| Revision Date: | 2018-11-16 | Version: | 1 |
| Title: | Security update for the Linux Kernel (Live Patch 17 for SLE 12 SP2) (Important) |
| Description: |
This update for the Linux Kernel 4.4.103-92_56 fixes several issues.
The following security issues were fixed:
- CVE-2018-5391: Fixed a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may have caused a denial of service condition by sending specially crafted IP fragments. The current vulnerability (CVE-2018-5391) became exploitable in the Linux kernel with the increase of the IP fragment reassembly queue size (bsc#1103098). - CVE-2018-18386: The drivers/tty/n_tty.c allowed local attackers (who are able to access pseudo terminals) to hang/block further usage of any pseudo terminal devices due to an EXTPROC versus ICANON confusion in TIOCINQ (bsc#1112039).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1103098
1112039
CVE-2018-18386
CVE-2018-5391
|
| Platform(s): | SUSE Linux Enterprise Server 12 SP2-LTSS
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND kgraft-patch-4_4_103-92_56-default-11-2.1 is installed
|