2016-04-23
ALT-BU-2016-2709-1
Branch p7 update bulletin.
Package kernel-image-un-def updated to version 4.1.22-alt0.M70P.1 for branch p7 in task 163517.
Closed vulnerabilities
Published: 2016-04-27
BDU:2016-01134
Уязвимость ядра операционной системы Linux, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
Severity: CRITICAL (10.0)
References:
Published: 2015-12-28
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2015-8660
The ovl_setattr function in fs/overlayfs/inode.c in the Linux kernel through 4.3.3 attempts to merge distinct setattr operations, which allows local users to bypass intended access restrictions and modify the attributes of arbitrary overlay files via a crafted application.
Severity: MEDIUM (6.7)
Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
References:
- http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=acff81ec2c79492b180fade3c2894425cd35a545
- http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=acff81ec2c79492b180fade3c2894425cd35a545
- SUSE-SU-2016:0751
- SUSE-SU-2016:0751
- SUSE-SU-2016:0752
- SUSE-SU-2016:0752
- SUSE-SU-2016:0755
- SUSE-SU-2016:0755
- http://packetstormsecurity.com/files/135151/Ubuntu-14.04-LTS-15.10-overlayfs-Local-Root.html
- http://packetstormsecurity.com/files/135151/Ubuntu-14.04-LTS-15.10-overlayfs-Local-Root.html
- RHSA-2016:1532
- RHSA-2016:1532
- RHSA-2016:1539
- RHSA-2016:1539
- RHSA-2016:1541
- RHSA-2016:1541
- [oss-security] 20151223 CVE request -- linux kernel: overlay: fix permission checking for setattr
- [oss-security] 20151223 CVE request -- linux kernel: overlay: fix permission checking for setattr
- http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html
- http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
- http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
- 79671
- 79671
- 1034548
- 1034548
- USN-2857-1
- USN-2857-1
- USN-2857-2
- USN-2857-2
- USN-2858-1
- USN-2858-1
- USN-2858-2
- USN-2858-2
- USN-2858-3
- USN-2858-3
- https://bugzilla.redhat.com/show_bug.cgi?id=1291329
- https://bugzilla.redhat.com/show_bug.cgi?id=1291329
- https://github.com/torvalds/linux/commit/acff81ec2c79492b180fade3c2894425cd35a545
- https://github.com/torvalds/linux/commit/acff81ec2c79492b180fade3c2894425cd35a545
- 39166
- 39166
- 39230
- 39230
- 40688
- 40688
Published: 2016-04-27
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2015-8812
drivers/infiniband/hw/cxgb3/iwch_cm.c in the Linux kernel before 4.5 does not properly identify error conditions, which allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) via crafted packets.
Severity: CRITICAL (9.8)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References:
- http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=67f1aee6f45059fd6b0f5b0ecb2c97ad0451f6b3
- http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=67f1aee6f45059fd6b0f5b0ecb2c97ad0451f6b3
- SUSE-SU-2016:0911
- SUSE-SU-2016:0911
- openSUSE-SU-2016:1008
- openSUSE-SU-2016:1008
- SUSE-SU-2016:1019
- SUSE-SU-2016:1019
- SUSE-SU-2016:1031
- SUSE-SU-2016:1031
- SUSE-SU-2016:1032
- SUSE-SU-2016:1032
- SUSE-SU-2016:1033
- SUSE-SU-2016:1033
- SUSE-SU-2016:1034
- SUSE-SU-2016:1034
- SUSE-SU-2016:1035
- SUSE-SU-2016:1035
- SUSE-SU-2016:1037
- SUSE-SU-2016:1037
- SUSE-SU-2016:1038
- SUSE-SU-2016:1038
- SUSE-SU-2016:1039
- SUSE-SU-2016:1039
- SUSE-SU-2016:1040
- SUSE-SU-2016:1040
- SUSE-SU-2016:1041
- SUSE-SU-2016:1041
- SUSE-SU-2016:1045
- SUSE-SU-2016:1045
- SUSE-SU-2016:1046
- SUSE-SU-2016:1046
- SUSE-SU-2016:1102
- SUSE-SU-2016:1102
- SUSE-SU-2016:1764
- SUSE-SU-2016:1764
- SUSE-SU-2016:2074
- SUSE-SU-2016:2074
- RHSA-2016:2574
- RHSA-2016:2574
- RHSA-2016:2584
- RHSA-2016:2584
- DSA-3503
- DSA-3503
- [oss-security] 20160211 Linux kernel: Flaw in CXGB3 driver.
- [oss-security] 20160211 Linux kernel: Flaw in CXGB3 driver.
- 83218
- 83218
- USN-2946-1
- USN-2946-1
- USN-2946-2
- USN-2946-2
- USN-2947-1
- USN-2947-1
- USN-2947-2
- USN-2947-2
- USN-2947-3
- USN-2947-3
- USN-2948-1
- USN-2948-1
- USN-2948-2
- USN-2948-2
- USN-2949-1
- USN-2949-1
- USN-2967-1
- USN-2967-1
- USN-2967-2
- USN-2967-2
- https://bugzilla.redhat.com/show_bug.cgi?id=1303532
- https://bugzilla.redhat.com/show_bug.cgi?id=1303532
- https://github.com/torvalds/linux/commit/67f1aee6f45059fd6b0f5b0ecb2c97ad0451f6b3
- https://github.com/torvalds/linux/commit/67f1aee6f45059fd6b0f5b0ecb2c97ad0451f6b3