SUSE-SU-2018:3787-1 -- SLES kgraft-patchID: oval:org.secpod.oval:def:89002621 | Date: (C)2021-02-25 (M)2024-04-17 |
Class: PATCH | Family: unix |
This update for the Linux Kernel 4.4.103-92_56 fixes several issues. The following security issues were fixed: - CVE-2018-5391: Fixed a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may have caused a denial of service condition by sending specially crafted IP fragments. The current vulnerability became exploitable in the Linux kernel with the increase of the IP fragment reassembly queue size . - CVE-2018-18386: The drivers/tty/n_tty.c allowed local attackers to hang/block further usage of any pseudo terminal devices due to an EXTPROC versus ICANON confusion in TIOCINQ .
Platform: |
SUSE Linux Enterprise Server 12 SP2 |