Security update for the Linux Kernel SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2016:1798-1 Final 1 1 2016-07-14T08:49:18Z current 2016-07-14T08:49:18Z 2016-07-14T08:49:18Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for the Linux Kernel The openSUSE Leap 42.1 was updated to 4.1.27 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2016-4997: A buffer overflow in 32bit compat_setsockopt iptables handling could lead to a local privilege escalation. (bsc#986362) - CVE-2016-5829: Multiple heap-based buffer overflows in the hiddev_ioctl_usage function in drivers/hid/usbhid/hiddev.c in the Linux kernel allow local users to cause a denial of service or possibly have unspecified other impact via a crafted (1) HIDIOCGUSAGES or (2) HIDIOCSUSAGES ioctl call (bnc#986572). - CVE-2016-4470: The key_reject_and_link function in security/keys/key.c in the Linux kernel did not ensure that a certain data structure is initialized, which allowed local users to cause a denial of service (system crash) via vectors involving a crafted keyctl request2 command (bnc#984755). - CVE-2016-4794: Use-after-free vulnerability in mm/percpu.c in the Linux kernel allowed local users to cause a denial of service (BUG) or possibly have unspecified other impact via crafted use of the mmap and bpf system calls (bnc#980265). The following non-security bugs were fixed: - Refresh patches.xen/xen-netback-coalesce: Restore copying of SKBs with head exceeding page size (bsc#978469). - Refresh patches.xen/xen3-patch-2.6.26 (fix PAT initialization). - Refresh patches.xen/xen3-patch-2.6.39 (fix ia32_compat inheritance). - Refresh patches.xen/xen3-patch-3.14: Suppress atomic file position updates for /proc/xen/xenbus (bsc#970275). - Refresh patches.xen/xen3-patch-3.16 (drop redundant addition of a comment). - Refresh patches.xen/xen3-patch-4.1.7-8. - base: make module_create_drivers_dir race-free (bnc#983977). - ipvs: count pre-established TCP states as active (bsc#970114). - net: thunderx: Fix TL4 configuration for secondary Qsets (bsc#986530). - net: thunderx: Fix link status reporting (bsc#986530). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-security-announce/2016-07/msg00014.html E-Mail link for openSUSE-SU-2016:1798-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.1 kernel-debug-4.1.27-24.1 kernel-debug-base-4.1.27-24.1 kernel-debug-devel-4.1.27-24.1 kernel-default-4.1.27-24.1 kernel-default-base-4.1.27-24.1 kernel-default-devel-4.1.27-24.1 kernel-devel-4.1.27-24.1 kernel-docs-4.1.27-24.2 kernel-docs-html-4.1.27-24.2 kernel-docs-pdf-4.1.27-24.2 kernel-ec2-4.1.27-24.1 kernel-ec2-base-4.1.27-24.1 kernel-ec2-devel-4.1.27-24.1 kernel-macros-4.1.27-24.1 kernel-obs-build-4.1.27-24.2 kernel-obs-qa-4.1.27-24.1 kernel-obs-qa-xen-4.1.27-24.1 kernel-pae-4.1.27-24.1 kernel-pae-base-4.1.27-24.1 kernel-pae-devel-4.1.27-24.1 kernel-pv-4.1.27-24.1 kernel-pv-base-4.1.27-24.1 kernel-pv-devel-4.1.27-24.1 kernel-source-4.1.27-24.1 kernel-source-vanilla-4.1.27-24.1 kernel-syms-4.1.27-24.1 kernel-vanilla-4.1.27-24.1 kernel-vanilla-devel-4.1.27-24.1 kernel-xen-4.1.27-24.1 kernel-xen-base-4.1.27-24.1 kernel-xen-devel-4.1.27-24.1 kernel-debug-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-debug-base-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-debug-devel-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-default-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-default-base-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-default-devel-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-devel-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-docs-4.1.27-24.2 as a component of openSUSE Leap 42.1 kernel-docs-html-4.1.27-24.2 as a component of openSUSE Leap 42.1 kernel-docs-pdf-4.1.27-24.2 as a component of openSUSE Leap 42.1 kernel-ec2-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-ec2-base-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-ec2-devel-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-macros-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-obs-build-4.1.27-24.2 as a component of openSUSE Leap 42.1 kernel-obs-qa-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-obs-qa-xen-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-pae-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-pae-base-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-pae-devel-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-pv-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-pv-base-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-pv-devel-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-source-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-source-vanilla-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-syms-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-vanilla-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-vanilla-devel-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-xen-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-xen-base-4.1.27-24.1 as a component of openSUSE Leap 42.1 kernel-xen-devel-4.1.27-24.1 as a component of openSUSE Leap 42.1 The key_reject_and_link function in security/keys/key.c in the Linux kernel through 4.6.3 does not ensure that a certain data structure is initialized, which allows local users to cause a denial of service (system crash) via vectors involving a crafted keyctl request2 command. CVE-2016-4470 openSUSE Leap 42.1:kernel-debug-4.1.27-24.1 openSUSE Leap 42.1:kernel-debug-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-debug-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-default-4.1.27-24.1 openSUSE Leap 42.1:kernel-default-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-default-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-docs-4.1.27-24.2 openSUSE Leap 42.1:kernel-docs-html-4.1.27-24.2 openSUSE Leap 42.1:kernel-docs-pdf-4.1.27-24.2 openSUSE Leap 42.1:kernel-ec2-4.1.27-24.1 openSUSE Leap 42.1:kernel-ec2-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-ec2-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-macros-4.1.27-24.1 openSUSE Leap 42.1:kernel-obs-build-4.1.27-24.2 openSUSE Leap 42.1:kernel-obs-qa-4.1.27-24.1 openSUSE Leap 42.1:kernel-obs-qa-xen-4.1.27-24.1 openSUSE Leap 42.1:kernel-pae-4.1.27-24.1 openSUSE Leap 42.1:kernel-pae-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-pae-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-pv-4.1.27-24.1 openSUSE Leap 42.1:kernel-pv-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-pv-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-source-4.1.27-24.1 openSUSE Leap 42.1:kernel-source-vanilla-4.1.27-24.1 openSUSE Leap 42.1:kernel-syms-4.1.27-24.1 openSUSE Leap 42.1:kernel-vanilla-4.1.27-24.1 openSUSE Leap 42.1:kernel-vanilla-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-xen-4.1.27-24.1 openSUSE Leap 42.1:kernel-xen-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-xen-devel-4.1.27-24.1 moderate 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-07/msg00014.html https://www.suse.com/security/cve/CVE-2016-4470.html CVE-2016-4470 https://bugzilla.suse.com/984755 SUSE Bug 984755 https://bugzilla.suse.com/984764 SUSE Bug 984764 https://bugzilla.suse.com/990058 SUSE Bug 990058 https://bugzilla.suse.com/991651 SUSE Bug 991651 Use-after-free vulnerability in mm/percpu.c in the Linux kernel through 4.6 allows local users to cause a denial of service (BUG) or possibly have unspecified other impact via crafted use of the mmap and bpf system calls. CVE-2016-4794 openSUSE Leap 42.1:kernel-debug-4.1.27-24.1 openSUSE Leap 42.1:kernel-debug-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-debug-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-default-4.1.27-24.1 openSUSE Leap 42.1:kernel-default-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-default-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-docs-4.1.27-24.2 openSUSE Leap 42.1:kernel-docs-html-4.1.27-24.2 openSUSE Leap 42.1:kernel-docs-pdf-4.1.27-24.2 openSUSE Leap 42.1:kernel-ec2-4.1.27-24.1 openSUSE Leap 42.1:kernel-ec2-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-ec2-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-macros-4.1.27-24.1 openSUSE Leap 42.1:kernel-obs-build-4.1.27-24.2 openSUSE Leap 42.1:kernel-obs-qa-4.1.27-24.1 openSUSE Leap 42.1:kernel-obs-qa-xen-4.1.27-24.1 openSUSE Leap 42.1:kernel-pae-4.1.27-24.1 openSUSE Leap 42.1:kernel-pae-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-pae-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-pv-4.1.27-24.1 openSUSE Leap 42.1:kernel-pv-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-pv-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-source-4.1.27-24.1 openSUSE Leap 42.1:kernel-source-vanilla-4.1.27-24.1 openSUSE Leap 42.1:kernel-syms-4.1.27-24.1 openSUSE Leap 42.1:kernel-vanilla-4.1.27-24.1 openSUSE Leap 42.1:kernel-vanilla-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-xen-4.1.27-24.1 openSUSE Leap 42.1:kernel-xen-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-xen-devel-4.1.27-24.1 important 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-07/msg00014.html https://www.suse.com/security/cve/CVE-2016-4794.html CVE-2016-4794 https://bugzilla.suse.com/980265 SUSE Bug 980265 https://bugzilla.suse.com/981517 SUSE Bug 981517 The compat IPT_SO_SET_REPLACE and IP6T_SO_SET_REPLACE setsockopt implementations in the netfilter subsystem in the Linux kernel before 4.6.3 allow local users to gain privileges or cause a denial of service (memory corruption) by leveraging in-container root access to provide a crafted offset value that triggers an unintended decrement. CVE-2016-4997 openSUSE Leap 42.1:kernel-debug-4.1.27-24.1 openSUSE Leap 42.1:kernel-debug-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-debug-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-default-4.1.27-24.1 openSUSE Leap 42.1:kernel-default-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-default-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-docs-4.1.27-24.2 openSUSE Leap 42.1:kernel-docs-html-4.1.27-24.2 openSUSE Leap 42.1:kernel-docs-pdf-4.1.27-24.2 openSUSE Leap 42.1:kernel-ec2-4.1.27-24.1 openSUSE Leap 42.1:kernel-ec2-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-ec2-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-macros-4.1.27-24.1 openSUSE Leap 42.1:kernel-obs-build-4.1.27-24.2 openSUSE Leap 42.1:kernel-obs-qa-4.1.27-24.1 openSUSE Leap 42.1:kernel-obs-qa-xen-4.1.27-24.1 openSUSE Leap 42.1:kernel-pae-4.1.27-24.1 openSUSE Leap 42.1:kernel-pae-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-pae-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-pv-4.1.27-24.1 openSUSE Leap 42.1:kernel-pv-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-pv-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-source-4.1.27-24.1 openSUSE Leap 42.1:kernel-source-vanilla-4.1.27-24.1 openSUSE Leap 42.1:kernel-syms-4.1.27-24.1 openSUSE Leap 42.1:kernel-vanilla-4.1.27-24.1 openSUSE Leap 42.1:kernel-vanilla-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-xen-4.1.27-24.1 openSUSE Leap 42.1:kernel-xen-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-xen-devel-4.1.27-24.1 important 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-07/msg00014.html https://www.suse.com/security/cve/CVE-2016-4997.html CVE-2016-4997 https://bugzilla.suse.com/986362 SUSE Bug 986362 https://bugzilla.suse.com/986365 SUSE Bug 986365 https://bugzilla.suse.com/986377 SUSE Bug 986377 https://bugzilla.suse.com/990058 SUSE Bug 990058 https://bugzilla.suse.com/991651 SUSE Bug 991651 Multiple heap-based buffer overflows in the hiddev_ioctl_usage function in drivers/hid/usbhid/hiddev.c in the Linux kernel through 4.6.3 allow local users to cause a denial of service or possibly have unspecified other impact via a crafted (1) HIDIOCGUSAGES or (2) HIDIOCSUSAGES ioctl call. CVE-2016-5829 openSUSE Leap 42.1:kernel-debug-4.1.27-24.1 openSUSE Leap 42.1:kernel-debug-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-debug-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-default-4.1.27-24.1 openSUSE Leap 42.1:kernel-default-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-default-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-docs-4.1.27-24.2 openSUSE Leap 42.1:kernel-docs-html-4.1.27-24.2 openSUSE Leap 42.1:kernel-docs-pdf-4.1.27-24.2 openSUSE Leap 42.1:kernel-ec2-4.1.27-24.1 openSUSE Leap 42.1:kernel-ec2-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-ec2-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-macros-4.1.27-24.1 openSUSE Leap 42.1:kernel-obs-build-4.1.27-24.2 openSUSE Leap 42.1:kernel-obs-qa-4.1.27-24.1 openSUSE Leap 42.1:kernel-obs-qa-xen-4.1.27-24.1 openSUSE Leap 42.1:kernel-pae-4.1.27-24.1 openSUSE Leap 42.1:kernel-pae-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-pae-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-pv-4.1.27-24.1 openSUSE Leap 42.1:kernel-pv-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-pv-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-source-4.1.27-24.1 openSUSE Leap 42.1:kernel-source-vanilla-4.1.27-24.1 openSUSE Leap 42.1:kernel-syms-4.1.27-24.1 openSUSE Leap 42.1:kernel-vanilla-4.1.27-24.1 openSUSE Leap 42.1:kernel-vanilla-devel-4.1.27-24.1 openSUSE Leap 42.1:kernel-xen-4.1.27-24.1 openSUSE Leap 42.1:kernel-xen-base-4.1.27-24.1 openSUSE Leap 42.1:kernel-xen-devel-4.1.27-24.1 moderate 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2016-07/msg00014.html https://www.suse.com/security/cve/CVE-2016-5829.html CVE-2016-5829 https://bugzilla.suse.com/1053919 SUSE Bug 1053919 https://bugzilla.suse.com/1054127 SUSE Bug 1054127 https://bugzilla.suse.com/986572 SUSE Bug 986572 https://bugzilla.suse.com/986573 SUSE Bug 986573 https://bugzilla.suse.com/990058 SUSE Bug 990058 https://bugzilla.suse.com/991651 SUSE Bug 991651