[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2018:1221-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":36,"duplicates":37,"related":38,"reserved_at":9,"published_at":50,"modified_at":51,"state":9,"summary":52,"references_raw":54,"kevs":171,"epss":9,"epss_history":172,"metrics":173,"affected":174},"SUSE-SU-2018:1221-1","Security update for the Linux Kernel\n\n\n\nThe SUSE Linux Enterprise 12 GA LTSS kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2018-1087: And an unprivileged KVM guest user could use this flaw to potentially escalate their privileges inside a guest. (bsc#1087088)\n- CVE-2018-8897: An unprivileged system user could use incorrect set up interrupt stacks to crash the Linux kernel resulting in DoS issue. (bsc#1087088)\n- CVE-2018-8781: The udl_fb_mmap function in drivers/gpu/drm/udl/udl_fb.c had an integer-overflow vulnerability allowing local users with access to the udldrmfb driver to obtain full read and write permissions on kernel physical pages, resulting in a code execution in kernel space (bnc#1090643).\n- CVE-2018-10124: The kill_something_info function in kernel/signal.c might allow local users to cause a denial of service via an INT_MIN argument (bnc#1089752).\n- CVE-2018-10087: The kernel_wait4 function in kernel/exit.c might allow local users to cause a denial of service by triggering an attempted use of the -INT_MIN value (bnc#1089608).\n- CVE-2018-7757: Memory leak in the sas_smp_get_phy_events function in drivers/scsi/libsas/sas_expander.c allowed local users to cause a denial of service (memory consumption) via many read accesses to files in the /sys/class/sas_phy directory, as demonstrated by the /sys/class/sas_phy/phy-1:0:12/invalid_dword_count file (bnc#1084536 1087209).\n- CVE-2017-13220: An elevation of privilege vulnerability in the Upstream kernel bluez was fixed. (bnc#1076537).\n- CVE-2017-11089: A buffer overread was observed in nl80211_set_station when user space application sends attribute NL80211_ATTR_LOCAL_MESH_POWER_MODE with data of size less than 4 bytes   (bnc#1088261).\n- CVE-2017-0861: Use-after-free vulnerability in the snd_pcm_info function in the ALSA subsystem allowed attackers to gain privileges via unspecified vectors (bnc#1088260).\n- CVE-2018-8822: Incorrect buffer length handling in the ncp_read_kernel function in fs/ncpfs/ncplib_kernel.c could be exploited by malicious NCPFS servers to crash the kernel or execute code (bnc#1086162).\n- CVE-2017-18203: The dm_get_from_kobject function in drivers/md/dm.c allow local users to cause a denial of service (BUG) by leveraging a race condition with __dm_destroy during creation and removal of DM devices (bnc#1083242).\n\nThe following non-security bugs were fixed:\n\n- Integrate fixes resulting from bsc#1088147 More info in the respective commit messages.\n- KABI: x86/kaiser: properly align trampoline stack (bsc#1087260).\n- kGraft: fix small race in reversion code (bsc#1083125).\n- kabi/severities: Ignore kgr_shadow_* kABI changes\n- kvm/x86: fix icebp instruction handling (bsc#1087088).\n- livepatch: Allow to call a custom callback when freeing shadow variables (bsc#1082299 fate#313296).\n- livepatch: Initialize shadow variables safely by a custom callback (bsc#1082299 fate#313296).\n- x86/entry/64: Do not use IST entry for #BP stack (bsc#1087088).\n- x86/kaiser: properly align trampoline stack (bsc#1087260).\n- x86/retpoline: do not perform thunk calls in ring3 vsyscall code (bsc#1085331).\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34],{"_key":15},"CVE-2017-0861",{"_key":17},"CVE-2017-11089",{"_key":19},"CVE-2017-13220",{"_key":21},"CVE-2017-18203",{"_key":23},"CVE-2018-10087",{"_key":25},"CVE-2018-10124",{"_key":27},"CVE-2018-1087",{"_key":29},"CVE-2018-7757",{"_key":31},"CVE-2018-8781",{"_key":33},"CVE-2018-8822",{"_key":35},"CVE-2018-8897",[],[],[39,40,41,42,43,44,45,46,47,48,49],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},"2018-05-11T15:16:24Z","2026-02-04T04:37:14.078502Z",{"cisa_kev":53,"cisa_ransomware":53,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[55,61,66,70,74,78,82,86,90,94,98,102,106,110,114,118,122,126,131,135,139,143,147,151,155,159,163,167],{"url":56,"sources":57,"tags":59},"https://www.suse.com/support/update/announcement/2018/suse-su-20181221-1/",[58],"osv_suse",[60],"Advisory",{"url":62,"sources":63,"tags":64},"https://bugzilla.suse.com/1076537",[58],[65],"REPORT",{"url":67,"sources":68,"tags":69},"https://bugzilla.suse.com/1082299",[58],[65],{"url":71,"sources":72,"tags":73},"https://bugzilla.suse.com/1083125",[58],[65],{"url":75,"sources":76,"tags":77},"https://bugzilla.suse.com/1083242",[58],[65],{"url":79,"sources":80,"tags":81},"https://bugzilla.suse.com/1084536",[58],[65],{"url":83,"sources":84,"tags":85},"https://bugzilla.suse.com/1085331",[58],[65],{"url":87,"sources":88,"tags":89},"https://bugzilla.suse.com/1086162",[58],[65],{"url":91,"sources":92,"tags":93},"https://bugzilla.suse.com/1087088",[58],[65],{"url":95,"sources":96,"tags":97},"https://bugzilla.suse.com/1087209",[58],[65],{"url":99,"sources":100,"tags":101},"https://bugzilla.suse.com/1087260",[58],[65],{"url":103,"sources":104,"tags":105},"https://bugzilla.suse.com/1088147",[58],[65],{"url":107,"sources":108,"tags":109},"https://bugzilla.suse.com/1088260",[58],[65],{"url":111,"sources":112,"tags":113},"https://bugzilla.suse.com/1088261",[58],[65],{"url":115,"sources":116,"tags":117},"https://bugzilla.suse.com/1089608",[58],[65],{"url":119,"sources":120,"tags":121},"https://bugzilla.suse.com/1089752",[58],[65],{"url":123,"sources":124,"tags":125},"https://bugzilla.suse.com/1090643",[58],[65],{"url":127,"sources":128,"tags":129},"https://www.suse.com/security/cve/CVE-2017-0861",[58],[130],"WEB",{"url":132,"sources":133,"tags":134},"https://www.suse.com/security/cve/CVE-2017-11089",[58],[130],{"url":136,"sources":137,"tags":138},"https://www.suse.com/security/cve/CVE-2017-13220",[58],[130],{"url":140,"sources":141,"tags":142},"https://www.suse.com/security/cve/CVE-2017-18203",[58],[130],{"url":144,"sources":145,"tags":146},"https://www.suse.com/security/cve/CVE-2018-10087",[58],[130],{"url":148,"sources":149,"tags":150},"https://www.suse.com/security/cve/CVE-2018-10124",[58],[130],{"url":152,"sources":153,"tags":154},"https://www.suse.com/security/cve/CVE-2018-1087",[58],[130],{"url":156,"sources":157,"tags":158},"https://www.suse.com/security/cve/CVE-2018-7757",[58],[130],{"url":160,"sources":161,"tags":162},"https://www.suse.com/security/cve/CVE-2018-8781",[58],[130],{"url":164,"sources":165,"tags":166},"https://www.suse.com/security/cve/CVE-2018-8822",[58],[130],{"url":168,"sources":169,"tags":170},"https://www.suse.com/security/cve/CVE-2018-8897",[58],[130],[],[],[],[175,188,193,198,203,208],{"ecosystem":176,"name":177,"vendor":178,"product":179,"cpe_part":9,"purl_type":180,"purl_namespace":178,"purl_name":179,"source":9,"versions":181},"SUSE Linux Enterprise","kernel-default","suse","kernel-default&distro=SUSE Linux Enterprise Server 12-LTSS","rpm",[182],{"version":183,"is_range":184,"range_type":185,"version_start":9,"version_start_type":9,"version_end":186,"version_end_type":187,"fixed_in":9},"lt3_12_61_52_128_1",true,"ecosystem","3.12.61-52.128.1","excluding",{"ecosystem":176,"name":189,"vendor":178,"product":190,"cpe_part":9,"purl_type":180,"purl_namespace":178,"purl_name":190,"source":9,"versions":191},"kernel-ec2","kernel-ec2&distro=SUSE Linux Enterprise Module for Public Cloud 12",[192],{"version":183,"is_range":184,"range_type":185,"version_start":9,"version_start_type":9,"version_end":186,"version_end_type":187,"fixed_in":9},{"ecosystem":176,"name":194,"vendor":178,"product":195,"cpe_part":9,"purl_type":180,"purl_namespace":178,"purl_name":195,"source":9,"versions":196},"kernel-source","kernel-source&distro=SUSE Linux Enterprise Server 12-LTSS",[197],{"version":183,"is_range":184,"range_type":185,"version_start":9,"version_start_type":9,"version_end":186,"version_end_type":187,"fixed_in":9},{"ecosystem":176,"name":199,"vendor":178,"product":200,"cpe_part":9,"purl_type":180,"purl_namespace":178,"purl_name":200,"source":9,"versions":201},"kernel-syms","kernel-syms&distro=SUSE Linux Enterprise Server 12-LTSS",[202],{"version":183,"is_range":184,"range_type":185,"version_start":9,"version_start_type":9,"version_end":186,"version_end_type":187,"fixed_in":9},{"ecosystem":176,"name":204,"vendor":178,"product":205,"cpe_part":9,"purl_type":180,"purl_namespace":178,"purl_name":205,"source":9,"versions":206},"kernel-xen","kernel-xen&distro=SUSE Linux Enterprise Server 12-LTSS",[207],{"version":183,"is_range":184,"range_type":185,"version_start":9,"version_start_type":9,"version_end":186,"version_end_type":187,"fixed_in":9},{"ecosystem":176,"name":209,"vendor":178,"product":210,"cpe_part":9,"purl_type":180,"purl_namespace":178,"purl_name":210,"source":9,"versions":211},"kgraft-patch-SLE12_Update_34","kgraft-patch-SLE12_Update_34&distro=SUSE Linux Enterprise Server 12-LTSS",[212],{"version":213,"is_range":184,"range_type":185,"version_start":9,"version_start_type":9,"version_end":214,"version_end_type":187,"fixed_in":9},"lt1_1_3_1","1-1.3.1"]