CVE-2017-1000410 Common Vulnerabilities and Exposures

Upstream information

CVE-2017-1000410 at MITRE

Description

The Linux kernel version 3.3-rc1 and later is affected by a vulnerability lies in the processing of incoming L2CAP commands - ConfigRequest, and ConfigResponse messages. This info leak is a result of uninitialized stack variables that may be returned to an attacker in their uninitialized state. By manipulating the code flows that precede the handling of these configuration messages, an attacker can also gain some control over which data will be held in the uninitialized stack variables. This can allow him to bypass KASLR, and stack canaries protection - as both pointers and stack canaries may be leaked in this manner. Combining this vulnerability (for example) with the previously disclosed RCE vulnerability in L2CAP configuration parsing (CVE-2017-1000251) may allow an attacker to exploit the RCE against kernels which were built with the above mitigations. These are the specifics of this vulnerability: In the function l2cap_parse_conf_rsp and in the function l2cap_parse_conf_req the following variable is declared without initialization: struct l2cap_conf_efs efs; In addition, when parsing input configuration parameters in both of these functions, the switch case for handling EFS elements may skip the memcpy call that will write to the efs variable: ... case L2CAP_CONF_EFS: if (olen == sizeof(efs)) memcpy(&efs, (void *)val, olen); ... The olen in the above if is attacker controlled, and regardless of that if, in both of these functions the efs variable would eventually be added to the outgoing configuration request that is being built: l2cap_add_conf_opt(&ptr, L2CAP_CONF_EFS, sizeof(efs), (unsigned long) &efs); So by sending a configuration request, or response, that contains an L2CAP_CONF_EFS element, but with an element length that is not sizeof(efs) - the memcpy to the uninitialized efs variable can be avoided, and the uninitialized variable would be returned to the attacker (16 bytes).

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having low severity.

CVSS v2 Scores
	National Vulnerability Database	SUSE
Base Score	5	3.3
Vector	AV:N/AC:L/Au:N/C:P/I:N/A:N	AV:A/AC:L/Au:N/C:P/I:N/A:N
Access Vector	Network	Adjacent Network
Access Complexity	Low	Low
Authentication	None	None
Confidentiality Impact	Partial	Partial
Integrity Impact	None	None
Availability Impact	None	None

CVSS v3 Scores
	National Vulnerability Database	SUSE
Base Score	7.5	2.4
Vector	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N	CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Attack Vector	Network	Physical
Attack Complexity	Low	Low
Privileges Required	None	None
User Interaction	None	None
Scope	Unchanged	Unchanged
Confidentiality Impact	High	Low
Integrity Impact	None	None
Availability Impact	None	None
CVSSv3 Version	3	3

Note from the SUSE Security Team on the kernel-default package

SUSE will no longer fix all CVEs in the Linux Kernel anymore, but declare some bug classes as won't fix. Please refer to TID 21496 for more details.

SUSE Bugzilla entry: 1070535 [RESOLVED / FIXED]

SUSE Security Advisories:

SUSE-SU-2017:3398-1, published Thu Dec 21 10:10:21 MST 2017
SUSE-SU-2017:3410-1, published Thu Dec 21 16:07:56 MST 2017
SUSE-SU-2018:0213-1, published Thu Jan 25 07:08:06 MST 2018
openSUSE-SU-2017:3358-1, published Fri Dec 8 15:48:38 2023
openSUSE-SU-2017:3359-1, published Fri Dec 8 15:48:38 2023

List of released packages

Product(s)	Fixed package version(s)	References
SUSE Enterprise Storage 6 SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Manager Proxy 4.0 SUSE Manager Retail Branch Server 4.0 SUSE Manager Server 4.0	`kernel-default >= 4.12.14-195.1` `kernel-default-base >= 4.12.14-195.1` `kernel-default-devel >= 4.12.14-195.1` `kernel-default-man >= 4.12.14-195.1` `kernel-devel >= 4.12.14-195.1` `kernel-docs >= 4.12.14-195.1` `kernel-macros >= 4.12.14-195.1` `kernel-obs-build >= 4.12.14-195.1` `kernel-source >= 4.12.14-195.1` `kernel-syms >= 4.12.14-195.1` `kernel-zfcpdump >= 4.12.14-195.1` `reiserfs-kmp-default >= 4.12.14-195.1`	Patchnames: SUSE Linux Enterprise Module for Basesystem 15 SP1 GA kernel-default-4.12.14-195.1 SUSE Linux Enterprise Module for Development Tools 15 SP1 GA kernel-docs-4.12.14-195.1 SUSE Linux Enterprise Module for Legacy 15 SP1 GA reiserfs-kmp-default-4.12.14-195.1
SUSE Enterprise Storage 7.1 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Module for Public Cloud 15 SP3 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.2	`kernel-azure-base >= 4.12.14-8.58.1` `kernel-devel-azure >= 4.12.14-5.47.1` `kernel-source-azure >= 4.12.14-5.47.1`	Patchnames: SUSE Linux Enterprise Module for Public Cloud 15 SP3 GA kernel-azure-base-4.12.14-8.58.1 SUSE Linux Enterprise Module for Public Cloud 15 SP3 GA kernel-devel-azure-4.12.14-5.47.1
SUSE Enterprise Storage 7 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Manager Proxy 4.1 SUSE Manager Retail Branch Server 4.1 SUSE Manager Server 4.1	`kernel-azure-base >= 4.12.14-8.30.1` `kernel-default-man >= 4.12.14-197.40.1` `kernel-devel-azure >= 4.12.14-5.47.1` `kernel-source-azure >= 4.12.14-5.47.1`	Patchnames: SUSE Linux Enterprise Module for Basesystem 15 SP2 GA kernel-default-man-4.12.14-197.40.1 SUSE Linux Enterprise Module for Public Cloud 15 SP2 GA kernel-azure-base-4.12.14-8.30.1 SUSE Linux Enterprise Module for Public Cloud 15 SP2 GA kernel-devel-azure-4.12.14-5.47.1
SUSE Liberty Linux 7	`kernel >= 3.10.0-862.el7` `kernel-abi-whitelists >= 3.10.0-862.el7` `kernel-debug >= 3.10.0-862.el7` `kernel-debug-devel >= 3.10.0-862.el7` `kernel-devel >= 3.10.0-862.el7` `kernel-doc >= 3.10.0-862.el7` `kernel-headers >= 3.10.0-862.el7` `kernel-tools >= 3.10.0-862.el7` `kernel-tools-libs >= 3.10.0-862.el7` `kernel-tools-libs-devel >= 3.10.0-862.el7` `perf >= 3.10.0-862.el7` `python-perf >= 3.10.0-862.el7`	Patchnames: RHSA-2018:1062
SUSE Linux Enterprise Desktop 12 SP2	`kernel-default >= 4.4.103-92.53.1` `kernel-default-devel >= 4.4.103-92.53.1` `kernel-default-extra >= 4.4.103-92.53.1` `kernel-devel >= 4.4.103-92.53.1` `kernel-docs >= 4.4.103-92.53.1` `kernel-macros >= 4.4.103-92.53.1` `kernel-obs-build >= 4.4.103-92.53.1` `kernel-source >= 4.4.103-92.53.1` `kernel-syms >= 4.4.103-92.53.1`	Patchnames: SUSE-SLE-DESKTOP-12-SP2-2017-2141 SUSE-SLE-SDK-12-SP2-2017-2141 SUSE-SLE-WE-12-SP2-2017-2141
SUSE Linux Enterprise Desktop 12 SP3	`kernel-default >= 4.4.103-6.33.1` `kernel-default-devel >= 4.4.103-6.33.1` `kernel-default-extra >= 4.4.103-6.33.1` `kernel-devel >= 4.4.103-6.33.1` `kernel-docs >= 4.4.103-6.33.1` `kernel-macros >= 4.4.103-6.33.1` `kernel-obs-build >= 4.4.103-6.33.1` `kernel-source >= 4.4.103-6.33.1` `kernel-syms >= 4.4.103-6.33.1`	Patchnames: SUSE-SLE-DESKTOP-12-SP3-2017-2129 SUSE-SLE-SDK-12-SP3-2017-2129 SUSE-SLE-WE-12-SP3-2017-2129
SUSE Linux Enterprise Desktop 12 SP4	`kernel-default >= 4.12.14-94.41.1` `kernel-default-devel >= 4.12.14-94.41.1` `kernel-default-extra >= 4.12.14-94.41.1` `kernel-devel >= 4.12.14-94.41.1` `kernel-docs >= 4.12.14-94.41.1` `kernel-macros >= 4.12.14-94.41.1` `kernel-obs-build >= 4.12.14-94.41.1` `kernel-source >= 4.12.14-94.41.1` `kernel-syms >= 4.12.14-94.41.1`	Patchnames: SUSE Linux Enterprise Desktop 12 SP4 GA kernel-default-4.12.14-94.41.1 SUSE Linux Enterprise Software Development Kit 12 SP4 GA kernel-docs-4.12.14-94.41.1 SUSE Linux Enterprise Workstation Extension 12 SP4 GA kernel-default-extra-4.12.14-94.41.1
SUSE Linux Enterprise Desktop 15 SP1	`kernel-default >= 4.12.14-195.1` `kernel-default-base >= 4.12.14-195.1` `kernel-default-devel >= 4.12.14-195.1` `kernel-default-extra >= 4.12.14-195.1` `kernel-default-man >= 4.12.14-195.1` `kernel-devel >= 4.12.14-195.1` `kernel-docs >= 4.12.14-195.1` `kernel-macros >= 4.12.14-195.1` `kernel-obs-build >= 4.12.14-195.1` `kernel-source >= 4.12.14-195.1` `kernel-syms >= 4.12.14-195.1` `kernel-zfcpdump >= 4.12.14-195.1`	Patchnames: SUSE Linux Enterprise Module for Basesystem 15 SP1 GA kernel-default-4.12.14-195.1 SUSE Linux Enterprise Module for Development Tools 15 SP1 GA kernel-docs-4.12.14-195.1 SUSE Linux Enterprise Workstation Extension 15 SP1 GA kernel-default-extra-4.12.14-195.1
SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP2	`kernel-default-man >= 4.12.14-197.40.1`	Patchnames: SUSE Linux Enterprise Module for Basesystem 15 SP2 GA kernel-default-man-4.12.14-197.40.1
SUSE Linux Enterprise Desktop 15	`kernel-default >= 4.12.14-23.1` `kernel-default-devel >= 4.12.14-23.1` `kernel-default-extra >= 4.12.14-23.1` `kernel-devel >= 4.12.14-23.1` `kernel-docs >= 4.12.14-23.1` `kernel-macros >= 4.12.14-23.1` `kernel-obs-build >= 4.12.14-23.1` `kernel-source >= 4.12.14-23.1` `kernel-syms >= 4.12.14-23.1` `kernel-vanilla-base >= 4.12.14-23.1`	Patchnames: SUSE Linux Enterprise Module for Basesystem 15 GA kernel-default-4.12.14-23.1 SUSE Linux Enterprise Module for Development Tools 15 GA kernel-docs-4.12.14-23.1 SUSE Linux Enterprise Workstation Extension 15 GA kernel-default-extra-4.12.14-23.1
SUSE Linux Enterprise High Availability Extension 12 SP2	`cluster-md-kmp-default >= 4.4.103-92.53.1` `cluster-network-kmp-default >= 4.4.103-92.53.1` `dlm-kmp-default >= 4.4.103-92.53.1` `gfs2-kmp-default >= 4.4.103-92.53.1` `ocfs2-kmp-default >= 4.4.103-92.53.1`	Patchnames: SUSE-SLE-HA-12-SP2-2017-2141
SUSE Linux Enterprise High Availability Extension 12 SP3	`cluster-md-kmp-default >= 4.4.103-6.33.1` `dlm-kmp-default >= 4.4.103-6.33.1` `gfs2-kmp-default >= 4.4.103-6.33.1` `ocfs2-kmp-default >= 4.4.103-6.33.1`	Patchnames: SUSE-SLE-HA-12-SP3-2017-2129
SUSE Linux Enterprise High Performance Computing 12 SP5	`kernel-default >= 4.12.14-120.1` `kernel-default-base >= 4.12.14-120.1` `kernel-default-devel >= 4.12.14-120.1` `kernel-devel >= 4.12.14-120.1` `kernel-macros >= 4.12.14-120.1` `kernel-source >= 4.12.14-120.1` `kernel-syms >= 4.12.14-120.1`	Patchnames: SUSE Linux Enterprise High Performance Computing 12 SP5 GA kernel-default-4.12.14-120.1
SUSE Linux Enterprise High Performance Computing 15	`kernel-default >= 4.12.14-23.1` `kernel-default-devel >= 4.12.14-23.1` `kernel-devel >= 4.12.14-23.1` `kernel-docs >= 4.12.14-23.1` `kernel-macros >= 4.12.14-23.1` `kernel-obs-build >= 4.12.14-23.1` `kernel-source >= 4.12.14-23.1` `kernel-syms >= 4.12.14-23.1` `kernel-vanilla-base >= 4.12.14-23.1` `reiserfs-kmp-default >= 4.12.14-23.1`	Patchnames: SUSE Linux Enterprise Module for Basesystem 15 GA kernel-default-4.12.14-23.1 SUSE Linux Enterprise Module for Development Tools 15 GA kernel-docs-4.12.14-23.1 SUSE Linux Enterprise Module for Legacy 15 GA reiserfs-kmp-default-4.12.14-23.1
SUSE Linux Enterprise Live Patching 12 SP3		Patchnames: SUSE-SLE-Live-Patching-12-SP3-2017-2129
SUSE Linux Enterprise Live Patching 12		Patchnames: SUSE-SLE-Live-Patching-12-2017-2141
SUSE Linux Enterprise Module for Basesystem 15 SP1	`kernel-default >= 4.12.14-195.1` `kernel-default-base >= 4.12.14-195.1` `kernel-default-devel >= 4.12.14-195.1` `kernel-default-man >= 4.12.14-195.1` `kernel-devel >= 4.12.14-195.1` `kernel-macros >= 4.12.14-195.1` `kernel-zfcpdump >= 4.12.14-195.1`	Patchnames: SUSE Linux Enterprise Module for Basesystem 15 SP1 GA kernel-default-4.12.14-195.1
SUSE Linux Enterprise Module for Basesystem 15	`kernel-default >= 4.12.14-23.1` `kernel-default-devel >= 4.12.14-23.1` `kernel-devel >= 4.12.14-23.1` `kernel-macros >= 4.12.14-23.1`	Patchnames: SUSE Linux Enterprise Module for Basesystem 15 GA kernel-default-4.12.14-23.1
SUSE Linux Enterprise Module for Development Tools 15 SP1	`kernel-docs >= 4.12.14-195.1` `kernel-obs-build >= 4.12.14-195.1` `kernel-source >= 4.12.14-195.1` `kernel-syms >= 4.12.14-195.1`	Patchnames: SUSE Linux Enterprise Module for Development Tools 15 SP1 GA kernel-docs-4.12.14-195.1
SUSE Linux Enterprise Module for Development Tools 15	`kernel-docs >= 4.12.14-23.1` `kernel-obs-build >= 4.12.14-23.1` `kernel-source >= 4.12.14-23.1` `kernel-syms >= 4.12.14-23.1` `kernel-vanilla-base >= 4.12.14-23.1`	Patchnames: SUSE Linux Enterprise Module for Development Tools 15 GA kernel-docs-4.12.14-23.1
SUSE Linux Enterprise Module for Legacy 15 SP1	`reiserfs-kmp-default >= 4.12.14-195.1`	Patchnames: SUSE Linux Enterprise Module for Legacy 15 SP1 GA reiserfs-kmp-default-4.12.14-195.1
SUSE Linux Enterprise Module for Legacy 15	`reiserfs-kmp-default >= 4.12.14-23.1`	Patchnames: SUSE Linux Enterprise Module for Legacy 15 GA reiserfs-kmp-default-4.12.14-23.1
SUSE Linux Enterprise Module for Public Cloud 15 SP2	`kernel-azure-base >= 4.12.14-8.30.1` `kernel-devel-azure >= 4.12.14-5.47.1` `kernel-source-azure >= 4.12.14-5.47.1`	Patchnames: SUSE Linux Enterprise Module for Public Cloud 15 SP2 GA kernel-azure-base-4.12.14-8.30.1 SUSE Linux Enterprise Module for Public Cloud 15 SP2 GA kernel-devel-azure-4.12.14-5.47.1
SUSE Linux Enterprise Real Time 12 SP2	`cluster-md-kmp-rt >= 4.4.104-24.1` `cluster-network-kmp-rt >= 4.4.104-24.1` `dlm-kmp-rt >= 4.4.104-24.1` `gfs2-kmp-rt >= 4.4.104-24.1` `kernel-devel-rt >= 4.4.104-24.1` `kernel-rt >= 4.4.104-24.1` `kernel-rt-base >= 4.4.104-24.1` `kernel-rt-devel >= 4.4.104-24.1` `kernel-rt_debug-devel >= 4.4.104-24.1` `kernel-source-rt >= 4.4.104-24.1` `kernel-syms-rt >= 4.4.104-24.1` `ocfs2-kmp-rt >= 4.4.104-24.1`	Patchnames: SUSE-SLE-RT-12-SP2-2018-145
SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP2	`kernel-default >= 4.4.103-92.53.1` `kernel-default-base >= 4.4.103-92.53.1` `kernel-default-devel >= 4.4.103-92.53.1` `kernel-default-extra >= 4.4.103-92.53.1` `kernel-default-man >= 4.4.103-92.53.1` `kernel-devel >= 4.4.103-92.53.1` `kernel-docs >= 4.4.103-92.53.1` `kernel-macros >= 4.4.103-92.53.1` `kernel-obs-build >= 4.4.103-92.53.1` `kernel-source >= 4.4.103-92.53.1` `kernel-syms >= 4.4.103-92.53.1`	Patchnames: SUSE-SLE-SDK-12-SP2-2017-2141 SUSE-SLE-SERVER-12-SP2-2017-2141 SUSE-SLE-WE-12-SP2-2017-2141
SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP3	`kernel-default >= 4.4.103-6.33.1` `kernel-default-base >= 4.4.103-6.33.1` `kernel-default-devel >= 4.4.103-6.33.1` `kernel-default-extra >= 4.4.103-6.33.1` `kernel-default-man >= 4.4.103-6.33.1` `kernel-devel >= 4.4.103-6.33.1` `kernel-docs >= 4.4.103-6.33.1` `kernel-macros >= 4.4.103-6.33.1` `kernel-obs-build >= 4.4.103-6.33.1` `kernel-source >= 4.4.103-6.33.1` `kernel-syms >= 4.4.103-6.33.1`	Patchnames: SUSE-SLE-SDK-12-SP3-2017-2129 SUSE-SLE-SERVER-12-SP3-2017-2129 SUSE-SLE-WE-12-SP3-2017-2129
SUSE Linux Enterprise Server 12 SP4	`kernel-default >= 4.12.14-94.41.1` `kernel-default-base >= 4.12.14-94.41.1` `kernel-default-devel >= 4.12.14-94.41.1` `kernel-default-extra >= 4.12.14-94.41.1` `kernel-default-man >= 4.12.14-94.41.1` `kernel-devel >= 4.12.14-94.41.1` `kernel-docs >= 4.12.14-94.41.1` `kernel-macros >= 4.12.14-94.41.1` `kernel-obs-build >= 4.12.14-94.41.1` `kernel-source >= 4.12.14-94.41.1` `kernel-syms >= 4.12.14-94.41.1`	Patchnames: SUSE Linux Enterprise Server 12 SP4 GA kernel-default-4.12.14-94.41.1 SUSE Linux Enterprise Software Development Kit 12 SP4 GA kernel-docs-4.12.14-94.41.1 SUSE Linux Enterprise Workstation Extension 12 SP4 GA kernel-default-extra-4.12.14-94.41.1
SUSE Linux Enterprise Server 12 SP5	`kernel-default >= 4.12.14-120.1` `kernel-default-base >= 4.12.14-120.1` `kernel-default-devel >= 4.12.14-120.1` `kernel-default-extra >= 4.12.14-120.1` `kernel-default-man >= 4.12.14-120.1` `kernel-devel >= 4.12.14-120.1` `kernel-docs >= 4.12.14-120.1` `kernel-macros >= 4.12.14-120.1` `kernel-obs-build >= 4.12.14-120.1` `kernel-source >= 4.12.14-120.1` `kernel-syms >= 4.12.14-120.1`	Patchnames: SUSE Linux Enterprise Server 12 SP5 GA kernel-default-4.12.14-120.1 SUSE Linux Enterprise Software Development Kit 12 SP5 GA kernel-docs-4.12.14-120.1 SUSE Linux Enterprise Workstation Extension 12 SP5 GA kernel-default-extra-4.12.14-120.1
SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SP1	`kernel-default >= 4.12.14-195.1` `kernel-default-base >= 4.12.14-195.1` `kernel-default-devel >= 4.12.14-195.1` `kernel-default-extra >= 4.12.14-195.1` `kernel-default-man >= 4.12.14-195.1` `kernel-devel >= 4.12.14-195.1` `kernel-docs >= 4.12.14-195.1` `kernel-macros >= 4.12.14-195.1` `kernel-obs-build >= 4.12.14-195.1` `kernel-source >= 4.12.14-195.1` `kernel-syms >= 4.12.14-195.1` `kernel-zfcpdump >= 4.12.14-195.1` `reiserfs-kmp-default >= 4.12.14-195.1`	Patchnames: SUSE Linux Enterprise Module for Basesystem 15 SP1 GA kernel-default-4.12.14-195.1 SUSE Linux Enterprise Module for Development Tools 15 SP1 GA kernel-docs-4.12.14-195.1 SUSE Linux Enterprise Module for Legacy 15 SP1 GA reiserfs-kmp-default-4.12.14-195.1 SUSE Linux Enterprise Workstation Extension 15 SP1 GA kernel-default-extra-4.12.14-195.1
SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server for SAP Applications 15	`kernel-default >= 4.12.14-23.1` `kernel-default-devel >= 4.12.14-23.1` `kernel-default-extra >= 4.12.14-23.1` `kernel-devel >= 4.12.14-23.1` `kernel-docs >= 4.12.14-23.1` `kernel-macros >= 4.12.14-23.1` `kernel-obs-build >= 4.12.14-23.1` `kernel-source >= 4.12.14-23.1` `kernel-syms >= 4.12.14-23.1` `kernel-vanilla-base >= 4.12.14-23.1` `reiserfs-kmp-default >= 4.12.14-23.1`	Patchnames: SUSE Linux Enterprise Module for Basesystem 15 GA kernel-default-4.12.14-23.1 SUSE Linux Enterprise Module for Development Tools 15 GA kernel-docs-4.12.14-23.1 SUSE Linux Enterprise Module for Legacy 15 GA reiserfs-kmp-default-4.12.14-23.1 SUSE Linux Enterprise Workstation Extension 15 GA kernel-default-extra-4.12.14-23.1
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2	`kernel-default >= 4.4.103-92.53.1` `kernel-default-base >= 4.4.103-92.53.1` `kernel-default-devel >= 4.4.103-92.53.1` `kernel-devel >= 4.4.103-92.53.1` `kernel-macros >= 4.4.103-92.53.1` `kernel-source >= 4.4.103-92.53.1` `kernel-syms >= 4.4.103-92.53.1`	Patchnames: SUSE-SLE-RPI-12-SP2-2017-2141
SUSE Linux Enterprise Server for SAP Applications 12 SP4	`kernel-default-extra >= 4.12.14-94.41.1` `kernel-docs >= 4.12.14-94.41.1` `kernel-obs-build >= 4.12.14-94.41.1`	Patchnames: SUSE Linux Enterprise Software Development Kit 12 SP4 GA kernel-docs-4.12.14-94.41.1 SUSE Linux Enterprise Workstation Extension 12 SP4 GA kernel-default-extra-4.12.14-94.41.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5	`kernel-default-extra >= 4.12.14-120.1` `kernel-docs >= 4.12.14-120.1` `kernel-obs-build >= 4.12.14-120.1`	Patchnames: SUSE Linux Enterprise Software Development Kit 12 SP5 GA kernel-docs-4.12.14-120.1 SUSE Linux Enterprise Workstation Extension 12 SP5 GA kernel-default-extra-4.12.14-120.1
SUSE Linux Enterprise Software Development Kit 12 SP2	`kernel-docs >= 4.4.103-92.53.1` `kernel-obs-build >= 4.4.103-92.53.1`	Patchnames: SUSE-SLE-SDK-12-SP2-2017-2141
SUSE Linux Enterprise Software Development Kit 12 SP3	`kernel-docs >= 4.4.103-6.33.1` `kernel-obs-build >= 4.4.103-6.33.1`	Patchnames: SUSE-SLE-SDK-12-SP3-2017-2129
SUSE Linux Enterprise Software Development Kit 12 SP4	`kernel-docs >= 4.12.14-94.41.1` `kernel-obs-build >= 4.12.14-94.41.1`	Patchnames: SUSE Linux Enterprise Software Development Kit 12 SP4 GA kernel-docs-4.12.14-94.41.1
SUSE Linux Enterprise Software Development Kit 12 SP5	`kernel-docs >= 4.12.14-120.1` `kernel-obs-build >= 4.12.14-120.1`	Patchnames: SUSE Linux Enterprise Software Development Kit 12 SP5 GA kernel-docs-4.12.14-120.1
SUSE Linux Enterprise Workstation Extension 12 SP2	`kernel-default-extra >= 4.4.103-92.53.1`	Patchnames: SUSE-SLE-WE-12-SP2-2017-2141
SUSE Linux Enterprise Workstation Extension 12 SP3	`kernel-default-extra >= 4.4.103-6.33.1`	Patchnames: SUSE-SLE-WE-12-SP3-2017-2129
SUSE Linux Enterprise Workstation Extension 12 SP4	`kernel-default-extra >= 4.12.14-94.41.1`	Patchnames: SUSE Linux Enterprise Workstation Extension 12 SP4 GA kernel-default-extra-4.12.14-94.41.1
SUSE Linux Enterprise Workstation Extension 12 SP5	`kernel-default-extra >= 4.12.14-120.1`	Patchnames: SUSE Linux Enterprise Workstation Extension 12 SP5 GA kernel-default-extra-4.12.14-120.1
SUSE Linux Enterprise Workstation Extension 15 SP1	`kernel-default-extra >= 4.12.14-195.1`	Patchnames: SUSE Linux Enterprise Workstation Extension 15 SP1 GA kernel-default-extra-4.12.14-195.1
SUSE Linux Enterprise Workstation Extension 15	`kernel-default-extra >= 4.12.14-23.1`	Patchnames: SUSE Linux Enterprise Workstation Extension 15 GA kernel-default-extra-4.12.14-23.1
openSUSE Leap 15.0	`kernel-default >= 4.12.14-lp150.11.4` `kernel-vanilla-base >= 4.12.14-lp150.11.4`	Patchnames: openSUSE Leap 15.0 GA kernel-default-4.12.14-lp150.11.4

Status of this issue by product and package

Please note that this evaluation state might be work in progress, incomplete or outdated. Also information for service packs in the LTSS phase is only included for issues meeting the LTSS criteria. If in doubt, feel free to contact us for clarification. The updates are grouped by state of their lifecycle. SUSE product lifecycles are documented on the lifecycle page.

Product(s)	Source package	State
Products under general support and receiving all security fixes.
SUSE Linux Enterprise Micro 5.1	kernel-default	Ignore
SUSE Linux Enterprise Micro 5.1	kernel-rt	Ignore
SUSE Linux Enterprise Micro 5.1	kernel-source-rt	Ignore
SUSE Linux Enterprise Micro 5.2	kernel-default	Ignore
SUSE Linux Enterprise Micro 5.2	kernel-rt	Ignore
SUSE Linux Enterprise Micro 5.2	kernel-source-rt	Ignore
SUSE Linux Enterprise Micro 5.3	kernel-rt	Released
SUSE Linux Enterprise Micro 5.3	kernel-source-rt	Affected
SUSE Linux Enterprise Micro 5.4	kernel-rt	Released
SUSE Linux Enterprise Micro 5.4	kernel-source-rt	Affected
Products under Long Term Service Pack support and receiving important and critical security fixes.
SUSE Linux Enterprise High Performance Computing 15 SP2	kernel-source-azure	Already fixed
SUSE Linux Enterprise High Performance Computing 15 SP3	kernel-source	Ignore
SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS	kernel-default	Ignore
SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS	kernel-source	Ignore
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS	kernel-default	Ignore
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS	kernel-source	Ignore
SUSE Linux Enterprise Module for Basesystem 15 SP3	kernel-source	Ignore
SUSE Linux Enterprise Module for Development Tools 15 SP3	kernel-source	Ignore
SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE	kernel-source	Not affected
SUSE Linux Enterprise Server 15 SP2	kernel-source-azure	Already fixed
SUSE Linux Enterprise Server 15 SP3	kernel-source	Ignore
SUSE Linux Enterprise Server 15 SP3-LTSS	kernel-source	Ignore
SUSE Linux Enterprise Server 15-ESPOS	kernel-default	Already fixed
SUSE Linux Enterprise Server 15-ESPOS	kernel-source	Already fixed
SUSE Linux Enterprise Server Business Critical Linux 15 SP3	kernel-default	Ignore
SUSE Linux Enterprise Server Business Critical Linux 15 SP3	kernel-source	Ignore
SUSE Linux Enterprise Server for SAP Applications 15 SP2	kernel-source-azure	Already fixed
SUSE Linux Enterprise Server for SAP Applications 15 SP3	kernel-default	Ignore
SUSE Linux Enterprise Server for SAP Applications 15 SP3	kernel-source	Ignore
Products past their end of life and not receiving proactive updates anymore.
HPE Helion OpenStack 8	kernel-default	Affected
HPE Helion OpenStack 8	kernel-source	Affected
HPE Helion OpenStack 8	kernel-source-azure	Affected
SUSE CaaS Platform Toolchain 3	kernel-source	Affected
SUSE Enterprise Storage 7	kernel-source-azure	Already fixed
SUSE Enterprise Storage 7.1	kernel-default	Ignore
SUSE Enterprise Storage 7.1	kernel-source	Ignore
SUSE Linux Enterprise Desktop 11 SP4	kernel-source	Not affected
SUSE Linux Enterprise Desktop 12 SP2	kernel-default	Released
SUSE Linux Enterprise Desktop 12 SP2	kernel-docs	Released
SUSE Linux Enterprise Desktop 12 SP2	kernel-obs-build	Released
SUSE Linux Enterprise Desktop 12 SP2	kernel-source	Released
SUSE Linux Enterprise Desktop 12 SP2	kernel-syms	Released
SUSE Linux Enterprise Desktop 12 SP3	kernel-default	Released
SUSE Linux Enterprise Desktop 12 SP3	kernel-docs	Released
SUSE Linux Enterprise Desktop 12 SP3	kernel-obs-build	Released
SUSE Linux Enterprise Desktop 12 SP3	kernel-source	Released
SUSE Linux Enterprise Desktop 12 SP3	kernel-syms	Released
SUSE Linux Enterprise Desktop 12 SP4	kernel-source	Already fixed
SUSE Linux Enterprise Desktop 15	kernel-source	Already fixed
SUSE Linux Enterprise Desktop 15 SP3	kernel-source	Ignore
SUSE Linux Enterprise High Availability Extension 12 SP2	kernel-default	Released
SUSE Linux Enterprise High Availability Extension 12 SP3	kernel-default	Released
SUSE Linux Enterprise High Performance Computing 15	kernel-source	Already fixed
SUSE Linux Enterprise High Performance Computing 15	kernel-source-azure	Already fixed
SUSE Linux Enterprise High Performance Computing 15-ESPOS	kernel-source	Already fixed
SUSE Linux Enterprise High Performance Computing 15-LTSS	kernel-default	Already fixed
SUSE Linux Enterprise High Performance Computing 15-LTSS	kernel-source	Already fixed
SUSE Linux Enterprise Live Patching 12	kgraft-patch-SLE12-SP2_Update_16	Released
SUSE Linux Enterprise Live Patching 12 SP3	kgraft-patch-SLE12-SP3_Update_6	Released
SUSE Linux Enterprise Module for Basesystem 15	kernel-source	Already fixed
SUSE Linux Enterprise Module for Development Tools 15	kernel-source	Already fixed
SUSE Linux Enterprise Module for Public Cloud 15	kernel-source-azure	Already fixed
SUSE Linux Enterprise Module for Public Cloud 15 SP2	kernel-source-azure	Already fixed
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT	kernel-source	Affected
SUSE Linux Enterprise Real Time 12 SP2	kernel-rt	Released
SUSE Linux Enterprise Real Time 12 SP2	kernel-rt_debug	Released
SUSE Linux Enterprise Real Time 12 SP2	kernel-source-rt	Released
SUSE Linux Enterprise Real Time 12 SP2	kernel-syms-rt	Released
SUSE Linux Enterprise Real Time 15 SP3	kernel-default	Ignore
SUSE Linux Enterprise Real Time 15 SP3	kernel-source	Ignore
SUSE Linux Enterprise Real Time 15 SP3	kernel-source-rt	Ignore
SUSE Linux Enterprise Real Time 15 SP4	kernel-source-rt	Released
SUSE Linux Enterprise Server 11 SP4	kernel-source	Not affected
SUSE Linux Enterprise Server 11 SP4-LTSS	kernel-default	Not affected
SUSE Linux Enterprise Server 11 SP4-LTSS	kernel-source	Not affected
SUSE Linux Enterprise Server 12 SP2	kernel-default	Released
SUSE Linux Enterprise Server 12 SP2	kernel-docs	Released
SUSE Linux Enterprise Server 12 SP2	kernel-obs-build	Released
SUSE Linux Enterprise Server 12 SP2	kernel-source	Released
SUSE Linux Enterprise Server 12 SP2	kernel-syms	Released
SUSE Linux Enterprise Server 12 SP2-BCL	kernel-default	Affected
SUSE Linux Enterprise Server 12 SP2-BCL	kernel-source	Affected
SUSE Linux Enterprise Server 12 SP2-ESPOS	kernel-source	Affected
SUSE Linux Enterprise Server 12 SP2-LTSS	kernel-source	Affected
SUSE Linux Enterprise Server 12 SP3	kernel-default	Released
SUSE Linux Enterprise Server 12 SP3	kernel-docs	Released
SUSE Linux Enterprise Server 12 SP3	kernel-obs-build	Released
SUSE Linux Enterprise Server 12 SP3	kernel-source	Released
SUSE Linux Enterprise Server 12 SP3	kernel-source-azure	Already fixed
SUSE Linux Enterprise Server 12 SP3	kernel-syms	Released
SUSE Linux Enterprise Server 12 SP3-BCL	kernel-default	Unsupported
SUSE Linux Enterprise Server 12 SP3-BCL	kernel-source	Unsupported
SUSE Linux Enterprise Server 12 SP3-BCL	kernel-source-azure	Unsupported
SUSE Linux Enterprise Server 12 SP3-ESPOS	kernel-default	Unsupported
SUSE Linux Enterprise Server 12 SP3-ESPOS	kernel-source	Unsupported
SUSE Linux Enterprise Server 12 SP3-ESPOS	kernel-source-azure	Unsupported
SUSE Linux Enterprise Server 12 SP3-LTSS	kernel-default	Unsupported
SUSE Linux Enterprise Server 12 SP3-LTSS	kernel-source	Unsupported
SUSE Linux Enterprise Server 12 SP3-LTSS	kernel-source-azure	Unsupported
SUSE Linux Enterprise Server 12 SP4	kernel-source	Already fixed
SUSE Linux Enterprise Server 12 SP4	kernel-source-azure	Already fixed
SUSE Linux Enterprise Server 12 SP4-ESPOS	kernel-default	Already fixed
SUSE Linux Enterprise Server 12 SP4-ESPOS	kernel-source	Already fixed
SUSE Linux Enterprise Server 12 SP4-ESPOS	kernel-source-azure	Already fixed
SUSE Linux Enterprise Server 12 SP4-LTSS	kernel-default	Already fixed
SUSE Linux Enterprise Server 12 SP4-LTSS	kernel-source	Already fixed
SUSE Linux Enterprise Server 12 SP4-LTSS	kernel-source-azure	Already fixed
SUSE Linux Enterprise Server 15	kernel-source	Already fixed
SUSE Linux Enterprise Server 15	kernel-source-azure	Already fixed
SUSE Linux Enterprise Server 15 SP3-BCL	kernel-source	Ignore
SUSE Linux Enterprise Server 15-LTSS	kernel-default	Already fixed
SUSE Linux Enterprise Server 15-LTSS	kernel-source	Already fixed
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2	kernel-default	Released
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2	kernel-source	Released
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2	kernel-syms	Released
SUSE Linux Enterprise Server for SAP Applications 12 SP2	kernel-default	Released
SUSE Linux Enterprise Server for SAP Applications 12 SP2	kernel-docs	Released
SUSE Linux Enterprise Server for SAP Applications 12 SP2	kernel-obs-build	Released
SUSE Linux Enterprise Server for SAP Applications 12 SP2	kernel-source	Released
SUSE Linux Enterprise Server for SAP Applications 12 SP2	kernel-syms	Released
SUSE Linux Enterprise Server for SAP Applications 12 SP3	kernel-default	Released
SUSE Linux Enterprise Server for SAP Applications 12 SP3	kernel-docs	Released
SUSE Linux Enterprise Server for SAP Applications 12 SP3	kernel-obs-build	Released
SUSE Linux Enterprise Server for SAP Applications 12 SP3	kernel-source	Released
SUSE Linux Enterprise Server for SAP Applications 12 SP3	kernel-source-azure	Unsupported
SUSE Linux Enterprise Server for SAP Applications 12 SP3	kernel-syms	Released
SUSE Linux Enterprise Server for SAP Applications 12 SP4	kernel-default	Already fixed
SUSE Linux Enterprise Server for SAP Applications 12 SP4	kernel-source	Already fixed
SUSE Linux Enterprise Server for SAP Applications 12 SP4	kernel-source-azure	Already fixed
SUSE Linux Enterprise Server for SAP Applications 15	kernel-default	Already fixed
SUSE Linux Enterprise Server for SAP Applications 15	kernel-source	Already fixed
SUSE Linux Enterprise Server for SAP Applications 15	kernel-source-azure	Already fixed
SUSE Linux Enterprise Software Development Kit 12 SP2	kernel-docs	Released
SUSE Linux Enterprise Software Development Kit 12 SP2	kernel-obs-build	Released
SUSE Linux Enterprise Software Development Kit 12 SP3	kernel-docs	Released
SUSE Linux Enterprise Software Development Kit 12 SP3	kernel-obs-build	Released
SUSE Linux Enterprise Workstation Extension 12 SP2	kernel-default	Released
SUSE Linux Enterprise Workstation Extension 12 SP3	kernel-default	Released
SUSE Manager Proxy 4.1	kernel-source-azure	Already fixed
SUSE Manager Proxy 4.2	kernel-default	Ignore
SUSE Manager Proxy 4.2	kernel-source	Ignore
SUSE Manager Retail Branch Server 4.1	kernel-source-azure	Already fixed
SUSE Manager Retail Branch Server 4.2	kernel-default	Ignore
SUSE Manager Retail Branch Server 4.2	kernel-source	Ignore
SUSE Manager Server 4.1	kernel-source-azure	Already fixed
SUSE Manager Server 4.2	kernel-default	Ignore
SUSE Manager Server 4.2	kernel-source	Ignore
SUSE OpenStack Cloud 7	kernel-source	Affected
SUSE OpenStack Cloud 8	kernel-default	Affected
SUSE OpenStack Cloud 8	kernel-source	Affected
SUSE OpenStack Cloud 8	kernel-source-azure	Affected
SUSE OpenStack Cloud 9	kernel-default	Already fixed
SUSE OpenStack Cloud 9	kernel-source	Already fixed
SUSE OpenStack Cloud 9	kernel-source-azure	Already fixed
SUSE OpenStack Cloud Crowbar 8	kernel-default	Affected
SUSE OpenStack Cloud Crowbar 8	kernel-source	Affected
SUSE OpenStack Cloud Crowbar 8	kernel-source-azure	Affected
SUSE OpenStack Cloud Crowbar 9	kernel-default	Already fixed
SUSE OpenStack Cloud Crowbar 9	kernel-source	Already fixed
SUSE OpenStack Cloud Crowbar 9	kernel-source-azure	Already fixed
SUSE Real Time Module 15 SP3	kernel-source-rt	Ignore
SUSE Real Time Module 15 SP4	kernel-source-rt	Released
openSUSE Leap 15.3	kernel-source	Ignore
openSUSE Leap 15.3	kernel-source-rt	Ignore
openSUSE Leap 15.4	kernel-source-rt	Affected

SUSE Timeline for this CVE

CVE page created: Thu Nov 30 11:45:22 2017
CVE page last modified: Fri Sep 13 12:08:55 2024