Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:SuSE Local Security Checks
Title:SUSE: Security Advisory (SUSE-SU-2017:0333-1)
Summary:The remote host is missing an update for the 'Linux Kernel' package(s) announced via the SUSE-SU-2017:0333-1 advisory.
The remote host is missing an update for the 'Linux Kernel' package(s) announced via the SUSE-SU-2017:0333-1 advisory.

Vulnerability Insight:
The SUSE Linux Enterprise 11 SP2 LTSS kernel was updated to receive various security and bugfixes.
This is the last planned LTSS kernel update for the SUSE Linux Enterprise Server 11 SP2 LTSS.
The following security bugs were fixed:
- CVE-2016-10088: The sg implementation in the Linux kernel did not
properly restrict write operations in situations where the KERNEL_DS
option is set, which allowed local users to read or write to arbitrary
kernel memory locations or cause a denial of service (use-after-free) by
leveraging access to a /dev/sg device, related to block/bsg.c and
drivers/scsi/sg.c. NOTE: this vulnerability exists because of an
incomplete fix for CVE-2016-9576 (bnc#1017710).
- CVE-2004-0230: TCP, when using a large Window Size, made it easier for
remote attackers to guess sequence numbers and cause a denial of service
(connection loss) to persistent TCP connections by repeatedly injecting
a TCP RST packet, especially in protocols that use long-lived
connections, such as BGP (bnc#969340).
- CVE-2016-8632: The tipc_msg_build function in net/tipc/msg.c in the
Linux kernel did not validate the relationship between the minimum
fragment length and the maximum packet size, which allowed local users
to gain privileges or cause a denial of service (heap-based buffer
overflow) by leveraging the CAP_NET_ADMIN capability (bnc#1008831).
- CVE-2016-8399: An out of bounds read in the ping protocol handler could
have lead to information disclosure (bsc#1014746).
- CVE-2016-9793: The sock_setsockopt function in net/core/sock.c in the
Linux kernel mishandled negative values of sk_sndbuf and sk_rcvbuf,
which allowed local users to cause a denial of service (memory
corruption and system crash) or possibly have unspecified other impact
by leveraging the CAP_NET_ADMIN capability for a crafted setsockopt
system call with the (1) SO_SNDBUFFORCE or (2) SO_RCVBUFFORCE option
- CVE-2012-6704: The sock_setsockopt function in net/core/sock.c in the
Linux kernel mishandled negative values of sk_sndbuf and sk_rcvbuf,
which allowed local users to cause a denial of service (memory
corruption and system crash) or possibly have unspecified other impact
by leveraging the CAP_NET_ADMIN capability for a crafted setsockopt
system call with the (1) SO_SNDBUF or (2) SO_RCVBUF option (bnc#1013542).
- CVE-2016-9756: arch/x86/kvm/emulate.c in the Linux kernel did not
properly initialize Code Segment (CS) in certain error cases, which
allowed local users to obtain sensitive information from kernel stack
memory via a crafted application (bnc#1013038).
- CVE-2016-3841: The IPv6 stack in the Linux kernel mishandled options
data, which allowed local users to gain privileges or cause a denial of
service (use-after-free and system crash) via a crafted sendmsg system
call (bnc#992566).
- CVE-2016-9685: Multiple memory leaks in error paths in
fs/xfs/xfs_attr_list.c in ... [Please see the references for more information on the vulnerabilities]

Affected Software/OS:
'Linux Kernel' package(s) on SUSE Linux Enterprise Server 11-SP2, SUSE Linux Enterprise Debuginfo 11-SP2

Please install the updated package(s).

CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2004-0230
BugTraq ID: 10183
Bugtraq: 20040425 Perl code exploting TCP not checking RST ACK. (Google Search)
Cert/CC Advisory: TA04-111A
CERT/CC vulnerability note: VU#415294
Cisco Security Advisory: 20040420 TCP Vulnerabilities in Multiple IOS-Based Cisco Products
HPdes Security Advisory: HPSBST02161
HPdes Security Advisory: SSRT061264
HPdes Security Advisory: SSRT4696
Microsoft Security Bulletin: MS05-019
Microsoft Security Bulletin: MS06-064
NETBSD Security Advisory: NetBSD-SA2004-006
SCO Security Bulletin: SCOSA-2005.14
SCO Security Bulletin: SCOSA-2005.3
SCO Security Bulletin: SCOSA-2005.9
SGI Security Advisory: 20040403-01-A
XForce ISS Database: tcp-rst-dos(15886)
Common Vulnerability Exposure (CVE) ID: CVE-2012-6704
BugTraq ID: 95135
Common Vulnerability Exposure (CVE) ID: CVE-2013-4312
BugTraq ID: 82986
Debian Security Information: DSA-3448 (Google Search)
Debian Security Information: DSA-3503 (Google Search)
RedHat Security Advisories: RHSA-2016:0855
RedHat Security Advisories: RHSA-2016:2574
RedHat Security Advisories: RHSA-2016:2584
Common Vulnerability Exposure (CVE) ID: CVE-2015-1350
BugTraq ID: 76075
Common Vulnerability Exposure (CVE) ID: CVE-2015-7513
BugTraq ID: 79901
Debian Security Information: DSA-3434 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2015-7833
BugTraq ID: 77030
Bugtraq: 20151007 Re: Local RedHat Enterprise Linux DoS - RHEL 7.1 Kernel crashes on invalid USB device descriptors (usbvision driver) (Google Search)
Debian Security Information: DSA-3396 (Google Search)
Debian Security Information: DSA-3426 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:1937 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:1985 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:2105 (Google Search)
SuSE Security Announcement: openSUSE-SU-2016:2184 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2015-8956
BugTraq ID: 93326
Common Vulnerability Exposure (CVE) ID: CVE-2015-8962
BugTraq ID: 94187
Common Vulnerability Exposure (CVE) ID: CVE-2015-8964
BugTraq ID: 94138
Common Vulnerability Exposure (CVE) ID: CVE-2016-0823
BugTraq ID: 84265
Common Vulnerability Exposure (CVE) ID: CVE-2016-1583
BugTraq ID: 91157
Debian Security Information: DSA-3607 (Google Search)
RedHat Security Advisories: RHSA-2016:2124
RedHat Security Advisories: RHSA-2016:2766
RedHat Security Advisories: RHSA-2017:2760
SuSE Security Announcement: SUSE-SU-2016:1596 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:1672 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:1696 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:1961 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:1994 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:1995 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:2000 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:2002 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:2005 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:2006 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:2007 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:2009 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:2010 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:2014 (Google Search)
SuSE Security Announcement: openSUSE-SU-2016:1641 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2016-2187
BugTraq ID: 85425
Common Vulnerability Exposure (CVE) ID: CVE-2016-2189
Common Vulnerability Exposure (CVE) ID: CVE-2016-3841
BugTraq ID: 92227
RedHat Security Advisories: RHSA-2016:2695
Common Vulnerability Exposure (CVE) ID: CVE-2016-4470
RedHat Security Advisories: RHSA-2016:1532
RedHat Security Advisories: RHSA-2016:1539
RedHat Security Advisories: RHSA-2016:1541
RedHat Security Advisories: RHSA-2016:1657
RedHat Security Advisories: RHSA-2016:2006
RedHat Security Advisories: RHSA-2016:2074
RedHat Security Advisories: RHSA-2016:2076
RedHat Security Advisories: RHSA-2016:2128
RedHat Security Advisories: RHSA-2016:2133
SuSE Security Announcement: SUSE-SU-2016:1998 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:1999 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:2001 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:2003 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:2011 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:2018 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2016-4482
BugTraq ID: 90029
SuSE Security Announcement: SUSE-SU-2016:1690 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2016-4485
BugTraq ID: 90015
Common Vulnerability Exposure (CVE) ID: CVE-2016-4565
BugTraq ID: 90301
RedHat Security Advisories: RHSA-2016:1277
RedHat Security Advisories: RHSA-2016:1301
RedHat Security Advisories: RHSA-2016:1341
RedHat Security Advisories: RHSA-2016:1406
RedHat Security Advisories: RHSA-2016:1489
RedHat Security Advisories: RHSA-2016:1581
RedHat Security Advisories: RHSA-2016:1617
RedHat Security Advisories: RHSA-2016:1640
RedHat Security Advisories: RHSA-2016:1814
Common Vulnerability Exposure (CVE) ID: CVE-2016-4569
BugTraq ID: 90347
Common Vulnerability Exposure (CVE) ID: CVE-2016-4578
BugTraq ID: 90535
Common Vulnerability Exposure (CVE) ID: CVE-2016-4580
BugTraq ID: 90528
Common Vulnerability Exposure (CVE) ID: CVE-2016-4805
BugTraq ID: 90605
Common Vulnerability Exposure (CVE) ID: CVE-2016-4913
BugTraq ID: 90730
RedHat Security Advisories: RHSA-2018:3083
RedHat Security Advisories: RHSA-2018:3096
Common Vulnerability Exposure (CVE) ID: CVE-2016-4997
BugTraq ID: 91451
RedHat Security Advisories: RHSA-2016:1847
RedHat Security Advisories: RHSA-2016:1875
RedHat Security Advisories: RHSA-2016:1883
SuSE Security Announcement: SUSE-SU-2016:1709 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:1710 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:2174 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:2177 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:2178 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:2179 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:2180 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:2181 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2016-4998
RedHat Security Advisories: RHSA-2017:0036
Common Vulnerability Exposure (CVE) ID: CVE-2016-5244
BugTraq ID: 91021
Common Vulnerability Exposure (CVE) ID: CVE-2016-5829
BugTraq ID: 91450
Debian Security Information: DSA-3616 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:2175 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2016-6480
BugTraq ID: 92214
Bugtraq: 20160801 [CVE-2016-6480] Double-Fetch Vulnerability in Linux-4.5/drivers/scsi/aacraid/commctrl.c (Google Search)
RedHat Security Advisories: RHSA-2017:0817
SuSE Security Announcement: SUSE-SU-2016:2230 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2016-6828
BugTraq ID: 92452
RedHat Security Advisories: RHSA-2017:0086
RedHat Security Advisories: RHSA-2017:0091
RedHat Security Advisories: RHSA-2017:0113
Common Vulnerability Exposure (CVE) ID: CVE-2016-7042
BugTraq ID: 93544
RedHat Security Advisories: RHSA-2017:1842
RedHat Security Advisories: RHSA-2017:2077
RedHat Security Advisories: RHSA-2017:2669
Common Vulnerability Exposure (CVE) ID: CVE-2016-7097
BugTraq ID: 92659
Common Vulnerability Exposure (CVE) ID: CVE-2016-7117
BugTraq ID: 93304
RedHat Security Advisories: RHSA-2016:2962
RedHat Security Advisories: RHSA-2017:0031
RedHat Security Advisories: RHSA-2017:0065
RedHat Security Advisories: RHSA-2017:0196
RedHat Security Advisories: RHSA-2017:0215
RedHat Security Advisories: RHSA-2017:0216
RedHat Security Advisories: RHSA-2017:0217
RedHat Security Advisories: RHSA-2017:0270
Common Vulnerability Exposure (CVE) ID: CVE-2016-7425
BugTraq ID: 93037
Common Vulnerability Exposure (CVE) ID: CVE-2016-7910
BugTraq ID: 94135
RedHat Security Advisories: RHSA-2017:0892
RedHat Security Advisories: RHSA-2017:1297
RedHat Security Advisories: RHSA-2017:1298
RedHat Security Advisories: RHSA-2017:1308
Common Vulnerability Exposure (CVE) ID: CVE-2016-7911
Common Vulnerability Exposure (CVE) ID: CVE-2016-7916
Common Vulnerability Exposure (CVE) ID: CVE-2016-8399
BugTraq ID: 94708
RedHat Security Advisories: RHSA-2017:0869
RedHat Security Advisories: RHSA-2017:2930
RedHat Security Advisories: RHSA-2017:2931
Common Vulnerability Exposure (CVE) ID: CVE-2016-8632
BugTraq ID: 94211
Common Vulnerability Exposure (CVE) ID: CVE-2016-8633
BugTraq ID: 94149
RedHat Security Advisories: RHSA-2018:0676
RedHat Security Advisories: RHSA-2018:1062
RedHat Security Advisories: RHSA-2019:1170
RedHat Security Advisories: RHSA-2019:1190
Common Vulnerability Exposure (CVE) ID: CVE-2016-8646
BugTraq ID: 94309
Common Vulnerability Exposure (CVE) ID: CVE-2016-9555
BugTraq ID: 94479
RedHat Security Advisories: RHSA-2017:0307
SuSE Security Announcement: SUSE-SU-2016:3096 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:3113 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:3116 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:3117 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:3169 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:3183 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:3197 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:3205 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:3206 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:3247 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2016-9576
BugTraq ID: 94821
SuSE Security Announcement: SUSE-SU-2016:3146 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:3188 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:3203 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:3217 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:3248 (Google Search)
SuSE Security Announcement: SUSE-SU-2016:3252 (Google Search)
SuSE Security Announcement: openSUSE-SU-2016:3085 (Google Search)
SuSE Security Announcement: openSUSE-SU-2016:3086 (Google Search)
SuSE Security Announcement: openSUSE-SU-2016:3118 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2016-9685
BugTraq ID: 94593
Common Vulnerability Exposure (CVE) ID: CVE-2016-9756
BugTraq ID: 94615
SuSE Security Announcement: openSUSE-SU-2017:0002 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2016-9793
BugTraq ID: 94655
RedHat Security Advisories: RHSA-2017:0931
RedHat Security Advisories: RHSA-2017:0932
RedHat Security Advisories: RHSA-2017:0933
Common Vulnerability Exposure (CVE) ID: CVE-2017-5551
BugTraq ID: 95717
Debian Security Information: DSA-3791 (Google Search)
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2021 E-Soft Inc. All rights reserved.