[LU-8938] kernel update [SLES12 SP2 4.4.21-90] Created: 14/Dec/16  Updated: 11/Sep/18  Resolved: 11/Sep/18

Status: Resolved
Project: Lustre
Component/s: None
Affects Version/s: None
Fix Version/s: None

Type: Bug Priority: Minor
Reporter: Bob Glossman (Inactive) Assignee: Bob Glossman (Inactive)
Resolution: Fixed Votes: 1
Labels: None

Issue Links:
Blocker
is blocked by LU-8871 kernel upgrade [SLES12 SP2 4.4.21-84] Resolved
Related
is related to LU-9029 kernel update [SLES12 SP2 4.4.38-93] Resolved
Severity: 3
Rank (Obsolete): 9223372036854775807

 Description   

The SUSE Linux Enterprise 12 SP 2 kernel was updated to fix two security issues.

The following security bugs were fixed:

  • CVE-2016-9576: A use-after-free vulnerability in the SCSI generic driver allows users with write access to /dev/sg* or /dev/bsg* to elevate their privileges (bsc#1013604).
  • CVE-2016-9794: A use-after-free vulnerability in the ALSA pcm layer allowed local users to cause a denial of service, memory corruption or possibly even to elevate their privileges (bsc#1013533).

 Comments   
Comment by Gerrit Updater [ 12/Jan/17 ]

Bob Glossman (bob.glossman@intel.com) uploaded a new patch: https://review.whamcloud.com/24859
Subject: LU-8938 kernel: kernel update [SLES12 SP2 4.4.21-90]
Project: fs/lustre-release
Branch: master
Current Patch Set: 1
Commit: 572f009f2fdb66f8a48d7dda2bf350465a86c877

Comment by Bob Glossman (Inactive) [ 18/Jan/17 ]

obsolete.
There's already a newer kernel update version, LU-9029.

Generated at Sat Feb 10 02:21:51 UTC 2024 using Jira 9.4.14#940014-sha1:734e6822bbf0d45eff9af51f82432957f73aa32c.