Oval Definition:oval:org.opensuse.security:def:83066
Revision Date:2020-01-22Version:1
Title:Security update for the Linux Kernel (Live Patch 28 for SLE 12 SP2) (Important)
Description:

This update for the Linux Kernel 4.4.121-92_104 fixes several issues.

The following security issues were fixed:

- CVE-2019-14896: A heap-based buffer overflow vulnerability was found in the Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP (bsc#1157157). - CVE-2019-14897: A stack-based buffer overflow was found in the Marvell WiFi chip driver. An attacker was able to cause a denial of service (system crash) or, possibly execute arbitrary code, when a STA works in IBSS mode (allows connecting stations together without the use of an AP) and connects to another STA (bsc#1157155).
Family:unixClass:patch
Status:Reference(s):1160467
1160468
CVE-2019-14896
CVE-2019-14897
Platform(s):SUSE Linux Enterprise Server 12 SP2-ESPOS
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND kgraft-patch-4_4_121-92_104-default-8-2.1 is installed
  • BACK