SUSE-SU-2017:3226-1

Advisory lineage Upstream: 2 Downstream: 0
Published: 06 Dec 2017, 14:24
Last modified:04 Feb 2026, 04:19

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

06 Dec 2017, 14:24
Published
Vulnerability first disclosed
04 Feb 2026, 04:19
Last Modified
Vulnerability information updated

Description

Security update for the Linux Kernel The SUSE Linux Enterprise 12 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-1000405: A bug in the THP CoW support could be used by local attackers to corrupt memory of other processes and cause them to crash (bnc#1069496). - CVE-2017-16939: The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel allowed local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages (bnc#1069702). The following non-security bugs were fixed: Fix a build issue on ppc64le systems (bsc#1070805)

Affected Systems

  • susekernel-default&distro=SUSE Linux Enterprise Desktop 12 SP2

    < 4.4.90-92.50.1

  • susekernel-default&distro=SUSE Linux Enterprise High Availability Extension 12 SP2

    < 4.4.90-92.50.1

  • susekernel-default&distro=SUSE Linux Enterprise Server 12 SP2

    < 4.4.90-92.50.1

  • susekernel-default&distro=SUSE Linux Enterprise Server for Raspberry Pi 12 SP2

    < 4.4.90-92.50.1

  • susekernel-default&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2

    < 4.4.90-92.50.1

  • susekernel-default&distro=SUSE Linux Enterprise Workstation Extension 12 SP2

    < 4.4.90-92.50.1

  • susekernel-docs&distro=SUSE Linux Enterprise Software Development Kit 12 SP2

    < 4.4.90-92.50.3

  • susekernel-obs-build&distro=SUSE Linux Enterprise Software Development Kit 12 SP2

    < 4.4.90-92.50.1

  • susekernel-source&distro=SUSE Linux Enterprise Desktop 12 SP2

    < 4.4.90-92.50.1

  • susekernel-source&distro=SUSE Linux Enterprise Server 12 SP2

    < 4.4.90-92.50.1

  • susekernel-source&distro=SUSE Linux Enterprise Server for Raspberry Pi 12 SP2

    < 4.4.90-92.50.1

  • susekernel-source&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2

    < 4.4.90-92.50.1

  • susekernel-syms&distro=SUSE Linux Enterprise Desktop 12 SP2

    < 4.4.90-92.50.1

  • susekernel-syms&distro=SUSE Linux Enterprise Server 12 SP2

    < 4.4.90-92.50.1

  • susekernel-syms&distro=SUSE Linux Enterprise Server for Raspberry Pi 12 SP2

    < 4.4.90-92.50.1

  • susekernel-syms&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2

    < 4.4.90-92.50.1

  • susekgraft-patch-SLE12-SP2_Update_15&distro=SUSE Linux Enterprise Live Patching 12

    < 1-4.1

References (6)