Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:SuSE Local Security Checks
Title:SUSE: Security Advisory (SUSE-SU-2019:0784-1)
Summary:The remote host is missing an update for the 'Linux Kernel' package(s) announced via the SUSE-SU-2019:0784-1 advisory.
The remote host is missing an update for the 'Linux Kernel' package(s) announced via the SUSE-SU-2019:0784-1 advisory.

Vulnerability Insight:
The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:
CVE-2019-2024: A use-after-free when disconnecting a source was fixed
which could lead to crashes. bnc#1129179).

CVE-2019-9213: expand_downwards in mm/mmap.c lacks a check for the mmap
minimum address, which made it easier for attackers to exploit kernel
NULL pointer dereferences on non-SMAP platforms. This is related to a
capability check for the wrong task (bnc#1128166).

CVE-2019-8980: A memory leak in the kernel_read_file function in
fs/exec.c allowed attackers to cause a denial of service (memory
consumption) by triggering vfs_read failures (bnc#1126209).

CVE-2019-3819: A flaw was found in the function hid_debug_events_read()
in drivers/hid/hid-debug.c file which may enter an infinite loop with
certain parameters passed from a userspace. A local privileged user
('root') can cause a system lock up and a denial of service. Versions
from v4.18 and newer are vulnerable (bnc#1123161).

CVE-2019-8912: af_alg_release() in crypto/af_alg.c neglects to set a
NULL value for a certain structure member, which leads to a
use-after-free in sockfs_setattr (bnc#1125907).

CVE-2019-7308: kernel/bpf/verifier.c performed undesirable out-of-bounds
speculation on pointer arithmetic in various cases, including cases of
different branches with different state or limits to sanitize, leading
to side-channel attacks (bnc#1124055).

CVE-2019-3459, CVE-2019-3460: The Bluetooth stack suffered from two
remote information leak vulnerabilities in the code that handles
incoming L2cap configuration packets (bsc#1120758).

CVE-2019-7221: Fixed a user-after-free vulnerability in the KVM
hypervisor related to the emulation of a preemption timer, allowing an
guest user/process to crash the host kernel. (bsc#1124732).

CVE-2019-7222: Fixed an information leakage in the KVM hypervisor
related to handling page fault exceptions, which allowed a guest
user/process to use this flaw to leak the host's stack memory contents
to a guest (bsc#1124735).

CVE-2019-6974: kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandled
reference counting because of a race condition, leading to a
use-after-free (bnc#1124728).

CVE-2018-20669: Missing access control checks in ioctl of gpu/drm/i915
driver were fixed which might have lead to information leaks.

The following non-security bugs were fixed:
6lowpan: iphc: reset mac_header after decompress to fix panic

9p: clear dangling pointers in p9stat_free (bsc#1051510).

9p locks: fix glock.client_id leak in do_lock (bsc#1051510).

9p/net: fix memory leak in p9_client_create (bsc#1051510).

9p/net: put a lower bound on msize (bsc#1051510).

9p: use inode->i_lock to protect i_size_write() under 32-bit

ACPI/APEI: Clear GHES block_status before panic() (bsc#1051510).

acpi / dev... [Please see the references for more information on the vulnerabilities]

Affected Software/OS:
'Linux Kernel' package(s) on SUSE Linux Enterprise Workstation Extension 15, SUSE Linux Enterprise Module for Open Buildservice Development Tools 15, SUSE Linux Enterprise Module for Live Patching 15, SUSE Linux Enterprise Module for Legacy Software 15, SUSE Linux Enterprise Module for Development Tools 15, SUSE Linux Enterprise Module for Basesystem 15, SUSE Linux Enterprise High Availability 15

Please install the updated package(s).

CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2019-2024
Common Vulnerability Exposure (CVE) ID: CVE-2019-3459
RedHat Security Advisories: RHSA-2019:2029
RedHat Security Advisories: RHSA-2019:2043
RedHat Security Advisories: RHSA-2019:3309
RedHat Security Advisories: RHSA-2019:3517
RedHat Security Advisories: RHSA-2020:0740
Common Vulnerability Exposure (CVE) ID: CVE-2019-3460
Common Vulnerability Exposure (CVE) ID: CVE-2019-3819
BugTraq ID: 106730
SuSE Security Announcement: openSUSE-SU-2019:1193 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2019-6974
BugTraq ID: 107127
RedHat Security Advisories: RHBA-2019:0959
RedHat Security Advisories: RHSA-2019:0818
RedHat Security Advisories: RHSA-2019:0833
RedHat Security Advisories: RHSA-2019:2809
RedHat Security Advisories: RHSA-2019:3967
RedHat Security Advisories: RHSA-2020:0103
Common Vulnerability Exposure (CVE) ID: CVE-2019-7221
[oss-security] 20190218 Linux kernel: three KVM bugs (CVE-2019-6974, CVE-2019-7221, CVE-2019-7222)
RedHat Security Advisories: RHSA-2019:4058
SuSE Security Announcement: SUSE-SA-2019:0203-1 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2019-7222
BugTraq ID: 106963
Common Vulnerability Exposure (CVE) ID: CVE-2019-7308
BugTraq ID: 106827
Common Vulnerability Exposure (CVE) ID: CVE-2019-8912
BugTraq ID: 107063
RedHat Security Advisories: RHSA-2020:0174
Common Vulnerability Exposure (CVE) ID: CVE-2019-8980
BugTraq ID: 107120
Common Vulnerability Exposure (CVE) ID: CVE-2019-9213
BugTraq ID: 107296
RedHat Security Advisories: RHSA-2019:0831
RedHat Security Advisories: RHSA-2019:1479
RedHat Security Advisories: RHSA-2019:1480
SuSE Security Announcement: openSUSE-SU-2019:1085 (Google Search)
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2021 E-Soft Inc. All rights reserved.