| Revision Date: | 2020-01-22 | Version: | 1 |
| Title: | Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP1) (Important) |
| Description: |
This update for the Linux Kernel 4.12.14-197_18 fixes several issues.
The following security issues were fixed:
- CVE-2019-14896: A heap-based buffer overflow vulnerability was found in the Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP (bsc#1157157). - CVE-2019-14897: A stack-based buffer overflow was found in the Marvell WiFi chip driver. An attacker was able to cause a denial of service (system crash) or, possibly execute arbitrary code, when a STA works in IBSS mode (allows connecting stations together without the use of an AP) and connects to another STA (bsc#1157155).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1103203
1160467
1160468
CVE-2019-14896
CVE-2019-14897
|
| Platform(s): | SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND kernel-livepatch-4_12_14-197_18-default-4-2.1 is installed
|