Все бюллетени/c8.1/ALT-PU-2019-1325-1
ALT-PU-2019-1325-1

Обновление пакета kernel-image-srv-restricted в ветке c8.1

Версия4.9.160-alt0.M80C.1
Задание#222835
Опубликовано2019-02-28
Макс. серьёзностьHIGH
Серьёзность:

Закрытые проблемы (1)

CVE-2018-1000026
HIGH7.7

Linux Linux kernel version at least v4.8 onwards, probably well before contains a Insufficient input validation vulnerability in bnx2x network card driver that can result in DoS: Network card firmware assertion takes card off-line. This attack appear to be exploitable via An attacker on a must pass a very large, specially crafted packet to the bnx2x card. This can be done from an untrusted guest VM..

Опубликовано: 2018-02-09Изменено: 2024-11-21
CVSS 2.0СРЕДНЯЯ 6.8
CVSS:2.0/AV:N/AC:L/Au:S/C:N/I:N/A:C
CVSS 3.xВЫСОКАЯ 7.7
CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
Ссылки