[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2017:0471-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":82,"duplicates":83,"related":84,"reserved_at":9,"published_at":119,"modified_at":120,"state":9,"summary":121,"references_raw":123,"kevs":596,"epss":9,"epss_history":597,"metrics":598,"affected":599},"SUSE-SU-2017:0471-1","Security update for the Linux Kernel\n\n\n\nThe SUSE Linux Enterprise 12 GA LTSS kernel was updated to 3.12.61 to receive various security and bugfixes.\n\nThe following feature was implemented:\n\n- The ext2 filesystem got reenabled and supported to allow support for 'XIP' (Execute In Place) (FATE#320805).\n\n\nThe following security bugs were fixed:\n\n- CVE-2017-5551: The tmpfs filesystem implementation in the Linux kernel preserved the setgid bit during a setxattr call, which allowed local users to gain group privileges by leveraging the existence of a setgid program with restrictions on execute permissions (bsc#1021258).\n- CVE-2016-7097: The filesystem implementation in the Linux kernel preserved the setgid bit during a setxattr call, which allowed local users to gain group privileges by leveraging the existence of a setgid program with restrictions on execute permissions (bnc#995968).\n- CVE-2017-2583: A Linux kernel built with the Kernel-based Virtual Machine (CONFIG_KVM) support was vulnerable to an incorrect segment selector(SS) value error. A user/process inside guest could have used this flaw to crash the guest resulting in DoS or potentially escalate their privileges inside guest. (bsc#1020602).\n- CVE-2017-2584: arch/x86/kvm/emulate.c in the Linux kernel allowed local users to obtain sensitive information from kernel memory or cause a denial of service (use-after-free) via a crafted application that leverages instruction emulation for fxrstor, fxsave, sgdt, and sidt (bnc#1019851).\n- CVE-2016-10088: The sg implementation in the Linux kernel did not properly restrict write operations in situations where the KERNEL_DS option is set, which allowed local users to read or write to arbitrary kernel memory locations or cause a denial of service (use-after-free) by leveraging access to a /dev/sg device, related to block/bsg.c and drivers/scsi/sg.c.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-9576 (bnc#1017710).\n- CVE-2016-8645: The TCP stack in the Linux kernel mishandled skb truncation, which allowed local users to cause a denial of service (system crash) via a crafted application that made sendto system calls, related to net/ipv4/tcp_ipv4.c and net/ipv6/tcp_ipv6.c (bnc#1009969).\n- CVE-2016-8399: An elevation of privilege vulnerability in the kernel networking subsystem could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Moderate because it first requires compromising a privileged process and current compiler optimizations restrict access to the vulnerable code. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-31349935 (bnc#1014746).\n- CVE-2016-9806: Race condition in the netlink_dump function in net/netlink/af_netlink.c in the Linux kernel allowed local users to cause a denial of service (double free) or possibly have unspecified other impact via a crafted application that made sendmsg system calls, leading to a free operation associated with a new dump that started earlier than anticipated (bnc#1013540).\n- CVE-2016-9756: arch/x86/kvm/emulate.c in the Linux kernel did not properly initialize Code Segment (CS) in certain error cases, which allowed local users to obtain sensitive information from kernel stack memory via a crafted application (bnc#1013038).\n- CVE-2016-9793: The sock_setsockopt function in net/core/sock.c in the Linux kernel mishandled negative values of sk_sndbuf and sk_rcvbuf, which allowed local users to cause a denial of service (memory corruption and system crash) or possibly have unspecified other impact by leveraging the CAP_NET_ADMIN capability for a crafted setsockopt system call with the (1) SO_SNDBUFFORCE or (2) SO_RCVBUFFORCE option (bnc#1013531).\n- CVE-2016-7910: Use-after-free vulnerability in the disk_seqf_stop function in block/genhd.c in the Linux kernel allowed local users to gain privileges by leveraging the execution of a certain stop operation even if the corresponding start operation had failed (bnc#1010716).\n- CVE-2015-8962: Double free vulnerability in the sg_common_write function in drivers/scsi/sg.c in the Linux kernel allowed local users to gain privileges or cause a denial of service (memory corruption and system crash) by detaching a device during an SG_IO ioctl call (bnc#1010501).\n- CVE-2016-7913: The xc2028_set_config function in drivers/media/tuners/tuner-xc2028.c in the Linux kernel allowed local users to gain privileges or cause a denial of service (use-after-free) via vectors involving omission of the firmware name from a certain data structure (bnc#1010478).\n- CVE-2016-7911: Race condition in the get_task_ioprio function in block/ioprio.c in the Linux kernel allowed local users to gain privileges or cause a denial of service (use-after-free) via a crafted ioprio_get system call (bnc#1010711).\n- CVE-2015-8964: The tty_set_termios_ldisc function in drivers/tty/tty_ldisc.c in the Linux kernel allowed local users to obtain sensitive information from kernel memory by reading a tty data structure (bnc#1010507).\n- CVE-2015-8963: Race condition in kernel/events/core.c in the Linux kernel allowed local users to gain privileges or cause a denial of service (use-after-free) by leveraging incorrect handling of an swevent data structure during a CPU unplug operation (bnc#1010502).\n- CVE-2016-7914: The assoc_array_insert_into_terminal_node function in lib/assoc_array.c in the Linux kernel did not check whether a slot is a leaf, which allowed local users to obtain sensitive information from kernel memory or cause a denial of service (invalid pointer dereference and out-of-bounds read) via an application that uses associative-array data structures, as demonstrated by the keyutils test suite (bnc#1010475).\n- CVE-2016-8633: drivers/firewire/net.c in the Linux kernel allowed remote attackers to execute arbitrary code via crafted fragmented packets (bnc#1008833).\n- CVE-2016-9083: drivers/vfio/pci/vfio_pci.c in the Linux kernel allowed local users to bypass integer overflow checks, and cause a denial of service (memory corruption) or have unspecified other impact, by leveraging access to a vfio PCI device file for a VFIO_DEVICE_SET_IRQS ioctl call, aka a 'state machine confusion bug (bnc#1007197).\n- CVE-2016-9084: drivers/vfio/pci/vfio_pci_intrs.c in the Linux kernel misused the kzalloc function, which allowed local users to cause a denial of service (integer overflow) or have unspecified other impact by leveraging access to a vfio PCI device file (bnc#1007197).\n- CVE-2016-7042: The proc_keys_show function in security/keys/proc.c in the Linux kernel uses an incorrect buffer size for certain timeout data, which allowed local users to cause a denial of service (stack memory corruption and panic) by reading the /proc/keys file (bnc#1004517).\n- CVE-2015-8956: The rfcomm_sock_bind function in net/bluetooth/rfcomm/sock.c in the Linux kernel allowed local users to obtain sensitive information or cause a denial of service (NULL pointer dereference) via vectors involving a bind system call on a Bluetooth RFCOMM socket (bnc#1003925).\n- CVE-2016-8658: Stack-based buffer overflow in the brcmf_cfg80211_start_ap function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux kernel allowed local users to cause a denial of service (system crash) or possibly have unspecified other impact via a long SSID Information Element in a command to a Netlink socket (bnc#1004462).\n- CVE-2016-7425: The arcmsr_iop_message_xfer function in drivers/scsi/arcmsr/arcmsr_hba.c in the Linux kernel did not restrict a certain length field, which allowed local users to gain privileges or cause a denial of service (heap-based buffer overflow) via an ARCMSR_MESSAGE_WRITE_WQBUFFER control code (bnc#999932).\n- CVE-2016-6327: drivers/infiniband/ulp/srpt/ib_srpt.c in the Linux kernel allowed local users to cause a denial of service (NULL pointer dereference and system crash) by using an ABORT_TASK command to abort a device write operation (bnc#994748).\n- CVE-2016-6828: The tcp_check_send_head function in include/net/tcp.h in the Linux kernel did not properly maintain certain SACK state after a failed data copy, which allowed local users to cause a denial of service (tcp_xmit_retransmit_queue use-after-free and system crash) via a crafted SACK option (bnc#994296).\n- CVE-2016-5696: net/ipv4/tcp_input.c in the Linux kernel did not properly determine the rate of challenge ACK segments, which made it easier for remote attackers to hijack TCP sessions via a blind in-window attack (bnc#989152).\n- CVE-2016-6130: Race condition in the sclp_ctl_ioctl_sccb function in drivers/s390/char/sclp_ctl.c in the Linux kernel allowed local users to obtain sensitive information from kernel memory by changing a certain length value, aka a 'double fetch' vulnerability (bnc#987542).\n- CVE-2016-6480: Race condition in the ioctl_send_fib function in drivers/scsi/aacraid/commctrl.c in the Linux kernel allowed local users to cause a denial of service (out-of-bounds access or system crash) by changing a certain size value, aka a 'double fetch' vulnerability (bnc#991608).\n- CVE-2016-4998: The IPT_SO_SET_REPLACE setsockopt implementation in the netfilter subsystem in the Linux kernel allowed local users to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from kernel heap memory by leveraging in-container root access to provide a crafted offset value that leads to crossing a ruleset blob boundary (bnc#986362 bnc#986365).\n- CVE-2016-5828: The start_thread function in arch/powerpc/kernel/process.c in the Linux kernel on powerpc platforms mishandled transactional state, which allowed local users to cause a denial of service (invalid process state or TM Bad Thing exception, and system crash) or possibly have unspecified other impact by starting and suspending a transaction before an exec system call (bnc#986569).\n- CVE-2014-9904: The snd_compress_check_input function in sound/core/compress_offload.c in the ALSA subsystem in the Linux kernel did not properly check for an integer overflow, which allowed local users to cause a denial of service (insufficient memory allocation) or possibly have unspecified other impact via a crafted SNDRV_COMPRESS_SET_PARAMS ioctl call (bnc#986811).\n- CVE-2016-5829: Multiple heap-based buffer overflows in the hiddev_ioctl_usage function in drivers/hid/usbhid/hiddev.c in the Linux kernel allow local users to cause a denial of service or possibly have unspecified other impact via a crafted (1) HIDIOCGUSAGES or (2) HIDIOCSUSAGES ioctl call (bnc#986572).\n- CVE-2016-4470: The key_reject_and_link function in security/keys/key.c in the Linux kernel did not ensure that a certain data structure is initialized, which allowed local users to cause a denial of service (system crash) via vectors involving a crafted keyctl request2 command (bnc#984755).\n\nThe following non-security bugs were fixed:\n\n- base: make module_create_drivers_dir race-free (bnc#983977).\n- btrfs-8448-improve-performance-on-fsync-against-new-inode.patch: Disable (bsc#981597).\n- btrfs: account for non-CoW'd blocks in btrfs_abort_transaction (bsc#983619).\n- btrfs: be more precise on errors when getting an inode from disk (bsc#981038).\n- btrfs: do not create or leak aliased root while cleaning up orphans (bsc#994881).\n- btrfs: ensure that file descriptor used with subvol ioctls is a dir (bsc#999600).\n- btrfs: fix relocation incorrectly dropping data references (bsc#990384).\n- btrfs: handle quota reserve failure properly (bsc#1005666).\n- btrfs: improve performance on fsync against new inode after rename/unlink (bsc#981038).\n- btrfs: increment ctx->pos for every emitted or skipped dirent in readdir (bsc#981709).\n- btrfs: remove old tree_root dirent processing in btrfs_real_readdir() (bsc#981709).\n- cdc-acm: added sanity checking for probe() (bsc#993891).\n- ext2: Enable ext2 driver in config files (bsc#976195, fate#320805)\n- ext4: Add parameter for tuning handling of ext2 (bsc#976195).\n- ext4: Fixup handling for custom configs in tuning.\n- ftrace/x86: Set ftrace_stub to weak to prevent gcc from using short jumps to it (bsc#984419).\n- ipv6: Fix improper use or RCU in patches.kabi/ipv6-add-complete-rcu-protection-around-np-opt.kabi.patch. (bsc#961257)\n- ipv6: KABI workaround for ipv6: add complete rcu protection around np->opt.\n- kabi: prevent spurious modversion changes after bsc#982544 fix (bsc#982544).\n- kabi: reintroduce sk_filter (kabi).\n- kaweth: fix firmware download (bsc#993890).\n- kaweth: fix oops upon failed memory allocation (bsc#993890).\n- kgraft/iscsi-target: Do not block kGraft in iscsi_np kthread (bsc#1010612, fate#313296).\n- kgraft/xen: Do not block kGraft in xenbus kthread (bsc#1017410, fate#313296).\n- kgr: ignore zombie tasks during the patching (bnc#1008979).\n- mm/swap.c: flush lru pvecs on compound page arrival (bnc#983721).\n- mm: thp: fix SMP race condition between THP page fault and MADV_DONTNEED (VM Functionality, bnc#986445).\n- modsign: Print appropriate status message when accessing UEFI variable (bsc#958606).\n- mpi: Fix NULL ptr dereference in mpi_powm() [ver #3] (bsc#1011820).\n- mpt3sas: Fix panic when aer correct error occurred (bsc#997708, bsc#999943).\n- netfilter: allow logging fron non-init netns (bsc#970083).\n- netfilter: bridge: do not leak skb in error paths (bsc#982544).\n- netfilter: bridge: forward IPv6 fragmented packets (bsc#982544).\n- netfilter: bridge: Use __in6_dev_get rather than in6_dev_get in br_validate_ipv6 (bsc#982544).\n- nfs: Do not write enable new pages while an invalidation is proceeding (bsc#999584).\n- nfs: Fix a regression in the read() syscall (bsc#999584).\n- pci/aer: Clear error status registers during enumeration and restore (bsc#985978).\n- ppp: defer netns reference release for ppp channel (bsc#980371).\n- reiserfs: fix race in prealloc discard (bsc#987576).\n- scsi: ibmvfc: Fix I/O hang when port is not mapped (bsc#971989)\n- scsi: Increase REPORT_LUNS timeout (bsc#982282).\n- series.conf: move stray netfilter patches to the right section\n- squashfs3: properly handle dir_emit() failures (bsc#998795).\n- supported.conf: Add ext2\n- timers: Use proper base migration in add_timer_on() (bnc#993392).\n- tty: audit: Fix audit source (bsc#1016482).\n- tty: Prevent ldisc drivers from re-using stale tty fields (bnc#1010507).\n- usb: fix typo in wMaxPacketSize validation (bsc#991665).\n- usb: validate wMaxPacketValue entries in endpoint descriptors (bnc#991665).\n- xen: Fix refcnt regression in xen netback introduced by changes made for bug#881008 (bnc#978094)\n- xfs: allow lazy sb counter sync during filesystem freeze sequence (bsc#980560).\n- xfs: fixed signedness of error code in xfs_inode_buf_verify (bsc#1003153).\n- xfs: fix premature enospc on inode allocation (bsc#984148).\n- xfs: get rid of XFS_IALLOC_BLOCKS macros (bsc#984148).\n- xfs: get rid of XFS_INODE_CLUSTER_SIZE macros (bsc#984148).\n- xfs: refactor xlog_recover_process_data() (bsc#1019300).\n- xfs: Silence warnings in xfs_vm_releasepage() (bnc#915183 bsc#987565).\n- xhci: silence warnings in switch (bnc#991665).\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80],{"_key":15},"CVE-2014-9904",{"_key":17},"CVE-2015-8956",{"_key":19},"CVE-2015-8962",{"_key":21},"CVE-2015-8963",{"_key":23},"CVE-2015-8964",{"_key":25},"CVE-2016-10088",{"_key":27},"CVE-2016-4470",{"_key":29},"CVE-2016-4997",{"_key":31},"CVE-2016-5696",{"_key":33},"CVE-2016-5828",{"_key":35},"CVE-2016-5829",{"_key":37},"CVE-2016-6130",{"_key":39},"CVE-2016-6327",{"_key":41},"CVE-2016-6480",{"_key":43},"CVE-2016-6828",{"_key":45},"CVE-2016-7042",{"_key":47},"CVE-2016-7097",{"_key":49},"CVE-2016-7425",{"_key":51},"CVE-2016-7910",{"_key":53},"CVE-2016-7911",{"_key":55},"CVE-2016-7913",{"_key":57},"CVE-2016-7914",{"_key":59},"CVE-2016-8399",{"_key":61},"CVE-2016-8633",{"_key":63},"CVE-2016-8645",{"_key":65},"CVE-2016-8658",{"_key":67},"CVE-2016-9083",{"_key":69},"CVE-2016-9084",{"_key":71},"CVE-2016-9756",{"_key":73},"CVE-2016-9793",{"_key":75},"CVE-2016-9806",{"_key":77},"CVE-2017-2583",{"_key":79},"CVE-2017-2584",{"_key":81},"CVE-2017-5551",[],[],[85,86,87,88,89,90,91,92,93,94,95,96,97,98,99,100,101,102,103,104,105,106,107,108,109,110,111,112,113,114,115,116,117,118],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":55},{"_key":57},{"_key":59},{"_key":61},{"_key":63},{"_key":65},{"_key":67},{"_key":69},{"_key":71},{"_key":73},{"_key":75},{"_key":77},{"_key":79},{"_key":81},"2017-02-15T16:20:32Z","2026-02-04T03:58:41.927724Z",{"cisa_kev":122,"cisa_ransomware":122,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[124,130,135,139,143,147,151,155,159,163,167,171,175,179,183,187,191,195,199,203,207,211,215,219,223,227,231,235,239,243,247,251,255,259,263,267,271,275,279,283,287,291,295,299,303,307,311,315,319,323,327,331,335,339,343,347,351,355,359,363,367,371,375,379,383,387,391,395,399,403,407,411,415,419,423,427,431,435,439,443,447,451,455,459,464,468,472,476,480,484,488,492,496,500,504,508,512,516,520,524,528,532,536,540,544,548,552,556,560,564,568,572,576,580,584,588,592],{"url":125,"sources":126,"tags":128},"https://www.suse.com/support/update/announcement/2017/suse-su-20170471-1/",[127],"osv_suse",[129],"Advisory",{"url":131,"sources":132,"tags":133},"https://bugzilla.suse.com/1003153",[127],[134],"REPORT",{"url":136,"sources":137,"tags":138},"https://bugzilla.suse.com/1003925",[127],[134],{"url":140,"sources":141,"tags":142},"https://bugzilla.suse.com/1004462",[127],[134],{"url":144,"sources":145,"tags":146},"https://bugzilla.suse.com/1004517",[127],[134],{"url":148,"sources":149,"tags":150},"https://bugzilla.suse.com/1005666",[127],[134],{"url":152,"sources":153,"tags":154},"https://bugzilla.suse.com/1007197",[127],[134],{"url":156,"sources":157,"tags":158},"https://bugzilla.suse.com/1008833",[127],[134],{"url":160,"sources":161,"tags":162},"https://bugzilla.suse.com/1008979",[127],[134],{"url":164,"sources":165,"tags":166},"https://bugzilla.suse.com/1009969",[127],[134],{"url":168,"sources":169,"tags":170},"https://bugzilla.suse.com/1010040",[127],[134],{"url":172,"sources":173,"tags":174},"https://bugzilla.suse.com/1010475",[127],[134],{"url":176,"sources":177,"tags":178},"https://bugzilla.suse.com/1010478",[127],[134],{"url":180,"sources":181,"tags":182},"https://bugzilla.suse.com/1010501",[127],[134],{"url":184,"sources":185,"tags":186},"https://bugzilla.suse.com/1010502",[127],[134],{"url":188,"sources":189,"tags":190},"https://bugzilla.suse.com/1010507",[127],[134],{"url":192,"sources":193,"tags":194},"https://bugzilla.suse.com/1010612",[127],[134],{"url":196,"sources":197,"tags":198},"https://bugzilla.suse.com/1010711",[127],[134],{"url":200,"sources":201,"tags":202},"https://bugzilla.suse.com/1010716",[127],[134],{"url":204,"sources":205,"tags":206},"https://bugzilla.suse.com/1011820",[127],[134],{"url":208,"sources":209,"tags":210},"https://bugzilla.suse.com/1012422",[127],[134],{"url":212,"sources":213,"tags":214},"https://bugzilla.suse.com/1013038",[127],[134],{"url":216,"sources":217,"tags":218},"https://bugzilla.suse.com/1013531",[127],[134],{"url":220,"sources":221,"tags":222},"https://bugzilla.suse.com/1013540",[127],[134],{"url":224,"sources":225,"tags":226},"https://bugzilla.suse.com/1013542",[127],[134],{"url":228,"sources":229,"tags":230},"https://bugzilla.suse.com/1014746",[127],[134],{"url":232,"sources":233,"tags":234},"https://bugzilla.suse.com/1016482",[127],[134],{"url":236,"sources":237,"tags":238},"https://bugzilla.suse.com/1017410",[127],[134],{"url":240,"sources":241,"tags":242},"https://bugzilla.suse.com/1017589",[127],[134],{"url":244,"sources":245,"tags":246},"https://bugzilla.suse.com/1017710",[127],[134],{"url":248,"sources":249,"tags":250},"https://bugzilla.suse.com/1019300",[127],[134],{"url":252,"sources":253,"tags":254},"https://bugzilla.suse.com/1019851",[127],[134],{"url":256,"sources":257,"tags":258},"https://bugzilla.suse.com/1020602",[127],[134],{"url":260,"sources":261,"tags":262},"https://bugzilla.suse.com/1021258",[127],[134],{"url":264,"sources":265,"tags":266},"https://bugzilla.suse.com/881008",[127],[134],{"url":268,"sources":269,"tags":270},"https://bugzilla.suse.com/915183",[127],[134],{"url":272,"sources":273,"tags":274},"https://bugzilla.suse.com/958606",[127],[134],{"url":276,"sources":277,"tags":278},"https://bugzilla.suse.com/961257",[127],[134],{"url":280,"sources":281,"tags":282},"https://bugzilla.suse.com/970083",[127],[134],{"url":284,"sources":285,"tags":286},"https://bugzilla.suse.com/971989",[127],[134],{"url":288,"sources":289,"tags":290},"https://bugzilla.suse.com/976195",[127],[134],{"url":292,"sources":293,"tags":294},"https://bugzilla.suse.com/978094",[127],[134],{"url":296,"sources":297,"tags":298},"https://bugzilla.suse.com/980371",[127],[134],{"url":300,"sources":301,"tags":302},"https://bugzilla.suse.com/980560",[127],[134],{"url":304,"sources":305,"tags":306},"https://bugzilla.suse.com/981038",[127],[134],{"url":308,"sources":309,"tags":310},"https://bugzilla.suse.com/981597",[127],[134],{"url":312,"sources":313,"tags":314},"https://bugzilla.suse.com/981709",[127],[134],{"url":316,"sources":317,"tags":318},"https://bugzilla.suse.com/982282",[127],[134],{"url":320,"sources":321,"tags":322},"https://bugzilla.suse.com/982544",[127],[134],{"url":324,"sources":325,"tags":326},"https://bugzilla.suse.com/983619",[127],[134],{"url":328,"sources":329,"tags":330},"https://bugzilla.suse.com/983721",[127],[134],{"url":332,"sources":333,"tags":334},"https://bugzilla.suse.com/983977",[127],[134],{"url":336,"sources":337,"tags":338},"https://bugzilla.suse.com/984148",[127],[134],{"url":340,"sources":341,"tags":342},"https://bugzilla.suse.com/984419",[127],[134],{"url":344,"sources":345,"tags":346},"https://bugzilla.suse.com/984755",[127],[134],{"url":348,"sources":349,"tags":350},"https://bugzilla.suse.com/985978",[127],[134],{"url":352,"sources":353,"tags":354},"https://bugzilla.suse.com/986362",[127],[134],{"url":356,"sources":357,"tags":358},"https://bugzilla.suse.com/986365",[127],[134],{"url":360,"sources":361,"tags":362},"https://bugzilla.suse.com/986445",[127],[134],{"url":364,"sources":365,"tags":366},"https://bugzilla.suse.com/986569",[127],[134],{"url":368,"sources":369,"tags":370},"https://bugzilla.suse.com/986572",[127],[134],{"url":372,"sources":373,"tags":374},"https://bugzilla.suse.com/986811",[127],[134],{"url":376,"sources":377,"tags":378},"https://bugzilla.suse.com/986941",[127],[134],{"url":380,"sources":381,"tags":382},"https://bugzilla.suse.com/987542",[127],[134],{"url":384,"sources":385,"tags":386},"https://bugzilla.suse.com/987565",[127],[134],{"url":388,"sources":389,"tags":390},"https://bugzilla.suse.com/987576",[127],[134],{"url":392,"sources":393,"tags":394},"https://bugzilla.suse.com/989152",[127],[134],{"url":396,"sources":397,"tags":398},"https://bugzilla.suse.com/990384",[127],[134],{"url":400,"sources":401,"tags":402},"https://bugzilla.suse.com/991608",[127],[134],{"url":404,"sources":405,"tags":406},"https://bugzilla.suse.com/991665",[127],[134],{"url":408,"sources":409,"tags":410},"https://bugzilla.suse.com/993392",[127],[134],{"url":412,"sources":413,"tags":414},"https://bugzilla.suse.com/993890",[127],[134],{"url":416,"sources":417,"tags":418},"https://bugzilla.suse.com/993891",[127],[134],{"url":420,"sources":421,"tags":422},"https://bugzilla.suse.com/994296",[127],[134],{"url":424,"sources":425,"tags":426},"https://bugzilla.suse.com/994748",[127],[134],{"url":428,"sources":429,"tags":430},"https://bugzilla.suse.com/994881",[127],[134],{"url":432,"sources":433,"tags":434},"https://bugzilla.suse.com/995968",[127],[134],{"url":436,"sources":437,"tags":438},"https://bugzilla.suse.com/997708",[127],[134],{"url":440,"sources":441,"tags":442},"https://bugzilla.suse.com/998795",[127],[134],{"url":444,"sources":445,"tags":446},"https://bugzilla.suse.com/999584",[127],[134],{"url":448,"sources":449,"tags":450},"https://bugzilla.suse.com/999600",[127],[134],{"url":452,"sources":453,"tags":454},"https://bugzilla.suse.com/999932",[127],[134],{"url":456,"sources":457,"tags":458},"https://bugzilla.suse.com/999943",[127],[134],{"url":460,"sources":461,"tags":462},"https://www.suse.com/security/cve/CVE-2014-9904",[127],[463],"WEB",{"url":465,"sources":466,"tags":467},"https://www.suse.com/security/cve/CVE-2015-8956",[127],[463],{"url":469,"sources":470,"tags":471},"https://www.suse.com/security/cve/CVE-2015-8962",[127],[463],{"url":473,"sources":474,"tags":475},"https://www.suse.com/security/cve/CVE-2015-8963",[127],[463],{"url":477,"sources":478,"tags":479},"https://www.suse.com/security/cve/CVE-2015-8964",[127],[463],{"url":481,"sources":482,"tags":483},"https://www.suse.com/security/cve/CVE-2016-10088",[127],[463],{"url":485,"sources":486,"tags":487},"https://www.suse.com/security/cve/CVE-2016-4470",[127],[463],{"url":489,"sources":490,"tags":491},"https://www.suse.com/security/cve/CVE-2016-4997",[127],[463],{"url":493,"sources":494,"tags":495},"https://www.suse.com/security/cve/CVE-2016-5696",[127],[463],{"url":497,"sources":498,"tags":499},"https://www.suse.com/security/cve/CVE-2016-5828",[127],[463],{"url":501,"sources":502,"tags":503},"https://www.suse.com/security/cve/CVE-2016-5829",[127],[463],{"url":505,"sources":506,"tags":507},"https://www.suse.com/security/cve/CVE-2016-6130",[127],[463],{"url":509,"sources":510,"tags":511},"https://www.suse.com/security/cve/CVE-2016-6327",[127],[463],{"url":513,"sources":514,"tags":515},"https://www.suse.com/security/cve/CVE-2016-6480",[127],[463],{"url":517,"sources":518,"tags":519},"https://www.suse.com/security/cve/CVE-2016-6828",[127],[463],{"url":521,"sources":522,"tags":523},"https://www.suse.com/security/cve/CVE-2016-7042",[127],[463],{"url":525,"sources":526,"tags":527},"https://www.suse.com/security/cve/CVE-2016-7097",[127],[463],{"url":529,"sources":530,"tags":531},"https://www.suse.com/security/cve/CVE-2016-7425",[127],[463],{"url":533,"sources":534,"tags":535},"https://www.suse.com/security/cve/CVE-2016-7910",[127],[463],{"url":537,"sources":538,"tags":539},"https://www.suse.com/security/cve/CVE-2016-7911",[127],[463],{"url":541,"sources":542,"tags":543},"https://www.suse.com/security/cve/CVE-2016-7913",[127],[463],{"url":545,"sources":546,"tags":547},"https://www.suse.com/security/cve/CVE-2016-7914",[127],[463],{"url":549,"sources":550,"tags":551},"https://www.suse.com/security/cve/CVE-2016-8399",[127],[463],{"url":553,"sources":554,"tags":555},"https://www.suse.com/security/cve/CVE-2016-8633",[127],[463],{"url":557,"sources":558,"tags":559},"https://www.suse.com/security/cve/CVE-2016-8645",[127],[463],{"url":561,"sources":562,"tags":563},"https://www.suse.com/security/cve/CVE-2016-8658",[127],[463],{"url":565,"sources":566,"tags":567},"https://www.suse.com/security/cve/CVE-2016-9083",[127],[463],{"url":569,"sources":570,"tags":571},"https://www.suse.com/security/cve/CVE-2016-9084",[127],[463],{"url":573,"sources":574,"tags":575},"https://www.suse.com/security/cve/CVE-2016-9756",[127],[463],{"url":577,"sources":578,"tags":579},"https://www.suse.com/security/cve/CVE-2016-9793",[127],[463],{"url":581,"sources":582,"tags":583},"https://www.suse.com/security/cve/CVE-2016-9806",[127],[463],{"url":585,"sources":586,"tags":587},"https://www.suse.com/security/cve/CVE-2017-2583",[127],[463],{"url":589,"sources":590,"tags":591},"https://www.suse.com/security/cve/CVE-2017-2584",[127],[463],{"url":593,"sources":594,"tags":595},"https://www.suse.com/security/cve/CVE-2017-5551",[127],[463],[],[],[],[600,613,617,622,627,631,636,640,645,649,656],{"ecosystem":601,"name":602,"vendor":603,"product":604,"cpe_part":9,"purl_type":605,"purl_namespace":603,"purl_name":604,"source":9,"versions":606},"SUSE Linux Enterprise","kernel-default","suse","kernel-default&distro=SUSE Linux Enterprise Server 12-LTSS","rpm",[607],{"version":608,"is_range":609,"range_type":610,"version_start":9,"version_start_type":9,"version_end":611,"version_end_type":612,"fixed_in":9},"lt3_12_61_52_66_1",true,"ecosystem","3.12.61-52.66.1","excluding",{"ecosystem":601,"name":602,"vendor":603,"product":614,"cpe_part":9,"purl_type":605,"purl_namespace":603,"purl_name":614,"source":9,"versions":615},"kernel-default&distro=SUSE Linux Enterprise Server for SAP Applications 12",[616],{"version":608,"is_range":609,"range_type":610,"version_start":9,"version_start_type":9,"version_end":611,"version_end_type":612,"fixed_in":9},{"ecosystem":601,"name":618,"vendor":603,"product":619,"cpe_part":9,"purl_type":605,"purl_namespace":603,"purl_name":619,"source":9,"versions":620},"kernel-ec2","kernel-ec2&distro=SUSE Linux Enterprise Module for Public Cloud 12",[621],{"version":608,"is_range":609,"range_type":610,"version_start":9,"version_start_type":9,"version_end":611,"version_end_type":612,"fixed_in":9},{"ecosystem":601,"name":623,"vendor":603,"product":624,"cpe_part":9,"purl_type":605,"purl_namespace":603,"purl_name":624,"source":9,"versions":625},"kernel-source","kernel-source&distro=SUSE Linux Enterprise Server 12-LTSS",[626],{"version":608,"is_range":609,"range_type":610,"version_start":9,"version_start_type":9,"version_end":611,"version_end_type":612,"fixed_in":9},{"ecosystem":601,"name":623,"vendor":603,"product":628,"cpe_part":9,"purl_type":605,"purl_namespace":603,"purl_name":628,"source":9,"versions":629},"kernel-source&distro=SUSE Linux Enterprise Server for SAP Applications 12",[630],{"version":608,"is_range":609,"range_type":610,"version_start":9,"version_start_type":9,"version_end":611,"version_end_type":612,"fixed_in":9},{"ecosystem":601,"name":632,"vendor":603,"product":633,"cpe_part":9,"purl_type":605,"purl_namespace":603,"purl_name":633,"source":9,"versions":634},"kernel-syms","kernel-syms&distro=SUSE Linux Enterprise Server 12-LTSS",[635],{"version":608,"is_range":609,"range_type":610,"version_start":9,"version_start_type":9,"version_end":611,"version_end_type":612,"fixed_in":9},{"ecosystem":601,"name":632,"vendor":603,"product":637,"cpe_part":9,"purl_type":605,"purl_namespace":603,"purl_name":637,"source":9,"versions":638},"kernel-syms&distro=SUSE Linux Enterprise Server for SAP Applications 12",[639],{"version":608,"is_range":609,"range_type":610,"version_start":9,"version_start_type":9,"version_end":611,"version_end_type":612,"fixed_in":9},{"ecosystem":601,"name":641,"vendor":603,"product":642,"cpe_part":9,"purl_type":605,"purl_namespace":603,"purl_name":642,"source":9,"versions":643},"kernel-xen","kernel-xen&distro=SUSE Linux Enterprise Server 12-LTSS",[644],{"version":608,"is_range":609,"range_type":610,"version_start":9,"version_start_type":9,"version_end":611,"version_end_type":612,"fixed_in":9},{"ecosystem":601,"name":641,"vendor":603,"product":646,"cpe_part":9,"purl_type":605,"purl_namespace":603,"purl_name":646,"source":9,"versions":647},"kernel-xen&distro=SUSE Linux Enterprise Server for SAP Applications 12",[648],{"version":608,"is_range":609,"range_type":610,"version_start":9,"version_start_type":9,"version_end":611,"version_end_type":612,"fixed_in":9},{"ecosystem":601,"name":650,"vendor":603,"product":651,"cpe_part":9,"purl_type":605,"purl_namespace":603,"purl_name":651,"source":9,"versions":652},"kgraft-patch-SLE12_Update_19","kgraft-patch-SLE12_Update_19&distro=SUSE Linux Enterprise Server 12-LTSS",[653],{"version":654,"is_range":609,"range_type":610,"version_start":9,"version_start_type":9,"version_end":655,"version_end_type":612,"fixed_in":9},"lt1_2_1","1-2.1",{"ecosystem":601,"name":650,"vendor":603,"product":657,"cpe_part":9,"purl_type":605,"purl_namespace":603,"purl_name":657,"source":9,"versions":658},"kgraft-patch-SLE12_Update_19&distro=SUSE Linux Enterprise Server for SAP Applications 12",[659],{"version":654,"is_range":609,"range_type":610,"version_start":9,"version_start_type":9,"version_end":655,"version_end_type":612,"fixed_in":9}]