[LU-8954] kernel update [SLES12 SP1 3.12.67-60.64.24] Created: 19/Dec/16  Updated: 31/Jan/17  Resolved: 31/Jan/17

Status: Resolved
Project: Lustre
Component/s: None
Affects Version/s: None
Fix Version/s: Lustre 2.10.0

Type: Bug Priority: Minor
Reporter: Bob Glossman (Inactive) Assignee: Bob Glossman (Inactive)
Resolution: Fixed Votes: 0
Labels: None

Issue Links:
Blocker
Duplicate
is duplicated by LU-9025 SLES12 server fails to start kdump Resolved
Related
is related to LU-8868 kernel update [SLES12 SP1 3.12.67-60.... Resolved
Severity: 3
Rank (Obsolete): 9223372036854775807

 Description   

The SUSE Linux Enterprise 12 SP 1 kernel was updated to fix two security issues.

The following security bugs were fixed:

  • CVE-2016-9576: A use-after-free vulnerability in the SCSI generic driver allows users with write access to /dev/sg* or /dev/bsg* to elevate their privileges (bsc#1013604).
  • CVE-2016-9794: A use-after-free vulnerability in the ALSA pcm layer allowed local users to cause a denial of service, memory corruption or possibly even to elevate their privileges (bsc#1013533).

 Comments   
Comment by Gerrit Updater [ 19/Dec/16 ]

Bob Glossman (bob.glossman@intel.com) uploaded a new patch: https://review.whamcloud.com/24427
Subject: LU-8954 kernel: kernel update [SLES12 SP1 3.12.67-60.64.24]
Project: fs/lustre-release
Branch: master
Current Patch Set: 1
Commit: 5a3d387e62be4bfaaa9624c2e21428dd90d4e076

Comment by Gerrit Updater [ 31/Jan/17 ]

Oleg Drokin (oleg.drokin@intel.com) merged in patch https://review.whamcloud.com/24427/
Subject: LU-8954 kernel: kernel update [SLES12 SP1 3.12.67-60.64.24]
Project: fs/lustre-release
Branch: master
Current Patch Set:
Commit: 0a9f9ab41b4fd2a697439a195aa3ee7cf0705e64

Comment by Peter Jones [ 31/Jan/17 ]

Landed for 2.10

Generated at Sat Feb 10 02:21:59 UTC 2024 using Jira 9.4.14#940014-sha1:734e6822bbf0d45eff9af51f82432957f73aa32c.