Overview Details Repositories Revisions Requests Users Attributes Meta
Security update for the Linux Kernel

The openSUSE 13.1 kernel was updated to receive various critical security fixes.

The following security bugs were fixed:

- CVE-2016-8655: A race condition in the af_packet packet_set_ring
function could be used by local attackers to crash the kernel or gain
privileges (bsc#1012754).
- CVE-2016-8632: The tipc_msg_build function in net/tipc/msg.c in
the Linux kernel did not validate the relationship between the minimum
fragment length and the maximum packet size, which allowed local users to
gain privileges or cause a denial of service (heap-based buffer overflow)
by leveraging the CAP_NET_ADMIN capability (bnc#1008831).
- CVE-2016-9555: The sctp_sf_ootb function in net/sctp/sm_statefuns.c in
the Linux kernel lacks chunk-length checking for the first chunk, which
allowed remote attackers to cause a denial of service (out-of-bounds slab
access) or possibly have unspecified other impact via crafted SCTP data
(bnc#1011685).

Fixed bugs
bnc#1008831
VUL-1: CVE-2016-8632: kernel: TIPC subsystem: tipc_msg_build() doesn't validate MTU, may cause memory corruption.
bnc#1011685
VUL-0: CVE-2016-9555: kernel-source: net/sctp: slab-out-of-bounds in sctp_sf_ootb
bnc#1012754
VUL-0: EMBARGOED: CVE-2016-8655: kernel: Local root privilege packet_set_ring/timer_list
CVE-2016-8632
CVE-2016-8655
CVE-2016-9555
Selected Binaries
openSUSE Build Service is sponsored by
Places