE Linux Enterprise Debuginfo 11-SP4 ______________________________________________________________________________ An update that solves 10 vulnerabilities and has three fixes is now available. Description: This update for xen fixes several issues. These security issues were fixed: - CVE-2017-12135: Unbounded recursion in grant table code allowed a malicious guest to crash the host or potentially escalate privileges/leak information (XSA-226, bsc#1051787). - CVE-2017-12137: Incorrectly-aligned updates to pagetables allowed for privilege escalation (XSA-227, bsc#1051788). - CVE-2017-11334: The address_space_write_continue function in exec.c allowed local guest OS privileged users to cause a denial of service (out-of-bounds access and guest instance crash) by leveraging use of qemu_map_ram_ptr to access guest ram block area (bsc#1048920). - CVE-2017-11434: The dhcp_decode function in slirp/bootp.c allowed local guest OS users to cause a denial of service (out-of-bounds read) via a crafted DHCP options string (bsc#1049578). - CVE-2017-10806: Stack-based buffer overflow in hw/usb/redirect.c allowed local guest OS users to cause a denial of service via vectors related to logging debug messages (bsc#1047675). - CVE-2017-10664: qemu-nbd did not ignore SIGPIPE, which allowed remote attackers to cause a denial of service (daemon crash) by disconnecting during a server-to-client reply attempt (bsc#1046637). - CVE-2017-12855: Premature clearing of GTF_writing / GTF_reading lead to potentially leaking sensitive information (XSA-230, bsc#1052686). - CVE-2017-14316: Missing bound check in function `alloc_heap_pages` for an internal array allowed attackers using crafted hypercalls to execute arbitrary code within Xen (XSA-231, bsc#1056278) - CVE-2017-14317: A race in cxenstored may have cause a double-free allowind for DoS of the xenstored daemon (XSA-233, bsc#1056281). - CVE-2017-14319: An error while handling grant mappings allowed malicious or buggy x86 PV guest to escalate its privileges or crash the hypervisor (XSA-234, bsc#1056282). This non-security issue was fixed: - bsc#1032598: Prevent removal of NVME devices - bsc#1037413: Support for newer intel cpu's, mwait-idle driver and skylake Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 11-SP4: zypper in -t patch sdksp4-xen-13281=1 - SUSE Linux Enterprise Server 11-SP4: zypper in -t patch slessp4-xen-13281=1 - SUSE Linux Enterprise Debuginfo 11-SP4: zypper in -t patch dbgsp4-xen-13281=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 11-SP4 (i586 x86_64): xen-devel-4.4.4_22-61.9.2 - SUSE Linux Enterprise Server 11-SP4 (i586 x86_64): xen-kmp-default-4.4.4_22_3.0.101_108.7-61.9.2 xen-libs-4.4.4_22-61.9.2 xen-tools-domU-4.4.4_22-61.9.2 - SUSE Linux Enterprise Server 11-SP4 (x86_64): xen-4.4.4_22-61.9.2 xen-doc-html-4.4.4_22-61.9.2 xen-libs-32bit-4.4.4_22-61.9.2 xen-tools-4.4.4_22-61.9.2 - SUSE Linux Enterprise Server 11-SP4 (i586): xen-kmp-pae-4.4.4_22_3.0.101_108.7-61.9.2 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 x86_64): xen-debuginfo-4.4.4_22-61.9.2 xen-debugsource-4.4.4_22-61.9.2 References: https://www.suse.com/security/cve/CVE-2017-10664.html https://www.suse.com/security/cve/CVE-2017-10806.html https://www.suse.com/security/cve/CVE-2017-11334.html https://www.suse.com/security/cve/CVE-2017-11434.html https://www.suse.com/security/cve/CVE-2017-12135.html https://www.suse.com/security/cve/CVE-2017-12137.html https://www.suse.com/security/cve/CVE-2017-12855.html https://www.suse.com/security/cve/CVE-2017-14316.html https://www.suse.com/security/cve/CVE-2017-14317.html https://www.suse.com/security/cve/CVE-2017-14319.html https://bugzilla.suse.com/1027519 https://bugzilla.suse.com/1032598 https://bugzilla.suse.com/1037413 https://bugzilla.suse.com/1046637 https://bugzilla.suse.com/1047675 https://bugzilla.suse.com/1048920 https://bugzilla.suse.com/1049578 https://bugzilla.suse.com/1051787 https://bugzilla.suse.com/1051788 https://bugzilla.suse.com/1052686 https://bugzilla.suse.com/1056278 https://bugzilla.suse.com/1056281 https://bugzilla.suse.com/1056282 From sle-security-updates at lists.suse.com Wed Sep 13 13:08:54 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 13 Sep 2017 21:08:54 +0200 (CEST) Subject: SUSE-SU-2017:2453-1: moderate: Security update for SUSE Manager Server 3.0 Message-ID: <20170913190854.CA98FF3F9@maintenance.suse.de> SUSE Security Update: Security update for SUSE Manager Server 3.0 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2453-1 Rating: moderate References: #1009118 #1017513 #1022286 #1024058 #1026930 #1028098 #1030898 #1032350 #1033999 #1037609 #1039458 #1045152 #1045575 #1046218 #1047155 #1047656 #1048528 #1048762 #1048968 #1049170 #1049471 #1051518 #1053850 #1054225 Cross-References: CVE-2017-7538 Affected Products: SUSE Manager Server 3.0 ______________________________________________________________________________ An update that solves one vulnerability and has 23 fixes is now available. Description: This update for the SUSE Manager Server 3.0 provides several fixes and improvements. The following security issue has been fixed: spacewalk-java: - CVE-2017-7538: Do not allow HTML code injection via Cross Site Scripting (XSS) in the Organization Name. (bsc#1048968) Additionally, the following non-security issues have been fixed: salt-netapi-client: - Fix date format for Schedule. - Fix sending kwarg in payload in RunnerCall. - Better error handling in Runner and Wheel calls. - Increase the default SOCKET_TIMEOUT to 20 seconds smdba: - Do not set default_statistics_target. (bsc#1022286) - Support postgresql96. (bsc#1045152) - Prevent use of /var/lib/pgsql/data. (bsc#1024058) - Remove copyright message every time shown. - On systemd-enabled systems use it for start/stop PostgreSQL. (bsc#1024058) spacewalk-backend: - Increase rpclib timeout to 10 minutes. (bsc#1026930) - Adapt for the new gpgcheck flag for the channels. spacewalk-branding: - Fix overlapping text narrow window. (bsc#1009118) spacewalk-config: - Resolve comps.xml file for repositories. (bsc#1048528) spacewalk-java: - Delete and create new ServerNetAddress if it already exists on Hardware refresh. (bsc#1054225) - Fix enter key submit on ListTag filter input. (bsc#1048762) - Create VirtpollerData object with JSON content instead null. (bsc#1049170) - Prevent malformed XML if 'arch' is set to NULL. (bsc#1045575) - Resolve comps.xml file for repositories. (bsc#1048528) - Don't add default channel if AK is not valid. (bsc#1047656) - Add 'Enable GPG check' function for channels. - Regenerate pillar for the minions using the channel being modified. - Remove executable bit from service files. (bsc#1051518) - Fix wrong openscap xid. (bsc#1030898) - Fix overlapping text narrow window. (bsc#1009118) - Fix broken link. (bsc#1033999) - Fix alignment on the org details. (bsc#1017513) - Update channels.xml with OpenStack Cloud Continuous Delivery 6. (bsc#1039458) - Handle possible wrong UUIDs on SLE 11 minions. (bsc#1046218) - Allow blank key generation. (bsc#1032350) spacewalk-search: - Remove executable bit from service files. (bsc#1051518) spacewalk-setup-jabberd: - Change default backend for jabberd to sqlite. (bsc#1047155) spacewalk-web: - Fix enter key submit on ListTag filter input. (bsc#1048762) susemanager: - Do not use checkpoint_segments parameter during migrations. - Enable migration from postgresql94 to postgresql96. - Create bootstrap repository for SUSE Linux Enterprise Server for SAP 11 SP1. (bsc#1049471) - Adjust the bootstrap repository with SUSE Linux Enterprise 12 SP3 repositories. susemanager-docs_en: - Update text and image files. susemanager-schema: - Adapt for the new gpgcheck flag for the channels. susemanager-sync-data: - Add SUSE Manager Proxy 3.0 channels for SUSE Linux Enterprise Server 12 SP3. (bsc#1053850) - Support SUSE Enterprise Storage 5 and SUSE Linux Enterprise Server 12 SP3 for SAP Applications on ppc64le. (bsc#1028098) - Update channels.xml with OpenStack Cloud Continuous Delivery 6. (bsc#1039458) - Add SUSE Linux Enterprise 12 SP3 related products. (bsc#1037609) virtual-host-gatherer: - Implement kubernetes gatherer module. How to apply this update: 1. Log in as root user to the SUSE Manager server. 2. Stop the Spacewalk service: spacewalk-service stop 3. Apply the patch using either zypper patch or YaST Online Update. 4. Upgrade the database schema: spacewalk-schema-upgrade 5. Start the Spacewalk service: spacewalk-service start Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Manager Server 3.0: zypper in -t patch SUSE-SUSE-Manager-Server-3.0-2017-1520=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Manager Server 3.0 (s390x x86_64): smdba-1.6.0-0.7.3.1 spacewalk-branding-2.5.2.14-16.3.1 susemanager-3.0.23-25.3.1 susemanager-tools-3.0.23-25.3.1 - SUSE Manager Server 3.0 (noarch): salt-netapi-client-0.12.0-16.3.1 spacewalk-backend-2.5.24.13-26.8.1 spacewalk-backend-app-2.5.24.13-26.8.1 spacewalk-backend-applet-2.5.24.13-26.8.1 spacewalk-backend-config-files-2.5.24.13-26.8.1 spacewalk-backend-config-files-common-2.5.24.13-26.8.1 spacewalk-backend-config-files-tool-2.5.24.13-26.8.1 spacewalk-backend-iss-2.5.24.13-26.8.1 spacewalk-backend-iss-export-2.5.24.13-26.8.1 spacewalk-backend-libs-2.5.24.13-26.8.1 spacewalk-backend-package-push-server-2.5.24.13-26.8.1 spacewalk-backend-server-2.5.24.13-26.8.1 spacewalk-backend-sql-2.5.24.13-26.8.1 spacewalk-backend-sql-oracle-2.5.24.13-26.8.1 spacewalk-backend-sql-postgresql-2.5.24.13-26.8.1 spacewalk-backend-tools-2.5.24.13-26.8.1 spacewalk-backend-xml-export-libs-2.5.24.13-26.8.1 spacewalk-backend-xmlrpc-2.5.24.13-26.8.1 spacewalk-base-2.5.7.18-25.6.1 spacewalk-base-minimal-2.5.7.18-25.6.1 spacewalk-base-minimal-config-2.5.7.18-25.6.1 spacewalk-config-2.5.2.8-13.3.1 spacewalk-html-2.5.7.18-25.6.1 spacewalk-java-2.5.59.17-27.6.1 spacewalk-java-config-2.5.59.17-27.6.1 spacewalk-java-lib-2.5.59.17-27.6.1 spacewalk-java-oracle-2.5.59.17-27.6.1 spacewalk-java-postgresql-2.5.59.17-27.6.1 spacewalk-search-2.5.2.3-4.3.1 spacewalk-setup-jabberd-2.5.0.3-2.3.1 spacewalk-taskomatic-2.5.59.17-27.6.1 susemanager-advanced-topics_en-pdf-3-25.3.1 susemanager-best-practices_en-pdf-3-25.3.1 susemanager-docs_en-3-25.3.1 susemanager-getting-started_en-pdf-3-25.3.1 susemanager-jsp_en-3-25.3.1 susemanager-reference_en-pdf-3-25.3.1 susemanager-schema-3.0.21-25.3.1 susemanager-sync-data-3.0.18-28.3.1 virtual-host-gatherer-1.0.14-7.3.1 virtual-host-gatherer-VMware-1.0.14-7.3.1 References: https://www.suse.com/security/cve/CVE-2017-7538.html https://bugzilla.suse.com/1009118 https://bugzilla.suse.com/1017513 https://bugzilla.suse.com/1022286 https://bugzilla.suse.com/1024058 https://bugzilla.suse.com/1026930 https://bugzilla.suse.com/1028098 https://bugzilla.suse.com/1030898 https://bugzilla.suse.com/1032350 https://bugzilla.suse.com/1033999 https://bugzilla.suse.com/1037609 https://bugzilla.suse.com/1039458 https://bugzilla.suse.com/1045152 https://bugzilla.suse.com/1045575 https://bugzilla.suse.com/1046218 https://bugzilla.suse.com/1047155 https://bugzilla.suse.com/1047656 https://bugzilla.suse.com/1048528 https://bugzilla.suse.com/1048762 https://bugzilla.suse.com/1048968 https://bugzilla.suse.com/1049170 https://bugzilla.suse.com/1049471 https://bugzilla.suse.com/1051518 https://bugzilla.suse.com/1053850 https://bugzilla.suse.com/1054225 From sle-security-updates at lists.suse.com Thu Sep 14 04:09:18 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 14 Sep 2017 12:09:18 +0200 (CEST) Subject: SUSE-SU-2017:2454-1: important: Security update for Linux Kernel Live Patch 2 for SLE 12 SP2 Message-ID: <20170914100918.B4D53F7BD@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 2 for SLE 12 SP2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2454-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Live Patching 12 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 4.4.21-84 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Live Patching 12: zypper in -t patch SUSE-SLE-Live-Patching-12-2017-1522=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Live Patching 12 (x86_64): kgraft-patch-4_4_21-84-default-8-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Thu Sep 14 04:10:00 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 14 Sep 2017 12:10:00 +0200 (CEST) Subject: SUSE-SU-2017:2455-1: important: Security update for Linux Kernel Live Patch 7 for SLE 12 SP2 Message-ID: <20170914101000.457E3F7BD@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 7 for SLE 12 SP2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2455-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Live Patching 12 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 4.4.59-92_17 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Live Patching 12: zypper in -t patch SUSE-SLE-Live-Patching-12-2017-1524=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Live Patching 12 (x86_64): kgraft-patch-4_4_59-92_17-default-4-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Thu Sep 14 04:10:45 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 14 Sep 2017 12:10:45 +0200 (CEST) Subject: SUSE-SU-2017:2456-1: important: Security update for Linux Kernel Live Patch 12 for SLE 12 SP2 Message-ID: <20170914101045.92021F433@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 12 for SLE 12 SP2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2456-1 Rating: important References: #1052368 Cross-References: CVE-2017-1000112 CVE-2017-100012 Affected Products: SUSE Linux Enterprise Live Patching 12 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for the Linux Kernel 4.4.74-92_35 fixes one issue. The following security bugs were fixed: Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Live Patching 12: zypper in -t patch SUSE-SLE-Live-Patching-12-2017-1525=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Live Patching 12 (x86_64): kgraft-patch-4_4_74-92_35-default-2-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://www.suse.com/security/cve/CVE-2017-100012.html https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Thu Sep 14 04:11:16 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 14 Sep 2017 12:11:16 +0200 (CEST) Subject: SUSE-SU-2017:2457-1: important: Security update for Linux Kernel Live Patch 5 for SLE 12 SP2 Message-ID: <20170914101116.6106FF433@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 5 for SLE 12 SP2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2457-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Live Patching 12 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 4.4.49-92_11 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Live Patching 12: zypper in -t patch SUSE-SLE-Live-Patching-12-2017-1523=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Live Patching 12 (x86_64): kgraft-patch-4_4_49-92_11-default-6-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Thu Sep 14 04:12:05 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 14 Sep 2017 12:12:05 +0200 (CEST) Subject: SUSE-SU-2017:2458-1: important: Security update for Linux Kernel Live Patch 1 for SLE 12 SP2 Message-ID: <20170914101205.93F80F3F9@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 1 for SLE 12 SP2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2458-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Live Patching 12 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 4.4.21-81 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Live Patching 12: zypper in -t patch SUSE-SLE-Live-Patching-12-2017-1521=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Live Patching 12 (x86_64): kgraft-patch-4_4_21-81-default-9-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Thu Sep 14 07:07:23 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 14 Sep 2017 15:07:23 +0200 (CEST) Subject: SUSE-SU-2017:2459-1: important: Security update for the Linux Kernel Message-ID: <20170914130723.EA037F7BD@maintenance.suse.de> SUSE Security Update: Security update for the Linux Kernel ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2459-1 Rating: important References: #1057389 Cross-References: CVE-2017-1000251 Affected Products: SUSE OpenStack Cloud 6 SUSE Linux Enterprise Server for SAP 12-SP1 SUSE Linux Enterprise Server 12-SP1-LTSS SUSE Linux Enterprise Module for Public Cloud 12 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: The SUSE Linux Enterprise 12 SP1 kernel was updated to receive the following security fixes: - CVE-2017-1000251: The native Bluetooth stack in the Linux Kernel was vulnerable to a stack overflow while processing L2CAP configuration responses, resulting in a potential remote denial-of-service vulnerability but no remote code execution due to use of CONFIG_CC_STACKPROTECTOR. [bnc#1057389] Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud 6: zypper in -t patch SUSE-OpenStack-Cloud-6-2017-1526=1 - SUSE Linux Enterprise Server for SAP 12-SP1: zypper in -t patch SUSE-SLE-SAP-12-SP1-2017-1526=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1526=1 - SUSE Linux Enterprise Module for Public Cloud 12: zypper in -t patch SUSE-SLE-Module-Public-Cloud-12-2017-1526=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE OpenStack Cloud 6 (x86_64): kernel-default-3.12.74-60.64.60.1 kernel-default-base-3.12.74-60.64.60.1 kernel-default-base-debuginfo-3.12.74-60.64.60.1 kernel-default-debuginfo-3.12.74-60.64.60.1 kernel-default-debugsource-3.12.74-60.64.60.1 kernel-default-devel-3.12.74-60.64.60.1 kernel-syms-3.12.74-60.64.60.1 kernel-xen-3.12.74-60.64.60.1 kernel-xen-base-3.12.74-60.64.60.1 kernel-xen-base-debuginfo-3.12.74-60.64.60.1 kernel-xen-debuginfo-3.12.74-60.64.60.1 kernel-xen-debugsource-3.12.74-60.64.60.1 kernel-xen-devel-3.12.74-60.64.60.1 kgraft-patch-3_12_74-60_64_60-default-1-2.1 kgraft-patch-3_12_74-60_64_60-xen-1-2.1 - SUSE OpenStack Cloud 6 (noarch): kernel-devel-3.12.74-60.64.60.1 kernel-macros-3.12.74-60.64.60.1 kernel-source-3.12.74-60.64.60.1 - SUSE Linux Enterprise Server for SAP 12-SP1 (ppc64le x86_64): kernel-default-3.12.74-60.64.60.1 kernel-default-base-3.12.74-60.64.60.1 kernel-default-base-debuginfo-3.12.74-60.64.60.1 kernel-default-debuginfo-3.12.74-60.64.60.1 kernel-default-debugsource-3.12.74-60.64.60.1 kernel-default-devel-3.12.74-60.64.60.1 kernel-syms-3.12.74-60.64.60.1 - SUSE Linux Enterprise Server for SAP 12-SP1 (noarch): kernel-devel-3.12.74-60.64.60.1 kernel-macros-3.12.74-60.64.60.1 kernel-source-3.12.74-60.64.60.1 - SUSE Linux Enterprise Server for SAP 12-SP1 (x86_64): kernel-xen-3.12.74-60.64.60.1 kernel-xen-base-3.12.74-60.64.60.1 kernel-xen-base-debuginfo-3.12.74-60.64.60.1 kernel-xen-debuginfo-3.12.74-60.64.60.1 kernel-xen-debugsource-3.12.74-60.64.60.1 kernel-xen-devel-3.12.74-60.64.60.1 kgraft-patch-3_12_74-60_64_60-default-1-2.1 kgraft-patch-3_12_74-60_64_60-xen-1-2.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (ppc64le s390x x86_64): kernel-default-3.12.74-60.64.60.1 kernel-default-base-3.12.74-60.64.60.1 kernel-default-base-debuginfo-3.12.74-60.64.60.1 kernel-default-debuginfo-3.12.74-60.64.60.1 kernel-default-debugsource-3.12.74-60.64.60.1 kernel-default-devel-3.12.74-60.64.60.1 kernel-syms-3.12.74-60.64.60.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (noarch): kernel-devel-3.12.74-60.64.60.1 kernel-macros-3.12.74-60.64.60.1 kernel-source-3.12.74-60.64.60.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (x86_64): kernel-xen-3.12.74-60.64.60.1 kernel-xen-base-3.12.74-60.64.60.1 kernel-xen-base-debuginfo-3.12.74-60.64.60.1 kernel-xen-debuginfo-3.12.74-60.64.60.1 kernel-xen-debugsource-3.12.74-60.64.60.1 kernel-xen-devel-3.12.74-60.64.60.1 kgraft-patch-3_12_74-60_64_60-default-1-2.1 kgraft-patch-3_12_74-60_64_60-xen-1-2.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (s390x): kernel-default-man-3.12.74-60.64.60.1 - SUSE Linux Enterprise Module for Public Cloud 12 (x86_64): kernel-ec2-3.12.74-60.64.60.1 kernel-ec2-debuginfo-3.12.74-60.64.60.1 kernel-ec2-debugsource-3.12.74-60.64.60.1 kernel-ec2-devel-3.12.74-60.64.60.1 kernel-ec2-extra-3.12.74-60.64.60.1 kernel-ec2-extra-debuginfo-3.12.74-60.64.60.1 References: https://www.suse.com/security/cve/CVE-2017-1000251.html https://bugzilla.suse.com/1057389 From sle-security-updates at lists.suse.com Thu Sep 14 13:07:11 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 14 Sep 2017 21:07:11 +0200 (CEST) Subject: SUSE-SU-2017:2464-1: important: Security update for Linux Kernel Live Patch 3 for SLE 12 SP2 Message-ID: <20170914190711.C0E92F7BD@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 3 for SLE 12 SP2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2464-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Live Patching 12 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 4.4.21-90 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Live Patching 12: zypper in -t patch SUSE-SLE-Live-Patching-12-2017-1534=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Live Patching 12 (x86_64): kgraft-patch-4_4_21-90-default-8-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Thu Sep 14 13:07:53 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 14 Sep 2017 21:07:53 +0200 (CEST) Subject: SUSE-SU-2017:2465-1: important: Security update for Linux Kernel Live Patch 8 for SLE 12 SP2 Message-ID: <20170914190753.88E47F402@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 8 for SLE 12 SP2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2465-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Live Patching 12 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 4.4.59-92_20 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Live Patching 12: zypper in -t patch SUSE-SLE-Live-Patching-12-2017-1537=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Live Patching 12 (x86_64): kgraft-patch-4_4_59-92_20-default-4-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Thu Sep 14 13:08:28 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 14 Sep 2017 21:08:28 +0200 (CEST) Subject: SUSE-SU-2017:2466-1: important: Security update for xen Message-ID: <20170914190828.D1ABCF7BD@maintenance.suse.de> SUSE Security Update: Security update for xen ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2466-1 Rating: important References: #1056278 #1056280 #1056281 #1056282 Cross-References: CVE-2017-14316 CVE-2017-14317 CVE-2017-14318 CVE-2017-14319 Affected Products: SUSE OpenStack Cloud 6 SUSE Linux Enterprise Server for SAP 12-SP1 SUSE Linux Enterprise Server 12-SP1-LTSS ______________________________________________________________________________ An update that fixes four vulnerabilities is now available. Description: This update for xen fixes several issues. These security issues were fixed: - CVE-2017-14316: Missing bound check in function `alloc_heap_pages` for an internal array allowed attackers using crafted hypercalls to execute arbitrary code within Xen (XSA-231, bsc#1056278) - CVE-2017-14318: The function __gnttab_cache_flush missed a check for grant tables, allowing a malicious guest to crash the host or for x86 PV guests to potentially escalate privileges (XSA-232, bsc#1056280) - CVE-2017-14317: A race in cxenstored may have cause a double-free allowind for DoS of the xenstored daemon (XSA-233, bsc#1056281). - CVE-2017-14319: An error while handling grant mappings allowed malicious or buggy x86 PV guest to escalate its privileges or crash the hypervisor (XSA-234, bsc#1056282). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud 6: zypper in -t patch SUSE-OpenStack-Cloud-6-2017-1533=1 - SUSE Linux Enterprise Server for SAP 12-SP1: zypper in -t patch SUSE-SLE-SAP-12-SP1-2017-1533=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1533=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE OpenStack Cloud 6 (x86_64): xen-4.5.5_16-22.28.1 xen-debugsource-4.5.5_16-22.28.1 xen-doc-html-4.5.5_16-22.28.1 xen-kmp-default-4.5.5_16_k3.12.74_60.64.57-22.28.1 xen-kmp-default-debuginfo-4.5.5_16_k3.12.74_60.64.57-22.28.1 xen-libs-32bit-4.5.5_16-22.28.1 xen-libs-4.5.5_16-22.28.1 xen-libs-debuginfo-32bit-4.5.5_16-22.28.1 xen-libs-debuginfo-4.5.5_16-22.28.1 xen-tools-4.5.5_16-22.28.1 xen-tools-debuginfo-4.5.5_16-22.28.1 xen-tools-domU-4.5.5_16-22.28.1 xen-tools-domU-debuginfo-4.5.5_16-22.28.1 - SUSE Linux Enterprise Server for SAP 12-SP1 (x86_64): xen-4.5.5_16-22.28.1 xen-debugsource-4.5.5_16-22.28.1 xen-doc-html-4.5.5_16-22.28.1 xen-kmp-default-4.5.5_16_k3.12.74_60.64.57-22.28.1 xen-kmp-default-debuginfo-4.5.5_16_k3.12.74_60.64.57-22.28.1 xen-libs-32bit-4.5.5_16-22.28.1 xen-libs-4.5.5_16-22.28.1 xen-libs-debuginfo-32bit-4.5.5_16-22.28.1 xen-libs-debuginfo-4.5.5_16-22.28.1 xen-tools-4.5.5_16-22.28.1 xen-tools-debuginfo-4.5.5_16-22.28.1 xen-tools-domU-4.5.5_16-22.28.1 xen-tools-domU-debuginfo-4.5.5_16-22.28.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (x86_64): xen-4.5.5_16-22.28.1 xen-debugsource-4.5.5_16-22.28.1 xen-doc-html-4.5.5_16-22.28.1 xen-kmp-default-4.5.5_16_k3.12.74_60.64.57-22.28.1 xen-kmp-default-debuginfo-4.5.5_16_k3.12.74_60.64.57-22.28.1 xen-libs-32bit-4.5.5_16-22.28.1 xen-libs-4.5.5_16-22.28.1 xen-libs-debuginfo-32bit-4.5.5_16-22.28.1 xen-libs-debuginfo-4.5.5_16-22.28.1 xen-tools-4.5.5_16-22.28.1 xen-tools-debuginfo-4.5.5_16-22.28.1 xen-tools-domU-4.5.5_16-22.28.1 xen-tools-domU-debuginfo-4.5.5_16-22.28.1 References: https://www.suse.com/security/cve/CVE-2017-14316.html https://www.suse.com/security/cve/CVE-2017-14317.html https://www.suse.com/security/cve/CVE-2017-14318.html https://www.suse.com/security/cve/CVE-2017-14319.html https://bugzilla.suse.com/1056278 https://bugzilla.suse.com/1056280 https://bugzilla.suse.com/1056281 https://bugzilla.suse.com/1056282 From sle-security-updates at lists.suse.com Thu Sep 14 13:09:21 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 14 Sep 2017 21:09:21 +0200 (CEST) Subject: SUSE-SU-2017:2467-1: important: Security update for Linux Kernel Live Patch 6 for SLE 12 SP2 Message-ID: <20170914190921.DCE67F7BD@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 6 for SLE 12 SP2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2467-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Live Patching 12 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 4.4.49-92_14 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Live Patching 12: zypper in -t patch SUSE-SLE-Live-Patching-12-2017-1536=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Live Patching 12 (x86_64): kgraft-patch-4_4_49-92_14-default-5-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Thu Sep 14 13:09:59 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 14 Sep 2017 21:09:59 +0200 (CEST) Subject: SUSE-SU-2017:2468-1: moderate: Security update for php7 Message-ID: <20170914190959.C254DF3F9@maintenance.suse.de> SUSE Security Update: Security update for php7 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2468-1 Rating: moderate References: #1054408 #1054430 #1054432 #1057104 #1057845 Cross-References: CVE-2017-12932 CVE-2017-12933 CVE-2017-12934 Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Module for Web Scripting 12 ______________________________________________________________________________ An update that solves three vulnerabilities and has two fixes is now available. Description: This update for php7 fixes several issues. These security issues were fixed: - CVE-2017-12932: Prevent heap use after free while unserializing untrusted data, related to improper use of the hash API for key deletion in a situation with an invalid array size. Exploitation of this issue could have had an unspecified impact on the integrity of PHP (bsc#1054432). - CVE-2017-12934: Prevent heap use after free while unserializing untrusted data, related to the zval_get_type function in Zend/zend_types.h. Exploitation of this issue could have had an unspecified impact on the integrity of PHP (bsc#1054408). - CVE-2017-12933: The finish_nested_data function in ext/standard/var_unserializer.re was prone to a buffer over-read while unserializing untrusted data. Exploitation of this issue could have had an unspecified impact on the integrity of PHP (bsc#1054430) These non-security issues were fixed: - bsc#1057104: php7-devel now requires php7-pear - bsc#1057845: Fixed namespace encapsulation of imported classes/functions/constants Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2017-1532=1 - SUSE Linux Enterprise Software Development Kit 12-SP2: zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1532=1 - SUSE Linux Enterprise Module for Web Scripting 12: zypper in -t patch SUSE-SLE-Module-Web-Scripting-12-2017-1532=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 ppc64le s390x x86_64): php7-debuginfo-7.0.7-50.18.1 php7-debugsource-7.0.7-50.18.1 php7-devel-7.0.7-50.18.1 - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 ppc64le s390x x86_64): php7-debuginfo-7.0.7-50.18.1 php7-debugsource-7.0.7-50.18.1 php7-devel-7.0.7-50.18.1 - SUSE Linux Enterprise Module for Web Scripting 12 (aarch64 ppc64le s390x x86_64): apache2-mod_php7-7.0.7-50.18.1 apache2-mod_php7-debuginfo-7.0.7-50.18.1 php7-7.0.7-50.18.1 php7-bcmath-7.0.7-50.18.1 php7-bcmath-debuginfo-7.0.7-50.18.1 php7-bz2-7.0.7-50.18.1 php7-bz2-debuginfo-7.0.7-50.18.1 php7-calendar-7.0.7-50.18.1 php7-calendar-debuginfo-7.0.7-50.18.1 php7-ctype-7.0.7-50.18.1 php7-ctype-debuginfo-7.0.7-50.18.1 php7-curl-7.0.7-50.18.1 php7-curl-debuginfo-7.0.7-50.18.1 php7-dba-7.0.7-50.18.1 php7-dba-debuginfo-7.0.7-50.18.1 php7-debuginfo-7.0.7-50.18.1 php7-debugsource-7.0.7-50.18.1 php7-dom-7.0.7-50.18.1 php7-dom-debuginfo-7.0.7-50.18.1 php7-enchant-7.0.7-50.18.1 php7-enchant-debuginfo-7.0.7-50.18.1 php7-exif-7.0.7-50.18.1 php7-exif-debuginfo-7.0.7-50.18.1 php7-fastcgi-7.0.7-50.18.1 php7-fastcgi-debuginfo-7.0.7-50.18.1 php7-fileinfo-7.0.7-50.18.1 php7-fileinfo-debuginfo-7.0.7-50.18.1 php7-fpm-7.0.7-50.18.1 php7-fpm-debuginfo-7.0.7-50.18.1 php7-ftp-7.0.7-50.18.1 php7-ftp-debuginfo-7.0.7-50.18.1 php7-gd-7.0.7-50.18.1 php7-gd-debuginfo-7.0.7-50.18.1 php7-gettext-7.0.7-50.18.1 php7-gettext-debuginfo-7.0.7-50.18.1 php7-gmp-7.0.7-50.18.1 php7-gmp-debuginfo-7.0.7-50.18.1 php7-iconv-7.0.7-50.18.1 php7-iconv-debuginfo-7.0.7-50.18.1 php7-imap-7.0.7-50.18.1 php7-imap-debuginfo-7.0.7-50.18.1 php7-intl-7.0.7-50.18.1 php7-intl-debuginfo-7.0.7-50.18.1 php7-json-7.0.7-50.18.1 php7-json-debuginfo-7.0.7-50.18.1 php7-ldap-7.0.7-50.18.1 php7-ldap-debuginfo-7.0.7-50.18.1 php7-mbstring-7.0.7-50.18.1 php7-mbstring-debuginfo-7.0.7-50.18.1 php7-mcrypt-7.0.7-50.18.1 php7-mcrypt-debuginfo-7.0.7-50.18.1 php7-mysql-7.0.7-50.18.1 php7-mysql-debuginfo-7.0.7-50.18.1 php7-odbc-7.0.7-50.18.1 php7-odbc-debuginfo-7.0.7-50.18.1 php7-opcache-7.0.7-50.18.1 php7-opcache-debuginfo-7.0.7-50.18.1 php7-openssl-7.0.7-50.18.1 php7-openssl-debuginfo-7.0.7-50.18.1 php7-pcntl-7.0.7-50.18.1 php7-pcntl-debuginfo-7.0.7-50.18.1 php7-pdo-7.0.7-50.18.1 php7-pdo-debuginfo-7.0.7-50.18.1 php7-pgsql-7.0.7-50.18.1 php7-pgsql-debuginfo-7.0.7-50.18.1 php7-phar-7.0.7-50.18.1 php7-phar-debuginfo-7.0.7-50.18.1 php7-posix-7.0.7-50.18.1 php7-posix-debuginfo-7.0.7-50.18.1 php7-pspell-7.0.7-50.18.1 php7-pspell-debuginfo-7.0.7-50.18.1 php7-shmop-7.0.7-50.18.1 php7-shmop-debuginfo-7.0.7-50.18.1 php7-snmp-7.0.7-50.18.1 php7-snmp-debuginfo-7.0.7-50.18.1 php7-soap-7.0.7-50.18.1 php7-soap-debuginfo-7.0.7-50.18.1 php7-sockets-7.0.7-50.18.1 php7-sockets-debuginfo-7.0.7-50.18.1 php7-sqlite-7.0.7-50.18.1 php7-sqlite-debuginfo-7.0.7-50.18.1 php7-sysvmsg-7.0.7-50.18.1 php7-sysvmsg-debuginfo-7.0.7-50.18.1 php7-sysvsem-7.0.7-50.18.1 php7-sysvsem-debuginfo-7.0.7-50.18.1 php7-sysvshm-7.0.7-50.18.1 php7-sysvshm-debuginfo-7.0.7-50.18.1 php7-tokenizer-7.0.7-50.18.1 php7-tokenizer-debuginfo-7.0.7-50.18.1 php7-wddx-7.0.7-50.18.1 php7-wddx-debuginfo-7.0.7-50.18.1 php7-xmlreader-7.0.7-50.18.1 php7-xmlreader-debuginfo-7.0.7-50.18.1 php7-xmlrpc-7.0.7-50.18.1 php7-xmlrpc-debuginfo-7.0.7-50.18.1 php7-xmlwriter-7.0.7-50.18.1 php7-xmlwriter-debuginfo-7.0.7-50.18.1 php7-xsl-7.0.7-50.18.1 php7-xsl-debuginfo-7.0.7-50.18.1 php7-zip-7.0.7-50.18.1 php7-zip-debuginfo-7.0.7-50.18.1 php7-zlib-7.0.7-50.18.1 php7-zlib-debuginfo-7.0.7-50.18.1 - SUSE Linux Enterprise Module for Web Scripting 12 (noarch): php7-pear-7.0.7-50.18.1 php7-pear-Archive_Tar-7.0.7-50.18.1 References: https://www.suse.com/security/cve/CVE-2017-12932.html https://www.suse.com/security/cve/CVE-2017-12933.html https://www.suse.com/security/cve/CVE-2017-12934.html https://bugzilla.suse.com/1054408 https://bugzilla.suse.com/1054430 https://bugzilla.suse.com/1054432 https://bugzilla.suse.com/1057104 https://bugzilla.suse.com/1057845 From sle-security-updates at lists.suse.com Thu Sep 14 13:11:13 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 14 Sep 2017 21:11:13 +0200 (CEST) Subject: SUSE-SU-2017:2469-1: important: Security update for Linux Kernel Live Patch 9 for SLE 12 SP2 Message-ID: <20170914191113.AC94AF3F9@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 9 for SLE 12 SP2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2469-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Live Patching 12 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 4.4.59-92_24 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Live Patching 12: zypper in -t patch SUSE-SLE-Live-Patching-12-2017-1538=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Live Patching 12 (x86_64): kgraft-patch-4_4_59-92_24-default-3-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Thu Sep 14 13:11:50 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 14 Sep 2017 21:11:50 +0200 (CEST) Subject: SUSE-SU-2017:2470-1: important: Security update for CaaS Platform 1.0 images Message-ID: <20170914191150.D7CDDF402@maintenance.suse.de> SUSE Security Update: Security update for CaaS Platform 1.0 images ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2470-1 Rating: important References: #1004995 #1009745 #1014471 #1017420 #1019637 #1026825 #1027079 #1027688 #1027908 #1028281 #1028723 #1029523 #1031756 #1032706 #1033236 #1035062 #1036659 #1038132 #1038444 #1038984 #1042392 #1043218 #1043333 #1044095 #1044107 #1044175 #1044840 #1045384 #1045735 #1045987 #1046268 #1046417 #1046659 #1046853 #1046858 #1047008 #1047236 #1047240 #1047310 #1047379 #1047785 #1047964 #1047965 #1048315 #1048483 #1048605 #1048679 #1048715 #1049344 #1050396 #1050484 #1051626 #1051643 #1051644 #1052030 #1052759 #1053409 #874665 #902364 #938657 #944903 #954661 #960820 #963041 Cross-References: CVE-2013-7459 CVE-2016-9063 CVE-2017-1000100 CVE-2017-1000101 CVE-2017-10684 CVE-2017-10685 CVE-2017-11112 CVE-2017-11113 CVE-2017-3308 CVE-2017-3309 CVE-2017-3453 CVE-2017-3456 CVE-2017-3464 CVE-2017-7435 CVE-2017-7436 CVE-2017-8872 CVE-2017-9233 CVE-2017-9269 Affected Products: SUSE Container as a Service Platform ALL ______________________________________________________________________________ An update that solves 18 vulnerabilities and has 46 fixes is now available. Description: The Docker images provided with SUSE CaaS Platform 1.0 have been updated to include the following updates: libzypp: - CVE-2017-7435, CVE-2017-7436, CVE-2017-9269: Fix GPG check workflows, mainly for unsigned repositories and packages. (bsc#1045735, bsc#1038984) - Fix gpg-pubkey release (creation time) computation. (bsc#1036659) - Update lsof blacklist. (bsc#1046417) - Re-probe on refresh if the repository type changes. (bsc#1048315) - Propagate proper error code to DownloadProgressReport. (bsc#1047785) - Allow to trigger an appdata refresh unconditionally. (bsc#1009745) - Support custom repo variables defined in /etc/zypp/vars.d. - Adapt loop mounting of ISO images. (bsc#1038132, bsc#1033236) - Fix potential crash if repository has no baseurl. (bsc#1043218) zypper: - CVE-2017-7436: Adapt download callback to report and handle unsigned packages. (bsc#1038984) - Report missing/optional files as 'not found' rather than 'error'. (bsc#1047785) - Document support for custom repository variables defined in /etc/zypp/vars.d. - Emphasize that it depends on how fast PackageKit will respond to a 'quit' request sent if PK blocks package management. libgcrypt: - Fix infinite loop in gnome-keyring-daemon caused by attempt to read from random device left open by libgcrypt. (bsc#1043333) - Avoid seeding the DRBG during FIPS power-up selftests. (bsc#1046659) - Fix a bug in gcry_drbg_healthcheck_sanity() which caused skipping some of the tests. (bsc#1046659) - dlsym returns PLT address on s390x, dlopen libgcrypt20.so before calling dlsym. (bsc#1047008) lua51: - Add Lua(API) and Lua(devel) symbols to fix building of lua51-luasocket. (bsc#1051626) cyrus-sasl: - Fix unknown authentication mechanism: kerberos5 (bsc#1026825) - Really use SASLAUTHD_PARAMS variable (bsc#938657) - Make sure /usr/sbin/rcsaslauthd exists - Add /usr/sbin/rcsaslauthd symbolic link to /usr/sbin/service (bsc#1014471) - Silence "GSSAPI client step 1" debug log message (bsc#1044840) libxml2: - CVE-2017-8872: Out-of-bounds read in htmlParseTryOrFinish. (bsc#1038444) curl: - CVE-2017-1000100: TFP sends more than buffer size and it could lead to a denial of service. (bsc#1051644) - CVE-2017-1000101: URL globbing out of bounds read could lead to a denial of service. (bsc#1051643) ncurses: - CVE-2017-11112: Illegal address access in append_acs. (bsc#1047964) - CVE-2017-11113: Dereferencing NULL pointer in _nc_parse_entry. (bsc#1047965) - CVE-2017-10684, CVE-2017-10685: Add modified upstream fix from ncurses 6.0 to avoid broken termcap format (bsc#1046853, bsc#1046858, bsc#1049344) sed: - Don't terminate with a segmentation fault if close of last file descriptor fails. (bsc#954661) openssl: - Remove DES-CBC3-SHA based ciphers from DEFAULT_SUSE to address SWEET32 problem. (bsc#1027908) - Use getrandom syscall instead of reading from /dev/urandom to get at least 128 bits of entropy to comply with FIPS 140.2 IG 7.14. (bsc#1027079 bsc#1044175) - Fix x86 extended feature detection (bsc#1029523) - Allow runtime switching of s390x capabilities via the "OPENSSL_s390xcap" environmental variable. (bsc#1028723) - Add back certificate initialization set_cert_key_stuff() which was removed in a previous update. (bsc#1028281) - Fix a bug in XTS key handling. (bsc#1019637) - Don't run FIPS power-up self-tests when the checksum files aren't installed. (bsc#1042392) procps: - Don't set buffering on invalid file descriptor. (bsc#1053409) expat: - CVE-2016-9063: Possible integer overflow to fix inside XML_Parse leading to unexpected behaviour. (bsc#1047240) - CVE-2017-9233: External Entity Vulnerability could lead to denial of service. (bsc#1047236) systemd: - Revert fix for bsc#1004995 which could have caused boot failure on LVM (bsc#1048605) - compat-rules: drop the bogus 'import everything' rule (bsc#1046268) - core: use an AF_UNIX/SOCK_DGRAM socket for cgroup agent notification (bsc#1045384 bsc#1047379) - udev/path_id: introduce support for NVMe devices (bsc#1045987) - compat-rules: Don't rely on ID_SERIAL when generating 'by-id' links for NVMe devices. (bsc#1048679) - fstab-generator: Handle NFS "bg" mounts correctly. (bsc#874665, fate#323464) - timesyncd: Don't use compiled-in list if FallbackNTP has been configured explicitly. insserv-compat: - Add /etc/init.d hierarchy from former "filesystem" package. (bsc#1035062) - Fix directory argument parsing. (bsc#944903) - Add perl(Getopt::Long) to list of requirements. mariadb: - Update libmysqlclient18 from version 10.0.30 to 10.0.31. python-pycrypto: - CVE-2013-7459: Fixed a potential heap buffer overflow in ALGnew (bsc#1017420). velum: - Fix loopback IP for proxy exception during initial configuration. (bsc#1052759) - Set secure flag in cookie. (bsc#1050484) - Set VERSION to 1.0.0. (bsc#1050396) - Allow kubeconfig download when master is ready. (bsc#1048483) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Container as a Service Platform ALL: zypper in -t patch SUSE-CAASP-ALL-2017-1531=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Container as a Service Platform ALL (x86_64): container-feeder-0.0.0+20170901.git_r55_17ecbd3-2.3.3 sles12-mariadb-docker-image-1.1.0-2.3.10 sles12-pause-docker-image-1.1.0-2.3.11 sles12-pv-recycler-node-docker-image-1.1.0-2.3.10 sles12-salt-api-docker-image-1.1.0-2.3.9 sles12-salt-master-docker-image-1.1.0-4.3.10 sles12-salt-minion-docker-image-1.1.0-2.3.8 sles12-velum-docker-image-1.1.0-4.3.9 - SUSE Container as a Service Platform ALL (noarch): caasp-container-manifests-0.0.0+git_r155_93e40ab-2.3.3 References: https://www.suse.com/security/cve/CVE-2013-7459.html https://www.suse.com/security/cve/CVE-2016-9063.html https://www.suse.com/security/cve/CVE-2017-1000100.html https://www.suse.com/security/cve/CVE-2017-1000101.html https://www.suse.com/security/cve/CVE-2017-10684.html https://www.suse.com/security/cve/CVE-2017-10685.html https://www.suse.com/security/cve/CVE-2017-11112.html https://www.suse.com/security/cve/CVE-2017-11113.html https://www.suse.com/security/cve/CVE-2017-3308.html https://www.suse.com/security/cve/CVE-2017-3309.html https://www.suse.com/security/cve/CVE-2017-3453.html https://www.suse.com/security/cve/CVE-2017-3456.html https://www.suse.com/security/cve/CVE-2017-3464.html https://www.suse.com/security/cve/CVE-2017-7435.html https://www.suse.com/security/cve/CVE-2017-7436.html https://www.suse.com/security/cve/CVE-2017-8872.html https://www.suse.com/security/cve/CVE-2017-9233.html https://www.suse.com/security/cve/CVE-2017-9269.html https://bugzilla.suse.com/1004995 https://bugzilla.suse.com/1009745 https://bugzilla.suse.com/1014471 https://bugzilla.suse.com/1017420 https://bugzilla.suse.com/1019637 https://bugzilla.suse.com/1026825 https://bugzilla.suse.com/1027079 https://bugzilla.suse.com/1027688 https://bugzilla.suse.com/1027908 https://bugzilla.suse.com/1028281 https://bugzilla.suse.com/1028723 https://bugzilla.suse.com/1029523 https://bugzilla.suse.com/1031756 https://bugzilla.suse.com/1032706 https://bugzilla.suse.com/1033236 https://bugzilla.suse.com/1035062 https://bugzilla.suse.com/1036659 https://bugzilla.suse.com/1038132 https://bugzilla.suse.com/1038444 https://bugzilla.suse.com/1038984 https://bugzilla.suse.com/1042392 https://bugzilla.suse.com/1043218 https://bugzilla.suse.com/1043333 https://bugzilla.suse.com/1044095 https://bugzilla.suse.com/1044107 https://bugzilla.suse.com/1044175 https://bugzilla.suse.com/1044840 https://bugzilla.suse.com/1045384 https://bugzilla.suse.com/1045735 https://bugzilla.suse.com/1045987 https://bugzilla.suse.com/1046268 https://bugzilla.suse.com/1046417 https://bugzilla.suse.com/1046659 https://bugzilla.suse.com/1046853 https://bugzilla.suse.com/1046858 https://bugzilla.suse.com/1047008 https://bugzilla.suse.com/1047236 https://bugzilla.suse.com/1047240 https://bugzilla.suse.com/1047310 https://bugzilla.suse.com/1047379 https://bugzilla.suse.com/1047785 https://bugzilla.suse.com/1047964 https://bugzilla.suse.com/1047965 https://bugzilla.suse.com/1048315 https://bugzilla.suse.com/1048483 https://bugzilla.suse.com/1048605 https://bugzilla.suse.com/1048679 https://bugzilla.suse.com/1048715 https://bugzilla.suse.com/1049344 https://bugzilla.suse.com/1050396 https://bugzilla.suse.com/1050484 https://bugzilla.suse.com/1051626 https://bugzilla.suse.com/1051643 https://bugzilla.suse.com/1051644 https://bugzilla.suse.com/1052030 https://bugzilla.suse.com/1052759 https://bugzilla.suse.com/1053409 https://bugzilla.suse.com/874665 https://bugzilla.suse.com/902364 https://bugzilla.suse.com/938657 https://bugzilla.suse.com/944903 https://bugzilla.suse.com/954661 https://bugzilla.suse.com/960820 https://bugzilla.suse.com/963041 From sle-security-updates at lists.suse.com Thu Sep 14 13:25:44 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 14 Sep 2017 21:25:44 +0200 (CEST) Subject: SUSE-SU-2017:2471-1: important: Security update for Linux Kernel Live Patch 4 for SLE 12 SP2 Message-ID: <20170914192544.41796F402@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 4 for SLE 12 SP2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2471-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Live Patching 12 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 4.4.38-93 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Live Patching 12: zypper in -t patch SUSE-SLE-Live-Patching-12-2017-1535=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Live Patching 12 (x86_64): kgraft-patch-4_4_38-93-default-8-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Thu Sep 14 13:26:22 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 14 Sep 2017 21:26:22 +0200 (CEST) Subject: SUSE-SU-2017:2472-1: important: Security update for Linux Kernel Live Patch 10 for SLE 12 SP2 Message-ID: <20170914192622.80CFBF3F9@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 10 for SLE 12 SP2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2472-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Live Patching 12 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 4.4.74-92_29 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Live Patching 12: zypper in -t patch SUSE-SLE-Live-Patching-12-2017-1539=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Live Patching 12 (x86_64): kgraft-patch-4_4_74-92_29-default-3-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Thu Sep 14 13:27:06 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 14 Sep 2017 21:27:06 +0200 (CEST) Subject: SUSE-SU-2017:2473-1: important: Security update for Linux Kernel Live Patch 11 for SLE 12 SP2 Message-ID: <20170914192706.0BB7CF3F9@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 11 for SLE 12 SP2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2473-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Live Patching 12 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 4.4.74-92_32 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Live Patching 12: zypper in -t patch SUSE-SLE-Live-Patching-12-2017-1540=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Live Patching 12 (x86_64): kgraft-patch-4_4_74-92_32-default-2-2.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Thu Sep 14 13:27:45 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 14 Sep 2017 21:27:45 +0200 (CEST) Subject: SUSE-SU-2017:2474-1: important: Security update for Linux Kernel Live Patch 0 for SLE 12 SP2 Message-ID: <20170914192745.901DBF402@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 0 for SLE 12 SP2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2474-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Live Patching 12 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 4.4.21-69 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Live Patching 12: zypper in -t patch SUSE-SLE-Live-Patching-12-2017-1541=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Live Patching 12 (x86_64): kgraft-patch-4_4_21-69-default-9-18.10.1 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Thu Sep 14 16:09:08 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Fri, 15 Sep 2017 00:09:08 +0200 (CEST) Subject: SUSE-SU-2017:2475-1: important: Security update for Linux Kernel Live Patch 25 for SLE 12 Message-ID: <20170914220908.7609CFD93@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 25 for SLE 12 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2475-1 Rating: important References: #1042892 #1046191 #1052311 #1052368 Cross-References: CVE-2017-1000112 CVE-2017-7645 CVE-2017-9242 Affected Products: SUSE Linux Enterprise Server 12-LTSS ______________________________________________________________________________ An update that solves three vulnerabilities and has one errata is now available. Description: This update for the Linux Kernel 3.12.61-52_86 fixes several issues. The following security bugs were fixed: - CVE-2017-9242: The __ip6_append_data function in net/ipv6/ip6_output.c in the Linux kernel was too late in checking whether an overwrite of an skb data structure may occur, which allowed local users to cause a denial of service (system crash) via crafted system calls (bsc#1042892). - CVE-2017-7645: The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel allowed remote attackers to cause a denial of service (system crash) via a long RPC reply (bsc#1046191). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 12-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-2017-1542=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server 12-LTSS (x86_64): kgraft-patch-3_12_61-52_86-default-2-2.2 kgraft-patch-3_12_61-52_86-xen-2-2.2 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://www.suse.com/security/cve/CVE-2017-7645.html https://www.suse.com/security/cve/CVE-2017-9242.html https://bugzilla.suse.com/1042892 https://bugzilla.suse.com/1046191 https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Thu Sep 14 16:10:09 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Fri, 15 Sep 2017 00:10:09 +0200 (CEST) Subject: SUSE-SU-2017:2476-1: important: Security update for Linux Kernel Live Patch 26 for SLE 12 Message-ID: <20170914221009.C314CFD91@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 26 for SLE 12 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2476-1 Rating: important References: #1042892 #1046191 #1052311 #1052368 Cross-References: CVE-2017-1000112 CVE-2017-7645 CVE-2017-9242 Affected Products: SUSE Linux Enterprise Server 12-LTSS ______________________________________________________________________________ An update that solves three vulnerabilities and has one errata is now available. Description: This update for the Linux Kernel 3.12.61-52_89 fixes several issues. The following security bugs were fixed: - CVE-2017-9242: The __ip6_append_data function in net/ipv6/ip6_output.c in the Linux kernel was too late in checking whether an overwrite of an skb data structure may occur, which allowed local users to cause a denial of service (system crash) via crafted system calls (bsc#1042892). - CVE-2017-7645: The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel allowed remote attackers to cause a denial of service (system crash) via a long RPC reply (bsc#1046191). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 12-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-2017-1543=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server 12-LTSS (x86_64): kgraft-patch-3_12_61-52_89-default-2-2.2 kgraft-patch-3_12_61-52_89-xen-2-2.2 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://www.suse.com/security/cve/CVE-2017-7645.html https://www.suse.com/security/cve/CVE-2017-9242.html https://bugzilla.suse.com/1042892 https://bugzilla.suse.com/1046191 https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Fri Sep 15 10:08:06 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Fri, 15 Sep 2017 18:08:06 +0200 (CEST) Subject: SUSE-SU-2017:2497-1: important: Security update for Linux Kernel Live Patch 24 for SLE 12 Message-ID: <20170915160806.972D4FD95@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 24 for SLE 12 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2497-1 Rating: important References: #1042892 #1046191 #1052311 #1052368 Cross-References: CVE-2017-1000112 CVE-2017-7645 CVE-2017-9242 Affected Products: SUSE Linux Enterprise Server 12-LTSS ______________________________________________________________________________ An update that solves three vulnerabilities and has one errata is now available. Description: This update for the Linux Kernel 3.12.61-52_83 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). - CVE-2017-7645: The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel allowed remote attackers to cause a denial of service (system crash) via a long RPC reply (bsc#1046191). - CVE-2017-9242: The __ip6_append_data function in net/ipv6/ip6_output.c in the Linux kernel was too late in checking whether an overwrite of an skb data structure may occur, which allowed local users to cause a denial of service (system crash) via crafted system calls (bsc#1042892). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 12-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-2017-1547=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server 12-LTSS (x86_64): kgraft-patch-3_12_61-52_83-default-2-2.2 kgraft-patch-3_12_61-52_83-xen-2-2.2 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://www.suse.com/security/cve/CVE-2017-7645.html https://www.suse.com/security/cve/CVE-2017-9242.html https://bugzilla.suse.com/1042892 https://bugzilla.suse.com/1046191 https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Fri Sep 15 10:09:12 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Fri, 15 Sep 2017 18:09:12 +0200 (CEST) Subject: SUSE-SU-2017:2498-1: important: Security update for Linux Kernel Live Patch 20 for SLE 12 Message-ID: <20170915160912.251D6FD93@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 20 for SLE 12 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2498-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Server 12-LTSS ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 3.12.61-52_69 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 12-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-2017-1544=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server 12-LTSS (x86_64): kgraft-patch-3_12_61-52_69-default-5-2.2 kgraft-patch-3_12_61-52_69-xen-5-2.2 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Fri Sep 15 10:09:55 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Fri, 15 Sep 2017 18:09:55 +0200 (CEST) Subject: SUSE-SU-2017:2499-1: important: Security update for Linux Kernel Live Patch 22 for SLE 12 Message-ID: <20170915160955.9FF0EFD93@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 22 for SLE 12 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2499-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Server 12-LTSS ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 3.12.61-52_77 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 12-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-2017-1545=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server 12-LTSS (x86_64): kgraft-patch-3_12_61-52_77-default-4-2.2 kgraft-patch-3_12_61-52_77-xen-4-2.2 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Fri Sep 15 10:10:48 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Fri, 15 Sep 2017 18:10:48 +0200 (CEST) Subject: SUSE-SU-2017:2500-1: important: Security update for Linux Kernel Live Patch 23 for SLE 12 Message-ID: <20170915161048.6A739FD94@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 23 for SLE 12 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2500-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Server 12-LTSS ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 3.12.61-52_80 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 12-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-2017-1546=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server 12-LTSS (x86_64): kgraft-patch-3_12_61-52_80-default-3-2.2 kgraft-patch-3_12_61-52_80-xen-3-2.2 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Fri Sep 15 19:07:08 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Sat, 16 Sep 2017 03:07:08 +0200 (CEST) Subject: SUSE-SU-2017:2506-1: important: Security update for Linux Kernel Live Patch 18 for SLE 12 Message-ID: <20170916010708.89464FCE7@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 18 for SLE 12 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2506-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Server 12-LTSS ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 3.12.60-52_63 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 12-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-2017-1553=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server 12-LTSS (x86_64): kgraft-patch-3_12_60-52_63-default-8-2.2 kgraft-patch-3_12_60-52_63-xen-8-2.2 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Fri Sep 15 19:08:36 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Sat, 16 Sep 2017 03:08:36 +0200 (CEST) Subject: SUSE-SU-2017:2508-1: important: Security update for Linux Kernel Live Patch 17 for SLE 12 Message-ID: <20170916010836.BC7CEFCC9@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 17 for SLE 12 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2508-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Server 12-LTSS ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 3.12.60-52_60 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 12-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-2017-1552=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server 12-LTSS (x86_64): kgraft-patch-3_12_60-52_60-default-8-2.2 kgraft-patch-3_12_60-52_60-xen-8-2.2 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Fri Sep 15 19:09:16 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Sat, 16 Sep 2017 03:09:16 +0200 (CEST) Subject: SUSE-SU-2017:2509-1: important: Security update for Linux Kernel Live Patch 16 for SLE 12 Message-ID: <20170916010916.37F3DFCC9@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 16 for SLE 12 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2509-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Server 12-LTSS ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 3.12.60-52_57 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 12-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-2017-1551=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server 12-LTSS (x86_64): kgraft-patch-3_12_60-52_57-default-9-2.2 kgraft-patch-3_12_60-52_57-xen-9-2.2 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Fri Sep 15 19:09:59 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Sat, 16 Sep 2017 03:09:59 +0200 (CEST) Subject: SUSE-SU-2017:2510-1: important: Security update for Linux Kernel Live Patch 19 for SLE 12 Message-ID: <20170916010959.A76D3FCC9@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 19 for SLE 12 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2510-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Server 12-LTSS ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 3.12.61-52_66 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 12-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-2017-1554=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server 12-LTSS (x86_64): kgraft-patch-3_12_61-52_66-default-7-2.2 kgraft-patch-3_12_61-52_66-xen-7-2.2 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Fri Sep 15 19:10:40 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Sat, 16 Sep 2017 03:10:40 +0200 (CEST) Subject: SUSE-SU-2017:2511-1: important: Security update for Linux Kernel Live Patch 21 for SLE 12 Message-ID: <20170916011040.1AC72FCC9@maintenance.suse.de> SUSE Security Update: Security update for Linux Kernel Live Patch 21 for SLE 12 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2511-1 Rating: important References: #1052311 #1052368 Cross-References: CVE-2017-1000112 Affected Products: SUSE Linux Enterprise Server 12-LTSS ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for the Linux Kernel 3.12.61-52_72 fixes several issues. The following security bugs were fixed: - CVE-2017-1000112: Prevent a race condition in net-packet code that could have been exploited by unprivileged users to gain root access (bsc#1052368). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 12-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-2017-1555=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server 12-LTSS (x86_64): kgraft-patch-3_12_61-52_72-default-4-2.2 kgraft-patch-3_12_61-52_72-xen-4-2.2 References: https://www.suse.com/security/cve/CVE-2017-1000112.html https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1052368 From sle-security-updates at lists.suse.com Mon Sep 18 07:08:35 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Mon, 18 Sep 2017 15:08:35 +0200 (CEST) Subject: SUSE-SU-2017:2518-1: moderate: Security update for php5 Message-ID: <20170918130835.A1D60FDEC@maintenance.suse.de> SUSE Security Update: Security update for php5 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2518-1 Rating: moderate References: #1054430 Cross-References: CVE-2017-12933 Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Module for Web Scripting 12 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for php5 fixes on issues. This security issue was fixed: - CVE-2017-12933: The finish_nested_data function in ext/standard/var_unserializer.re was prone to a buffer over-read while unserializing untrusted data. Exploitation of this issue could have had an unspecified impact on the integrity of PHP (bsc#1054430) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2017-1557=1 - SUSE Linux Enterprise Software Development Kit 12-SP2: zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1557=1 - SUSE Linux Enterprise Module for Web Scripting 12: zypper in -t patch SUSE-SLE-Module-Web-Scripting-12-2017-1557=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 ppc64le s390x x86_64): php5-debuginfo-5.5.14-109.8.2 php5-debugsource-5.5.14-109.8.2 php5-devel-5.5.14-109.8.2 - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 ppc64le s390x x86_64): php5-debuginfo-5.5.14-109.8.2 php5-debugsource-5.5.14-109.8.2 php5-devel-5.5.14-109.8.2 - SUSE Linux Enterprise Module for Web Scripting 12 (aarch64 ppc64le s390x x86_64): apache2-mod_php5-5.5.14-109.8.2 apache2-mod_php5-debuginfo-5.5.14-109.8.2 php5-5.5.14-109.8.2 php5-bcmath-5.5.14-109.8.2 php5-bcmath-debuginfo-5.5.14-109.8.2 php5-bz2-5.5.14-109.8.2 php5-bz2-debuginfo-5.5.14-109.8.2 php5-calendar-5.5.14-109.8.2 php5-calendar-debuginfo-5.5.14-109.8.2 php5-ctype-5.5.14-109.8.2 php5-ctype-debuginfo-5.5.14-109.8.2 php5-curl-5.5.14-109.8.2 php5-curl-debuginfo-5.5.14-109.8.2 php5-dba-5.5.14-109.8.2 php5-dba-debuginfo-5.5.14-109.8.2 php5-debuginfo-5.5.14-109.8.2 php5-debugsource-5.5.14-109.8.2 php5-dom-5.5.14-109.8.2 php5-dom-debuginfo-5.5.14-109.8.2 php5-enchant-5.5.14-109.8.2 php5-enchant-debuginfo-5.5.14-109.8.2 php5-exif-5.5.14-109.8.2 php5-exif-debuginfo-5.5.14-109.8.2 php5-fastcgi-5.5.14-109.8.2 php5-fastcgi-debuginfo-5.5.14-109.8.2 php5-fileinfo-5.5.14-109.8.2 php5-fileinfo-debuginfo-5.5.14-109.8.2 php5-fpm-5.5.14-109.8.2 php5-fpm-debuginfo-5.5.14-109.8.2 php5-ftp-5.5.14-109.8.2 php5-ftp-debuginfo-5.5.14-109.8.2 php5-gd-5.5.14-109.8.2 php5-gd-debuginfo-5.5.14-109.8.2 php5-gettext-5.5.14-109.8.2 php5-gettext-debuginfo-5.5.14-109.8.2 php5-gmp-5.5.14-109.8.2 php5-gmp-debuginfo-5.5.14-109.8.2 php5-iconv-5.5.14-109.8.2 php5-iconv-debuginfo-5.5.14-109.8.2 php5-imap-5.5.14-109.8.2 php5-imap-debuginfo-5.5.14-109.8.2 php5-intl-5.5.14-109.8.2 php5-intl-debuginfo-5.5.14-109.8.2 php5-json-5.5.14-109.8.2 php5-json-debuginfo-5.5.14-109.8.2 php5-ldap-5.5.14-109.8.2 php5-ldap-debuginfo-5.5.14-109.8.2 php5-mbstring-5.5.14-109.8.2 php5-mbstring-debuginfo-5.5.14-109.8.2 php5-mcrypt-5.5.14-109.8.2 php5-mcrypt-debuginfo-5.5.14-109.8.2 php5-mysql-5.5.14-109.8.2 php5-mysql-debuginfo-5.5.14-109.8.2 php5-odbc-5.5.14-109.8.2 php5-odbc-debuginfo-5.5.14-109.8.2 php5-opcache-5.5.14-109.8.2 php5-opcache-debuginfo-5.5.14-109.8.2 php5-openssl-5.5.14-109.8.2 php5-openssl-debuginfo-5.5.14-109.8.2 php5-pcntl-5.5.14-109.8.2 php5-pcntl-debuginfo-5.5.14-109.8.2 php5-pdo-5.5.14-109.8.2 php5-pdo-debuginfo-5.5.14-109.8.2 php5-pgsql-5.5.14-109.8.2 php5-pgsql-debuginfo-5.5.14-109.8.2 php5-phar-5.5.14-109.8.2 php5-phar-debuginfo-5.5.14-109.8.2 php5-posix-5.5.14-109.8.2 php5-posix-debuginfo-5.5.14-109.8.2 php5-pspell-5.5.14-109.8.2 php5-pspell-debuginfo-5.5.14-109.8.2 php5-shmop-5.5.14-109.8.2 php5-shmop-debuginfo-5.5.14-109.8.2 php5-snmp-5.5.14-109.8.2 php5-snmp-debuginfo-5.5.14-109.8.2 php5-soap-5.5.14-109.8.2 php5-soap-debuginfo-5.5.14-109.8.2 php5-sockets-5.5.14-109.8.2 php5-sockets-debuginfo-5.5.14-109.8.2 php5-sqlite-5.5.14-109.8.2 php5-sqlite-debuginfo-5.5.14-109.8.2 php5-suhosin-5.5.14-109.8.2 php5-suhosin-debuginfo-5.5.14-109.8.2 php5-sysvmsg-5.5.14-109.8.2 php5-sysvmsg-debuginfo-5.5.14-109.8.2 php5-sysvsem-5.5.14-109.8.2 php5-sysvsem-debuginfo-5.5.14-109.8.2 php5-sysvshm-5.5.14-109.8.2 php5-sysvshm-debuginfo-5.5.14-109.8.2 php5-tokenizer-5.5.14-109.8.2 php5-tokenizer-debuginfo-5.5.14-109.8.2 php5-wddx-5.5.14-109.8.2 php5-wddx-debuginfo-5.5.14-109.8.2 php5-xmlreader-5.5.14-109.8.2 php5-xmlreader-debuginfo-5.5.14-109.8.2 php5-xmlrpc-5.5.14-109.8.2 php5-xmlrpc-debuginfo-5.5.14-109.8.2 php5-xmlwriter-5.5.14-109.8.2 php5-xmlwriter-debuginfo-5.5.14-109.8.2 php5-xsl-5.5.14-109.8.2 php5-xsl-debuginfo-5.5.14-109.8.2 php5-zip-5.5.14-109.8.2 php5-zip-debuginfo-5.5.14-109.8.2 php5-zlib-5.5.14-109.8.2 php5-zlib-debuginfo-5.5.14-109.8.2 - SUSE Linux Enterprise Module for Web Scripting 12 (noarch): php5-pear-5.5.14-109.8.2 References: https://www.suse.com/security/cve/CVE-2017-12933.html https://bugzilla.suse.com/1054430 From sle-security-updates at lists.suse.com Mon Sep 18 07:09:06 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Mon, 18 Sep 2017 15:09:06 +0200 (CEST) Subject: SUSE-SU-2017:2519-1: important: Security update for xen Message-ID: <20170918130906.19770FDED@maintenance.suse.de> SUSE Security Update: Security update for xen ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2519-1 Rating: important References: #1027519 #1055695 #1056278 #1056280 #1056281 #1056282 Cross-References: CVE-2017-14316 CVE-2017-14317 CVE-2017-14318 CVE-2017-14319 Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP2 SUSE Container as a Service Platform ALL ______________________________________________________________________________ An update that solves four vulnerabilities and has two fixes is now available. Description: This update for xen fixes several issues. These security issues were fixed: - CVE-2017-14316: Missing bound check in function `alloc_heap_pages` for an internal array allowed attackers using crafted hypercalls to execute arbitrary code within Xen (XSA-231, bsc#1056278) - CVE-2017-14318: The function __gnttab_cache_flush missed a check for grant tables, allowing a malicious guest to crash the host or for x86 PV guests to potentially escalate privileges (XSA-232, bsc#1056280) - CVE-2017-14317: A race in cxenstored may have cause a double-free allowind for DoS of the xenstored daemon (XSA-233, bsc#1056281). - CVE-2017-14319: An error while handling grant mappings allowed malicious or buggy x86 PV guest to escalate its privileges or crash the hypervisor (XSA-234, bsc#1056282). These non-security issues were fixed: - bsc#1055695: Fixed restoring updates for HVM guests for ballooned domUs Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP2: zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1558=1 - SUSE Linux Enterprise Server 12-SP2: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1558=1 - SUSE Linux Enterprise Desktop 12-SP2: zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-1558=1 - SUSE Container as a Service Platform ALL: zypper in -t patch SUSE-CAASP-ALL-2017-1558=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 x86_64): xen-debugsource-4.7.3_04-43.12.1 xen-devel-4.7.3_04-43.12.1 - SUSE Linux Enterprise Server 12-SP2 (x86_64): xen-4.7.3_04-43.12.1 xen-debugsource-4.7.3_04-43.12.1 xen-doc-html-4.7.3_04-43.12.1 xen-libs-32bit-4.7.3_04-43.12.1 xen-libs-4.7.3_04-43.12.1 xen-libs-debuginfo-32bit-4.7.3_04-43.12.1 xen-libs-debuginfo-4.7.3_04-43.12.1 xen-tools-4.7.3_04-43.12.1 xen-tools-debuginfo-4.7.3_04-43.12.1 xen-tools-domU-4.7.3_04-43.12.1 xen-tools-domU-debuginfo-4.7.3_04-43.12.1 - SUSE Linux Enterprise Desktop 12-SP2 (x86_64): xen-4.7.3_04-43.12.1 xen-debugsource-4.7.3_04-43.12.1 xen-libs-32bit-4.7.3_04-43.12.1 xen-libs-4.7.3_04-43.12.1 xen-libs-debuginfo-32bit-4.7.3_04-43.12.1 xen-libs-debuginfo-4.7.3_04-43.12.1 - SUSE Container as a Service Platform ALL (x86_64): xen-debugsource-4.7.3_04-43.12.1 xen-libs-4.7.3_04-43.12.1 xen-libs-debuginfo-4.7.3_04-43.12.1 xen-tools-domU-4.7.3_04-43.12.1 xen-tools-domU-debuginfo-4.7.3_04-43.12.1 References: https://www.suse.com/security/cve/CVE-2017-14316.html https://www.suse.com/security/cve/CVE-2017-14317.html https://www.suse.com/security/cve/CVE-2017-14318.html https://www.suse.com/security/cve/CVE-2017-14319.html https://bugzilla.suse.com/1027519 https://bugzilla.suse.com/1055695 https://bugzilla.suse.com/1056278 https://bugzilla.suse.com/1056280 https://bugzilla.suse.com/1056281 https://bugzilla.suse.com/1056282 From sle-security-updates at lists.suse.com Mon Sep 18 10:10:02 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Mon, 18 Sep 2017 18:10:02 +0200 (CEST) Subject: SUSE-SU-2017:2521-1: important: Security update for the Linux Kernel Message-ID: <20170918161002.DEA73FCAE@maintenance.suse.de> SUSE Security Update: Security update for the Linux Kernel ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2521-1 Rating: important References: #1057389 Cross-References: CVE-2017-1000251 Affected Products: SUSE Linux Enterprise Workstation Extension 12-SP2 SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise High Availability 12-SP2 SUSE Linux Enterprise Desktop 12-SP2 SUSE Container as a Service Platform ALL OpenStack Cloud Magnum Orchestration 7 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: The SUSE Linux Enterprise 12 SP2 kernel was updated to receive the following security fixes: - CVE-2017-1000251: The native Bluetooth stack in the Linux Kernel was vulnerable to a stack overflow while processing L2CAP configuration responses, resulting in a potential remote denial-of-service vulnerability but no remote code execution due to use of CONFIG_CC_STACKPROTECTOR. [bnc#1057389] Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Workstation Extension 12-SP2: zypper in -t patch SUSE-SLE-WE-12-SP2-2017-1561=1 - SUSE Linux Enterprise Software Development Kit 12-SP2: zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1561=1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2: zypper in -t patch SUSE-SLE-RPI-12-SP2-2017-1561=1 - SUSE Linux Enterprise Server 12-SP2: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1561=1 - SUSE Linux Enterprise Live Patching 12: zypper in -t patch SUSE-SLE-Live-Patching-12-2017-1561=1 - SUSE Linux Enterprise High Availability 12-SP2: zypper in -t patch SUSE-SLE-HA-12-SP2-2017-1561=1 - SUSE Linux Enterprise Desktop 12-SP2: zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-1561=1 - SUSE Container as a Service Platform ALL: zypper in -t patch SUSE-CAASP-ALL-2017-1561=1 - OpenStack Cloud Magnum Orchestration 7: zypper in -t patch SUSE-OpenStack-Cloud-Magnum-Orchestration-7-2017-1561=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Workstation Extension 12-SP2 (x86_64): kernel-default-debuginfo-4.4.74-92.38.1 kernel-default-debugsource-4.4.74-92.38.1 kernel-default-extra-4.4.74-92.38.1 kernel-default-extra-debuginfo-4.4.74-92.38.1 - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 ppc64le s390x x86_64): kernel-obs-build-4.4.74-92.38.1 kernel-obs-build-debugsource-4.4.74-92.38.1 - SUSE Linux Enterprise Software Development Kit 12-SP2 (noarch): kernel-docs-4.4.74-92.38.3 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (aarch64): kernel-default-4.4.74-92.38.1 kernel-default-base-4.4.74-92.38.1 kernel-default-base-debuginfo-4.4.74-92.38.1 kernel-default-debuginfo-4.4.74-92.38.1 kernel-default-debugsource-4.4.74-92.38.1 kernel-default-devel-4.4.74-92.38.1 kernel-syms-4.4.74-92.38.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (noarch): kernel-devel-4.4.74-92.38.1 kernel-macros-4.4.74-92.38.1 kernel-source-4.4.74-92.38.1 - SUSE Linux Enterprise Server 12-SP2 (aarch64 ppc64le s390x x86_64): kernel-default-4.4.74-92.38.1 kernel-default-base-4.4.74-92.38.1 kernel-default-base-debuginfo-4.4.74-92.38.1 kernel-default-debuginfo-4.4.74-92.38.1 kernel-default-debugsource-4.4.74-92.38.1 kernel-default-devel-4.4.74-92.38.1 kernel-syms-4.4.74-92.38.1 - SUSE Linux Enterprise Server 12-SP2 (noarch): kernel-devel-4.4.74-92.38.1 kernel-macros-4.4.74-92.38.1 kernel-source-4.4.74-92.38.1 - SUSE Linux Enterprise Server 12-SP2 (s390x): kernel-default-man-4.4.74-92.38.1 - SUSE Linux Enterprise Live Patching 12 (x86_64): kgraft-patch-4_4_74-92_38-default-1-2.1 - SUSE Linux Enterprise High Availability 12-SP2 (ppc64le s390x x86_64): cluster-md-kmp-default-4.4.74-92.38.1 cluster-md-kmp-default-debuginfo-4.4.74-92.38.1 cluster-network-kmp-default-4.4.74-92.38.1 cluster-network-kmp-default-debuginfo-4.4.74-92.38.1 dlm-kmp-default-4.4.74-92.38.1 dlm-kmp-default-debuginfo-4.4.74-92.38.1 gfs2-kmp-default-4.4.74-92.38.1 gfs2-kmp-default-debuginfo-4.4.74-92.38.1 kernel-default-debuginfo-4.4.74-92.38.1 kernel-default-debugsource-4.4.74-92.38.1 ocfs2-kmp-default-4.4.74-92.38.1 ocfs2-kmp-default-debuginfo-4.4.74-92.38.1 - SUSE Linux Enterprise Desktop 12-SP2 (x86_64): kernel-default-4.4.74-92.38.1 kernel-default-debuginfo-4.4.74-92.38.1 kernel-default-debugsource-4.4.74-92.38.1 kernel-default-devel-4.4.74-92.38.1 kernel-default-extra-4.4.74-92.38.1 kernel-default-extra-debuginfo-4.4.74-92.38.1 kernel-syms-4.4.74-92.38.1 - SUSE Linux Enterprise Desktop 12-SP2 (noarch): kernel-devel-4.4.74-92.38.1 kernel-macros-4.4.74-92.38.1 kernel-source-4.4.74-92.38.1 - SUSE Container as a Service Platform ALL (x86_64): kernel-default-4.4.74-92.38.1 kernel-default-debuginfo-4.4.74-92.38.1 kernel-default-debugsource-4.4.74-92.38.1 - OpenStack Cloud Magnum Orchestration 7 (x86_64): kernel-default-4.4.74-92.38.1 kernel-default-debuginfo-4.4.74-92.38.1 kernel-default-debugsource-4.4.74-92.38.1 References: https://www.suse.com/security/cve/CVE-2017-1000251.html https://bugzilla.suse.com/1057389 From sle-security-updates at lists.suse.com Mon Sep 18 10:10:49 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Mon, 18 Sep 2017 18:10:49 +0200 (CEST) Subject: SUSE-SU-2017:2522-1: moderate: Security update for php53 Message-ID: <20170918161049.E501EFCAE@maintenance.suse.de> SUSE Security Update: Security update for php53 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2522-1 Rating: moderate References: #1047454 #1048094 #1048096 #1048111 #1048112 #1050241 #1050726 #1054430 #986386 Cross-References: CVE-2016-10168 CVE-2016-10397 CVE-2016-5766 CVE-2017-11144 CVE-2017-11145 CVE-2017-11146 CVE-2017-11147 CVE-2017-11628 CVE-2017-12933 CVE-2017-7890 Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 SUSE Linux Enterprise Debuginfo 11-SP4 ______________________________________________________________________________ An update that fixes 10 vulnerabilities is now available. Description: This update for php53 fixes the several issues. These security issues were fixed: - CVE-2017-12933: The finish_nested_data function in ext/standard/var_unserializer.re was prone to a buffer over-read while unserializing untrusted data. Exploitation of this issue could have had an unspecified impact on the integrity of PHP (bsc#1054430). - CVE-2017-11628: Stack-based buffer overflow in the zend_ini_do_op() function in Zend/zend_ini_parser.c could have caused a denial of service or potentially allowed executing code (bsc#1050726). - CVE-2017-7890: The GIF decoding function gdImageCreateFromGifCtx in the GD Graphics Library did not zero colorMap arrays use. A specially crafted GIF image could use the uninitialized tables to read ~700 bytes from the top of the stack, potentially disclosing sensitive information (bsc#1050241). - CVE-2016-5766: Integer overflow in the _gd2GetHeader in the GD Graphics Library (aka libgd) allowed remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via crafted chunk dimensions in an image (bsc#986386). - CVE-2017-11145: An error in the date extension's timelib_meridian parsing code could have been used by attackers able to supply date strings to leak information from the interpreter, related to ext/date/lib/parse_date.c out-of-bounds reads affecting the php_parse_date function (bsc#1048112). - CVE-2017-11146: Lack of bounds checks in timelib_meridian parse code could have lead to information leak [bsc#1048111] - CVE-2016-10397: Incorrect handling of various URI components in the URL parser could have been used by attackers to bypass hostname-specific URL checks (bsc#1047454). - CVE-2017-11147: The PHAR archive handler could have been used by attackers supplying malicious archive files to crash the PHP interpreter or potentially disclose information due to a buffer over-read in the phar_parse_pharfile function (bsc#1048094). - CVE-2017-11144: The openssl extension PEM sealing code did not check the return value of the OpenSSL sealing function, which could have lead to a crash of the PHP interpreter (bsc#1048096). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 11-SP4: zypper in -t patch sdksp4-php53-13282=1 - SUSE Linux Enterprise Server 11-SP4: zypper in -t patch slessp4-php53-13282=1 - SUSE Linux Enterprise Debuginfo 11-SP4: zypper in -t patch dbgsp4-php53-13282=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 11-SP4 (i586 ia64 ppc64 s390x x86_64): php53-devel-5.3.17-112.5.1 php53-imap-5.3.17-112.5.1 php53-posix-5.3.17-112.5.1 php53-readline-5.3.17-112.5.1 php53-sockets-5.3.17-112.5.1 php53-sqlite-5.3.17-112.5.1 php53-tidy-5.3.17-112.5.1 - SUSE Linux Enterprise Server 11-SP4 (i586 ia64 ppc64 s390x x86_64): apache2-mod_php53-5.3.17-112.5.1 php53-5.3.17-112.5.1 php53-bcmath-5.3.17-112.5.1 php53-bz2-5.3.17-112.5.1 php53-calendar-5.3.17-112.5.1 php53-ctype-5.3.17-112.5.1 php53-curl-5.3.17-112.5.1 php53-dba-5.3.17-112.5.1 php53-dom-5.3.17-112.5.1 php53-exif-5.3.17-112.5.1 php53-fastcgi-5.3.17-112.5.1 php53-fileinfo-5.3.17-112.5.1 php53-ftp-5.3.17-112.5.1 php53-gd-5.3.17-112.5.1 php53-gettext-5.3.17-112.5.1 php53-gmp-5.3.17-112.5.1 php53-iconv-5.3.17-112.5.1 php53-intl-5.3.17-112.5.1 php53-json-5.3.17-112.5.1 php53-ldap-5.3.17-112.5.1 php53-mbstring-5.3.17-112.5.1 php53-mcrypt-5.3.17-112.5.1 php53-mysql-5.3.17-112.5.1 php53-odbc-5.3.17-112.5.1 php53-openssl-5.3.17-112.5.1 php53-pcntl-5.3.17-112.5.1 php53-pdo-5.3.17-112.5.1 php53-pear-5.3.17-112.5.1 php53-pgsql-5.3.17-112.5.1 php53-pspell-5.3.17-112.5.1 php53-shmop-5.3.17-112.5.1 php53-snmp-5.3.17-112.5.1 php53-soap-5.3.17-112.5.1 php53-suhosin-5.3.17-112.5.1 php53-sysvmsg-5.3.17-112.5.1 php53-sysvsem-5.3.17-112.5.1 php53-sysvshm-5.3.17-112.5.1 php53-tokenizer-5.3.17-112.5.1 php53-wddx-5.3.17-112.5.1 php53-xmlreader-5.3.17-112.5.1 php53-xmlrpc-5.3.17-112.5.1 php53-xmlwriter-5.3.17-112.5.1 php53-xsl-5.3.17-112.5.1 php53-zip-5.3.17-112.5.1 php53-zlib-5.3.17-112.5.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ia64 ppc64 s390x x86_64): php53-debuginfo-5.3.17-112.5.1 php53-debugsource-5.3.17-112.5.1 References: https://www.suse.com/security/cve/CVE-2016-10168.html https://www.suse.com/security/cve/CVE-2016-10397.html https://www.suse.com/security/cve/CVE-2016-5766.html https://www.suse.com/security/cve/CVE-2017-11144.html https://www.suse.com/security/cve/CVE-2017-11145.html https://www.suse.com/security/cve/CVE-2017-11146.html https://www.suse.com/security/cve/CVE-2017-11147.html https://www.suse.com/security/cve/CVE-2017-11628.html https://www.suse.com/security/cve/CVE-2017-12933.html https://www.suse.com/security/cve/CVE-2017-7890.html https://bugzilla.suse.com/1047454 https://bugzilla.suse.com/1048094 https://bugzilla.suse.com/1048096 https://bugzilla.suse.com/1048111 https://bugzilla.suse.com/1048112 https://bugzilla.suse.com/1050241 https://bugzilla.suse.com/1050726 https://bugzilla.suse.com/1054430 https://bugzilla.suse.com/986386 From sle-security-updates at lists.suse.com Mon Sep 18 16:07:23 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Tue, 19 Sep 2017 00:07:23 +0200 (CEST) Subject: SUSE-SU-2017:2523-1: important: Security update for the Linux Kernel Message-ID: <20170918220723.F0FDAFCAE@maintenance.suse.de> SUSE Security Update: Security update for the Linux Kernel ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2523-1 Rating: important References: #1057389 Cross-References: CVE-2017-1000251 Affected Products: SUSE Linux Enterprise Workstation Extension 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Live Patching 12-SP3 SUSE Linux Enterprise High Availability 12-SP3 SUSE Linux Enterprise Desktop 12-SP3 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: The SUSE Linux Enterprise 12 SP3 kernel was updated to receive the following security fixes: - CVE-2017-1000251: The native Bluetooth stack in the Linux Kernel was vulnerable to a stack overflow while processing L2CAP configuration responses, resulting in a potential remote denial-of-service vulnerability but no remote code execution due to use of CONFIG_CC_STACKPROTECTOR. [bnc#1057389] Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Workstation Extension 12-SP3: zypper in -t patch SUSE-SLE-WE-12-SP3-2017-1562=1 - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2017-1562=1 - SUSE Linux Enterprise Server 12-SP3: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2017-1562=1 - SUSE Linux Enterprise Live Patching 12-SP3: zypper in -t patch SUSE-SLE-Live-Patching-12-SP3-2017-1562=1 - SUSE Linux Enterprise High Availability 12-SP3: zypper in -t patch SUSE-SLE-HA-12-SP3-2017-1562=1 - SUSE Linux Enterprise Desktop 12-SP3: zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2017-1562=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Workstation Extension 12-SP3 (x86_64): kernel-default-debuginfo-4.4.82-6.6.1 kernel-default-debugsource-4.4.82-6.6.1 kernel-default-extra-4.4.82-6.6.1 kernel-default-extra-debuginfo-4.4.82-6.6.1 - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 ppc64le s390x x86_64): kernel-obs-build-4.4.82-6.6.1 kernel-obs-build-debugsource-4.4.82-6.6.1 - SUSE Linux Enterprise Software Development Kit 12-SP3 (noarch): kernel-docs-4.4.82-6.6.3 - SUSE Linux Enterprise Server 12-SP3 (aarch64 ppc64le s390x x86_64): kernel-default-4.4.82-6.6.1 kernel-default-base-4.4.82-6.6.1 kernel-default-base-debuginfo-4.4.82-6.6.1 kernel-default-debuginfo-4.4.82-6.6.1 kernel-default-debugsource-4.4.82-6.6.1 kernel-default-devel-4.4.82-6.6.1 kernel-syms-4.4.82-6.6.1 - SUSE Linux Enterprise Server 12-SP3 (noarch): kernel-devel-4.4.82-6.6.1 kernel-macros-4.4.82-6.6.1 kernel-source-4.4.82-6.6.1 - SUSE Linux Enterprise Server 12-SP3 (s390x): kernel-default-man-4.4.82-6.6.1 - SUSE Linux Enterprise Live Patching 12-SP3 (x86_64): kgraft-patch-4_4_82-6_6-default-1-2.1 kgraft-patch-4_4_82-6_6-default-debuginfo-1-2.1 - SUSE Linux Enterprise High Availability 12-SP3 (ppc64le s390x x86_64): cluster-md-kmp-default-4.4.82-6.6.1 cluster-md-kmp-default-debuginfo-4.4.82-6.6.1 dlm-kmp-default-4.4.82-6.6.1 dlm-kmp-default-debuginfo-4.4.82-6.6.1 gfs2-kmp-default-4.4.82-6.6.1 gfs2-kmp-default-debuginfo-4.4.82-6.6.1 kernel-default-debuginfo-4.4.82-6.6.1 kernel-default-debugsource-4.4.82-6.6.1 ocfs2-kmp-default-4.4.82-6.6.1 ocfs2-kmp-default-debuginfo-4.4.82-6.6.1 - SUSE Linux Enterprise Desktop 12-SP3 (noarch): kernel-devel-4.4.82-6.6.1 kernel-macros-4.4.82-6.6.1 kernel-source-4.4.82-6.6.1 - SUSE Linux Enterprise Desktop 12-SP3 (x86_64): kernel-default-4.4.82-6.6.1 kernel-default-debuginfo-4.4.82-6.6.1 kernel-default-debugsource-4.4.82-6.6.1 kernel-default-devel-4.4.82-6.6.1 kernel-default-extra-4.4.82-6.6.1 kernel-default-extra-debuginfo-4.4.82-6.6.1 kernel-syms-4.4.82-6.6.1 References: https://www.suse.com/security/cve/CVE-2017-1000251.html https://bugzilla.suse.com/1057389 From sle-security-updates at lists.suse.com Tue Sep 19 07:07:26 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Tue, 19 Sep 2017 15:07:26 +0200 (CEST) Subject: SUSE-SU-2017:2525-1: important: Security update for the Linux Kernel Message-ID: <20170919130726.C1BAFFCAE@maintenance.suse.de> SUSE Security Update: Security update for the Linux Kernel ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2525-1 Rating: important References: #1006919 #1012422 #1013862 #1017143 #1020229 #1021256 #1023051 #1024938 #1025013 #1025235 #1026024 #1026722 #1026914 #1027066 #1027101 #1027178 #1027179 #1027406 #1028415 #1028880 #1029212 #1029850 #1030213 #1030573 #1030575 #1030593 #1031003 #1031052 #1031440 #1031481 #1031579 #1031660 #1033287 #1033336 #1034670 #1034838 #1035576 #1037182 #1037183 #1037994 #1038544 #1038564 #1038879 #1038883 #1038981 #1038982 #1039349 #1039354 #1039456 #1039594 #1039882 #1039883 #1039885 #1040069 #1041431 #1042364 #1042863 #1042892 #1044125 #1045416 #1045487 #1046107 #1048232 #1048275 #1049483 #1049603 #1049882 #1050677 #1052311 #1053148 #1053152 #1053760 #1056588 #870618 #948562 #957988 #957990 #963655 #972891 #979681 #983212 #986924 #989896 #999245 Cross-References: CVE-2016-10200 CVE-2016-5243 CVE-2017-1000112 CVE-2017-1000363 CVE-2017-1000365 CVE-2017-1000380 CVE-2017-10661 CVE-2017-11176 CVE-2017-11473 CVE-2017-12762 CVE-2017-14051 CVE-2017-2647 CVE-2017-2671 CVE-2017-5669 CVE-2017-5970 CVE-2017-5986 CVE-2017-6074 CVE-2017-6214 CVE-2017-6348 CVE-2017-6353 CVE-2017-6951 CVE-2017-7184 CVE-2017-7187 CVE-2017-7261 CVE-2017-7294 CVE-2017-7308 CVE-2017-7482 CVE-2017-7487 CVE-2017-7533 CVE-2017-7542 CVE-2017-7616 CVE-2017-8831 CVE-2017-8890 CVE-2017-8924 CVE-2017-8925 CVE-2017-9074 CVE-2017-9075 CVE-2017-9076 CVE-2017-9077 CVE-2017-9242 Affected Products: SUSE Linux Enterprise Server 11-SP3-LTSS SUSE Linux Enterprise Server 11-EXTRA SUSE Linux Enterprise Point of Sale 11-SP3 SUSE Linux Enterprise Debuginfo 11-SP3 ______________________________________________________________________________ An update that solves 40 vulnerabilities and has 44 fixes is now available. Description: The SUSE Linux Enterprise 11 SP3 LTSS kernel was updated receive various security and bugfixes. The following security bugs were fixed: - CVE-2016-5243: The tipc_nl_compat_link_dump function in net/tipc/netlink_compat.c in the Linux kernel did not properly copy a certain string, which allowed local users to obtain sensitive information from kernel stack memory by reading a Netlink message (bnc#983212) - CVE-2016-10200: Race condition in the L2TPv3 IP Encapsulation feature in the Linux kernel allowed local users to gain privileges or cause a denial of service (use-after-free) by making multiple bind system calls without properly ascertaining whether a socket has the SOCK_ZAPPED status, related to net/l2tp/l2tp_ip.c and net/l2tp/l2tp_ip6.c (bnc#1028415) - CVE-2017-2647: The KEYS subsystem in the Linux kernel allowed local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) via vectors involving a NULL value for a certain match field, related to the keyring_search_iterator function in keyring.c (bsc#1030593). - CVE-2017-2671: The ping_unhash function in net/ipv4/ping.c in the Linux kernel was too late in obtaining a certain lock and consequently could not ensure that disconnect function calls are safe, which allowed local users to cause a denial of service (panic) by leveraging access to the protocol value of IPPROTO_ICMP in a socket system call (bnc#1031003) - CVE-2017-5669: The do_shmat function in ipc/shm.c in the Linux kernel did not restrict the address calculated by a certain rounding operation, which allowed local users to map page zero, and consequently bypass a protection mechanism that exists for the mmap system call, by making crafted shmget and shmat system calls in a privileged context (bnc#1026914) - CVE-2017-5970: The ipv4_pktinfo_prepare function in net/ipv4/ip_sockglue.c in the Linux kernel allowed attackers to cause a denial of service (system crash) via (1) an application that made crafted system calls or possibly (2) IPv4 traffic with invalid IP options (bsc#1024938) - CVE-2017-5986: Race condition in the sctp_wait_for_sndbuf function in net/sctp/socket.c in the Linux kernel allowed local users to cause a denial of service (assertion failure and panic) via a multithreaded application that peels off an association in a certain buffer-full state (bsc#1025235) - CVE-2017-6074: The dccp_rcv_state_process function in net/dccp/input.c in the Linux kernel mishandled DCCP_PKT_REQUEST packet data structures in the LISTEN state, which allowed local users to obtain root privileges or cause a denial of service (double free) via an application that made an IPV6_RECVPKTINFO setsockopt system call (bnc#1026024) - CVE-2017-6214: The tcp_splice_read function in net/ipv4/tcp.c in the Linux kernel allowed remote attackers to cause a denial of service (infinite loop and soft lockup) via vectors involving a TCP packet with the URG flag (bnc#1026722) - CVE-2017-6348: The hashbin_delete function in net/irda/irqueue.c in the Linux kernel improperly managed lock dropping, which allowed local users to cause a denial of service (deadlock) via crafted operations on IrDA devices (bnc#1027178) - CVE-2017-6353: net/sctp/socket.c in the Linux kernel did not properly restrict association peel-off operations during certain wait states, which allowed local users to cause a denial of service (invalid unlock and double free) via a multithreaded application. NOTE: this vulnerability exists because of an incorrect fix for CVE-2017-5986 (bnc#1027066) - CVE-2017-6951: The keyring_search_aux function in security/keys/keyring.c in the Linux kernel allowed local users to cause a denial of service (NULL pointer dereference and OOPS) via a request_key system call for the "dead" type (bsc#1029850). - CVE-2017-7184: The xfrm_replay_verify_len function in net/xfrm/xfrm_user.c in the Linux kernel did not validate certain size data after an XFRM_MSG_NEWAE update, which allowed local users to obtain root privileges or cause a denial of service (heap-based out-of-bounds access) by leveraging the CAP_NET_ADMIN capability (bsc#1030573) - CVE-2017-7187: The sg_ioctl function in drivers/scsi/sg.c in the Linux kernel allowed local users to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact via a large command size in an SG_NEXT_CMD_LEN ioctl call, leading to out-of-bounds write access in the sg_write function (bnc#1030213) - CVE-2017-7261: The vmw_surface_define_ioctl function in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c in the Linux kernel did not check for a zero value of certain levels data, which allowed local users to cause a denial of service (ZERO_SIZE_PTR dereference, and GPF and possibly panic) via a crafted ioctl call for a /dev/dri/renderD* device (bnc#1031052) - CVE-2017-7294: The vmw_surface_define_ioctl function in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c in the Linux kernel did not validate addition of certain levels data, which allowed local users to trigger an integer overflow and out-of-bounds write, and cause a denial of service (system hang or crash) or possibly gain privileges, via a crafted ioctl call for a /dev/dri/renderD* device (bnc#1031440) - CVE-2017-7308: The packet_set_ring function in net/packet/af_packet.c in the Linux kernel did not properly validate certain block-size data, which allowed local users to cause a denial of service (overflow) or possibly have unspecified other impact via crafted system calls (bnc#1031579) - CVE-2017-7482: Several missing length checks ticket decode allowing for information leak or potentially code execution (bsc#1046107). - CVE-2017-7487: The ipxitf_ioctl function in net/ipx/af_ipx.c in the Linux kernel mishandled reference counts, which allowed local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via a failed SIOCGIFADDR ioctl call for an IPX interface (bsc#1038879). - CVE-2017-7533: Race condition in the fsnotify implementation in the Linux kernel allowed local users to gain privileges or cause a denial of service (memory corruption) via a crafted application that leverages simultaneous execution of the inotify_handle_event and vfs_rename functions (bnc#1049483 1050677 ). - CVE-2017-7542: The ip6_find_1stfragopt function in net/ipv6/output_core.c in the Linux kernel allowed local users to cause a denial of service (integer overflow and infinite loop) by leveraging the ability to open a raw socket (bnc#1049882). - CVE-2017-7616: Incorrect error handling in the set_mempolicy and mbind compat syscalls in mm/mempolicy.c in the Linux kernel allowed local users to obtain sensitive information from uninitialized stack data by triggering failure of a certain bitmap operation (bsc#1033336) - CVE-2017-8831: The saa7164_bus_get function in drivers/media/pci/saa7164/saa7164-bus.c in the Linux kernel allowed local users to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact by changing a certain sequence-number value, aka a "double fetch" vulnerability. This requires a malicious PCI Card. (bnc#1037994). - CVE-2017-8890: The inet_csk_clone_lock function in net/ipv4/inet_connection_sock.c in the Linux kernel allowed attackers to cause a denial of service (double free) or possibly have unspecified other impact by leveraging use of the accept system call (bsc#1038544). - CVE-2017-8924: The edge_bulk_in_callback function in drivers/usb/serial/io_ti.c in the Linux kernel allowed local users to obtain sensitive information (in the dmesg ringbuffer and syslog) from uninitialized kernel memory by using a crafted USB device (posing as an io_ti USB serial device) to trigger an integer underflow (bnc#1037182). - CVE-2017-8925: The omninet_open function in drivers/usb/serial/omninet.c in the Linux kernel allowed local users to cause a denial of service (tty exhaustion) by leveraging reference count mishandling (bnc#1038981). - CVE-2017-9074: The IPv6 fragmentation implementation in the Linux kernel did not consider that the nexthdr field may be associated with an invalid option, which allowed local users to cause a denial of service (out-of-bounds read and BUG) or possibly have unspecified other impact via crafted socket and send system calls (bnc#1039882). - CVE-2017-9075: The sctp_v6_create_accept_sk function in net/sctp/ipv6.c in the Linux kernel mishandled inheritance, which allowed local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890 (bsc#1039883). - CVE-2017-9076: The dccp_v6_request_recv_sock function in net/dccp/ipv6.c in the Linux kernel mishandled inheritance, which allowed local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890 (bnc#1039885). - CVE-2017-9077: The tcp_v6_syn_recv_sock function in net/ipv6/tcp_ipv6.c in the Linux kernel mishandled inheritance, which allowed local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890 (bsc#1040069). - CVE-2017-9242: The __ip6_append_data function in net/ipv6/ip6_output.c in the Linux kernel was too late in checking whether an overwrite of an skb data structure may occur, which allowed local users to cause a denial of service (system crash) via crafted system calls (bnc#1041431). - CVE-2017-10661: Race condition in fs/timerfd.c in the Linux kernel allowed local users to gain privileges or cause a denial of service (list corruption or use-after-free) via simultaneous file-descriptor operations that leverage improper might_cancel queueing (bnc#1053152). - CVE-2017-11176: The mq_notify function in the Linux kernel did not set the sock pointer to NULL upon entry into the retry logic. During a user-space close of a Netlink socket, it allowed attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact (bnc#1048275). - CVE-2017-11473: Buffer overflow in the mp_override_legacy_irq() function in arch/x86/kernel/acpi/boot.c in the Linux kernel allowed local users to gain privileges via a crafted ACPI table (bnc#1049603). - CVE-2017-12762: In /drivers/isdn/i4l/isdn_net.c: A user-controlled buffer is copied into a local buffer of constant size using strcpy without a length check which can cause a buffer overflow. (bnc#1053148). - CVE-2017-14051: An integer overflow in the qla2x00_sysfs_write_optrom_ctl function in drivers/scsi/qla2xxx/qla_attr.c in the Linux kernel allowed local users to cause a denial of service (memory corruption and system crash) by leveraging root access (bnc#1056588). - CVE-2017-1000112: Fixed a race condition in net-packet code that could have been exploited by unprivileged users to gain root access. (bsc#1052311). - CVE-2017-1000363: Linux drivers/char/lp.c Out-of-Bounds Write. Due to a missing bounds check, and the fact that parport_ptr integer is static, a 'secure boot' kernel command line adversary could have overflowed the parport_nr array in the following code (bnc#1039456). - CVE-2017-1000365: The Linux Kernel imposes a size restriction on the arguments and environmental strings passed through RLIMIT_STACK/RLIM_INFINITY (1/4 of the size), but did not take the argument and environment pointers into account, which allowed attackers to bypass this limitation (bnc#1039354). - CVE-2017-1000380: sound/core/timer.c in the Linux kernel was vulnerable to a data race in the ALSA /dev/snd/timer driver resulting in local users being able to read information belonging to other users, i.e., uninitialized memory contents may be disclosed when a read and an ioctl happen at the same time (bnc#1044125). The following non-security bugs were fixed: - acpi: Disable APEI error injection if securelevel is set (bsc#972891, bsc#1023051). - blkback/blktap: do not leak stack data via response ring (bsc#1042863 XSA-216). - btrfs: cleanup code of btrfs_balance_delayed_items() (bsc#1034838). - btrfs: do not run delayed nodes again after all nodes flush (bsc#1034838). - btrfs: remove btrfs_end_transaction_dmeta() (bsc#1034838). - btrfs: remove residual code in delayed inode async helper (bsc#1034838). - btrfs: use flags instead of the bool variants in delayed node (bsc#1034838). - cifs: cifs_get_root shouldn't use path with tree name, alternate fix (bsc#963655, bsc#979681, bsc#1027406). - dentry name snapshots (bsc#1049483). - firmware: fix directory creation rule matching with make 3.80 (bsc#1012422). - firmware: fix directory creation rule matching with make 3.82 (bsc#1012422). - Fix vmalloc_fault oops during lazy MMU updates (bsc#948562) (bsc#948562). - hv: do not lose pending heartbeat vmbus packets (bnc#1006919, bnc#1053760). - jbd: do not wait (forever) for stale tid caused by wraparound (bsc#1020229). - jbd: Fix oops in journal_remove_journal_head() (bsc#1017143). - kernel-binary.spec: Propagate MAKE_ARGS to %build (bsc#1012422) - keys: Disallow keyrings beginning with '.' to be joined as session keyrings (bnc#1035576). - nfs: Avoid getting confused by confused server (bsc#1045416). - nfsd4: minor NFSv2/v3 write decoding cleanup (bsc#1034670). - nfsd: check for oversized NFSv2/v3 arguments (bsc#1034670). - nfsd: do not risk using duplicate owner/file/delegation ids (bsc#1029212). - nfsd: stricter decoding of write-like NFSv2/v3 ops (bsc#1034670). - nfs: Make nfs_readdir revalidate less often (bsc#1048232). - pciback: check PF instead of VF for PCI_COMMAND_MEMORY (bsc#957990). - pciback: only check PF if actually dealing with a VF (bsc#999245). - pciback: Save the number of MSI-X entries to be copied later (bsc#957988). - Remove superfluous make flags (bsc#1012422) - Return short read or 0 at end of a raw device, not EIO (bsc#1039594). - Revert "fs/cifs: fix wrongly prefixed path to root (bsc#963655, bsc#979681) - scsi: lpfc: avoid double free of resource identifiers (bsc#989896). - scsi: virtio_scsi: fix memory leak on full queue condition (bsc#1028880). - sunrpc: Clean up the slot table allocation (bsc#1013862). - sunrpc: Initalise the struct xprt upon allocation (bsc#1013862). - usb: serial: kl5kusb105: fix line-state error handling (bsc#1021256). - usb: wusbcore: fix NULL-deref at probe (bsc#1045487). - Use make --output-sync feature when available (bsc#1012422). - Use PF_LESS_THROTTLE in loop device thread (bsc#1027101). - xen/PCI-MSI: fix sysfs teardown in DomU (bsc#986924). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 11-SP3-LTSS: zypper in -t patch slessp3-kernel-source-13284=1 - SUSE Linux Enterprise Server 11-EXTRA: zypper in -t patch slexsp3-kernel-source-13284=1 - SUSE Linux Enterprise Point of Sale 11-SP3: zypper in -t patch sleposp3-kernel-source-13284=1 - SUSE Linux Enterprise Debuginfo 11-SP3: zypper in -t patch dbgsp3-kernel-source-13284=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server 11-SP3-LTSS (i586 s390x x86_64): kernel-default-3.0.101-0.47.106.5.1 kernel-default-base-3.0.101-0.47.106.5.1 kernel-default-devel-3.0.101-0.47.106.5.1 kernel-source-3.0.101-0.47.106.5.1 kernel-syms-3.0.101-0.47.106.5.1 kernel-trace-3.0.101-0.47.106.5.1 kernel-trace-base-3.0.101-0.47.106.5.1 kernel-trace-devel-3.0.101-0.47.106.5.1 - SUSE Linux Enterprise Server 11-SP3-LTSS (i586 x86_64): kernel-ec2-3.0.101-0.47.106.5.1 kernel-ec2-base-3.0.101-0.47.106.5.1 kernel-ec2-devel-3.0.101-0.47.106.5.1 kernel-xen-3.0.101-0.47.106.5.1 kernel-xen-base-3.0.101-0.47.106.5.1 kernel-xen-devel-3.0.101-0.47.106.5.1 - SUSE Linux Enterprise Server 11-SP3-LTSS (x86_64): kernel-bigsmp-3.0.101-0.47.106.5.1 kernel-bigsmp-base-3.0.101-0.47.106.5.1 kernel-bigsmp-devel-3.0.101-0.47.106.5.1 - SUSE Linux Enterprise Server 11-SP3-LTSS (s390x): kernel-default-man-3.0.101-0.47.106.5.1 - SUSE Linux Enterprise Server 11-SP3-LTSS (i586): kernel-pae-3.0.101-0.47.106.5.1 kernel-pae-base-3.0.101-0.47.106.5.1 kernel-pae-devel-3.0.101-0.47.106.5.1 - SUSE Linux Enterprise Server 11-EXTRA (i586 s390x x86_64): kernel-default-extra-3.0.101-0.47.106.5.1 - SUSE Linux Enterprise Server 11-EXTRA (i586 x86_64): kernel-xen-extra-3.0.101-0.47.106.5.1 - SUSE Linux Enterprise Server 11-EXTRA (x86_64): kernel-bigsmp-extra-3.0.101-0.47.106.5.1 kernel-trace-extra-3.0.101-0.47.106.5.1 - SUSE Linux Enterprise Server 11-EXTRA (i586): kernel-pae-extra-3.0.101-0.47.106.5.1 - SUSE Linux Enterprise Point of Sale 11-SP3 (i586): kernel-default-3.0.101-0.47.106.5.1 kernel-default-base-3.0.101-0.47.106.5.1 kernel-default-devel-3.0.101-0.47.106.5.1 kernel-ec2-3.0.101-0.47.106.5.1 kernel-ec2-base-3.0.101-0.47.106.5.1 kernel-ec2-devel-3.0.101-0.47.106.5.1 kernel-pae-3.0.101-0.47.106.5.1 kernel-pae-base-3.0.101-0.47.106.5.1 kernel-pae-devel-3.0.101-0.47.106.5.1 kernel-source-3.0.101-0.47.106.5.1 kernel-syms-3.0.101-0.47.106.5.1 kernel-trace-3.0.101-0.47.106.5.1 kernel-trace-base-3.0.101-0.47.106.5.1 kernel-trace-devel-3.0.101-0.47.106.5.1 kernel-xen-3.0.101-0.47.106.5.1 kernel-xen-base-3.0.101-0.47.106.5.1 kernel-xen-devel-3.0.101-0.47.106.5.1 - SUSE Linux Enterprise Debuginfo 11-SP3 (i586 s390x x86_64): kernel-default-debuginfo-3.0.101-0.47.106.5.1 kernel-default-debugsource-3.0.101-0.47.106.5.1 kernel-trace-debuginfo-3.0.101-0.47.106.5.1 kernel-trace-debugsource-3.0.101-0.47.106.5.1 - SUSE Linux Enterprise Debuginfo 11-SP3 (i586 x86_64): kernel-ec2-debuginfo-3.0.101-0.47.106.5.1 kernel-ec2-debugsource-3.0.101-0.47.106.5.1 kernel-xen-debuginfo-3.0.101-0.47.106.5.1 kernel-xen-debugsource-3.0.101-0.47.106.5.1 - SUSE Linux Enterprise Debuginfo 11-SP3 (x86_64): kernel-bigsmp-debuginfo-3.0.101-0.47.106.5.1 kernel-bigsmp-debugsource-3.0.101-0.47.106.5.1 - SUSE Linux Enterprise Debuginfo 11-SP3 (i586): kernel-pae-debuginfo-3.0.101-0.47.106.5.1 kernel-pae-debugsource-3.0.101-0.47.106.5.1 References: https://www.suse.com/security/cve/CVE-2016-10200.html https://www.suse.com/security/cve/CVE-2016-5243.html https://www.suse.com/security/cve/CVE-2017-1000112.html https://www.suse.com/security/cve/CVE-2017-1000363.html https://www.suse.com/security/cve/CVE-2017-1000365.html https://www.suse.com/security/cve/CVE-2017-1000380.html https://www.suse.com/security/cve/CVE-2017-10661.html https://www.suse.com/security/cve/CVE-2017-11176.html https://www.suse.com/security/cve/CVE-2017-11473.html https://www.suse.com/security/cve/CVE-2017-12762.html https://www.suse.com/security/cve/CVE-2017-14051.html https://www.suse.com/security/cve/CVE-2017-2647.html https://www.suse.com/security/cve/CVE-2017-2671.html https://www.suse.com/security/cve/CVE-2017-5669.html https://www.suse.com/security/cve/CVE-2017-5970.html https://www.suse.com/security/cve/CVE-2017-5986.html https://www.suse.com/security/cve/CVE-2017-6074.html https://www.suse.com/security/cve/CVE-2017-6214.html https://www.suse.com/security/cve/CVE-2017-6348.html https://www.suse.com/security/cve/CVE-2017-6353.html https://www.suse.com/security/cve/CVE-2017-6951.html https://www.suse.com/security/cve/CVE-2017-7184.html https://www.suse.com/security/cve/CVE-2017-7187.html https://www.suse.com/security/cve/CVE-2017-7261.html https://www.suse.com/security/cve/CVE-2017-7294.html https://www.suse.com/security/cve/CVE-2017-7308.html https://www.suse.com/security/cve/CVE-2017-7482.html https://www.suse.com/security/cve/CVE-2017-7487.html https://www.suse.com/security/cve/CVE-2017-7533.html https://www.suse.com/security/cve/CVE-2017-7542.html https://www.suse.com/security/cve/CVE-2017-7616.html https://www.suse.com/security/cve/CVE-2017-8831.html https://www.suse.com/security/cve/CVE-2017-8890.html https://www.suse.com/security/cve/CVE-2017-8924.html https://www.suse.com/security/cve/CVE-2017-8925.html https://www.suse.com/security/cve/CVE-2017-9074.html https://www.suse.com/security/cve/CVE-2017-9075.html https://www.suse.com/security/cve/CVE-2017-9076.html https://www.suse.com/security/cve/CVE-2017-9077.html https://www.suse.com/security/cve/CVE-2017-9242.html https://bugzilla.suse.com/1006919 https://bugzilla.suse.com/1012422 https://bugzilla.suse.com/1013862 https://bugzilla.suse.com/1017143 https://bugzilla.suse.com/1020229 https://bugzilla.suse.com/1021256 https://bugzilla.suse.com/1023051 https://bugzilla.suse.com/1024938 https://bugzilla.suse.com/1025013 https://bugzilla.suse.com/1025235 https://bugzilla.suse.com/1026024 https://bugzilla.suse.com/1026722 https://bugzilla.suse.com/1026914 https://bugzilla.suse.com/1027066 https://bugzilla.suse.com/1027101 https://bugzilla.suse.com/1027178 https://bugzilla.suse.com/1027179 https://bugzilla.suse.com/1027406 https://bugzilla.suse.com/1028415 https://bugzilla.suse.com/1028880 https://bugzilla.suse.com/1029212 https://bugzilla.suse.com/1029850 https://bugzilla.suse.com/1030213 https://bugzilla.suse.com/1030573 https://bugzilla.suse.com/1030575 https://bugzilla.suse.com/1030593 https://bugzilla.suse.com/1031003 https://bugzilla.suse.com/1031052 https://bugzilla.suse.com/1031440 https://bugzilla.suse.com/1031481 https://bugzilla.suse.com/1031579 https://bugzilla.suse.com/1031660 https://bugzilla.suse.com/1033287 https://bugzilla.suse.com/1033336 https://bugzilla.suse.com/1034670 https://bugzilla.suse.com/1034838 https://bugzilla.suse.com/1035576 https://bugzilla.suse.com/1037182 https://bugzilla.suse.com/1037183 https://bugzilla.suse.com/1037994 https://bugzilla.suse.com/1038544 https://bugzilla.suse.com/1038564 https://bugzilla.suse.com/1038879 https://bugzilla.suse.com/1038883 https://bugzilla.suse.com/1038981 https://bugzilla.suse.com/1038982 https://bugzilla.suse.com/1039349 https://bugzilla.suse.com/1039354 https://bugzilla.suse.com/1039456 https://bugzilla.suse.com/1039594 https://bugzilla.suse.com/1039882 https://bugzilla.suse.com/1039883 https://bugzilla.suse.com/1039885 https://bugzilla.suse.com/1040069 https://bugzilla.suse.com/1041431 https://bugzilla.suse.com/1042364 https://bugzilla.suse.com/1042863 https://bugzilla.suse.com/1042892 https://bugzilla.suse.com/1044125 https://bugzilla.suse.com/1045416 https://bugzilla.suse.com/1045487 https://bugzilla.suse.com/1046107 https://bugzilla.suse.com/1048232 https://bugzilla.suse.com/1048275 https://bugzilla.suse.com/1049483 https://bugzilla.suse.com/1049603 https://bugzilla.suse.com/1049882 https://bugzilla.suse.com/1050677 https://bugzilla.suse.com/1052311 https://bugzilla.suse.com/1053148 https://bugzilla.suse.com/1053152 https://bugzilla.suse.com/1053760 https://bugzilla.suse.com/1056588 https://bugzilla.suse.com/870618 https://bugzilla.suse.com/948562 https://bugzilla.suse.com/957988 https://bugzilla.suse.com/957990 https://bugzilla.suse.com/963655 https://bugzilla.suse.com/972891 https://bugzilla.suse.com/979681 https://bugzilla.suse.com/983212 https://bugzilla.suse.com/986924 https://bugzilla.suse.com/989896 https://bugzilla.suse.com/999245 From sle-security-updates at lists.suse.com Tue Sep 19 16:08:10 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 20 Sep 2017 00:08:10 +0200 (CEST) Subject: SUSE-SU-2017:2526-1: moderate: Security update for gcc48 Message-ID: <20170919220810.5AFAEFCAE@maintenance.suse.de> SUSE Security Update: Security update for gcc48 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2526-1 Rating: moderate References: #1011348 #1022062 #1028744 #1039513 #1044016 #1050947 #988274 Cross-References: CVE-2017-11671 Affected Products: SUSE OpenStack Cloud 6 SUSE Linux Enterprise Workstation Extension 12-SP3 SUSE Linux Enterprise Workstation Extension 12-SP2 SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server for SAP 12-SP1 SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Server 12-SP1-LTSS SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Desktop 12-SP3 SUSE Linux Enterprise Desktop 12-SP2 ______________________________________________________________________________ An update that solves one vulnerability and has 6 fixes is now available. Description: This update for gcc48 fixes the following issues: Security issues fixed: - A new option -fstack-clash-protection is now offered, which mitigates the stack clash type of attacks. [bnc#1039513] Future maintenance releases of packages will be built with this option. - CVE-2017-11671: Fixed rdrand/rdseed code generation issue [bsc#1050947] Bugs fixed: - Enable LFS support in 32bit libgcov.a. [bsc#1044016] - Bump libffi version in libffi.pc to 3.0.11. - Fix libffi issue for armv7l. [bsc#988274] - Properly diagnose missing -fsanitize=address support on ppc64le. [bnc#1028744] - Backport patch for PR65612. [bnc#1022062] - Fixed DR#1288. [bnc#1011348] Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud 6: zypper in -t patch SUSE-OpenStack-Cloud-6-2017-1564=1 - SUSE Linux Enterprise Workstation Extension 12-SP3: zypper in -t patch SUSE-SLE-WE-12-SP3-2017-1564=1 - SUSE Linux Enterprise Workstation Extension 12-SP2: zypper in -t patch SUSE-SLE-WE-12-SP2-2017-1564=1 - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2017-1564=1 - SUSE Linux Enterprise Software Development Kit 12-SP2: zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1564=1 - SUSE Linux Enterprise Server for SAP 12-SP1: zypper in -t patch SUSE-SLE-SAP-12-SP1-2017-1564=1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2: zypper in -t patch SUSE-SLE-RPI-12-SP2-2017-1564=1 - SUSE Linux Enterprise Server 12-SP3: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2017-1564=1 - SUSE Linux Enterprise Server 12-SP2: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1564=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1564=1 - SUSE Linux Enterprise Server 12-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-2017-1564=1 - SUSE Linux Enterprise Desktop 12-SP3: zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2017-1564=1 - SUSE Linux Enterprise Desktop 12-SP2: zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-1564=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE OpenStack Cloud 6 (noarch): gcc48-info-4.8.5-31.3.1 - SUSE OpenStack Cloud 6 (x86_64): cpp48-4.8.5-31.3.1 cpp48-debuginfo-4.8.5-31.3.1 gcc48-32bit-4.8.5-31.3.1 gcc48-4.8.5-31.3.1 gcc48-c++-4.8.5-31.3.1 gcc48-c++-debuginfo-4.8.5-31.3.1 gcc48-debuginfo-4.8.5-31.3.1 gcc48-debugsource-4.8.5-31.3.1 gcc48-locale-4.8.5-31.3.1 libasan0-32bit-4.8.5-31.3.1 libasan0-4.8.5-31.3.1 libasan0-debuginfo-4.8.5-31.3.1 libstdc++48-devel-32bit-4.8.5-31.3.1 libstdc++48-devel-4.8.5-31.3.1 - SUSE Linux Enterprise Workstation Extension 12-SP3 (x86_64): gcc48-gij-32bit-4.8.5-31.3.1 gcc48-gij-4.8.5-31.3.1 gcc48-gij-debuginfo-32bit-4.8.5-31.3.1 gcc48-gij-debuginfo-4.8.5-31.3.1 libgcj48-32bit-4.8.5-31.3.1 libgcj48-4.8.5-31.3.1 libgcj48-debuginfo-32bit-4.8.5-31.3.1 libgcj48-debuginfo-4.8.5-31.3.1 libgcj48-debugsource-4.8.5-31.3.1 libgcj48-jar-4.8.5-31.3.1 libgcj_bc1-4.8.5-31.3.1 - SUSE Linux Enterprise Workstation Extension 12-SP2 (x86_64): gcc48-gij-32bit-4.8.5-31.3.1 gcc48-gij-4.8.5-31.3.1 gcc48-gij-debuginfo-32bit-4.8.5-31.3.1 gcc48-gij-debuginfo-4.8.5-31.3.1 libgcj48-32bit-4.8.5-31.3.1 libgcj48-4.8.5-31.3.1 libgcj48-debuginfo-32bit-4.8.5-31.3.1 libgcj48-debuginfo-4.8.5-31.3.1 libgcj48-debugsource-4.8.5-31.3.1 libgcj48-jar-4.8.5-31.3.1 libgcj_bc1-4.8.5-31.3.1 - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 ppc64le s390x x86_64): gcc48-debuginfo-4.8.5-31.3.1 gcc48-debugsource-4.8.5-31.3.1 gcc48-fortran-4.8.5-31.3.1 gcc48-fortran-debuginfo-4.8.5-31.3.1 gcc48-gij-4.8.5-31.3.1 gcc48-gij-debuginfo-4.8.5-31.3.1 gcc48-java-4.8.5-31.3.1 gcc48-java-debuginfo-4.8.5-31.3.1 gcc48-obj-c++-4.8.5-31.3.1 gcc48-obj-c++-debuginfo-4.8.5-31.3.1 gcc48-objc-4.8.5-31.3.1 gcc48-objc-debuginfo-4.8.5-31.3.1 libffi48-debugsource-4.8.5-31.3.1 libffi48-devel-4.8.5-31.3.1 libgcj48-4.8.5-31.3.1 libgcj48-debuginfo-4.8.5-31.3.1 libgcj48-debugsource-4.8.5-31.3.1 libgcj48-devel-4.8.5-31.3.1 libgcj48-devel-debuginfo-4.8.5-31.3.1 libgcj48-jar-4.8.5-31.3.1 libgcj_bc1-4.8.5-31.3.1 libobjc4-4.8.5-31.3.1 libobjc4-debuginfo-4.8.5-31.3.1 - SUSE Linux Enterprise Software Development Kit 12-SP3 (s390x x86_64): gcc48-objc-32bit-4.8.5-31.3.1 libobjc4-32bit-4.8.5-31.3.1 - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64): gcc48-4.8.5-31.3.1 gcc48-c++-4.8.5-31.3.1 gcc48-c++-debuginfo-4.8.5-31.3.1 gcc48-locale-4.8.5-31.3.1 libstdc++48-devel-4.8.5-31.3.1 - SUSE Linux Enterprise Software Development Kit 12-SP3 (x86_64): gcc48-ada-4.8.5-31.3.1 gcc48-ada-debuginfo-4.8.5-31.3.1 libada48-4.8.5-31.3.1 libada48-debuginfo-4.8.5-31.3.1 - SUSE Linux Enterprise Software Development Kit 12-SP3 (noarch): gcc48-info-4.8.5-31.3.1 - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 ppc64le s390x x86_64): gcc48-debuginfo-4.8.5-31.3.1 gcc48-debugsource-4.8.5-31.3.1 gcc48-fortran-4.8.5-31.3.1 gcc48-fortran-debuginfo-4.8.5-31.3.1 gcc48-gij-4.8.5-31.3.1 gcc48-gij-debuginfo-4.8.5-31.3.1 gcc48-java-4.8.5-31.3.1 gcc48-java-debuginfo-4.8.5-31.3.1 gcc48-obj-c++-4.8.5-31.3.1 gcc48-obj-c++-debuginfo-4.8.5-31.3.1 gcc48-objc-4.8.5-31.3.1 gcc48-objc-debuginfo-4.8.5-31.3.1 libffi48-debugsource-4.8.5-31.3.1 libffi48-devel-4.8.5-31.3.1 libgcj48-4.8.5-31.3.1 libgcj48-debuginfo-4.8.5-31.3.1 libgcj48-debugsource-4.8.5-31.3.1 libgcj48-devel-4.8.5-31.3.1 libgcj48-devel-debuginfo-4.8.5-31.3.1 libgcj48-jar-4.8.5-31.3.1 libgcj_bc1-4.8.5-31.3.1 libobjc4-4.8.5-31.3.1 libobjc4-debuginfo-4.8.5-31.3.1 - SUSE Linux Enterprise Software Development Kit 12-SP2 (s390x x86_64): gcc48-objc-32bit-4.8.5-31.3.1 libobjc4-32bit-4.8.5-31.3.1 - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64): gcc48-4.8.5-31.3.1 gcc48-c++-4.8.5-31.3.1 gcc48-c++-debuginfo-4.8.5-31.3.1 gcc48-locale-4.8.5-31.3.1 libstdc++48-devel-4.8.5-31.3.1 - SUSE Linux Enterprise Software Development Kit 12-SP2 (x86_64): gcc48-ada-4.8.5-31.3.1 gcc48-ada-debuginfo-4.8.5-31.3.1 libada48-4.8.5-31.3.1 libada48-debuginfo-4.8.5-31.3.1 - SUSE Linux Enterprise Software Development Kit 12-SP2 (noarch): gcc48-info-4.8.5-31.3.1 - SUSE Linux Enterprise Server for SAP 12-SP1 (ppc64le x86_64): cpp48-4.8.5-31.3.1 cpp48-debuginfo-4.8.5-31.3.1 gcc48-4.8.5-31.3.1 gcc48-c++-4.8.5-31.3.1 gcc48-c++-debuginfo-4.8.5-31.3.1 gcc48-debuginfo-4.8.5-31.3.1 gcc48-debugsource-4.8.5-31.3.1 gcc48-locale-4.8.5-31.3.1 libstdc++48-devel-4.8.5-31.3.1 - SUSE Linux Enterprise Server for SAP 12-SP1 (x86_64): gcc48-32bit-4.8.5-31.3.1 libasan0-32bit-4.8.5-31.3.1 libasan0-4.8.5-31.3.1 libasan0-debuginfo-4.8.5-31.3.1 libstdc++48-devel-32bit-4.8.5-31.3.1 - SUSE Linux Enterprise Server for SAP 12-SP1 (noarch): gcc48-info-4.8.5-31.3.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (aarch64): cpp48-4.8.5-31.3.1 cpp48-debuginfo-4.8.5-31.3.1 gcc48-debuginfo-4.8.5-31.3.1 gcc48-debugsource-4.8.5-31.3.1 - SUSE Linux Enterprise Server 12-SP3 (aarch64 ppc64le s390x x86_64): cpp48-4.8.5-31.3.1 cpp48-debuginfo-4.8.5-31.3.1 gcc48-debuginfo-4.8.5-31.3.1 gcc48-debugsource-4.8.5-31.3.1 - SUSE Linux Enterprise Server 12-SP3 (ppc64le s390x x86_64): gcc48-4.8.5-31.3.1 gcc48-c++-4.8.5-31.3.1 gcc48-c++-debuginfo-4.8.5-31.3.1 gcc48-locale-4.8.5-31.3.1 libstdc++48-devel-4.8.5-31.3.1 - SUSE Linux Enterprise Server 12-SP3 (s390x x86_64): gcc48-32bit-4.8.5-31.3.1 libstdc++48-devel-32bit-4.8.5-31.3.1 - SUSE Linux Enterprise Server 12-SP3 (noarch): gcc48-info-4.8.5-31.3.1 - SUSE Linux Enterprise Server 12-SP3 (x86_64): libasan0-32bit-4.8.5-31.3.1 libasan0-4.8.5-31.3.1 libasan0-debuginfo-4.8.5-31.3.1 - SUSE Linux Enterprise Server 12-SP2 (aarch64 ppc64le s390x x86_64): cpp48-4.8.5-31.3.1 cpp48-debuginfo-4.8.5-31.3.1 gcc48-debuginfo-4.8.5-31.3.1 gcc48-debugsource-4.8.5-31.3.1 - SUSE Linux Enterprise Server 12-SP2 (ppc64le s390x x86_64): gcc48-4.8.5-31.3.1 gcc48-c++-4.8.5-31.3.1 gcc48-c++-debuginfo-4.8.5-31.3.1 gcc48-locale-4.8.5-31.3.1 libstdc++48-devel-4.8.5-31.3.1 - SUSE Linux Enterprise Server 12-SP2 (s390x x86_64): gcc48-32bit-4.8.5-31.3.1 libstdc++48-devel-32bit-4.8.5-31.3.1 - SUSE Linux Enterprise Server 12-SP2 (noarch): gcc48-info-4.8.5-31.3.1 - SUSE Linux Enterprise Server 12-SP2 (x86_64): libasan0-32bit-4.8.5-31.3.1 libasan0-4.8.5-31.3.1 libasan0-debuginfo-4.8.5-31.3.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (ppc64le s390x x86_64): cpp48-4.8.5-31.3.1 cpp48-debuginfo-4.8.5-31.3.1 gcc48-4.8.5-31.3.1 gcc48-c++-4.8.5-31.3.1 gcc48-c++-debuginfo-4.8.5-31.3.1 gcc48-debuginfo-4.8.5-31.3.1 gcc48-debugsource-4.8.5-31.3.1 gcc48-locale-4.8.5-31.3.1 libstdc++48-devel-4.8.5-31.3.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (s390x x86_64): gcc48-32bit-4.8.5-31.3.1 libstdc++48-devel-32bit-4.8.5-31.3.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (noarch): gcc48-info-4.8.5-31.3.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (x86_64): libasan0-32bit-4.8.5-31.3.1 libasan0-4.8.5-31.3.1 libasan0-debuginfo-4.8.5-31.3.1 - SUSE Linux Enterprise Server 12-LTSS (ppc64le s390x x86_64): cpp48-4.8.5-31.3.1 cpp48-debuginfo-4.8.5-31.3.1 gcc48-4.8.5-31.3.1 gcc48-c++-4.8.5-31.3.1 gcc48-c++-debuginfo-4.8.5-31.3.1 gcc48-debuginfo-4.8.5-31.3.1 gcc48-debugsource-4.8.5-31.3.1 gcc48-locale-4.8.5-31.3.1 libstdc++48-devel-4.8.5-31.3.1 - SUSE Linux Enterprise Server 12-LTSS (s390x x86_64): gcc48-32bit-4.8.5-31.3.1 libstdc++48-devel-32bit-4.8.5-31.3.1 - SUSE Linux Enterprise Server 12-LTSS (x86_64): libasan0-32bit-4.8.5-31.3.1 libasan0-32bit-debuginfo-4.8.5-31.3.1 libasan0-4.8.5-31.3.1 libasan0-debuginfo-4.8.5-31.3.1 - SUSE Linux Enterprise Server 12-LTSS (noarch): gcc48-info-4.8.5-31.3.1 - SUSE Linux Enterprise Desktop 12-SP3 (noarch): gcc48-info-4.8.5-31.3.1 - SUSE Linux Enterprise Desktop 12-SP3 (x86_64): cpp48-4.8.5-31.3.1 cpp48-debuginfo-4.8.5-31.3.1 gcc48-32bit-4.8.5-31.3.1 gcc48-4.8.5-31.3.1 gcc48-c++-4.8.5-31.3.1 gcc48-c++-debuginfo-4.8.5-31.3.1 gcc48-debuginfo-4.8.5-31.3.1 gcc48-debugsource-4.8.5-31.3.1 gcc48-gij-32bit-4.8.5-31.3.1 gcc48-gij-4.8.5-31.3.1 gcc48-gij-debuginfo-32bit-4.8.5-31.3.1 gcc48-gij-debuginfo-4.8.5-31.3.1 libasan0-32bit-4.8.5-31.3.1 libasan0-4.8.5-31.3.1 libasan0-debuginfo-4.8.5-31.3.1 libgcj48-32bit-4.8.5-31.3.1 libgcj48-4.8.5-31.3.1 libgcj48-debuginfo-32bit-4.8.5-31.3.1 libgcj48-debuginfo-4.8.5-31.3.1 libgcj48-debugsource-4.8.5-31.3.1 libgcj48-jar-4.8.5-31.3.1 libgcj_bc1-4.8.5-31.3.1 libstdc++48-devel-32bit-4.8.5-31.3.1 libstdc++48-devel-4.8.5-31.3.1 - SUSE Linux Enterprise Desktop 12-SP2 (noarch): gcc48-info-4.8.5-31.3.1 - SUSE Linux Enterprise Desktop 12-SP2 (x86_64): cpp48-4.8.5-31.3.1 cpp48-debuginfo-4.8.5-31.3.1 gcc48-32bit-4.8.5-31.3.1 gcc48-4.8.5-31.3.1 gcc48-c++-4.8.5-31.3.1 gcc48-c++-debuginfo-4.8.5-31.3.1 gcc48-debuginfo-4.8.5-31.3.1 gcc48-debugsource-4.8.5-31.3.1 gcc48-gij-32bit-4.8.5-31.3.1 gcc48-gij-4.8.5-31.3.1 gcc48-gij-debuginfo-32bit-4.8.5-31.3.1 gcc48-gij-debuginfo-4.8.5-31.3.1 libasan0-32bit-4.8.5-31.3.1 libasan0-4.8.5-31.3.1 libasan0-debuginfo-4.8.5-31.3.1 libgcj48-32bit-4.8.5-31.3.1 libgcj48-4.8.5-31.3.1 libgcj48-debuginfo-32bit-4.8.5-31.3.1 libgcj48-debuginfo-4.8.5-31.3.1 libgcj48-debugsource-4.8.5-31.3.1 libgcj48-jar-4.8.5-31.3.1 libgcj_bc1-4.8.5-31.3.1 libstdc++48-devel-32bit-4.8.5-31.3.1 libstdc++48-devel-4.8.5-31.3.1 References: https://www.suse.com/security/cve/CVE-2017-11671.html https://bugzilla.suse.com/1011348 https://bugzilla.suse.com/1022062 https://bugzilla.suse.com/1028744 https://bugzilla.suse.com/1039513 https://bugzilla.suse.com/1044016 https://bugzilla.suse.com/1050947 https://bugzilla.suse.com/988274 From sle-security-updates at lists.suse.com Wed Sep 20 07:08:02 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 20 Sep 2017 15:08:02 +0200 (CEST) Subject: SUSE-SU-2017:2529-1: important: Security update for emacs Message-ID: <20170920130802.69C9DFCAE@maintenance.suse.de> SUSE Security Update: Security update for emacs ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2529-1 Rating: important References: #1058425 Cross-References: CVE-2017-14482 Affected Products: SUSE OpenStack Cloud 6 SUSE Linux Enterprise Server for SAP 12-SP1 SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Server 12-SP1-LTSS SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Desktop 12-SP3 SUSE Linux Enterprise Desktop 12-SP2 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for emacs fixes one issues. This security issue was fixed: - CVE-2017-14482: Remote code execution via mails with "Content-Type: text/enriched" (bsc#1058425) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud 6: zypper in -t patch SUSE-OpenStack-Cloud-6-2017-1565=1 - SUSE Linux Enterprise Server for SAP 12-SP1: zypper in -t patch SUSE-SLE-SAP-12-SP1-2017-1565=1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2: zypper in -t patch SUSE-SLE-RPI-12-SP2-2017-1565=1 - SUSE Linux Enterprise Server 12-SP3: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2017-1565=1 - SUSE Linux Enterprise Server 12-SP2: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1565=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1565=1 - SUSE Linux Enterprise Server 12-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-2017-1565=1 - SUSE Linux Enterprise Desktop 12-SP3: zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2017-1565=1 - SUSE Linux Enterprise Desktop 12-SP2: zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-1565=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE OpenStack Cloud 6 (x86_64): emacs-24.3-25.3.1 emacs-debuginfo-24.3-25.3.1 emacs-debugsource-24.3-25.3.1 emacs-nox-24.3-25.3.1 emacs-nox-debuginfo-24.3-25.3.1 emacs-x11-24.3-25.3.1 emacs-x11-debuginfo-24.3-25.3.1 etags-24.3-25.3.1 etags-debuginfo-24.3-25.3.1 - SUSE OpenStack Cloud 6 (noarch): emacs-el-24.3-25.3.1 emacs-info-24.3-25.3.1 - SUSE Linux Enterprise Server for SAP 12-SP1 (ppc64le x86_64): emacs-24.3-25.3.1 emacs-debuginfo-24.3-25.3.1 emacs-debugsource-24.3-25.3.1 emacs-nox-24.3-25.3.1 emacs-nox-debuginfo-24.3-25.3.1 emacs-x11-24.3-25.3.1 emacs-x11-debuginfo-24.3-25.3.1 etags-24.3-25.3.1 etags-debuginfo-24.3-25.3.1 - SUSE Linux Enterprise Server for SAP 12-SP1 (noarch): emacs-el-24.3-25.3.1 emacs-info-24.3-25.3.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (aarch64): emacs-24.3-25.3.1 emacs-debuginfo-24.3-25.3.1 emacs-debugsource-24.3-25.3.1 emacs-nox-24.3-25.3.1 emacs-nox-debuginfo-24.3-25.3.1 emacs-x11-24.3-25.3.1 emacs-x11-debuginfo-24.3-25.3.1 etags-24.3-25.3.1 etags-debuginfo-24.3-25.3.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (noarch): emacs-el-24.3-25.3.1 emacs-info-24.3-25.3.1 - SUSE Linux Enterprise Server 12-SP3 (aarch64 ppc64le s390x x86_64): emacs-24.3-25.3.1 emacs-debuginfo-24.3-25.3.1 emacs-debugsource-24.3-25.3.1 emacs-nox-24.3-25.3.1 emacs-nox-debuginfo-24.3-25.3.1 emacs-x11-24.3-25.3.1 emacs-x11-debuginfo-24.3-25.3.1 etags-24.3-25.3.1 etags-debuginfo-24.3-25.3.1 - SUSE Linux Enterprise Server 12-SP3 (noarch): emacs-el-24.3-25.3.1 emacs-info-24.3-25.3.1 - SUSE Linux Enterprise Server 12-SP2 (aarch64 ppc64le s390x x86_64): emacs-24.3-25.3.1 emacs-debuginfo-24.3-25.3.1 emacs-debugsource-24.3-25.3.1 emacs-nox-24.3-25.3.1 emacs-nox-debuginfo-24.3-25.3.1 emacs-x11-24.3-25.3.1 emacs-x11-debuginfo-24.3-25.3.1 etags-24.3-25.3.1 etags-debuginfo-24.3-25.3.1 - SUSE Linux Enterprise Server 12-SP2 (noarch): emacs-el-24.3-25.3.1 emacs-info-24.3-25.3.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (ppc64le s390x x86_64): emacs-24.3-25.3.1 emacs-debuginfo-24.3-25.3.1 emacs-debugsource-24.3-25.3.1 emacs-nox-24.3-25.3.1 emacs-nox-debuginfo-24.3-25.3.1 emacs-x11-24.3-25.3.1 emacs-x11-debuginfo-24.3-25.3.1 etags-24.3-25.3.1 etags-debuginfo-24.3-25.3.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (noarch): emacs-el-24.3-25.3.1 emacs-info-24.3-25.3.1 - SUSE Linux Enterprise Server 12-LTSS (ppc64le s390x x86_64): emacs-24.3-25.3.1 emacs-debuginfo-24.3-25.3.1 emacs-debugsource-24.3-25.3.1 emacs-nox-24.3-25.3.1 emacs-nox-debuginfo-24.3-25.3.1 emacs-x11-24.3-25.3.1 emacs-x11-debuginfo-24.3-25.3.1 etags-24.3-25.3.1 etags-debuginfo-24.3-25.3.1 - SUSE Linux Enterprise Server 12-LTSS (noarch): emacs-el-24.3-25.3.1 emacs-info-24.3-25.3.1 - SUSE Linux Enterprise Desktop 12-SP3 (x86_64): emacs-24.3-25.3.1 emacs-debuginfo-24.3-25.3.1 emacs-debugsource-24.3-25.3.1 emacs-x11-24.3-25.3.1 emacs-x11-debuginfo-24.3-25.3.1 etags-24.3-25.3.1 etags-debuginfo-24.3-25.3.1 - SUSE Linux Enterprise Desktop 12-SP3 (noarch): emacs-info-24.3-25.3.1 - SUSE Linux Enterprise Desktop 12-SP2 (x86_64): emacs-24.3-25.3.1 emacs-debuginfo-24.3-25.3.1 emacs-debugsource-24.3-25.3.1 emacs-x11-24.3-25.3.1 emacs-x11-debuginfo-24.3-25.3.1 etags-24.3-25.3.1 etags-debuginfo-24.3-25.3.1 - SUSE Linux Enterprise Desktop 12-SP2 (noarch): emacs-info-24.3-25.3.1 References: https://www.suse.com/security/cve/CVE-2017-14482.html https://bugzilla.suse.com/1058425 From sle-security-updates at lists.suse.com Wed Sep 20 10:09:17 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 20 Sep 2017 18:09:17 +0200 (CEST) Subject: SUSE-SU-2017:2532-1: important: Security update for emacs Message-ID: <20170920160917.D46C9FCAE@maintenance.suse.de> SUSE Security Update: Security update for emacs ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2532-1 Rating: important References: #1058425 Cross-References: CVE-2017-14482 Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 SUSE Linux Enterprise Server 11-SP3-LTSS SUSE Linux Enterprise Point of Sale 11-SP3 SUSE Linux Enterprise Debuginfo 11-SP4 SUSE Linux Enterprise Debuginfo 11-SP3 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for emacs fixes one issues. This security issue was fixed: - CVE-2017-14482: Remote code execution via mails with "Content-Type: text/enriched" (bsc#1058425) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 11-SP4: zypper in -t patch sdksp4-emacs-13285=1 - SUSE Linux Enterprise Server 11-SP4: zypper in -t patch slessp4-emacs-13285=1 - SUSE Linux Enterprise Server 11-SP3-LTSS: zypper in -t patch slessp3-emacs-13285=1 - SUSE Linux Enterprise Point of Sale 11-SP3: zypper in -t patch sleposp3-emacs-13285=1 - SUSE Linux Enterprise Debuginfo 11-SP4: zypper in -t patch dbgsp4-emacs-13285=1 - SUSE Linux Enterprise Debuginfo 11-SP3: zypper in -t patch dbgsp3-emacs-13285=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 11-SP4 (i586 x86_64): emacs-nox-22.3-42.3.1 - SUSE Linux Enterprise Server 11-SP4 (i586 ia64 ppc64 s390x x86_64): emacs-22.3-42.3.1 emacs-el-22.3-42.3.1 emacs-info-22.3-42.3.1 emacs-nox-22.3-42.3.1 emacs-x11-22.3-42.3.1 - SUSE Linux Enterprise Server 11-SP3-LTSS (i586 s390x x86_64): emacs-22.3-42.3.1 emacs-el-22.3-42.3.1 emacs-info-22.3-42.3.1 emacs-nox-22.3-42.3.1 emacs-x11-22.3-42.3.1 - SUSE Linux Enterprise Point of Sale 11-SP3 (i586): emacs-22.3-42.3.1 emacs-el-22.3-42.3.1 emacs-info-22.3-42.3.1 emacs-nox-22.3-42.3.1 emacs-x11-22.3-42.3.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ia64 ppc64 s390x x86_64): emacs-debuginfo-22.3-42.3.1 emacs-debugsource-22.3-42.3.1 - SUSE Linux Enterprise Debuginfo 11-SP3 (i586 s390x x86_64): emacs-debuginfo-22.3-42.3.1 emacs-debugsource-22.3-42.3.1 References: https://www.suse.com/security/cve/CVE-2017-14482.html https://bugzilla.suse.com/1058425 From sle-security-updates at lists.suse.com Wed Sep 20 13:07:50 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Wed, 20 Sep 2017 21:07:50 +0200 (CEST) Subject: SUSE-SU-2017:2534-1: important: Security update for the Linux Kernel Message-ID: <20170920190750.29112FC9D@maintenance.suse.de> SUSE Security Update: Security update for the Linux Kernel ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2534-1 Rating: important References: #1057389 Cross-References: CVE-2017-1000251 Affected Products: SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Module for Public Cloud 12 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: The SUSE Linux Enterprise 12 GA kernel was updated to receive the following security fixes: - CVE-2017-1000251: The native Bluetooth stack in the Linux Kernel was vulnerable to a stack overflow while processing L2CAP configuration responses, resulting in a potential remote denial-of-service vulnerability but no remote code execution due to use of CONFIG_CC_STACKPROTECTOR. [bnc#1057389] Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 12-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-2017-1569=1 - SUSE Linux Enterprise Module for Public Cloud 12: zypper in -t patch SUSE-SLE-Module-Public-Cloud-12-2017-1569=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server 12-LTSS (ppc64le s390x x86_64): kernel-default-3.12.61-52.92.1 kernel-default-base-3.12.61-52.92.1 kernel-default-base-debuginfo-3.12.61-52.92.1 kernel-default-debuginfo-3.12.61-52.92.1 kernel-default-debugsource-3.12.61-52.92.1 kernel-default-devel-3.12.61-52.92.1 kernel-syms-3.12.61-52.92.1 - SUSE Linux Enterprise Server 12-LTSS (x86_64): kernel-xen-3.12.61-52.92.1 kernel-xen-base-3.12.61-52.92.1 kernel-xen-base-debuginfo-3.12.61-52.92.1 kernel-xen-debuginfo-3.12.61-52.92.1 kernel-xen-debugsource-3.12.61-52.92.1 kernel-xen-devel-3.12.61-52.92.1 kgraft-patch-3_12_61-52_92-default-1-2.1 kgraft-patch-3_12_61-52_92-xen-1-2.1 - SUSE Linux Enterprise Server 12-LTSS (noarch): kernel-devel-3.12.61-52.92.1 kernel-macros-3.12.61-52.92.1 kernel-source-3.12.61-52.92.1 - SUSE Linux Enterprise Server 12-LTSS (s390x): kernel-default-man-3.12.61-52.92.1 - SUSE Linux Enterprise Module for Public Cloud 12 (x86_64): kernel-ec2-3.12.61-52.92.1 kernel-ec2-debuginfo-3.12.61-52.92.1 kernel-ec2-debugsource-3.12.61-52.92.1 kernel-ec2-devel-3.12.61-52.92.1 kernel-ec2-extra-3.12.61-52.92.1 kernel-ec2-extra-debuginfo-3.12.61-52.92.1 References: https://www.suse.com/security/cve/CVE-2017-1000251.html https://bugzilla.suse.com/1057389 From sle-security-updates at lists.suse.com Thu Sep 21 13:07:58 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 21 Sep 2017 21:07:58 +0200 (CEST) Subject: SUSE-SU-2017:2541-1: important: Security update for xen Message-ID: <20170921190758.0923EFC9D@maintenance.suse.de> SUSE Security Update: Security update for xen ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2541-1 Rating: important References: #1002573 #1027519 #1032598 #1037413 #1046637 #1047675 #1048920 #1049578 #1051787 #1051788 #1052686 #1056278 #1056281 #1056282 Cross-References: CVE-2017-10664 CVE-2017-10806 CVE-2017-11334 CVE-2017-11434 CVE-2017-12135 CVE-2017-12137 CVE-2017-12855 CVE-2017-14316 CVE-2017-14317 CVE-2017-14319 Affected Products: SUSE Linux Enterprise Server for SAP 12 SUSE Linux Enterprise Server 12-LTSS ______________________________________________________________________________ An update that solves 10 vulnerabilities and has four fixes is now available. Description: This update for xen fixes several issues. These security issues were fixed: - CVE-2017-12135: Unbounded recursion in grant table code allowed a malicious guest to crash the host or potentially escalate privileges/leak information (XSA-226, bsc#1051787). - CVE-2017-12137: Incorrectly-aligned updates to pagetables allowed for privilege escalation (XSA-227, bsc#1051788). - CVE-2017-11334: The address_space_write_continue function in exec.c allowed local guest OS privileged users to cause a denial of service (out-of-bounds access and guest instance crash) by leveraging use of qemu_map_ram_ptr to access guest ram block area (bsc#1048920). - CVE-2017-11434: The dhcp_decode function in slirp/bootp.c allowed local guest OS users to cause a denial of service (out-of-bounds read) via a crafted DHCP options string (bsc#1049578). - CVE-2017-10806: Stack-based buffer overflow in hw/usb/redirect.c allowed local guest OS users to cause a denial of service via vectors related to logging debug messages (bsc#1047675). - CVE-2017-10664: qemu-nbd did not ignore SIGPIPE, which allowed remote attackers to cause a denial of service (daemon crash) by disconnecting during a server-to-client reply attempt (bsc#1046637). - CVE-2017-12855: Premature clearing of GTF_writing / GTF_reading lead to potentially leaking sensitive information (XSA-230, bsc#1052686). - CVE-2017-14316: Missing bound check in function `alloc_heap_pages` for an internal array allowed attackers using crafted hypercalls to execute arbitrary code within Xen (XSA-231, bsc#1056278) - CVE-2017-14317: A race in cxenstored may have cause a double-free allowind for DoS of the xenstored daemon (XSA-233, bsc#1056281). - CVE-2017-14319: An error while handling grant mappings allowed malicious or buggy x86 PV guest to escalate its privileges or crash the hypervisor (XSA-234, bsc#1056282). These non-security issues were fixed: - bsc#1002573: Optimized LVM functions in block-dmmd block-dmmd - bsc#1032598: Prevent removal of NVME devices - bsc#1037413: Support for newer intel cpu's, mwait-idle driver and skylake Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server for SAP 12: zypper in -t patch SUSE-SLE-SAP-12-2017-1576=1 - SUSE Linux Enterprise Server 12-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-2017-1576=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server for SAP 12 (x86_64): xen-4.4.4_22-22.51.2 xen-debugsource-4.4.4_22-22.51.2 xen-doc-html-4.4.4_22-22.51.2 xen-kmp-default-4.4.4_22_k3.12.61_52.89-22.51.2 xen-kmp-default-debuginfo-4.4.4_22_k3.12.61_52.89-22.51.2 xen-libs-32bit-4.4.4_22-22.51.2 xen-libs-4.4.4_22-22.51.2 xen-libs-debuginfo-32bit-4.4.4_22-22.51.2 xen-libs-debuginfo-4.4.4_22-22.51.2 xen-tools-4.4.4_22-22.51.2 xen-tools-debuginfo-4.4.4_22-22.51.2 xen-tools-domU-4.4.4_22-22.51.2 xen-tools-domU-debuginfo-4.4.4_22-22.51.2 - SUSE Linux Enterprise Server 12-LTSS (x86_64): xen-4.4.4_22-22.51.2 xen-debugsource-4.4.4_22-22.51.2 xen-doc-html-4.4.4_22-22.51.2 xen-kmp-default-4.4.4_22_k3.12.61_52.89-22.51.2 xen-kmp-default-debuginfo-4.4.4_22_k3.12.61_52.89-22.51.2 xen-libs-32bit-4.4.4_22-22.51.2 xen-libs-4.4.4_22-22.51.2 xen-libs-debuginfo-32bit-4.4.4_22-22.51.2 xen-libs-debuginfo-4.4.4_22-22.51.2 xen-tools-4.4.4_22-22.51.2 xen-tools-debuginfo-4.4.4_22-22.51.2 xen-tools-domU-4.4.4_22-22.51.2 xen-tools-domU-debuginfo-4.4.4_22-22.51.2 References: https://www.suse.com/security/cve/CVE-2017-10664.html https://www.suse.com/security/cve/CVE-2017-10806.html https://www.suse.com/security/cve/CVE-2017-11334.html https://www.suse.com/security/cve/CVE-2017-11434.html https://www.suse.com/security/cve/CVE-2017-12135.html https://www.suse.com/security/cve/CVE-2017-12137.html https://www.suse.com/security/cve/CVE-2017-12855.html https://www.suse.com/security/cve/CVE-2017-14316.html https://www.suse.com/security/cve/CVE-2017-14317.html https://www.suse.com/security/cve/CVE-2017-14319.html https://bugzilla.suse.com/1002573 https://bugzilla.suse.com/1027519 https://bugzilla.suse.com/1032598 https://bugzilla.suse.com/1037413 https://bugzilla.suse.com/1046637 https://bugzilla.suse.com/1047675 https://bugzilla.suse.com/1048920 https://bugzilla.suse.com/1049578 https://bugzilla.suse.com/1051787 https://bugzilla.suse.com/1051788 https://bugzilla.suse.com/1052686 https://bugzilla.suse.com/1056278 https://bugzilla.suse.com/1056281 https://bugzilla.suse.com/1056282 From sle-security-updates at lists.suse.com Thu Sep 21 13:10:31 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 21 Sep 2017 21:10:31 +0200 (CEST) Subject: SUSE-SU-2017:2542-1: moderate: Security update for apache2 Message-ID: <20170921191031.7B894FC9D@maintenance.suse.de> SUSE Security Update: Security update for apache2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2542-1 Rating: moderate References: #1058058 Cross-References: CVE-2017-9798 Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Server 12-SP2 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for apache2 fixes the following security issue: - CVE-2017-9798: Prevent use-after-free use of memory that allowed for an information leak via OPTIONS (bsc#1058058). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2017-1572=1 - SUSE Linux Enterprise Software Development Kit 12-SP2: zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1572=1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2: zypper in -t patch SUSE-SLE-RPI-12-SP2-2017-1572=1 - SUSE Linux Enterprise Server 12-SP3: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2017-1572=1 - SUSE Linux Enterprise Server 12-SP2: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1572=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 ppc64le s390x x86_64): apache2-debuginfo-2.4.23-29.6.1 apache2-debugsource-2.4.23-29.6.1 apache2-devel-2.4.23-29.6.1 - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 ppc64le s390x x86_64): apache2-debuginfo-2.4.23-29.6.1 apache2-debugsource-2.4.23-29.6.1 apache2-devel-2.4.23-29.6.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (aarch64): apache2-2.4.23-29.6.1 apache2-debuginfo-2.4.23-29.6.1 apache2-debugsource-2.4.23-29.6.1 apache2-example-pages-2.4.23-29.6.1 apache2-prefork-2.4.23-29.6.1 apache2-prefork-debuginfo-2.4.23-29.6.1 apache2-utils-2.4.23-29.6.1 apache2-utils-debuginfo-2.4.23-29.6.1 apache2-worker-2.4.23-29.6.1 apache2-worker-debuginfo-2.4.23-29.6.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (noarch): apache2-doc-2.4.23-29.6.1 - SUSE Linux Enterprise Server 12-SP3 (aarch64 ppc64le s390x x86_64): apache2-2.4.23-29.6.1 apache2-debuginfo-2.4.23-29.6.1 apache2-debugsource-2.4.23-29.6.1 apache2-example-pages-2.4.23-29.6.1 apache2-prefork-2.4.23-29.6.1 apache2-prefork-debuginfo-2.4.23-29.6.1 apache2-utils-2.4.23-29.6.1 apache2-utils-debuginfo-2.4.23-29.6.1 apache2-worker-2.4.23-29.6.1 apache2-worker-debuginfo-2.4.23-29.6.1 - SUSE Linux Enterprise Server 12-SP3 (noarch): apache2-doc-2.4.23-29.6.1 - SUSE Linux Enterprise Server 12-SP2 (aarch64 ppc64le s390x x86_64): apache2-2.4.23-29.6.1 apache2-debuginfo-2.4.23-29.6.1 apache2-debugsource-2.4.23-29.6.1 apache2-example-pages-2.4.23-29.6.1 apache2-prefork-2.4.23-29.6.1 apache2-prefork-debuginfo-2.4.23-29.6.1 apache2-utils-2.4.23-29.6.1 apache2-utils-debuginfo-2.4.23-29.6.1 apache2-worker-2.4.23-29.6.1 apache2-worker-debuginfo-2.4.23-29.6.1 - SUSE Linux Enterprise Server 12-SP2 (noarch): apache2-doc-2.4.23-29.6.1 References: https://www.suse.com/security/cve/CVE-2017-9798.html https://bugzilla.suse.com/1058058 From sle-security-updates at lists.suse.com Thu Sep 21 13:15:20 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 21 Sep 2017 21:15:20 +0200 (CEST) Subject: SUSE-SU-2017:2546-1: moderate: Security update for libzip Message-ID: <20170921191520.E1FE1FCA4@maintenance.suse.de> SUSE Security Update: Security update for libzip ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2546-1 Rating: moderate References: #1056996 Cross-References: CVE-2017-14107 Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP3 SUSE Linux Enterprise Desktop 12-SP2 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for libzip fixes one issues. This security issue was fixed: - CVE-2017-14107: The _zip_read_eocd64 function mishandled EOCD records, which allowed remote attackers to cause a denial of service (memory allocation failure in _zip_cdir_grow in zip_dirent.c) via a crafted ZIP archive (bsc#1056996). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2017-1570=1 - SUSE Linux Enterprise Software Development Kit 12-SP2: zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1570=1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2: zypper in -t patch SUSE-SLE-RPI-12-SP2-2017-1570=1 - SUSE Linux Enterprise Server 12-SP3: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2017-1570=1 - SUSE Linux Enterprise Server 12-SP2: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1570=1 - SUSE Linux Enterprise Desktop 12-SP3: zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2017-1570=1 - SUSE Linux Enterprise Desktop 12-SP2: zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-1570=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 ppc64le s390x x86_64): libzip-debuginfo-0.11.1-13.3.1 libzip-debugsource-0.11.1-13.3.1 libzip-devel-0.11.1-13.3.1 - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 ppc64le s390x x86_64): libzip-debuginfo-0.11.1-13.3.1 libzip-debugsource-0.11.1-13.3.1 libzip-devel-0.11.1-13.3.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (aarch64): libzip-debuginfo-0.11.1-13.3.1 libzip-debugsource-0.11.1-13.3.1 libzip2-0.11.1-13.3.1 libzip2-debuginfo-0.11.1-13.3.1 - SUSE Linux Enterprise Server 12-SP3 (aarch64 ppc64le s390x x86_64): libzip-debuginfo-0.11.1-13.3.1 libzip-debugsource-0.11.1-13.3.1 libzip2-0.11.1-13.3.1 libzip2-debuginfo-0.11.1-13.3.1 - SUSE Linux Enterprise Server 12-SP2 (aarch64 ppc64le s390x x86_64): libzip-debuginfo-0.11.1-13.3.1 libzip-debugsource-0.11.1-13.3.1 libzip2-0.11.1-13.3.1 libzip2-debuginfo-0.11.1-13.3.1 - SUSE Linux Enterprise Desktop 12-SP3 (x86_64): libzip-debuginfo-0.11.1-13.3.1 libzip-debugsource-0.11.1-13.3.1 libzip2-0.11.1-13.3.1 libzip2-debuginfo-0.11.1-13.3.1 - SUSE Linux Enterprise Desktop 12-SP2 (x86_64): libzip-debuginfo-0.11.1-13.3.1 libzip-debugsource-0.11.1-13.3.1 libzip2-0.11.1-13.3.1 libzip2-debuginfo-0.11.1-13.3.1 References: https://www.suse.com/security/cve/CVE-2017-14107.html https://bugzilla.suse.com/1056996 From sle-security-updates at lists.suse.com Thu Sep 21 13:16:31 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 21 Sep 2017 21:16:31 +0200 (CEST) Subject: SUSE-SU-2017:2548-1: important: Security update for the Linux Kernel Message-ID: <20170921191631.93E29FC9D@maintenance.suse.de> SUSE Security Update: Security update for the Linux Kernel ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2548-1 Rating: important References: #1057389 Cross-References: CVE-2017-1000251 Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 SUSE Linux Enterprise Server 11-EXTRA SUSE Linux Enterprise Debuginfo 11-SP4 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: The SUSE Linux Enterprise 11 SP4 kernel was updated to receive the following security fixes: - CVE-2017-1000251: The native Bluetooth stack in the Linux Kernel was vulnerable to a stack overflow while processing L2CAP configuration responses, resulting in a potential remote code execution vulnerability. [bnc#1057389] Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 11-SP4: zypper in -t patch sdksp4-kernel-source-13286=1 - SUSE Linux Enterprise Server 11-SP4: zypper in -t patch slessp4-kernel-source-13286=1 - SUSE Linux Enterprise Server 11-EXTRA: zypper in -t patch slexsp3-kernel-source-13286=1 - SUSE Linux Enterprise Debuginfo 11-SP4: zypper in -t patch dbgsp4-kernel-source-13286=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 11-SP4 (noarch): kernel-docs-3.0.101-108.10.2 - SUSE Linux Enterprise Server 11-SP4 (i586 ia64 ppc64 s390x x86_64): kernel-default-3.0.101-108.10.1 kernel-default-base-3.0.101-108.10.1 kernel-default-devel-3.0.101-108.10.1 kernel-source-3.0.101-108.10.1 kernel-syms-3.0.101-108.10.1 kernel-trace-3.0.101-108.10.1 kernel-trace-base-3.0.101-108.10.1 kernel-trace-devel-3.0.101-108.10.1 - SUSE Linux Enterprise Server 11-SP4 (i586 x86_64): kernel-ec2-3.0.101-108.10.1 kernel-ec2-base-3.0.101-108.10.1 kernel-ec2-devel-3.0.101-108.10.1 kernel-xen-3.0.101-108.10.1 kernel-xen-base-3.0.101-108.10.1 kernel-xen-devel-3.0.101-108.10.1 - SUSE Linux Enterprise Server 11-SP4 (ppc64): kernel-bigmem-3.0.101-108.10.1 kernel-bigmem-base-3.0.101-108.10.1 kernel-bigmem-devel-3.0.101-108.10.1 kernel-ppc64-3.0.101-108.10.1 kernel-ppc64-base-3.0.101-108.10.1 kernel-ppc64-devel-3.0.101-108.10.1 - SUSE Linux Enterprise Server 11-SP4 (s390x): kernel-default-man-3.0.101-108.10.1 - SUSE Linux Enterprise Server 11-SP4 (i586): kernel-pae-3.0.101-108.10.1 kernel-pae-base-3.0.101-108.10.1 kernel-pae-devel-3.0.101-108.10.1 - SUSE Linux Enterprise Server 11-EXTRA (i586 ia64 ppc64 s390x x86_64): kernel-default-extra-3.0.101-108.10.1 - SUSE Linux Enterprise Server 11-EXTRA (i586 x86_64): kernel-xen-extra-3.0.101-108.10.1 - SUSE Linux Enterprise Server 11-EXTRA (x86_64): kernel-trace-extra-3.0.101-108.10.1 - SUSE Linux Enterprise Server 11-EXTRA (ppc64): kernel-ppc64-extra-3.0.101-108.10.1 - SUSE Linux Enterprise Server 11-EXTRA (i586): kernel-pae-extra-3.0.101-108.10.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ia64 ppc64 s390x x86_64): kernel-default-debuginfo-3.0.101-108.10.1 kernel-default-debugsource-3.0.101-108.10.1 kernel-trace-debuginfo-3.0.101-108.10.1 kernel-trace-debugsource-3.0.101-108.10.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ia64 s390x x86_64): kernel-default-devel-debuginfo-3.0.101-108.10.1 kernel-trace-devel-debuginfo-3.0.101-108.10.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 x86_64): kernel-ec2-debuginfo-3.0.101-108.10.1 kernel-ec2-debugsource-3.0.101-108.10.1 kernel-xen-debuginfo-3.0.101-108.10.1 kernel-xen-debugsource-3.0.101-108.10.1 kernel-xen-devel-debuginfo-3.0.101-108.10.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (ppc64): kernel-bigmem-debuginfo-3.0.101-108.10.1 kernel-bigmem-debugsource-3.0.101-108.10.1 kernel-ppc64-debuginfo-3.0.101-108.10.1 kernel-ppc64-debugsource-3.0.101-108.10.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586): kernel-pae-debuginfo-3.0.101-108.10.1 kernel-pae-debugsource-3.0.101-108.10.1 kernel-pae-devel-debuginfo-3.0.101-108.10.1 References: https://www.suse.com/security/cve/CVE-2017-1000251.html https://bugzilla.suse.com/1057389 From sle-security-updates at lists.suse.com Fri Sep 22 07:10:25 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Fri, 22 Sep 2017 15:10:25 +0200 (CEST) Subject: SUSE-SU-2017:2552-1: important: Security update for spice Message-ID: <20170922131025.63AF1FCAF@maintenance.suse.de> SUSE Security Update: Security update for spice ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2552-1 Rating: important References: #1046779 Cross-References: CVE-2017-7506 Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Desktop 12-SP3 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for spice fixes the following security issues: - CVE-2017-7506: Fixed an out-of-bounds memory access when processing specially crafted messages from authenticated attacker to the spice server resulting into crash and/or server memory leak (bsc#1046779). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2017-1581=1 - SUSE Linux Enterprise Server 12-SP3: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2017-1581=1 - SUSE Linux Enterprise Desktop 12-SP3: zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2017-1581=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 ppc64le s390x x86_64): libspice-server-devel-0.12.8-3.9 spice-debugsource-0.12.8-3.9 - SUSE Linux Enterprise Server 12-SP3 (aarch64 ppc64le s390x x86_64): libspice-server1-0.12.8-3.9 libspice-server1-debuginfo-0.12.8-3.9 spice-debugsource-0.12.8-3.9 - SUSE Linux Enterprise Desktop 12-SP3 (x86_64): libspice-server1-0.12.8-3.9 libspice-server1-debuginfo-0.12.8-3.9 spice-debugsource-0.12.8-3.9 References: https://www.suse.com/security/cve/CVE-2017-7506.html https://bugzilla.suse.com/1046779 From sle-security-updates at lists.suse.com Fri Sep 22 10:08:46 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Fri, 22 Sep 2017 18:08:46 +0200 (CEST) Subject: SUSE-SU-2017:2555-1: moderate: Security update for wireshark Message-ID: <20170922160846.DAF99FC9D@maintenance.suse.de> SUSE Security Update: Security update for wireshark ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2555-1 Rating: moderate References: #1044417 #1045341 #1056248 #1056249 #1056251 Cross-References: CVE-2017-13765 CVE-2017-13766 CVE-2017-13767 CVE-2017-9617 CVE-2017-9766 Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP3 SUSE Linux Enterprise Desktop 12-SP2 ______________________________________________________________________________ An update that fixes 5 vulnerabilities is now available. Description: This update for wireshark to version 2.2.9 fixes several issues. These security issues were fixed: - CVE-2017-13767: The MSDP dissector could have gone into an infinite loop. This was addressed by adding length validation (bsc#1056248). - CVE-2017-13766: The Profinet I/O dissector could have crash with an out-of-bounds write. This was addressed by adding string validation (bsc#1056249). - CVE-2017-13765: The IrCOMM dissector had a buffer over-read and application crash. This was addressed by adding length validation (bsc#1056251). - CVE-2017-9766: PROFINET IO data with a high recursion depth allowed remote attackers to cause a denial of service (stack exhaustion) in the dissect_IODWriteReq function (bsc#1045341). - CVE-2017-9617: Deeply nested DAAP data may have cause stack exhaustion (uncontrolled recursion) in the dissect_daap_one_tag function in the DAAP dissector (bsc#1044417). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2017-1583=1 - SUSE Linux Enterprise Software Development Kit 12-SP2: zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1583=1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2: zypper in -t patch SUSE-SLE-RPI-12-SP2-2017-1583=1 - SUSE Linux Enterprise Server 12-SP3: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2017-1583=1 - SUSE Linux Enterprise Server 12-SP2: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1583=1 - SUSE Linux Enterprise Desktop 12-SP3: zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2017-1583=1 - SUSE Linux Enterprise Desktop 12-SP2: zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-1583=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 ppc64le s390x x86_64): wireshark-debuginfo-2.2.9-48.9.2 wireshark-debugsource-2.2.9-48.9.2 wireshark-devel-2.2.9-48.9.2 - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 ppc64le s390x x86_64): wireshark-debuginfo-2.2.9-48.9.2 wireshark-debugsource-2.2.9-48.9.2 wireshark-devel-2.2.9-48.9.2 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (aarch64): libwireshark8-2.2.9-48.9.2 libwireshark8-debuginfo-2.2.9-48.9.2 libwiretap6-2.2.9-48.9.2 libwiretap6-debuginfo-2.2.9-48.9.2 libwscodecs1-2.2.9-48.9.2 libwscodecs1-debuginfo-2.2.9-48.9.2 libwsutil7-2.2.9-48.9.2 libwsutil7-debuginfo-2.2.9-48.9.2 wireshark-2.2.9-48.9.2 wireshark-debuginfo-2.2.9-48.9.2 wireshark-debugsource-2.2.9-48.9.2 wireshark-gtk-2.2.9-48.9.2 wireshark-gtk-debuginfo-2.2.9-48.9.2 - SUSE Linux Enterprise Server 12-SP3 (aarch64 ppc64le s390x x86_64): libwireshark8-2.2.9-48.9.2 libwireshark8-debuginfo-2.2.9-48.9.2 libwiretap6-2.2.9-48.9.2 libwiretap6-debuginfo-2.2.9-48.9.2 libwscodecs1-2.2.9-48.9.2 libwscodecs1-debuginfo-2.2.9-48.9.2 libwsutil7-2.2.9-48.9.2 libwsutil7-debuginfo-2.2.9-48.9.2 wireshark-2.2.9-48.9.2 wireshark-debuginfo-2.2.9-48.9.2 wireshark-debugsource-2.2.9-48.9.2 wireshark-gtk-2.2.9-48.9.2 wireshark-gtk-debuginfo-2.2.9-48.9.2 - SUSE Linux Enterprise Server 12-SP2 (aarch64 ppc64le s390x x86_64): libwireshark8-2.2.9-48.9.2 libwireshark8-debuginfo-2.2.9-48.9.2 libwiretap6-2.2.9-48.9.2 libwiretap6-debuginfo-2.2.9-48.9.2 libwscodecs1-2.2.9-48.9.2 libwscodecs1-debuginfo-2.2.9-48.9.2 libwsutil7-2.2.9-48.9.2 libwsutil7-debuginfo-2.2.9-48.9.2 wireshark-2.2.9-48.9.2 wireshark-debuginfo-2.2.9-48.9.2 wireshark-debugsource-2.2.9-48.9.2 wireshark-gtk-2.2.9-48.9.2 wireshark-gtk-debuginfo-2.2.9-48.9.2 - SUSE Linux Enterprise Desktop 12-SP3 (x86_64): libwireshark8-2.2.9-48.9.2 libwireshark8-debuginfo-2.2.9-48.9.2 libwiretap6-2.2.9-48.9.2 libwiretap6-debuginfo-2.2.9-48.9.2 libwscodecs1-2.2.9-48.9.2 libwscodecs1-debuginfo-2.2.9-48.9.2 libwsutil7-2.2.9-48.9.2 libwsutil7-debuginfo-2.2.9-48.9.2 wireshark-2.2.9-48.9.2 wireshark-debuginfo-2.2.9-48.9.2 wireshark-debugsource-2.2.9-48.9.2 wireshark-gtk-2.2.9-48.9.2 wireshark-gtk-debuginfo-2.2.9-48.9.2 - SUSE Linux Enterprise Desktop 12-SP2 (x86_64): libwireshark8-2.2.9-48.9.2 libwireshark8-debuginfo-2.2.9-48.9.2 libwiretap6-2.2.9-48.9.2 libwiretap6-debuginfo-2.2.9-48.9.2 libwscodecs1-2.2.9-48.9.2 libwscodecs1-debuginfo-2.2.9-48.9.2 libwsutil7-2.2.9-48.9.2 libwsutil7-debuginfo-2.2.9-48.9.2 wireshark-2.2.9-48.9.2 wireshark-debuginfo-2.2.9-48.9.2 wireshark-debugsource-2.2.9-48.9.2 wireshark-gtk-2.2.9-48.9.2 wireshark-gtk-debuginfo-2.2.9-48.9.2 References: https://www.suse.com/security/cve/CVE-2017-13765.html https://www.suse.com/security/cve/CVE-2017-13766.html https://www.suse.com/security/cve/CVE-2017-13767.html https://www.suse.com/security/cve/CVE-2017-9617.html https://www.suse.com/security/cve/CVE-2017-9766.html https://bugzilla.suse.com/1044417 https://bugzilla.suse.com/1045341 https://bugzilla.suse.com/1056248 https://bugzilla.suse.com/1056249 https://bugzilla.suse.com/1056251 From sle-security-updates at lists.suse.com Tue Sep 26 07:08:37 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Tue, 26 Sep 2017 15:08:37 +0200 (CEST) Subject: SUSE-SU-2017:2569-1: moderate: Security update for tiff Message-ID: <20170926130837.3BFE9FCCB@maintenance.suse.de> SUSE Security Update: Security update for tiff ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2569-1 Rating: moderate References: #1033109 #1033111 #1033112 #1033113 #1033118 #1033120 #1033126 #1033127 #1033128 #1033129 #1033131 #1038438 #1042804 #1042805 Cross-References: CVE-2016-10371 CVE-2017-7592 CVE-2017-7593 CVE-2017-7594 CVE-2017-7595 CVE-2017-7596 CVE-2017-7597 CVE-2017-7598 CVE-2017-7599 CVE-2017-7600 CVE-2017-7601 CVE-2017-7602 CVE-2017-9403 CVE-2017-9404 Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP3 SUSE Linux Enterprise Desktop 12-SP2 ______________________________________________________________________________ An update that fixes 14 vulnerabilities is now available. Description: This update for tiff to version 4.0.8 fixes a several bugs and security issues: These security issues were fixed: - CVE-2017-7595: The JPEGSetupEncode function allowed remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted image (bsc#1033127). - CVE-2016-10371: The TIFFWriteDirectoryTagCheckedRational function allowed remote attackers to cause a denial of service (assertion failure and application exit) via a crafted TIFF file (bsc#1038438). - CVE-2017-7598: Error in tif_dirread.c allowed remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted image (bsc#1033118). - CVE-2017-7596: Undefined behavior because of floats outside their expected value range, which allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033126). - CVE-2017-7597: Undefined behavior because of floats outside their expected value range, which allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033120). - CVE-2017-7599: Undefined behavior because of shorts outside their expected value range, which allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033113). - CVE-2017-7600: Undefined behavior because of chars outside their expected value range, which allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033112). - CVE-2017-7601: Because of a shift exponent too large for 64-bit type long undefined behavior was caused, which allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033111). - CVE-2017-7602: Prevent signed integer overflow, which allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033109). - CVE-2017-7592: The putagreytile function had a left-shift undefined behavior issue, which might allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033131). - CVE-2017-7593: Ensure that tif_rawdata is properly initialized, to prevent remote attackers to obtain sensitive information from process memory via a crafted image (bsc#1033129). - CVE-2017-7594: The OJPEGReadHeaderInfoSecTablesDcTable function allowed remote attackers to cause a denial of service (memory leak) via a crafted image (bsc#1033128). - CVE-2017-9403: Prevent memory leak in function TIFFReadDirEntryLong8Array, which allowed attackers to cause a denial of service via a crafted file (bsc#1042805). - CVE-2017-9404: Fixed memory leak vulnerability in function OJPEGReadHeaderInfoSecTablesQTable, which allowed attackers to cause a denial of service via a crafted file (bsc#1042804). These various other issues were fixed: - Fix uint32 overflow in TIFFReadEncodedStrip() that caused an integer division by zero. Reported by Agostino Sarubbo. - fix heap-based buffer overflow on generation of PixarLog / LUV compressed files, with ColorMap, TransferFunction attached and nasty plays with bitspersample. The fix for LUV has not been tested, but suffers from the same kind of issue of PixarLog. - modify ChopUpSingleUncompressedStrip() to instanciate compute ntrips as TIFFhowmany_32(td->td_imagelength, rowsperstrip), instead of a logic based on the total size of data. Which is faulty is the total size of data is not sufficient to fill the whole image, and thus results in reading outside of the StripByCounts/StripOffsets arrays when using TIFFReadScanline() - make OJPEGDecode() early exit in case of failure in OJPEGPreDecode(). This will avoid a divide by zero, and potential other issues. - fix misleading indentation as warned by GCC. - revert change done on 2016-01-09 that made Param member of TIFFFaxTabEnt structure a uint16 to reduce size of the binary. It happens that the Hylafax software uses the tables that follow this typedef (TIFFFaxMainTable, TIFFFaxWhiteTable, TIFFFaxBlackTable), although they are not in a public libtiff header. - add TIFFReadRGBAStripExt() and TIFFReadRGBATileExt() variants of the functions without ext, with an extra argument to control the stop_on_error behaviour. - fix potential memory leaks in error code path of TIFFRGBAImageBegin(). - increase libjpeg max memory usable to 10 MB instead of libjpeg 1MB default. This helps when creating files with "big" tile, without using libjpeg temporary files. - add _TIFFcalloc() - return 0 in Encode functions instead of -1 when TIFFFlushData1() fails. - only run JPEGFixupTagsSubsampling() if the YCbCrSubsampling tag is not explicitly present. This helps a bit to reduce the I/O amount when the tag is present (especially on cloud hosted files). - in LZWPostEncode(), increase, if necessary, the code bit-width after flushing the remaining code and before emitting the EOI code. - fix memory leak in error code path of PixarLogSetupDecode(). - fix potential memory leak in OJPEGReadHeaderInfoSecTablesQTable, OJPEGReadHeaderInfoSecTablesDcTable and OJPEGReadHeaderInfoSecTablesAcTable - avoid crash in Fax3Close() on empty file. - TIFFFillStrip(): add limitation to the number of bytes read in case td_stripbytecount[strip] is bigger than reasonable, so as to avoid excessive memory allocation. - fix memory leak when the underlying codec (ZIP, PixarLog) succeeds its setupdecode() method, but PredictorSetup fails. - TIFFFillStrip() and TIFFFillTile(): avoid excessive memory allocation in case of shorten files. Only effective on 64 bit builds and non-mapped cases. - TIFFFillStripPartial() / TIFFSeek(), avoid potential integer overflows with read_ahead in CHUNKY_STRIP_READ_SUPPORT mode. - avoid excessive memory allocation in case of shorten files. Only effective on 64 bit builds. - update tif_rawcc in CHUNKY_STRIP_READ_SUPPORT mode with tif_rawdataloaded when calling TIFFStartStrip() or TIFFFillStripPartial(). - avoid potential int32 overflow in TIFFYCbCrToRGBInit() Fixes - avoid potential int32 overflows in multiply_ms() and add_ms(). - fix out-of-buffer read in PackBitsDecode() Fixes - LogL16InitState(): avoid excessive memory allocation when RowsPerStrip tag is missing. - update dec_bitsleft at beginning of LZWDecode(), and update tif_rawcc at end of LZWDecode(). This is needed to properly work with the latest chnges in tif_read.c in CHUNKY_STRIP_READ_SUPPORT mode. - PixarLogDecode(): resync tif_rawcp with next_in and tif_rawcc with avail_in at beginning and end of function, similarly to what is done in LZWDecode(). Likely needed so that it works properly with latest chnges in tif_read.c in CHUNKY_STRIP_READ_SUPPORT mode. - initYCbCrConversion(): add basic validation of luma and refBlackWhite coefficients (just check they are not NaN for now), to avoid potential float to int overflows. - _TIFFVSetField(): fix outside range cast of double to float. - initYCbCrConversion(): check luma[1] is not zero to avoid division by zero - _TIFFVSetField(): fix outside range cast of double to float. - initYCbCrConversion(): check luma[1] is not zero to avoid division by zero. - initYCbCrConversion(): stricter validation for refBlackWhite coefficients values. - avoid uint32 underflow in cpDecodedStrips that can cause various issues, such as buffer overflows in the library. - fix readContigStripsIntoBuffer() in -i (ignore) mode so that the output buffer is correctly incremented to avoid write outside bounds. - add 3 extra bytes at end of strip buffer in readSeparateStripsIntoBuffer() to avoid read outside of heap allocated buffer. - fix integer division by zero when BitsPerSample is missing. - fix null pointer dereference in -r mode when the image has no StripByteCount tag. - avoid potential division by zero is BitsPerSamples tag is missing. - when TIFFGetField(, TIFFTAG_NUMBEROFINKS, ) is called, limit the return number of inks to SamplesPerPixel, so that code that parses ink names doesn't go past the end of the buffer. - avoid potential division by zero is BitsPerSamples tag is missing. - fix uint32 underflow/overflow that can cause heap-based buffer overflow. - replace assert( (bps % 8) == 0 ) by a non assert check. - fix 2 heap-based buffer overflows (in PSDataBW and PSDataColorContig). - prevent heap-based buffer overflow in -j mode on a paletted image. - fix wrong usage of memcpy() that can trigger unspecified behaviour. - avoid potential invalid memory read in t2p_writeproc. - avoid potential heap-based overflow in t2p_readwrite_pdf_image_tile(). - remove extraneous TIFFClose() in error code path, that caused double free. - error out cleanly in cpContig2SeparateByRow and cpSeparate2ContigByRow if BitsPerSample != 8 to avoid heap based overflow. - avoid integer division by zero. - call TIFFClose() in error code paths. - emit appropriate message if the input file is empty. - close TIFF handle in error code path. Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2017-1589=1 - SUSE Linux Enterprise Software Development Kit 12-SP2: zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1589=1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2: zypper in -t patch SUSE-SLE-RPI-12-SP2-2017-1589=1 - SUSE Linux Enterprise Server 12-SP3: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2017-1589=1 - SUSE Linux Enterprise Server 12-SP2: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1589=1 - SUSE Linux Enterprise Desktop 12-SP3: zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2017-1589=1 - SUSE Linux Enterprise Desktop 12-SP2: zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-1589=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 ppc64le s390x x86_64): libtiff-devel-4.0.8-44.3.1 tiff-debuginfo-4.0.8-44.3.1 tiff-debugsource-4.0.8-44.3.1 - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 ppc64le s390x x86_64): libtiff-devel-4.0.8-44.3.1 tiff-debuginfo-4.0.8-44.3.1 tiff-debugsource-4.0.8-44.3.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (aarch64): libtiff5-4.0.8-44.3.1 libtiff5-debuginfo-4.0.8-44.3.1 tiff-4.0.8-44.3.1 tiff-debuginfo-4.0.8-44.3.1 tiff-debugsource-4.0.8-44.3.1 - SUSE Linux Enterprise Server 12-SP3 (aarch64 ppc64le s390x x86_64): libtiff5-4.0.8-44.3.1 libtiff5-debuginfo-4.0.8-44.3.1 tiff-4.0.8-44.3.1 tiff-debuginfo-4.0.8-44.3.1 tiff-debugsource-4.0.8-44.3.1 - SUSE Linux Enterprise Server 12-SP3 (s390x x86_64): libtiff5-32bit-4.0.8-44.3.1 libtiff5-debuginfo-32bit-4.0.8-44.3.1 - SUSE Linux Enterprise Server 12-SP2 (aarch64 ppc64le s390x x86_64): libtiff5-4.0.8-44.3.1 libtiff5-debuginfo-4.0.8-44.3.1 tiff-4.0.8-44.3.1 tiff-debuginfo-4.0.8-44.3.1 tiff-debugsource-4.0.8-44.3.1 - SUSE Linux Enterprise Server 12-SP2 (s390x x86_64): libtiff5-32bit-4.0.8-44.3.1 libtiff5-debuginfo-32bit-4.0.8-44.3.1 - SUSE Linux Enterprise Desktop 12-SP3 (x86_64): libtiff5-32bit-4.0.8-44.3.1 libtiff5-4.0.8-44.3.1 libtiff5-debuginfo-32bit-4.0.8-44.3.1 libtiff5-debuginfo-4.0.8-44.3.1 tiff-debuginfo-4.0.8-44.3.1 tiff-debugsource-4.0.8-44.3.1 - SUSE Linux Enterprise Desktop 12-SP2 (x86_64): libtiff5-32bit-4.0.8-44.3.1 libtiff5-4.0.8-44.3.1 libtiff5-debuginfo-32bit-4.0.8-44.3.1 libtiff5-debuginfo-4.0.8-44.3.1 tiff-debuginfo-4.0.8-44.3.1 tiff-debugsource-4.0.8-44.3.1 References: https://www.suse.com/security/cve/CVE-2016-10371.html https://www.suse.com/security/cve/CVE-2017-7592.html https://www.suse.com/security/cve/CVE-2017-7593.html https://www.suse.com/security/cve/CVE-2017-7594.html https://www.suse.com/security/cve/CVE-2017-7595.html https://www.suse.com/security/cve/CVE-2017-7596.html https://www.suse.com/security/cve/CVE-2017-7597.html https://www.suse.com/security/cve/CVE-2017-7598.html https://www.suse.com/security/cve/CVE-2017-7599.html https://www.suse.com/security/cve/CVE-2017-7600.html https://www.suse.com/security/cve/CVE-2017-7601.html https://www.suse.com/security/cve/CVE-2017-7602.html https://www.suse.com/security/cve/CVE-2017-9403.html https://www.suse.com/security/cve/CVE-2017-9404.html https://bugzilla.suse.com/1033109 https://bugzilla.suse.com/1033111 https://bugzilla.suse.com/1033112 https://bugzilla.suse.com/1033113 https://bugzilla.suse.com/1033118 https://bugzilla.suse.com/1033120 https://bugzilla.suse.com/1033126 https://bugzilla.suse.com/1033127 https://bugzilla.suse.com/1033128 https://bugzilla.suse.com/1033129 https://bugzilla.suse.com/1033131 https://bugzilla.suse.com/1038438 https://bugzilla.suse.com/1042804 https://bugzilla.suse.com/1042805 From sle-security-updates at lists.suse.com Tue Sep 26 10:11:50 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Tue, 26 Sep 2017 18:11:50 +0200 (CEST) Subject: SUSE-SU-2017:2570-1: moderate: Security update for liblouis Message-ID: <20170926161150.6142CFC9D@maintenance.suse.de> SUSE Security Update: Security update for liblouis ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2570-1 Rating: moderate References: #1056088 #1056090 #1056093 #1056095 #1056097 #1056101 #1056105 Cross-References: CVE-2017-13738 CVE-2017-13739 CVE-2017-13740 CVE-2017-13741 CVE-2017-13743 CVE-2017-13744 Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP3 SUSE Linux Enterprise Desktop 12-SP2 ______________________________________________________________________________ An update that solves 6 vulnerabilities and has one errata is now available. Description: This update for liblouis fixes several issues. These security issues were fixed: - CVE-2017-13738: Prevent illegal address access in the _lou_getALine function that allowed to cause remote DoS (bsc#1056105). - CVE-2017-13739: Prevent heap-based buffer overflow in the function resolveSubtable() that could have caused DoS or remote code execution (bsc#1056101). - CVE-2017-13740: Prevent stack-based buffer overflow in the function parseChars() that could have caused DoS or possibly unspecified other impact (bsc#1056097) - CVE-2017-13741: Prevent use-after-free in function compileBrailleIndicator() that allowed to cause remote DoS (bsc#1056095). - CVE_2017-13742: Prevent stack-based buffer overflow in function includeFile that allowed to cause remote DoS (bsc#1056093). - CVE-2017-13743: Prevent buffer overflow triggered in the function _lou_showString() that allowed to cause remote DoS (bsc#1056090). - CVE-2017-13744: Prevent illegal address access in the function _lou_getALine() that allowed to cause remote DoS (bsc#1056088). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2017-1590=1 - SUSE Linux Enterprise Software Development Kit 12-SP2: zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1590=1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2: zypper in -t patch SUSE-SLE-RPI-12-SP2-2017-1590=1 - SUSE Linux Enterprise Server 12-SP3: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2017-1590=1 - SUSE Linux Enterprise Server 12-SP2: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1590=1 - SUSE Linux Enterprise Desktop 12-SP3: zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2017-1590=1 - SUSE Linux Enterprise Desktop 12-SP2: zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-1590=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 ppc64le s390x x86_64): liblouis-debugsource-2.6.4-6.3.1 liblouis-devel-2.6.4-6.3.1 - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 ppc64le s390x x86_64): liblouis-debugsource-2.6.4-6.3.1 liblouis-devel-2.6.4-6.3.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (aarch64): liblouis-data-2.6.4-6.3.1 liblouis-debugsource-2.6.4-6.3.1 liblouis9-2.6.4-6.3.1 liblouis9-debuginfo-2.6.4-6.3.1 python-louis-2.6.4-6.3.1 python3-louis-2.6.4-6.3.1 - SUSE Linux Enterprise Server 12-SP3 (aarch64 ppc64le s390x x86_64): liblouis-data-2.6.4-6.3.1 liblouis-debugsource-2.6.4-6.3.1 liblouis9-2.6.4-6.3.1 liblouis9-debuginfo-2.6.4-6.3.1 python-louis-2.6.4-6.3.1 python3-louis-2.6.4-6.3.1 - SUSE Linux Enterprise Server 12-SP2 (aarch64 ppc64le s390x x86_64): liblouis-data-2.6.4-6.3.1 liblouis-debugsource-2.6.4-6.3.1 liblouis9-2.6.4-6.3.1 liblouis9-debuginfo-2.6.4-6.3.1 python-louis-2.6.4-6.3.1 python3-louis-2.6.4-6.3.1 - SUSE Linux Enterprise Desktop 12-SP3 (x86_64): liblouis-data-2.6.4-6.3.1 liblouis-debugsource-2.6.4-6.3.1 liblouis9-2.6.4-6.3.1 liblouis9-debuginfo-2.6.4-6.3.1 python3-louis-2.6.4-6.3.1 - SUSE Linux Enterprise Desktop 12-SP2 (x86_64): liblouis-data-2.6.4-6.3.1 liblouis-debugsource-2.6.4-6.3.1 liblouis9-2.6.4-6.3.1 liblouis9-debuginfo-2.6.4-6.3.1 python3-louis-2.6.4-6.3.1 References: https://www.suse.com/security/cve/CVE-2017-13738.html https://www.suse.com/security/cve/CVE-2017-13739.html https://www.suse.com/security/cve/CVE-2017-13740.html https://www.suse.com/security/cve/CVE-2017-13741.html https://www.suse.com/security/cve/CVE-2017-13743.html https://www.suse.com/security/cve/CVE-2017-13744.html https://bugzilla.suse.com/1056088 https://bugzilla.suse.com/1056090 https://bugzilla.suse.com/1056093 https://bugzilla.suse.com/1056095 https://bugzilla.suse.com/1056097 https://bugzilla.suse.com/1056101 https://bugzilla.suse.com/1056105 From sle-security-updates at lists.suse.com Thu Sep 28 10:09:14 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 28 Sep 2017 18:09:14 +0200 (CEST) Subject: SUSE-SU-2017:2589-1: important: Security update for MozillaFirefox Message-ID: <20170928160914.1FD48FD7A@maintenance.suse.de> SUSE Security Update: Security update for MozillaFirefox ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2589-1 Rating: important References: #1052829 Cross-References: CVE-2017-7753 CVE-2017-7779 CVE-2017-7782 CVE-2017-7784 CVE-2017-7785 CVE-2017-7786 CVE-2017-7787 CVE-2017-7791 CVE-2017-7792 CVE-2017-7798 CVE-2017-7800 CVE-2017-7801 CVE-2017-7802 CVE-2017-7803 CVE-2017-7804 CVE-2017-7807 Affected Products: SUSE OpenStack Cloud 6 SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server for SAP 12-SP1 SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Server 12-SP1-LTSS SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Desktop 12-SP3 SUSE Linux Enterprise Desktop 12-SP2 ______________________________________________________________________________ An update that fixes 16 vulnerabilities is now available. Description: This update for MozillaFirefox to ESR 52.3 fixes several issues. These security issues were fixed: - CVE-2017-7807 Domain hijacking through AppCache fallback (bsc#1052829) - CVE-2017-7791 Spoofing following page navigation with data: protocol and modal alerts (bsc#1052829) - CVE-2017-7792 Buffer overflow viewing certificates with an extremely long OID (bsc#1052829) - CVE-2017-7782 WindowsDllDetourPatcher allocates memory without DEP protections (bsc#1052829) - CVE-2017-7787 Same-origin policy bypass with iframes through page reloads (bsc#1052829) - CVE-2017-7786 Buffer overflow while painting non-displayable SVG (bsc#1052829) - CVE-2017-7785 Buffer overflow manipulating ARIA attributes in DOM (bsc#1052829) - CVE-2017-7784 Use-after-free with image observers (bsc#1052829) - CVE-2017-7753 Out-of-bounds read with cached style data and pseudo-elements (bsc#1052829) - CVE-2017-7798 XUL injection in the style editor in devtools (bsc#1052829) - CVE-2017-7804 Memory protection bypass through WindowsDllDetourPatcher (bsc#1052829) - CVE-2017-7779 Memory safety bugs fixed in Firefox 55 and Firefox ESR 52.3 (bsc#1052829) - CVE-2017-7800 Use-after-free in WebSockets during disconnection (bsc#1052829) - CVE-2017-7801 Use-after-free with marquee during window resizing (bsc#1052829) - CVE-2017-7802 Use-after-free resizing image elements (bsc#1052829) - CVE-2017-7803 CSP containing 'sandbox' improperly applied (bsc#1052829) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud 6: zypper in -t patch SUSE-OpenStack-Cloud-6-2017-1603=1 - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2017-1603=1 - SUSE Linux Enterprise Software Development Kit 12-SP2: zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1603=1 - SUSE Linux Enterprise Server for SAP 12-SP1: zypper in -t patch SUSE-SLE-SAP-12-SP1-2017-1603=1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2: zypper in -t patch SUSE-SLE-RPI-12-SP2-2017-1603=1 - SUSE Linux Enterprise Server 12-SP3: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2017-1603=1 - SUSE Linux Enterprise Server 12-SP2: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1603=1 - SUSE Linux Enterprise Server 12-SP1-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP1-2017-1603=1 - SUSE Linux Enterprise Server 12-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-2017-1603=1 - SUSE Linux Enterprise Desktop 12-SP3: zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2017-1603=1 - SUSE Linux Enterprise Desktop 12-SP2: zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-1603=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE OpenStack Cloud 6 (x86_64): MozillaFirefox-52.3.0esr-109.3.1 MozillaFirefox-debuginfo-52.3.0esr-109.3.1 MozillaFirefox-debugsource-52.3.0esr-109.3.1 MozillaFirefox-devel-52.3.0esr-109.3.1 MozillaFirefox-translations-52.3.0esr-109.3.1 - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 ppc64le s390x x86_64): MozillaFirefox-debuginfo-52.3.0esr-109.3.1 MozillaFirefox-debugsource-52.3.0esr-109.3.1 MozillaFirefox-devel-52.3.0esr-109.3.1 - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 ppc64le s390x x86_64): MozillaFirefox-debuginfo-52.3.0esr-109.3.1 MozillaFirefox-debugsource-52.3.0esr-109.3.1 MozillaFirefox-devel-52.3.0esr-109.3.1 - SUSE Linux Enterprise Server for SAP 12-SP1 (ppc64le x86_64): MozillaFirefox-52.3.0esr-109.3.1 MozillaFirefox-debuginfo-52.3.0esr-109.3.1 MozillaFirefox-debugsource-52.3.0esr-109.3.1 MozillaFirefox-devel-52.3.0esr-109.3.1 MozillaFirefox-translations-52.3.0esr-109.3.1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (aarch64): MozillaFirefox-52.3.0esr-109.3.1 MozillaFirefox-debuginfo-52.3.0esr-109.3.1 MozillaFirefox-debugsource-52.3.0esr-109.3.1 MozillaFirefox-translations-52.3.0esr-109.3.1 - SUSE Linux Enterprise Server 12-SP3 (aarch64 ppc64le s390x x86_64): MozillaFirefox-52.3.0esr-109.3.1 MozillaFirefox-debuginfo-52.3.0esr-109.3.1 MozillaFirefox-debugsource-52.3.0esr-109.3.1 MozillaFirefox-translations-52.3.0esr-109.3.1 - SUSE Linux Enterprise Server 12-SP2 (aarch64 ppc64le s390x x86_64): MozillaFirefox-52.3.0esr-109.3.1 MozillaFirefox-debuginfo-52.3.0esr-109.3.1 MozillaFirefox-debugsource-52.3.0esr-109.3.1 MozillaFirefox-translations-52.3.0esr-109.3.1 - SUSE Linux Enterprise Server 12-SP1-LTSS (ppc64le s390x x86_64): MozillaFirefox-52.3.0esr-109.3.1 MozillaFirefox-debuginfo-52.3.0esr-109.3.1 MozillaFirefox-debugsource-52.3.0esr-109.3.1 MozillaFirefox-devel-52.3.0esr-109.3.1 MozillaFirefox-translations-52.3.0esr-109.3.1 - SUSE Linux Enterprise Server 12-LTSS (ppc64le s390x x86_64): MozillaFirefox-52.3.0esr-109.3.1 MozillaFirefox-debuginfo-52.3.0esr-109.3.1 MozillaFirefox-debugsource-52.3.0esr-109.3.1 MozillaFirefox-devel-52.3.0esr-109.3.1 MozillaFirefox-translations-52.3.0esr-109.3.1 - SUSE Linux Enterprise Desktop 12-SP3 (x86_64): MozillaFirefox-52.3.0esr-109.3.1 MozillaFirefox-debuginfo-52.3.0esr-109.3.1 MozillaFirefox-debugsource-52.3.0esr-109.3.1 MozillaFirefox-translations-52.3.0esr-109.3.1 - SUSE Linux Enterprise Desktop 12-SP2 (x86_64): MozillaFirefox-52.3.0esr-109.3.1 MozillaFirefox-debuginfo-52.3.0esr-109.3.1 MozillaFirefox-debugsource-52.3.0esr-109.3.1 MozillaFirefox-translations-52.3.0esr-109.3.1 References: https://www.suse.com/security/cve/CVE-2017-7753.html https://www.suse.com/security/cve/CVE-2017-7779.html https://www.suse.com/security/cve/CVE-2017-7782.html https://www.suse.com/security/cve/CVE-2017-7784.html https://www.suse.com/security/cve/CVE-2017-7785.html https://www.suse.com/security/cve/CVE-2017-7786.html https://www.suse.com/security/cve/CVE-2017-7787.html https://www.suse.com/security/cve/CVE-2017-7791.html https://www.suse.com/security/cve/CVE-2017-7792.html https://www.suse.com/security/cve/CVE-2017-7798.html https://www.suse.com/security/cve/CVE-2017-7800.html https://www.suse.com/security/cve/CVE-2017-7801.html https://www.suse.com/security/cve/CVE-2017-7802.html https://www.suse.com/security/cve/CVE-2017-7803.html https://www.suse.com/security/cve/CVE-2017-7804.html https://www.suse.com/security/cve/CVE-2017-7807.html https://bugzilla.suse.com/1052829 From sle-security-updates at lists.suse.com Thu Sep 28 10:09:58 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 28 Sep 2017 18:09:58 +0200 (CEST) Subject: SUSE-SU-2017:2590-1: moderate: Security update for liblouis Message-ID: <20170928160958.46C77FD7A@maintenance.suse.de> SUSE Security Update: Security update for liblouis ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2590-1 Rating: moderate References: #1056090 #1056093 #1056095 #1056097 #1056101 Cross-References: CVE-2017-13739 CVE-2017-13740 CVE-2017-13741 CVE-2017-13743 Affected Products: SUSE Linux Enterprise Server 11-SP4 SUSE Linux Enterprise Debuginfo 11-SP4 ______________________________________________________________________________ An update that solves four vulnerabilities and has one errata is now available. Description: This update for liblouis fixes several issues. These security issues were fixed: - CVE-2017-13739: Prevent heap-based buffer overflow in the function resolveSubtable() that could have caused DoS or remote code execution (bsc#1056101) - CVE-2017-13740: Prevent stack-based buffer overflow in the function parseChars() that could have caused DoS or possibly unspecified other impact (bsc#1056097) () - CVE-2017-13741: Prevent use-after-free in function compileBrailleIndicator() that allowed to cause remote DoS (bsc#1056095) - CVE_2017-13742: Prevent stack-based buffer overflow in function includeFile that allowed to cause remote DoS (bsc#1056093). - CVE-2017-13743: Prevent buffer overflow triggered in the function _lou_showString() that allowed to cause remote DoS (bsc#1056090) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 11-SP4: zypper in -t patch slessp4-liblouis-13291=1 - SUSE Linux Enterprise Debuginfo 11-SP4: zypper in -t patch dbgsp4-liblouis-13291=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server 11-SP4 (i586 ia64 ppc64 s390x x86_64): liblouis-1.7.0-1.3.3.1 liblouis0-1.7.0-1.3.3.1 python-louis-1.7.0-1.3.3.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ia64 ppc64 s390x x86_64): liblouis-debuginfo-1.7.0-1.3.3.1 liblouis-debugsource-1.7.0-1.3.3.1 References: https://www.suse.com/security/cve/CVE-2017-13739.html https://www.suse.com/security/cve/CVE-2017-13740.html https://www.suse.com/security/cve/CVE-2017-13741.html https://www.suse.com/security/cve/CVE-2017-13743.html https://bugzilla.suse.com/1056090 https://bugzilla.suse.com/1056093 https://bugzilla.suse.com/1056095 https://bugzilla.suse.com/1056097 https://bugzilla.suse.com/1056101 From sle-security-updates at lists.suse.com Thu Sep 28 10:11:07 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Thu, 28 Sep 2017 18:11:07 +0200 (CEST) Subject: SUSE-SU-2017:2591-1: moderate: Security update for mysql-connector-java Message-ID: <20170928161107.7AA20FD7A@maintenance.suse.de> SUSE Security Update: Security update for mysql-connector-java ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2591-1 Rating: moderate References: #1035210 #1035211 #1035697 Cross-References: CVE-2017-3523 CVE-2017-3586 CVE-2017-3589 Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 ______________________________________________________________________________ An update that fixes three vulnerabilities is now available. Description: This update for mysql-connector-java to version to 5.1.42 fixes several issues. These security issues were fixed: - CVE-2017-3589: An unspecified vulnerability in MySQL Connector/J could have resulted in unauthorized update, insert or delete access to some of MySQL Connectors accessible data (bnc#1035210) - CVE-2017-3523: An unspecified vulnerability in MySQL Connector/J could have lead to takeover of MySQL Connectors (bnc#1035697) - CVE-2017-3586: An unspecified vulnerability in MySQL Connectors could have lead to unauthorized update, insert or delete access to some of MySQL Connectors accessible data as well as unauthorized read access to a subset of MySQL Connectors accessible data (bnc#1035211) More infos are available at http://dev.mysql.com/doc/relnotes/connector-j/en/news-5-1.html Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2017-1605=1 - SUSE Linux Enterprise Software Development Kit 12-SP2: zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1605=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 12-SP3 (noarch): mysql-connector-java-5.1.42-5.4.1 - SUSE Linux Enterprise Software Development Kit 12-SP2 (noarch): mysql-connector-java-5.1.42-5.4.1 References: https://www.suse.com/security/cve/CVE-2017-3523.html https://www.suse.com/security/cve/CVE-2017-3586.html https://www.suse.com/security/cve/CVE-2017-3589.html https://bugzilla.suse.com/1035210 https://bugzilla.suse.com/1035211 https://bugzilla.suse.com/1035697 From sle-security-updates at lists.suse.com Fri Sep 29 07:07:25 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Fri, 29 Sep 2017 15:07:25 +0200 (CEST) Subject: SUSE-SU-2017:2598-1: moderate: Security update for libvirt Message-ID: <20170929130725.B4292FCB5@maintenance.suse.de> SUSE Security Update: Security update for libvirt ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2598-1 Rating: moderate References: #1045693 #1049505 #1051017 #1053600 Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Desktop 12-SP3 ______________________________________________________________________________ An update that contains security fixes can now be installed. Description: This update for libvirt fixes several issues. This security issue was fixed: - bsc#1053600: Escape ssh commed line to prevent interpreting malicious hostname as arguments, allowing for command execution These non-security issues were fixed: - bsc#1049505, bsc#1051017: Security manager: Don't autogenerate seclabels of type 'none' when AppArmor is inactive - bsc#1045693: Support chardevs with ARM machines Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2017-1609=1 - SUSE Linux Enterprise Server 12-SP3: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2017-1609=1 - SUSE Linux Enterprise Desktop 12-SP3: zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2017-1609=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 ppc64le s390x x86_64): libvirt-debugsource-3.3.0-5.3.1 libvirt-devel-3.3.0-5.3.1 - SUSE Linux Enterprise Server 12-SP3 (aarch64 ppc64le s390x x86_64): libvirt-3.3.0-5.3.1 libvirt-admin-3.3.0-5.3.1 libvirt-admin-debuginfo-3.3.0-5.3.1 libvirt-client-3.3.0-5.3.1 libvirt-client-debuginfo-3.3.0-5.3.1 libvirt-daemon-3.3.0-5.3.1 libvirt-daemon-config-network-3.3.0-5.3.1 libvirt-daemon-config-nwfilter-3.3.0-5.3.1 libvirt-daemon-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-interface-3.3.0-5.3.1 libvirt-daemon-driver-interface-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-lxc-3.3.0-5.3.1 libvirt-daemon-driver-lxc-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-network-3.3.0-5.3.1 libvirt-daemon-driver-network-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-nodedev-3.3.0-5.3.1 libvirt-daemon-driver-nodedev-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-nwfilter-3.3.0-5.3.1 libvirt-daemon-driver-nwfilter-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-qemu-3.3.0-5.3.1 libvirt-daemon-driver-qemu-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-secret-3.3.0-5.3.1 libvirt-daemon-driver-secret-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-storage-3.3.0-5.3.1 libvirt-daemon-driver-storage-core-3.3.0-5.3.1 libvirt-daemon-driver-storage-core-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-storage-disk-3.3.0-5.3.1 libvirt-daemon-driver-storage-disk-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-storage-iscsi-3.3.0-5.3.1 libvirt-daemon-driver-storage-iscsi-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-storage-logical-3.3.0-5.3.1 libvirt-daemon-driver-storage-logical-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-storage-mpath-3.3.0-5.3.1 libvirt-daemon-driver-storage-mpath-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-storage-scsi-3.3.0-5.3.1 libvirt-daemon-driver-storage-scsi-debuginfo-3.3.0-5.3.1 libvirt-daemon-lxc-3.3.0-5.3.1 libvirt-daemon-qemu-3.3.0-5.3.1 libvirt-debugsource-3.3.0-5.3.1 libvirt-doc-3.3.0-5.3.1 libvirt-libs-3.3.0-5.3.1 libvirt-libs-debuginfo-3.3.0-5.3.1 libvirt-lock-sanlock-3.3.0-5.3.1 libvirt-lock-sanlock-debuginfo-3.3.0-5.3.1 libvirt-nss-3.3.0-5.3.1 libvirt-nss-debuginfo-3.3.0-5.3.1 - SUSE Linux Enterprise Server 12-SP3 (aarch64 x86_64): libvirt-daemon-driver-storage-rbd-3.3.0-5.3.1 libvirt-daemon-driver-storage-rbd-debuginfo-3.3.0-5.3.1 - SUSE Linux Enterprise Server 12-SP3 (x86_64): libvirt-daemon-driver-libxl-3.3.0-5.3.1 libvirt-daemon-driver-libxl-debuginfo-3.3.0-5.3.1 libvirt-daemon-xen-3.3.0-5.3.1 - SUSE Linux Enterprise Desktop 12-SP3 (x86_64): libvirt-3.3.0-5.3.1 libvirt-admin-3.3.0-5.3.1 libvirt-admin-debuginfo-3.3.0-5.3.1 libvirt-client-3.3.0-5.3.1 libvirt-client-debuginfo-3.3.0-5.3.1 libvirt-daemon-3.3.0-5.3.1 libvirt-daemon-config-network-3.3.0-5.3.1 libvirt-daemon-config-nwfilter-3.3.0-5.3.1 libvirt-daemon-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-interface-3.3.0-5.3.1 libvirt-daemon-driver-interface-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-libxl-3.3.0-5.3.1 libvirt-daemon-driver-libxl-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-lxc-3.3.0-5.3.1 libvirt-daemon-driver-lxc-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-network-3.3.0-5.3.1 libvirt-daemon-driver-network-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-nodedev-3.3.0-5.3.1 libvirt-daemon-driver-nodedev-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-nwfilter-3.3.0-5.3.1 libvirt-daemon-driver-nwfilter-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-qemu-3.3.0-5.3.1 libvirt-daemon-driver-qemu-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-secret-3.3.0-5.3.1 libvirt-daemon-driver-secret-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-storage-3.3.0-5.3.1 libvirt-daemon-driver-storage-core-3.3.0-5.3.1 libvirt-daemon-driver-storage-core-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-storage-disk-3.3.0-5.3.1 libvirt-daemon-driver-storage-disk-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-storage-iscsi-3.3.0-5.3.1 libvirt-daemon-driver-storage-iscsi-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-storage-logical-3.3.0-5.3.1 libvirt-daemon-driver-storage-logical-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-storage-mpath-3.3.0-5.3.1 libvirt-daemon-driver-storage-mpath-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-storage-rbd-3.3.0-5.3.1 libvirt-daemon-driver-storage-rbd-debuginfo-3.3.0-5.3.1 libvirt-daemon-driver-storage-scsi-3.3.0-5.3.1 libvirt-daemon-driver-storage-scsi-debuginfo-3.3.0-5.3.1 libvirt-daemon-lxc-3.3.0-5.3.1 libvirt-daemon-qemu-3.3.0-5.3.1 libvirt-daemon-xen-3.3.0-5.3.1 libvirt-debugsource-3.3.0-5.3.1 libvirt-doc-3.3.0-5.3.1 libvirt-libs-3.3.0-5.3.1 libvirt-libs-debuginfo-3.3.0-5.3.1 References: https://bugzilla.suse.com/1045693 https://bugzilla.suse.com/1049505 https://bugzilla.suse.com/1051017 https://bugzilla.suse.com/1053600 From sle-security-updates at lists.suse.com Fri Sep 29 10:09:40 2017 From: sle-security-updates at lists.suse.com (sle-security-updates at lists.suse.com) Date: Fri, 29 Sep 2017 18:09:40 +0200 (CEST) Subject: SUSE-SU-2017:2601-1: moderate: Security update for tcmu-runner Message-ID: <20170929160940.964E6FCAC@maintenance.suse.de> SUSE Security Update: Security update for tcmu-runner ______________________________________________________________________________ Announcement ID: SUSE-SU-2017:2601-1 Rating: moderate References: #1049485 #1049491 Cross-References: CVE-2017-1000198 CVE-2017-1000199 Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 SUSE Linux Enterprise Server 12-SP2 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for tcmu-runner fixes the following issues: Security issues fixed: - CVE-2017-1000198: The glfs handler allowed local DoS via crafted CheckConfig strings (bsc#1049485) - CVE-2017-1000199: The qcow handler leaked information via the CheckConfig D-Bus method (bsc#1049491) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP2: zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1611=1 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2: zypper in -t patch SUSE-SLE-RPI-12-SP2-2017-1611=1 - SUSE Linux Enterprise Server 12-SP2: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1611=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 ppc64le s390x x86_64): tcmu-runner-debuginfo-1.0.4-3.3.10 tcmu-runner-debugsource-1.0.4-3.3.10 tcmu-runner-devel-1.0.4-3.3.10 - SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (aarch64): tcmu-runner-1.0.4-3.3.10 tcmu-runner-debuginfo-1.0.4-3.3.10 tcmu-runner-debugsource-1.0.4-3.3.10 - SUSE Linux Enterprise Server 12-SP2 (aarch64 ppc64le s390x x86_64): tcmu-runner-1.0.4-3.3.10 tcmu-runner-debuginfo-1.0.4-3.3.10 tcmu-runner-debugsource-1.0.4-3.3.10 References: https://www.suse.com/security/cve/CVE-2017-1000198.html https://www.suse.com/security/cve/CVE-2017-1000199.html https://bugzilla.suse.com/1049485 https://bugzilla.suse.com/1049491