kernel-debug-4.8.13-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10128 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z kernel-debug-4.8.13-1.1 on GA media These are all security issues fixed in the kernel-debug-4.8.13-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10128 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:10128 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2009-3939/ SUSE CVE CVE-2009-3939 page https://www.suse.com/security/cve/CVE-2009-4026/ SUSE CVE CVE-2009-4026 page https://www.suse.com/security/cve/CVE-2009-4027/ SUSE CVE CVE-2009-4027 page https://www.suse.com/security/cve/CVE-2009-4131/ SUSE CVE CVE-2009-4131 page https://www.suse.com/security/cve/CVE-2009-4138/ SUSE CVE CVE-2009-4138 page https://www.suse.com/security/cve/CVE-2009-4536/ SUSE CVE CVE-2009-4536 page https://www.suse.com/security/cve/CVE-2009-4538/ SUSE CVE CVE-2009-4538 page https://www.suse.com/security/cve/CVE-2010-1146/ SUSE CVE CVE-2010-1146 page https://www.suse.com/security/cve/CVE-2010-1436/ SUSE CVE CVE-2010-1436 page https://www.suse.com/security/cve/CVE-2010-1641/ SUSE CVE CVE-2010-1641 page https://www.suse.com/security/cve/CVE-2010-2066/ SUSE CVE CVE-2010-2066 page https://www.suse.com/security/cve/CVE-2010-2942/ SUSE CVE CVE-2010-2942 page https://www.suse.com/security/cve/CVE-2010-2954/ SUSE CVE CVE-2010-2954 page https://www.suse.com/security/cve/CVE-2010-2955/ SUSE CVE CVE-2010-2955 page https://www.suse.com/security/cve/CVE-2010-3081/ SUSE CVE CVE-2010-3081 page https://www.suse.com/security/cve/CVE-2010-3296/ SUSE CVE CVE-2010-3296 page https://www.suse.com/security/cve/CVE-2010-3297/ SUSE CVE CVE-2010-3297 page https://www.suse.com/security/cve/CVE-2010-3298/ SUSE CVE CVE-2010-3298 page https://www.suse.com/security/cve/CVE-2010-3301/ SUSE CVE CVE-2010-3301 page https://www.suse.com/security/cve/CVE-2010-3310/ SUSE CVE CVE-2010-3310 page https://www.suse.com/security/cve/CVE-2011-0711/ SUSE CVE CVE-2011-0711 page https://www.suse.com/security/cve/CVE-2011-0712/ SUSE CVE CVE-2011-0712 page https://www.suse.com/security/cve/CVE-2011-1020/ SUSE CVE CVE-2011-1020 page https://www.suse.com/security/cve/CVE-2011-1180/ SUSE CVE CVE-2011-1180 page https://www.suse.com/security/cve/CVE-2011-1577/ SUSE CVE CVE-2011-1577 page https://www.suse.com/security/cve/CVE-2011-1581/ SUSE CVE CVE-2011-1581 page https://www.suse.com/security/cve/CVE-2011-2203/ SUSE CVE CVE-2011-2203 page https://www.suse.com/security/cve/CVE-2011-4604/ SUSE CVE CVE-2011-4604 page https://www.suse.com/security/cve/CVE-2012-0056/ SUSE CVE CVE-2012-0056 page https://www.suse.com/security/cve/CVE-2012-3412/ SUSE CVE CVE-2012-3412 page https://www.suse.com/security/cve/CVE-2012-3520/ SUSE CVE CVE-2012-3520 page https://www.suse.com/security/cve/CVE-2013-0160/ SUSE CVE CVE-2013-0160 page https://www.suse.com/security/cve/CVE-2013-0231/ SUSE CVE CVE-2013-0231 page https://www.suse.com/security/cve/CVE-2013-0913/ SUSE CVE CVE-2013-0913 page https://www.suse.com/security/cve/CVE-2013-2850/ SUSE CVE CVE-2013-2850 page https://www.suse.com/security/cve/CVE-2014-0038/ SUSE CVE CVE-2014-0038 page https://www.suse.com/security/cve/CVE-2014-0196/ SUSE CVE CVE-2014-0196 page https://www.suse.com/security/cve/CVE-2014-0691/ SUSE CVE CVE-2014-0691 page https://www.suse.com/security/cve/CVE-2014-8133/ SUSE CVE CVE-2014-8133 page https://www.suse.com/security/cve/CVE-2015-1333/ SUSE CVE CVE-2015-1333 page https://www.suse.com/security/cve/CVE-2015-7550/ SUSE CVE CVE-2015-7550 page https://www.suse.com/security/cve/CVE-2015-7884/ SUSE CVE CVE-2015-7884 page https://www.suse.com/security/cve/CVE-2015-7885/ SUSE CVE CVE-2015-7885 page https://www.suse.com/security/cve/CVE-2015-8539/ SUSE CVE CVE-2015-8539 page https://www.suse.com/security/cve/CVE-2015-8660/ SUSE CVE CVE-2015-8660 page https://www.suse.com/security/cve/CVE-2016-0723/ SUSE CVE CVE-2016-0723 page https://www.suse.com/security/cve/CVE-2016-0728/ SUSE CVE CVE-2016-0728 page https://www.suse.com/security/cve/CVE-2016-1237/ SUSE CVE CVE-2016-1237 page https://www.suse.com/security/cve/CVE-2016-1583/ SUSE CVE CVE-2016-1583 page https://www.suse.com/security/cve/CVE-2016-2184/ SUSE CVE CVE-2016-2184 page https://www.suse.com/security/cve/CVE-2016-2185/ SUSE CVE CVE-2016-2185 page https://www.suse.com/security/cve/CVE-2016-2186/ SUSE CVE CVE-2016-2186 page https://www.suse.com/security/cve/CVE-2016-2384/ SUSE CVE CVE-2016-2384 page https://www.suse.com/security/cve/CVE-2016-3134/ SUSE CVE CVE-2016-3134 page https://www.suse.com/security/cve/CVE-2016-3135/ SUSE CVE CVE-2016-3135 page https://www.suse.com/security/cve/CVE-2016-3136/ SUSE CVE CVE-2016-3136 page https://www.suse.com/security/cve/CVE-2016-3140/ SUSE CVE CVE-2016-3140 page https://www.suse.com/security/cve/CVE-2016-3689/ SUSE CVE CVE-2016-3689 page https://www.suse.com/security/cve/CVE-2016-3713/ SUSE CVE CVE-2016-3713 page https://www.suse.com/security/cve/CVE-2016-4470/ SUSE CVE CVE-2016-4470 page https://www.suse.com/security/cve/CVE-2016-4485/ SUSE CVE CVE-2016-4485 page https://www.suse.com/security/cve/CVE-2016-4486/ SUSE CVE CVE-2016-4486 page https://www.suse.com/security/cve/CVE-2016-4557/ SUSE CVE CVE-2016-4557 page https://www.suse.com/security/cve/CVE-2016-4558/ SUSE CVE CVE-2016-4558 page https://www.suse.com/security/cve/CVE-2016-4569/ SUSE CVE CVE-2016-4569 page https://www.suse.com/security/cve/CVE-2016-4578/ SUSE CVE CVE-2016-4578 page https://www.suse.com/security/cve/CVE-2016-4951/ SUSE CVE CVE-2016-4951 page https://www.suse.com/security/cve/CVE-2016-4997/ SUSE CVE CVE-2016-4997 page https://www.suse.com/security/cve/CVE-2016-4998/ SUSE CVE CVE-2016-4998 page https://www.suse.com/security/cve/CVE-2016-5195/ SUSE CVE CVE-2016-5195 page https://www.suse.com/security/cve/CVE-2016-5244/ SUSE CVE CVE-2016-5244 page https://www.suse.com/security/cve/CVE-2016-5829/ SUSE CVE CVE-2016-5829 page https://www.suse.com/security/cve/CVE-2016-6187/ SUSE CVE CVE-2016-6187 page https://www.suse.com/security/cve/CVE-2016-6480/ SUSE CVE CVE-2016-6480 page https://www.suse.com/security/cve/CVE-2016-6516/ SUSE CVE CVE-2016-6516 page https://www.suse.com/security/cve/CVE-2016-6828/ SUSE CVE CVE-2016-6828 page https://www.suse.com/security/cve/CVE-2016-7039/ SUSE CVE CVE-2016-7039 page https://www.suse.com/security/cve/CVE-2016-7042/ SUSE CVE CVE-2016-7042 page https://www.suse.com/security/cve/CVE-2016-7425/ SUSE CVE CVE-2016-7425 page https://www.suse.com/security/cve/CVE-2016-7913/ SUSE CVE CVE-2016-7913 page https://www.suse.com/security/cve/CVE-2016-9555/ SUSE CVE CVE-2016-9555 page https://www.suse.com/security/cve/CVE-2016-9576/ SUSE CVE CVE-2016-9576 page openSUSE Tumbleweed kernel-debug-4.8.13-1.1 kernel-debug-base-4.8.13-1.1 kernel-debug-devel-4.8.13-1.1 kernel-default-4.8.13-1.1 kernel-default-base-4.8.13-1.1 kernel-default-devel-4.8.13-1.1 kernel-devel-4.8.13-1.1 kernel-docs-4.8.13-1.1 kernel-docs-html-4.8.13-1.1 kernel-docs-pdf-4.8.13-1.1 kernel-macros-4.8.13-1.1 kernel-obs-build-4.8.13-1.1 kernel-obs-qa-4.8.13-1.1 kernel-pae-4.8.13-1.1 kernel-pae-base-4.8.13-1.1 kernel-pae-devel-4.8.13-1.1 kernel-source-4.8.13-1.1 kernel-source-vanilla-4.8.13-1.1 kernel-syms-4.8.13-1.1 kernel-syzkaller-4.8.13-1.1 kernel-syzkaller-base-4.8.13-1.1 kernel-syzkaller-devel-4.8.13-1.1 kernel-vanilla-4.8.13-1.1 kernel-vanilla-base-4.8.13-1.1 kernel-vanilla-devel-4.8.13-1.1 kernel-debug-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-debug-base-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-debug-devel-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-default-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-default-base-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-default-devel-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-devel-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-docs-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-docs-html-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-docs-pdf-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-macros-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-obs-build-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-obs-qa-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-pae-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-pae-base-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-pae-devel-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-source-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-source-vanilla-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-syms-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-syzkaller-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-syzkaller-base-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-syzkaller-devel-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-vanilla-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-vanilla-base-4.8.13-1.1 as a component of openSUSE Tumbleweed kernel-vanilla-devel-4.8.13-1.1 as a component of openSUSE Tumbleweed The poll_mode_io file for the megaraid_sas driver in the Linux kernel 2.6.31.6 and earlier has world-writable permissions, which allows local users to change the I/O mode of the driver by modifying this file. CVE-2009-3939 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-3939.html CVE-2009-3939 https://bugzilla.suse.com/555173 SUSE Bug 555173 https://bugzilla.suse.com/557180 SUSE Bug 557180 The mac80211 subsystem in the Linux kernel before 2.6.32-rc8-next-20091201 allows remote attackers to cause a denial of service (panic) via a crafted Delete Block ACK (aka DELBA) packet, related to an erroneous "code shuffling patch." CVE-2009-4026 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-4026.html CVE-2009-4026 https://bugzilla.suse.com/558267 SUSE Bug 558267 Race condition in the mac80211 subsystem in the Linux kernel before 2.6.32-rc8-next-20091201 allows remote attackers to cause a denial of service (system crash) via a Delete Block ACK (aka DELBA) packet that triggers a certain state change in the absence of an aggregation session. CVE-2009-4027 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-4027.html CVE-2009-4027 https://bugzilla.suse.com/558267 SUSE Bug 558267 The EXT4_IOC_MOVE_EXT (aka move extents) ioctl implementation in the ext4 filesystem in the Linux kernel before 2.6.32-git6 allows local users to overwrite arbitrary files via a crafted request, related to insufficient checks for file permissions. CVE-2009-4131 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-4131.html CVE-2009-4131 https://bugzilla.suse.com/561018 SUSE Bug 561018 https://bugzilla.suse.com/564380 SUSE Bug 564380 drivers/firewire/ohci.c in the Linux kernel before 2.6.32-git9, when packet-per-buffer mode is used, allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unknown other impact via an unspecified ioctl associated with receiving an ISO packet that contains zero in the payload-length field. CVE-2009-4138 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-4138.html CVE-2009-4138 https://bugzilla.suse.com/564712 SUSE Bug 564712 drivers/net/e1000/e1000_main.c in the e1000 driver in the Linux kernel 2.6.32.3 and earlier handles Ethernet frames that exceed the MTU by processing certain trailing payload data as if it were a complete frame, which allows remote attackers to bypass packet filters via a large packet with a crafted payload. NOTE: this vulnerability exists because of an incorrect fix for CVE-2009-1385. CVE-2009-4536 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-4536.html CVE-2009-4536 https://bugzilla.suse.com/567376 SUSE Bug 567376 https://bugzilla.suse.com/583434 SUSE Bug 583434 drivers/net/e1000e/netdev.c in the e1000e driver in the Linux kernel 2.6.32.3 and earlier does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to have an unspecified impact via crafted packets, a related issue to CVE-2009-4537. CVE-2009-4538 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-4538.html CVE-2009-4538 https://bugzilla.suse.com/567376 SUSE Bug 567376 The Linux kernel 2.6.33.2 and earlier, when a ReiserFS filesystem exists, does not restrict read or write access to the .reiserfs_priv directory, which allows local users to gain privileges by modifying (1) extended attributes or (2) ACLs, as demonstrated by deleting a file under .reiserfs_priv/xattrs/. CVE-2010-1146 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-1146.html CVE-2010-1146 https://bugzilla.suse.com/593906 SUSE Bug 593906 gfs2 in the Linux kernel 2.6.18, and possibly other versions, does not properly handle when the gfs2_quota struct occupies two separate pages, which allows local users to cause a denial of service (kernel panic) via certain manipulations that cause an out-of-bounds write, as demonstrated by writing from an ext3 file system to a gfs2 file system. CVE-2010-1436 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-1436.html CVE-2010-1436 https://bugzilla.suse.com/599957 SUSE Bug 599957 The do_gfs2_set_flags function in fs/gfs2/file.c in the Linux kernel before 2.6.34-git10 does not verify the ownership of a file, which allows local users to bypass intended access restrictions via a SETFLAGS ioctl request. CVE-2010-1641 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-1641.html CVE-2010-1641 https://bugzilla.suse.com/608576 SUSE Bug 608576 The mext_check_arguments function in fs/ext4/move_extent.c in the Linux kernel before 2.6.35 allows local users to overwrite an append-only file via a MOVE_EXT ioctl call that specifies this file as a donor. CVE-2010-2066 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-2066.html CVE-2010-2066 https://bugzilla.suse.com/612457 SUSE Bug 612457 The actions implementation in the network queueing functionality in the Linux kernel before 2.6.36-rc2 does not properly initialize certain structure members when performing dump operations, which allows local users to obtain potentially sensitive information from kernel memory via vectors related to (1) the tcf_gact_dump function in net/sched/act_gact.c, (2) the tcf_mirred_dump function in net/sched/act_mirred.c, (3) the tcf_nat_dump function in net/sched/act_nat.c, (4) the tcf_simp_dump function in net/sched/act_simple.c, and (5) the tcf_skbedit_dump function in net/sched/act_skbedit.c. CVE-2010-2942 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-2942.html CVE-2010-2942 https://bugzilla.suse.com/632309 SUSE Bug 632309 https://bugzilla.suse.com/642324 SUSE Bug 642324 The irda_bind function in net/irda/af_irda.c in the Linux kernel before 2.6.36-rc3-next-20100901 does not properly handle failure of the irda_open_tsap function, which allows local users to cause a denial of service (NULL pointer dereference and panic) and possibly have unspecified other impact via multiple unsuccessful calls to bind on an AF_IRDA (aka PF_IRDA) socket. CVE-2010-2954 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-2954.html CVE-2010-2954 https://bugzilla.suse.com/636112 SUSE Bug 636112 The cfg80211_wext_giwessid function in net/wireless/wext-compat.c in the Linux kernel before 2.6.36-rc3-next-20100831 does not properly initialize certain structure members, which allows local users to leverage an off-by-one error in the ioctl_standard_iw_point function in net/wireless/wext-core.c, and obtain potentially sensitive information from kernel heap memory, via vectors involving an SIOCGIWESSID ioctl call that specifies a large buffer size. CVE-2010-2955 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-2955.html CVE-2010-2955 https://bugzilla.suse.com/635413 SUSE Bug 635413 The compat_alloc_user_space functions in include/asm/compat.h files in the Linux kernel before 2.6.36-rc4-git2 on 64-bit platforms do not properly allocate the userspace memory required for the 32-bit compatibility layer, which allows local users to gain privileges by leveraging the ability of the compat_mc_getsockopt function (aka the MCAST_MSFILTER getsockopt support) to control a certain length value, related to a "stack pointer underflow" issue, as exploited in the wild in September 2010. CVE-2010-3081 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-3081.html CVE-2010-3081 https://bugzilla.suse.com/639709 SUSE Bug 639709 https://bugzilla.suse.com/641575 SUSE Bug 641575 https://bugzilla.suse.com/871595 SUSE Bug 871595 The cxgb_extension_ioctl function in drivers/net/cxgb3/cxgb3_main.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a CHELSIO_GET_QSET_NUM ioctl call. CVE-2010-3296 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-3296.html CVE-2010-3296 https://bugzilla.suse.com/639481 SUSE Bug 639481 https://bugzilla.suse.com/649187 SUSE Bug 649187 The eql_g_master_cfg function in drivers/net/eql.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via an EQL_GETMASTRCFG ioctl call. CVE-2010-3297 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-3297.html CVE-2010-3297 https://bugzilla.suse.com/639482 SUSE Bug 639482 https://bugzilla.suse.com/649187 SUSE Bug 649187 The hso_get_count function in drivers/net/usb/hso.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a TIOCGICOUNT ioctl call. CVE-2010-3298 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-3298.html CVE-2010-3298 https://bugzilla.suse.com/639483 SUSE Bug 639483 https://bugzilla.suse.com/649187 SUSE Bug 649187 The IA32 system call emulation functionality in arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.36-rc4-git2 on the x86_64 platform does not zero extend the %eax register after the 32-bit entry path to ptrace is used, which allows local users to gain privileges by triggering an out-of-bounds access to the system call table using the %rax register. NOTE: this vulnerability exists because of a CVE-2007-4573 regression. CVE-2010-3301 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-3301.html CVE-2010-3301 https://bugzilla.suse.com/639708 SUSE Bug 639708 Multiple integer signedness errors in net/rose/af_rose.c in the Linux kernel before 2.6.36-rc5-next-20100923 allow local users to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a rose_getname function call, related to the rose_bind and rose_connect functions. CVE-2010-3310 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-3310.html CVE-2010-3310 https://bugzilla.suse.com/640721 SUSE Bug 640721 The xfs_fs_geometry function in fs/xfs/xfs_fsops.c in the Linux kernel before 2.6.38-rc6-git3 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via an FSGEOMETRY_V1 ioctl call. CVE-2011-0711 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-0711.html CVE-2011-0711 https://bugzilla.suse.com/672505 SUSE Bug 672505 https://bugzilla.suse.com/672524 SUSE Bug 672524 Multiple buffer overflows in the caiaq Native Instruments USB audio functionality in the Linux kernel before 2.6.38-rc4-next-20110215 might allow attackers to cause a denial of service or possibly have unspecified other impact via a long USB device name, related to (1) the snd_usb_caiaq_audio_init function in sound/usb/caiaq/audio.c and (2) the snd_usb_caiaq_midi_init function in sound/usb/caiaq/midi.c. CVE-2011-0712 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-0712.html CVE-2011-0712 https://bugzilla.suse.com/672499 SUSE Bug 672499 The proc filesystem implementation in the Linux kernel 2.6.37 and earlier does not restrict access to the /proc directory tree of a process after this process performs an exec of a setuid program, which allows local users to obtain sensitive information or cause a denial of service via open, lseek, read, and write system calls. CVE-2011-1020 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-1020.html CVE-2011-1020 https://bugzilla.suse.com/674982 SUSE Bug 674982 Multiple stack-based buffer overflows in the iriap_getvaluebyclass_indication function in net/irda/iriap.c in the Linux kernel before 2.6.39 allow remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging connectivity to an IrDA infrared network and sending a large integer value for a (1) name length or (2) attribute length. CVE-2011-1180 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-1180.html CVE-2011-1180 https://bugzilla.suse.com/681497 SUSE Bug 681497 Heap-based buffer overflow in the is_gpt_valid function in fs/partitions/efi.c in the Linux kernel 2.6.38 and earlier allows physically proximate attackers to cause a denial of service (OOPS) or possibly have unspecified other impact via a crafted size of the EFI GUID partition-table header on removable media. CVE-2011-1577 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-1577.html CVE-2011-1577 https://bugzilla.suse.com/687113 SUSE Bug 687113 https://bugzilla.suse.com/692784 SUSE Bug 692784 The bond_select_queue function in drivers/net/bonding/bond_main.c in the Linux kernel before 2.6.39, when a network device with a large number of receive queues is installed but the default tx_queues setting is used, does not properly restrict queue indexes, which allows remote attackers to cause a denial of service (BUG and system crash) or possibly have unspecified other impact by sending network traffic. CVE-2011-1581 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-1581.html CVE-2011-1581 https://bugzilla.suse.com/687116 SUSE Bug 687116 The hfs_find_init function in the Linux kernel 2.6 allows local users to cause a denial of service (NULL pointer dereference and Oops) by mounting an HFS file system with a malformed MDB extent record. CVE-2011-2203 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-2203.html CVE-2011-2203 https://bugzilla.suse.com/699709 SUSE Bug 699709 The bat_socket_read function in net/batman-adv/icmp_socket.c in the Linux kernel before 3.3 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted batman-adv ICMP packet. CVE-2011-4604 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-4604.html CVE-2011-4604 https://bugzilla.suse.com/736149 SUSE Bug 736149 The mem_write function in the Linux kernel before 3.2.2, when ASLR is disabled, does not properly check permissions when writing to /proc/<pid>/mem, which allows local users to gain privileges by modifying process memory, as demonstrated by Mempodipper. CVE-2012-0056 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-0056.html CVE-2012-0056 https://bugzilla.suse.com/1171985 SUSE Bug 1171985 https://bugzilla.suse.com/742028 SUSE Bug 742028 https://bugzilla.suse.com/742279 SUSE Bug 742279 The sfc (aka Solarflare Solarstorm) driver in the Linux kernel before 3.2.30 allows remote attackers to cause a denial of service (DMA descriptor consumption and network-controller outage) via crafted TCP packets that trigger a small MSS value. CVE-2012-3412 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-3412.html CVE-2012-3412 https://bugzilla.suse.com/774523 SUSE Bug 774523 The Netlink implementation in the Linux kernel before 3.2.30 does not properly handle messages that lack SCM_CREDENTIALS data, which might allow local users to spoof Netlink communication via a crafted message, as demonstrated by a message to (1) Avahi or (2) NetworkManager. CVE-2012-3520 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-3520.html CVE-2012-3520 https://bugzilla.suse.com/776925 SUSE Bug 776925 The Linux kernel through 3.7.9 allows local users to obtain sensitive information about keystroke timing by using the inotify API on the /dev/ptmx device. CVE-2013-0160 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-0160.html CVE-2013-0160 https://bugzilla.suse.com/797175 SUSE Bug 797175 https://bugzilla.suse.com/841063 SUSE Bug 841063 https://bugzilla.suse.com/871595 SUSE Bug 871595 The pciback_enable_msi function in the PCI backend driver (drivers/xen/pciback/conf_space_capability_msi.c) in Xen for the Linux kernel 2.6.18 and 3.8 allows guest OS users with PCI device access to cause a denial of service via a large number of kernel log messages. NOTE: some of these details are obtained from third party information. CVE-2013-0231 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-0231.html CVE-2013-0231 https://bugzilla.suse.com/801178 SUSE Bug 801178 https://bugzilla.suse.com/841063 SUSE Bug 841063 https://bugzilla.suse.com/871595 SUSE Bug 871595 Integer overflow in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the i915 driver in the Direct Rendering Manager (DRM) subsystem in the Linux kernel through 3.8.3, as used in Google Chrome OS before 25.0.1364.173 and other products, allows local users to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted application that triggers many relocation copies, and potentially leads to a race condition. CVE-2013-0913 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-0913.html CVE-2013-0913 https://bugzilla.suse.com/808829 SUSE Bug 808829 https://bugzilla.suse.com/871595 SUSE Bug 871595 Heap-based buffer overflow in the iscsi_add_notunderstood_response function in drivers/target/iscsi/iscsi_target_parameters.c in the iSCSI target subsystem in the Linux kernel through 3.9.4 allows remote attackers to cause a denial of service (memory corruption and OOPS) or possibly execute arbitrary code via a long key that is not properly handled during construction of an error-response packet. CVE-2013-2850 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-2850.html CVE-2013-2850 https://bugzilla.suse.com/821560 SUSE Bug 821560 The compat_sys_recvmmsg function in net/compat.c in the Linux kernel before 3.13.2, when CONFIG_X86_X32 is enabled, allows local users to gain privileges via a recvmmsg system call with a crafted timeout pointer parameter. CVE-2014-0038 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0038.html CVE-2014-0038 https://bugzilla.suse.com/860993 SUSE Bug 860993 The n_tty_write function in drivers/tty/n_tty.c in the Linux kernel through 3.14.3 does not properly manage tty driver access in the "LECHO & !OPOST" case, which allows local users to cause a denial of service (memory corruption and system crash) or gain privileges by triggering a race condition involving read and write operations with long strings. CVE-2014-0196 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0196.html CVE-2014-0196 https://bugzilla.suse.com/871252 SUSE Bug 871252 https://bugzilla.suse.com/875690 SUSE Bug 875690 https://bugzilla.suse.com/877345 SUSE Bug 877345 https://bugzilla.suse.com/879878 SUSE Bug 879878 https://bugzilla.suse.com/933423 SUSE Bug 933423 Cisco WebEx Meetings Server before 1.1 uses meeting IDs with insufficient entropy, which makes it easier for remote attackers to bypass authentication and join arbitrary meetings without a password, aka Bug ID CSCuc79643. CVE-2014-0691 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0691.html CVE-2014-0691 arch/x86/kernel/tls.c in the Thread Local Storage (TLS) implementation in the Linux kernel through 3.18.1 allows local users to bypass the espfix protection mechanism, and consequently makes it easier for local users to bypass the ASLR protection mechanism, via a crafted application that makes a set_thread_area system call and later reads a 16-bit value. CVE-2014-8133 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-8133.html CVE-2014-8133 https://bugzilla.suse.com/817142 SUSE Bug 817142 https://bugzilla.suse.com/906545 SUSE Bug 906545 https://bugzilla.suse.com/907818 SUSE Bug 907818 https://bugzilla.suse.com/909077 SUSE Bug 909077 Memory leak in the __key_link_end function in security/keys/keyring.c in the Linux kernel before 4.1.4 allows local users to cause a denial of service (memory consumption) via many add_key system calls that refer to existing keys. CVE-2015-1333 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1333.html CVE-2015-1333 https://bugzilla.suse.com/1126909 SUSE Bug 1126909 https://bugzilla.suse.com/1185451 SUSE Bug 1185451 https://bugzilla.suse.com/938645 SUSE Bug 938645 The keyctl_read_key function in security/keys/keyctl.c in the Linux kernel before 4.3.4 does not properly use a semaphore, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted application that leverages a race condition between keyctl_revoke and keyctl_read calls. CVE-2015-7550 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 4.6 AV:L/AC:L/Au:S/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-7550.html CVE-2015-7550 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/1052256 SUSE Bug 1052256 https://bugzilla.suse.com/958951 SUSE Bug 958951 The vivid_fb_ioctl function in drivers/media/platform/vivid/vivid-osd.c in the Linux kernel through 4.3.3 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel memory via a crafted application. CVE-2015-7884 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 1.7 AV:L/AC:L/Au:S/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-7884.html CVE-2015-7884 https://bugzilla.suse.com/1126909 SUSE Bug 1126909 https://bugzilla.suse.com/951626 SUSE Bug 951626 https://bugzilla.suse.com/951627 SUSE Bug 951627 The dgnc_mgmt_ioctl function in drivers/staging/dgnc/dgnc_mgmt.c in the Linux kernel through 4.3.3 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel memory via a crafted application. CVE-2015-7885 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-7885.html CVE-2015-7885 https://bugzilla.suse.com/1126909 SUSE Bug 1126909 https://bugzilla.suse.com/951626 SUSE Bug 951626 https://bugzilla.suse.com/951627 SUSE Bug 951627 The KEYS subsystem in the Linux kernel before 4.4 allows local users to gain privileges or cause a denial of service (BUG) via crafted keyctl commands that negatively instantiate a key, related to security/keys/encrypted-keys/encrypted.c, security/keys/trusted.c, and security/keys/user_defined.c. CVE-2015-8539 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-8539.html CVE-2015-8539 https://bugzilla.suse.com/1115893 SUSE Bug 1115893 https://bugzilla.suse.com/781018 SUSE Bug 781018 https://bugzilla.suse.com/958463 SUSE Bug 958463 https://bugzilla.suse.com/958601 SUSE Bug 958601 The ovl_setattr function in fs/overlayfs/inode.c in the Linux kernel through 4.3.3 attempts to merge distinct setattr operations, which allows local users to bypass intended access restrictions and modify the attributes of arbitrary overlay files via a crafted application. CVE-2015-8660 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-8660.html CVE-2015-8660 https://bugzilla.suse.com/923755 SUSE Bug 923755 https://bugzilla.suse.com/960281 SUSE Bug 960281 https://bugzilla.suse.com/960329 SUSE Bug 960329 https://bugzilla.suse.com/963994 SUSE Bug 963994 Race condition in the tty_ioctl function in drivers/tty/tty_io.c in the Linux kernel through 4.4.1 allows local users to obtain sensitive information from kernel memory or cause a denial of service (use-after-free and system crash) by making a TIOCGETD ioctl call during processing of a TIOCSETD ioctl call. CVE-2016-0723 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 4.4 AV:L/AC:M/Au:S/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-0723.html CVE-2016-0723 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/961500 SUSE Bug 961500 The join_session_keyring function in security/keys/process_keys.c in the Linux kernel before 4.4.1 mishandles object references in a certain error case, which allows local users to gain privileges or cause a denial of service (integer overflow and use-after-free) via crafted keyctl commands. CVE-2016-0728 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-0728.html CVE-2016-0728 https://bugzilla.suse.com/923755 SUSE Bug 923755 https://bugzilla.suse.com/962075 SUSE Bug 962075 https://bugzilla.suse.com/962078 SUSE Bug 962078 https://bugzilla.suse.com/963994 SUSE Bug 963994 nfsd in the Linux kernel through 4.6.3 allows local users to bypass intended file-permission restrictions by setting a POSIX ACL, related to nfs2acl.c, nfs3acl.c, and nfs4acl.c. CVE-2016-1237 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 3.8 AV:A/AC:M/Au:S/C:P/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-1237.html CVE-2016-1237 https://bugzilla.suse.com/986570 SUSE Bug 986570 The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling. CVE-2016-1583 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 6.8 AV:L/AC:L/Au:S/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-1583.html CVE-2016-1583 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/1052256 SUSE Bug 1052256 https://bugzilla.suse.com/983143 SUSE Bug 983143 https://bugzilla.suse.com/983144 SUSE Bug 983144 The create_fixed_stream_quirk function in sound/usb/quirks.c in the snd-usb-audio driver in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference or double free, and system crash) via a crafted endpoints value in a USB device descriptor. CVE-2016-2184 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2184.html CVE-2016-2184 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/971125 SUSE Bug 971125 The ati_remote2_probe function in drivers/input/misc/ati_remote2.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device descriptor. CVE-2016-2185 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2185.html CVE-2016-2185 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/971124 SUSE Bug 971124 The powermate_probe function in drivers/input/misc/powermate.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device descriptor. CVE-2016-2186 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2186.html CVE-2016-2186 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/970958 SUSE Bug 970958 Double free vulnerability in the snd_usbmidi_create function in sound/usb/midi.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (panic) or possibly have unspecified other impact via vectors involving an invalid USB descriptor. CVE-2016-2384 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 6.2 AV:L/AC:H/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2384.html CVE-2016-2384 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/966693 SUSE Bug 966693 https://bugzilla.suse.com/967773 SUSE Bug 967773 The netfilter subsystem in the Linux kernel through 4.5.2 does not validate certain offset fields, which allows local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE setsockopt call. CVE-2016-3134 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 6.2 AV:L/AC:H/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-3134.html CVE-2016-3134 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/1052256 SUSE Bug 1052256 https://bugzilla.suse.com/1115893 SUSE Bug 1115893 https://bugzilla.suse.com/971126 SUSE Bug 971126 https://bugzilla.suse.com/971793 SUSE Bug 971793 https://bugzilla.suse.com/986362 SUSE Bug 986362 https://bugzilla.suse.com/986365 SUSE Bug 986365 https://bugzilla.suse.com/986377 SUSE Bug 986377 Integer overflow in the xt_alloc_table_info function in net/netfilter/x_tables.c in the Linux kernel through 4.5.2 on 32-bit platforms allows local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE setsockopt call. CVE-2016-3135 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-3135.html CVE-2016-3135 https://bugzilla.suse.com/970904 SUSE Bug 970904 https://bugzilla.suse.com/971794 SUSE Bug 971794 The mct_u232_msr_to_state function in drivers/usb/serial/mct_u232.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted USB device without two interrupt-in endpoint descriptors. CVE-2016-3136 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-3136.html CVE-2016-3136 https://bugzilla.suse.com/970955 SUSE Bug 970955 The digi_port_init function in drivers/usb/serial/digi_acceleport.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device descriptor. CVE-2016-3140 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 4.9 AV:L/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-3140.html CVE-2016-3140 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/970892 SUSE Bug 970892 The ims_pcu_parse_cdc_data function in drivers/input/misc/ims-pcu.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (system crash) via a USB device without both a master and a slave interface. CVE-2016-3689 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 4.9 AV:L/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-3689.html CVE-2016-3689 https://bugzilla.suse.com/971628 SUSE Bug 971628 The msr_mtrr_valid function in arch/x86/kvm/mtrr.c in the Linux kernel before 4.6.1 supports MSR 0x2f8, which allows guest OS users to read or write to the kvm_arch_vcpu data structure, and consequently obtain sensitive information or cause a denial of service (system crash), via a crafted ioctl call. CVE-2016-3713 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 4.9 AV:A/AC:M/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-3713.html CVE-2016-3713 https://bugzilla.suse.com/979715 SUSE Bug 979715 https://bugzilla.suse.com/985132 SUSE Bug 985132 The key_reject_and_link function in security/keys/key.c in the Linux kernel through 4.6.3 does not ensure that a certain data structure is initialized, which allows local users to cause a denial of service (system crash) via vectors involving a crafted keyctl request2 command. CVE-2016-4470 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-4470.html CVE-2016-4470 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/984755 SUSE Bug 984755 https://bugzilla.suse.com/984764 SUSE Bug 984764 https://bugzilla.suse.com/991651 SUSE Bug 991651 The llc_cmsg_rcv function in net/llc/af_llc.c in the Linux kernel before 4.5.5 does not initialize a certain data structure, which allows attackers to obtain sensitive information from kernel stack memory by reading a message. CVE-2016-4485 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-4485.html CVE-2016-4485 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/978821 SUSE Bug 978821 The rtnl_fill_link_ifmap function in net/core/rtnetlink.c in the Linux kernel before 4.5.5 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory by reading a Netlink message. CVE-2016-4486 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-4486.html CVE-2016-4486 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/978822 SUSE Bug 978822 The replace_map_fd_with_map_ptr function in kernel/bpf/verifier.c in the Linux kernel before 4.5.5 does not properly maintain an fd data structure, which allows local users to gain privileges or cause a denial of service (use-after-free) via crafted BPF instructions that reference an incorrect file descriptor. CVE-2016-4557 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 6.2 AV:L/AC:H/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-4557.html CVE-2016-4557 https://bugzilla.suse.com/979018 SUSE Bug 979018 https://bugzilla.suse.com/979077 SUSE Bug 979077 The BPF subsystem in the Linux kernel before 4.5.5 mishandles reference counts, which allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via a crafted application on (1) a system with more than 32 Gb of memory, related to the program reference count or (2) a 1 Tb system, related to the map reference count. CVE-2016-4558 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 3.3 AV:L/AC:M/Au:N/C:N/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-4558.html CVE-2016-4558 https://bugzilla.suse.com/979019 SUSE Bug 979019 The snd_timer_user_params function in sound/core/timer.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface. CVE-2016-4569 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-4569.html CVE-2016-4569 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/979213 SUSE Bug 979213 https://bugzilla.suse.com/979879 SUSE Bug 979879 sound/core/timer.c in the Linux kernel through 4.6 does not initialize certain r1 data structures, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface, related to the (1) snd_timer_user_ccallback and (2) snd_timer_user_tinterrupt functions. CVE-2016-4578 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 1.9 AV:L/AC:M/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-4578.html CVE-2016-4578 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/1052256 SUSE Bug 1052256 https://bugzilla.suse.com/979879 SUSE Bug 979879 The tipc_nl_publ_dump function in net/tipc/socket.c in the Linux kernel through 4.6 does not verify socket existence, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a dumpit operation. CVE-2016-4951 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 4.7 AV:L/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-4951.html CVE-2016-4951 https://bugzilla.suse.com/981058 SUSE Bug 981058 https://bugzilla.suse.com/985132 SUSE Bug 985132 The compat IPT_SO_SET_REPLACE and IP6T_SO_SET_REPLACE setsockopt implementations in the netfilter subsystem in the Linux kernel before 4.6.3 allow local users to gain privileges or cause a denial of service (memory corruption) by leveraging in-container root access to provide a crafted offset value that triggers an unintended decrement. CVE-2016-4997 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-4997.html CVE-2016-4997 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/986362 SUSE Bug 986362 https://bugzilla.suse.com/986365 SUSE Bug 986365 https://bugzilla.suse.com/986377 SUSE Bug 986377 https://bugzilla.suse.com/991651 SUSE Bug 991651 The IPT_SO_SET_REPLACE setsockopt implementation in the netfilter subsystem in the Linux kernel before 4.6 allows local users to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from kernel heap memory by leveraging in-container root access to provide a crafted offset value that leads to crossing a ruleset blob boundary. CVE-2016-4998 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 4.7 AV:L/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-4998.html CVE-2016-4998 https://bugzilla.suse.com/1020452 SUSE Bug 1020452 https://bugzilla.suse.com/986362 SUSE Bug 986362 https://bugzilla.suse.com/986365 SUSE Bug 986365 Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write (COW) feature to write to a read-only memory mapping, as exploited in the wild in October 2016, aka "Dirty COW." CVE-2016-5195 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 6.6 AV:L/AC:M/Au:S/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-5195.html CVE-2016-5195 https://bugzilla.suse.com/1004418 SUSE Bug 1004418 https://bugzilla.suse.com/1004419 SUSE Bug 1004419 https://bugzilla.suse.com/1004436 SUSE Bug 1004436 https://bugzilla.suse.com/1006323 SUSE Bug 1006323 https://bugzilla.suse.com/1006695 SUSE Bug 1006695 https://bugzilla.suse.com/1007291 SUSE Bug 1007291 https://bugzilla.suse.com/1008110 SUSE Bug 1008110 https://bugzilla.suse.com/1030118 SUSE Bug 1030118 https://bugzilla.suse.com/1046453 SUSE Bug 1046453 https://bugzilla.suse.com/1069496 SUSE Bug 1069496 https://bugzilla.suse.com/1149725 SUSE Bug 1149725 https://bugzilla.suse.com/870618 SUSE Bug 870618 https://bugzilla.suse.com/986445 SUSE Bug 986445 https://bugzilla.suse.com/998689 SUSE Bug 998689 The rds_inc_info_copy function in net/rds/recv.c in the Linux kernel through 4.6.3 does not initialize a certain structure member, which allows remote attackers to obtain sensitive information from kernel stack memory by reading an RDS message. CVE-2016-5244 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 1.5 AV:L/AC:M/Au:S/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-5244.html CVE-2016-5244 https://bugzilla.suse.com/983213 SUSE Bug 983213 https://bugzilla.suse.com/986225 SUSE Bug 986225 Multiple heap-based buffer overflows in the hiddev_ioctl_usage function in drivers/hid/usbhid/hiddev.c in the Linux kernel through 4.6.3 allow local users to cause a denial of service or possibly have unspecified other impact via a crafted (1) HIDIOCGUSAGES or (2) HIDIOCSUSAGES ioctl call. CVE-2016-5829 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-5829.html CVE-2016-5829 https://bugzilla.suse.com/1053919 SUSE Bug 1053919 https://bugzilla.suse.com/1054127 SUSE Bug 1054127 https://bugzilla.suse.com/1115893 SUSE Bug 1115893 https://bugzilla.suse.com/986572 SUSE Bug 986572 https://bugzilla.suse.com/986573 SUSE Bug 986573 https://bugzilla.suse.com/991651 SUSE Bug 991651 The apparmor_setprocattr function in security/apparmor/lsm.c in the Linux kernel before 4.6.5 does not validate the buffer size, which allows local users to gain privileges by triggering an AppArmor setprocattr hook. CVE-2016-6187 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-6187.html CVE-2016-6187 https://bugzilla.suse.com/988307 SUSE Bug 988307 Race condition in the ioctl_send_fib function in drivers/scsi/aacraid/commctrl.c in the Linux kernel through 4.7 allows local users to cause a denial of service (out-of-bounds access or system crash) by changing a certain size value, aka a "double fetch" vulnerability. CVE-2016-6480 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-6480.html CVE-2016-6480 https://bugzilla.suse.com/1004418 SUSE Bug 1004418 https://bugzilla.suse.com/991608 SUSE Bug 991608 https://bugzilla.suse.com/991667 SUSE Bug 991667 https://bugzilla.suse.com/992568 SUSE Bug 992568 Race condition in the ioctl_file_dedupe_range function in fs/ioctl.c in the Linux kernel through 4.7 allows local users to cause a denial of service (heap-based buffer overflow) or possibly gain privileges by changing a certain count value, aka a "double fetch" vulnerability. CVE-2016-6516 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-6516.html CVE-2016-6516 https://bugzilla.suse.com/991604 SUSE Bug 991604 https://bugzilla.suse.com/991669 SUSE Bug 991669 The tcp_check_send_head function in include/net/tcp.h in the Linux kernel before 4.7.5 does not properly maintain certain SACK state after a failed data copy, which allows local users to cause a denial of service (tcp_xmit_retransmit_queue use-after-free and system crash) via a crafted SACK option. CVE-2016-6828 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 4.4 AV:L/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-6828.html CVE-2016-6828 https://bugzilla.suse.com/1052256 SUSE Bug 1052256 https://bugzilla.suse.com/994296 SUSE Bug 994296 The IP stack in the Linux kernel through 4.8.2 allows remote attackers to cause a denial of service (stack consumption and panic) or possibly have unspecified other impact by triggering use of the GRO path for large crafted packets, as demonstrated by packets that contain only VLAN headers, a related issue to CVE-2016-8666. CVE-2016-7039 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7039.html CVE-2016-7039 https://bugzilla.suse.com/1001486 SUSE Bug 1001486 https://bugzilla.suse.com/1001487 SUSE Bug 1001487 https://bugzilla.suse.com/1003964 SUSE Bug 1003964 The proc_keys_show function in security/keys/proc.c in the Linux kernel through 4.8.2, when the GNU Compiler Collection (gcc) stack protector is enabled, uses an incorrect buffer size for certain timeout data, which allows local users to cause a denial of service (stack memory corruption and panic) by reading the /proc/keys file. CVE-2016-7042 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 4.6 AV:L/AC:L/Au:S/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7042.html CVE-2016-7042 https://bugzilla.suse.com/1004517 SUSE Bug 1004517 The arcmsr_iop_message_xfer function in drivers/scsi/arcmsr/arcmsr_hba.c in the Linux kernel through 4.8.2 does not restrict a certain length field, which allows local users to gain privileges or cause a denial of service (heap-based buffer overflow) via an ARCMSR_MESSAGE_WRITE_WQBUFFER control code. CVE-2016-7425 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 4.4 AV:L/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7425.html CVE-2016-7425 https://bugzilla.suse.com/1115893 SUSE Bug 1115893 https://bugzilla.suse.com/999932 SUSE Bug 999932 The xc2028_set_config function in drivers/media/tuners/tuner-xc2028.c in the Linux kernel before 4.6 allows local users to gain privileges or cause a denial of service (use-after-free) via vectors involving omission of the firmware name from a certain data structure. CVE-2016-7913 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 4.4 AV:L/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-7913.html CVE-2016-7913 https://bugzilla.suse.com/1010478 SUSE Bug 1010478 The sctp_sf_ootb function in net/sctp/sm_statefuns.c in the Linux kernel before 4.8.8 lacks chunk-length checking for the first chunk, which allows remote attackers to cause a denial of service (out-of-bounds slab access) or possibly have unspecified other impact via crafted SCTP data. CVE-2016-9555 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 7.1 AV:N/AC:H/Au:N/C:C/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-9555.html CVE-2016-9555 https://bugzilla.suse.com/1011685 SUSE Bug 1011685 https://bugzilla.suse.com/1012183 SUSE Bug 1012183 https://bugzilla.suse.com/1115893 SUSE Bug 1115893 The blk_rq_map_user_iov function in block/blk-map.c in the Linux kernel before 4.8.14 does not properly restrict the type of iterator, which allows local users to read or write to arbitrary kernel memory locations or cause a denial of service (use-after-free) by leveraging access to a /dev/sg device. CVE-2016-9576 openSUSE Tumbleweed:kernel-debug-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-debug-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-default-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-html-4.8.13-1.1 openSUSE Tumbleweed:kernel-docs-pdf-4.8.13-1.1 openSUSE Tumbleweed:kernel-macros-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-build-4.8.13-1.1 openSUSE Tumbleweed:kernel-obs-qa-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-pae-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-4.8.13-1.1 openSUSE Tumbleweed:kernel-source-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-syms-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-syzkaller-devel-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-base-4.8.13-1.1 openSUSE Tumbleweed:kernel-vanilla-devel-4.8.13-1.1 moderate 6.2 AV:L/AC:H/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-9576.html CVE-2016-9576 https://bugzilla.suse.com/1013604 SUSE Bug 1013604 https://bugzilla.suse.com/1014271 SUSE Bug 1014271 https://bugzilla.suse.com/1017710 SUSE Bug 1017710 https://bugzilla.suse.com/1019079 SUSE Bug 1019079 https://bugzilla.suse.com/1019668 SUSE Bug 1019668 https://bugzilla.suse.com/1115893 SUSE Bug 1115893