Oval Definition:oval:org.mitre.oval:def:25233
Revision Date:2014-09-08Version:4
Title:SUSE-SU-2014:0667-1 -- Security update for Linux Kernel
Description:The SUSE Linux Enterprise 11 Service Pack 3 kernel was updated to fix thefollowing severe security issues: * CVE-2014-1737: The raw_cmd_copyin function in drivers/block/floppy.cin the Linux kernel through 3.14.3 does not properly handle errorconditions during processing of an FDRAWCMD ioctl call, which allows localusers to trigger kfree operations and gain privileges by leveraging writeaccess to a /dev/fd device. (bnc#875798) * CVE-2014-1738: The raw_cmd_copyout function indrivers/block/floppy.c in the Linux kernel through 3.14.3 does notproperly restrict access to certain pointers during processing of anFDRAWCMD ioctl call, which allows local users to obtain sensitiveinformation from kernel heap memory by leveraging write access to a/dev/fd device. (bnc#875798) * CVE-2014-0196: The n_tty_write function in drivers/tty/n_tty.c inthe Linux kernel through 3.14.3 does not properly manage tty driver accessin the "LECHO & !OPOST" case, which allows local users to cause a denialof service (memory corruption and system crash) or gain privileges bytriggering a race condition involving read and write operations with longstrings. (bnc#875690)
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2014-0196
CVE-2014-1737
CVE-2014-1738
SUSE-SU-2014:0667-1
Platform(s):SUSE Linux Enterprise Desktop 11
SUSE Linux Enterprise Server 11
Product(s):Linux Kernel
Definition Synopsis
  • SUSE Linux Enterprise Server 11 and SUSE Linux Enterprise Desktop 11 release section
  • Operation system section
  • SUSE Linux Enterprise Server 11.x is installed
  • OR SUSE Linux Enterprise Desktop 11.x is installed
  • AND Packages match section
  • kernel-default RPM is earlier than 0:3.0.101-0.29.1
  • OR kernel-default-base RPM is earlier than 0:3.0.101-0.29.1
  • OR kernel-default-devel RPM is earlier than 0:3.0.101-0.29.1
  • OR kernel-source RPM is earlier than 0:3.0.101-0.29.1
  • OR kernel-syms RPM is earlier than 0:3.0.101-0.29.1
  • OR kernel-trace-devel RPM is earlier than 0:3.0.101-0.29.1
  • OR kernel-xen RPM is earlier than 0:3.0.101-0.29.1
  • OR kernel-xen-base RPM is earlier than 0:3.0.101-0.29.1
  • OR kernel-xen-devel RPM is earlier than 0:3.0.101-0.29.1
  • OR xen-kmp-default RPM is earlier than 0:4.2.4_02_3.0.101_0.29-0.7.24
  • OR kernel-pae RPM is earlier than 0:3.0.101-0.29.1
  • OR kernel-pae-base RPM is earlier than 0:3.0.101-0.29.1
  • OR kernel-pae-devel RPM is earlier than 0:3.0.101-0.29.1
  • OR xen-kmp-pae RPM is earlier than 0:4.2.4_02_3.0.101_0.29-0.7.24
  • SUSE Linux Enterprise Server 11 release section
  • SUSE Linux Enterprise Server 11.x is installed
  • AND Packages match section
  • kernel-trace RPM is earlier than 0:3.0.101-0.29.1
  • OR kernel-trace-base RPM is earlier than 0:3.0.101-0.29.1
  • OR kernel-ec2 RPM is earlier than 0:3.0.101-0.29.1
  • OR kernel-ec2-base RPM is earlier than 0:3.0.101-0.29.1
  • OR kernel-ec2-devel RPM is earlier than 0:3.0.101-0.29.1
  • SUSE Linux Enterprise Desktop 11 release section
  • SUSE Linux Enterprise Desktop 11.x is installed
  • AND Packages match section
  • kernel-default-extra RPM is earlier than 0:3.0.101-0.29.1
  • OR kernel-xen-extra RPM is earlier than 0:3.0.101-0.29.1
  • OR kernel-pae-extra RPM is earlier than 0:3.0.101-0.29.1
    • BACK