[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2017:2956-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":48,"duplicates":49,"related":50,"reserved_at":9,"published_at":68,"modified_at":69,"state":9,"summary":70,"references_raw":72,"kevs":669,"epss":9,"epss_history":670,"metrics":671,"affected":672},"SUSE-SU-2017:2956-1","Security update for the Linux Kernel\n\n\nThe SUSE Linux Enterprise 12 SP2 RT kernel was updated to 4.4.88 to receive various security and bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2017-1000365: The Linux Kernel imposes a size restriction on the\n  arguments and environmental strings passed through RLIMIT_STACK/RLIM_INFINITY\n  (1/4 of the size), but did not take the argument and environment pointers into\n  account, which allowed attackers to bypass this limitation (bnc#1039354)\n- CVE-2017-1000112: Prevent race condition in net-packet code that could have\n  been exploited by unprivileged users to gain root access. (bnc#1052311)\n- CVE-2017-1000251: The native Bluetooth stack was vulnerable to a stack\n  overflow vulnerability in the processing of L2CAP configuration\n  responses resulting in remote code execution in kernel space (bnc#1057389)\n- CVE-2017-14051: An integer overflow in the qla2x00_sysfs_write_optrom_ctl\n  function in drivers/scsi/qla2xxx/qla_attr.c allowed local users to cause a\n  denial of service (memory corruption and system crash) by leveraging root\n  access (bnc#1056588)\n- CVE-2017-8831: The saa7164_bus_get function allowed local users to cause a\n  denial of service (out-of-bounds array access) or possibly have unspecified\n  other impact by changing a certain sequence-number value, aka a 'double fetch'\n  vulnerability (bnc#1037994)\n- CVE-2017-1000252: Wrong gsi values via KVM_IRQFD allowed unprivileged users\n  using KVM to cause DoS on Intel systems (bsc#1058038).\n- CVE-2017-1000111: Prevent in packet_set_ring on PACKET_RESERVE (bsc#1052365).\n- CVE-2017-10810: Memory leak in the virtio_gpu_object_create function in\n  drivers/gpu/drm/virtio/virtgpu_object.c allowed attackers to cause a denial of\n  service (memory consumption) by triggering object-initialization failures\n  (bnc#1047277).\n- CVE-2017-11472: The acpi_ns_terminate() function did not flush the operand\n  cache and causes a kernel stack dump, which allowed local users to obtain\n  sensitive information from kernel memory and bypass the KASLR protection\n  mechanism via a crafted ACPI table (bnc#1049580).\n- CVE-2017-11473: Buffer overflow in the mp_override_legacy_irq() function\n  allowed local users to gain privileges via a crafted ACPI table (bnc#1049603).\n- CVE-2017-12134: The xen_biovec_phys_mergeable function might have allow local\n  OS guest users to corrupt block device data streams and consequently obtain\n  sensitive memory information, cause a denial of service, or gain host OS\n  privileges by leveraging incorrect block IO merge-ability calculation\n  (bnc#1051790).\n- CVE-2017-12154: L2 guest could have accessed hardware(L0) CR8 register and\n  crashed the host system (bsc#1058507).\n- CVE-2017-14106: The tcp_disconnect function allowed local users to cause a\n  denial of service (__tcp_select_window divide-by-zero error and system crash)\n  by triggering a disconnect within a certain tcp_recvmsg code path (bnc#1056982).\n- CVE-2017-7518: Faulty debug exception via syscall emulation allowed non-linux\n  guests to escalate their privileges in the guest (bsc#1045922).\n- CVE-2017-7533: Race condition in the fsnotify implementation allowed local\n  users to gain privileges or cause a denial of service (memory corruption) via a\n  crafted application that leverages simultaneous execution of the\n  inotify_handle_event and vfs_rename functions (bsc#1049483).\n- CVE-2017-7541: The brcmf_cfg80211_mgmt_tx function allowed local users to\n  cause a denial of service (buffer overflow and system crash) or possibly gain\n  privileges via a crafted NL80211_CMD_FRAME Netlink packet (bsc#1049645).\n- CVE-2017-7542: The ip6_find_1stfragopt function allowed local users to cause\n  a denial of service (integer overflow and infinite loop) by leveraging the\n  ability to open a raw socket (bsc#1049882).\n\nThe following non-security bugs were fixed:\n\n- ACPI / processor: Avoid reserving IO regions too early (bsc#1051478).\n- ACPI / scan: Prefer devices without _HID for _ADR matching.\n- ALSA: fm801: Initialize chip after IRQ handler is registered (bsc#1031717).\n- ALSA: hda - Add stereo mic quirk for Lenovo G50-70 (17aa:3978) (bsc#1020657).\n- ALSA: hda - Fix endless loop of codec configure (bsc#1031717).\n- ALSA: hda - Implement mic-mute LED mode enum (bsc#1055013).\n- ALSA: hda - set input_path bitmap to zero after moving it to new place (bsc#1031717).\n- ALSA: hda/realtek - Add support headphone Mic for ALC221 of HP platform (bsc#1024405).\n- ALSA: ice1712: Add support for STAudio ADCIII (bsc#1048934).\n- ALSA: usb-audio: Apply sample rate quirk to Sennheiser headset (bsc#1052580).\n- Add 'shutdown' to 'struct class' (bsc#1053117).\n- Bluetooth: bnep: fix possible might sleep error in bnep_session (bsc#1031784).\n- Bluetooth: cmtp: fix possible might sleep error in cmtp_session (bsc#1031784).\n- Bluetooth: hidp: fix possible might sleep error in hidp_session_thread (bsc#1031784).\n- Drivers: hv: Fix the bug in generating the guest ID.\n- Drivers: hv: util: Fix a typo.\n- Drivers: hv: vmbus: Get the current time from the current clocksource (bnc#1044112, bnc#1042778, bnc#1029693).\n- Drivers: hv: vmbus: Move the code to signal end of message.\n- Drivers: hv: vmbus: Move the definition of generate_guest_id().\n- Drivers: hv: vmbus: Move the definition of hv_x64_msr_hypercall_contents.\n- Drivers: hv: vmbus: Restructure the clockevents code.\n- Fix kABI breakage by KVM CVE fix (bsc#1045922).\n- IB/hfi1: Wait for QSFP modules to initialize (bsc#1019151).\n- Input: gpio-keys - fix check for disabling unsupported keys (bsc#1031717).\n- KVM: nVMX: Fix nested VPID vmx exec control (bsc#1051478).\n- KVM: nVMX: fix msr bitmaps to prevent L2 from accessing L0 x2APIC (bsc#1051478).\n- KVM: x86: avoid simultaneous queueing of both IRQ and SMI (bsc#1051478).\n- MD: fix sleep in atomic (bsc#1040351).\n- More Git-commit header fixups No functional change intended.\n- NFS: Cache aggressively when file is open for writing (bsc#1033587).\n- NFS: Do not flush caches for a getattr that races with writeback (bsc#1033587).\n- NFS: flush data when locking a file to ensure cache coherence for mmap (bsc#981309).\n- NFS: invalidate file size when taking a lock (git-fixes).\n- NFS: only invalidate dentrys that are clearly invalid (bsc#1047118).\n- PCI / PM: Fix native PME handling during system suspend/resume (bsc#1051478).\n- PCI: Add Mellanox device IDs (bsc#1051478).\n- PCI: Convert Mellanox broken INTx quirks to be for listed devices only (bsc#1051478).\n- PCI: Correct PCI_STD_RESOURCE_END usage (bsc#1051478).\n- PCI: Enable ECRC only if device supports it (bsc#1051478).\n- PCI: Support INTx masking on ConnectX-4 with firmware x.14.1100+ (bsc#1051478).\n- PCI: dwc: Fix uninitialized variable in dw_handle_msi_irq() (bsc#1051478).\n- PCI: dwc: dra7xx: Use RW1C for IRQSTATUS_MSI and IRQSTATUS_MAIN (bsc#1051478).\n- PM / Hibernate: Fix scheduling while atomic during hibernation (bsc#1051059).\n- Revert '/proc/iomem: only expose physical resource addresses to privileged users' (kabi).\n- Revert 'ACPI / video: Add force_native quirk for HP Pavilion dv6' (bsc#1031717).\n- Revert 'Add 'shutdown' to 'struct class'.' (kabi).\n- Revert 'KVM: x86: fix emulation of RSM and IRET instructions' (kabi).\n- Revert 'Make file credentials available to the seqfile interfaces' (kabi).\n- Revert 'mm/list_lru.c: fix list_lru_count_node() to be race free' (kabi).\n- Revert 'powerpc/numa: Fix percpu allocations to be NUMA aware' (bsc#1048914).\n- Revert 'tpm: Issue a TPM2_Shutdown for TPM2 devices.' (kabi).\n- USB: core: fix device node leak (bsc#1047487).\n- Update kabi files: sync with 4.4.74 updates\n- af_key: Add lock to key dump (bsc#1047653).\n- af_key: Fix slab-out-of-bounds in pfkey_compile_policy (bsc#1047354).\n- b43: Add missing MODULE_FIRMWARE() (bsc#1037344).\n- bcache: force trigger gc (bsc#1038078).\n- bcache: force trigger gc (bsc#1038078).\n- bcache: only recovery I/O error for writethrough mode (bsc#1043652).\n- bcache: only recovery I/O error for writethrough mode (bsc#1043652).\n- bdi: Fix use-after-free in wb_congested_put() (bsc#1040307).\n- blacklist.conf: 9eeacd3a2f17 not a bug fix (bnc#1050061)\n- blacklist.conf: Blacklist c133c7615751 ('x86/nmi: Fix timeout test in test_nmi_ipi()') It only fixes a self-test (bsc#1051478).\n- blacklist.conf: Blacklist c9525a3fab63 ('x86/watchdog: Fix Kconfig help text file path reference to lockup watchdog documentation') Updates only kconfig help-text (bsc#1051478).\n- blacklist.conf: add inapplicable commits for wifi (bsc#1031717)\n- blacklist.conf: add unapplicable drm fixes (bsc#1031717).\n- blacklist.conf: add unapplicable/cosmetic iwlwifi fixes (bsc#1031717).\n- blkfront: add uevent for size change (bnc#1036632).\n- block: Allow bdi re-registration (bsc#1040307).\n- block: Fix front merge check (bsc#1051239).\n- block: Make del_gendisk() safer for disks without queues (bsc#1040307).\n- block: Move bdi_unregister() to del_gendisk() (bsc#1040307).\n- block: do not allow updates through sysfs until registration completes (bsc#1047027).\n- bnxt: add a missing rcu synchronization (bnc#1038583).\n- bnxt: do not busy-poll when link is down (bnc#1038583).\n- bnxt_en: Enable MRU enables bit when configuring VNIC MRU (bnc#1038583).\n- bnxt_en: Fix 'uninitialized variable' bug in TPA code path (bnc#1038583).\n- bnxt_en: Fix NULL pointer dereference in a failure path during open (bnc#1038583).\n- bnxt_en: Fix NULL pointer dereference in reopen failure path (bnc#1038583).\n- bnxt_en: Fix TX push operation on ARM64 (bnc#1038583).\n- bnxt_en: Fix VF virtual link state (bnc#1038583).\n- bnxt_en: Fix a VXLAN vs GENEVE issue (bnc#1038583).\n- bnxt_en: Fix and clarify link_info->advertising (bnc#1038583).\n- bnxt_en: Fix ring arithmetic in bnxt_setup_tc() (bnc#1038583).\n- bnxt_en: Pad TX packets below 52 bytes (bnc#1038583).\n- bnxt_en: Refactor TPA code path (bnc#1038583).\n- bnxt_en: fix pci cleanup in bnxt_init_one() failure path (bnc#1038583).\n- bnxt_en: initialize rc to zero to avoid returning garbage (bnc#1038583).\n- brcmfmac: Fix glom_skb leak in brcmf_sdiod_recv_chain (bsc#1031717).\n- btrfs: Add WARN_ON for qgroup reserved underflow (bsc#1031515).\n- btrfs: Do not clear SGID when inheriting ACLs (bsc#1030552).\n- btrfs: add cond_resched to btrfs_qgroup_trace_leaf_items (bsc#1028286).\n- btrfs: fix early ENOSPC due to delalloc (bsc#1049226).\n- btrfs: fix lockup in find_free_extent with read-only block groups (bsc#1046682).\n- btrfs: incremental send, fix invalid path for link commands (bsc#1051479).\n- btrfs: incremental send, fix invalid path for unlink commands (bsc#1051479).\n- btrfs: resume qgroup rescan on rw remount (bsc#1047152).\n- btrfs: send, fix invalid path after renaming and linking file (bsc#1051479).\n- ceph: fix readpage from fscache (bsc#1057015).\n- cpuidle: dt: Add missing 'of_node_put()' (bnc#1022476).\n- crypto: s5p-sss - fix incorrect usage of scatterlists api (bsc#1048317).\n- cx82310_eth: use skb_cow_head() to deal with cloned skbs (bsc# 1045154).\n- cxgb4: Fix stack out-of-bounds read due to wrong size to t4_record_mbox() (bsc#1021424 bsc#1022743).\n- cxl: Unlock on error in probe (bsc#1034762, Pending SUSE Kernel Fixes).\n- dentry name snapshots (bsc#1049483).\n- dm: fix second blk_delay_queue() parameter to be in msec units not (bsc#1047670).\n- drivers: hv: vmbus: Increase the time between retries in vmbus_post_msg() (bnc#1044112).\n- drivers: net: xgene: Fix wrong logical operation (bsc#1056827).\n- drm/amdgpu: Fix overflow of watermark calcs at greater than 4k resolutions (bsc#1031717).\n- drm/bochs: Implement nomodeset (bsc#1047096).\n- drm/i915/fbdev: Stop repeating tile configuration on stagnation (bsc#1031717).\n- drm/i915: Fix scaler init during CRTC HW state readout (bsc#1031717).\n- drm/i915: Serialize GTT/Aperture accesses on BXT (bsc#1046821).\n- drm/virtio: do not leak bo on drm_gem_object_init failure (bsc#1047277).\n- drm/vmwgfx: Fix large topology crash (bsc#1048155).\n- drm/vmwgfx: Limit max desktop dimensions to 8Kx8K (bsc#1048155).\n- drm/vmwgfx: Support topology greater than texture size (bsc#1048155).\n- efi/libstub: Skip GOP with PIXEL_BLT_ONLY format (bnc#974215).\n- ext2: Do not clear SGID when inheriting ACLs (bsc#1030552).\n- ext4: Do not clear SGID when inheriting ACLs (bsc#1030552).\n- ext4: avoid unnecessary stalls in ext4_evict_inode() (bsc#1049486).\n- ext4: handle the rest of ext4_mb_load_buddy() ENOMEM errors (bsc#1012829).\n- fs/fcntl: f_setown, avoid undefined behaviour (bnc#1006180).\n- fuse: initialize the flock flag in fuse_file on allocation (git-fixes).\n- gcov: add support for gcc version greater than 6 (bsc#1051663).\n- gcov: support GCC 7.1 (bsc#1051663).\n- gfs2: Do not clear SGID when inheriting ACLs (bsc#1012829).\n- gfs2: fix flock panic issue (bsc#1012829).\n- hrtimer: Catch invalid clockids again (bsc#1047651).\n- hrtimer: Revert CLOCK_MONOTONIC_RAW support (bsc#1047651).\n- hv_util: switch to using timespec64.\n- hv_utils: drop .getcrosststamp() support from PTP driver (bnc#1044112, bnc#1042778, bnc#1029693).\n- hv_utils: fix TimeSync work on pre-TimeSync-v4 hosts (bnc#1044112, bnc#1042778, bnc#1029693).\n- i2c: designware-baytrail: fix potential null pointer dereference on dev (bsc#1011913).\n- i40e: Removal of workaround for simple MAC address filter deletion (bsc#1039915).\n- i40e: When searching all MAC/VLAN filters, ignore removed filters (bsc#1039915).\n- i40e: add VSI info to macaddr messages (bsc#1039915).\n- i40e: add hw struct local variable (bsc#1039915).\n- i40e: add private flag to control source pruning (bsc#1034075).\n- i40e: avoid O(n^2) loop when deleting all filters (bsc#1039915).\n- i40e: avoid looping to check whether we're in VLAN mode (bsc#1039915).\n- i40e: delete filter after adding its replacement when converting (bsc#1039915).\n- i40e: do not add broadcast filter for VFs (bsc#1039915).\n- i40e: do not allow i40e_vsi_(add|kill)_vlan to operate when VID lower than 1 (bsc#1039915).\n- i40e: drop is_vf and is_netdev fields in struct i40e_mac_filter (bsc#1039915).\n- i40e: enable VSI broadcast promiscuous mode instead of adding broadcast filter (bsc#1039915).\n- i40e: factor out addition/deletion of VLAN per each MAC address (bsc#1039915).\n- i40e: fix MAC filters when removing VLANs (bsc#1039915).\n- i40e: fold the i40e_is_vsi_in_vlan check into i40e_put_mac_in_vlan (bsc#1039915).\n- i40e: implement __i40e_del_filter and use where applicable (bsc#1039915).\n- i40e: make use of __dev_uc_sync and __dev_mc_sync (bsc#1039915).\n- i40e: move all updates for VLAN mode into i40e_sync_vsi_filters (bsc#1039915).\n- i40e: move i40e_put_mac_in_vlan and i40e_del_mac_all_vlan (bsc#1039915).\n- i40e: no need to check is_vsi_in_vlan before calling i40e_del_mac_all_vlan (bsc#1039915).\n- i40e: properly cleanup on allocation failure in i40e_sync_vsi_filters (bsc#1039915).\n- i40e: recalculate vsi->active_filters from hash contents (bsc#1039915).\n- i40e: refactor Rx filter handling (bsc#1039915).\n- i40e: refactor i40e_put_mac_in_vlan to avoid changing f->vlan (bsc#1039915).\n- i40e: refactor i40e_update_filter_state to avoid passing aq_err (bsc#1039915).\n- i40e: remove code to handle dev_addr specially (bsc#1039915).\n- i40e: remove duplicate add/delete adminq command code for filters (bsc#1039915).\n- i40e: remove second check of VLAN_N_VID in i40e_vlan_rx_add_vid (bsc#1039915).\n- i40e: removed unreachable code (bsc#1039915).\n- i40e: rename i40e_put_mac_in_vlan and i40e_del_mac_all_vlan (bsc#1039915).\n- i40e: restore workaround for removing default MAC filter (bsc#1039915).\n- i40e: set broadcast promiscuous mode for each active VLAN (bsc#1039915).\n- i40e: store MAC/VLAN filters in a hash with the MAC Address as key (bsc#1039915).\n- i40e: use (add|rm)_vlan_all_mac helper functions when changing PVID (bsc#1039915).\n- i40e: when adding or removing MAC filters, correctly handle VLANs (bsc#1039915).\n- i40e: write HENA for VFs (bsc#1039915).\n- ibmvnic: Check for transport event on driver resume (bsc#1051556, bsc#1052709).\n- ibmvnic: Clean up resources on probe failure (bsc#1058116).\n- ibmvnic: Initialize SCRQ's during login renegotiation (bsc#1052223).\n- ibmvnic: Report rx buffer return codes as netdev_dbg (bsc#1052794).\n- iio: hid-sensor: fix return of -EINVAL on invalid values in ret or value (bsc#1031717).\n- introduce the walk_process_tree() helper (bnc#1022476).\n- iommu/amd: Fix schedule-while-atomic BUG in initialization code (bsc1052533).\n- ipv4: Should use consistent conditional judgement for ip fragment in __ip_append_data and ip_finish_output (bsc#1041958).\n- ipv6: Should use consistent conditional judgement for ip6 fragment between __ip6_append_data and ip6_finish_output (bsc#1041958).\n- iwlwifi: missing error code in iwl_trans_pcie_alloc() (bsc#1031717).\n- iwlwifi: mvm: compare full command ID.\n- iwlwifi: mvm: do not send CTDP commands via debugfs if not supported (bsc#1031717).\n- iwlwifi: mvm: reset the fw_dump_desc pointer after ASSERT (bsc#1031717).\n- iwlwifi: mvm: synchronize firmware DMA paging memory.\n- iwlwifi: mvm: unconditionally stop device after init (bsc#1031717).\n- iwlwifi: mvm: unmap the paging memory before freeing it.\n- iwlwifi: pcie: fix command completion name debug (bsc#1031717).\n- kABI-fix for 'x86/panic: replace smp_send_stop() with kdump friendly version in panic path' (bsc#1051478).\n- kernel/*: switch to memdup_user_nul() (bsc#1048893).\n- kvm: nVMX: Fix nested_vmx_check_msr_bitmap_controls (bsc#1051478).\n- lib: test_rhashtable: Fix KASAN warning (bsc#1055359).\n- lib: test_rhashtable: fix for large entry counts (bsc#1055359).\n- libnvdimm, pmem: fix a NULL pointer BUG in nd_pmem_notify (bsc#1023175).\n- libnvdimm: fix badblock range handling of ARS range (bsc#1023175).\n- lightnvm: nvme reset_controller is not working after adapter's firmware upgrade (bsc#988784).\n- lightnvm: remove unused rq parameter of nvme_nvm_rqtocmd() to kill warning.\n- mac80211_hwsim: Replace bogus hrtimer clockid (bsc#1047651).\n- md/raid5: fix a race condition in stripe batch (linux-stable).\n- mm, madvise: ensure poisoned pages are removed from per-cpu lists (VM hw poison -- git fixes).\n- mm-adaptive-hash-table-scaling-v5 (bnc#1036303).\n- mm/page_alloc.c: apply gfp_allowed_mask before the first allocation attempt (bnc#971975 VM -- git fixes).\n- mm: adaptive hash table scaling (bnc#1036303).\n- mm: call page_ext_init() after all struct pages are initialized (VM Debugging Functionality, bsc#1047048).\n- mm: drop HASH_ADAPT (bnc#1036303).\n- mm: fix classzone_idx underflow in shrink_zones() (VM Functionality, bsc#1042314).\n- mm: make PR_SET_THP_DISABLE immediately active (bnc#1048891).\n- mptsas: Fixup device hotplug for VMWare ESXi (bsc#1030850).\n- mwifiex: do not update MCS set from hostapd (bsc#1031717).\n- net/mlx5: Fix driver load error flow when firmware is stuck (git-fixes).\n- net: account for current skb length when deciding about UFO (bsc#1041958).\n- net: ena: add hardware hints capability to the driver (bsc#1047121).\n- net: ena: add missing return when ena_com_get_io_handlers() fails (bsc#1047121).\n- net: ena: add missing unmap bars on device removal (bsc#1047121).\n- net: ena: add reset reason for each device FLR (bsc#1047121).\n- net: ena: add support for out of order rx buffers refill (bsc#1047121).\n- net: ena: allow the driver to work with small number of msix vectors (bsc#1047121).\n- net: ena: bug fix in lost tx packets detection mechanism (bsc#1047121).\n- net: ena: change return value for unsupported features unsupported return value (bsc#1047121).\n- net: ena: change sizeof() argument to be the type pointer (bsc#1047121).\n- net: ena: disable admin msix while working in polling mode (bsc#1047121).\n- net: ena: fix bug that might cause hang after consecutive open/close interface (bsc#1047121).\n- net: ena: fix race condition between submit and completion admin command (bsc#1047121).\n- net: ena: fix rare uncompleted admin command false alarm (bsc#1047121).\n- net: ena: fix theoretical Rx hang on low memory systems (bsc#1047121).\n- net: ena: separate skb allocation to dedicated function (bsc#1047121).\n- net: ena: update driver's rx drop statistics (bsc#1047121).\n- net: ena: update ena driver to version 1.1.7 (bsc#1047121).\n- net: ena: update ena driver to version 1.2.0 (bsc#1047121).\n- net: ena: use lower_32_bits()/upper_32_bits() to split dma address (bsc#1047121).\n- net: ena: use napi_schedule_irqoff when possible (bsc#1047121).\n- net: handle NAPI_GRO_FREE_STOLEN_HEAD case also in napi_frags_finish() (bsc#1042286).\n- net: phy: Do not perform software reset for Generic PHY (bsc#1042286).\n- netfilter: fix IS_ERR_VALUE usage (bsc#1052888).\n- netfilter: x_tables: pack percpu counter allocations (bsc#1052888).\n- netfilter: x_tables: pass xt_counters struct instead of packet counter (bsc#1052888).\n- netfilter: x_tables: pass xt_counters struct to counter allocator (bsc#1052888).\n- new helper: memdup_user_nul() (bsc#1048893).\n- ocfs2: Do not clear SGID when inheriting ACLs (bsc#1030552).\n- ocfs2: Make ocfs2_set_acl() static (bsc#1030552).\n- ocfs2: fix deadlock caused by recursive locking in xattr (bsc#1012829).\n- of: fix '/cpus' reference leak in of_numa_parse_cpu_nodes() (bsc#1056827).\n- ovl: fix dentry leak for default_permissions (bsc#1054084).\n- percpu_ref: allow operation mode switching operations to be called concurrently (bsc#1055096).\n- percpu_ref: remove unnecessary RCU grace period for staggered atomic switching confirmation (bsc#1055096).\n- percpu_ref: reorganize __percpu_ref_switch_to_atomic() and relocate percpu_ref_switch_to_atomic() (bsc#1055096).\n- percpu_ref: restructure operation mode switching (bsc#1055096).\n- percpu_ref: unify staggered atomic switching wait behavior (bsc#1055096).\n- perf/x86/intel: Cure bogus unwind from PEBS entries (bsc#1051478).\n- perf/x86/intel: Fix PEBSv3 record drain (bsc#1051478).\n- perf/x86: Fix spurious NMI with PEBS Load Latency event (bsc#1051478).\n- platform/x86: ideapad-laptop: Add IdeaPad 310-15IKB to no_hw_rfkill (bsc#1051022).\n- platform/x86: ideapad-laptop: Add IdeaPad V310-15ISK to no_hw_rfkill (bsc#1051022).\n- platform/x86: ideapad-laptop: Add IdeaPad V510-15IKB to no_hw_rfkill (bsc#1051022).\n- platform/x86: ideapad-laptop: Add Lenovo Yoga 910-13IKB to no_hw_rfkill dmi list (bsc#1051022).\n- platform/x86: ideapad-laptop: Add Y520-15IKBN to no_hw_rfkill (bsc#1051022).\n- platform/x86: ideapad-laptop: Add Y700 15-ACZ to no_hw_rfkill DMI list (bsc#1051022).\n- platform/x86: ideapad-laptop: Add Y720-15IKBN to no_hw_rfkill (bsc#1051022).\n- platform/x86: ideapad-laptop: Add several models to no_hw_rfkill (bsc#1051022).\n- prctl: propagate has_child_subreaper flag to every descendant (bnc#1022476).\n- qeth: fix L3 next-hop im xmit qeth hdr (bnc#1052773, LTC#157374).\n- reiserfs: Do not clear SGID when inheriting ACLs (bsc#1030552).\n- rpm/kernel-binary.spec.in: find-debuginfo.sh should not touch build-id This needs rpm-4.14+ (bsc#964063).\n- rtnetlink: fix rtnl_vfinfo_size (bsc#1056261).\n- s390: export symbols for crash-kmp (bsc#1053915).\n- sched/core: Allow __sched_setscheduler() in interrupts when PI is not used (bnc#1022476).\n- sched/debug: Print the scheduler topology group mask (bnc#1022476).\n- sched/fair, cpumask: Export for_each_cpu_wrap() (bnc#1022476).\n- sched/fair: Fix O(nr_cgroups) in load balance path (bnc#1022476).\n- sched/fair: Use task_groups instead of leaf_cfs_rq_list to walk all cfs_rqs (bnc#1022476).\n- sched/topology: Add sched_group_capacity debugging (bnc#1022476).\n- sched/topology: Fix building of overlapping sched-groups (bnc#1022476).\n- sched/topology: Fix overlapping sched_group_capacity (bnc#1022476).\n- sched/topology: Move comment about asymmetric node setups (bnc#1022476).\n- sched/topology: Refactor function build_overlap_sched_groups() (bnc#1022476).\n- sched/topology: Remove FORCE_SD_OVERLAP (bnc#1022476).\n- sched/topology: Simplify build_overlap_sched_groups() (bnc#1022476).\n- sched/topology: Small cleanup (bnc#1022476).\n- sched/topology: Verify the first group matches the child domain (bnc#1022476).\n- scsi: Add STARGET_CREATE_REMOVE state to scsi_target_state (bsc#1013887).\n- scsi: bnx2i: missing error code in bnx2i_ep_connect() (bsc#1048221).\n- scsi: kABI fix for new state STARGET_CREATED_REMOVE (bsc#1013887).\n- scsi: storvsc: Workaround for virtual DVD SCSI version (bnc#1044636).\n- scsi_devinfo: fixup string compare (bsc#1037404).\n- scsi_dh_alua: suppress errors from unsupported devices (bsc#1038792).\n- smsc75xx: use skb_cow_head() to deal with cloned skbs (bsc#1045154).\n- sr9700: use skb_cow_head() to deal with cloned skbs (bsc#1045154).\n- supported.conf: clear mistaken external support flag for cifs.ko (bsc#1053802).\n- sysctl: do not print negative flag for proc_douintvec (bnc#1046985).\n- sysctl: fix lax sysctl_check_table() sanity check (bsc#1048893).\n- sysctl: fold sysctl_writes_strict checks into helper (bsc#1048893).\n- sysctl: kdoc'ify sysctl_writes_strict (bsc#1048893).\n- sysctl: simplify unsigned int support (bsc#1048893).\n- timers: Plug locking race vs. timer migration (bnc#1022476).\n- tpm: Issue a TPM2_Shutdown for TPM2 devices (bsc#1053117).\n- tpm: KABI fix (bsc#1053117).\n- tpm: fix: return rc when devm_add_action() fails (bsc#1020645, bsc#1034048).\n- tpm: read burstcount from TPM_STS in one 32-bit transaction (bsc#1020645, bsc#1034048).\n- tpm_tis_core: Choose appropriate timeout for reading burstcount (bsc#1020645, bsc#1034048).\n- tpm_tis_core: convert max timeouts from msec to jiffies (bsc#1020645, bsc#1034048).\n- tty: serial: msm: Support more bauds (git-fixes).\n- ubifs: Correctly evict xattr inodes (bsc#1012829).\n- ubifs: Do not leak kernel memory to the MTD (bsc#1012829).\n- udf: Fix deadlock between writeback and udf_setsize() (bsc#1012829).\n- udf: Fix races with i_size changes during readpage (bsc#1012829).\n- vfs: fix missing inode_get_dev sites (bsc#1052049).\n- x86/LDT: Print the real LDT base address (bsc#1051478).\n- x86/dmi: Switch dmi_remap() from ioremap() to ioremap_cache() (bsc#1051399).\n- x86/mce: Make timer handling more robust (bsc#1042422).\n- x86/panic: replace smp_send_stop() with kdump friendly version in panic path (bsc#1051478).\n- xen-netfront: Rework the fix for Rx stall during OOM and network stress (git-fixes).\n- xen/balloon: do not online new memory initially (bnc#1028173).\n- xen/pvh*: Support greater than 32 VCPUs at domain restore (bnc#1045563).\n- xen: allocate page for shared info page from low memory (bnc#1038616).\n- xen: hold lock_device_hotplug throughout vcpu hotplug operations (bsc#1042422).\n- xfrm: NULL dereference on allocation failure (bsc#1047343).\n- xfrm: Oops on error in pfkey_msg2xfrm_state() (bsc#1047653).\n- xfs: Do not clear SGID when inheriting ACLs (bsc#1030552).\n- xfs: do not BUG() on mixed direct and mapped I/O (bsc#1050188).\n- xfs: fix inobt inode allocation search optimization (bsc#1012829).\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46],{"_key":15},"CVE-2017-1000111",{"_key":17},"CVE-2017-1000112",{"_key":19},"CVE-2017-1000251",{"_key":21},"CVE-2017-1000252",{"_key":23},"CVE-2017-1000365",{"_key":25},"CVE-2017-10810",{"_key":27},"CVE-2017-11472",{"_key":29},"CVE-2017-11473",{"_key":31},"CVE-2017-12134",{"_key":33},"CVE-2017-12154",{"_key":35},"CVE-2017-14051",{"_key":37},"CVE-2017-14106",{"_key":39},"CVE-2017-7518",{"_key":41},"CVE-2017-7533",{"_key":43},"CVE-2017-7541",{"_key":45},"CVE-2017-7542",{"_key":47},"CVE-2017-8831",[],[],[51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},"2017-11-08T15:02:59Z","2026-02-04T04:38:23.720898Z",{"cisa_kev":71,"cisa_ransomware":71,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[73,79,84,88,92,96,100,104,108,112,116,120,124,128,132,136,140,144,148,152,156,160,164,168,172,176,180,184,188,192,196,200,204,208,212,216,220,224,228,232,236,240,244,248,252,256,260,264,268,272,276,280,284,288,292,296,300,304,308,312,316,320,324,328,332,336,340,344,348,352,356,360,364,368,372,376,380,384,388,392,396,400,404,408,412,416,420,424,428,432,436,440,444,448,452,456,460,464,468,472,476,480,484,488,492,496,500,504,508,512,516,520,524,528,532,536,540,544,548,552,556,560,564,568,572,576,580,584,588,592,596,600,605,609,613,617,621,625,629,633,637,641,645,649,653,657,661,665],{"url":74,"sources":75,"tags":77},"https://www.suse.com/support/update/announcement/2017/suse-su-20172956-1/",[76],"osv_suse",[78],"Advisory",{"url":80,"sources":81,"tags":82},"https://bugzilla.suse.com/1005917",[76],[83],"REPORT",{"url":85,"sources":86,"tags":87},"https://bugzilla.suse.com/1006180",[76],[83],{"url":89,"sources":90,"tags":91},"https://bugzilla.suse.com/1011913",[76],[83],{"url":93,"sources":94,"tags":95},"https://bugzilla.suse.com/1012382",[76],[83],{"url":97,"sources":98,"tags":99},"https://bugzilla.suse.com/1012829",[76],[83],{"url":101,"sources":102,"tags":103},"https://bugzilla.suse.com/1013887",[76],[83],{"url":105,"sources":106,"tags":107},"https://bugzilla.suse.com/1018419",[76],[83],{"url":109,"sources":110,"tags":111},"https://bugzilla.suse.com/1019151",[76],[83],{"url":113,"sources":114,"tags":115},"https://bugzilla.suse.com/1020645",[76],[83],{"url":117,"sources":118,"tags":119},"https://bugzilla.suse.com/1020657",[76],[83],{"url":121,"sources":122,"tags":123},"https://bugzilla.suse.com/1020685",[76],[83],{"url":125,"sources":126,"tags":127},"https://bugzilla.suse.com/1021424",[76],[83],{"url":129,"sources":130,"tags":131},"https://bugzilla.suse.com/1022476",[76],[83],{"url":133,"sources":134,"tags":135},"https://bugzilla.suse.com/1022743",[76],[83],{"url":137,"sources":138,"tags":139},"https://bugzilla.suse.com/1023175",[76],[83],{"url":141,"sources":142,"tags":143},"https://bugzilla.suse.com/1024405",[76],[83],{"url":145,"sources":146,"tags":147},"https://bugzilla.suse.com/1028173",[76],[83],{"url":149,"sources":150,"tags":151},"https://bugzilla.suse.com/1028286",[76],[83],{"url":153,"sources":154,"tags":155},"https://bugzilla.suse.com/1028819",[76],[83],{"url":157,"sources":158,"tags":159},"https://bugzilla.suse.com/1029693",[76],[83],{"url":161,"sources":162,"tags":163},"https://bugzilla.suse.com/1030552",[76],[83],{"url":165,"sources":166,"tags":167},"https://bugzilla.suse.com/1030850",[76],[83],{"url":169,"sources":170,"tags":171},"https://bugzilla.suse.com/1031515",[76],[83],{"url":173,"sources":174,"tags":175},"https://bugzilla.suse.com/1031717",[76],[83],{"url":177,"sources":178,"tags":179},"https://bugzilla.suse.com/1031784",[76],[83],{"url":181,"sources":182,"tags":183},"https://bugzilla.suse.com/1033587",[76],[83],{"url":185,"sources":186,"tags":187},"https://bugzilla.suse.com/1034048",[76],[83],{"url":189,"sources":190,"tags":191},"https://bugzilla.suse.com/1034075",[76],[83],{"url":193,"sources":194,"tags":195},"https://bugzilla.suse.com/1034762",[76],[83],{"url":197,"sources":198,"tags":199},"https://bugzilla.suse.com/1036303",[76],[83],{"url":201,"sources":202,"tags":203},"https://bugzilla.suse.com/1036632",[76],[83],{"url":205,"sources":206,"tags":207},"https://bugzilla.suse.com/1037344",[76],[83],{"url":209,"sources":210,"tags":211},"https://bugzilla.suse.com/1037404",[76],[83],{"url":213,"sources":214,"tags":215},"https://bugzilla.suse.com/1037994",[76],[83],{"url":217,"sources":218,"tags":219},"https://bugzilla.suse.com/1038078",[76],[83],{"url":221,"sources":222,"tags":223},"https://bugzilla.suse.com/1038583",[76],[83],{"url":225,"sources":226,"tags":227},"https://bugzilla.suse.com/1038616",[76],[83],{"url":229,"sources":230,"tags":231},"https://bugzilla.suse.com/1038792",[76],[83],{"url":233,"sources":234,"tags":235},"https://bugzilla.suse.com/1038846",[76],[83],{"url":237,"sources":238,"tags":239},"https://bugzilla.suse.com/1038847",[76],[83],{"url":241,"sources":242,"tags":243},"https://bugzilla.suse.com/1039354",[76],[83],{"url":245,"sources":246,"tags":247},"https://bugzilla.suse.com/1039915",[76],[83],{"url":249,"sources":250,"tags":251},"https://bugzilla.suse.com/1040307",[76],[83],{"url":253,"sources":254,"tags":255},"https://bugzilla.suse.com/1040351",[76],[83],{"url":257,"sources":258,"tags":259},"https://bugzilla.suse.com/1041958",[76],[83],{"url":261,"sources":262,"tags":263},"https://bugzilla.suse.com/1042286",[76],[83],{"url":265,"sources":266,"tags":267},"https://bugzilla.suse.com/1042314",[76],[83],{"url":269,"sources":270,"tags":271},"https://bugzilla.suse.com/1042422",[76],[83],{"url":273,"sources":274,"tags":275},"https://bugzilla.suse.com/1042778",[76],[83],{"url":277,"sources":278,"tags":279},"https://bugzilla.suse.com/1043652",[76],[83],{"url":281,"sources":282,"tags":283},"https://bugzilla.suse.com/1044112",[76],[83],{"url":285,"sources":286,"tags":287},"https://bugzilla.suse.com/1044636",[76],[83],{"url":289,"sources":290,"tags":291},"https://bugzilla.suse.com/1045154",[76],[83],{"url":293,"sources":294,"tags":295},"https://bugzilla.suse.com/1045563",[76],[83],{"url":297,"sources":298,"tags":299},"https://bugzilla.suse.com/1045922",[76],[83],{"url":301,"sources":302,"tags":303},"https://bugzilla.suse.com/1046682",[76],[83],{"url":305,"sources":306,"tags":307},"https://bugzilla.suse.com/1046821",[76],[83],{"url":309,"sources":310,"tags":311},"https://bugzilla.suse.com/1046985",[76],[83],{"url":313,"sources":314,"tags":315},"https://bugzilla.suse.com/1047027",[76],[83],{"url":317,"sources":318,"tags":319},"https://bugzilla.suse.com/1047048",[76],[83],{"url":321,"sources":322,"tags":323},"https://bugzilla.suse.com/1047096",[76],[83],{"url":325,"sources":326,"tags":327},"https://bugzilla.suse.com/1047118",[76],[83],{"url":329,"sources":330,"tags":331},"https://bugzilla.suse.com/1047121",[76],[83],{"url":333,"sources":334,"tags":335},"https://bugzilla.suse.com/1047152",[76],[83],{"url":337,"sources":338,"tags":339},"https://bugzilla.suse.com/1047277",[76],[83],{"url":341,"sources":342,"tags":343},"https://bugzilla.suse.com/1047343",[76],[83],{"url":345,"sources":346,"tags":347},"https://bugzilla.suse.com/1047354",[76],[83],{"url":349,"sources":350,"tags":351},"https://bugzilla.suse.com/1047487",[76],[83],{"url":353,"sources":354,"tags":355},"https://bugzilla.suse.com/1047651",[76],[83],{"url":357,"sources":358,"tags":359},"https://bugzilla.suse.com/1047653",[76],[83],{"url":361,"sources":362,"tags":363},"https://bugzilla.suse.com/1047670",[76],[83],{"url":365,"sources":366,"tags":367},"https://bugzilla.suse.com/1048155",[76],[83],{"url":369,"sources":370,"tags":371},"https://bugzilla.suse.com/1048221",[76],[83],{"url":373,"sources":374,"tags":375},"https://bugzilla.suse.com/1048317",[76],[83],{"url":377,"sources":378,"tags":379},"https://bugzilla.suse.com/1048891",[76],[83],{"url":381,"sources":382,"tags":383},"https://bugzilla.suse.com/1048893",[76],[83],{"url":385,"sources":386,"tags":387},"https://bugzilla.suse.com/1048914",[76],[83],{"url":389,"sources":390,"tags":391},"https://bugzilla.suse.com/1048934",[76],[83],{"url":393,"sources":394,"tags":395},"https://bugzilla.suse.com/1049226",[76],[83],{"url":397,"sources":398,"tags":399},"https://bugzilla.suse.com/1049483",[76],[83],{"url":401,"sources":402,"tags":403},"https://bugzilla.suse.com/1049486",[76],[83],{"url":405,"sources":406,"tags":407},"https://bugzilla.suse.com/1049580",[76],[83],{"url":409,"sources":410,"tags":411},"https://bugzilla.suse.com/1049603",[76],[83],{"url":413,"sources":414,"tags":415},"https://bugzilla.suse.com/1049645",[76],[83],{"url":417,"sources":418,"tags":419},"https://bugzilla.suse.com/1049882",[76],[83],{"url":421,"sources":422,"tags":423},"https://bugzilla.suse.com/1050061",[76],[83],{"url":425,"sources":426,"tags":427},"https://bugzilla.suse.com/1050188",[76],[83],{"url":429,"sources":430,"tags":431},"https://bugzilla.suse.com/1051022",[76],[83],{"url":433,"sources":434,"tags":435},"https://bugzilla.suse.com/1051059",[76],[83],{"url":437,"sources":438,"tags":439},"https://bugzilla.suse.com/1051239",[76],[83],{"url":441,"sources":442,"tags":443},"https://bugzilla.suse.com/1051399",[76],[83],{"url":445,"sources":446,"tags":447},"https://bugzilla.suse.com/1051478",[76],[83],{"url":449,"sources":450,"tags":451},"https://bugzilla.suse.com/1051479",[76],[83],{"url":453,"sources":454,"tags":455},"https://bugzilla.suse.com/1051556",[76],[83],{"url":457,"sources":458,"tags":459},"https://bugzilla.suse.com/1051663",[76],[83],{"url":461,"sources":462,"tags":463},"https://bugzilla.suse.com/1051790",[76],[83],{"url":465,"sources":466,"tags":467},"https://bugzilla.suse.com/1052049",[76],[83],{"url":469,"sources":470,"tags":471},"https://bugzilla.suse.com/1052223",[76],[83],{"url":473,"sources":474,"tags":475},"https://bugzilla.suse.com/1052311",[76],[83],{"url":477,"sources":478,"tags":479},"https://bugzilla.suse.com/1052365",[76],[83],{"url":481,"sources":482,"tags":483},"https://bugzilla.suse.com/1052533",[76],[83],{"url":485,"sources":486,"tags":487},"https://bugzilla.suse.com/1052580",[76],[83],{"url":489,"sources":490,"tags":491},"https://bugzilla.suse.com/1052709",[76],[83],{"url":493,"sources":494,"tags":495},"https://bugzilla.suse.com/1052773",[76],[83],{"url":497,"sources":498,"tags":499},"https://bugzilla.suse.com/1052794",[76],[83],{"url":501,"sources":502,"tags":503},"https://bugzilla.suse.com/1052888",[76],[83],{"url":505,"sources":506,"tags":507},"https://bugzilla.suse.com/1053117",[76],[83],{"url":509,"sources":510,"tags":511},"https://bugzilla.suse.com/1053802",[76],[83],{"url":513,"sources":514,"tags":515},"https://bugzilla.suse.com/1053915",[76],[83],{"url":517,"sources":518,"tags":519},"https://bugzilla.suse.com/1054084",[76],[83],{"url":521,"sources":522,"tags":523},"https://bugzilla.suse.com/1055013",[76],[83],{"url":525,"sources":526,"tags":527},"https://bugzilla.suse.com/1055096",[76],[83],{"url":529,"sources":530,"tags":531},"https://bugzilla.suse.com/1055359",[76],[83],{"url":533,"sources":534,"tags":535},"https://bugzilla.suse.com/1056261",[76],[83],{"url":537,"sources":538,"tags":539},"https://bugzilla.suse.com/1056588",[76],[83],{"url":541,"sources":542,"tags":543},"https://bugzilla.suse.com/1056827",[76],[83],{"url":545,"sources":546,"tags":547},"https://bugzilla.suse.com/1056982",[76],[83],{"url":549,"sources":550,"tags":551},"https://bugzilla.suse.com/1057015",[76],[83],{"url":553,"sources":554,"tags":555},"https://bugzilla.suse.com/1057389",[76],[83],{"url":557,"sources":558,"tags":559},"https://bugzilla.suse.com/1058038",[76],[83],{"url":561,"sources":562,"tags":563},"https://bugzilla.suse.com/1058116",[76],[83],{"url":565,"sources":566,"tags":567},"https://bugzilla.suse.com/1058507",[76],[83],{"url":569,"sources":570,"tags":571},"https://bugzilla.suse.com/963619",[76],[83],{"url":573,"sources":574,"tags":575},"https://bugzilla.suse.com/964063",[76],[83],{"url":577,"sources":578,"tags":579},"https://bugzilla.suse.com/964944",[76],[83],{"url":581,"sources":582,"tags":583},"https://bugzilla.suse.com/971975",[76],[83],{"url":585,"sources":586,"tags":587},"https://bugzilla.suse.com/974215",[76],[83],{"url":589,"sources":590,"tags":591},"https://bugzilla.suse.com/981309",[76],[83],{"url":593,"sources":594,"tags":595},"https://bugzilla.suse.com/988784",[76],[83],{"url":597,"sources":598,"tags":599},"https://bugzilla.suse.com/993890",[76],[83],{"url":601,"sources":602,"tags":603},"https://www.suse.com/security/cve/CVE-2017-1000111",[76],[604],"WEB",{"url":606,"sources":607,"tags":608},"https://www.suse.com/security/cve/CVE-2017-1000112",[76],[604],{"url":610,"sources":611,"tags":612},"https://www.suse.com/security/cve/CVE-2017-1000251",[76],[604],{"url":614,"sources":615,"tags":616},"https://www.suse.com/security/cve/CVE-2017-1000252",[76],[604],{"url":618,"sources":619,"tags":620},"https://www.suse.com/security/cve/CVE-2017-1000365",[76],[604],{"url":622,"sources":623,"tags":624},"https://www.suse.com/security/cve/CVE-2017-10810",[76],[604],{"url":626,"sources":627,"tags":628},"https://www.suse.com/security/cve/CVE-2017-11472",[76],[604],{"url":630,"sources":631,"tags":632},"https://www.suse.com/security/cve/CVE-2017-11473",[76],[604],{"url":634,"sources":635,"tags":636},"https://www.suse.com/security/cve/CVE-2017-12134",[76],[604],{"url":638,"sources":639,"tags":640},"https://www.suse.com/security/cve/CVE-2017-12154",[76],[604],{"url":642,"sources":643,"tags":644},"https://www.suse.com/security/cve/CVE-2017-14051",[76],[604],{"url":646,"sources":647,"tags":648},"https://www.suse.com/security/cve/CVE-2017-14106",[76],[604],{"url":650,"sources":651,"tags":652},"https://www.suse.com/security/cve/CVE-2017-7518",[76],[604],{"url":654,"sources":655,"tags":656},"https://www.suse.com/security/cve/CVE-2017-7533",[76],[604],{"url":658,"sources":659,"tags":660},"https://www.suse.com/security/cve/CVE-2017-7541",[76],[604],{"url":662,"sources":663,"tags":664},"https://www.suse.com/security/cve/CVE-2017-7542",[76],[604],{"url":666,"sources":667,"tags":668},"https://www.suse.com/security/cve/CVE-2017-8831",[76],[604],[],[],[],[673,686,691,696],{"ecosystem":674,"name":675,"vendor":676,"product":677,"cpe_part":9,"purl_type":678,"purl_namespace":676,"purl_name":677,"source":9,"versions":679},"SUSE Linux Enterprise","kernel-rt_debug","suse","kernel-rt_debug&distro=SUSE Linux Enterprise Real Time 12 SP2","rpm",[680],{"version":681,"is_range":682,"range_type":683,"version_start":9,"version_start_type":9,"version_end":684,"version_end_type":685,"fixed_in":9},"lt4_4_88_18_1",true,"ecosystem","4.4.88-18.1","excluding",{"ecosystem":674,"name":687,"vendor":676,"product":688,"cpe_part":9,"purl_type":678,"purl_namespace":676,"purl_name":688,"source":9,"versions":689},"kernel-rt","kernel-rt&distro=SUSE Linux Enterprise Real Time 12 SP2",[690],{"version":681,"is_range":682,"range_type":683,"version_start":9,"version_start_type":9,"version_end":684,"version_end_type":685,"fixed_in":9},{"ecosystem":674,"name":692,"vendor":676,"product":693,"cpe_part":9,"purl_type":678,"purl_namespace":676,"purl_name":693,"source":9,"versions":694},"kernel-source-rt","kernel-source-rt&distro=SUSE Linux Enterprise Real Time 12 SP2",[695],{"version":681,"is_range":682,"range_type":683,"version_start":9,"version_start_type":9,"version_end":684,"version_end_type":685,"fixed_in":9},{"ecosystem":674,"name":697,"vendor":676,"product":698,"cpe_part":9,"purl_type":678,"purl_namespace":676,"purl_name":698,"source":9,"versions":699},"kernel-syms-rt","kernel-syms-rt&distro=SUSE Linux Enterprise Real Time 12 SP2",[700],{"version":681,"is_range":682,"range_type":683,"version_start":9,"version_start_type":9,"version_end":684,"version_end_type":685,"fixed_in":9}]