| Revision Date: | 2019-02-08 | Version: | 1 |
| Title: | Security update for the Linux Kernel (Live Patch 1 for SLE 12 SP4) (Important) |
| Description: |
This update for the Linux Kernel 4.12.14-95_3 fixes one issue.
The following security issue was fixed:
- CVE-2018-16884: A flaw was found in the Linux kernel's NFS41+ subsystem. NFS41+ shares mounted in different network namespaces at the same time could make bc_svc_process() use wrong back-channel IDs and cause a use-after-free vulnerability. Thus a malicious container user can cause a host kernel memory corruption and a system panic. Due to the nature of the flaw, privilege escalation cannot be fully ruled out (bsc#1119947).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1119947
CVE-2018-16884
SUSE-SU-2019:0298-1
|
| Platform(s): | SUSE Linux Enterprise Live Patching 12 SP4
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Live Patching 12 SP4 is installed AND kgraft-patch-4_12_14-95_3-default-2-2.1 is installed
|