SUSE-SU-2017:1898-1

Advisory lineage Upstream: 1 Downstream: 0
Upstream
CVE-2017-9445
Published: 19 Jul 2017, 09:13
Last modified:02 May 2025, 04:07

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

19 Jul 2017, 09:13
Published
Vulnerability first disclosed
02 May 2025, 04:07
Last Modified
Vulnerability information updated

Description

Security update for systemd, dracut This update for systemd and dracut fixes the following issues: Security issues fixed: - CVE-2017-9445: Possible out-of-bounds write triggered by a specially crafted TCP payload from a DNS server. (bsc#1045290) Non-security issues fixed in systemd: - Automounter issue in combination with NFS volumes (bsc#1040968) - Missing symbolic link for SAS device in /dev/disk/by-path (bsc#1040153) - Add minimal support for boot.d/* scripts in systemd-sysv-convert (bsc#1046750) Non-security issues fixed in dracut: - Bail out if module directory does not exist. (bsc#1043900) - Suppress bogus error message. (bsc#1032029) - Fix module force loading with systemd. (bsc#986216) - Ship udev files required by systemd. (bsc#1040153) - Ignore module resolution errors (e.g. with kgraft). (bsc#1037120)

Affected Systems

  • susedracut&distro=SUSE Linux Enterprise Desktop 12 SP2

    < 044.1-109.8.3

  • susedracut&distro=SUSE Linux Enterprise Server 12 SP2

    < 044.1-109.8.3

  • susedracut&distro=SUSE Linux Enterprise Server for Raspberry Pi 12 SP2

    < 044.1-109.8.3

  • susedracut&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2

    < 044.1-109.8.3

  • susesystemd&distro=SUSE Linux Enterprise Desktop 12 SP2

    < 228-150.7.1

  • susesystemd&distro=SUSE Linux Enterprise Server 12 SP2

    < 228-150.7.1

  • susesystemd&distro=SUSE Linux Enterprise Server for Raspberry Pi 12 SP2

    < 228-150.7.1

  • susesystemd&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2

    < 228-150.7.1

  • susesystemd&distro=SUSE Linux Enterprise Software Development Kit 12 SP2

    < 228-150.7.1

References (11)