Security update for kdump SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2016:2605-1 Final 1 1 2016-10-24T08:58:50Z current 2016-10-24T08:58:50Z 2016-10-24T08:58:50Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for kdump This update for kdump provides several fixes and enhancements: - Refresh kdumprd if /etc/hosts or /etc/nsswitch.conf is changed. (bsc#943214) - Add a separate systemd service to rebuild kdumprd at boot. (bsc#943214) - Improve network setup in the kdump environment by reading configuration from wicked by default (system configuration files are used as a fallback). (bsc#980328) - Use the last mount entry in kdump_get_mountpoints(). (bsc#951844) - Remove 'notsc' from the kdump kernel command line. (bsc#973213) - Handle dump files with many program headers. (bsc#932339, bsc#970708) - Fall back to stat() if file type is DT_UNKNOWN. (bsc#964206) - Remove vm. sysctls from kdump initrd. (bsc#927451, bsc#987862) - Use the exit code of kexec, not that of 'local'. (bsc#984799) - Convert sysroot to a bind mount in kdump initrd. (bsc#976864) - Distinguish between Xenlinux (aka Xenified or SUSE) and pvops Xen kernels, as the latter can run on bare metal. (bsc#974270) - CVE-2016-5759: Use full path to dracut as argument to bash. (bsc#989972, bsc#990200) This update was imported from the SUSE:SLE-12-SP1:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-updates/2016-10/msg00083.html E-Mail link for openSUSE-SU-2016:2605-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.1 kdump-0.8.15-27.1 kdump-0.8.15-27.1 as a component of openSUSE Leap 42.1 The mkdumprd script called "dracut" in the current working directory "." allows local users to trick the administrator into executing code as root. CVE-2016-5759 openSUSE Leap 42.1:kdump-0.8.15-27.1 moderate 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C Please Install the update. https://lists.opensuse.org/opensuse-updates/2016-10/msg00083.html https://www.suse.com/security/cve/CVE-2016-5759.html CVE-2016-5759 https://bugzilla.suse.com/990200 SUSE Bug 990200