Security update for the Linux Kernel SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2016:1985-1 Final 1 1 2016-08-08T14:55:45Z current 2016-08-08T14:55:45Z 2016-08-08T14:55:45Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for the Linux Kernel The SUSE Linux Enterprise 11 SP4 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2016-5829: Multiple heap-based buffer overflows in the hiddev_ioctl_usage function in drivers/hid/usbhid/hiddev.c in the Linux kernel allowed local users to cause a denial of service or possibly have unspecified other impact via a crafted (1) HIDIOCGUSAGES or (2) HIDIOCSUSAGES ioctl call (bnc#986572). - CVE-2016-4997: The compat IPT_SO_SET_REPLACE setsockopt implementation in the netfilter subsystem in the Linux kernel allowed local users to gain privileges or cause a denial of service (memory corruption) by leveraging in-container root access to provide a crafted offset value that triggers an unintended decrement (bnc#986362). - CVE-2016-4470: The key_reject_and_link function in security/keys/key.c in the Linux kernel did not ensure that a certain data structure is initialized, which allowed local users to cause a denial of service (system crash) via vectors involving a crafted keyctl request2 command (bnc#984755). - CVE-2016-5244: The rds_inc_info_copy function in net/rds/recv.c in the Linux kernel did not initialize a certain structure member, which allowed remote attackers to obtain sensitive information from kernel stack memory by reading an RDS message (bnc#983213). - CVE-2016-1583: The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel allowed local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling (bnc#983143). - CVE-2016-4913: The get_rock_ridge_filename function in fs/isofs/rock.c in the Linux kernel mishandled NM (aka alternate name) entries containing \0 characters, which allowed local users to obtain sensitive information from kernel memory or possibly have unspecified other impact via a crafted isofs filesystem (bnc#980725). - CVE-2016-4580: The x25_negotiate_facilities function in net/x25/x25_facilities.c in the Linux kernel did not properly initialize a certain data structure, which allowed attackers to obtain sensitive information from kernel stack memory via an X.25 Call Request (bnc#981267). - CVE-2016-4805: Use-after-free vulnerability in drivers/net/ppp/ppp_generic.c in the Linux kernel allowed local users to cause a denial of service (memory corruption and system crash, or spinlock) or possibly have unspecified other impact by removing a network namespace, related to the ppp_register_net_channel and ppp_unregister_channel functions (bnc#980371). - CVE-2016-0758: Integer overflow in lib/asn1_decoder.c in the Linux kernel allowed local users to gain privileges via crafted ASN.1 data (bnc#979867). - CVE-2015-7833: The usbvision driver in the Linux kernel allowed physically proximate attackers to cause a denial of service (panic) via a nonzero bInterfaceNumber value in a USB device descriptor (bnc#950998). - CVE-2016-3707: The icmp_check_sysrq function in net/ipv4/icmp.c in the kernel.org projects/rt patches for the Linux kernel, allowed remote attackers to execute SysRq commands via crafted ICMP Echo Request packets, as demonstrated by a brute-force attack to discover a cookie, or an attack that occurs after reading the local icmp_echo_sysrq file (bnc#980246). - CVE-2016-2187: The gtco_probe function in drivers/input/tablet/gtco.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device descriptor (bnc#971944). - CVE-2016-4482: The proc_connectinfo function in drivers/usb/core/devio.c in the Linux kernel did not initialize a certain data structure, which allowed local users to obtain sensitive information from kernel stack memory via a crafted USBDEVFS_CONNECTINFO ioctl call (bnc#978401). - CVE-2016-2053: The asn1_ber_decoder function in lib/asn1_decoder.c in the Linux kernel allowed attackers to cause a denial of service (panic) via an ASN.1 BER file that lacks a public key, leading to mishandling by the public_key_verify_signature function in crypto/asymmetric_keys/public_key.c (bnc#963762). - CVE-2016-4565: The InfiniBand (aka IB) stack in the Linux kernel incorrectly relied on the write system call, which allowed local users to cause a denial of service (kernel memory write operation) or possibly have unspecified other impact via a uAPI interface (bnc#979548). - CVE-2016-4485: The llc_cmsg_rcv function in net/llc/af_llc.c in the Linux kernel did not initialize a certain data structure, which allowed attackers to obtain sensitive information from kernel stack memory by reading a message (bnc#978821). - CVE-2016-4578: sound/core/timer.c in the Linux kernel did not initialize certain r1 data structures, which allowed local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface, related to the (1) snd_timer_user_ccallback and (2) snd_timer_user_tinterrupt functions (bnc#979879). - CVE-2016-4569: The snd_timer_user_params function in sound/core/timer.c in the Linux kernel did not initialize a certain data structure, which allowed local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface (bnc#979213). - CVE-2016-4486: The rtnl_fill_link_ifmap function in net/core/rtnetlink.c in the Linux kernel did not initialize a certain data structure, which allowed local users to obtain sensitive information from kernel stack memory by reading a Netlink message (bnc#978822). - CVE-2016-3134: The netfilter subsystem in the Linux kernel did not validate certain offset fields, which allowed local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE setsockopt call (bnc#971126). The following non-security bugs were fixed: - ALSA: hrtimer: Handle start/stop more properly (bsc#973378). - ALSA: oxygen: add Xonar DGX support (bsc#982691). - Assign correct ->can_queue value in hv_storvsc (bnc#969391) - Delete patches.drivers/nvme-0165-Split-header-file-into-user-visible-and-kernel-.patch. SLE11-SP4 does not have uapi headers so move everything back to the original header (bnc#981231) - Driver: Vmxnet3: set CHECKSUM_UNNECESSARY for IPv6 packets (bsc#976739). - Fix cifs_uniqueid_to_ino_t() function for s390x (bsc#944309) - KVM: x86: fix maintenance of guest/host xcr0 state (bsc#961518). - MM: increase safety margin provided by PF_LESS_THROTTLE (bsc#956491). - NFS: Do not attempt to decode missing directory entries (bsc#980931). - NFS: avoid deadlocks with loop-back mounted NFS filesystems (bsc#956491). - NFS: avoid waiting at all in nfs_release_page when congested (bsc#956491). - NFS: fix memory corruption rooted in get_ih_name pointer math (bsc#984107). - NFS: reduce access cache shrinker locking (bnc#866130). - NFSv4: Ensure that we do not drop a state owner more than once (bsc#979595). - NFSv4: OPEN must handle the NFS4ERR_IO return code correctly (bsc#979595). - NVMe: Unify controller probe and resume (bsc#979347). - RDMA/cxgb4: Configure 0B MRs to match HW implementation (bsc#909589). - RDMA/cxgb4: Do not hang threads forever waiting on WR replies (bsc#909589). - RDMA/cxgb4: Fix locking issue in process_mpa_request (bsc#909589). - RDMA/cxgb4: Handle NET_XMIT return codes (bsc#909589). - RDMA/cxgb4: Increase epd buff size for debug interface (bsc#909589). - RDMA/cxgb4: Limit MRs to less than 8GB for T4/T5 devices (bsc#909589). - RDMA/cxgb4: Serialize CQ event upcalls with CQ destruction (bsc#909589). - RDMA/cxgb4: Wake up waiters after flushing the qp (bsc#909589). - SCSI: Increase REPORT_LUNS timeout (bsc#971989). - Update patches.drivers/nvme-0265-fix-max_segments-integer-truncation.patch (bsc#979419). Fix reference. - Update patches.fixes/bnx2x-Alloc-4k-fragment-for-each-rx-ring-buffer-elem.patch (bsc#953369 bsc#975358). - bridge: superfluous skb->nfct check in br_nf_dev_queue_xmit (bsc#982544). - cgroups: do not attach task to subsystem if migration failed (bnc#979274). - cgroups: more safe tasklist locking in cgroup_attach_proc (bnc#979274). - cpuset: Fix potential deadlock w/ set_mems_allowed (bsc#960857, bsc#974646). - dasd: fix hanging system after LCU changes (bnc#968500, LTC#136671). - enic: set netdev->vlan_features (bsc#966245). - fcoe: fix reset of fip selection time (bsc#974787). - hid-elo: kill not flush the work (bnc#982532). - ipc,sem: fix use after free on IPC_RMID after a task using same semaphore set exits (bsc#967914). - ipv4/fib: do not warn when primary address is missing if in_dev is dead (bsc#971360). - ipv4: fix ineffective source address selection (bsc#980788). - ipvs: count pre-established TCP states as active (bsc#970114). - iucv: call skb_linearize() when needed (bnc#979915, LTC#141240). - kabi: prevent spurious modversion changes after bsc#982544 fix (bsc#982544). - mm/hugetlb.c: correct missing private flag clearing (VM Functionality, bnc#971446). - mm/hugetlb: fix backport of upstream commit 07443a85ad (VM Functionality, bnc#971446). - mm/swap.c: flush lru pvecs on compound page arrival (bnc#983721). - mm/vmscan.c: avoid throttling reclaim for loop-back nfsd threads (bsc#956491). - mm: Fix DIF failures on ext3 filesystems (bsc#971030). - net/qlge: Avoids recursive EEH error (bsc#954847). - netfilter: bridge: Use __in6_dev_get rather than in6_dev_get in br_validate_ipv6 (bsc#982544). - netfilter: bridge: do not leak skb in error paths (bsc#982544). - netfilter: bridge: forward IPv6 fragmented packets (bsc#982544). - nvme: fix max_segments integer truncation (bsc#676471). - ocfs2: do not set fs read-only if rec[0] is empty while committing truncate (bnc#971947). - ocfs2: extend enough credits for freeing one truncate record while replaying truncate records (bnc#971947). - ocfs2: extend transaction for ocfs2_remove_rightmost_path() and ocfs2_update_edge_lengths() before to avoid inconsistency between inode and et (bnc#971947). - qeth: delete napi struct when removing a qeth device (bnc#979915, LTC#143590). - rpm/modprobe-xen.conf: Revert comment change to allow parallel install (bsc#957986). This reverts commit 855c7ce885fd412ce2a25ccc12a46e565c83f235. - s390/dasd: prevent incorrect length error under z/VM after PAV changes (bnc#968500, LTC#136670). - s390/mm: fix asce_bits handling with dynamic pagetable levels (bnc#979915, LTC#141456). - s390/pci: add extra padding to function measurement block (bnc#968500, LTC#139445). - s390/pci: enforce fmb page boundary rule (bnc#968500, LTC#139445). - s390/pci: extract software counters from fmb (bnc#968500, LTC#139445). - s390/pci: fix use after free in dma_init (bnc#979915, LTC#141626). - s390/pci: remove pdev pointer from arch data (bnc#968500, LTC#139444). - s390/pci_dma: fix DMA table corruption with > 4 TB main memory (bnc#968500, LTC#139401). - s390/pci_dma: handle dma table failures (bnc#968500, LTC#139442). - s390/pci_dma: improve debugging of errors during dma map (bnc#968500, LTC#139442). - s390/pci_dma: unify label of invalid translation table entries (bnc#968500, LTC#139442). - s390/spinlock: avoid yield to non existent cpu (bnc#968500, LTC#141106). - s390: fix test_fp_ctl inline assembly contraints (bnc#979915, LTC#143138). - sched/cputime: Fix clock_nanosleep()/clock_gettime() inconsistency (bnc#988498). - sched/cputime: Fix cpu_timer_sample_group() double accounting (bnc#988498). - sched: Provide update_curr callbacks for stop/idle scheduling classes (bnc#988498). - veth: do not modify ip_summed (bsc#969149). - vgaarb: Add more context to error messages (bsc#976868). - virtio_scsi: Implement eh_timed_out callback (bsc#936530). - x86, kvm: fix kvm's usage of kernel_fpu_begin/end() (bsc#961518). - x86, kvm: use kernel_fpu_begin/end() in kvm_load/put_guest_fpu() (bsc#961518). - x86/mm/pat, /dev/mem: Remove superfluous error message (bsc#974620). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). slertesp4-linux-kernel-12681 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ Link for SUSE-SU-2016:1985-1 https://lists.suse.com/pipermail/sle-security-updates/2016-August/002180.html E-Mail link for SUSE-SU-2016:1985-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/676471 SUSE Bug 676471 https://bugzilla.suse.com/866130 SUSE Bug 866130 https://bugzilla.suse.com/909589 SUSE Bug 909589 https://bugzilla.suse.com/936530 SUSE Bug 936530 https://bugzilla.suse.com/944309 SUSE Bug 944309 https://bugzilla.suse.com/950998 SUSE Bug 950998 https://bugzilla.suse.com/953369 SUSE Bug 953369 https://bugzilla.suse.com/954847 SUSE Bug 954847 https://bugzilla.suse.com/956491 SUSE Bug 956491 https://bugzilla.suse.com/957986 SUSE Bug 957986 https://bugzilla.suse.com/960857 SUSE Bug 960857 https://bugzilla.suse.com/961518 SUSE Bug 961518 https://bugzilla.suse.com/963762 SUSE Bug 963762 https://bugzilla.suse.com/966245 SUSE Bug 966245 https://bugzilla.suse.com/967914 SUSE Bug 967914 https://bugzilla.suse.com/968500 SUSE Bug 968500 https://bugzilla.suse.com/969149 SUSE Bug 969149 https://bugzilla.suse.com/969391 SUSE Bug 969391 https://bugzilla.suse.com/970114 SUSE Bug 970114 https://bugzilla.suse.com/971030 SUSE Bug 971030 https://bugzilla.suse.com/971126 SUSE Bug 971126 https://bugzilla.suse.com/971360 SUSE Bug 971360 https://bugzilla.suse.com/971446 SUSE Bug 971446 https://bugzilla.suse.com/971944 SUSE Bug 971944 https://bugzilla.suse.com/971947 SUSE Bug 971947 https://bugzilla.suse.com/971989 SUSE Bug 971989 https://bugzilla.suse.com/973378 SUSE Bug 973378 https://bugzilla.suse.com/974620 SUSE Bug 974620 https://bugzilla.suse.com/974646 SUSE Bug 974646 https://bugzilla.suse.com/974787 SUSE Bug 974787 https://bugzilla.suse.com/975358 SUSE Bug 975358 https://bugzilla.suse.com/976739 SUSE Bug 976739 https://bugzilla.suse.com/976868 SUSE Bug 976868 https://bugzilla.suse.com/978401 SUSE Bug 978401 https://bugzilla.suse.com/978821 SUSE Bug 978821 https://bugzilla.suse.com/978822 SUSE Bug 978822 https://bugzilla.suse.com/979213 SUSE Bug 979213 https://bugzilla.suse.com/979274 SUSE Bug 979274 https://bugzilla.suse.com/979347 SUSE Bug 979347 https://bugzilla.suse.com/979419 SUSE Bug 979419 https://bugzilla.suse.com/979548 SUSE Bug 979548 https://bugzilla.suse.com/979595 SUSE Bug 979595 https://bugzilla.suse.com/979867 SUSE Bug 979867 https://bugzilla.suse.com/979879 SUSE Bug 979879 https://bugzilla.suse.com/979915 SUSE Bug 979915 https://bugzilla.suse.com/980246 SUSE Bug 980246 https://bugzilla.suse.com/980371 SUSE Bug 980371 https://bugzilla.suse.com/980725 SUSE Bug 980725 https://bugzilla.suse.com/980788 SUSE Bug 980788 https://bugzilla.suse.com/980931 SUSE Bug 980931 https://bugzilla.suse.com/981231 SUSE Bug 981231 https://bugzilla.suse.com/981267 SUSE Bug 981267 https://bugzilla.suse.com/982532 SUSE Bug 982532 https://bugzilla.suse.com/982544 SUSE Bug 982544 https://bugzilla.suse.com/982691 SUSE Bug 982691 https://bugzilla.suse.com/983143 SUSE Bug 983143 https://bugzilla.suse.com/983213 SUSE Bug 983213 https://bugzilla.suse.com/983721 SUSE Bug 983721 https://bugzilla.suse.com/984107 SUSE Bug 984107 https://bugzilla.suse.com/984755 SUSE Bug 984755 https://bugzilla.suse.com/986362 SUSE Bug 986362 https://bugzilla.suse.com/986572 SUSE Bug 986572 https://bugzilla.suse.com/988498 SUSE Bug 988498 https://www.suse.com/security/cve/CVE-2015-7833/ SUSE CVE CVE-2015-7833 page https://www.suse.com/security/cve/CVE-2016-0758/ SUSE CVE CVE-2016-0758 page https://www.suse.com/security/cve/CVE-2016-1583/ SUSE CVE CVE-2016-1583 page https://www.suse.com/security/cve/CVE-2016-2053/ SUSE CVE CVE-2016-2053 page https://www.suse.com/security/cve/CVE-2016-2187/ SUSE CVE CVE-2016-2187 page https://www.suse.com/security/cve/CVE-2016-3134/ SUSE CVE CVE-2016-3134 page https://www.suse.com/security/cve/CVE-2016-3707/ SUSE CVE CVE-2016-3707 page https://www.suse.com/security/cve/CVE-2016-4470/ SUSE CVE CVE-2016-4470 page https://www.suse.com/security/cve/CVE-2016-4482/ SUSE CVE CVE-2016-4482 page https://www.suse.com/security/cve/CVE-2016-4485/ SUSE CVE CVE-2016-4485 page https://www.suse.com/security/cve/CVE-2016-4486/ SUSE CVE CVE-2016-4486 page https://www.suse.com/security/cve/CVE-2016-4565/ SUSE CVE CVE-2016-4565 page https://www.suse.com/security/cve/CVE-2016-4569/ SUSE CVE CVE-2016-4569 page https://www.suse.com/security/cve/CVE-2016-4578/ SUSE CVE CVE-2016-4578 page https://www.suse.com/security/cve/CVE-2016-4580/ SUSE CVE CVE-2016-4580 page https://www.suse.com/security/cve/CVE-2016-4805/ SUSE CVE CVE-2016-4805 page https://www.suse.com/security/cve/CVE-2016-4913/ SUSE CVE CVE-2016-4913 page https://www.suse.com/security/cve/CVE-2016-4997/ SUSE CVE CVE-2016-4997 page https://www.suse.com/security/cve/CVE-2016-5244/ SUSE CVE CVE-2016-5244 page https://www.suse.com/security/cve/CVE-2016-5829/ SUSE CVE CVE-2016-5829 page SUSE Linux Enterprise Real Time 11 SP4 kernel-rt-3.0.101.rt130-57.1 kernel-rt-base-3.0.101.rt130-57.1 kernel-rt-devel-3.0.101.rt130-57.1 kernel-rt_trace-3.0.101.rt130-57.1 kernel-rt_trace-base-3.0.101.rt130-57.1 kernel-rt_trace-devel-3.0.101.rt130-57.1 kernel-source-rt-3.0.101.rt130-57.1 kernel-syms-rt-3.0.101.rt130-57.1 kernel-rt-3.0.101.rt130-57.1 as a component of SUSE Linux Enterprise Real Time 11 SP4 kernel-rt-base-3.0.101.rt130-57.1 as a component of SUSE Linux Enterprise Real Time 11 SP4 kernel-rt-devel-3.0.101.rt130-57.1 as a component of SUSE Linux Enterprise Real Time 11 SP4 kernel-rt_trace-3.0.101.rt130-57.1 as a component of SUSE Linux Enterprise Real Time 11 SP4 kernel-rt_trace-base-3.0.101.rt130-57.1 as a component of SUSE Linux Enterprise Real Time 11 SP4 kernel-rt_trace-devel-3.0.101.rt130-57.1 as a component of SUSE Linux Enterprise Real Time 11 SP4 kernel-source-rt-3.0.101.rt130-57.1 as a component of SUSE Linux Enterprise Real Time 11 SP4 kernel-syms-rt-3.0.101.rt130-57.1 as a component of SUSE Linux Enterprise Real Time 11 SP4 The usbvision driver in the Linux kernel package 3.10.0-123.20.1.el7 through 3.10.0-229.14.1.el7 in Red Hat Enterprise Linux (RHEL) 7.1 allows physically proximate attackers to cause a denial of service (panic) via a nonzero bInterfaceNumber value in a USB device descriptor. CVE-2015-7833 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-source-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-syms-rt-3.0.101.rt130-57.1 moderate 4 AV:L/AC:H/Au:N/C:N/I:N/A:C 4.9 AV:L/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ https://www.suse.com/security/cve/CVE-2015-7833.html CVE-2015-7833 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/950998 SUSE Bug 950998 Integer overflow in lib/asn1_decoder.c in the Linux kernel before 4.6 allows local users to gain privileges via crafted ASN.1 data. CVE-2016-0758 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-source-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-syms-rt-3.0.101.rt130-57.1 important 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ https://www.suse.com/security/cve/CVE-2016-0758.html CVE-2016-0758 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/1072204 SUSE Bug 1072204 https://bugzilla.suse.com/1115893 SUSE Bug 1115893 https://bugzilla.suse.com/979867 SUSE Bug 979867 https://bugzilla.suse.com/980856 SUSE Bug 980856 The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling. CVE-2016-1583 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-source-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-syms-rt-3.0.101.rt130-57.1 important 6.8 AV:L/AC:L/Au:S/C:C/I:C/A:C 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ https://www.suse.com/security/cve/CVE-2016-1583.html CVE-2016-1583 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/1052256 SUSE Bug 1052256 https://bugzilla.suse.com/983143 SUSE Bug 983143 https://bugzilla.suse.com/983144 SUSE Bug 983144 The asn1_ber_decoder function in lib/asn1_decoder.c in the Linux kernel before 4.3 allows attackers to cause a denial of service (panic) via an ASN.1 BER file that lacks a public key, leading to mishandling by the public_key_verify_signature function in crypto/asymmetric_keys/public_key.c. CVE-2016-2053 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-source-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-syms-rt-3.0.101.rt130-57.1 moderate 4.6 AV:L/AC:L/Au:S/C:N/I:N/A:C 4.7 AV:L/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ https://www.suse.com/security/cve/CVE-2016-2053.html CVE-2016-2053 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/963762 SUSE Bug 963762 https://bugzilla.suse.com/979074 SUSE Bug 979074 The gtco_probe function in drivers/input/tablet/gtco.c in the Linux kernel through 4.5.2 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device descriptor. CVE-2016-2187 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-source-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-syms-rt-3.0.101.rt130-57.1 moderate 4.9 AV:L/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ https://www.suse.com/security/cve/CVE-2016-2187.html CVE-2016-2187 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/971919 SUSE Bug 971919 https://bugzilla.suse.com/971944 SUSE Bug 971944 The netfilter subsystem in the Linux kernel through 4.5.2 does not validate certain offset fields, which allows local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE setsockopt call. CVE-2016-3134 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-source-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-syms-rt-3.0.101.rt130-57.1 moderate 6.2 AV:L/AC:H/Au:N/C:C/I:C/A:C 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ https://www.suse.com/security/cve/CVE-2016-3134.html CVE-2016-3134 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/1052256 SUSE Bug 1052256 https://bugzilla.suse.com/1115893 SUSE Bug 1115893 https://bugzilla.suse.com/971126 SUSE Bug 971126 https://bugzilla.suse.com/971793 SUSE Bug 971793 https://bugzilla.suse.com/986362 SUSE Bug 986362 https://bugzilla.suse.com/986365 SUSE Bug 986365 https://bugzilla.suse.com/986377 SUSE Bug 986377 The icmp_check_sysrq function in net/ipv4/icmp.c in the kernel.org projects/rt patches for the Linux kernel, as used in the kernel-rt package before 3.10.0-327.22.1 in Red Hat Enterprise Linux for Real Time 7 and other products, allows remote attackers to execute SysRq commands via crafted ICMP Echo Request packets, as demonstrated by a brute-force attack to discover a cookie, or an attack that occurs after reading the local icmp_echo_sysrq file. CVE-2016-3707 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-source-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-syms-rt-3.0.101.rt130-57.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ https://www.suse.com/security/cve/CVE-2016-3707.html CVE-2016-3707 https://bugzilla.suse.com/980246 SUSE Bug 980246 The key_reject_and_link function in security/keys/key.c in the Linux kernel through 4.6.3 does not ensure that a certain data structure is initialized, which allows local users to cause a denial of service (system crash) via vectors involving a crafted keyctl request2 command. CVE-2016-4470 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-source-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-syms-rt-3.0.101.rt130-57.1 moderate 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C 4.9 AV:L/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ https://www.suse.com/security/cve/CVE-2016-4470.html CVE-2016-4470 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/984755 SUSE Bug 984755 https://bugzilla.suse.com/984764 SUSE Bug 984764 https://bugzilla.suse.com/991651 SUSE Bug 991651 The proc_connectinfo function in drivers/usb/core/devio.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted USBDEVFS_CONNECTINFO ioctl call. CVE-2016-4482 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-source-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-syms-rt-3.0.101.rt130-57.1 low 1.9 AV:L/AC:M/Au:N/C:P/I:N/A:N 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ https://www.suse.com/security/cve/CVE-2016-4482.html CVE-2016-4482 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/978401 SUSE Bug 978401 https://bugzilla.suse.com/978445 SUSE Bug 978445 The llc_cmsg_rcv function in net/llc/af_llc.c in the Linux kernel before 4.5.5 does not initialize a certain data structure, which allows attackers to obtain sensitive information from kernel stack memory by reading a message. CVE-2016-4485 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-source-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-syms-rt-3.0.101.rt130-57.1 moderate 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N 5 AV:N/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ https://www.suse.com/security/cve/CVE-2016-4485.html CVE-2016-4485 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/978821 SUSE Bug 978821 The rtnl_fill_link_ifmap function in net/core/rtnetlink.c in the Linux kernel before 4.5.5 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory by reading a Netlink message. CVE-2016-4486 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-source-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-syms-rt-3.0.101.rt130-57.1 low 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ https://www.suse.com/security/cve/CVE-2016-4486.html CVE-2016-4486 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/978822 SUSE Bug 978822 The InfiniBand (aka IB) stack in the Linux kernel before 4.5.3 incorrectly relies on the write system call, which allows local users to cause a denial of service (kernel memory write operation) or possibly have unspecified other impact via a uAPI interface. CVE-2016-4565 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-source-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-syms-rt-3.0.101.rt130-57.1 moderate 6.6 AV:L/AC:M/Au:S/C:C/I:C/A:C 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ https://www.suse.com/security/cve/CVE-2016-4565.html CVE-2016-4565 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/979548 SUSE Bug 979548 https://bugzilla.suse.com/980363 SUSE Bug 980363 https://bugzilla.suse.com/980883 SUSE Bug 980883 The snd_timer_user_params function in sound/core/timer.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface. CVE-2016-4569 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-source-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-syms-rt-3.0.101.rt130-57.1 low 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ https://www.suse.com/security/cve/CVE-2016-4569.html CVE-2016-4569 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/979213 SUSE Bug 979213 https://bugzilla.suse.com/979879 SUSE Bug 979879 sound/core/timer.c in the Linux kernel through 4.6 does not initialize certain r1 data structures, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface, related to the (1) snd_timer_user_ccallback and (2) snd_timer_user_tinterrupt functions. CVE-2016-4578 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-source-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-syms-rt-3.0.101.rt130-57.1 low 1.9 AV:L/AC:M/Au:N/C:N/I:P/A:N 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ https://www.suse.com/security/cve/CVE-2016-4578.html CVE-2016-4578 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/1052256 SUSE Bug 1052256 https://bugzilla.suse.com/979879 SUSE Bug 979879 The x25_negotiate_facilities function in net/x25/x25_facilities.c in the Linux kernel before 4.5.5 does not properly initialize a certain data structure, which allows attackers to obtain sensitive information from kernel stack memory via an X.25 Call Request. CVE-2016-4580 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-source-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-syms-rt-3.0.101.rt130-57.1 low 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N 5 AV:N/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ https://www.suse.com/security/cve/CVE-2016-4580.html CVE-2016-4580 https://bugzilla.suse.com/870618 SUSE Bug 870618 https://bugzilla.suse.com/981267 SUSE Bug 981267 https://bugzilla.suse.com/985132 SUSE Bug 985132 Use-after-free vulnerability in drivers/net/ppp/ppp_generic.c in the Linux kernel before 4.5.2 allows local users to cause a denial of service (memory corruption and system crash, or spinlock) or possibly have unspecified other impact by removing a network namespace, related to the ppp_register_net_channel and ppp_unregister_channel functions. CVE-2016-4805 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-source-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-syms-rt-3.0.101.rt130-57.1 low 3.3 AV:L/AC:M/Au:N/C:N/I:P/A:P 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ https://www.suse.com/security/cve/CVE-2016-4805.html CVE-2016-4805 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/1115893 SUSE Bug 1115893 https://bugzilla.suse.com/980371 SUSE Bug 980371 The get_rock_ridge_filename function in fs/isofs/rock.c in the Linux kernel before 4.5.5 mishandles NM (aka alternate name) entries containing \0 characters, which allows local users to obtain sensitive information from kernel memory or possibly have unspecified other impact via a crafted isofs filesystem. CVE-2016-4913 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-source-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-syms-rt-3.0.101.rt130-57.1 moderate 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ https://www.suse.com/security/cve/CVE-2016-4913.html CVE-2016-4913 https://bugzilla.suse.com/1115893 SUSE Bug 1115893 https://bugzilla.suse.com/870618 SUSE Bug 870618 https://bugzilla.suse.com/980725 SUSE Bug 980725 https://bugzilla.suse.com/985132 SUSE Bug 985132 The compat IPT_SO_SET_REPLACE and IP6T_SO_SET_REPLACE setsockopt implementations in the netfilter subsystem in the Linux kernel before 4.6.3 allow local users to gain privileges or cause a denial of service (memory corruption) by leveraging in-container root access to provide a crafted offset value that triggers an unintended decrement. CVE-2016-4997 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-source-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-syms-rt-3.0.101.rt130-57.1 important 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ https://www.suse.com/security/cve/CVE-2016-4997.html CVE-2016-4997 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/986362 SUSE Bug 986362 https://bugzilla.suse.com/986365 SUSE Bug 986365 https://bugzilla.suse.com/986377 SUSE Bug 986377 https://bugzilla.suse.com/991651 SUSE Bug 991651 The rds_inc_info_copy function in net/rds/recv.c in the Linux kernel through 4.6.3 does not initialize a certain structure member, which allows remote attackers to obtain sensitive information from kernel stack memory by reading an RDS message. CVE-2016-5244 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-source-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-syms-rt-3.0.101.rt130-57.1 moderate 1.5 AV:L/AC:M/Au:S/C:P/I:N/A:N 5 AV:N/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ https://www.suse.com/security/cve/CVE-2016-5244.html CVE-2016-5244 https://bugzilla.suse.com/983213 SUSE Bug 983213 https://bugzilla.suse.com/986225 SUSE Bug 986225 Multiple heap-based buffer overflows in the hiddev_ioctl_usage function in drivers/hid/usbhid/hiddev.c in the Linux kernel through 4.6.3 allow local users to cause a denial of service or possibly have unspecified other impact via a crafted (1) HIDIOCGUSAGES or (2) HIDIOCSUSAGES ioctl call. CVE-2016-5829 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-base-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-rt_trace-devel-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-source-rt-3.0.101.rt130-57.1 SUSE Linux Enterprise Real Time 11 SP4:kernel-syms-rt-3.0.101.rt130-57.1 moderate 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20161985-1/ https://www.suse.com/security/cve/CVE-2016-5829.html CVE-2016-5829 https://bugzilla.suse.com/1053919 SUSE Bug 1053919 https://bugzilla.suse.com/1054127 SUSE Bug 1054127 https://bugzilla.suse.com/1115893 SUSE Bug 1115893 https://bugzilla.suse.com/986572 SUSE Bug 986572 https://bugzilla.suse.com/986573 SUSE Bug 986573 https://bugzilla.suse.com/991651 SUSE Bug 991651