[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2017:3210-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":42,"duplicates":43,"related":44,"reserved_at":9,"published_at":59,"modified_at":60,"state":9,"summary":61,"references_raw":63,"kevs":156,"epss":9,"epss_history":157,"metrics":158,"affected":159},"SUSE-SU-2017:3210-1","Security update for the Linux Kernel\n\n\n\nThe SUSE Linux Enterprise 12 SP1 kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2017-16939: The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel allowed local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages. (bnc#1069702)\n- CVE-2017-1000405: mm, thp: do not dirty huge pages on read fault (bnc#1069496).\n- CVE-2017-16649: The usbnet_generic_cdc_bind function in drivers/net/usb/cdc_ether.c in the Linux kernel allowed local users to cause a denial of service (divide-by-zero error and system crash) or possibly have unspecified other impact via a crafted USB device. (bnc#1067085)\n- CVE-2014-0038: The compat_sys_recvmmsg function in net/compat.c, when CONFIG_X86_X32 is enabled, allowed local users to gain privileges via a recvmmsg system call with a crafted timeout pointer parameter (bnc#860993).\n- CVE-2017-16650: The qmi_wwan_bind function in drivers/net/usb/qmi_wwan.c in the Linux kernel allowed local users to cause a denial of service (divide-by-zero error and system crash) or possibly have unspecified other impact via a crafted USB device. (bnc#1067086)\n- CVE-2017-16535: The usb_get_bos_descriptor function in drivers/usb/core/config.c in the Linux kernel allowed local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device. (bnc#1066700)\n- CVE-2017-15102: The tower_probe function in drivers/usb/misc/legousbtower.c in the Linux kernel allowed local users (who are physically proximate for inserting a crafted USB device) to gain privileges by leveraging a write-what-where condition that occurs after a race condition and a NULL pointer dereference. (bnc#1066705)\n- CVE-2017-16531: drivers/usb/core/config.c in the Linux kernel allowed local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device, related to the USB_DT_INTERFACE_ASSOCIATION descriptor. (bnc#1066671)\n- CVE-2017-12193: The assoc_array_insert_into_terminal_node function in lib/assoc_array.c in the Linux kernel mishandled node splitting, which allowed local users to cause a denial of service (NULL pointer dereference and panic) via a crafted application, as demonstrated by the keyring key type, and key addition and link creation operations. (bnc#1066192)\n- CVE-2017-16529: The snd_usb_create_streams function in sound/usb/card.c in the Linux kernel allowed local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device. (bnc#1066650)\n- CVE-2017-16525: The usb_serial_console_disconnect function in drivers/usb/serial/console.c in the Linux kernel allowed local users to cause a denial of service (use-after-free and system crash) or possibly have unspecified other impact via a crafted USB device, related to disconnection and failed setup. (bnc#1066618)\n- CVE-2017-16537: The imon_probe function in drivers/media/rc/imon.c in the Linux kernel allowed local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device. (bnc#1066573)\n- CVE-2017-16536: The cx231xx_usb_probe function in drivers/media/usb/cx231xx/cx231xx-cards.c in the Linux kernel allowed local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device. (bnc#1066606)\n- CVE-2017-16527: sound/usb/mixer.c in the Linux kernel allowed local users to cause a denial of service (snd_usb_mixer_interrupt use-after-free and system crash) or possibly have unspecified other impact via a crafted USB device. (bnc#1066625)\n\nThe following non-security bugs were fixed:\n\n- NVMe: No lock while DMA mapping data (bsc#975788).\n- bcache: Add bch_keylist_init_single() (bsc#1047626).\n- bcache: Add btree_map() functions (bsc#1047626).\n- bcache: Add on error panic/unregister setting (bsc#1047626).\n- bcache: Convert gc to a kthread (bsc#1047626).\n- bcache: Delete some slower inline asm (bsc#1047626).\n- bcache: Drop unneeded blk_sync_queue() calls (bsc#1047626).\n- bcache: Fix a bug recovering from unclean shutdown (bsc#1047626).\n- bcache: Fix a journalling reclaim after recovery bug (bsc#1047626).\n- bcache: Fix a null ptr deref in journal replay (bsc#1047626).\n- bcache: Fix an infinite loop in journal replay (bsc#1047626).\n- bcache: Fix bch_ptr_bad() (bsc#1047626).\n- bcache: Fix discard granularity (bsc#1047626).\n- bcache: Fix for can_attach_cache() (bsc#1047626).\n- bcache: Fix heap_peek() macro (bsc#1047626).\n- bcache: Fix moving_pred() (bsc#1047626).\n- bcache: Fix to remove the rcu_sched stalls (bsc#1047626).\n- bcache: Improve bucket_prio() calculation (bsc#1047626).\n- bcache: Improve priority_stats (bsc#1047626).\n- bcache: Minor btree cache fix (bsc#1047626).\n- bcache: Move keylist out of btree_op (bsc#1047626).\n- bcache: New writeback PD controller (bsc#1047626).\n- bcache: PRECEDING_KEY() (bsc#1047626).\n- bcache: Performance fix for when journal entry is full (bsc#1047626).\n- bcache: Remove redundant block_size assignment (bsc#1047626).\n- bcache: Remove redundant parameter for cache_alloc() (bsc#1047626).\n- bcache: Remove/fix some header dependencies (bsc#1047626).\n- bcache: Trivial error handling fix (bsc#1047626).\n- bcache: Use ida for bcache block dev minor (bsc#1047626).\n- bcache: allows use of register in udev to avoid 'device_busy' error (bsc#1047626).\n- bcache: bch_allocator_thread() is not freezable (bsc#1047626).\n- bcache: bch_gc_thread() is not freezable (bsc#1047626).\n- bcache: bugfix - gc thread now gets woken when cache is full (bsc#1047626).\n- bcache: bugfix - moving_gc now moves only correct buckets (bsc#1047626).\n- bcache: cleaned up error handling around register_cache() (bsc#1047626).\n- bcache: clear BCACHE_DEV_UNLINK_DONE flag when attaching a backing device (bsc#1047626).\n- bcache: defensively handle format strings (bsc#1047626).\n- bcache: fix BUG_ON due to integer overflow with GC_SECTORS_USED (bsc#1047626).\n- bcache: fix a livelock when we cause a huge number of cache misses (bsc#1047626).\n- bcache: fix crash in bcache_btree_node_alloc_fail tracepoint (bsc#1047626).\n- bcache: fix for gc and writeback race (bsc#1047626).\n- bcache: fix for gc crashing when no sectors are used (bsc#1047626).\n- bcache: kill index() (bsc#1047626).\n- bcache: register_bcache(): call blkdev_put() when cache_alloc() fails (bsc#1047626).\n- bcache: stop moving_gc marking buckets that can't be moved (bsc#1047626).\n- mac80211: do not compare TKIP TX MIC key in reinstall prevention (bsc#1066472).\n- mac80211: use constant time comparison with keys (bsc#1066471).\n- packet: fix use-after-free in fanout_add()\n- scsi: ILLEGAL REQUEST + ASC==27 produces target failure (bsc#1059465).\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40],{"_key":15},"CVE-2014-0038",{"_key":17},"CVE-2017-1000405",{"_key":19},"CVE-2017-12193",{"_key":21},"CVE-2017-15102",{"_key":23},"CVE-2017-16525",{"_key":25},"CVE-2017-16527",{"_key":27},"CVE-2017-16529",{"_key":29},"CVE-2017-16531",{"_key":31},"CVE-2017-16535",{"_key":33},"CVE-2017-16536",{"_key":35},"CVE-2017-16537",{"_key":37},"CVE-2017-16649",{"_key":39},"CVE-2017-16650",{"_key":41},"CVE-2017-16939",[],[],[45,46,47,48,49,50,51,52,53,54,55,56,57,58],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},"2017-12-04T10:40:05Z","2026-02-04T04:08:12.874948Z",{"cisa_kev":62,"cisa_ransomware":62,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[64,70,75,79,83,87,91,95,99,104,108,112,116,120,124,128,132,136,140,144,148,152],{"url":65,"sources":66,"tags":68},"https://www.suse.com/support/update/announcement/2017/suse-su-20173210-1/",[67],"osv_suse",[69],"Advisory",{"url":71,"sources":72,"tags":73},"https://bugzilla.suse.com/1047626",[67],[74],"REPORT",{"url":76,"sources":77,"tags":78},"https://bugzilla.suse.com/1059465",[67],[74],{"url":80,"sources":81,"tags":82},"https://bugzilla.suse.com/1066471",[67],[74],{"url":84,"sources":85,"tags":86},"https://bugzilla.suse.com/1066472",[67],[74],{"url":88,"sources":89,"tags":90},"https://bugzilla.suse.com/1069496",[67],[74],{"url":92,"sources":93,"tags":94},"https://bugzilla.suse.com/860993",[67],[74],{"url":96,"sources":97,"tags":98},"https://bugzilla.suse.com/975788",[67],[74],{"url":100,"sources":101,"tags":102},"https://www.suse.com/security/cve/CVE-2014-0038",[67],[103],"WEB",{"url":105,"sources":106,"tags":107},"https://www.suse.com/security/cve/CVE-2017-1000405",[67],[103],{"url":109,"sources":110,"tags":111},"https://www.suse.com/security/cve/CVE-2017-12193",[67],[103],{"url":113,"sources":114,"tags":115},"https://www.suse.com/security/cve/CVE-2017-15102",[67],[103],{"url":117,"sources":118,"tags":119},"https://www.suse.com/security/cve/CVE-2017-16525",[67],[103],{"url":121,"sources":122,"tags":123},"https://www.suse.com/security/cve/CVE-2017-16527",[67],[103],{"url":125,"sources":126,"tags":127},"https://www.suse.com/security/cve/CVE-2017-16529",[67],[103],{"url":129,"sources":130,"tags":131},"https://www.suse.com/security/cve/CVE-2017-16531",[67],[103],{"url":133,"sources":134,"tags":135},"https://www.suse.com/security/cve/CVE-2017-16535",[67],[103],{"url":137,"sources":138,"tags":139},"https://www.suse.com/security/cve/CVE-2017-16536",[67],[103],{"url":141,"sources":142,"tags":143},"https://www.suse.com/security/cve/CVE-2017-16537",[67],[103],{"url":145,"sources":146,"tags":147},"https://www.suse.com/security/cve/CVE-2017-16649",[67],[103],{"url":149,"sources":150,"tags":151},"https://www.suse.com/security/cve/CVE-2017-16650",[67],[103],{"url":153,"sources":154,"tags":155},"https://www.suse.com/security/cve/CVE-2017-16939",[67],[103],[],[],[],[160,173,177,181,186,191,195,199,204,208,212,217,221,225,232,236],{"ecosystem":161,"name":162,"vendor":163,"product":164,"cpe_part":9,"purl_type":165,"purl_namespace":163,"purl_name":164,"source":9,"versions":166},"SUSE Linux Enterprise","kernel-default","suse","kernel-default&distro=SUSE Linux Enterprise Server 12 SP1-LTSS","rpm",[167],{"version":168,"is_range":169,"range_type":170,"version_start":9,"version_start_type":9,"version_end":171,"version_end_type":172,"fixed_in":9},"lt3_12_74_60_64_66_1",true,"ecosystem","3.12.74-60.64.66.1","excluding",{"ecosystem":161,"name":162,"vendor":163,"product":174,"cpe_part":9,"purl_type":165,"purl_namespace":163,"purl_name":174,"source":9,"versions":175},"kernel-default&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP1",[176],{"version":168,"is_range":169,"range_type":170,"version_start":9,"version_start_type":9,"version_end":171,"version_end_type":172,"fixed_in":9},{"ecosystem":161,"name":162,"vendor":163,"product":178,"cpe_part":9,"purl_type":165,"purl_namespace":163,"purl_name":178,"source":9,"versions":179},"kernel-default&distro=SUSE OpenStack Cloud 6",[180],{"version":168,"is_range":169,"range_type":170,"version_start":9,"version_start_type":9,"version_end":171,"version_end_type":172,"fixed_in":9},{"ecosystem":161,"name":182,"vendor":163,"product":183,"cpe_part":9,"purl_type":165,"purl_namespace":163,"purl_name":183,"source":9,"versions":184},"kernel-ec2","kernel-ec2&distro=SUSE Linux Enterprise Module for Public Cloud 12",[185],{"version":168,"is_range":169,"range_type":170,"version_start":9,"version_start_type":9,"version_end":171,"version_end_type":172,"fixed_in":9},{"ecosystem":161,"name":187,"vendor":163,"product":188,"cpe_part":9,"purl_type":165,"purl_namespace":163,"purl_name":188,"source":9,"versions":189},"kernel-source","kernel-source&distro=SUSE Linux Enterprise Server 12 SP1-LTSS",[190],{"version":168,"is_range":169,"range_type":170,"version_start":9,"version_start_type":9,"version_end":171,"version_end_type":172,"fixed_in":9},{"ecosystem":161,"name":187,"vendor":163,"product":192,"cpe_part":9,"purl_type":165,"purl_namespace":163,"purl_name":192,"source":9,"versions":193},"kernel-source&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP1",[194],{"version":168,"is_range":169,"range_type":170,"version_start":9,"version_start_type":9,"version_end":171,"version_end_type":172,"fixed_in":9},{"ecosystem":161,"name":187,"vendor":163,"product":196,"cpe_part":9,"purl_type":165,"purl_namespace":163,"purl_name":196,"source":9,"versions":197},"kernel-source&distro=SUSE OpenStack Cloud 6",[198],{"version":168,"is_range":169,"range_type":170,"version_start":9,"version_start_type":9,"version_end":171,"version_end_type":172,"fixed_in":9},{"ecosystem":161,"name":200,"vendor":163,"product":201,"cpe_part":9,"purl_type":165,"purl_namespace":163,"purl_name":201,"source":9,"versions":202},"kernel-syms","kernel-syms&distro=SUSE Linux Enterprise Server 12 SP1-LTSS",[203],{"version":168,"is_range":169,"range_type":170,"version_start":9,"version_start_type":9,"version_end":171,"version_end_type":172,"fixed_in":9},{"ecosystem":161,"name":200,"vendor":163,"product":205,"cpe_part":9,"purl_type":165,"purl_namespace":163,"purl_name":205,"source":9,"versions":206},"kernel-syms&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP1",[207],{"version":168,"is_range":169,"range_type":170,"version_start":9,"version_start_type":9,"version_end":171,"version_end_type":172,"fixed_in":9},{"ecosystem":161,"name":200,"vendor":163,"product":209,"cpe_part":9,"purl_type":165,"purl_namespace":163,"purl_name":209,"source":9,"versions":210},"kernel-syms&distro=SUSE OpenStack Cloud 6",[211],{"version":168,"is_range":169,"range_type":170,"version_start":9,"version_start_type":9,"version_end":171,"version_end_type":172,"fixed_in":9},{"ecosystem":161,"name":213,"vendor":163,"product":214,"cpe_part":9,"purl_type":165,"purl_namespace":163,"purl_name":214,"source":9,"versions":215},"kernel-xen","kernel-xen&distro=SUSE Linux Enterprise Server 12 SP1-LTSS",[216],{"version":168,"is_range":169,"range_type":170,"version_start":9,"version_start_type":9,"version_end":171,"version_end_type":172,"fixed_in":9},{"ecosystem":161,"name":213,"vendor":163,"product":218,"cpe_part":9,"purl_type":165,"purl_namespace":163,"purl_name":218,"source":9,"versions":219},"kernel-xen&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP1",[220],{"version":168,"is_range":169,"range_type":170,"version_start":9,"version_start_type":9,"version_end":171,"version_end_type":172,"fixed_in":9},{"ecosystem":161,"name":213,"vendor":163,"product":222,"cpe_part":9,"purl_type":165,"purl_namespace":163,"purl_name":222,"source":9,"versions":223},"kernel-xen&distro=SUSE OpenStack Cloud 6",[224],{"version":168,"is_range":169,"range_type":170,"version_start":9,"version_start_type":9,"version_end":171,"version_end_type":172,"fixed_in":9},{"ecosystem":161,"name":226,"vendor":163,"product":227,"cpe_part":9,"purl_type":165,"purl_namespace":163,"purl_name":227,"source":9,"versions":228},"kgraft-patch-SLE12-SP1_Update_23","kgraft-patch-SLE12-SP1_Update_23&distro=SUSE Linux Enterprise Server 12 SP1-LTSS",[229],{"version":230,"is_range":169,"range_type":170,"version_start":9,"version_start_type":9,"version_end":231,"version_end_type":172,"fixed_in":9},"lt1_2_1","1-2.1",{"ecosystem":161,"name":226,"vendor":163,"product":233,"cpe_part":9,"purl_type":165,"purl_namespace":163,"purl_name":233,"source":9,"versions":234},"kgraft-patch-SLE12-SP1_Update_23&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP1",[235],{"version":230,"is_range":169,"range_type":170,"version_start":9,"version_start_type":9,"version_end":231,"version_end_type":172,"fixed_in":9},{"ecosystem":161,"name":226,"vendor":163,"product":237,"cpe_part":9,"purl_type":165,"purl_namespace":163,"purl_name":237,"source":9,"versions":238},"kgraft-patch-SLE12-SP1_Update_23&distro=SUSE OpenStack Cloud 6",[239],{"version":230,"is_range":169,"range_type":170,"version_start":9,"version_start_type":9,"version_end":231,"version_end_type":172,"fixed_in":9}]