{"id":"SUSE-SU-2019:14127-1","summary":"Security update for the Linux Kernel","details":"\nThe SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2019-3459: A heap address information leak while using L2CAP_GET_CONF_OPT was discovered in the Linux kernel(bnc#1120758).\n- CVE-2019-3460: A heap data infoleak in multiple locations including L2CAP_PARSE_CONF_RSP was found in the Linux kernel before (bnc#1120758).\n- CVE-2019-3896: A double-free could happen in idr_remove_all() in lib/idr.c in the Linux kernel. An unprivileged local attacker could use this flaw for a privilege escalation or for a system crash and a denial of service (DoS) (bnc#1138943).\n- CVE-2018-5390: The Linux kernel could be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which could lead to a denial of service (bnc#1102340).\n- CVE-2018-20836: An issue was discovered in the Linux kernel There was a race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c, leading to a use-after-free (bnc#1134395).\n- CVE-2019-12614: An issue was discovered in dlpar_parse_cc_property in arch/powerpc/platforms/pseries/dlpar.c in the Linux kernel There was an unchecked kstrdup of prop-name, which might allow an attacker to cause a denial of service (NULL pointer dereference and system crash) (bnc#1137194).\n- CVE-2019-3846: A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network (bnc#1136424 1136446).\n\nThe following non-security bugs were fixed:\n\n- KEYS: do not let add_key() update an uninstantiated key (bnc#1063416).\n- fnic: Fix to cleanup aborted IO to avoid device being offlined by mid-layer (bsc#1134835).\n- signal: give SEND_SIG_FORCED more power to beat SIGNAL_UNKILLABLE (bsc#1135650).\n- signal: oom_kill_task: use SEND_SIG_FORCED instead of force_sig() (bsc#1135650).\n- tcp: a regression in the previous fix for the TCP SACK issue was fixed (bnc#1139751)\n","modified":"2026-02-04T02:51:27.503027Z","published":"2019-07-18T15:53:32Z","related":["CVE-2018-20836","CVE-2018-5390","CVE-2019-12614","CVE-2019-3459","CVE-2019-3460","CVE-2019-3846","CVE-2019-3896"],"upstream":["CVE-2018-20836","CVE-2018-5390","CVE-2019-12614","CVE-2019-3459","CVE-2019-3460","CVE-2019-3846","CVE-2019-3896"],"references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2019/suse-su-201914127-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1063416"},{"type":"REPORT","url":"https://bugzilla.suse.com/1090078"},{"type":"REPORT","url":"https://bugzilla.suse.com/1102340"},{"type":"REPORT","url":"https://bugzilla.suse.com/1120758"},{"type":"REPORT","url":"https://bugzilla.suse.com/1134395"},{"type":"REPORT","url":"https://bugzilla.suse.com/1134835"},{"type":"REPORT","url":"https://bugzilla.suse.com/1135650"},{"type":"REPORT","url":"https://bugzilla.suse.com/1136424"},{"type":"REPORT","url":"https://bugzilla.suse.com/1137194"},{"type":"REPORT","url":"https://bugzilla.suse.com/1138943"},{"type":"REPORT","url":"https://bugzilla.suse.com/1139751"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-20836"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-5390"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-12614"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-3459"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-3460"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-3846"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-3896"}],"affected":[{"package":{"name":"kernel-bigmem","ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","purl":"pkg:rpm/suse/kernel-bigmem&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.0.101-108.98.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-trace-devel":"3.0.101-108.98.1","kernel-source":"3.0.101-108.98.1","kernel-default-man":"3.0.101-108.98.1","kernel-ec2-base":"3.0.101-108.98.1","kernel-ec2":"3.0.101-108.98.1","kernel-default":"3.0.101-108.98.1","kernel-ppc64":"3.0.101-108.98.1","kernel-pae-base":"3.0.101-108.98.1","kernel-ec2-devel":"3.0.101-108.98.1","kernel-pae-devel":"3.0.101-108.98.1","kernel-xen":"3.0.101-108.98.1","kernel-xen-devel":"3.0.101-108.98.1","kernel-default-devel":"3.0.101-108.98.1","kernel-bigmem-base":"3.0.101-108.98.1","kernel-default-base":"3.0.101-108.98.1","kernel-trace-base":"3.0.101-108.98.1","kernel-xen-base":"3.0.101-108.98.1","kernel-bigmem-devel":"3.0.101-108.98.1","kernel-ppc64-devel":"3.0.101-108.98.1","kernel-ppc64-base":"3.0.101-108.98.1","kernel-pae":"3.0.101-108.98.1","kernel-trace":"3.0.101-108.98.1","kernel-bigmem":"3.0.101-108.98.1","kernel-syms":"3.0.101-108.98.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2019:14127-1.json"}},{"package":{"name":"kernel-default","ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","purl":"pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.0.101-108.98.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-trace-devel":"3.0.101-108.98.1","kernel-source":"3.0.101-108.98.1","kernel-default-man":"3.0.101-108.98.1","kernel-ec2-base":"3.0.101-108.98.1","kernel-ec2":"3.0.101-108.98.1","kernel-default":"3.0.101-108.98.1","kernel-ppc64":"3.0.101-108.98.1","kernel-pae-base":"3.0.101-108.98.1","kernel-ec2-devel":"3.0.101-108.98.1","kernel-pae-devel":"3.0.101-108.98.1","kernel-xen":"3.0.101-108.98.1","kernel-xen-devel":"3.0.101-108.98.1","kernel-default-devel":"3.0.101-108.98.1","kernel-bigmem-base":"3.0.101-108.98.1","kernel-default-base":"3.0.101-108.98.1","kernel-trace-base":"3.0.101-108.98.1","kernel-xen-base":"3.0.101-108.98.1","kernel-bigmem-devel":"3.0.101-108.98.1","kernel-ppc64-devel":"3.0.101-108.98.1","kernel-ppc64-base":"3.0.101-108.98.1","kernel-pae":"3.0.101-108.98.1","kernel-trace":"3.0.101-108.98.1","kernel-bigmem":"3.0.101-108.98.1","kernel-syms":"3.0.101-108.98.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2019:14127-1.json"}},{"package":{"name":"kernel-ec2","ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","purl":"pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.0.101-108.98.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-trace-devel":"3.0.101-108.98.1","kernel-source":"3.0.101-108.98.1","kernel-default-man":"3.0.101-108.98.1","kernel-ec2-base":"3.0.101-108.98.1","kernel-ec2":"3.0.101-108.98.1","kernel-default":"3.0.101-108.98.1","kernel-ppc64":"3.0.101-108.98.1","kernel-pae-base":"3.0.101-108.98.1","kernel-ec2-devel":"3.0.101-108.98.1","kernel-pae-devel":"3.0.101-108.98.1","kernel-xen":"3.0.101-108.98.1","kernel-xen-devel":"3.0.101-108.98.1","kernel-default-devel":"3.0.101-108.98.1","kernel-bigmem-base":"3.0.101-108.98.1","kernel-default-base":"3.0.101-108.98.1","kernel-trace-base":"3.0.101-108.98.1","kernel-xen-base":"3.0.101-108.98.1","kernel-bigmem-devel":"3.0.101-108.98.1","kernel-ppc64-devel":"3.0.101-108.98.1","kernel-ppc64-base":"3.0.101-108.98.1","kernel-pae":"3.0.101-108.98.1","kernel-trace":"3.0.101-108.98.1","kernel-bigmem":"3.0.101-108.98.1","kernel-syms":"3.0.101-108.98.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2019:14127-1.json"}},{"package":{"name":"kernel-pae","ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","purl":"pkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.0.101-108.98.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-trace-devel":"3.0.101-108.98.1","kernel-source":"3.0.101-108.98.1","kernel-default-man":"3.0.101-108.98.1","kernel-ec2-base":"3.0.101-108.98.1","kernel-ec2":"3.0.101-108.98.1","kernel-default":"3.0.101-108.98.1","kernel-ppc64":"3.0.101-108.98.1","kernel-pae-base":"3.0.101-108.98.1","kernel-ec2-devel":"3.0.101-108.98.1","kernel-pae-devel":"3.0.101-108.98.1","kernel-xen":"3.0.101-108.98.1","kernel-xen-devel":"3.0.101-108.98.1","kernel-default-devel":"3.0.101-108.98.1","kernel-bigmem-base":"3.0.101-108.98.1","kernel-default-base":"3.0.101-108.98.1","kernel-trace-base":"3.0.101-108.98.1","kernel-xen-base":"3.0.101-108.98.1","kernel-bigmem-devel":"3.0.101-108.98.1","kernel-ppc64-devel":"3.0.101-108.98.1","kernel-ppc64-base":"3.0.101-108.98.1","kernel-pae":"3.0.101-108.98.1","kernel-trace":"3.0.101-108.98.1","kernel-bigmem":"3.0.101-108.98.1","kernel-syms":"3.0.101-108.98.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2019:14127-1.json"}},{"package":{"name":"kernel-ppc64","ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","purl":"pkg:rpm/suse/kernel-ppc64&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.0.101-108.98.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-trace-devel":"3.0.101-108.98.1","kernel-source":"3.0.101-108.98.1","kernel-default-man":"3.0.101-108.98.1","kernel-ec2-base":"3.0.101-108.98.1","kernel-ec2":"3.0.101-108.98.1","kernel-default":"3.0.101-108.98.1","kernel-ppc64":"3.0.101-108.98.1","kernel-pae-base":"3.0.101-108.98.1","kernel-ec2-devel":"3.0.101-108.98.1","kernel-pae-devel":"3.0.101-108.98.1","kernel-xen":"3.0.101-108.98.1","kernel-xen-devel":"3.0.101-108.98.1","kernel-default-devel":"3.0.101-108.98.1","kernel-bigmem-base":"3.0.101-108.98.1","kernel-default-base":"3.0.101-108.98.1","kernel-trace-base":"3.0.101-108.98.1","kernel-xen-base":"3.0.101-108.98.1","kernel-bigmem-devel":"3.0.101-108.98.1","kernel-ppc64-devel":"3.0.101-108.98.1","kernel-ppc64-base":"3.0.101-108.98.1","kernel-pae":"3.0.101-108.98.1","kernel-trace":"3.0.101-108.98.1","kernel-bigmem":"3.0.101-108.98.1","kernel-syms":"3.0.101-108.98.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2019:14127-1.json"}},{"package":{"name":"kernel-source","ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","purl":"pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.0.101-108.98.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-trace-devel":"3.0.101-108.98.1","kernel-source":"3.0.101-108.98.1","kernel-default-man":"3.0.101-108.98.1","kernel-ec2-base":"3.0.101-108.98.1","kernel-ec2":"3.0.101-108.98.1","kernel-default":"3.0.101-108.98.1","kernel-ppc64":"3.0.101-108.98.1","kernel-pae-base":"3.0.101-108.98.1","kernel-ec2-devel":"3.0.101-108.98.1","kernel-pae-devel":"3.0.101-108.98.1","kernel-xen":"3.0.101-108.98.1","kernel-xen-devel":"3.0.101-108.98.1","kernel-default-devel":"3.0.101-108.98.1","kernel-bigmem-base":"3.0.101-108.98.1","kernel-default-base":"3.0.101-108.98.1","kernel-trace-base":"3.0.101-108.98.1","kernel-xen-base":"3.0.101-108.98.1","kernel-bigmem-devel":"3.0.101-108.98.1","kernel-ppc64-devel":"3.0.101-108.98.1","kernel-ppc64-base":"3.0.101-108.98.1","kernel-pae":"3.0.101-108.98.1","kernel-trace":"3.0.101-108.98.1","kernel-bigmem":"3.0.101-108.98.1","kernel-syms":"3.0.101-108.98.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2019:14127-1.json"}},{"package":{"name":"kernel-syms","ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","purl":"pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.0.101-108.98.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-trace-devel":"3.0.101-108.98.1","kernel-source":"3.0.101-108.98.1","kernel-default-man":"3.0.101-108.98.1","kernel-ec2-base":"3.0.101-108.98.1","kernel-ec2":"3.0.101-108.98.1","kernel-default":"3.0.101-108.98.1","kernel-ppc64":"3.0.101-108.98.1","kernel-pae-base":"3.0.101-108.98.1","kernel-ec2-devel":"3.0.101-108.98.1","kernel-pae-devel":"3.0.101-108.98.1","kernel-xen":"3.0.101-108.98.1","kernel-xen-devel":"3.0.101-108.98.1","kernel-default-devel":"3.0.101-108.98.1","kernel-bigmem-base":"3.0.101-108.98.1","kernel-default-base":"3.0.101-108.98.1","kernel-trace-base":"3.0.101-108.98.1","kernel-xen-base":"3.0.101-108.98.1","kernel-bigmem-devel":"3.0.101-108.98.1","kernel-ppc64-devel":"3.0.101-108.98.1","kernel-ppc64-base":"3.0.101-108.98.1","kernel-pae":"3.0.101-108.98.1","kernel-trace":"3.0.101-108.98.1","kernel-bigmem":"3.0.101-108.98.1","kernel-syms":"3.0.101-108.98.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2019:14127-1.json"}},{"package":{"name":"kernel-trace","ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","purl":"pkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.0.101-108.98.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-trace-devel":"3.0.101-108.98.1","kernel-source":"3.0.101-108.98.1","kernel-default-man":"3.0.101-108.98.1","kernel-ec2-base":"3.0.101-108.98.1","kernel-ec2":"3.0.101-108.98.1","kernel-default":"3.0.101-108.98.1","kernel-ppc64":"3.0.101-108.98.1","kernel-pae-base":"3.0.101-108.98.1","kernel-ec2-devel":"3.0.101-108.98.1","kernel-pae-devel":"3.0.101-108.98.1","kernel-xen":"3.0.101-108.98.1","kernel-xen-devel":"3.0.101-108.98.1","kernel-default-devel":"3.0.101-108.98.1","kernel-bigmem-base":"3.0.101-108.98.1","kernel-default-base":"3.0.101-108.98.1","kernel-trace-base":"3.0.101-108.98.1","kernel-xen-base":"3.0.101-108.98.1","kernel-bigmem-devel":"3.0.101-108.98.1","kernel-ppc64-devel":"3.0.101-108.98.1","kernel-ppc64-base":"3.0.101-108.98.1","kernel-pae":"3.0.101-108.98.1","kernel-trace":"3.0.101-108.98.1","kernel-bigmem":"3.0.101-108.98.1","kernel-syms":"3.0.101-108.98.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2019:14127-1.json"}},{"package":{"name":"kernel-xen","ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","purl":"pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.0.101-108.98.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-trace-devel":"3.0.101-108.98.1","kernel-source":"3.0.101-108.98.1","kernel-default-man":"3.0.101-108.98.1","kernel-ec2-base":"3.0.101-108.98.1","kernel-ec2":"3.0.101-108.98.1","kernel-default":"3.0.101-108.98.1","kernel-ppc64":"3.0.101-108.98.1","kernel-pae-base":"3.0.101-108.98.1","kernel-ec2-devel":"3.0.101-108.98.1","kernel-pae-devel":"3.0.101-108.98.1","kernel-xen":"3.0.101-108.98.1","kernel-xen-devel":"3.0.101-108.98.1","kernel-default-devel":"3.0.101-108.98.1","kernel-bigmem-base":"3.0.101-108.98.1","kernel-default-base":"3.0.101-108.98.1","kernel-trace-base":"3.0.101-108.98.1","kernel-xen-base":"3.0.101-108.98.1","kernel-bigmem-devel":"3.0.101-108.98.1","kernel-ppc64-devel":"3.0.101-108.98.1","kernel-ppc64-base":"3.0.101-108.98.1","kernel-pae":"3.0.101-108.98.1","kernel-trace":"3.0.101-108.98.1","kernel-bigmem":"3.0.101-108.98.1","kernel-syms":"3.0.101-108.98.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2019:14127-1.json"}}],"schema_version":"1.7.3"}