[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2019:13937-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":38,"duplicates":39,"related":40,"reserved_at":9,"published_at":53,"modified_at":54,"state":9,"summary":55,"references_raw":57,"kevs":234,"epss":9,"epss_history":235,"metrics":236,"affected":237},"SUSE-SU-2019:13937-1","Security update for the Linux Kernel\n\n\nThe SUSE Linux Enterprise 12 SP3 kernel was updated to 3.0.101 to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2018-9516: In hid_debug_events_read of drivers/hid/hid-debug.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1108498).\n- CVE-2018-19407: The vcpu_scan_ioapic function in arch/x86/kvm/x86.c allowed local users to cause a denial of service (NULL pointer dereference and BUG) via crafted system calls that reach a situation where ioapic is uninitialized (bnc#1116841).\n- CVE-2018-19985: The function hso_probe read if_num from the USB device (as an u8) and used it without a length check to index an array, resulting in an OOB memory read in hso_probe or hso_get_config_data that could be used by local attackers (bnc#1120743).\n- CVE-2018-20169: The USB subsystem mishandled size checks during the reading of an extra descriptor, related to __usb_get_extra_descriptor in drivers/usb/core/usb.c (bnc#1119714).\n- CVE-2018-9568: In sk_clone_lock of sock.c, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation (bnc#1118319).\n- CVE-2018-19824: A local user could exploit a use-after-free in the ALSA driver by supplying a malicious USB Sound device (with zero interfaces) that is mishandled in usb_audio_probe in sound/usb/card.c (bnc#1118152).\n- CVE-2018-18281: The mremap() syscall performs TLB flushes after dropping pagetable locks. If a syscall such as ftruncate() removes entries from the pagetables of a task that is in the middle of mremap(), a stale TLB entry can remain for a short time that permits access to a physical page after it has been released back to the page allocator and reused (bnc#1113769).\n- CVE-2018-18710: An information leak in cdrom_ioctl_select_disc in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking. This is similar to CVE-2018-10940 and CVE-2018-16658 (bnc#1113751).\n- CVE-2018-18386: drivers/tty/n_tty.c allowed local attackers (who are able to access pseudo terminals) to hang/block further usage of any pseudo terminal devices due to an EXTPROC versus ICANON confusion in TIOCINQ (bnc#1094825).\n- CVE-2017-7273: The cp_report_fixup function in drivers/hid/hid-cypress.c allowed physically proximate attackers to cause a denial of service (integer underflow) or possibly have unspecified other impact via a crafted HID report (bnc#1031240).\n- CVE-2017-16533: The usbhid_parse function in drivers/hid/usbhid/hid-core.c allowed local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device (bnc#1066674).\n- CVE-2017-1000407: Fixed a denial of service, which was caused by flooding the diagnostic port 0x80 an exception leading to a kernel panic (bnc#1071021).\n\nThe following non-security bugs were fixed:\n\n- ALSA: pcm: Fix potential deadlock in OSS emulation (bsc#968018, bsc#1104366).\n- cpusets, isolcpus: exclude isolcpus from load balancing in cpusets (bsc#1119255).\n- Drivers: scsi: storvsc: Change the limits to reflect the values on the host (bug#1107189).\n- drivers: scsi: storvsc: Correctly handle TEST_UNIT_READY failure (bug#1107189).\n- Drivers: scsi: storvsc: Filter commands based on the storage protocol version (bug#1107189).\n- Drivers: scsi: storvsc: Fix a bug in handling VMBUS protocol version (bug#1107189).\n- Drivers: scsi: storvsc: Implement a eh_timed_out handler (bug#1107189).\n- Drivers: scsi: storvsc: Set cmd_per_lun to reflect value supported by the Host (bug#1107189).\n- drivers: scsi: storvsc: Set srb_flags in all cases (bug#1107189).\n- EHCI: improved logic for isochronous scheduling (bsc#1117515).\n- ipv4: remove the unnecessary variable in udp_mcast_next (bsc#1104070).\n- KEYS: prevent creating a different user's keyrings (bnc#1094186).\n- KVM: x86: Fix the duplicate failure path handling in vmx_init (bsc#1104367).\n- MM: increase safety margin provided by PF_LESS_THROTTLE (bsc#1116412).\n- MM/vmscan.c: avoid throttling reclaim for loop-back nfsd threads (bsc#1116412).\n- net/ipv6/udp: Fix ipv6 multicast socket filter regression (bsc#1104070).\n- NFS: avoid deadlocks with loop-back mounted NFS filesystems (bsc#1116412).\n- NFS: avoid waiting at all in nfs_release_page when congested (bsc#1116412).\n- NFS: Do not write enable new pages while an invalidation is proceeding (bsc#1116412).\n- NFS: Fix a regression in the read() syscall (bsc#1116412).\n- NFS: Fix races in nfs_revalidate_mapping (bsc#1116412).\n- NFS: fix the handling of NFS_INO_INVALID_DATA flag in nfs_revalidate_mapping (bsc#1116412).\n- NFS: Fix writeback performance issue on cache invalidation (bsc#1116412).\n- reiserfs: do not preallocate blocks for extended attributes (bsc#990682).\n- reiserfs: fix race in readdir (bsc#1039803).\n- sched, isolcpu: make cpu_isolated_map visible outside scheduler (bsc#1119255).\n- scsi: storvsc: Always send on the selected outgoing channel (bug#1107189).\n- scsi: storvsc: Do not assume that the scatterlist is not chained (bug#1107189).\n- scsi: storvsc: Fix a bug in copy_from_bounce_buffer() (bug#1107189).\n- scsi: storvsc: Increase the ring buffer size (bug#1107189).\n- scsi: storvsc: Size the queue depth based on the ringbuffer size (bug#1107189).\n- storvsc: fix a bug in storvsc limits (bug#1107189).\n- storvsc: force discovery of LUNs that may have been removed (bug#1107189).\n- storvsc: get rid of overly verbose warning messages (bug#1107189).\n- storvsc: in responce to a scan event, scan the host (bug#1107189).\n- storvsc: Set the SRB flags correctly when no data transfer is needed (bug#1107189).\n- udp: ipv4: Add udp early demux (bsc#1104070).\n- udp: restore UDPlite many-cast delivery (bsc#1104070).\n- udp: Simplify __udp*_lib_mcast_deliver (bsc#1104070).\n- udp: Use hash2 for long hash1 chains in __udp*_lib_mcast_deliver (bsc#1104070).\n- USB: EHCI: add new root-hub state: STOPPING (bsc#1117515).\n- USB: EHCI: add pointer to end of async-unlink list (bsc#1117515).\n- USB: EHCI: add symbolic constants for QHs (bsc#1117515).\n- USB: EHCI: always scan each interrupt QH (bsc#1117515).\n- USB: EHCI: do not lose events during a scan (bsc#1117515).\n- USB: EHCI: do not refcount iso_stream structures (bsc#1117515).\n- USB: EHCI: do not refcount QHs (bsc#1117515).\n- USB: EHCI: fix initialization bug in iso_stream_schedule() (bsc#1117515).\n- USB: EHCI: fix up locking (bsc#1117515).\n- USB: EHCI: initialize data before resetting hardware (bsc#1117515).\n- USB: EHCI: introduce high-res timer (bsc#1117515).\n- USB: EHCI: remove PS3 status polling (bsc#1117515).\n- USB: EHCI: remove unneeded suspend/resume code (bsc#1117515).\n- USB: EHCI: rename 'reclaim' (bsc#1117515).\n- USB: EHCI: resolve some unlikely races (bsc#1117515).\n- USB: EHCI: return void instead of 0 (bsc#1117515).\n- USB: EHCI: simplify isochronous scanning (bsc#1117515).\n- USB: EHCI: unlink multiple async QHs together (bsc#1117515).\n- USB: EHCI: use hrtimer for async schedule (bsc#1117515).\n- USB: EHCI: use hrtimer for controller death (bsc#1117515).\n- USB: EHCI: use hrtimer for interrupt QH unlink (bsc#1117515).\n- USB: EHCI: use hrtimer for (s)iTD deallocation (bsc#1117515).\n- USB: EHCI: use hrtimer for the IAA watchdog (bsc#1117515).\n- USB: EHCI: use hrtimer for the I/O watchdog (bsc#1117515).\n- USB: EHCI: use hrtimer for the periodic schedule (bsc#1117515).\n- USB: EHCI: use hrtimer for unlinking empty async QHs (bsc#1117515).\n- XFS: do not BUG() on mixed direct and mapped I/O (bsc#1114920).\n- XFS: stop searching for free slots in an inode chunk when there are none (bsc#1115007).\n- XFS: validate sb_logsunit is a multiple of the fs blocksize (bsc#1115038).\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36],{"_key":15},"CVE-2017-1000407",{"_key":17},"CVE-2017-16533",{"_key":19},"CVE-2017-7273",{"_key":21},"CVE-2018-18281",{"_key":23},"CVE-2018-18386",{"_key":25},"CVE-2018-18710",{"_key":27},"CVE-2018-19407",{"_key":29},"CVE-2018-19824",{"_key":31},"CVE-2018-19985",{"_key":33},"CVE-2018-20169",{"_key":35},"CVE-2018-9516",{"_key":37},"CVE-2018-9568",[],[],[41,42,43,44,45,46,47,48,49,50,51,52],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},"2019-01-29T12:13:02Z","2025-05-02T04:06:00.772855Z",{"cisa_kev":56,"cisa_ransomware":56,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[58,64,69,73,77,81,85,89,93,97,101,105,109,113,117,121,125,129,133,137,141,145,149,153,157,161,165,169,173,177,181,185,190,194,198,202,206,210,214,218,222,226,230],{"url":59,"sources":60,"tags":62},"https://www.suse.com/support/update/announcement/2019/suse-su-201913937-1/",[61],"osv_suse",[63],"Advisory",{"url":65,"sources":66,"tags":67},"https://bugzilla.suse.com/1031240",[61],[68],"REPORT",{"url":70,"sources":71,"tags":72},"https://bugzilla.suse.com/1039803",[61],[68],{"url":74,"sources":75,"tags":76},"https://bugzilla.suse.com/1066674",[61],[68],{"url":78,"sources":79,"tags":80},"https://bugzilla.suse.com/1071021",[61],[68],{"url":82,"sources":83,"tags":84},"https://bugzilla.suse.com/1094186",[61],[68],{"url":86,"sources":87,"tags":88},"https://bugzilla.suse.com/1094825",[61],[68],{"url":90,"sources":91,"tags":92},"https://bugzilla.suse.com/1104070",[61],[68],{"url":94,"sources":95,"tags":96},"https://bugzilla.suse.com/1104366",[61],[68],{"url":98,"sources":99,"tags":100},"https://bugzilla.suse.com/1104367",[61],[68],{"url":102,"sources":103,"tags":104},"https://bugzilla.suse.com/1107189",[61],[68],{"url":106,"sources":107,"tags":108},"https://bugzilla.suse.com/1108498",[61],[68],{"url":110,"sources":111,"tags":112},"https://bugzilla.suse.com/1109200",[61],[68],{"url":114,"sources":115,"tags":116},"https://bugzilla.suse.com/1113201",[61],[68],{"url":118,"sources":119,"tags":120},"https://bugzilla.suse.com/1113751",[61],[68],{"url":122,"sources":123,"tags":124},"https://bugzilla.suse.com/1113769",[61],[68],{"url":126,"sources":127,"tags":128},"https://bugzilla.suse.com/1114920",[61],[68],{"url":130,"sources":131,"tags":132},"https://bugzilla.suse.com/1115007",[61],[68],{"url":134,"sources":135,"tags":136},"https://bugzilla.suse.com/1115038",[61],[68],{"url":138,"sources":139,"tags":140},"https://bugzilla.suse.com/1116412",[61],[68],{"url":142,"sources":143,"tags":144},"https://bugzilla.suse.com/1116841",[61],[68],{"url":146,"sources":147,"tags":148},"https://bugzilla.suse.com/1117515",[61],[68],{"url":150,"sources":151,"tags":152},"https://bugzilla.suse.com/1118152",[61],[68],{"url":154,"sources":155,"tags":156},"https://bugzilla.suse.com/1118319",[61],[68],{"url":158,"sources":159,"tags":160},"https://bugzilla.suse.com/1119255",[61],[68],{"url":162,"sources":163,"tags":164},"https://bugzilla.suse.com/1119714",[61],[68],{"url":166,"sources":167,"tags":168},"https://bugzilla.suse.com/1120743",[61],[68],{"url":170,"sources":171,"tags":172},"https://bugzilla.suse.com/905299",[61],[68],{"url":174,"sources":175,"tags":176},"https://bugzilla.suse.com/936875",[61],[68],{"url":178,"sources":179,"tags":180},"https://bugzilla.suse.com/968018",[61],[68],{"url":182,"sources":183,"tags":184},"https://bugzilla.suse.com/990682",[61],[68],{"url":186,"sources":187,"tags":188},"https://www.suse.com/security/cve/CVE-2017-1000407",[61],[189],"WEB",{"url":191,"sources":192,"tags":193},"https://www.suse.com/security/cve/CVE-2017-16533",[61],[189],{"url":195,"sources":196,"tags":197},"https://www.suse.com/security/cve/CVE-2017-7273",[61],[189],{"url":199,"sources":200,"tags":201},"https://www.suse.com/security/cve/CVE-2018-18281",[61],[189],{"url":203,"sources":204,"tags":205},"https://www.suse.com/security/cve/CVE-2018-18386",[61],[189],{"url":207,"sources":208,"tags":209},"https://www.suse.com/security/cve/CVE-2018-18710",[61],[189],{"url":211,"sources":212,"tags":213},"https://www.suse.com/security/cve/CVE-2018-19407",[61],[189],{"url":215,"sources":216,"tags":217},"https://www.suse.com/security/cve/CVE-2018-19824",[61],[189],{"url":219,"sources":220,"tags":221},"https://www.suse.com/security/cve/CVE-2018-19985",[61],[189],{"url":223,"sources":224,"tags":225},"https://www.suse.com/security/cve/CVE-2018-20169",[61],[189],{"url":227,"sources":228,"tags":229},"https://www.suse.com/security/cve/CVE-2018-9516",[61],[189],{"url":231,"sources":232,"tags":233},"https://www.suse.com/security/cve/CVE-2018-9568",[61],[189],[],[],[],[238,251,256,260,265,269,274,278,283,287,292,296,301,305,310],{"ecosystem":239,"name":240,"vendor":241,"product":242,"cpe_part":9,"purl_type":243,"purl_namespace":241,"purl_name":242,"source":9,"versions":244},"SUSE Linux Enterprise","kernel-bigsmp","suse","kernel-bigsmp&distro=SUSE Linux Enterprise Server 11 SP3-LTSS","rpm",[245],{"version":246,"is_range":247,"range_type":248,"version_start":9,"version_start_type":9,"version_end":249,"version_end_type":250,"fixed_in":9},"lt3_0_101_0_47_106_59_1",true,"ecosystem","3.0.101-0.47.106.59.1","excluding",{"ecosystem":239,"name":252,"vendor":241,"product":253,"cpe_part":9,"purl_type":243,"purl_namespace":241,"purl_name":253,"source":9,"versions":254},"kernel-default","kernel-default&distro=SUSE Linux Enterprise Point of Sale 11 SP3",[255],{"version":246,"is_range":247,"range_type":248,"version_start":9,"version_start_type":9,"version_end":249,"version_end_type":250,"fixed_in":9},{"ecosystem":239,"name":252,"vendor":241,"product":257,"cpe_part":9,"purl_type":243,"purl_namespace":241,"purl_name":257,"source":9,"versions":258},"kernel-default&distro=SUSE Linux Enterprise Server 11 SP3-LTSS",[259],{"version":246,"is_range":247,"range_type":248,"version_start":9,"version_start_type":9,"version_end":249,"version_end_type":250,"fixed_in":9},{"ecosystem":239,"name":261,"vendor":241,"product":262,"cpe_part":9,"purl_type":243,"purl_namespace":241,"purl_name":262,"source":9,"versions":263},"kernel-ec2","kernel-ec2&distro=SUSE Linux Enterprise Point of Sale 11 SP3",[264],{"version":246,"is_range":247,"range_type":248,"version_start":9,"version_start_type":9,"version_end":249,"version_end_type":250,"fixed_in":9},{"ecosystem":239,"name":261,"vendor":241,"product":266,"cpe_part":9,"purl_type":243,"purl_namespace":241,"purl_name":266,"source":9,"versions":267},"kernel-ec2&distro=SUSE Linux Enterprise Server 11 SP3-LTSS",[268],{"version":246,"is_range":247,"range_type":248,"version_start":9,"version_start_type":9,"version_end":249,"version_end_type":250,"fixed_in":9},{"ecosystem":239,"name":270,"vendor":241,"product":271,"cpe_part":9,"purl_type":243,"purl_namespace":241,"purl_name":271,"source":9,"versions":272},"kernel-pae","kernel-pae&distro=SUSE Linux Enterprise Point of Sale 11 SP3",[273],{"version":246,"is_range":247,"range_type":248,"version_start":9,"version_start_type":9,"version_end":249,"version_end_type":250,"fixed_in":9},{"ecosystem":239,"name":270,"vendor":241,"product":275,"cpe_part":9,"purl_type":243,"purl_namespace":241,"purl_name":275,"source":9,"versions":276},"kernel-pae&distro=SUSE Linux Enterprise Server 11 SP3-LTSS",[277],{"version":246,"is_range":247,"range_type":248,"version_start":9,"version_start_type":9,"version_end":249,"version_end_type":250,"fixed_in":9},{"ecosystem":239,"name":279,"vendor":241,"product":280,"cpe_part":9,"purl_type":243,"purl_namespace":241,"purl_name":280,"source":9,"versions":281},"kernel-source","kernel-source&distro=SUSE Linux Enterprise Point of Sale 11 SP3",[282],{"version":246,"is_range":247,"range_type":248,"version_start":9,"version_start_type":9,"version_end":249,"version_end_type":250,"fixed_in":9},{"ecosystem":239,"name":279,"vendor":241,"product":284,"cpe_part":9,"purl_type":243,"purl_namespace":241,"purl_name":284,"source":9,"versions":285},"kernel-source&distro=SUSE Linux Enterprise Server 11 SP3-LTSS",[286],{"version":246,"is_range":247,"range_type":248,"version_start":9,"version_start_type":9,"version_end":249,"version_end_type":250,"fixed_in":9},{"ecosystem":239,"name":288,"vendor":241,"product":289,"cpe_part":9,"purl_type":243,"purl_namespace":241,"purl_name":289,"source":9,"versions":290},"kernel-syms","kernel-syms&distro=SUSE Linux Enterprise Point of Sale 11 SP3",[291],{"version":246,"is_range":247,"range_type":248,"version_start":9,"version_start_type":9,"version_end":249,"version_end_type":250,"fixed_in":9},{"ecosystem":239,"name":288,"vendor":241,"product":293,"cpe_part":9,"purl_type":243,"purl_namespace":241,"purl_name":293,"source":9,"versions":294},"kernel-syms&distro=SUSE Linux Enterprise Server 11 SP3-LTSS",[295],{"version":246,"is_range":247,"range_type":248,"version_start":9,"version_start_type":9,"version_end":249,"version_end_type":250,"fixed_in":9},{"ecosystem":239,"name":297,"vendor":241,"product":298,"cpe_part":9,"purl_type":243,"purl_namespace":241,"purl_name":298,"source":9,"versions":299},"kernel-trace","kernel-trace&distro=SUSE Linux Enterprise Point of Sale 11 SP3",[300],{"version":246,"is_range":247,"range_type":248,"version_start":9,"version_start_type":9,"version_end":249,"version_end_type":250,"fixed_in":9},{"ecosystem":239,"name":297,"vendor":241,"product":302,"cpe_part":9,"purl_type":243,"purl_namespace":241,"purl_name":302,"source":9,"versions":303},"kernel-trace&distro=SUSE Linux Enterprise Server 11 SP3-LTSS",[304],{"version":246,"is_range":247,"range_type":248,"version_start":9,"version_start_type":9,"version_end":249,"version_end_type":250,"fixed_in":9},{"ecosystem":239,"name":306,"vendor":241,"product":307,"cpe_part":9,"purl_type":243,"purl_namespace":241,"purl_name":307,"source":9,"versions":308},"kernel-xen","kernel-xen&distro=SUSE Linux Enterprise Point of Sale 11 SP3",[309],{"version":246,"is_range":247,"range_type":248,"version_start":9,"version_start_type":9,"version_end":249,"version_end_type":250,"fixed_in":9},{"ecosystem":239,"name":306,"vendor":241,"product":311,"cpe_part":9,"purl_type":243,"purl_namespace":241,"purl_name":311,"source":9,"versions":312},"kernel-xen&distro=SUSE Linux Enterprise Server 11 SP3-LTSS",[313],{"version":246,"is_range":247,"range_type":248,"version_start":9,"version_start_type":9,"version_end":249,"version_end_type":250,"fixed_in":9}]