OVAL Reference oval:org.opensuse.security:def:20169644

Oval Definition:

oval:org.opensuse.security:def:20169644

Revision Date:	2022-05-20	Version:	1
Title:	CVE-2016-9644
Description:	The __get_user_asm_ex macro in arch/x86/include/asm/uaccess.h in the Linux kernel 4.4.22 through 4.4.28 contains extended asm statements that are incompatible with the exception table, which allows local users to obtain root access on non-SMEP platforms via a crafted application. NOTE: this vulnerability exists because of incorrect backporting of the CVE-2016-9178 patch to older kernels.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	Mitre CVE-2016-9644 SUSE CVE-2016-9644
Platform(s):	SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3	Product(s):
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP1 is installed OR SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information kernel-default is not affected OR kernel-source is not affected
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information kernel-default is not affected OR kernel-source is not affected
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information kernel-default is not affected OR kernel-source is not affected
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP1 is installed OR SUSE Linux Enterprise Desktop 12 SP2 is installed OR SUSE Linux Enterprise Server 12 SP1 is installed OR SUSE Linux Enterprise Server 12 SP2 is installed AND kernel-default is not affected OR kernel-source is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND kernel-default is not affected OR kernel-default-base is not affected OR kernel-default-devel is not affected OR kernel-default-kgraft is not affected OR kernel-devel is not affected OR kernel-macros is not affected OR kernel-source is not affected
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP1 is installed OR SUSE Linux Enterprise Server 12 SP2 is installed AND kernel-default is not affected OR kernel-source is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND kernel-default is not affected OR kernel-default-base is not affected OR kernel-default-devel is not affected OR kernel-default-kgraft is not affected OR kernel-devel is not affected OR kernel-macros is not affected OR kernel-source is not affected

BACK