ALT-PU-2016-1774-1
Package kernel-image-un-def updated to version 4.6.4-alt1 for branch sisyphus in task 167248.
Closed vulnerabilities
Published: 2016-06-29
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2016-1237
nfsd in the Linux kernel through 4.6.3 allows local users to bypass intended file-permission restrictions by setting a POSIX ACL, related to nfs2acl.c, nfs3acl.c, and nfs4acl.c.
Severity: MEDIUM (5.5)
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
References:
- http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=999653786df6954a31044528ac3f7a5dadca08f4
- http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=999653786df6954a31044528ac3f7a5dadca08f4
- DSA-3607
- DSA-3607
- [oss-security] 20160625 Linux CVE-2016-1237: nfsd: any user can set a file's ACL over NFS and grant access to it
- [oss-security] 20160625 Linux CVE-2016-1237: nfsd: any user can set a file's ACL over NFS and grant access to it
- 91456
- 91456
- USN-3053-1
- USN-3053-1
- USN-3070-1
- USN-3070-1
- USN-3070-2
- USN-3070-2
- USN-3070-3
- USN-3070-3
- USN-3070-4
- USN-3070-4
- https://bugzilla.redhat.com/show_bug.cgi?id=1350845
- https://bugzilla.redhat.com/show_bug.cgi?id=1350845
- https://github.com/torvalds/linux/commit/999653786df6954a31044528ac3f7a5dadca08f4
- https://github.com/torvalds/linux/commit/999653786df6954a31044528ac3f7a5dadca08f4
Published: 2016-06-27
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2016-4470
The key_reject_and_link function in security/keys/key.c in the Linux kernel through 4.6.3 does not ensure that a certain data structure is initialized, which allows local users to cause a denial of service (system crash) via vectors involving a crafted keyctl request2 command.
Severity: MEDIUM (5.5)
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
References:
- http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=38327424b40bcebe2de92d07312c89360ac9229a
- http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=38327424b40bcebe2de92d07312c89360ac9229a
- SUSE-SU-2016:1937
- SUSE-SU-2016:1937
- SUSE-SU-2016:1961
- SUSE-SU-2016:1961
- SUSE-SU-2016:1985
- SUSE-SU-2016:1985
- SUSE-SU-2016:1994
- SUSE-SU-2016:1994
- SUSE-SU-2016:1995
- SUSE-SU-2016:1995
- SUSE-SU-2016:1998
- SUSE-SU-2016:1998
- SUSE-SU-2016:1999
- SUSE-SU-2016:1999
- SUSE-SU-2016:2000
- SUSE-SU-2016:2000
- SUSE-SU-2016:2001
- SUSE-SU-2016:2001
- SUSE-SU-2016:2002
- SUSE-SU-2016:2002
- SUSE-SU-2016:2003
- SUSE-SU-2016:2003
- SUSE-SU-2016:2005
- SUSE-SU-2016:2005
- SUSE-SU-2016:2006
- SUSE-SU-2016:2006
- SUSE-SU-2016:2007
- SUSE-SU-2016:2007
- SUSE-SU-2016:2009
- SUSE-SU-2016:2009
- SUSE-SU-2016:2010
- SUSE-SU-2016:2010
- SUSE-SU-2016:2011
- SUSE-SU-2016:2011
- SUSE-SU-2016:2014
- SUSE-SU-2016:2014
- SUSE-SU-2016:2018
- SUSE-SU-2016:2018
- SUSE-SU-2016:2105
- SUSE-SU-2016:2105
- openSUSE-SU-2016:2184
- openSUSE-SU-2016:2184
- RHSA-2016:1532
- RHSA-2016:1532
- RHSA-2016:1539
- RHSA-2016:1539
- RHSA-2016:1541
- RHSA-2016:1541
- RHSA-2016:1657
- RHSA-2016:1657
- RHSA-2016:2006
- RHSA-2016:2006
- RHSA-2016:2074
- RHSA-2016:2074
- RHSA-2016:2076
- RHSA-2016:2076
- RHSA-2016:2128
- RHSA-2016:2128
- RHSA-2016:2133
- RHSA-2016:2133
- DSA-3607
- DSA-3607
- [oss-security] 20160615 CVE-2016-4470: Linux kernel Uninitialized variable in request_key handling user controlled kfree().
- [oss-security] 20160615 CVE-2016-4470: Linux kernel Uninitialized variable in request_key handling user controlled kfree().
- http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html
- http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
- http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
- 1036763
- 1036763
- USN-3049-1
- USN-3049-1
- USN-3050-1
- USN-3050-1
- USN-3051-1
- USN-3051-1
- USN-3052-1
- USN-3052-1
- USN-3053-1
- USN-3053-1
- USN-3054-1
- USN-3054-1
- USN-3055-1
- USN-3055-1
- USN-3056-1
- USN-3056-1
- USN-3057-1
- USN-3057-1
- https://bugzilla.redhat.com/show_bug.cgi?id=1341716
- https://bugzilla.redhat.com/show_bug.cgi?id=1341716
- https://github.com/torvalds/linux/commit/38327424b40bcebe2de92d07312c89360ac9229a
- https://github.com/torvalds/linux/commit/38327424b40bcebe2de92d07312c89360ac9229a
Published: 2016-06-27
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2016-5243
The tipc_nl_compat_link_dump function in net/tipc/netlink_compat.c in the Linux kernel through 4.6.3 does not properly copy a certain string, which allows local users to obtain sensitive information from kernel stack memory by reading a Netlink message.
Severity: MEDIUM (5.5)
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
References:
- http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=5d2be1422e02ccd697ccfcd45c85b4a26e6178e2
- http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=5d2be1422e02ccd697ccfcd45c85b4a26e6178e2
- DSA-3607
- DSA-3607
- [oss-security] 20160603 Re: CVE Request: tipc: an infoleak in tipc_nl_compat_link_dump
- [oss-security] 20160603 Re: CVE Request: tipc: an infoleak in tipc_nl_compat_link_dump
- 91334
- 91334
- USN-3049-1
- USN-3049-1
- USN-3050-1
- USN-3050-1
- USN-3051-1
- USN-3051-1
- USN-3052-1
- USN-3052-1
- USN-3053-1
- USN-3053-1
- USN-3054-1
- USN-3054-1
- USN-3055-1
- USN-3055-1
- USN-3056-1
- USN-3056-1
- USN-3057-1
- USN-3057-1
- https://bugzilla.redhat.com/show_bug.cgi?id=1343335
- https://bugzilla.redhat.com/show_bug.cgi?id=1343335
- https://github.com/torvalds/linux/commit/5d2be1422e02ccd697ccfcd45c85b4a26e6178e2
- https://github.com/torvalds/linux/commit/5d2be1422e02ccd697ccfcd45c85b4a26e6178e2
- https://patchwork.ozlabs.org/patch/629100/
- https://patchwork.ozlabs.org/patch/629100/
Published: 2016-06-27
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2016-5244
The rds_inc_info_copy function in net/rds/recv.c in the Linux kernel through 4.6.3 does not initialize a certain structure member, which allows remote attackers to obtain sensitive information from kernel stack memory by reading an RDS message.
Severity: HIGH (7.5)
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
References:
- http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4116def2337991b39919f3b448326e21c40e0dbb
- http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4116def2337991b39919f3b448326e21c40e0dbb
- openSUSE-SU-2016:1641
- openSUSE-SU-2016:1641
- SUSE-SU-2016:1672
- SUSE-SU-2016:1672
- SUSE-SU-2016:1690
- SUSE-SU-2016:1690
- SUSE-SU-2016:1937
- SUSE-SU-2016:1937
- SUSE-SU-2016:1985
- SUSE-SU-2016:1985
- SUSE-SU-2016:2105
- SUSE-SU-2016:2105
- openSUSE-SU-2016:2184
- openSUSE-SU-2016:2184
- DSA-3607
- DSA-3607
- [oss-security] 20160603 Re: CVE Request: rds: fix an infoleak in rds_inc_info_copy
- [oss-security] 20160603 Re: CVE Request: rds: fix an infoleak in rds_inc_info_copy
- http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
- http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
- 91021
- 91021
- 1041895
- 1041895
- USN-3070-1
- USN-3070-1
- USN-3070-2
- USN-3070-2
- USN-3070-3
- USN-3070-3
- USN-3070-4
- USN-3070-4
- USN-3071-1
- USN-3071-1
- USN-3071-2
- USN-3071-2
- USN-3072-1
- USN-3072-1
- USN-3072-2
- USN-3072-2
- https://bugzilla.redhat.com/show_bug.cgi?id=1343337
- https://bugzilla.redhat.com/show_bug.cgi?id=1343337
- https://github.com/torvalds/linux/commit/4116def2337991b39919f3b448326e21c40e0dbb
- https://github.com/torvalds/linux/commit/4116def2337991b39919f3b448326e21c40e0dbb
- https://patchwork.ozlabs.org/patch/629110/
- https://patchwork.ozlabs.org/patch/629110/