Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:SuSE Local Security Checks
Title:SUSE: Security Advisory (SUSE-SU-2015:0812-1)
Summary:The remote host is missing an update for the 'Linux Kernel' package(s) announced via the SUSE-SU-2015:0812-1 advisory.
The remote host is missing an update for the 'Linux Kernel' package(s) announced via the SUSE-SU-2015:0812-1 advisory.

Vulnerability Insight:
The SUSE Linux Enterprise 10 SP4 LTSS kernel was updated to receive various security and bugfixes.
The following security bugs have been fixed:
CVE-2015-2041: A information leak in the llc2_timeout_table was fixed (bnc#919007).
CVE-2014-9322: arch/x86/kernel/entry_64.S in the Linux kernel did not properly handle faults associated with the Stack Segment (SS) segment register, which allowed local users to gain privileges by triggering an IRET instruction that leads to access to a GS Base address from the wrong space (bnc#910251).
CVE-2014-9090: The do_double_fault function in arch/x86/kernel/traps.c in the Linux kernel did not properly handle faults associated with the Stack Segment (SS) segment register, which allowed local users to cause a denial of service (panic) via a modify_ldt system call, as demonstrated by sigreturn_32 in the 1-clock-tests test suite (bnc#907818).
CVE-2014-4667: The sctp_association_free function in net/sctp/associola.c in the Linux kernel did not properly manage a certain backlog value, which allowed remote attackers to cause a denial of service (socket outage) via a crafted SCTP packet (bnc#885422).
CVE-2014-3673: The SCTP implementation in the Linux kernel allowed remote attackers to cause a denial of service (system crash) via a malformed ASCONF chunk, related to net/sctp/sm_make_chunk.c and net/sctp/sm_statefuns.c (bnc#902346).
CVE-2014-3185: Multiple buffer overflows in the command_port_read_callback function in drivers/usb/serial/whiteheat.c in the Whiteheat USB Serial Driver in the Linux kernel allowed physically proximate attackers to execute arbitrary code or cause a denial of service (memory corruption and system crash) via a crafted device that provides a large amount of (1) EHCI or (2) XHCI data associated with a bulk response (bnc#896391).
CVE-2014-3184: The report_fixup functions in the HID subsystem in the Linux kernel might have allowed physically proximate attackers to cause a denial of service (out-of-bounds write) via a crafted device that provides a small report descriptor, related to (1) drivers/hid/hid-cherry.c, (2) drivers/hid/hid-kye.c, (3) drivers/hid/hid-lg.c, (4) drivers/hid/hid-monterey.c, (5) drivers/hid/hid-petalynx.c, and (6) drivers/hid/hid-sunplus.c (bnc#896390).
CVE-2014-1874: The security_context_to_sid_core function in security/selinux/ss/services.c in the Linux kernel allowed local users to cause a denial of service (system crash) by leveraging the CAP_MAC_ADMIN capability to set a zero-length security context (bnc#863335).
CVE-2014-0181: The Netlink implementation in the Linux kernel did not provide a mechanism for authorizing socket operations based on the opener of a socket, which allowed local users to bypass intended access restrictions and modify network configurations by using a Netlink socket for the (1) stdout or (2) stderr of a setuid program (bnc#875051).
CVE-2013-4299: Interpretation conflict in driv... [Please see the references for more information on the vulnerabilities]

Affected Software/OS:
'Linux Kernel' package(s) on SUSE Linux Enterprise Server 10 SP4

Please install the updated package(s).

CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2009-4020
Debian Security Information: DSA-2005 (Google Search)
RedHat Security Advisories: RHSA-2010:0046
RedHat Security Advisories: RHSA-2010:0095
SuSE Security Announcement: SUSE-SA:2010:005 (Google Search)
SuSE Security Announcement: SUSE-SA:2010:019 (Google Search)
SuSE Security Announcement: SUSE-SA:2010:023 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2011-1090
Bugtraq: 20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console (Google Search)
SuSE Security Announcement: SUSE-SU-2015:0812 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2011-1163
BugTraq ID: 46878
Bugtraq: 20110317 [PRE-SA-2011-02] Information disclosure vulnerability in the OSF partition handling code of the Linux kernel (Google Search)
RedHat Security Advisories: RHSA-2011:0833
Common Vulnerability Exposure (CVE) ID: CVE-2011-1476
Common Vulnerability Exposure (CVE) ID: CVE-2011-1477
Common Vulnerability Exposure (CVE) ID: CVE-2011-1493
Common Vulnerability Exposure (CVE) ID: CVE-2011-1494
BugTraq ID: 47185
Common Vulnerability Exposure (CVE) ID: CVE-2011-1495
Common Vulnerability Exposure (CVE) ID: CVE-2011-1585
Common Vulnerability Exposure (CVE) ID: CVE-2011-4127
SuSE Security Announcement: SUSE-SU-2012:0554 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2011-4132
BugTraq ID: 50663
Common Vulnerability Exposure (CVE) ID: CVE-2011-4913
Common Vulnerability Exposure (CVE) ID: CVE-2011-4914
Common Vulnerability Exposure (CVE) ID: CVE-2012-2313
BugTraq ID: 53965
HPdes Security Advisory: HPSBGN02970
RedHat Security Advisories: RHSA-2012:1174
RedHat Security Advisories: RHSA-2012:1481
RedHat Security Advisories: RHSA-2012:1541
RedHat Security Advisories: RHSA-2012:1589
Common Vulnerability Exposure (CVE) ID: CVE-2012-2319
RedHat Security Advisories: RHSA-2012:1323
RedHat Security Advisories: RHSA-2012:1347
Common Vulnerability Exposure (CVE) ID: CVE-2012-3400
RedHat Security Advisories: RHSA-2013:0594
Common Vulnerability Exposure (CVE) ID: CVE-2012-6657
HPdes Security Advisory: HPSBGN03282
HPdes Security Advisory: HPSBGN03285
SuSE Security Announcement: SUSE-SU-2015:0652 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2013-2147
RedHat Security Advisories: RHSA-2013:1166
Common Vulnerability Exposure (CVE) ID: CVE-2013-4299
RedHat Security Advisories: RHSA-2013:1436
RedHat Security Advisories: RHSA-2013:1449
RedHat Security Advisories: RHSA-2013:1450
RedHat Security Advisories: RHSA-2013:1460
RedHat Security Advisories: RHSA-2013:1490
RedHat Security Advisories: RHSA-2013:1519
RedHat Security Advisories: RHSA-2013:1520
RedHat Security Advisories: RHSA-2013:1783
RedHat Security Advisories: RHSA-2013:1860
Common Vulnerability Exposure (CVE) ID: CVE-2013-6405
Common Vulnerability Exposure (CVE) ID: CVE-2013-6463
Common Vulnerability Exposure (CVE) ID: CVE-2014-0181
RedHat Security Advisories: RHSA-2014:1959
SuSE Security Announcement: SUSE-SU-2015:0481 (Google Search)
SuSE Security Announcement: SUSE-SU-2015:0736 (Google Search)
SuSE Security Announcement: openSUSE-SU-2015:0566 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2014-1874
BugTraq ID: 65459
Common Vulnerability Exposure (CVE) ID: CVE-2014-3184
BugTraq ID: 69768
RedHat Security Advisories: RHSA-2014:1318
RedHat Security Advisories: RHSA-2015:1272
Common Vulnerability Exposure (CVE) ID: CVE-2014-3185
BugTraq ID: 69781
RedHat Security Advisories: RHSA-2015:0284
Common Vulnerability Exposure (CVE) ID: CVE-2014-3673
BugTraq ID: 70883
Debian Security Information: DSA-3060 (Google Search)
RedHat Security Advisories: RHSA-2015:0062
RedHat Security Advisories: RHSA-2015:0115
SuSE Security Announcement: SUSE-SU-2015:0529 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2014-3917
RedHat Security Advisories: RHSA-2014:1143
RedHat Security Advisories: RHSA-2014:1281
Common Vulnerability Exposure (CVE) ID: CVE-2014-4652
RedHat Security Advisories: RHSA-2014:1083
XForce ISS Database: linux-kernel-cve20144652-info-disc(94412)
Common Vulnerability Exposure (CVE) ID: CVE-2014-4653
BugTraq ID: 68164
Common Vulnerability Exposure (CVE) ID: CVE-2014-4654
BugTraq ID: 68162
Common Vulnerability Exposure (CVE) ID: CVE-2014-4655
Common Vulnerability Exposure (CVE) ID: CVE-2014-4656
RedHat Security Advisories: RHSA-2015:0087
Common Vulnerability Exposure (CVE) ID: CVE-2014-4667
BugTraq ID: 68224
Debian Security Information: DSA-2992 (Google Search)
SuSE Security Announcement: SUSE-SU-2014:1316 (Google Search)
SuSE Security Announcement: SUSE-SU-2014:1319 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2014-5471
BugTraq ID: 69396
RedHat Security Advisories: RHSA-2015:0102
RedHat Security Advisories: RHSA-2015:0695
RedHat Security Advisories: RHSA-2015:0782
RedHat Security Advisories: RHSA-2015:0803
XForce ISS Database: linux-kernel-isofs-bo(95481)
Common Vulnerability Exposure (CVE) ID: CVE-2014-5472
BugTraq ID: 69428
XForce ISS Database: linux-kernel-cve20145472-dos(95556)
Common Vulnerability Exposure (CVE) ID: CVE-2014-9090
Debian Security Information: DSA-3093 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2014-9322
RedHat Security Advisories: RHSA-2014:1998
RedHat Security Advisories: RHSA-2014:2008
RedHat Security Advisories: RHSA-2014:2028
RedHat Security Advisories: RHSA-2014:2031
RedHat Security Advisories: RHSA-2015:0009
Common Vulnerability Exposure (CVE) ID: CVE-2014-9420
RedHat Security Advisories: RHSA-2015:1081
RedHat Security Advisories: RHSA-2015:1137
RedHat Security Advisories: RHSA-2015:1138
SuSE Security Announcement: SUSE-SU-2015:0178 (Google Search)
SuSE Security Announcement: openSUSE-SU-2015:0714 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2014-9584
BugTraq ID: 71883
Debian Security Information: DSA-3128 (Google Search)
RedHat Security Advisories: RHSA-2015:0864
Common Vulnerability Exposure (CVE) ID: CVE-2015-2041
BugTraq ID: 72729
Debian Security Information: DSA-3237 (Google Search)
SuSE Security Announcement: SUSE-SU-2015:1224 (Google Search)
SuSE Security Announcement: SUSE-SU-2015:1478 (Google Search)
SuSE Security Announcement: openSUSE-SU-2015:1382 (Google Search)
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2021 E-Soft Inc. All rights reserved.