Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2017-15299 (GCVE-0-2017-15299)
Vulnerability from cvelistv5
Published
2017-10-14 21:00
Modified
2024-08-05 19:50
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
The KEYS subsystem in the Linux kernel through 4.13.7 mishandles use of add_key for a key that already exists but is uninstantiated, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted system call.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T19:50:16.423Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1498016"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.mail-archive.com/linux-kernel%40vger.kernel.org/msg1499828.html"
},
{
"name": "[debian-lts-announce] 20171210 [SECURITY] [DLA 1200-1] linux security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html"
},
{
"name": "RHSA-2018:0654",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://marc.info/?t=150654188100001\u0026r=1\u0026w=2"
},
{
"name": "USN-3798-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3798-1/"
},
{
"name": "USN-3798-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3798-2/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://marc.info/?t=150783958600011\u0026r=1\u0026w=2"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2017-10-14T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "The KEYS subsystem in the Linux kernel through 4.13.7 mishandles use of add_key for a key that already exists but is uninstantiated, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted system call."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-10-30T09:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1498016"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.mail-archive.com/linux-kernel%40vger.kernel.org/msg1499828.html"
},
{
"name": "[debian-lts-announce] 20171210 [SECURITY] [DLA 1200-1] linux security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html"
},
{
"name": "RHSA-2018:0654",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://marc.info/?t=150654188100001\u0026r=1\u0026w=2"
},
{
"name": "USN-3798-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3798-1/"
},
{
"name": "USN-3798-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3798-2/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://marc.info/?t=150783958600011\u0026r=1\u0026w=2"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-15299",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The KEYS subsystem in the Linux kernel through 4.13.7 mishandles use of add_key for a key that already exists but is uninstantiated, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted system call."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1498016",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1498016"
},
{
"name": "https://www.mail-archive.com/linux-kernel@vger.kernel.org/msg1499828.html",
"refsource": "MISC",
"url": "https://www.mail-archive.com/linux-kernel@vger.kernel.org/msg1499828.html"
},
{
"name": "[debian-lts-announce] 20171210 [SECURITY] [DLA 1200-1] linux security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html"
},
{
"name": "RHSA-2018:0654",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
},
{
"name": "https://marc.info/?t=150654188100001\u0026r=1\u0026w=2",
"refsource": "MISC",
"url": "https://marc.info/?t=150654188100001\u0026r=1\u0026w=2"
},
{
"name": "USN-3798-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3798-1/"
},
{
"name": "USN-3798-2",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3798-2/"
},
{
"name": "https://marc.info/?t=150783958600011\u0026r=1\u0026w=2",
"refsource": "MISC",
"url": "https://marc.info/?t=150783958600011\u0026r=1\u0026w=2"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2017-15299",
"datePublished": "2017-10-14T21:00:00",
"dateReserved": "2017-10-14T00:00:00",
"dateUpdated": "2024-08-05T19:50:16.423Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2017-15299\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2017-10-14T23:29:00.323\",\"lastModified\":\"2025-04-20T01:37:25.860\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The KEYS subsystem in the Linux kernel through 4.13.7 mishandles use of add_key for a key that already exists but is uninstantiated, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted system call.\"},{\"lang\":\"es\",\"value\":\"El subsistema de claves KEYS en el kernel Linux hasta la versi\u00f3n 4.13.7 gestiona de manera incorrecta el uso de add_key para una clave que ya existe, pero no se ha probado, lo que permite que usuarios locales provoquen una denegaci\u00f3n de servicio (desreferencia de puntero NULL y cierre inesperado del sistema) o que tengan un impacto sin especificar mediante una llamada del sistema manipulada.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:N/I:N/A:C\",\"baseScore\":4.9,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.9,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-476\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"4.13.6\",\"matchCriteriaId\":\"90F3E159-291B-49D0-ACC2-11046DE3849B\"}]}]}],\"references\":[{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0654\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1498016\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://marc.info/?t=150654188100001\u0026r=1\u0026w=2\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://marc.info/?t=150783958600011\u0026r=1\u0026w=2\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3798-1/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://usn.ubuntu.com/3798-2/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.mail-archive.com/linux-kernel%40vger.kernel.org/msg1499828.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0654\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1498016\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://marc.info/?t=150654188100001\u0026r=1\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://marc.info/?t=150783958600011\u0026r=1\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3798-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://usn.ubuntu.com/3798-2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.mail-archive.com/linux-kernel%40vger.kernel.org/msg1499828.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
gsd-2017-15299
Vulnerability from gsd
Modified
2023-12-13 01:20
Details
The KEYS subsystem in the Linux kernel through 4.13.7 mishandles use of add_key for a key that already exists but is uninstantiated, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted system call.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2017-15299",
"description": "The KEYS subsystem in the Linux kernel through 4.13.7 mishandles use of add_key for a key that already exists but is uninstantiated, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted system call.",
"id": "GSD-2017-15299",
"references": [
"https://www.suse.com/security/cve/CVE-2017-15299.html",
"https://access.redhat.com/errata/RHSA-2018:0654",
"https://ubuntu.com/security/CVE-2017-15299",
"https://advisories.mageia.org/CVE-2017-15299.html",
"https://alas.aws.amazon.com/cve/html/CVE-2017-15299.html",
"https://linux.oracle.com/cve/CVE-2017-15299.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2017-15299"
],
"details": "The KEYS subsystem in the Linux kernel through 4.13.7 mishandles use of add_key for a key that already exists but is uninstantiated, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted system call.",
"id": "GSD-2017-15299",
"modified": "2023-12-13T01:20:58.925813Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-15299",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The KEYS subsystem in the Linux kernel through 4.13.7 mishandles use of add_key for a key that already exists but is uninstantiated, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted system call."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1498016",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1498016"
},
{
"name": "https://www.mail-archive.com/linux-kernel@vger.kernel.org/msg1499828.html",
"refsource": "MISC",
"url": "https://www.mail-archive.com/linux-kernel@vger.kernel.org/msg1499828.html"
},
{
"name": "[debian-lts-announce] 20171210 [SECURITY] [DLA 1200-1] linux security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html"
},
{
"name": "RHSA-2018:0654",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
},
{
"name": "https://marc.info/?t=150654188100001\u0026r=1\u0026w=2",
"refsource": "MISC",
"url": "https://marc.info/?t=150654188100001\u0026r=1\u0026w=2"
},
{
"name": "USN-3798-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3798-1/"
},
{
"name": "USN-3798-2",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3798-2/"
},
{
"name": "https://marc.info/?t=150783958600011\u0026r=1\u0026w=2",
"refsource": "MISC",
"url": "https://marc.info/?t=150783958600011\u0026r=1\u0026w=2"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "4.13.6",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-15299"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "The KEYS subsystem in the Linux kernel through 4.13.7 mishandles use of add_key for a key that already exists but is uninstantiated, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted system call."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-476"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.mail-archive.com/linux-kernel@vger.kernel.org/msg1499828.html",
"refsource": "MISC",
"tags": [
"Exploit",
"Issue Tracking",
"Mailing List",
"Patch",
"Third Party Advisory"
],
"url": "https://www.mail-archive.com/linux-kernel@vger.kernel.org/msg1499828.html"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1498016",
"refsource": "MISC",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1498016"
},
{
"name": "https://marc.info/?t=150783958600011\u0026r=1\u0026w=2",
"refsource": "MISC",
"tags": [
"Issue Tracking",
"Patch",
"Third Party Advisory"
],
"url": "https://marc.info/?t=150783958600011\u0026r=1\u0026w=2"
},
{
"name": "https://marc.info/?t=150654188100001\u0026r=1\u0026w=2",
"refsource": "MISC",
"tags": [
"Issue Tracking",
"Patch",
"Third Party Advisory"
],
"url": "https://marc.info/?t=150654188100001\u0026r=1\u0026w=2"
},
{
"name": "[debian-lts-announce] 20171210 [SECURITY] [DLA 1200-1] linux security update",
"refsource": "MLIST",
"tags": [],
"url": "https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html"
},
{
"name": "RHSA-2018:0654",
"refsource": "REDHAT",
"tags": [],
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
},
{
"name": "USN-3798-2",
"refsource": "UBUNTU",
"tags": [],
"url": "https://usn.ubuntu.com/3798-2/"
},
{
"name": "USN-3798-1",
"refsource": "UBUNTU",
"tags": [],
"url": "https://usn.ubuntu.com/3798-1/"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 4.9,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
},
"lastModifiedDate": "2018-10-30T10:29Z",
"publishedDate": "2017-10-14T23:29Z"
}
}
}
suse-su-2018:0848-1
Vulnerability from csaf_suse
Published
2018-03-29 12:28
Modified
2018-03-29 12:28
Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 12 SP1 kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
- CVE-2018-1068: Fixed flaw in the implementation of 32-bit syscall interface
for bridging. This allowed a privileged user to arbitrarily write to a limited
range of kernel memory (bnc#1085107).
- CVE-2017-18221: The __munlock_pagevec function allowed local users to cause a
denial of service (NR_MLOCK accounting corruption) via crafted use of mlockall
and munlockall system calls (bnc#1084323).
- CVE-2018-1066: Prevent NULL pointer dereference in
fs/cifs/cifsencrypt.c:setup_ntlmv2_rsp() that allowed an attacker controlling a
CIFS server to kernel panic a client that has this server mounted, because an
empty TargetInfo field in an NTLMSSP setup negotiation response was mishandled
during session recovery (bnc#1083640).
- CVE-2017-13166: Prevent elevation of privilege vulnerability in the kernel
v4l2 video driver (bnc#1072865).
- CVE-2017-16911: The vhci_hcd driver allowed local attackers to disclose
kernel memory addresses. Successful exploitation required that a USB device was
attached over IP (bnc#1078674).
- CVE-2017-15299: The KEYS subsystem mishandled use of add_key for a key that
already exists but is uninstantiated, which allowed local users to cause a
denial of service (NULL pointer dereference and system crash) or possibly have
unspecified other impact via a crafted system call (bnc#1063416).
- CVE-2017-18208: The madvise_willneed function kernel allowed local users to
cause a denial of service (infinite loop) by triggering use of MADVISE_WILLNEED
for a DAX mapping (bnc#1083494).
- CVE-2018-7566: The ALSA sequencer core initializes the event pool on demand
by invoking snd_seq_pool_init() when the first write happens and the pool is
empty. A user could have reset the pool size manually via ioctl concurrently,
which may have lead UAF or out-of-bound access (bsc#1083483).
- CVE-2017-18204: The ocfs2_setattr function allowed local users to cause a
denial of service (deadlock) via DIO requests (bnc#1083244).
- CVE-2017-16644: The hdpvr_probe function allowed local users to cause a
denial of service (improper error handling and system crash) or possibly have
unspecified other impact via a crafted USB device (bnc#1067118).
- CVE-2018-6927: The futex_requeue function allowed attackers to cause a denial
of service (integer overflow) or possibly have unspecified other impact by
triggering a negative wake or requeue value (bnc#1080757).
- CVE-2017-16914: The 'stub_send_ret_submit()' function allowed attackers to
cause a denial of service (NULL pointer dereference) via a specially crafted
USB over IP packet (bnc#1078669).
- CVE-2016-7915: The hid_input_field function allowed physically proximate
attackers to obtain sensitive information from kernel memory or cause a denial
of service (out-of-bounds read) by connecting a device (bnc#1010470).
- CVE-2017-12190: The bio_map_user_iov and bio_unmap_user functions did
unbalanced refcounting when a SCSI I/O vector had small consecutive buffers
belonging to the same page. The bio_add_pc_page function merged them into one,
but the page reference was never dropped. This caused a memory leak and
possible system lockup (exploitable against the host OS by a guest OS user, if
a SCSI disk is passed through to a virtual machine) due to an out-of-memory
condition (bnc#1062568).
- CVE-2017-16912: The 'get_pipe()' function allowed attackers to cause a denial
of service (out-of-bounds read) via a specially crafted USB over IP packet
(bnc#1078673).
- CVE-2017-16913: The 'stub_recv_cmd_submit()' function when handling
CMD_SUBMIT packets allowed attackers to cause a denial of service (arbitrary
memory allocation) via a specially crafted USB over IP packet (bnc#1078672).
- CVE-2018-5332: The rds_message_alloc_sgs() function did not validate a value
that is used during DMA page allocation, leading to a heap-based out-of-bounds
write (related to the rds_rdma_extra_size function in net/rds/rdma.c)
(bnc#1075621).
- CVE-2018-5333: The rds_cmsg_atomic function in net/rds/rdma.c mishandled
cases where page pinning fails or an invalid address is supplied, leading to an
rds_atomic_free_op NULL pointer dereference (bnc#1075617).
- CVE-2017-18017: The tcpmss_mangle_packet function allowed remote attackers to
cause a denial of service (use-after-free and memory corruption) or possibly
have unspecified other impact by leveraging the presence of xt_TCPMSS in an
iptables action (bnc#1074488).
The following non-security bugs were fixed:
- KEYS: do not let add_key() update an uninstantiated key (bnc#1063416).
- KEYS: fix writing past end of user-supplied buffer in keyring_read() (bsc#1066001).
- KEYS: return full count in keyring_read() if buffer is too small (bsc#1066001).
- NFS: Add a cond_resched() to nfs_commit_release_pages() (bsc#1077779).
- btrfs: qgroup: move noisy underflow warning to debugging build (bsc#1055755 and bsc#1080287).
- ipc/msg: introduce msgctl(MSG_STAT_ANY) (bsc#1072689).
- ipc/sem: introduce semctl(SEM_STAT_ANY) (bsc#1072689).
- ipc/shm: introduce shmctl(SHM_STAT_ANY) (bsc#1072689).
- x86/kaiser: use trampoline stack for kernel entry (bsc#1077560)
- leds: do not overflow sysfs buffer in led_trigger_show (bsc#1080464).
- livepatch: __kgr_shadow_get_or_alloc() is local to shadow.c. Shadow variables support (bsc#1082299).
- livepatch: introduce shadow variable API. Shadow variables support (bsc#1082299)
- media: v4l2-compat-ioctl32.c: add missing VIDIOC_PREPARE_BUF (bnc#1012382).
- media: v4l2-compat-ioctl32.c: avoid sizeof(type) (bnc#1012382).
- media: v4l2-compat-ioctl32.c: copy clip list in put_v4l2_window32 (bnc#1012382).
- media: v4l2-compat-ioctl32.c: copy m.userptr in put_v4l2_plane32 (bnc#1012382).
- media: v4l2-compat-ioctl32.c: do not copy back the result for certain errors (bnc#1012382).
- media: v4l2-compat-ioctl32.c: drop pr_info for unknown buffer type (bnc#1012382).
- media: v4l2-compat-ioctl32.c: fix the indentation (bnc#1012382).
- media: v4l2-compat-ioctl32.c: move 'helper' functions to __get/put_v4l2_format32 (bnc#1012382).
- media: v4l2-compat-ioctl32: Copy v4l2_window->global_alpha (bnc#1012382).
- media: v4l2-ioctl.c: do not copy back the result for -ENOTTY (bnc#1012382).
- netfilter: ebtables: CONFIG_COMPAT: do not trust userland offsets (bsc#1085107).
- netfilter: ebtables: fix erroneous reject of last rule (bsc#1085107).
- packet: only call dev_add_pack() on freshly allocated fanout instances
- pipe: cap initial pipe capacity according to pipe-max-size limit (bsc#1045330).
- powerpc/64s: Improve RFI L1-D cache flush fallback (bsc#1068032, bsc#1077182).
- powerpc/numa: Invalidate numa_cpu_lookup_table on cpu remove (bsc#1081512).
- powerpc/powernv: Support firmware disable of RFI flush (bsc#1068032, bsc#1077182).
- powerpc/powernv: Support firmware disable of RFI flush (bsc#1068032, bsc#1077182).
- powerpc/pseries: Support firmware disable of RFI flush (bsc#1068032, bsc#1077182).
- powerpc/pseries: Support firmware disable of RFI flush (bsc#1068032, bsc#1077182).
- rfi-flush: Move the logic to avoid a redo into the debugfs code (bsc#1068032, bsc#1077182).
- rfi-flush: Switch to new linear fallback flush (bsc#1068032, bsc#1077182).
Patchnames
SUSE-OpenStack-Cloud-6-2018-568,SUSE-SLE-Module-Public-Cloud-12-2018-568,SUSE-SLE-SAP-12-SP1-2018-568,SUSE-SLE-SERVER-12-SP1-2018-568
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 12 SP1 kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2018-1068: Fixed flaw in the implementation of 32-bit syscall interface\n for bridging. This allowed a privileged user to arbitrarily write to a limited\n range of kernel memory (bnc#1085107).\n- CVE-2017-18221: The __munlock_pagevec function allowed local users to cause a\n denial of service (NR_MLOCK accounting corruption) via crafted use of mlockall\n and munlockall system calls (bnc#1084323).\n- CVE-2018-1066: Prevent NULL pointer dereference in\n fs/cifs/cifsencrypt.c:setup_ntlmv2_rsp() that allowed an attacker controlling a\n CIFS server to kernel panic a client that has this server mounted, because an\n empty TargetInfo field in an NTLMSSP setup negotiation response was mishandled\n during session recovery (bnc#1083640).\n- CVE-2017-13166: Prevent elevation of privilege vulnerability in the kernel\n v4l2 video driver (bnc#1072865).\n- CVE-2017-16911: The vhci_hcd driver allowed local attackers to disclose\n kernel memory addresses. Successful exploitation required that a USB device was\n attached over IP (bnc#1078674).\n- CVE-2017-15299: The KEYS subsystem mishandled use of add_key for a key that\n already exists but is uninstantiated, which allowed local users to cause a\n denial of service (NULL pointer dereference and system crash) or possibly have\n unspecified other impact via a crafted system call (bnc#1063416).\n- CVE-2017-18208: The madvise_willneed function kernel allowed local users to\n cause a denial of service (infinite loop) by triggering use of MADVISE_WILLNEED\n for a DAX mapping (bnc#1083494).\n- CVE-2018-7566: The ALSA sequencer core initializes the event pool on demand\n by invoking snd_seq_pool_init() when the first write happens and the pool is\n empty. A user could have reset the pool size manually via ioctl concurrently,\n which may have lead UAF or out-of-bound access (bsc#1083483).\n- CVE-2017-18204: The ocfs2_setattr function allowed local users to cause a\n denial of service (deadlock) via DIO requests (bnc#1083244).\n- CVE-2017-16644: The hdpvr_probe function allowed local users to cause a\n denial of service (improper error handling and system crash) or possibly have\n unspecified other impact via a crafted USB device (bnc#1067118).\n- CVE-2018-6927: The futex_requeue function allowed attackers to cause a denial\n of service (integer overflow) or possibly have unspecified other impact by\n triggering a negative wake or requeue value (bnc#1080757).\n- CVE-2017-16914: The \u0027stub_send_ret_submit()\u0027 function allowed attackers to\n cause a denial of service (NULL pointer dereference) via a specially crafted\n USB over IP packet (bnc#1078669).\n- CVE-2016-7915: The hid_input_field function allowed physically proximate\n attackers to obtain sensitive information from kernel memory or cause a denial\n of service (out-of-bounds read) by connecting a device (bnc#1010470).\n- CVE-2017-12190: The bio_map_user_iov and bio_unmap_user functions did\n unbalanced refcounting when a SCSI I/O vector had small consecutive buffers\n belonging to the same page. The bio_add_pc_page function merged them into one,\n but the page reference was never dropped. This caused a memory leak and\n possible system lockup (exploitable against the host OS by a guest OS user, if\n a SCSI disk is passed through to a virtual machine) due to an out-of-memory\n condition (bnc#1062568).\n- CVE-2017-16912: The \u0027get_pipe()\u0027 function allowed attackers to cause a denial\n of service (out-of-bounds read) via a specially crafted USB over IP packet\n (bnc#1078673).\n- CVE-2017-16913: The \u0027stub_recv_cmd_submit()\u0027 function when handling\n CMD_SUBMIT packets allowed attackers to cause a denial of service (arbitrary\n memory allocation) via a specially crafted USB over IP packet (bnc#1078672).\n- CVE-2018-5332: The rds_message_alloc_sgs() function did not validate a value\n that is used during DMA page allocation, leading to a heap-based out-of-bounds\n write (related to the rds_rdma_extra_size function in net/rds/rdma.c)\n (bnc#1075621).\n- CVE-2018-5333: The rds_cmsg_atomic function in net/rds/rdma.c mishandled\n cases where page pinning fails or an invalid address is supplied, leading to an\n rds_atomic_free_op NULL pointer dereference (bnc#1075617).\n- CVE-2017-18017: The tcpmss_mangle_packet function allowed remote attackers to\n cause a denial of service (use-after-free and memory corruption) or possibly\n have unspecified other impact by leveraging the presence of xt_TCPMSS in an\n iptables action (bnc#1074488).\n \nThe following non-security bugs were fixed:\n\n- KEYS: do not let add_key() update an uninstantiated key (bnc#1063416).\n- KEYS: fix writing past end of user-supplied buffer in keyring_read() (bsc#1066001).\n- KEYS: return full count in keyring_read() if buffer is too small (bsc#1066001).\n- NFS: Add a cond_resched() to nfs_commit_release_pages() (bsc#1077779).\n- btrfs: qgroup: move noisy underflow warning to debugging build (bsc#1055755 and bsc#1080287).\n- ipc/msg: introduce msgctl(MSG_STAT_ANY) (bsc#1072689).\n- ipc/sem: introduce semctl(SEM_STAT_ANY) (bsc#1072689).\n- ipc/shm: introduce shmctl(SHM_STAT_ANY) (bsc#1072689).\n- x86/kaiser: use trampoline stack for kernel entry (bsc#1077560)\n- leds: do not overflow sysfs buffer in led_trigger_show (bsc#1080464).\n- livepatch: __kgr_shadow_get_or_alloc() is local to shadow.c. Shadow variables support (bsc#1082299).\n- livepatch: introduce shadow variable API. Shadow variables support (bsc#1082299)\n- media: v4l2-compat-ioctl32.c: add missing VIDIOC_PREPARE_BUF (bnc#1012382).\n- media: v4l2-compat-ioctl32.c: avoid sizeof(type) (bnc#1012382).\n- media: v4l2-compat-ioctl32.c: copy clip list in put_v4l2_window32 (bnc#1012382).\n- media: v4l2-compat-ioctl32.c: copy m.userptr in put_v4l2_plane32 (bnc#1012382).\n- media: v4l2-compat-ioctl32.c: do not copy back the result for certain errors (bnc#1012382).\n- media: v4l2-compat-ioctl32.c: drop pr_info for unknown buffer type (bnc#1012382).\n- media: v4l2-compat-ioctl32.c: fix the indentation (bnc#1012382).\n- media: v4l2-compat-ioctl32.c: move \u0027helper\u0027 functions to __get/put_v4l2_format32 (bnc#1012382).\n- media: v4l2-compat-ioctl32: Copy v4l2_window-\u003eglobal_alpha (bnc#1012382).\n- media: v4l2-ioctl.c: do not copy back the result for -ENOTTY (bnc#1012382).\n- netfilter: ebtables: CONFIG_COMPAT: do not trust userland offsets (bsc#1085107).\n- netfilter: ebtables: fix erroneous reject of last rule (bsc#1085107).\n- packet: only call dev_add_pack() on freshly allocated fanout instances\n- pipe: cap initial pipe capacity according to pipe-max-size limit (bsc#1045330).\n- powerpc/64s: Improve RFI L1-D cache flush fallback (bsc#1068032, bsc#1077182).\n- powerpc/numa: Invalidate numa_cpu_lookup_table on cpu remove (bsc#1081512).\n- powerpc/powernv: Support firmware disable of RFI flush (bsc#1068032, bsc#1077182).\n- powerpc/powernv: Support firmware disable of RFI flush (bsc#1068032, bsc#1077182).\n- powerpc/pseries: Support firmware disable of RFI flush (bsc#1068032, bsc#1077182).\n- powerpc/pseries: Support firmware disable of RFI flush (bsc#1068032, bsc#1077182).\n- rfi-flush: Move the logic to avoid a redo into the debugfs code (bsc#1068032, bsc#1077182).\n- rfi-flush: Switch to new linear fallback flush (bsc#1068032, bsc#1077182).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-OpenStack-Cloud-6-2018-568,SUSE-SLE-Module-Public-Cloud-12-2018-568,SUSE-SLE-SAP-12-SP1-2018-568,SUSE-SLE-SERVER-12-SP1-2018-568",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_0848-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2018:0848-1",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180848-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2018:0848-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2018-March/003857.html"
},
{
"category": "self",
"summary": "SUSE Bug 1010470",
"url": "https://bugzilla.suse.com/1010470"
},
{
"category": "self",
"summary": "SUSE Bug 1012382",
"url": "https://bugzilla.suse.com/1012382"
},
{
"category": "self",
"summary": "SUSE Bug 1045330",
"url": "https://bugzilla.suse.com/1045330"
},
{
"category": "self",
"summary": "SUSE Bug 1055755",
"url": "https://bugzilla.suse.com/1055755"
},
{
"category": "self",
"summary": "SUSE Bug 1062568",
"url": "https://bugzilla.suse.com/1062568"
},
{
"category": "self",
"summary": "SUSE Bug 1063416",
"url": "https://bugzilla.suse.com/1063416"
},
{
"category": "self",
"summary": "SUSE Bug 1066001",
"url": "https://bugzilla.suse.com/1066001"
},
{
"category": "self",
"summary": "SUSE Bug 1067118",
"url": "https://bugzilla.suse.com/1067118"
},
{
"category": "self",
"summary": "SUSE Bug 1068032",
"url": "https://bugzilla.suse.com/1068032"
},
{
"category": "self",
"summary": "SUSE Bug 1072689",
"url": "https://bugzilla.suse.com/1072689"
},
{
"category": "self",
"summary": "SUSE Bug 1072865",
"url": "https://bugzilla.suse.com/1072865"
},
{
"category": "self",
"summary": "SUSE Bug 1074488",
"url": "https://bugzilla.suse.com/1074488"
},
{
"category": "self",
"summary": "SUSE Bug 1075617",
"url": "https://bugzilla.suse.com/1075617"
},
{
"category": "self",
"summary": "SUSE Bug 1075621",
"url": "https://bugzilla.suse.com/1075621"
},
{
"category": "self",
"summary": "SUSE Bug 1077182",
"url": "https://bugzilla.suse.com/1077182"
},
{
"category": "self",
"summary": "SUSE Bug 1077560",
"url": "https://bugzilla.suse.com/1077560"
},
{
"category": "self",
"summary": "SUSE Bug 1077779",
"url": "https://bugzilla.suse.com/1077779"
},
{
"category": "self",
"summary": "SUSE Bug 1078669",
"url": "https://bugzilla.suse.com/1078669"
},
{
"category": "self",
"summary": "SUSE Bug 1078672",
"url": "https://bugzilla.suse.com/1078672"
},
{
"category": "self",
"summary": "SUSE Bug 1078673",
"url": "https://bugzilla.suse.com/1078673"
},
{
"category": "self",
"summary": "SUSE Bug 1078674",
"url": "https://bugzilla.suse.com/1078674"
},
{
"category": "self",
"summary": "SUSE Bug 1080255",
"url": "https://bugzilla.suse.com/1080255"
},
{
"category": "self",
"summary": "SUSE Bug 1080287",
"url": "https://bugzilla.suse.com/1080287"
},
{
"category": "self",
"summary": "SUSE Bug 1080464",
"url": "https://bugzilla.suse.com/1080464"
},
{
"category": "self",
"summary": "SUSE Bug 1080757",
"url": "https://bugzilla.suse.com/1080757"
},
{
"category": "self",
"summary": "SUSE Bug 1081512",
"url": "https://bugzilla.suse.com/1081512"
},
{
"category": "self",
"summary": "SUSE Bug 1082299",
"url": "https://bugzilla.suse.com/1082299"
},
{
"category": "self",
"summary": "SUSE Bug 1083244",
"url": "https://bugzilla.suse.com/1083244"
},
{
"category": "self",
"summary": "SUSE Bug 1083483",
"url": "https://bugzilla.suse.com/1083483"
},
{
"category": "self",
"summary": "SUSE Bug 1083494",
"url": "https://bugzilla.suse.com/1083494"
},
{
"category": "self",
"summary": "SUSE Bug 1083640",
"url": "https://bugzilla.suse.com/1083640"
},
{
"category": "self",
"summary": "SUSE Bug 1084323",
"url": "https://bugzilla.suse.com/1084323"
},
{
"category": "self",
"summary": "SUSE Bug 1085107",
"url": "https://bugzilla.suse.com/1085107"
},
{
"category": "self",
"summary": "SUSE Bug 1085114",
"url": "https://bugzilla.suse.com/1085114"
},
{
"category": "self",
"summary": "SUSE Bug 1085447",
"url": "https://bugzilla.suse.com/1085447"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-7915 page",
"url": "https://www.suse.com/security/cve/CVE-2016-7915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-12190 page",
"url": "https://www.suse.com/security/cve/CVE-2017-12190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-13166 page",
"url": "https://www.suse.com/security/cve/CVE-2017-13166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-15299 page",
"url": "https://www.suse.com/security/cve/CVE-2017-15299/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-16644 page",
"url": "https://www.suse.com/security/cve/CVE-2017-16644/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-16911 page",
"url": "https://www.suse.com/security/cve/CVE-2017-16911/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-16912 page",
"url": "https://www.suse.com/security/cve/CVE-2017-16912/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-16913 page",
"url": "https://www.suse.com/security/cve/CVE-2017-16913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-16914 page",
"url": "https://www.suse.com/security/cve/CVE-2017-16914/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-18017 page",
"url": "https://www.suse.com/security/cve/CVE-2017-18017/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-18204 page",
"url": "https://www.suse.com/security/cve/CVE-2017-18204/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-18208 page",
"url": "https://www.suse.com/security/cve/CVE-2017-18208/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-18221 page",
"url": "https://www.suse.com/security/cve/CVE-2017-18221/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-1066 page",
"url": "https://www.suse.com/security/cve/CVE-2018-1066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-1068 page",
"url": "https://www.suse.com/security/cve/CVE-2018-1068/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5332 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5332/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5333 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5333/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-6927 page",
"url": "https://www.suse.com/security/cve/CVE-2018-6927/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-7566 page",
"url": "https://www.suse.com/security/cve/CVE-2018-7566/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2018-03-29T12:28:31Z",
"generator": {
"date": "2018-03-29T12:28:31Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2018:0848-1",
"initial_release_date": "2018-03-29T12:28:31Z",
"revision_history": [
{
"date": "2018-03-29T12:28:31Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-3.12.74-60.64.85.1.noarch",
"product": {
"name": "kernel-devel-3.12.74-60.64.85.1.noarch",
"product_id": "kernel-devel-3.12.74-60.64.85.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-3.12.74-60.64.85.1.noarch",
"product": {
"name": "kernel-macros-3.12.74-60.64.85.1.noarch",
"product_id": "kernel-macros-3.12.74-60.64.85.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-3.12.74-60.64.85.1.noarch",
"product": {
"name": "kernel-source-3.12.74-60.64.85.1.noarch",
"product_id": "kernel-source-3.12.74-60.64.85.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-3.12.74-60.64.85.1.ppc64le",
"product": {
"name": "kernel-default-3.12.74-60.64.85.1.ppc64le",
"product_id": "kernel-default-3.12.74-60.64.85.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"product": {
"name": "kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"product_id": "kernel-default-base-3.12.74-60.64.85.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"product": {
"name": "kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"product_id": "kernel-default-devel-3.12.74-60.64.85.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-syms-3.12.74-60.64.85.1.ppc64le",
"product": {
"name": "kernel-syms-3.12.74-60.64.85.1.ppc64le",
"product_id": "kernel-syms-3.12.74-60.64.85.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-3.12.74-60.64.85.1.s390x",
"product": {
"name": "kernel-default-3.12.74-60.64.85.1.s390x",
"product_id": "kernel-default-3.12.74-60.64.85.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-base-3.12.74-60.64.85.1.s390x",
"product": {
"name": "kernel-default-base-3.12.74-60.64.85.1.s390x",
"product_id": "kernel-default-base-3.12.74-60.64.85.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-3.12.74-60.64.85.1.s390x",
"product": {
"name": "kernel-default-devel-3.12.74-60.64.85.1.s390x",
"product_id": "kernel-default-devel-3.12.74-60.64.85.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-man-3.12.74-60.64.85.1.s390x",
"product": {
"name": "kernel-default-man-3.12.74-60.64.85.1.s390x",
"product_id": "kernel-default-man-3.12.74-60.64.85.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-syms-3.12.74-60.64.85.1.s390x",
"product": {
"name": "kernel-syms-3.12.74-60.64.85.1.s390x",
"product_id": "kernel-syms-3.12.74-60.64.85.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-3.12.74-60.64.85.1.x86_64",
"product": {
"name": "kernel-default-3.12.74-60.64.85.1.x86_64",
"product_id": "kernel-default-3.12.74-60.64.85.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-3.12.74-60.64.85.1.x86_64",
"product": {
"name": "kernel-default-base-3.12.74-60.64.85.1.x86_64",
"product_id": "kernel-default-base-3.12.74-60.64.85.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"product": {
"name": "kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"product_id": "kernel-default-devel-3.12.74-60.64.85.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-3.12.74-60.64.85.1.x86_64",
"product": {
"name": "kernel-syms-3.12.74-60.64.85.1.x86_64",
"product_id": "kernel-syms-3.12.74-60.64.85.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-xen-3.12.74-60.64.85.1.x86_64",
"product": {
"name": "kernel-xen-3.12.74-60.64.85.1.x86_64",
"product_id": "kernel-xen-3.12.74-60.64.85.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"product": {
"name": "kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"product_id": "kernel-xen-base-3.12.74-60.64.85.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"product": {
"name": "kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"product_id": "kernel-xen-devel-3.12.74-60.64.85.1.x86_64"
}
},
{
"category": "product_version",
"name": "kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"product": {
"name": "kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"product_id": "kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"product": {
"name": "kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"product_id": "kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-ec2-3.12.74-60.64.85.1.x86_64",
"product": {
"name": "kernel-ec2-3.12.74-60.64.85.1.x86_64",
"product_id": "kernel-ec2-3.12.74-60.64.85.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"product": {
"name": "kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"product_id": "kernel-ec2-devel-3.12.74-60.64.85.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"product": {
"name": "kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"product_id": "kernel-ec2-extra-3.12.74-60.64.85.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 6",
"product": {
"name": "SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Public Cloud 12",
"product": {
"name": "SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-public-cloud:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-3.12.74-60.64.85.1.x86_64 as component of SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-default-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-3.12.74-60.64.85.1.x86_64 as component of SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-default-base-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-3.12.74-60.64.85.1.x86_64 as component of SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-3.12.74-60.64.85.1.noarch as component of SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch"
},
"product_reference": "kernel-devel-3.12.74-60.64.85.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-3.12.74-60.64.85.1.noarch as component of SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch"
},
"product_reference": "kernel-macros-3.12.74-60.64.85.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-3.12.74-60.64.85.1.noarch as component of SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch"
},
"product_reference": "kernel-source-3.12.74-60.64.85.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-3.12.74-60.64.85.1.x86_64 as component of SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-syms-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-3.12.74-60.64.85.1.x86_64 as component of SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-xen-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-base-3.12.74-60.64.85.1.x86_64 as component of SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-devel-3.12.74-60.64.85.1.x86_64 as component of SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64 as component of SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64"
},
"product_reference": "kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64 as component of SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
},
"product_reference": "kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-ec2-3.12.74-60.64.85.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-ec2-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-ec2-devel-3.12.74-60.64.85.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-ec2-extra-3.12.74-60.64.85.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-3.12.74-60.64.85.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le"
},
"product_reference": "kernel-default-3.12.74-60.64.85.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-3.12.74-60.64.85.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-default-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-3.12.74-60.64.85.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le"
},
"product_reference": "kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-3.12.74-60.64.85.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-default-base-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-3.12.74-60.64.85.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le"
},
"product_reference": "kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-3.12.74-60.64.85.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-3.12.74-60.64.85.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch"
},
"product_reference": "kernel-devel-3.12.74-60.64.85.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-3.12.74-60.64.85.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch"
},
"product_reference": "kernel-macros-3.12.74-60.64.85.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-3.12.74-60.64.85.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch"
},
"product_reference": "kernel-source-3.12.74-60.64.85.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-3.12.74-60.64.85.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le"
},
"product_reference": "kernel-syms-3.12.74-60.64.85.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-3.12.74-60.64.85.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-syms-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-3.12.74-60.64.85.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-xen-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-base-3.12.74-60.64.85.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-devel-3.12.74-60.64.85.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64"
},
"product_reference": "kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
},
"product_reference": "kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-3.12.74-60.64.85.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le"
},
"product_reference": "kernel-default-3.12.74-60.64.85.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-3.12.74-60.64.85.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x"
},
"product_reference": "kernel-default-3.12.74-60.64.85.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-3.12.74-60.64.85.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-default-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-3.12.74-60.64.85.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le"
},
"product_reference": "kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-3.12.74-60.64.85.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x"
},
"product_reference": "kernel-default-base-3.12.74-60.64.85.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-3.12.74-60.64.85.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-default-base-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-3.12.74-60.64.85.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le"
},
"product_reference": "kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-3.12.74-60.64.85.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x"
},
"product_reference": "kernel-default-devel-3.12.74-60.64.85.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-3.12.74-60.64.85.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-man-3.12.74-60.64.85.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x"
},
"product_reference": "kernel-default-man-3.12.74-60.64.85.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-3.12.74-60.64.85.1.noarch as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch"
},
"product_reference": "kernel-devel-3.12.74-60.64.85.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-3.12.74-60.64.85.1.noarch as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch"
},
"product_reference": "kernel-macros-3.12.74-60.64.85.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-3.12.74-60.64.85.1.noarch as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch"
},
"product_reference": "kernel-source-3.12.74-60.64.85.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-3.12.74-60.64.85.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le"
},
"product_reference": "kernel-syms-3.12.74-60.64.85.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-3.12.74-60.64.85.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x"
},
"product_reference": "kernel-syms-3.12.74-60.64.85.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-3.12.74-60.64.85.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-syms-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-3.12.74-60.64.85.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-xen-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-base-3.12.74-60.64.85.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-devel-3.12.74-60.64.85.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64"
},
"product_reference": "kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64"
},
"product_reference": "kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
},
"product_reference": "kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-7915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-7915"
}
],
"notes": [
{
"category": "general",
"text": "The hid_input_field function in drivers/hid/hid-core.c in the Linux kernel before 4.6 allows physically proximate attackers to obtain sensitive information from kernel memory or cause a denial of service (out-of-bounds read) by connecting a device, as demonstrated by a Logitech DJ receiver.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-7915",
"url": "https://www.suse.com/security/cve/CVE-2016-7915"
},
{
"category": "external",
"summary": "SUSE Bug 1010470 for CVE-2016-7915",
"url": "https://bugzilla.suse.com/1010470"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2016-7915",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-29T12:28:31Z",
"details": "moderate"
}
],
"title": "CVE-2016-7915"
},
{
"cve": "CVE-2017-12190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-12190"
}
],
"notes": [
{
"category": "general",
"text": "The bio_map_user_iov and bio_unmap_user functions in block/bio.c in the Linux kernel before 4.13.8 do unbalanced refcounting when a SCSI I/O vector has small consecutive buffers belonging to the same page. The bio_add_pc_page function merges them into one, but the page reference is never dropped. This causes a memory leak and possible system lockup (exploitable against the host OS by a guest OS user, if a SCSI disk is passed through to a virtual machine) due to an out-of-memory condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-12190",
"url": "https://www.suse.com/security/cve/CVE-2017-12190"
},
{
"category": "external",
"summary": "SUSE Bug 1062568 for CVE-2017-12190",
"url": "https://bugzilla.suse.com/1062568"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2017-12190",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-29T12:28:31Z",
"details": "moderate"
}
],
"title": "CVE-2017-12190"
},
{
"cve": "CVE-2017-13166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-13166"
}
],
"notes": [
{
"category": "general",
"text": "An elevation of privilege vulnerability in the kernel v4l2 video driver. Product: Android. Versions: Android kernel. Android ID A-34624167.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-13166",
"url": "https://www.suse.com/security/cve/CVE-2017-13166"
},
{
"category": "external",
"summary": "SUSE Bug 1072865 for CVE-2017-13166",
"url": "https://bugzilla.suse.com/1072865"
},
{
"category": "external",
"summary": "SUSE Bug 1085447 for CVE-2017-13166",
"url": "https://bugzilla.suse.com/1085447"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2017-13166",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2017-13166",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-29T12:28:31Z",
"details": "important"
}
],
"title": "CVE-2017-13166"
},
{
"cve": "CVE-2017-15299",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-15299"
}
],
"notes": [
{
"category": "general",
"text": "The KEYS subsystem in the Linux kernel through 4.13.7 mishandles use of add_key for a key that already exists but is uninstantiated, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted system call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-15299",
"url": "https://www.suse.com/security/cve/CVE-2017-15299"
},
{
"category": "external",
"summary": "SUSE Bug 1063416 for CVE-2017-15299",
"url": "https://bugzilla.suse.com/1063416"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-29T12:28:31Z",
"details": "moderate"
}
],
"title": "CVE-2017-15299"
},
{
"cve": "CVE-2017-16644",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-16644"
}
],
"notes": [
{
"category": "general",
"text": "The hdpvr_probe function in drivers/media/usb/hdpvr/hdpvr-core.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (improper error handling and system crash) or possibly have unspecified other impact via a crafted USB device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-16644",
"url": "https://www.suse.com/security/cve/CVE-2017-16644"
},
{
"category": "external",
"summary": "SUSE Bug 1067118 for CVE-2017-16644",
"url": "https://bugzilla.suse.com/1067118"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2017-16644",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2017-16644",
"url": "https://bugzilla.suse.com/1091815"
},
{
"category": "external",
"summary": "SUSE Bug 1146519 for CVE-2017-16644",
"url": "https://bugzilla.suse.com/1146519"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-29T12:28:31Z",
"details": "moderate"
}
],
"title": "CVE-2017-16644"
},
{
"cve": "CVE-2017-16911",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-16911"
}
],
"notes": [
{
"category": "general",
"text": "The vhci_hcd driver in the Linux Kernel before version 4.14.8 and 4.4.114 allows allows local attackers to disclose kernel memory addresses. Successful exploitation requires that a USB device is attached over IP.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-16911",
"url": "https://www.suse.com/security/cve/CVE-2017-16911"
},
{
"category": "external",
"summary": "SUSE Bug 1078674 for CVE-2017-16911",
"url": "https://bugzilla.suse.com/1078674"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2017-16911",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2017-16911",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-29T12:28:31Z",
"details": "low"
}
],
"title": "CVE-2017-16911"
},
{
"cve": "CVE-2017-16912",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-16912"
}
],
"notes": [
{
"category": "general",
"text": "The \"get_pipe()\" function (drivers/usb/usbip/stub_rx.c) in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 allows attackers to cause a denial of service (out-of-bounds read) via a specially crafted USB over IP packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-16912",
"url": "https://www.suse.com/security/cve/CVE-2017-16912"
},
{
"category": "external",
"summary": "SUSE Bug 1078673 for CVE-2017-16912",
"url": "https://bugzilla.suse.com/1078673"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2017-16912",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2017-16912",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-29T12:28:31Z",
"details": "moderate"
}
],
"title": "CVE-2017-16912"
},
{
"cve": "CVE-2017-16913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-16913"
}
],
"notes": [
{
"category": "general",
"text": "The \"stub_recv_cmd_submit()\" function (drivers/usb/usbip/stub_rx.c) in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 when handling CMD_SUBMIT packets allows attackers to cause a denial of service (arbitrary memory allocation) via a specially crafted USB over IP packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-16913",
"url": "https://www.suse.com/security/cve/CVE-2017-16913"
},
{
"category": "external",
"summary": "SUSE Bug 1078672 for CVE-2017-16913",
"url": "https://bugzilla.suse.com/1078672"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2017-16913",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2017-16913",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-29T12:28:31Z",
"details": "moderate"
}
],
"title": "CVE-2017-16913"
},
{
"cve": "CVE-2017-16914",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-16914"
}
],
"notes": [
{
"category": "general",
"text": "The \"stub_send_ret_submit()\" function (drivers/usb/usbip/stub_tx.c) in the Linux Kernel before version 4.14.8, 4.9.71, 4.1.49, and 4.4.107 allows attackers to cause a denial of service (NULL pointer dereference) via a specially crafted USB over IP packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-16914",
"url": "https://www.suse.com/security/cve/CVE-2017-16914"
},
{
"category": "external",
"summary": "SUSE Bug 1078669 for CVE-2017-16914",
"url": "https://bugzilla.suse.com/1078669"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2017-16914",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2017-16914",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-29T12:28:31Z",
"details": "low"
}
],
"title": "CVE-2017-16914"
},
{
"cve": "CVE-2017-18017",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-18017"
}
],
"notes": [
{
"category": "general",
"text": "The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other impact by leveraging the presence of xt_TCPMSS in an iptables action.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-18017",
"url": "https://www.suse.com/security/cve/CVE-2017-18017"
},
{
"category": "external",
"summary": "SUSE Bug 1074488 for CVE-2017-18017",
"url": "https://bugzilla.suse.com/1074488"
},
{
"category": "external",
"summary": "SUSE Bug 1080255 for CVE-2017-18017",
"url": "https://bugzilla.suse.com/1080255"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2017-18017",
"url": "https://bugzilla.suse.com/1091815"
},
{
"category": "external",
"summary": "SUSE Bug 1115893 for CVE-2017-18017",
"url": "https://bugzilla.suse.com/1115893"
},
{
"category": "external",
"summary": "SUSE Bug 971126 for CVE-2017-18017",
"url": "https://bugzilla.suse.com/971126"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-29T12:28:31Z",
"details": "important"
}
],
"title": "CVE-2017-18017"
},
{
"cve": "CVE-2017-18204",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-18204"
}
],
"notes": [
{
"category": "general",
"text": "The ocfs2_setattr function in fs/ocfs2/file.c in the Linux kernel before 4.14.2 allows local users to cause a denial of service (deadlock) via DIO requests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-18204",
"url": "https://www.suse.com/security/cve/CVE-2017-18204"
},
{
"category": "external",
"summary": "SUSE Bug 1083244 for CVE-2017-18204",
"url": "https://bugzilla.suse.com/1083244"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-29T12:28:31Z",
"details": "moderate"
}
],
"title": "CVE-2017-18204"
},
{
"cve": "CVE-2017-18208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-18208"
}
],
"notes": [
{
"category": "general",
"text": "The madvise_willneed function in mm/madvise.c in the Linux kernel before 4.14.4 allows local users to cause a denial of service (infinite loop) by triggering use of MADVISE_WILLNEED for a DAX mapping.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-18208",
"url": "https://www.suse.com/security/cve/CVE-2017-18208"
},
{
"category": "external",
"summary": "SUSE Bug 1083494 for CVE-2017-18208",
"url": "https://bugzilla.suse.com/1083494"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2017-18208",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2017-18208",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-29T12:28:31Z",
"details": "moderate"
}
],
"title": "CVE-2017-18208"
},
{
"cve": "CVE-2017-18221",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-18221"
}
],
"notes": [
{
"category": "general",
"text": "The __munlock_pagevec function in mm/mlock.c in the Linux kernel before 4.11.4 allows local users to cause a denial of service (NR_MLOCK accounting corruption) via crafted use of mlockall and munlockall system calls.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-18221",
"url": "https://www.suse.com/security/cve/CVE-2017-18221"
},
{
"category": "external",
"summary": "SUSE Bug 1084323 for CVE-2017-18221",
"url": "https://bugzilla.suse.com/1084323"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-29T12:28:31Z",
"details": "moderate"
}
],
"title": "CVE-2017-18221"
},
{
"cve": "CVE-2018-1066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-1066"
}
],
"notes": [
{
"category": "general",
"text": "The Linux kernel before version 4.11 is vulnerable to a NULL pointer dereference in fs/cifs/cifsencrypt.c:setup_ntlmv2_rsp() that allows an attacker controlling a CIFS server to kernel panic a client that has this server mounted, because an empty TargetInfo field in an NTLMSSP setup negotiation response is mishandled during session recovery.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-1066",
"url": "https://www.suse.com/security/cve/CVE-2018-1066"
},
{
"category": "external",
"summary": "SUSE Bug 1083640 for CVE-2018-1066",
"url": "https://bugzilla.suse.com/1083640"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-29T12:28:31Z",
"details": "moderate"
}
],
"title": "CVE-2018-1066"
},
{
"cve": "CVE-2018-1068",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-1068"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the Linux 4.x kernel\u0027s implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-1068",
"url": "https://www.suse.com/security/cve/CVE-2018-1068"
},
{
"category": "external",
"summary": "SUSE Bug 1085107 for CVE-2018-1068",
"url": "https://bugzilla.suse.com/1085107"
},
{
"category": "external",
"summary": "SUSE Bug 1085114 for CVE-2018-1068",
"url": "https://bugzilla.suse.com/1085114"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2018-1068",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1123903 for CVE-2018-1068",
"url": "https://bugzilla.suse.com/1123903"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-29T12:28:31Z",
"details": "important"
}
],
"title": "CVE-2018-1068"
},
{
"cve": "CVE-2018-5332",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5332"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5332",
"url": "https://www.suse.com/security/cve/CVE-2018-5332"
},
{
"category": "external",
"summary": "SUSE Bug 1075621 for CVE-2018-5332",
"url": "https://bugzilla.suse.com/1075621"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2018-5332",
"url": "https://bugzilla.suse.com/1091815"
},
{
"category": "external",
"summary": "SUSE Bug 1115893 for CVE-2018-5332",
"url": "https://bugzilla.suse.com/1115893"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.6,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-29T12:28:31Z",
"details": "low"
}
],
"title": "CVE-2018-5332"
},
{
"cve": "CVE-2018-5333",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5333"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in net/rds/rdma.c mishandles cases where page pinning fails or an invalid address is supplied, leading to an rds_atomic_free_op NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5333",
"url": "https://www.suse.com/security/cve/CVE-2018-5333"
},
{
"category": "external",
"summary": "SUSE Bug 1075617 for CVE-2018-5333",
"url": "https://bugzilla.suse.com/1075617"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2018-5333",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-29T12:28:31Z",
"details": "low"
}
],
"title": "CVE-2018-5333"
},
{
"cve": "CVE-2018-6927",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-6927"
}
],
"notes": [
{
"category": "general",
"text": "The futex_requeue function in kernel/futex.c in the Linux kernel before 4.14.15 might allow attackers to cause a denial of service (integer overflow) or possibly have unspecified other impact by triggering a negative wake or requeue value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-6927",
"url": "https://www.suse.com/security/cve/CVE-2018-6927"
},
{
"category": "external",
"summary": "SUSE Bug 1080757 for CVE-2018-6927",
"url": "https://bugzilla.suse.com/1080757"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2018-6927",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-29T12:28:31Z",
"details": "moderate"
}
],
"title": "CVE-2018-6927"
},
{
"cve": "CVE-2018-7566",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-7566"
}
],
"notes": [
{
"category": "general",
"text": "The Linux kernel 4.15 has a Buffer Overflow via an SNDRV_SEQ_IOCTL_SET_CLIENT_POOL ioctl write operation to /dev/snd/seq by a local user.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-7566",
"url": "https://www.suse.com/security/cve/CVE-2018-7566"
},
{
"category": "external",
"summary": "SUSE Bug 1083483 for CVE-2018-7566",
"url": "https://bugzilla.suse.com/1083483"
},
{
"category": "external",
"summary": "SUSE Bug 1083488 for CVE-2018-7566",
"url": "https://bugzilla.suse.com/1083488"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2018-7566",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2018-7566",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-default-man-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-default-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-devel-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-macros-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-source-3.12.74-60.64.85.1.noarch",
"SUSE OpenStack Cloud 6:kernel-syms-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-base-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kernel-xen-devel-3.12.74-60.64.85.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-default-1-2.3.1.x86_64",
"SUSE OpenStack Cloud 6:kgraft-patch-3_12_74-60_64_85-xen-1-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-29T12:28:31Z",
"details": "important"
}
],
"title": "CVE-2018-7566"
}
]
}
suse-su-2018:0834-1
Vulnerability from csaf_suse
Published
2018-03-28 14:17
Modified
2018-03-28 14:17
Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 12 kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
- CVE-2018-1068: Fixed flaw in the implementation of 32-bit syscall interface
for bridging. This allowed a privileged user to arbitrarily write to a limited
range of kernel memory (bnc#1085107).
- CVE-2017-18221: The __munlock_pagevec function allowed local users to cause a
denial of service (NR_MLOCK accounting corruption) via crafted use of mlockall
and munlockall system calls (bnc#1084323).
- CVE-2018-1066: Prevent NULL pointer dereference in
fs/cifs/cifsencrypt.c:setup_ntlmv2_rsp() that allowed an attacker controlling a
CIFS server to kernel panic a client that has this server mounted, because an
empty TargetInfo field in an NTLMSSP setup negotiation response was mishandled
during session recovery (bnc#1083640).
- CVE-2017-13166: Prevent elevation of privilege vulnerability in the kernel
v4l2 video driver (bnc#1072865).
- CVE-2017-16911: The vhci_hcd driver allowed local attackers to disclose
kernel memory addresses. Successful exploitation required that a USB device was
attached over IP (bnc#1078674).
- CVE-2017-15299: The KEYS subsystem mishandled use of add_key for a key that
already exists but is uninstantiated, which allowed local users to cause a
denial of service (NULL pointer dereference and system crash) or possibly have
unspecified other impact via a crafted system call (bnc#1063416).
- CVE-2017-18208: The madvise_willneed function kernel allowed local users to
cause a denial of service (infinite loop) by triggering use of MADVISE_WILLNEED
for a DAX mapping (bnc#1083494).
- CVE-2018-7566: The ALSA sequencer core initializes the event pool on demand
by invoking snd_seq_pool_init() when the first write happens and the pool is
empty. A user could have reset the pool size manually via ioctl concurrently,
which may have lead UAF or out-of-bound access (bsc#1083483).
- CVE-2017-18204: The ocfs2_setattr function allowed local users to cause a
denial of service (deadlock) via DIO requests (bnc#1083244).
- CVE-2017-16644: The hdpvr_probe function allowed local users to cause a
denial of service (improper error handling and system crash) or possibly have
unspecified other impact via a crafted USB device (bnc#1067118).
- CVE-2018-6927: The futex_requeue function allowed attackers to cause a denial
of service (integer overflow) or possibly have unspecified other impact by
triggering a negative wake or requeue value (bnc#1080757).
- CVE-2017-16914: The 'stub_send_ret_submit()' function allowed attackers to
cause a denial of service (NULL pointer dereference) via a specially crafted
USB over IP packet (bnc#1078669).
- CVE-2016-7915: The hid_input_field function allowed physically proximate
attackers to obtain sensitive information from kernel memory or cause a denial
of service (out-of-bounds read) by connecting a device (bnc#1010470).
- CVE-2017-12190: The bio_map_user_iov and bio_unmap_user functions did
unbalanced refcounting when a SCSI I/O vector had small consecutive buffers
belonging to the same page. The bio_add_pc_page function merged them into one,
but the page reference was never dropped. This caused a memory leak and
possible system lockup (exploitable against the host OS by a guest OS user, if
a SCSI disk is passed through to a virtual machine) due to an out-of-memory
condition (bnc#1062568).
- CVE-2017-16912: The 'get_pipe()' function allowed attackers to cause a denial
of service (out-of-bounds read) via a specially crafted USB over IP packet
(bnc#1078673).
- CVE-2017-16913: The 'stub_recv_cmd_submit()' function when handling
CMD_SUBMIT packets allowed attackers to cause a denial of service (arbitrary
memory allocation) via a specially crafted USB over IP packet (bnc#1078672).
- CVE-2018-5332: The rds_message_alloc_sgs() function did not validate a value
that is used during DMA page allocation, leading to a heap-based out-of-bounds
write (related to the rds_rdma_extra_size function in net/rds/rdma.c)
(bnc#1075621).
- CVE-2018-5333: The rds_cmsg_atomic function in net/rds/rdma.c mishandled
cases where page pinning fails or an invalid address is supplied, leading to an
rds_atomic_free_op NULL pointer dereference (bnc#1075617).
- CVE-2017-18017: The tcpmss_mangle_packet function allowed remote attackers to
cause a denial of service (use-after-free and memory corruption) or possibly
have unspecified other impact by leveraging the presence of xt_TCPMSS in an
iptables action (bnc#1074488).
The following non-security bugs were fixed:
- Fix build on arm64 by defining empty gmb() (bnc#1068032).
- KEYS: do not let add_key() update an uninstantiated key (bnc#1063416).
- KEYS: fix writing past end of user-supplied buffer in keyring_read() (bsc#1066001).
- KEYS: return full count in keyring_read() if buffer is too small (bsc#1066001).
- include/stddef.h: Move offsetofend() from vfio.h to a generic kernel header (bsc#1077560).
- ipc/msg: introduce msgctl(MSG_STAT_ANY) (bsc#1072689).
- ipc/sem: introduce semctl(SEM_STAT_ANY) (bsc#1072689).
- ipc/shm: introduce shmctl(SHM_STAT_ANY) (bsc#1072689).
- x86/kaiser: use trampoline stack for kernel entry (bsc#1077560)
- leds: do not overflow sysfs buffer in led_trigger_show (bsc#1080464).
- livepatch: __kgr_shadow_get_or_alloc() is local to shadow.c. Shadow variables support (bsc#1082299).
- livepatch: introduce shadow variable API. Shadow variables support (bsc#1082299)
- media: v4l2-compat-ioctl32.c: add missing VIDIOC_PREPARE_BUF (bnc#1012382).
- media: v4l2-compat-ioctl32.c: avoid sizeof(type) (bnc#1012382).
- media: v4l2-compat-ioctl32.c: copy clip list in put_v4l2_window32 (bnc#1012382).
- media: v4l2-compat-ioctl32.c: copy m.userptr in put_v4l2_plane32 (bnc#1012382).
- media: v4l2-compat-ioctl32.c: do not copy back the result for certain errors (bnc#1012382).
- media: v4l2-compat-ioctl32.c: drop pr_info for unknown buffer type (bnc#1012382).
- media: v4l2-compat-ioctl32.c: fix the indentation (bnc#1012382).
- media: v4l2-compat-ioctl32.c: move 'helper' functions to __get/put_v4l2_format32 (bnc#1012382).
- media: v4l2-compat-ioctl32: Copy v4l2_window->global_alpha (bnc#1012382).
- media: v4l2-ioctl.c: do not copy back the result for -ENOTTY (bnc#1012382).
- netfilter: ebtables: CONFIG_COMPAT: do not trust userland offsets (bsc#1085107).
- netfilter: ebtables: fix erroneous reject of last rule (bsc#1085107).
- packet: only call dev_add_pack() on freshly allocated fanout instances
- pipe: cap initial pipe capacity according to pipe-max-size limit (bsc#1045330).
- x86/espfix: Fix return stack in do_double_fault() (bsc#1085279).
Patchnames
SUSE-SLE-Module-Public-Cloud-12-2018-558,SUSE-SLE-SERVER-12-2018-558
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 12 kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2018-1068: Fixed flaw in the implementation of 32-bit syscall interface\n for bridging. This allowed a privileged user to arbitrarily write to a limited\n range of kernel memory (bnc#1085107).\n- CVE-2017-18221: The __munlock_pagevec function allowed local users to cause a\n denial of service (NR_MLOCK accounting corruption) via crafted use of mlockall\n and munlockall system calls (bnc#1084323).\n- CVE-2018-1066: Prevent NULL pointer dereference in\n fs/cifs/cifsencrypt.c:setup_ntlmv2_rsp() that allowed an attacker controlling a\n CIFS server to kernel panic a client that has this server mounted, because an\n empty TargetInfo field in an NTLMSSP setup negotiation response was mishandled\n during session recovery (bnc#1083640).\n- CVE-2017-13166: Prevent elevation of privilege vulnerability in the kernel\n v4l2 video driver (bnc#1072865).\n- CVE-2017-16911: The vhci_hcd driver allowed local attackers to disclose\n kernel memory addresses. Successful exploitation required that a USB device was\n attached over IP (bnc#1078674).\n- CVE-2017-15299: The KEYS subsystem mishandled use of add_key for a key that\n already exists but is uninstantiated, which allowed local users to cause a\n denial of service (NULL pointer dereference and system crash) or possibly have\n unspecified other impact via a crafted system call (bnc#1063416).\n- CVE-2017-18208: The madvise_willneed function kernel allowed local users to\n cause a denial of service (infinite loop) by triggering use of MADVISE_WILLNEED\n for a DAX mapping (bnc#1083494).\n- CVE-2018-7566: The ALSA sequencer core initializes the event pool on demand\n by invoking snd_seq_pool_init() when the first write happens and the pool is\n empty. A user could have reset the pool size manually via ioctl concurrently,\n which may have lead UAF or out-of-bound access (bsc#1083483).\n- CVE-2017-18204: The ocfs2_setattr function allowed local users to cause a\n denial of service (deadlock) via DIO requests (bnc#1083244).\n- CVE-2017-16644: The hdpvr_probe function allowed local users to cause a\n denial of service (improper error handling and system crash) or possibly have\n unspecified other impact via a crafted USB device (bnc#1067118).\n- CVE-2018-6927: The futex_requeue function allowed attackers to cause a denial\n of service (integer overflow) or possibly have unspecified other impact by\n triggering a negative wake or requeue value (bnc#1080757).\n- CVE-2017-16914: The \u0027stub_send_ret_submit()\u0027 function allowed attackers to\n cause a denial of service (NULL pointer dereference) via a specially crafted\n USB over IP packet (bnc#1078669).\n- CVE-2016-7915: The hid_input_field function allowed physically proximate\n attackers to obtain sensitive information from kernel memory or cause a denial\n of service (out-of-bounds read) by connecting a device (bnc#1010470).\n- CVE-2017-12190: The bio_map_user_iov and bio_unmap_user functions did\n unbalanced refcounting when a SCSI I/O vector had small consecutive buffers\n belonging to the same page. The bio_add_pc_page function merged them into one,\n but the page reference was never dropped. This caused a memory leak and\n possible system lockup (exploitable against the host OS by a guest OS user, if\n a SCSI disk is passed through to a virtual machine) due to an out-of-memory\n condition (bnc#1062568).\n- CVE-2017-16912: The \u0027get_pipe()\u0027 function allowed attackers to cause a denial\n of service (out-of-bounds read) via a specially crafted USB over IP packet\n (bnc#1078673).\n- CVE-2017-16913: The \u0027stub_recv_cmd_submit()\u0027 function when handling\n CMD_SUBMIT packets allowed attackers to cause a denial of service (arbitrary\n memory allocation) via a specially crafted USB over IP packet (bnc#1078672).\n- CVE-2018-5332: The rds_message_alloc_sgs() function did not validate a value\n that is used during DMA page allocation, leading to a heap-based out-of-bounds\n write (related to the rds_rdma_extra_size function in net/rds/rdma.c)\n (bnc#1075621).\n- CVE-2018-5333: The rds_cmsg_atomic function in net/rds/rdma.c mishandled\n cases where page pinning fails or an invalid address is supplied, leading to an\n rds_atomic_free_op NULL pointer dereference (bnc#1075617).\n- CVE-2017-18017: The tcpmss_mangle_packet function allowed remote attackers to\n cause a denial of service (use-after-free and memory corruption) or possibly\n have unspecified other impact by leveraging the presence of xt_TCPMSS in an\n iptables action (bnc#1074488).\n\nThe following non-security bugs were fixed:\n\n- Fix build on arm64 by defining empty gmb() (bnc#1068032).\n- KEYS: do not let add_key() update an uninstantiated key (bnc#1063416).\n- KEYS: fix writing past end of user-supplied buffer in keyring_read() (bsc#1066001).\n- KEYS: return full count in keyring_read() if buffer is too small (bsc#1066001).\n- include/stddef.h: Move offsetofend() from vfio.h to a generic kernel header (bsc#1077560).\n- ipc/msg: introduce msgctl(MSG_STAT_ANY) (bsc#1072689).\n- ipc/sem: introduce semctl(SEM_STAT_ANY) (bsc#1072689).\n- ipc/shm: introduce shmctl(SHM_STAT_ANY) (bsc#1072689).\n- x86/kaiser: use trampoline stack for kernel entry (bsc#1077560)\n- leds: do not overflow sysfs buffer in led_trigger_show (bsc#1080464).\n- livepatch: __kgr_shadow_get_or_alloc() is local to shadow.c. Shadow variables support (bsc#1082299).\n- livepatch: introduce shadow variable API. Shadow variables support (bsc#1082299)\n- media: v4l2-compat-ioctl32.c: add missing VIDIOC_PREPARE_BUF (bnc#1012382).\n- media: v4l2-compat-ioctl32.c: avoid sizeof(type) (bnc#1012382).\n- media: v4l2-compat-ioctl32.c: copy clip list in put_v4l2_window32 (bnc#1012382).\n- media: v4l2-compat-ioctl32.c: copy m.userptr in put_v4l2_plane32 (bnc#1012382).\n- media: v4l2-compat-ioctl32.c: do not copy back the result for certain errors (bnc#1012382).\n- media: v4l2-compat-ioctl32.c: drop pr_info for unknown buffer type (bnc#1012382).\n- media: v4l2-compat-ioctl32.c: fix the indentation (bnc#1012382).\n- media: v4l2-compat-ioctl32.c: move \u0027helper\u0027 functions to __get/put_v4l2_format32 (bnc#1012382).\n- media: v4l2-compat-ioctl32: Copy v4l2_window-\u003eglobal_alpha (bnc#1012382).\n- media: v4l2-ioctl.c: do not copy back the result for -ENOTTY (bnc#1012382).\n- netfilter: ebtables: CONFIG_COMPAT: do not trust userland offsets (bsc#1085107).\n- netfilter: ebtables: fix erroneous reject of last rule (bsc#1085107).\n- packet: only call dev_add_pack() on freshly allocated fanout instances\n- pipe: cap initial pipe capacity according to pipe-max-size limit (bsc#1045330).\n- x86/espfix: Fix return stack in do_double_fault() (bsc#1085279).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Module-Public-Cloud-12-2018-558,SUSE-SLE-SERVER-12-2018-558",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_0834-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2018:0834-1",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180834-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2018:0834-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2018-March/003850.html"
},
{
"category": "self",
"summary": "SUSE Bug 1010470",
"url": "https://bugzilla.suse.com/1010470"
},
{
"category": "self",
"summary": "SUSE Bug 1012382",
"url": "https://bugzilla.suse.com/1012382"
},
{
"category": "self",
"summary": "SUSE Bug 1045330",
"url": "https://bugzilla.suse.com/1045330"
},
{
"category": "self",
"summary": "SUSE Bug 1062568",
"url": "https://bugzilla.suse.com/1062568"
},
{
"category": "self",
"summary": "SUSE Bug 1063416",
"url": "https://bugzilla.suse.com/1063416"
},
{
"category": "self",
"summary": "SUSE Bug 1066001",
"url": "https://bugzilla.suse.com/1066001"
},
{
"category": "self",
"summary": "SUSE Bug 1067118",
"url": "https://bugzilla.suse.com/1067118"
},
{
"category": "self",
"summary": "SUSE Bug 1068032",
"url": "https://bugzilla.suse.com/1068032"
},
{
"category": "self",
"summary": "SUSE Bug 1072689",
"url": "https://bugzilla.suse.com/1072689"
},
{
"category": "self",
"summary": "SUSE Bug 1072865",
"url": "https://bugzilla.suse.com/1072865"
},
{
"category": "self",
"summary": "SUSE Bug 1074488",
"url": "https://bugzilla.suse.com/1074488"
},
{
"category": "self",
"summary": "SUSE Bug 1075617",
"url": "https://bugzilla.suse.com/1075617"
},
{
"category": "self",
"summary": "SUSE Bug 1075621",
"url": "https://bugzilla.suse.com/1075621"
},
{
"category": "self",
"summary": "SUSE Bug 1077560",
"url": "https://bugzilla.suse.com/1077560"
},
{
"category": "self",
"summary": "SUSE Bug 1078669",
"url": "https://bugzilla.suse.com/1078669"
},
{
"category": "self",
"summary": "SUSE Bug 1078672",
"url": "https://bugzilla.suse.com/1078672"
},
{
"category": "self",
"summary": "SUSE Bug 1078673",
"url": "https://bugzilla.suse.com/1078673"
},
{
"category": "self",
"summary": "SUSE Bug 1078674",
"url": "https://bugzilla.suse.com/1078674"
},
{
"category": "self",
"summary": "SUSE Bug 1080255",
"url": "https://bugzilla.suse.com/1080255"
},
{
"category": "self",
"summary": "SUSE Bug 1080464",
"url": "https://bugzilla.suse.com/1080464"
},
{
"category": "self",
"summary": "SUSE Bug 1080757",
"url": "https://bugzilla.suse.com/1080757"
},
{
"category": "self",
"summary": "SUSE Bug 1082299",
"url": "https://bugzilla.suse.com/1082299"
},
{
"category": "self",
"summary": "SUSE Bug 1083244",
"url": "https://bugzilla.suse.com/1083244"
},
{
"category": "self",
"summary": "SUSE Bug 1083483",
"url": "https://bugzilla.suse.com/1083483"
},
{
"category": "self",
"summary": "SUSE Bug 1083494",
"url": "https://bugzilla.suse.com/1083494"
},
{
"category": "self",
"summary": "SUSE Bug 1083640",
"url": "https://bugzilla.suse.com/1083640"
},
{
"category": "self",
"summary": "SUSE Bug 1084323",
"url": "https://bugzilla.suse.com/1084323"
},
{
"category": "self",
"summary": "SUSE Bug 1085107",
"url": "https://bugzilla.suse.com/1085107"
},
{
"category": "self",
"summary": "SUSE Bug 1085114",
"url": "https://bugzilla.suse.com/1085114"
},
{
"category": "self",
"summary": "SUSE Bug 1085279",
"url": "https://bugzilla.suse.com/1085279"
},
{
"category": "self",
"summary": "SUSE Bug 1085447",
"url": "https://bugzilla.suse.com/1085447"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-7915 page",
"url": "https://www.suse.com/security/cve/CVE-2016-7915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-12190 page",
"url": "https://www.suse.com/security/cve/CVE-2017-12190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-13166 page",
"url": "https://www.suse.com/security/cve/CVE-2017-13166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-15299 page",
"url": "https://www.suse.com/security/cve/CVE-2017-15299/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-16644 page",
"url": "https://www.suse.com/security/cve/CVE-2017-16644/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-16911 page",
"url": "https://www.suse.com/security/cve/CVE-2017-16911/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-16912 page",
"url": "https://www.suse.com/security/cve/CVE-2017-16912/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-16913 page",
"url": "https://www.suse.com/security/cve/CVE-2017-16913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-16914 page",
"url": "https://www.suse.com/security/cve/CVE-2017-16914/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-18017 page",
"url": "https://www.suse.com/security/cve/CVE-2017-18017/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-18204 page",
"url": "https://www.suse.com/security/cve/CVE-2017-18204/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-18208 page",
"url": "https://www.suse.com/security/cve/CVE-2017-18208/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-18221 page",
"url": "https://www.suse.com/security/cve/CVE-2017-18221/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-1066 page",
"url": "https://www.suse.com/security/cve/CVE-2018-1066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-1068 page",
"url": "https://www.suse.com/security/cve/CVE-2018-1068/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5332 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5332/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5333 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5333/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-6927 page",
"url": "https://www.suse.com/security/cve/CVE-2018-6927/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-7566 page",
"url": "https://www.suse.com/security/cve/CVE-2018-7566/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2018-03-28T14:17:49Z",
"generator": {
"date": "2018-03-28T14:17:49Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2018:0834-1",
"initial_release_date": "2018-03-28T14:17:49Z",
"revision_history": [
{
"date": "2018-03-28T14:17:49Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-3.12.61-52.125.1.noarch",
"product": {
"name": "kernel-devel-3.12.61-52.125.1.noarch",
"product_id": "kernel-devel-3.12.61-52.125.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-3.12.61-52.125.1.noarch",
"product": {
"name": "kernel-macros-3.12.61-52.125.1.noarch",
"product_id": "kernel-macros-3.12.61-52.125.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-3.12.61-52.125.1.noarch",
"product": {
"name": "kernel-source-3.12.61-52.125.1.noarch",
"product_id": "kernel-source-3.12.61-52.125.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-3.12.61-52.125.1.ppc64le",
"product": {
"name": "kernel-default-3.12.61-52.125.1.ppc64le",
"product_id": "kernel-default-3.12.61-52.125.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-3.12.61-52.125.1.ppc64le",
"product": {
"name": "kernel-default-base-3.12.61-52.125.1.ppc64le",
"product_id": "kernel-default-base-3.12.61-52.125.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-3.12.61-52.125.1.ppc64le",
"product": {
"name": "kernel-default-devel-3.12.61-52.125.1.ppc64le",
"product_id": "kernel-default-devel-3.12.61-52.125.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-syms-3.12.61-52.125.1.ppc64le",
"product": {
"name": "kernel-syms-3.12.61-52.125.1.ppc64le",
"product_id": "kernel-syms-3.12.61-52.125.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-3.12.61-52.125.1.s390x",
"product": {
"name": "kernel-default-3.12.61-52.125.1.s390x",
"product_id": "kernel-default-3.12.61-52.125.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-base-3.12.61-52.125.1.s390x",
"product": {
"name": "kernel-default-base-3.12.61-52.125.1.s390x",
"product_id": "kernel-default-base-3.12.61-52.125.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-3.12.61-52.125.1.s390x",
"product": {
"name": "kernel-default-devel-3.12.61-52.125.1.s390x",
"product_id": "kernel-default-devel-3.12.61-52.125.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-man-3.12.61-52.125.1.s390x",
"product": {
"name": "kernel-default-man-3.12.61-52.125.1.s390x",
"product_id": "kernel-default-man-3.12.61-52.125.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-syms-3.12.61-52.125.1.s390x",
"product": {
"name": "kernel-syms-3.12.61-52.125.1.s390x",
"product_id": "kernel-syms-3.12.61-52.125.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-ec2-3.12.61-52.125.1.x86_64",
"product": {
"name": "kernel-ec2-3.12.61-52.125.1.x86_64",
"product_id": "kernel-ec2-3.12.61-52.125.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"product": {
"name": "kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"product_id": "kernel-ec2-devel-3.12.61-52.125.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"product": {
"name": "kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"product_id": "kernel-ec2-extra-3.12.61-52.125.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-3.12.61-52.125.1.x86_64",
"product": {
"name": "kernel-default-3.12.61-52.125.1.x86_64",
"product_id": "kernel-default-3.12.61-52.125.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-3.12.61-52.125.1.x86_64",
"product": {
"name": "kernel-default-base-3.12.61-52.125.1.x86_64",
"product_id": "kernel-default-base-3.12.61-52.125.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-3.12.61-52.125.1.x86_64",
"product": {
"name": "kernel-default-devel-3.12.61-52.125.1.x86_64",
"product_id": "kernel-default-devel-3.12.61-52.125.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-3.12.61-52.125.1.x86_64",
"product": {
"name": "kernel-syms-3.12.61-52.125.1.x86_64",
"product_id": "kernel-syms-3.12.61-52.125.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-xen-3.12.61-52.125.1.x86_64",
"product": {
"name": "kernel-xen-3.12.61-52.125.1.x86_64",
"product_id": "kernel-xen-3.12.61-52.125.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-xen-base-3.12.61-52.125.1.x86_64",
"product": {
"name": "kernel-xen-base-3.12.61-52.125.1.x86_64",
"product_id": "kernel-xen-base-3.12.61-52.125.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-xen-devel-3.12.61-52.125.1.x86_64",
"product": {
"name": "kernel-xen-devel-3.12.61-52.125.1.x86_64",
"product_id": "kernel-xen-devel-3.12.61-52.125.1.x86_64"
}
},
{
"category": "product_version",
"name": "kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"product": {
"name": "kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"product_id": "kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64",
"product": {
"name": "kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64",
"product_id": "kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Public Cloud 12",
"product": {
"name": "SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-public-cloud:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-ec2-3.12.61-52.125.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64"
},
"product_reference": "kernel-ec2-3.12.61-52.125.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-ec2-devel-3.12.61-52.125.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64"
},
"product_reference": "kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-ec2-extra-3.12.61-52.125.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64"
},
"product_reference": "kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-3.12.61-52.125.1.ppc64le as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le"
},
"product_reference": "kernel-default-3.12.61-52.125.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-3.12.61-52.125.1.s390x as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x"
},
"product_reference": "kernel-default-3.12.61-52.125.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-3.12.61-52.125.1.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64"
},
"product_reference": "kernel-default-3.12.61-52.125.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-3.12.61-52.125.1.ppc64le as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le"
},
"product_reference": "kernel-default-base-3.12.61-52.125.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-3.12.61-52.125.1.s390x as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x"
},
"product_reference": "kernel-default-base-3.12.61-52.125.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-3.12.61-52.125.1.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64"
},
"product_reference": "kernel-default-base-3.12.61-52.125.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-3.12.61-52.125.1.ppc64le as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le"
},
"product_reference": "kernel-default-devel-3.12.61-52.125.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-3.12.61-52.125.1.s390x as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x"
},
"product_reference": "kernel-default-devel-3.12.61-52.125.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-3.12.61-52.125.1.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64"
},
"product_reference": "kernel-default-devel-3.12.61-52.125.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-man-3.12.61-52.125.1.s390x as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x"
},
"product_reference": "kernel-default-man-3.12.61-52.125.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-3.12.61-52.125.1.noarch as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch"
},
"product_reference": "kernel-devel-3.12.61-52.125.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-3.12.61-52.125.1.noarch as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch"
},
"product_reference": "kernel-macros-3.12.61-52.125.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-3.12.61-52.125.1.noarch as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch"
},
"product_reference": "kernel-source-3.12.61-52.125.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-3.12.61-52.125.1.ppc64le as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le"
},
"product_reference": "kernel-syms-3.12.61-52.125.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-3.12.61-52.125.1.s390x as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x"
},
"product_reference": "kernel-syms-3.12.61-52.125.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-3.12.61-52.125.1.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64"
},
"product_reference": "kernel-syms-3.12.61-52.125.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-3.12.61-52.125.1.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64"
},
"product_reference": "kernel-xen-3.12.61-52.125.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-base-3.12.61-52.125.1.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64"
},
"product_reference": "kernel-xen-base-3.12.61-52.125.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-devel-3.12.61-52.125.1.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64"
},
"product_reference": "kernel-xen-devel-3.12.61-52.125.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64"
},
"product_reference": "kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
},
"product_reference": "kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-7915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-7915"
}
],
"notes": [
{
"category": "general",
"text": "The hid_input_field function in drivers/hid/hid-core.c in the Linux kernel before 4.6 allows physically proximate attackers to obtain sensitive information from kernel memory or cause a denial of service (out-of-bounds read) by connecting a device, as demonstrated by a Logitech DJ receiver.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-7915",
"url": "https://www.suse.com/security/cve/CVE-2016-7915"
},
{
"category": "external",
"summary": "SUSE Bug 1010470 for CVE-2016-7915",
"url": "https://bugzilla.suse.com/1010470"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2016-7915",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-28T14:17:49Z",
"details": "moderate"
}
],
"title": "CVE-2016-7915"
},
{
"cve": "CVE-2017-12190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-12190"
}
],
"notes": [
{
"category": "general",
"text": "The bio_map_user_iov and bio_unmap_user functions in block/bio.c in the Linux kernel before 4.13.8 do unbalanced refcounting when a SCSI I/O vector has small consecutive buffers belonging to the same page. The bio_add_pc_page function merges them into one, but the page reference is never dropped. This causes a memory leak and possible system lockup (exploitable against the host OS by a guest OS user, if a SCSI disk is passed through to a virtual machine) due to an out-of-memory condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-12190",
"url": "https://www.suse.com/security/cve/CVE-2017-12190"
},
{
"category": "external",
"summary": "SUSE Bug 1062568 for CVE-2017-12190",
"url": "https://bugzilla.suse.com/1062568"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2017-12190",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-28T14:17:49Z",
"details": "moderate"
}
],
"title": "CVE-2017-12190"
},
{
"cve": "CVE-2017-13166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-13166"
}
],
"notes": [
{
"category": "general",
"text": "An elevation of privilege vulnerability in the kernel v4l2 video driver. Product: Android. Versions: Android kernel. Android ID A-34624167.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-13166",
"url": "https://www.suse.com/security/cve/CVE-2017-13166"
},
{
"category": "external",
"summary": "SUSE Bug 1072865 for CVE-2017-13166",
"url": "https://bugzilla.suse.com/1072865"
},
{
"category": "external",
"summary": "SUSE Bug 1085447 for CVE-2017-13166",
"url": "https://bugzilla.suse.com/1085447"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2017-13166",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2017-13166",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-28T14:17:49Z",
"details": "important"
}
],
"title": "CVE-2017-13166"
},
{
"cve": "CVE-2017-15299",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-15299"
}
],
"notes": [
{
"category": "general",
"text": "The KEYS subsystem in the Linux kernel through 4.13.7 mishandles use of add_key for a key that already exists but is uninstantiated, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted system call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-15299",
"url": "https://www.suse.com/security/cve/CVE-2017-15299"
},
{
"category": "external",
"summary": "SUSE Bug 1063416 for CVE-2017-15299",
"url": "https://bugzilla.suse.com/1063416"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-28T14:17:49Z",
"details": "moderate"
}
],
"title": "CVE-2017-15299"
},
{
"cve": "CVE-2017-16644",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-16644"
}
],
"notes": [
{
"category": "general",
"text": "The hdpvr_probe function in drivers/media/usb/hdpvr/hdpvr-core.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (improper error handling and system crash) or possibly have unspecified other impact via a crafted USB device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-16644",
"url": "https://www.suse.com/security/cve/CVE-2017-16644"
},
{
"category": "external",
"summary": "SUSE Bug 1067118 for CVE-2017-16644",
"url": "https://bugzilla.suse.com/1067118"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2017-16644",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2017-16644",
"url": "https://bugzilla.suse.com/1091815"
},
{
"category": "external",
"summary": "SUSE Bug 1146519 for CVE-2017-16644",
"url": "https://bugzilla.suse.com/1146519"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-28T14:17:49Z",
"details": "moderate"
}
],
"title": "CVE-2017-16644"
},
{
"cve": "CVE-2017-16911",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-16911"
}
],
"notes": [
{
"category": "general",
"text": "The vhci_hcd driver in the Linux Kernel before version 4.14.8 and 4.4.114 allows allows local attackers to disclose kernel memory addresses. Successful exploitation requires that a USB device is attached over IP.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-16911",
"url": "https://www.suse.com/security/cve/CVE-2017-16911"
},
{
"category": "external",
"summary": "SUSE Bug 1078674 for CVE-2017-16911",
"url": "https://bugzilla.suse.com/1078674"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2017-16911",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2017-16911",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-28T14:17:49Z",
"details": "low"
}
],
"title": "CVE-2017-16911"
},
{
"cve": "CVE-2017-16912",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-16912"
}
],
"notes": [
{
"category": "general",
"text": "The \"get_pipe()\" function (drivers/usb/usbip/stub_rx.c) in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 allows attackers to cause a denial of service (out-of-bounds read) via a specially crafted USB over IP packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-16912",
"url": "https://www.suse.com/security/cve/CVE-2017-16912"
},
{
"category": "external",
"summary": "SUSE Bug 1078673 for CVE-2017-16912",
"url": "https://bugzilla.suse.com/1078673"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2017-16912",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2017-16912",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-28T14:17:49Z",
"details": "moderate"
}
],
"title": "CVE-2017-16912"
},
{
"cve": "CVE-2017-16913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-16913"
}
],
"notes": [
{
"category": "general",
"text": "The \"stub_recv_cmd_submit()\" function (drivers/usb/usbip/stub_rx.c) in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 when handling CMD_SUBMIT packets allows attackers to cause a denial of service (arbitrary memory allocation) via a specially crafted USB over IP packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-16913",
"url": "https://www.suse.com/security/cve/CVE-2017-16913"
},
{
"category": "external",
"summary": "SUSE Bug 1078672 for CVE-2017-16913",
"url": "https://bugzilla.suse.com/1078672"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2017-16913",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2017-16913",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-28T14:17:49Z",
"details": "moderate"
}
],
"title": "CVE-2017-16913"
},
{
"cve": "CVE-2017-16914",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-16914"
}
],
"notes": [
{
"category": "general",
"text": "The \"stub_send_ret_submit()\" function (drivers/usb/usbip/stub_tx.c) in the Linux Kernel before version 4.14.8, 4.9.71, 4.1.49, and 4.4.107 allows attackers to cause a denial of service (NULL pointer dereference) via a specially crafted USB over IP packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-16914",
"url": "https://www.suse.com/security/cve/CVE-2017-16914"
},
{
"category": "external",
"summary": "SUSE Bug 1078669 for CVE-2017-16914",
"url": "https://bugzilla.suse.com/1078669"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2017-16914",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2017-16914",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-28T14:17:49Z",
"details": "low"
}
],
"title": "CVE-2017-16914"
},
{
"cve": "CVE-2017-18017",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-18017"
}
],
"notes": [
{
"category": "general",
"text": "The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other impact by leveraging the presence of xt_TCPMSS in an iptables action.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-18017",
"url": "https://www.suse.com/security/cve/CVE-2017-18017"
},
{
"category": "external",
"summary": "SUSE Bug 1074488 for CVE-2017-18017",
"url": "https://bugzilla.suse.com/1074488"
},
{
"category": "external",
"summary": "SUSE Bug 1080255 for CVE-2017-18017",
"url": "https://bugzilla.suse.com/1080255"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2017-18017",
"url": "https://bugzilla.suse.com/1091815"
},
{
"category": "external",
"summary": "SUSE Bug 1115893 for CVE-2017-18017",
"url": "https://bugzilla.suse.com/1115893"
},
{
"category": "external",
"summary": "SUSE Bug 971126 for CVE-2017-18017",
"url": "https://bugzilla.suse.com/971126"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-28T14:17:49Z",
"details": "important"
}
],
"title": "CVE-2017-18017"
},
{
"cve": "CVE-2017-18204",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-18204"
}
],
"notes": [
{
"category": "general",
"text": "The ocfs2_setattr function in fs/ocfs2/file.c in the Linux kernel before 4.14.2 allows local users to cause a denial of service (deadlock) via DIO requests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-18204",
"url": "https://www.suse.com/security/cve/CVE-2017-18204"
},
{
"category": "external",
"summary": "SUSE Bug 1083244 for CVE-2017-18204",
"url": "https://bugzilla.suse.com/1083244"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-28T14:17:49Z",
"details": "moderate"
}
],
"title": "CVE-2017-18204"
},
{
"cve": "CVE-2017-18208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-18208"
}
],
"notes": [
{
"category": "general",
"text": "The madvise_willneed function in mm/madvise.c in the Linux kernel before 4.14.4 allows local users to cause a denial of service (infinite loop) by triggering use of MADVISE_WILLNEED for a DAX mapping.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-18208",
"url": "https://www.suse.com/security/cve/CVE-2017-18208"
},
{
"category": "external",
"summary": "SUSE Bug 1083494 for CVE-2017-18208",
"url": "https://bugzilla.suse.com/1083494"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2017-18208",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2017-18208",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-28T14:17:49Z",
"details": "moderate"
}
],
"title": "CVE-2017-18208"
},
{
"cve": "CVE-2017-18221",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-18221"
}
],
"notes": [
{
"category": "general",
"text": "The __munlock_pagevec function in mm/mlock.c in the Linux kernel before 4.11.4 allows local users to cause a denial of service (NR_MLOCK accounting corruption) via crafted use of mlockall and munlockall system calls.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-18221",
"url": "https://www.suse.com/security/cve/CVE-2017-18221"
},
{
"category": "external",
"summary": "SUSE Bug 1084323 for CVE-2017-18221",
"url": "https://bugzilla.suse.com/1084323"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-28T14:17:49Z",
"details": "moderate"
}
],
"title": "CVE-2017-18221"
},
{
"cve": "CVE-2018-1066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-1066"
}
],
"notes": [
{
"category": "general",
"text": "The Linux kernel before version 4.11 is vulnerable to a NULL pointer dereference in fs/cifs/cifsencrypt.c:setup_ntlmv2_rsp() that allows an attacker controlling a CIFS server to kernel panic a client that has this server mounted, because an empty TargetInfo field in an NTLMSSP setup negotiation response is mishandled during session recovery.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-1066",
"url": "https://www.suse.com/security/cve/CVE-2018-1066"
},
{
"category": "external",
"summary": "SUSE Bug 1083640 for CVE-2018-1066",
"url": "https://bugzilla.suse.com/1083640"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-28T14:17:49Z",
"details": "moderate"
}
],
"title": "CVE-2018-1066"
},
{
"cve": "CVE-2018-1068",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-1068"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the Linux 4.x kernel\u0027s implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-1068",
"url": "https://www.suse.com/security/cve/CVE-2018-1068"
},
{
"category": "external",
"summary": "SUSE Bug 1085107 for CVE-2018-1068",
"url": "https://bugzilla.suse.com/1085107"
},
{
"category": "external",
"summary": "SUSE Bug 1085114 for CVE-2018-1068",
"url": "https://bugzilla.suse.com/1085114"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2018-1068",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1123903 for CVE-2018-1068",
"url": "https://bugzilla.suse.com/1123903"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-28T14:17:49Z",
"details": "important"
}
],
"title": "CVE-2018-1068"
},
{
"cve": "CVE-2018-5332",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5332"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5332",
"url": "https://www.suse.com/security/cve/CVE-2018-5332"
},
{
"category": "external",
"summary": "SUSE Bug 1075621 for CVE-2018-5332",
"url": "https://bugzilla.suse.com/1075621"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2018-5332",
"url": "https://bugzilla.suse.com/1091815"
},
{
"category": "external",
"summary": "SUSE Bug 1115893 for CVE-2018-5332",
"url": "https://bugzilla.suse.com/1115893"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.6,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-28T14:17:49Z",
"details": "low"
}
],
"title": "CVE-2018-5332"
},
{
"cve": "CVE-2018-5333",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5333"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in net/rds/rdma.c mishandles cases where page pinning fails or an invalid address is supplied, leading to an rds_atomic_free_op NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5333",
"url": "https://www.suse.com/security/cve/CVE-2018-5333"
},
{
"category": "external",
"summary": "SUSE Bug 1075617 for CVE-2018-5333",
"url": "https://bugzilla.suse.com/1075617"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2018-5333",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-28T14:17:49Z",
"details": "low"
}
],
"title": "CVE-2018-5333"
},
{
"cve": "CVE-2018-6927",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-6927"
}
],
"notes": [
{
"category": "general",
"text": "The futex_requeue function in kernel/futex.c in the Linux kernel before 4.14.15 might allow attackers to cause a denial of service (integer overflow) or possibly have unspecified other impact by triggering a negative wake or requeue value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-6927",
"url": "https://www.suse.com/security/cve/CVE-2018-6927"
},
{
"category": "external",
"summary": "SUSE Bug 1080757 for CVE-2018-6927",
"url": "https://bugzilla.suse.com/1080757"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2018-6927",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-28T14:17:49Z",
"details": "moderate"
}
],
"title": "CVE-2018-6927"
},
{
"cve": "CVE-2018-7566",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-7566"
}
],
"notes": [
{
"category": "general",
"text": "The Linux kernel 4.15 has a Buffer Overflow via an SNDRV_SEQ_IOCTL_SET_CLIENT_POOL ioctl write operation to /dev/snd/seq by a local user.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-7566",
"url": "https://www.suse.com/security/cve/CVE-2018-7566"
},
{
"category": "external",
"summary": "SUSE Bug 1083483 for CVE-2018-7566",
"url": "https://bugzilla.suse.com/1083483"
},
{
"category": "external",
"summary": "SUSE Bug 1083488 for CVE-2018-7566",
"url": "https://bugzilla.suse.com/1083488"
},
{
"category": "external",
"summary": "SUSE Bug 1087082 for CVE-2018-7566",
"url": "https://bugzilla.suse.com/1087082"
},
{
"category": "external",
"summary": "SUSE Bug 1091815 for CVE-2018-7566",
"url": "https://bugzilla.suse.com/1091815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:kernel-ec2-extra-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-default-man-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-devel-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-macros-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-source-3.12.61-52.125.1.noarch",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:kernel-syms-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-base-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kernel-xen-devel-3.12.61-52.125.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-default-1-1.3.1.x86_64",
"SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_125-xen-1-1.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-03-28T14:17:49Z",
"details": "important"
}
],
"title": "CVE-2018-7566"
}
]
}
rhsa-2018:0654
Vulnerability from csaf_redhat
Published
2018-04-10 03:34
Modified
2025-08-04 11:59
Summary
Red Hat Security Advisory: kernel-alt security, bug fix, and enhancement update
Notes
Topic
An update for kernel-alt is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The kernel-alt packages provide the Linux kernel version 4.x.
The following packages have been upgraded to a later upstream version: kernel-alt (4.14.0). (BZ#1492717)
Security Fix(es):
* An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization). There are three primary variants of the issue which differ in the way the speculative execution can be exploited.
Variant CVE-2017-5715 triggers the speculative execution by utilizing branch target injection. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory accesses may cause allocation into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to cross the syscall and guest/host boundaries and read privileged memory by conducting targeted cache side-channel attacks. (CVE-2017-5715, Important, ARM)
Variant CVE-2017-5753 triggers the speculative execution by performing a bounds-check bypass. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory accesses may cause allocation into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to cross the syscall boundary and read privileged memory by conducting targeted cache side-channel attacks. (CVE-2017-5753, Important, ARM)
Variant CVE-2017-5754 relies on the fact that, on impacted microprocessors, during speculative execution of instruction permission faults, exception generation triggered by a faulting access is suppressed until the retirement of the whole instruction block. In a combination with the fact that memory accesses may populate the cache even when the block is being dropped and never committed (executed), an unprivileged local attacker could use this flaw to read privileged (kernel space) memory by conducting targeted cache side-channel attacks. (CVE-2017-5754, Important, ARM)
* kernel: memory leak when merging buffers in SCSI IO vectors (CVE-2017-12190, Moderate)
* kernel: net: double-free and memory corruption in get_net_ns_by_id() (CVE-2017-15129, Moderate)
* kernel: Incorrect updates of uninstantiated keys crash the kernel (CVE-2017-15299, Moderate)
* kernel: Missing capabilities check in net/netfilter/nfnetlink_cthelper.c allows for unprivileged access to systemwide nfnl_cthelper_list structure (CVE-2017-17448, Moderate)
* kernel: Missing namespace check in net/netlink/af_netlink.c allows for network monitors to observe systemwide activity (CVE-2017-17449, Moderate)
* kernel: Arbitrary stack overwrite causing oops via crafted signal frame (CVE-2017-1000255, Moderate)
* kernel: Stack information leak in the EFS element (CVE-2017-1000410, Moderate)
* kernel: Race condition in sound system can lead to denial of service (CVE-2018-1000004, Moderate)
* kernel: Buffer overflow in mp_override_legacy_irq() (CVE-2017-11473, Low)
* kernel: Integer overflow in futex.c:futux_requeue can lead to denial of service or unspecified impact (CVE-2018-6927, Low)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank Google Project Zero for reporting CVE-2017-5715, CVE-2017-5753, and CVE-2017-5754; Vitaly Mayatskih for reporting CVE-2017-12190; Kirill Tkhai for reporting CVE-2017-15129; Michael Ellerman, Gustavo Romero, Breno Leitao, Paul Mackerras, and Cyril Bur for reporting CVE-2017-1000255; and Armis Labs for reporting CVE-2017-1000410.
Additional Changes:
See the Red Hat Enterprise Linux 7.5 Release Notes linked from References.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for kernel-alt is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The kernel-alt packages provide the Linux kernel version 4.x.\n\nThe following packages have been upgraded to a later upstream version: kernel-alt (4.14.0). (BZ#1492717)\n\nSecurity Fix(es):\n\n* An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization). There are three primary variants of the issue which differ in the way the speculative execution can be exploited.\n\nVariant CVE-2017-5715 triggers the speculative execution by utilizing branch target injection. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory accesses may cause allocation into the microprocessor\u0027s data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to cross the syscall and guest/host boundaries and read privileged memory by conducting targeted cache side-channel attacks. (CVE-2017-5715, Important, ARM)\n\nVariant CVE-2017-5753 triggers the speculative execution by performing a bounds-check bypass. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory accesses may cause allocation into the microprocessor\u0027s data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to cross the syscall boundary and read privileged memory by conducting targeted cache side-channel attacks. (CVE-2017-5753, Important, ARM)\n\nVariant CVE-2017-5754 relies on the fact that, on impacted microprocessors, during speculative execution of instruction permission faults, exception generation triggered by a faulting access is suppressed until the retirement of the whole instruction block. In a combination with the fact that memory accesses may populate the cache even when the block is being dropped and never committed (executed), an unprivileged local attacker could use this flaw to read privileged (kernel space) memory by conducting targeted cache side-channel attacks. (CVE-2017-5754, Important, ARM)\n\n* kernel: memory leak when merging buffers in SCSI IO vectors (CVE-2017-12190, Moderate)\n\n* kernel: net: double-free and memory corruption in get_net_ns_by_id() (CVE-2017-15129, Moderate)\n\n* kernel: Incorrect updates of uninstantiated keys crash the kernel (CVE-2017-15299, Moderate)\n\n* kernel: Missing capabilities check in net/netfilter/nfnetlink_cthelper.c allows for unprivileged access to systemwide nfnl_cthelper_list structure (CVE-2017-17448, Moderate)\n\n* kernel: Missing namespace check in net/netlink/af_netlink.c allows for network monitors to observe systemwide activity (CVE-2017-17449, Moderate)\n\n* kernel: Arbitrary stack overwrite causing oops via crafted signal frame (CVE-2017-1000255, Moderate)\n\n* kernel: Stack information leak in the EFS element (CVE-2017-1000410, Moderate)\n\n* kernel: Race condition in sound system can lead to denial of service (CVE-2018-1000004, Moderate)\n\n* kernel: Buffer overflow in mp_override_legacy_irq() (CVE-2017-11473, Low)\n\n* kernel: Integer overflow in futex.c:futux_requeue can lead to denial of service or unspecified impact (CVE-2018-6927, Low)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank Google Project Zero for reporting CVE-2017-5715, CVE-2017-5753, and CVE-2017-5754; Vitaly Mayatskih for reporting CVE-2017-12190; Kirill Tkhai for reporting CVE-2017-15129; Michael Ellerman, Gustavo Romero, Breno Leitao, Paul Mackerras, and Cyril Bur for reporting CVE-2017-1000255; and Armis Labs for reporting CVE-2017-1000410.\n\nAdditional Changes:\n\nSee the Red Hat Enterprise Linux 7.5 Release Notes linked from References.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:0654",
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/7.5_Release_Notes/index.html",
"url": "https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/7.5_Release_Notes/index.html"
},
{
"category": "external",
"summary": "1473209",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473209"
},
{
"category": "external",
"summary": "1495089",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495089"
},
{
"category": "external",
"summary": "1498016",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1498016"
},
{
"category": "external",
"summary": "1498067",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1498067"
},
{
"category": "external",
"summary": "1501794",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1501794"
},
{
"category": "external",
"summary": "1519160",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519160"
},
{
"category": "external",
"summary": "1519778",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519778"
},
{
"category": "external",
"summary": "1519780",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519780"
},
{
"category": "external",
"summary": "1519781",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519781"
},
{
"category": "external",
"summary": "1525762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1525762"
},
{
"category": "external",
"summary": "1525768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1525768"
},
{
"category": "external",
"summary": "1531174",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1531174"
},
{
"category": "external",
"summary": "1535315",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535315"
},
{
"category": "external",
"summary": "1544612",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1544612"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0654.json"
}
],
"title": "Red Hat Security Advisory: kernel-alt security, bug fix, and enhancement update",
"tracking": {
"current_release_date": "2025-08-04T11:59:37+00:00",
"generator": {
"date": "2025-08-04T11:59:37+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.6"
}
},
"id": "RHSA-2018:0654",
"initial_release_date": "2018-04-10T03:34:39+00:00",
"revision_history": [
{
"date": "2018-04-10T03:34:39+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-04-10T03:34:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-08-04T11:59:37+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_id": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_id": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf-debuginfo@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-ppc64le@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python-perf-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "python-perf-0:4.14.0-49.el7a.ppc64le",
"product_id": "python-perf-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-headers-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-headers-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-tools-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-tools-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-bootwrapper@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-debug-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-debug-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-devel-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-devel-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "perf-0:4.14.0-49.el7a.ppc64le",
"product_id": "perf-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.14.0-49.el7a?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-0:4.14.0-49.el7a.ppc64le",
"product": {
"name": "kernel-0:4.14.0-49.el7a.ppc64le",
"product_id": "kernel-0:4.14.0-49.el7a.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.14.0-49.el7a?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_id": "perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_id": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf-debuginfo@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-aarch64@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python-perf-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "python-perf-0:4.14.0-49.el7a.aarch64",
"product_id": "python-perf-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-headers-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-headers-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-tools-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-tools-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-debug-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-debug-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-devel-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-devel-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "perf-0:4.14.0-49.el7a.aarch64",
"product_id": "perf-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.14.0-49.el7a?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:4.14.0-49.el7a.aarch64",
"product": {
"name": "kernel-0:4.14.0-49.el7a.aarch64",
"product_id": "kernel-0:4.14.0-49.el7a.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.14.0-49.el7a?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-doc-0:4.14.0-49.el7a.noarch",
"product": {
"name": "kernel-doc-0:4.14.0-49.el7a.noarch",
"product_id": "kernel-doc-0:4.14.0-49.el7a.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-doc@4.14.0-49.el7a?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"product": {
"name": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"product_id": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-abi-whitelists@4.14.0-49.el7a?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-kdump-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-kdump-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-kdump-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-kdump@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python-perf-0:4.14.0-49.el7a.s390x",
"product": {
"name": "python-perf-0:4.14.0-49.el7a.s390x",
"product_id": "python-perf-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-headers-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-headers-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-kdump-devel@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.14.0-49.el7a.s390x",
"product": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.s390x",
"product_id": "perf-debuginfo-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-s390x@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"product": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"product_id": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-perf-debuginfo@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-debug-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-debug-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-devel-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-devel-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.14.0-49.el7a.s390x",
"product": {
"name": "perf-0:4.14.0-49.el7a.s390x",
"product_id": "perf-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.14.0-49.el7a?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"product": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"product_id": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.14.0-49.el7a?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-alt-0:4.14.0-49.el7a.src",
"product": {
"name": "kernel-alt-0:4.14.0-49.el7a.src",
"product_id": "kernel-alt-0:4.14.0-49.el7a.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-alt@4.14.0-49.el7a?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch"
},
"product_reference": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-alt-0:4.14.0-49.el7a.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src"
},
"product_reference": "kernel-alt-0:4.14.0-49.el7a.src",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debug-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debug-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debug-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-devel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-devel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-devel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:4.14.0-49.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch"
},
"product_reference": "kernel-doc-0:4.14.0-49.el7a.noarch",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-headers-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-headers-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-headers-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-kdump-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "perf-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "perf-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x"
},
"product_reference": "perf-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "perf-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "python-perf-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "python-perf-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x"
},
"product_reference": "python-perf-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch"
},
"product_reference": "kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-alt-0:4.14.0-49.el7a.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src"
},
"product_reference": "kernel-alt-0:4.14.0-49.el7a.src",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debug-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debug-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debug-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-devel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-devel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-devel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:4.14.0-49.el7a.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch"
},
"product_reference": "kernel-doc-0:4.14.0-49.el7a.noarch",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-headers-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-headers-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-headers-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-kdump-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x"
},
"product_reference": "kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "perf-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "perf-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x"
},
"product_reference": "perf-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "perf-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "python-perf-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "python-perf-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x"
},
"product_reference": "python-perf-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"relates_to_product_reference": "7Server-optional-RHELALT"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
},
"product_reference": "python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"relates_to_product_reference": "7Server-optional-RHELALT"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Google Project Zero"
]
}
],
"cve": "CVE-2017-5753",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2017-11-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1519778"
}
],
"notes": [
{
"category": "description",
"text": "An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization). There are three primary variants of the issue which differ in the way the speculative execution can be exploited. Variant CVE-2017-5753 triggers the speculative execution by performing a bounds-check bypass. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory accesses may cause allocation into the microprocessor\u0027s data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to cross the syscall boundary and read privileged memory by conducting targeted cache side-channel attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "hw: cpu: speculative execution bounds-check bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security is aware of this issue. Updates will be released as they become available. For additional information, please refer to the Red Hat Knowledgebase article: https://access.redhat.com/security/vulnerabilities/speculativeexecution",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5753"
},
{
"category": "external",
"summary": "RHBZ#1519778",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519778"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5753",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5753"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5753",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5753"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/speculativeexecution",
"url": "https://access.redhat.com/security/vulnerabilities/speculativeexecution"
},
{
"category": "external",
"summary": "https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html",
"url": "https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html"
},
{
"category": "external",
"summary": "https://meltdownattack.com",
"url": "https://meltdownattack.com"
},
{
"category": "external",
"summary": "https://spectreattack.com/",
"url": "https://spectreattack.com/"
}
],
"release_date": "2018-01-03T22:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "hw: cpu: speculative execution bounds-check bypass"
},
{
"cve": "CVE-2017-11473",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2017-07-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1473209"
}
],
"notes": [
{
"category": "description",
"text": "Buffer overflow in the mp_override_legacy_irq() function in arch/x86/kernel/acpi/boot.c in the Linux kernel through 4.12.2 allows local users to gain privileges via a crafted ACPI table.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Buffer overflow in mp_override_legacy_irq()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated this issue as having Low security impact. This issue is not currently planned to be addressed in future updates of the Red Hat products. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.\n\nThis attack requires \n\n- An attacker to be able to write to the ACPI tables ( local, privileged operation and non generalized attacks)\n- The ability for the attacker to reboot the system ( local, privileged operation )\n- The ACPI table changes to persist through reboots ( not common on cloud/serverless platforms )\n- This modification to the table alone is able to possibly corrupt memory, but the corruption will not be enough alone, the corrupted affected memory will be overwritten with valid acpi struct data which also has to corrupt the memory in which a way the flaw can create abuse (HARD).\n- The attacker will find it significantly difficult to abuse this a flaw in early-boot as injecting code/controlled execution at this point would require privileges. If an attacker had this specific privilege, there are easier ways to gain privilege escalation.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-11473"
},
{
"category": "external",
"summary": "RHBZ#1473209",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473209"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-11473",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11473"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-11473",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-11473"
}
],
"release_date": "2017-07-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: Buffer overflow in mp_override_legacy_irq()"
},
{
"acknowledgments": [
{
"names": [
"Vitaly Mayatskih"
]
}
],
"cve": "CVE-2017-12190",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2017-09-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1495089"
}
],
"notes": [
{
"category": "description",
"text": "It was found that in the Linux kernel through v4.14-rc5, bio_map_user_iov() and bio_unmap_user() in \u0027block/bio.c\u0027 do unbalanced pages refcounting if IO vector has small consecutive buffers belonging to the same page. bio_add_pc_page() merges them into one, but the page reference is never dropped, causing a memory leak and possible system lockup due to out-of-memory condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: memory leak when merging buffers in SCSI IO vectors",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 5. This is not currently planned to be addressed in future updates of the product due to its life cycle. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 6, 7 and MRG-2. Future updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-12190"
},
{
"category": "external",
"summary": "RHBZ#1495089",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495089"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-12190",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12190"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-12190",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12190"
}
],
"release_date": "2017-09-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: memory leak when merging buffers in SCSI IO vectors"
},
{
"cve": "CVE-2017-12192",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2017-09-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1493435"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the Key Management sub component of the Linux kernel, where when trying to issue a KEYTCL_READ on a negative key would lead to a NULL pointer dereference. A local attacker could use this flaw to crash the kernel.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: NULL pointer dereference due to KEYCTL_READ on negative key",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 6, 7 and MRG-2.\n\nFuture Linux kernel updates for the respective releases will address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-12192"
},
{
"category": "external",
"summary": "RHBZ#1493435",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1493435"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-12192",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12192"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-12192",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12192"
},
{
"category": "external",
"summary": "http://seclists.org/oss-sec/2017/q4/63",
"url": "http://seclists.org/oss-sec/2017/q4/63"
}
],
"release_date": "2017-09-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: NULL pointer dereference due to KEYCTL_READ on negative key"
},
{
"acknowledgments": [
{
"names": [
"Kirill Tkhai"
]
}
],
"cve": "CVE-2017-15129",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2017-12-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1531174"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in a network namespaces code affecting the Linux kernel since v4.0-rc1 through v4.15-rc5. The function get_net_ns_by_id() does not check for the net::count value after it has found a peer network in netns_ids idr which could lead to double free and memory corruption. This vulnerability could allow an unprivileged local user to induce kernel memory corruption on the system, leading to a crash. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although it is thought to be unlikely.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: net: double-free and memory corruption in get_net_ns_by_id()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5 and 6 as the code with the flaw is not present in the products listed.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-15129"
},
{
"category": "external",
"summary": "RHBZ#1531174",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1531174"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-15129",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15129"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-15129",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15129"
}
],
"release_date": "2017-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: net: double-free and memory corruption in get_net_ns_by_id()"
},
{
"cve": "CVE-2017-15299",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2017-09-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1498016"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the key management subsystem of the Linux kernel. An update on an uninstantiated key could cause a kernel panic, leading to denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Incorrect updates of uninstantiated keys crash the kernel",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5 and 6, as the code with the flaw is not present in the products listed.\n\nThis issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 7 and MRG-2. Future updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-15299"
},
{
"category": "external",
"summary": "RHBZ#1498016",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1498016"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-15299",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15299"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-15299",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15299"
}
],
"release_date": "2017-09-27T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Incorrect updates of uninstantiated keys crash the kernel"
},
{
"cve": "CVE-2017-15306",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2017-11-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1510399"
}
],
"notes": [
{
"category": "description",
"text": "The kvm_vm_ioctl_check_extension function in arch/powerpc/kvm/powerpc.c in the Linux kernel before 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a KVM_CHECK_EXTENSION KVM_CAP_PPC_HTM ioctl call to /dev/kvm.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: KVM: oops when checking KVM_CAP_PPC_HTM on PPC platform",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the versions of the kernel package as shipped with\nRed Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG 2.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-15306"
},
{
"category": "external",
"summary": "RHBZ#1510399",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1510399"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-15306",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15306"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-15306",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15306"
}
],
"release_date": "2017-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 4.9,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Kernel: KVM: oops when checking KVM_CAP_PPC_HTM on PPC platform"
},
{
"cve": "CVE-2017-16939",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2017-11-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1517220"
}
],
"notes": [
{
"category": "description",
"text": "The Linux kernel is vulerable to a use-after-free flaw when Transformation User configuration interface(CONFIG_XFRM_USER) compile-time configuration were enabled. This vulnerability occurs while closing a xfrm netlink socket in xfrm_dump_policy_done. A user/process could abuse this flaw to potentially escalate their privileges on a system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 5 and Red Hat Enterprise Linux 6.\n\nThis issue affects the version of the kernel package as shipped with Red Hat Enterprise Linux 7 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 7 and Red Hat Enterprise MRG 2 may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-16939"
},
{
"category": "external",
"summary": "RHBZ#1517220",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1517220"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-16939",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16939"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-16939",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-16939"
}
],
"release_date": "2017-11-24T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation"
},
{
"cve": "CVE-2017-17448",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2017-12-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1525768"
}
],
"notes": [
{
"category": "description",
"text": "The net/netfilter/nfnetlink_cthelper.c function in the Linux kernel through 4.14.4 does not require the CAP_NET_ADMIN capability for new, get, and del operations. This allows local users to bypass intended access restrictions because the nfnl_cthelper_list data structure is shared across all net namespaces.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Missing capabilities check in net/netfilter/nfnetlink_cthelper.c allows for unprivileged access to systemwide nfnl_cthelper_list structure",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, 6 and Red Hat Enterprise MRG 2, as a code with the flaw is not present or is not built in the products listed.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 7, its real-time kernel, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-17448"
},
{
"category": "external",
"summary": "RHBZ#1525768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1525768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-17448",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-17448"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-17448",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17448"
}
],
"release_date": "2017-12-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Missing capabilities check in net/netfilter/nfnetlink_cthelper.c allows for unprivileged access to systemwide nfnl_cthelper_list structure"
},
{
"cve": "CVE-2017-17449",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2017-12-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1525762"
}
],
"notes": [
{
"category": "description",
"text": "The __netlink_deliver_tap_skb function in net/netlink/af_netlink.c in the Linux kernel, through 4.14.4, does not restrict observations of Netlink messages to a single net namespace, when CONFIG_NLMON is enabled. This allows local users to obtain sensitive information by leveraging the CAP_NET_ADMIN capability to sniff an nlmon interface for all Netlink activity on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Missing namespace check in net/netlink/af_netlink.c allows for network monitors to observe systemwide activity",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5 and 6, as a code with the flaw is not present or is not built in the products listed.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-17449"
},
{
"category": "external",
"summary": "RHBZ#1525762",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1525762"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-17449",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-17449"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-17449",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17449"
}
],
"release_date": "2017-12-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 3.3,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Missing namespace check in net/netlink/af_netlink.c allows for network monitors to observe systemwide activity"
},
{
"acknowledgments": [
{
"names": [
"Breno Leitao",
"Cyril Bur",
"Gustavo Romero",
"Michael Ellerman",
"Paul Mackerras"
]
}
],
"cve": "CVE-2017-1000255",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2017-10-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1498067"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s handling of signal frame on PowerPC systems. A malicious local user process could craft a signal frame allowing an attacker to corrupt memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Arbitrary stack overwrite causing oops via crafted signal frame",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel and kernel-rt packages as shipped with Red Hat Enterprise Linux 5, 6, and 7.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-1000255"
},
{
"category": "external",
"summary": "RHBZ#1498067",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1498067"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-1000255",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000255"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000255",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000255"
}
],
"release_date": "2017-10-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Arbitrary stack overwrite causing oops via crafted signal frame"
},
{
"acknowledgments": [
{
"names": [
"Armis Labs"
]
}
],
"cve": "CVE-2017-1000410",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2017-11-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1519160"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the processing of incoming L2CAP bluetooth commands. Uninitialized stack variables can be sent to an attacker leaking data in kernel address space.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Stack information leak in the EFS element",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the Linux kernel packages as shipped with Red Hat\nEnterprise Linux 5.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6, 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-1000410"
},
{
"category": "external",
"summary": "RHBZ#1519160",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519160"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-1000410",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1000410"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000410",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000410"
}
],
"release_date": "2017-12-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Stack information leak in the EFS element"
},
{
"cve": "CVE-2018-6927",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2018-02-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1544612"
}
],
"notes": [
{
"category": "description",
"text": "The futex_requeue function in kernel/futex.c in the Linux kernel, before 4.14.15, might allow attackers to cause a denial of service (integer overflow) or possibly have unspecified other impacts by triggering a negative wake or requeue value. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is unlikely.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Integer overflow in futex.c:futux_requeue can lead to denial of service or unspecified impact",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 5. This is not currently planned to be addressed in future updates of the product due to its life cycle. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6, 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-6927"
},
{
"category": "external",
"summary": "RHBZ#1544612",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1544612"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-6927",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-6927"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-6927",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-6927"
}
],
"release_date": "2018-02-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.3,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: Integer overflow in futex.c:futux_requeue can lead to denial of service or unspecified impact"
},
{
"cve": "CVE-2018-1000004",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2018-01-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1535315"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel versions 4.12, 3.10, 2.6, and possibly earlier, a race condition vulnerability exists in the sound system allowing for a potential deadlock and memory corruption due to use-after-free condition and thus denial of service. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is unlikely.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Race condition in sound system can lead to denial of service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the version of Linux kernel package as shipped with Red Hat Enterprise Linux 5. This is not currently planned to be addressed in future updates of the product due to its life cycle. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6, 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE. Future Linux kernel updates for the respective releases may address this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1000004"
},
{
"category": "external",
"summary": "RHBZ#1535315",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1535315"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1000004",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000004"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000004",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000004"
}
],
"release_date": "2018-01-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T03:34:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-abi-whitelists-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-alt-0:4.14.0-49.el7a.src",
"7Server-optional-RHELALT:kernel-bootwrapper-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debug-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-debuginfo-common-aarch64-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-debuginfo-common-ppc64le-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-debuginfo-common-s390x-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-doc-0:4.14.0-49.el7a.noarch",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-headers-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-kdump-devel-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:kernel-tools-libs-devel-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:perf-debuginfo-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-0:4.14.0-49.el7a.s390x",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.aarch64",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.ppc64le",
"7Server-optional-RHELALT:python-perf-debuginfo-0:4.14.0-49.el7a.s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Race condition in sound system can lead to denial of service"
}
]
}
ghsa-87f2-g6cv-pjh2
Vulnerability from github
Published
2022-05-14 02:18
Modified
2025-04-20 03:46
Severity ?
VLAI Severity ?
Details
The KEYS subsystem in the Linux kernel through 4.13.7 mishandles use of add_key for a key that already exists but is uninstantiated, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted system call.
{
"affected": [],
"aliases": [
"CVE-2017-15299"
],
"database_specific": {
"cwe_ids": [
"CWE-476"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2017-10-14T23:29:00Z",
"severity": "MODERATE"
},
"details": "The KEYS subsystem in the Linux kernel through 4.13.7 mishandles use of add_key for a key that already exists but is uninstantiated, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted system call.",
"id": "GHSA-87f2-g6cv-pjh2",
"modified": "2025-04-20T03:46:50Z",
"published": "2022-05-14T02:18:43Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15299"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1498016"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html"
},
{
"type": "WEB",
"url": "https://marc.info/?t=150654188100001\u0026r=1\u0026w=2"
},
{
"type": "WEB",
"url": "https://marc.info/?t=150783958600011\u0026r=1\u0026w=2"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3798-1"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3798-2"
},
{
"type": "WEB",
"url": "https://www.mail-archive.com/linux-kernel%40vger.kernel.org/msg1499828.html"
},
{
"type": "WEB",
"url": "https://www.mail-archive.com/linux-kernel@vger.kernel.org/msg1499828.html"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
fkie_cve-2017-15299
Vulnerability from fkie_nvd
Published
2017-10-14 23:29
Modified
2025-04-20 01:37
Severity ?
Summary
The KEYS subsystem in the Linux kernel through 4.13.7 mishandles use of add_key for a key that already exists but is uninstantiated, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted system call.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| cve@mitre.org | https://access.redhat.com/errata/RHSA-2018:0654 | ||
| cve@mitre.org | https://bugzilla.redhat.com/show_bug.cgi?id=1498016 | Issue Tracking, Third Party Advisory | |
| cve@mitre.org | https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html | ||
| cve@mitre.org | https://marc.info/?t=150654188100001&r=1&w=2 | Issue Tracking, Patch, Third Party Advisory | |
| cve@mitre.org | https://marc.info/?t=150783958600011&r=1&w=2 | Issue Tracking, Patch, Third Party Advisory | |
| cve@mitre.org | https://usn.ubuntu.com/3798-1/ | ||
| cve@mitre.org | https://usn.ubuntu.com/3798-2/ | ||
| cve@mitre.org | https://www.mail-archive.com/linux-kernel%40vger.kernel.org/msg1499828.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2018:0654 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.redhat.com/show_bug.cgi?id=1498016 | Issue Tracking, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://marc.info/?t=150654188100001&r=1&w=2 | Issue Tracking, Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://marc.info/?t=150783958600011&r=1&w=2 | Issue Tracking, Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://usn.ubuntu.com/3798-1/ | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://usn.ubuntu.com/3798-2/ | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://www.mail-archive.com/linux-kernel%40vger.kernel.org/msg1499828.html |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| linux | linux_kernel | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "90F3E159-291B-49D0-ACC2-11046DE3849B",
"versionEndIncluding": "4.13.6",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The KEYS subsystem in the Linux kernel through 4.13.7 mishandles use of add_key for a key that already exists but is uninstantiated, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted system call."
},
{
"lang": "es",
"value": "El subsistema de claves KEYS en el kernel Linux hasta la versi\u00f3n 4.13.7 gestiona de manera incorrecta el uso de add_key para una clave que ya existe, pero no se ha probado, lo que permite que usuarios locales provoquen una denegaci\u00f3n de servicio (desreferencia de puntero NULL y cierre inesperado del sistema) o que tengan un impacto sin especificar mediante una llamada del sistema manipulada."
}
],
"id": "CVE-2017-15299",
"lastModified": "2025-04-20T01:37:25.860",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 4.9,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2017-10-14T23:29:00.323",
"references": [
{
"source": "cve@mitre.org",
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
},
{
"source": "cve@mitre.org",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1498016"
},
{
"source": "cve@mitre.org",
"url": "https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Issue Tracking",
"Patch",
"Third Party Advisory"
],
"url": "https://marc.info/?t=150654188100001\u0026r=1\u0026w=2"
},
{
"source": "cve@mitre.org",
"tags": [
"Issue Tracking",
"Patch",
"Third Party Advisory"
],
"url": "https://marc.info/?t=150783958600011\u0026r=1\u0026w=2"
},
{
"source": "cve@mitre.org",
"url": "https://usn.ubuntu.com/3798-1/"
},
{
"source": "cve@mitre.org",
"url": "https://usn.ubuntu.com/3798-2/"
},
{
"source": "cve@mitre.org",
"url": "https://www.mail-archive.com/linux-kernel%40vger.kernel.org/msg1499828.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://access.redhat.com/errata/RHSA-2018:0654"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1498016"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Patch",
"Third Party Advisory"
],
"url": "https://marc.info/?t=150654188100001\u0026r=1\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Patch",
"Third Party Advisory"
],
"url": "https://marc.info/?t=150783958600011\u0026r=1\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://usn.ubuntu.com/3798-1/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://usn.ubuntu.com/3798-2/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.mail-archive.com/linux-kernel%40vger.kernel.org/msg1499828.html"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-476"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…