| Beschreibung: | Summary:
The remote host is missing an update for the 'kernel'
package(s) announced via the referenced advisory.
Vulnerability Insight:
This Linux kernel security update fixes various security issues and bugs.
The Linux Kernel was updated to fix various security issues and bugs.
Main security issues fixed:
A security issue in the tty layer that was fixed that could be used by
local attackers for code execution (CVE-2014-0196).
Two security issues in the floppy driver were fixed that could be used by
local attackers on machines with the floppy to crash the kernel or
potentially execute code in the kernel (CVE-2014-1737 CVE-2014-1738).
Other security issues and bugfixes:
- netfilter: nf_nat: fix access to uninitialized buffer in IRC NAT helper
(bnc#860835 CVE-2014-1690).
- net: sctp: fix sctp_sf_do_5_1D_ce to verify if we/peer is AUTH
(bnc#866102, CVE-2014-0101).
- [media] ivtv: Fix Oops when no firmware is loaded (bnc#875440).
- ALSA: hda - Add dock pin setups for Thinkpad T440 (bnc#876699).
- ip6tnl: fix double free of fb_tnl_dev on exit (bnc#876531).
- Update arm config files: Enable all USB-to-serial drivers Specifically,
enable USB_SERIAL_WISHBONE and USB_SERIAL_QT2 on all arm flavors.
- mei: limit the number of consecutive resets (bnc#821619, bnc#852656).
- mei: revamp mei reset state machine (bnc#821619, bnc#852656).
- mei: use hbm idle state to prevent spurious resets (bnc#821619).
- mei: do not run reset flow from the interrupt thread
(bnc#821619, bnc#852656).
- mei: don't get stuck in select during reset (bnc#821619).
- mei: wake also writers on reset (bnc#821619).
- mei: remove flash_work_queue (bnc#821619, bnc#852656).
- mei: me: do not load the driver if the FW doesn't support MEI interface
(bnc#821619).
- Update ec2 config files: Disable CONFIG_CAN CAN support is disabled
everywhere else, so disable it in ec2 too.
- Refresh Xen patches (bnc#851244).
- Update arm/exynos config file: disable AHCI_IMX This driver is only used
on Freescale i.MX systems so it isn't needed on Exynos.
- drm: Prefer noninterlace cmdline mode unless explicitly specified
(bnc#853350).
- kabi/severities: add exception for irda. The changes resulted in a 4x
performance increase. Any external users of this API will also want to
rebuild their modules.
- i7core_edac: Fix PCI device reference count.
- KABI: revert tcp: TSO packets automatic sizing.
- KABI: revert tcp: TSQ can use a dynamic limit.
- kabi: add exceptions for kvm and l2tp
- patches.fixes/sunrpc-add-an-info-file-for-the-dummy-gssd-pipe.patch:
Move include of utsname.h to where it's needed to avoid kABI breakage
due to utsname becoming defined.
- Update kabi files. The kABI r ...
Description truncated, please see the referenced URL(s) for more information.
Affected Software/OS:
kernel on openSUSE 13.1
Solution:
Please install the updated package(s).
CVSS Score:
10.0
CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
