Overview Details Repositories Revisions Requests Users Attributes Meta
Security update for the Linux Kernel

The openSUSE Leap 42.2 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

- CVE-2017-1000111: Fixed a race condition in net-packet code that could be exploited to cause out-of-bounds memory access (bsc#1052365).
- CVE-2017-1000112: Fixed a race condition in net-packet code that could have been exploited by unprivileged users to gain root access. (bsc#1052311).
- CVE-2017-8831: The saa7164_bus_get function in drivers/media/pci/saa7164/saa7164-bus.c in the Linux kernel allowed local users to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact by changing a certain sequence-number value, aka a "double fetch" vulnerability (bnc#1037994).

The following non-security bugs were fixed:

- IB/hfi1: Wait for QSFP modules to initialize (bsc#1019151).
- bcache: force trigger gc (bsc#1038078).
- bcache: only recovery I/O error for writethrough mode (bsc#1043652).
- block: do not allow updates through sysfs until registration completes (bsc#1047027).
- ibmvnic: Check for transport event on driver resume (bsc#1051556, bsc#1052709).
- ibmvnic: Initialize SCRQ's during login renegotiation (bsc#1052223).
- ibmvnic: Report rx buffer return codes as netdev_dbg (bsc#1052794).
- iommu/amd: Fix schedule-while-atomic BUG in initialization code (bsc1052533).
- libnvdimm, pmem: fix a NULL pointer BUG in nd_pmem_notify (bsc#1023175).
- libnvdimm: fix badblock range handling of ARS range (bsc#1023175).
- qeth: fix L3 next-hop im xmit qeth hdr (bnc#1052773, LTC#157374).
- scsi_devinfo: fixup string compare (bsc#1037404).
- scsi_dh_alua: suppress errors from unsupported devices (bsc#1038792).
- vfs: fix missing inode_get_dev sites (bsc#1052049).
- x86/dmi: Switch dmi_remap() from ioremap() to ioremap_cache() (bsc#1051399).

Fixed bugs
bnc#1019151
Partner-L3: [SLES-12-SP2] OPA Fabric Manager crashes when the opafm service is started
bnc#1023175
libnvdimm and dax fixes for SLES 12 SP2
bnc#1037404
Missing LUNs on boot - only 8 LUNs were detected
bnc#1037994
VUL-0: CVE-2017-8831: kernel-source: Double fetch problem in Linux-4.10.1 (saa7164_bus_get function in drivers/media/pci/saa7164/saa7164-bus.c)
bnc#1038078
SLES12SP2 bcache writeback disabled after cache was full
bnc#1038792
L3: scsi alua "disable for non-disk devices" patch causes alua: Attach failed on 3PAR
bnc#1043652
bCache returns zero-filled data blocks when reading from already gone caching device
bnc#1047027
kernel BUG at /usr/src/packages/BUILD/kernel-default-3.0.101/linux-3.0/fs/sysfs/file.c:531!"
bnc#1051399
mmap fails with conflicting memory types
bnc#1051556
SLES 15 - IBM vNIC driver does not support Suspend/Resume
bnc#1052049
name=(null) for type=PATH in audit.log on SLES12SP2 with kernel 4.4
bnc#1052223
SLES 12 SP3 RC2:lpar entered to xmon after lpm @ibmvnic_login+0xb8/0x180
bnc#1052311
VUL-0: CVE-2017-1000112: kernel: udp: consistently apply ufo or fragmentation
bnc#1052365
VUL-0: CVE-2017-1000111: kernel: heap out-of-bounds in AF_PACKET sockets
bnc#1052533
Backport IOMMU fixes reported by git-fixes
bnc#1052709
SLES 12 SP3 RC2 with kotd:vnic network is going down after resuming the lpar
bnc#1052773
L3: SLES 12 SP2 - IBM LTC System z maintenance kernel patches (#11)
bnc#1052794
SLES 12 SP3 - see ibmvnic 30000003 eth0: rx error 600 when we run ifconfig up/down (also occurring on P9/zz system in P9 default mode)
CVE-2017-8831
CVE-2017-1000111
CVE-2017-1000112
Selected Binaries
openSUSE Build Service is sponsored by
Places