File _patchinfo of Package patchinfo.4340
<patchinfo incident="4340"> <issue id="1025013" tracker="bnc">VUL-0: CVE-2017-5970: kernel live patch: ipv4: keep skb->dst around in presence of IP options</issue> <issue id="1025254" tracker="bnc">kernel live patch: "Data miscompare on a read" is observed during the rebuilding of degraded MDRAID VDs</issue> <issue id="2017-5970" tracker="cve" /> <category>security</category> <rating>important</rating> <packager>mbenes</packager> <description>This update for the Linux Kernel 4.4.38-93 fixes several issues. The following security bug was fixed: - CVE-2017-5970: The ipv4_pktinfo_prepare function in net/ipv4/ip_sockglue.c in the Linux kernel allowed attackers to cause a denial of service (system crash) via (1) an application that made crafted system calls or possibly (2) IPv4 traffic with invalid IP options (bsc#1025013). The following non-security bug was fixed: - Fix for a "Data miscompare on a read" which was observed during the rebuilding of degraded MDRAID VDs. (bsc#1025254) </description> <summary>Security update for Linux Kernel Live Patch 4 for SLE 12 SP2</summary> </patchinfo>
