Vulnerability-Lookup

CVE-2018-5390 (GCVE-0-2018-5390)

Vulnerability from cvelistv5 – Published: 2018-08-06 20:00 – Updated: 2024-08-05 05:33

Title

Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service

Summary

Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.

Severity

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-400

Assigner

certcc

References

42 references

URL	Tags
https://access.redhat.com/errata/RHSA-2018:2785	vendor-advisoryx_refsource_REDHAT
https://www.kb.cert.org/vuls/id/962459	third-party-advisoryx_refsource_CERT-VN
https://usn.ubuntu.com/3741-2/	vendor-advisoryx_refsource_UBUNTU
https://access.redhat.com/errata/RHSA-2018:2776	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2018:2933	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2018:2403	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2018:2395	vendor-advisoryx_refsource_REDHAT
https://usn.ubuntu.com/3763-1/	vendor-advisoryx_refsource_UBUNTU
https://access.redhat.com/errata/RHSA-2018:2384	vendor-advisoryx_refsource_REDHAT
https://usn.ubuntu.com/3741-1/	vendor-advisoryx_refsource_UBUNTU
https://access.redhat.com/errata/RHSA-2018:2402	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2018:2948	vendor-advisoryx_refsource_REDHAT
https://usn.ubuntu.com/3742-2/	vendor-advisoryx_refsource_UBUNTU
http://www.securitytracker.com/id/1041434	vdb-entryx_refsource_SECTRACK
https://usn.ubuntu.com/3732-2/	vendor-advisoryx_refsource_UBUNTU
http://www.securityfocus.com/bid/104976	vdb-entryx_refsource_BID
https://lists.debian.org/debian-lts-announce/2018…	mailing-listx_refsource_MLIST
http://www.securitytracker.com/id/1041424	vdb-entryx_refsource_SECTRACK
https://usn.ubuntu.com/3742-1/	vendor-advisoryx_refsource_UBUNTU
https://access.redhat.com/errata/RHSA-2018:2924	vendor-advisoryx_refsource_REDHAT
https://tools.cisco.com/security/center/content/C…	vendor-advisoryx_refsource_CISCO
https://access.redhat.com/errata/RHSA-2018:2789	vendor-advisoryx_refsource_REDHAT
https://www.debian.org/security/2018/dsa-4266	vendor-advisoryx_refsource_DEBIAN
https://access.redhat.com/errata/RHSA-2018:2645	vendor-advisoryx_refsource_REDHAT
https://usn.ubuntu.com/3732-1/	vendor-advisoryx_refsource_UBUNTU
https://access.redhat.com/errata/RHSA-2018:2791	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2018:2790	vendor-advisoryx_refsource_REDHAT
http://www.openwall.com/lists/oss-security/2019/06/28/2	mailing-listx_refsource_MLIST
http://www.openwall.com/lists/oss-security/2019/07/06/3	mailing-listx_refsource_MLIST
http://www.openwall.com/lists/oss-security/2019/07/06/4	mailing-listx_refsource_MLIST
https://www.oracle.com/security-alerts/cpujul2020.html	x_refsource_MISC
https://www.oracle.com/technetwork/security-advis…	x_refsource_CONFIRM
https://help.ecostruxureit.com/display/public/UAD…	x_refsource_CONFIRM
https://security.netapp.com/advisory/ntap-2018081…	x_refsource_CONFIRM
http://www.arubanetworks.com/assets/alert/ARUBA-P…	x_refsource_CONFIRM
https://www.synology.com/support/security/Synolog…	x_refsource_CONFIRM
https://support.f5.com/csp/article/K95343321	x_refsource_CONFIRM
https://www.a10networks.com/support/security-advi…	x_refsource_CONFIRM
https://git.kernel.org/pub/scm/linux/kernel/git/d…	x_refsource_CONFIRM
https://support.f5.com/csp/article/K95343321?utm_…	x_refsource_CONFIRM
https://cert-portal.siemens.com/productcert/pdf/s…	x_refsource_CONFIRM
http://www.huawei.com/en/psirt/security-advisorie…	x_refsource_CONFIRM

Impacted products

1 product

Vendor	Product	Version
Linux	Linux Kernel	Affected: 4.9 , < 4.9* (custom)

Date Public

2018-07-23 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:33:44.409Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "RHSA-2018:2785",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:2785"
          },
          {
            "name": "VU#962459",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "https://www.kb.cert.org/vuls/id/962459"
          },
          {
            "name": "USN-3741-2",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3741-2/"
          },
          {
            "name": "RHSA-2018:2776",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:2776"
          },
          {
            "name": "RHSA-2018:2933",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:2933"
          },
          {
            "name": "RHSA-2018:2403",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:2403"
          },
          {
            "name": "RHSA-2018:2395",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:2395"
          },
          {
            "name": "USN-3763-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3763-1/"
          },
          {
            "name": "RHSA-2018:2384",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:2384"
          },
          {
            "name": "USN-3741-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3741-1/"
          },
          {
            "name": "RHSA-2018:2402",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:2402"
          },
          {
            "name": "RHSA-2018:2948",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:2948"
          },
          {
            "name": "USN-3742-2",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3742-2/"
          },
          {
            "name": "1041434",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1041434"
          },
          {
            "name": "USN-3732-2",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3732-2/"
          },
          {
            "name": "104976",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/104976"
          },
          {
            "name": "[debian-lts-announce] 20180815 [SECURITY] [DLA 1466-1] linux-4.9 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html"
          },
          {
            "name": "1041424",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1041424"
          },
          {
            "name": "USN-3742-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3742-1/"
          },
          {
            "name": "RHSA-2018:2924",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:2924"
          },
          {
            "name": "20180824 Linux and FreeBSD Kernels TCP Reassembly Denial of Service Vulnerabilities Affecting Cisco Products: August 2018",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180824-linux-tcp"
          },
          {
            "name": "RHSA-2018:2789",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:2789"
          },
          {
            "name": "DSA-4266",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2018/dsa-4266"
          },
          {
            "name": "RHSA-2018:2645",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:2645"
          },
          {
            "name": "USN-3732-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3732-1/"
          },
          {
            "name": "RHSA-2018:2791",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:2791"
          },
          {
            "name": "RHSA-2018:2790",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:2790"
          },
          {
            "name": "[oss-security] 20190628 Re: linux-distros membership application - Microsoft",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2019/06/28/2"
          },
          {
            "name": "[oss-security] 20190706 Re: linux-distros membership application - Microsoft",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2019/07/06/3"
          },
          {
            "name": "[oss-security] 20190706 Re: linux-distros membership application - Microsoft",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2019/07/06/4"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujul2020.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20180815-0003/"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.synology.com/support/security/Synology_SA_18_41"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.f5.com/csp/article/K95343321"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.a10networks.com/support/security-advisories/tcp-ip-cve-2018-5390-segmentsmack"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=1a4f14bab1868b443f0dd3c55b689a478f82e72e"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.f5.com/csp/article/K95343321?utm_source=f5support\u0026amp%3Butm_medium=RSS"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181031-02-linux-en"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Linux Kernel",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "4.9*",
              "status": "affected",
              "version": "4.9",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2018-07-23T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-400",
              "description": "CWE-400",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-07-15T02:22:59.000Z",
        "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "shortName": "certcc"
      },
      "references": [
        {
          "name": "RHSA-2018:2785",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:2785"
        },
        {
          "name": "VU#962459",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "https://www.kb.cert.org/vuls/id/962459"
        },
        {
          "name": "USN-3741-2",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3741-2/"
        },
        {
          "name": "RHSA-2018:2776",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:2776"
        },
        {
          "name": "RHSA-2018:2933",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:2933"
        },
        {
          "name": "RHSA-2018:2403",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:2403"
        },
        {
          "name": "RHSA-2018:2395",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:2395"
        },
        {
          "name": "USN-3763-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3763-1/"
        },
        {
          "name": "RHSA-2018:2384",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:2384"
        },
        {
          "name": "USN-3741-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3741-1/"
        },
        {
          "name": "RHSA-2018:2402",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:2402"
        },
        {
          "name": "RHSA-2018:2948",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:2948"
        },
        {
          "name": "USN-3742-2",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3742-2/"
        },
        {
          "name": "1041434",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1041434"
        },
        {
          "name": "USN-3732-2",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3732-2/"
        },
        {
          "name": "104976",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/104976"
        },
        {
          "name": "[debian-lts-announce] 20180815 [SECURITY] [DLA 1466-1] linux-4.9 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html"
        },
        {
          "name": "1041424",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1041424"
        },
        {
          "name": "USN-3742-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3742-1/"
        },
        {
          "name": "RHSA-2018:2924",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:2924"
        },
        {
          "name": "20180824 Linux and FreeBSD Kernels TCP Reassembly Denial of Service Vulnerabilities Affecting Cisco Products: August 2018",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180824-linux-tcp"
        },
        {
          "name": "RHSA-2018:2789",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:2789"
        },
        {
          "name": "DSA-4266",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2018/dsa-4266"
        },
        {
          "name": "RHSA-2018:2645",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:2645"
        },
        {
          "name": "USN-3732-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3732-1/"
        },
        {
          "name": "RHSA-2018:2791",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:2791"
        },
        {
          "name": "RHSA-2018:2790",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:2790"
        },
        {
          "name": "[oss-security] 20190628 Re: linux-distros membership application - Microsoft",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2019/06/28/2"
        },
        {
          "name": "[oss-security] 20190706 Re: linux-distros membership application - Microsoft",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2019/07/06/3"
        },
        {
          "name": "[oss-security] 20190706 Re: linux-distros membership application - Microsoft",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2019/07/06/4"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpujul2020.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20180815-0003/"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.synology.com/support/security/Synology_SA_18_41"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.f5.com/csp/article/K95343321"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.a10networks.com/support/security-advisories/tcp-ip-cve-2018-5390-segmentsmack"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=1a4f14bab1868b443f0dd3c55b689a478f82e72e"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.f5.com/csp/article/K95343321?utm_source=f5support\u0026amp%3Butm_medium=RSS"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181031-02-linux-en"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service",
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cert@cert.org",
          "ID": "CVE-2018-5390",
          "STATE": "PUBLIC",
          "TITLE": "Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Linux Kernel",
                      "version": {
                        "version_data": [
                          {
                            "affected": "\u003e=",
                            "version_affected": "\u003e=",
                            "version_name": "4.9",
                            "version_value": "4.9"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Linux"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-400"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "RHSA-2018:2785",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:2785"
            },
            {
              "name": "VU#962459",
              "refsource": "CERT-VN",
              "url": "https://www.kb.cert.org/vuls/id/962459"
            },
            {
              "name": "USN-3741-2",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3741-2/"
            },
            {
              "name": "RHSA-2018:2776",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:2776"
            },
            {
              "name": "RHSA-2018:2933",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:2933"
            },
            {
              "name": "RHSA-2018:2403",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:2403"
            },
            {
              "name": "RHSA-2018:2395",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:2395"
            },
            {
              "name": "USN-3763-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3763-1/"
            },
            {
              "name": "RHSA-2018:2384",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:2384"
            },
            {
              "name": "USN-3741-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3741-1/"
            },
            {
              "name": "RHSA-2018:2402",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:2402"
            },
            {
              "name": "RHSA-2018:2948",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:2948"
            },
            {
              "name": "USN-3742-2",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3742-2/"
            },
            {
              "name": "1041434",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1041434"
            },
            {
              "name": "USN-3732-2",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3732-2/"
            },
            {
              "name": "104976",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/104976"
            },
            {
              "name": "[debian-lts-announce] 20180815 [SECURITY] [DLA 1466-1] linux-4.9 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html"
            },
            {
              "name": "1041424",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1041424"
            },
            {
              "name": "USN-3742-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3742-1/"
            },
            {
              "name": "RHSA-2018:2924",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:2924"
            },
            {
              "name": "20180824 Linux and FreeBSD Kernels TCP Reassembly Denial of Service Vulnerabilities Affecting Cisco Products: August 2018",
              "refsource": "CISCO",
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180824-linux-tcp"
            },
            {
              "name": "RHSA-2018:2789",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:2789"
            },
            {
              "name": "DSA-4266",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2018/dsa-4266"
            },
            {
              "name": "RHSA-2018:2645",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:2645"
            },
            {
              "name": "USN-3732-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3732-1/"
            },
            {
              "name": "RHSA-2018:2791",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:2791"
            },
            {
              "name": "RHSA-2018:2790",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:2790"
            },
            {
              "name": "[oss-security] 20190628 Re: linux-distros membership application - Microsoft",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2019/06/28/2"
            },
            {
              "name": "[oss-security] 20190706 Re: linux-distros membership application - Microsoft",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2019/07/06/3"
            },
            {
              "name": "[oss-security] 20190706 Re: linux-distros membership application - Microsoft",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2019/07/06/4"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpujul2020.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpujul2020.html"
            },
            {
              "name": "https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html",
              "refsource": "CONFIRM",
              "url": "https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html"
            },
            {
              "name": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0",
              "refsource": "CONFIRM",
              "url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20180815-0003/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20180815-0003/"
            },
            {
              "name": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt",
              "refsource": "CONFIRM",
              "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt"
            },
            {
              "name": "https://www.synology.com/support/security/Synology_SA_18_41",
              "refsource": "CONFIRM",
              "url": "https://www.synology.com/support/security/Synology_SA_18_41"
            },
            {
              "name": "https://support.f5.com/csp/article/K95343321",
              "refsource": "CONFIRM",
              "url": "https://support.f5.com/csp/article/K95343321"
            },
            {
              "name": "https://www.a10networks.com/support/security-advisories/tcp-ip-cve-2018-5390-segmentsmack",
              "refsource": "CONFIRM",
              "url": "https://www.a10networks.com/support/security-advisories/tcp-ip-cve-2018-5390-segmentsmack"
            },
            {
              "name": "https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=1a4f14bab1868b443f0dd3c55b689a478f82e72e",
              "refsource": "CONFIRM",
              "url": "https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=1a4f14bab1868b443f0dd3c55b689a478f82e72e"
            },
            {
              "name": "https://support.f5.com/csp/article/K95343321?utm_source=f5support\u0026amp;utm_medium=RSS",
              "refsource": "CONFIRM",
              "url": "https://support.f5.com/csp/article/K95343321?utm_source=f5support\u0026amp;utm_medium=RSS"
            },
            {
              "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf",
              "refsource": "CONFIRM",
              "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf"
            },
            {
              "name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181031-02-linux-en",
              "refsource": "CONFIRM",
              "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181031-02-linux-en"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
    "assignerShortName": "certcc",
    "cveId": "CVE-2018-5390",
    "datePublished": "2018-08-06T20:00:00.000Z",
    "dateReserved": "2018-01-12T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:33:44.409Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2018-5390",
      "date": "2026-06-25",
      "epss": "0.7354",
      "percentile": "0.99398"
    },
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6BBD7A51-0590-4DDF-8249-5AFA8D645CB6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"33C068A4-3780-4EAB-A937-6082DF847564\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"51EF4996-72F4-4FA4-814F-F5991E7A8318\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_aus:6.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AF83BB87-B203-48F9-9D06-48A5FE399050\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1F3BEFDB-5156-4E1C-80BB-8BE9FEAA7623\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"16E6D998-B41D-4B49-9E00-8336D2E40A4A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1C8D871B-AEA1-4407-AEE3-47EC782250FF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"98381E61-F082-4302-B51F-5648884F998B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D99A687E-EAE6-417E-A88E-D0082BC194CD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_eus:6.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2EDC8561-5E0A-4692-BB71-C88ED7A1229F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_eus:6.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6C81647C-9A53-481D-A54C-36770A093F90\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"44B067C7-735E-43C9-9188-7E1522A02491\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A8442C20-41F9-47FD-9A12-E724D3A31FD7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9EC0D196-F7B8-4BDD-9050-779F7A7FBEE4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A4E9DD8A-A68B-4A69-8B01-BFF92A2020A8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_tus:6.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"13E02156-E748-4820-B76F-7074793837E1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6755B6AD-0422-467B-8115-34A60B1D1A40\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"24C0F4E1-C52C-41E0-9F14-F83ADD5CC7ED\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D5F7E11E-FB34-4467-8919-2B6BEAABF665\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"825ECE2D-E232-46E0-A047-074B34DB1E97\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"4.9\", \"versionEndExcluding\": \"4.18\", \"matchCriteriaId\": \"D6E2A48A-1AFB-4878-AE78-18613DE9334F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:4.18:rc1:*:*:*:*:*:*\", \"matchCriteriaId\": \"0758920B-F8FC-44AB-92E3-CB0B0A5EDA76\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:4.18:rc2:*:*:*:*:*:*\", \"matchCriteriaId\": \"81EBA79F-0ABF-4213-8BEF-9A927F9E24D4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:4.18:rc3:*:*:*:*:*:*\", \"matchCriteriaId\": \"364BE028-0C54-4254-9261-59D97C0EDC1F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:4.18:rc4:*:*:*:*:*:*\", \"matchCriteriaId\": \"C5CD0194-46B1-4CCC-9829-8ED014B77660\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:4.18:rc5:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB2B91AF-ACE1-4F6F-B2D0-9D4B7D8D20CE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:4.18:rc6:*:*:*:*:*:*\", \"matchCriteriaId\": \"30FBD992-DD41-441E-A6C7-D39DAC45DA34\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*\", \"matchCriteriaId\": \"8D305F7A-D159-4716-AB26-5E38BB5CD991\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*\", \"matchCriteriaId\": \"B5A6F2F3-4894-4392-8296-3B8DD2679084\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*\", \"matchCriteriaId\": \"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\", \"matchCriteriaId\": \"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hp:aruba_airwave_amp:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"8.2.7.1\", \"matchCriteriaId\": \"4A3E8408-DE01-4B3C-9FDF-A51261C524BD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hp:aruba_clearpass_policy_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"6.6.0\", \"versionEndIncluding\": \"6.6.9\", \"matchCriteriaId\": \"0E49DB15-06E7-4709-933E-890A7E65A240\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hp:aruba_clearpass_policy_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"6.7.0\", \"versionEndIncluding\": \"6.7.5\", \"matchCriteriaId\": \"A29A8C01-7E4E-4662-B4F3-07DEF07CC600\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.5.1\", \"versionEndIncluding\": \"11.6.3\", \"matchCriteriaId\": \"41E6AF24-0676-4B70-A289-7B81321194DF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3\", \"matchCriteriaId\": \"6BB42D3A-71EE-4367-9F65-86404D74E59D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.1\", \"matchCriteriaId\": \"1331467F-B278-485E-AD91-7D0643C2F3DB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_access_policy_manager:14.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"44E8F4B6-ACF1-4F2C-A2A4-DF7382CCE628\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.5.1\", \"versionEndIncluding\": \"11.6.3\", \"matchCriteriaId\": \"195704A8-4911-4A61-8369-711D403052F1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3\", \"matchCriteriaId\": \"E5011C2D-FBB5-4117-BB97-11DE70117345\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.1\", \"matchCriteriaId\": \"E866C4E5-D739-4352-9B6D-9753B4C78A24\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D1FDA72E-991D-4451-9C8E-E738F4D12728\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.5.1\", \"versionEndIncluding\": \"11.6.3\", \"matchCriteriaId\": \"DDE5A2D0-C268-4D2D-A001-AEC17E92B1DA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3\", \"matchCriteriaId\": \"79344F94-2CB8-4F08-9373-61614A38476C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.1\", \"matchCriteriaId\": \"42D16634-442B-4674-B11E-6748D28764BD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_analytics:14.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"622C877B-760A-4C50-9FDF-998C010B864E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.5.1\", \"versionEndIncluding\": \"11.6.3\", \"matchCriteriaId\": \"7FA10863-C4C8-4658-8EEA-BC71B3522F36\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3\", \"matchCriteriaId\": \"E5D00EED-F95D-4458-BDC4-3390DE85348B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.1\", \"matchCriteriaId\": \"1D91EC11-DD9A-434B-9EB4-14AA0E977D8D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"292EC144-CBA2-4275-9F70-4ED65A505B39\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.5.1\", \"versionEndIncluding\": \"11.6.3\", \"matchCriteriaId\": \"E6EC3436-7FAE-4311-8103-7ADBAF40E1C1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3\", \"matchCriteriaId\": \"397AC4A5-B67C-483B-84F7-8CB294BB460C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.1\", \"matchCriteriaId\": \"E697E4FD-1882-4BF8-9B9F-FB7DFD19497B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_application_security_manager:14.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"80509490-50DA-42F8-8A4A-A6F6B95649BA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.5.1\", \"versionEndIncluding\": \"11.6.3\", \"matchCriteriaId\": \"18A39E28-E7BB-47A3-988B-4EBF070D3538\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3\", \"matchCriteriaId\": \"1466F808-2596-4028-8884-27EDD5CACB47\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.1\", \"matchCriteriaId\": \"394DF290-9328-4FAD-B04E-61F62B916148\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_domain_name_system:14.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D7BBEC67-BD2E-49D5-8294-977D975D98D0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.5.1.\", \"versionEndIncluding\": \"11.6.3\", \"matchCriteriaId\": \"D931BC21-AF80-400C-A7E9-2C4AB19D748A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3\", \"matchCriteriaId\": \"6A11E433-943D-4D92-B45E-3FA268094278\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.1\", \"matchCriteriaId\": \"96AA67E0-3471-4699-87A7-E47DD8E313B8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_edge_gateway:14.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BB76D898-4C7C-40E9-8539-E2A1BC7A5A66\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.5.1\", \"versionEndIncluding\": \"11.6.3\", \"matchCriteriaId\": \"8C3C9586-D4ED-4486-9C1F-B357F34F8A84\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3\", \"matchCriteriaId\": \"D4C3D6F5-D94D-46A3-991C-A11275B59F8E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.1\", \"matchCriteriaId\": \"6114B091-1612-4EA2-81D4-2E5455A345F7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_fraud_protection_service:14.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"86D68F26-EF89-4016-BD3A-637951752AAA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.5.1\", \"versionEndIncluding\": \"11.6.3\", \"matchCriteriaId\": \"9F002114-483A-462C-B0BD-4E1591009935\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3\", \"matchCriteriaId\": \"57CCB85A-6F90-4DB7-B0F8-AE5250E1DCFE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.1\", \"matchCriteriaId\": \"36F60067-2623-42F9-8B4F-C24F3268DDB9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_global_traffic_manager:14.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ADAD6E9A-F8B5-4B2D-B687-AEAB518B8F19\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.5.1\", \"versionEndIncluding\": \"11.6.3\", \"matchCriteriaId\": \"6DE3443E-9D07-4A82-B110-02ADDA9FDEF3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3\", \"matchCriteriaId\": \"60189636-02D6-44CA-BE2A-7777E3C409CD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.1\", \"matchCriteriaId\": \"68E2840B-96F4-4437-91D1-4AFE99E54D6A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_link_controller:14.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"23E592A7-B530-4932-A81D-D1B9ABD64047\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.5.1\", \"versionEndIncluding\": \"11.6.3\", \"matchCriteriaId\": \"5D08BA8F-4949-47EC-8EEF-312DC70043B8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.0.0\", \"versionEndIncluding\": \"12.1.3\", \"matchCriteriaId\": \"47D07AA7-1E0E-4FC3-B8BF-05729619B0AA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*\", \"versionStartExcluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.1\", \"matchCriteriaId\": \"A197CF35-47EE-4DAE-BC51-90663870B9B9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_local_traffic_manager:14.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8E734E1C-A92F-4394-8F33-4429161BE47C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.5.1\", \"versionEndIncluding\": \"11.6.3\", \"matchCriteriaId\": \"4C9A0A9D-40AF-46DC-B577-DA73B4C2970B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3\", \"matchCriteriaId\": \"5AD75094-3248-4D37-969E-75272F6F31D6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.1\", \"matchCriteriaId\": \"15F4D416-10F4-4C08-A25D-0795F7FE0FBE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7CF10213-FBE4-47A5-8EF2-B45BF15BEB6D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"11.5.1\", \"versionEndIncluding\": \"11.6.3\", \"matchCriteriaId\": \"A36B6B7D-3900-43D4-B241-E58A1377B4DF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.1.0\", \"versionEndIncluding\": \"12.1.3\", \"matchCriteriaId\": \"E7860523-E8B3-4BEE-853A-6F0B5BCDDA5A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0.0\", \"versionEndIncluding\": \"13.1.1\", \"matchCriteriaId\": \"D6944128-3A30-4835-A125-3EA7571D7DC0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:big-ip_webaccelerator:14.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A5A85C15-B821-4992-9B06-45767E7467D2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:traffix_systems_signaling_delivery_controller:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"5.0.0\", \"versionEndIncluding\": \"5.1.0\", \"matchCriteriaId\": \"A87510FE-775A-44FB-9792-074CD5DE5C38\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:traffix_systems_signaling_delivery_controller:4.4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0B5497D9-9022-4788-87DB-6C4B4116509A\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:a10networks:advanced_core_operating_system:3.2.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BB85F4D0-A104-4954-8D73-B9980C8E93E0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:a10networks:advanced_core_operating_system:3.2.2:p5:*:*:*:*:*:*\", \"matchCriteriaId\": \"CECB4DA3-3842-4102-8451-43EC00CBAEA8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:a10networks:advanced_core_operating_system:4.1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3D286AC5-DB3E-4FAE-8441-A4D98B1F1160\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:a10networks:advanced_core_operating_system:4.1.0:p11:*:*:*:*:*:*\", \"matchCriteriaId\": \"8DE427D5-6E9A-4AC3-830D-7D235DE97389\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:a10networks:advanced_core_operating_system:4.1.1:p8:*:*:*:*:*:*\", \"matchCriteriaId\": \"F32591D5-D7F6-4C45-B1B5-1D1F8C649DF0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:a10networks:advanced_core_operating_system:4.1.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"032B2E4E-381E-4662-A6CF-8FA517233681\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:a10networks:advanced_core_operating_system:4.1.2:p4:*:*:*:*:*:*\", \"matchCriteriaId\": \"BA708DD0-8A88-4B2B-9B57-A08491DE4696\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:a10networks:advanced_core_operating_system:4.1.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0013CA3E-0E73-45EA-B2E9-7EA038BAB336\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:a10networks:advanced_core_operating_system:4.1.4:p1:*:*:*:*:*:*\", \"matchCriteriaId\": \"F993C993-D118-45A3-9F95-382B54E25439\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:collaboration_meeting_rooms:1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7E53CEDB-F536-4DA0-917C-C220A3102B90\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:digital_network_architecture_center:1.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"27A026D0-AA0D-417A-A06B-8785E5FFCBC9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:expressway:x8.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"31DF55CF-FEDE-43DE-8F55-3264DB7CDD71\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:expressway:x8.10.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1A4C837B-4648-4764-B190-36381EE7E664\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:expressway:x8.10.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F044DA47-D8FA-4EF9-B28C-C69D0DE8C3DC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:expressway:x8.10.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E600BCEC-2466-4348-ACE3-955469AA1C9E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:expressway:x8.10.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AB8DD876-7E51-43A9-8944-B4DEE9E9EDD3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:expressway:x8.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"431A3000-D903-4B57-9B54-CC650105B044\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:expressway_series:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E8E7428A-D2A5-4B77-8562-F75BB8C72976\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:meeting_management:1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"84E53549-337C-423F-AB34-F2559C1F225C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:meeting_management:1.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EABDA6F4-99E7-4354-9760-E9891B47DC8A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:network_assurance_engine:2.1\\\\(1a\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BD40D143-B4B4-4C2A-8D9E-D928459FC59E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:threat_grid-cloud:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B2B5B87A-CECF-48BF-833E-6E4A6DF647CC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:webex_hybrid_data_security:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F6A108A5-ADB1-4328-B3C0-9C3CC2CD1346\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:webex_video_mesh:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AE0F9723-F9BD-422D-8414-040C01C9C0D0\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:telepresence_video_communication_server_firmware:x8.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4B534882-60A5-4098-A439-A47CBC546E53\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:telepresence_video_communication_server_firmware:x8.10.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB1C3395-1865-4436-81E0-3821B5BB99D2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:telepresence_video_communication_server_firmware:x8.10.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"86ACAFA3-7F76-428A-A6EE-87284FB30B01\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:telepresence_video_communication_server_firmware:x8.10.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8908328C-FC17-4BDC-B369-36942225DFAD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:telepresence_video_communication_server_firmware:x8.10.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"988EDFD9-4652-4460-BE48-62219B8A0A6D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:telepresence_video_communication_server_firmware:x8.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BD9DD18A-43B9-4B43-AF9F-236D42651E46\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:cisco:telepresence_video_communication_server:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"177FA398-F812-4E8D-99A3-3F7E0F690CE6\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:telepresence_conductor_firmware:xc4.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4A8F173C-2D38-42B2-B86F-72B53A96D05D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:telepresence_conductor_firmware:xc4.3.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"27E03126-0FF6-4D4E-8766-A4F0B20741AC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:telepresence_conductor_firmware:xc4.3.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F24CB2EC-A79E-4C56-8F03-86D53A9B28A3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:telepresence_conductor_firmware:xc4.3.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C4F2333B-BE03-4D6C-AA16-1E3EB170496E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:telepresence_conductor_firmware:xc4.3.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B199BF45-F9EF-49A0-B2D5-9B9FA6AA1208\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:cisco:telepresence_conductor:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2C65475E-2641-404B-8316-6B6A5029617D\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.\"}, {\"lang\": \"es\", \"value\": \"El kernel de Linux en versiones 4.9 y siguientes pueden forzarse a realizar llamadas muy caras a tcp_collapse_ofo_queue() y tcp_prune_ofo_queue() para cada paquete entrante, lo que puede conducir a una denegaci\\u00f3n de servicio.\"}]",
      "id": "CVE-2018-5390",
      "lastModified": "2024-11-21T04:08:43.610",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:C\", \"baseScore\": 7.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 6.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2018-08-06T20:29:01.570",
      "references": "[{\"url\": \"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181031-02-linux-en\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2019/06/28/2\", \"source\": \"cret@cert.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2019/07/06/3\", \"source\": \"cret@cert.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2019/07/06/4\", \"source\": \"cret@cert.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/104976\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1041424\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1041434\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2384\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2395\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2402\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2403\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2645\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2776\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2785\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2789\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2790\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2791\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2924\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2933\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2948\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=1a4f14bab1868b443f0dd3c55b689a478f82e72e\", \"source\": \"cret@cert.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20180815-0003/\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://support.f5.com/csp/article/K95343321\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://support.f5.com/csp/article/K95343321?utm_source=f5support\u0026amp%3Butm_medium=RSS\", \"source\": \"cret@cert.org\"}, {\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180824-linux-tcp\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3732-1/\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3732-2/\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3741-1/\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3741-2/\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3742-1/\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3742-2/\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3763-1/\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.a10networks.com/support/security-advisories/tcp-ip-cve-2018-5390-segmentsmack\", \"source\": \"cret@cert.org\", \"tags\": [\"Mitigation\", \"Third Party Advisory\"]}, {\"url\": \"https://www.debian.org/security/2018/dsa-4266\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.kb.cert.org/vuls/id/962459\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\", \"US Government Resource\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpujul2020.html\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html\", \"source\": \"cret@cert.org\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://www.synology.com/support/security/Synology_SA_18_41\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181031-02-linux-en\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2019/06/28/2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2019/07/06/3\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2019/07/06/4\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/104976\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1041424\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1041434\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2384\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2395\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2402\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2403\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2645\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2776\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2785\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2789\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2790\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2791\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2924\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2933\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:2948\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=1a4f14bab1868b443f0dd3c55b689a478f82e72e\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20180815-0003/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://support.f5.com/csp/article/K95343321\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://support.f5.com/csp/article/K95343321?utm_source=f5support\u0026amp%3Butm_medium=RSS\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180824-linux-tcp\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3732-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3732-2/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3741-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3741-2/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3742-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3742-2/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3763-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.a10networks.com/support/security-advisories/tcp-ip-cve-2018-5390-segmentsmack\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mitigation\", \"Third Party Advisory\"]}, {\"url\": \"https://www.debian.org/security/2018/dsa-4266\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.kb.cert.org/vuls/id/962459\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"US Government Resource\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpujul2020.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://www.synology.com/support/security/Synology_SA_18_41\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
      "sourceIdentifier": "cret@cert.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"cret@cert.org\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-400\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-400\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2018-5390\",\"sourceIdentifier\":\"cret@cert.org\",\"published\":\"2018-08-06T20:29:01.570\",\"lastModified\":\"2024-11-21T04:08:43.610\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.\"},{\"lang\":\"es\",\"value\":\"El kernel de Linux en versiones 4.9 y siguientes pueden forzarse a realizar llamadas muy caras a tcp_collapse_ofo_queue() y tcp_prune_ofo_queue() para cada paquete entrante, lo que puede conducir a una denegaci\u00f3n de servicio.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:C\",\"baseScore\":7.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"cret@cert.org\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6BBD7A51-0590-4DDF-8249-5AFA8D645CB6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33C068A4-3780-4EAB-A937-6082DF847564\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"51EF4996-72F4-4FA4-814F-F5991E7A8318\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:6.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AF83BB87-B203-48F9-9D06-48A5FE399050\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F3BEFDB-5156-4E1C-80BB-8BE9FEAA7623\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"16E6D998-B41D-4B49-9E00-8336D2E40A4A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1C8D871B-AEA1-4407-AEE3-47EC782250FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"98381E61-F082-4302-B51F-5648884F998B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D99A687E-EAE6-417E-A88E-D0082BC194CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:6.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2EDC8561-5E0A-4692-BB71-C88ED7A1229F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:6.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6C81647C-9A53-481D-A54C-36770A093F90\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"44B067C7-735E-43C9-9188-7E1522A02491\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A8442C20-41F9-47FD-9A12-E724D3A31FD7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9EC0D196-F7B8-4BDD-9050-779F7A7FBEE4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A4E9DD8A-A68B-4A69-8B01-BFF92A2020A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_tus:6.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"13E02156-E748-4820-B76F-7074793837E1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6755B6AD-0422-467B-8115-34A60B1D1A40\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"24C0F4E1-C52C-41E0-9F14-F83ADD5CC7ED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D5F7E11E-FB34-4467-8919-2B6BEAABF665\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"825ECE2D-E232-46E0-A047-074B34DB1E97\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.9\",\"versionEndExcluding\":\"4.18\",\"matchCriteriaId\":\"D6E2A48A-1AFB-4878-AE78-18613DE9334F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.18:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"0758920B-F8FC-44AB-92E3-CB0B0A5EDA76\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.18:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"81EBA79F-0ABF-4213-8BEF-9A927F9E24D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.18:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"364BE028-0C54-4254-9261-59D97C0EDC1F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.18:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"C5CD0194-46B1-4CCC-9829-8ED014B77660\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.18:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB2B91AF-ACE1-4F6F-B2D0-9D4B7D8D20CE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:4.18:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"30FBD992-DD41-441E-A6C7-D39DAC45DA34\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*\",\"matchCriteriaId\":\"8D305F7A-D159-4716-AB26-5E38BB5CD991\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"B5A6F2F3-4894-4392-8296-3B8DD2679084\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hp:aruba_airwave_amp:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"8.2.7.1\",\"matchCriteriaId\":\"4A3E8408-DE01-4B3C-9FDF-A51261C524BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hp:aruba_clearpass_policy_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.6.0\",\"versionEndIncluding\":\"6.6.9\",\"matchCriteriaId\":\"0E49DB15-06E7-4709-933E-890A7E65A240\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hp:aruba_clearpass_policy_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.7.0\",\"versionEndIncluding\":\"6.7.5\",\"matchCriteriaId\":\"A29A8C01-7E4E-4662-B4F3-07DEF07CC600\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.5.1\",\"versionEndIncluding\":\"11.6.3\",\"matchCriteriaId\":\"41E6AF24-0676-4B70-A289-7B81321194DF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3\",\"matchCriteriaId\":\"6BB42D3A-71EE-4367-9F65-86404D74E59D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.1\",\"matchCriteriaId\":\"1331467F-B278-485E-AD91-7D0643C2F3DB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_access_policy_manager:14.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"44E8F4B6-ACF1-4F2C-A2A4-DF7382CCE628\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.5.1\",\"versionEndIncluding\":\"11.6.3\",\"matchCriteriaId\":\"195704A8-4911-4A61-8369-711D403052F1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3\",\"matchCriteriaId\":\"E5011C2D-FBB5-4117-BB97-11DE70117345\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.1\",\"matchCriteriaId\":\"E866C4E5-D739-4352-9B6D-9753B4C78A24\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1FDA72E-991D-4451-9C8E-E738F4D12728\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.5.1\",\"versionEndIncluding\":\"11.6.3\",\"matchCriteriaId\":\"DDE5A2D0-C268-4D2D-A001-AEC17E92B1DA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3\",\"matchCriteriaId\":\"79344F94-2CB8-4F08-9373-61614A38476C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.1\",\"matchCriteriaId\":\"42D16634-442B-4674-B11E-6748D28764BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:14.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"622C877B-760A-4C50-9FDF-998C010B864E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.5.1\",\"versionEndIncluding\":\"11.6.3\",\"matchCriteriaId\":\"7FA10863-C4C8-4658-8EEA-BC71B3522F36\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3\",\"matchCriteriaId\":\"E5D00EED-F95D-4458-BDC4-3390DE85348B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.1\",\"matchCriteriaId\":\"1D91EC11-DD9A-434B-9EB4-14AA0E977D8D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"292EC144-CBA2-4275-9F70-4ED65A505B39\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.5.1\",\"versionEndIncluding\":\"11.6.3\",\"matchCriteriaId\":\"E6EC3436-7FAE-4311-8103-7ADBAF40E1C1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3\",\"matchCriteriaId\":\"397AC4A5-B67C-483B-84F7-8CB294BB460C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.1\",\"matchCriteriaId\":\"E697E4FD-1882-4BF8-9B9F-FB7DFD19497B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_security_manager:14.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80509490-50DA-42F8-8A4A-A6F6B95649BA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.5.1\",\"versionEndIncluding\":\"11.6.3\",\"matchCriteriaId\":\"18A39E28-E7BB-47A3-988B-4EBF070D3538\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3\",\"matchCriteriaId\":\"1466F808-2596-4028-8884-27EDD5CACB47\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.1\",\"matchCriteriaId\":\"394DF290-9328-4FAD-B04E-61F62B916148\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_domain_name_system:14.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D7BBEC67-BD2E-49D5-8294-977D975D98D0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.5.1.\",\"versionEndIncluding\":\"11.6.3\",\"matchCriteriaId\":\"D931BC21-AF80-400C-A7E9-2C4AB19D748A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3\",\"matchCriteriaId\":\"6A11E433-943D-4D92-B45E-3FA268094278\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.1\",\"matchCriteriaId\":\"96AA67E0-3471-4699-87A7-E47DD8E313B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_edge_gateway:14.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BB76D898-4C7C-40E9-8539-E2A1BC7A5A66\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.5.1\",\"versionEndIncluding\":\"11.6.3\",\"matchCriteriaId\":\"8C3C9586-D4ED-4486-9C1F-B357F34F8A84\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3\",\"matchCriteriaId\":\"D4C3D6F5-D94D-46A3-991C-A11275B59F8E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.1\",\"matchCriteriaId\":\"6114B091-1612-4EA2-81D4-2E5455A345F7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_fraud_protection_service:14.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"86D68F26-EF89-4016-BD3A-637951752AAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.5.1\",\"versionEndIncluding\":\"11.6.3\",\"matchCriteriaId\":\"9F002114-483A-462C-B0BD-4E1591009935\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3\",\"matchCriteriaId\":\"57CCB85A-6F90-4DB7-B0F8-AE5250E1DCFE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.1\",\"matchCriteriaId\":\"36F60067-2623-42F9-8B4F-C24F3268DDB9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:14.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ADAD6E9A-F8B5-4B2D-B687-AEAB518B8F19\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.5.1\",\"versionEndIncluding\":\"11.6.3\",\"matchCriteriaId\":\"6DE3443E-9D07-4A82-B110-02ADDA9FDEF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3\",\"matchCriteriaId\":\"60189636-02D6-44CA-BE2A-7777E3C409CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.1\",\"matchCriteriaId\":\"68E2840B-96F4-4437-91D1-4AFE99E54D6A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:14.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"23E592A7-B530-4932-A81D-D1B9ABD64047\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.5.1\",\"versionEndIncluding\":\"11.6.3\",\"matchCriteriaId\":\"5D08BA8F-4949-47EC-8EEF-312DC70043B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.0.0\",\"versionEndIncluding\":\"12.1.3\",\"matchCriteriaId\":\"47D07AA7-1E0E-4FC3-B8BF-05729619B0AA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartExcluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.1\",\"matchCriteriaId\":\"A197CF35-47EE-4DAE-BC51-90663870B9B9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:14.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8E734E1C-A92F-4394-8F33-4429161BE47C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.5.1\",\"versionEndIncluding\":\"11.6.3\",\"matchCriteriaId\":\"4C9A0A9D-40AF-46DC-B577-DA73B4C2970B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3\",\"matchCriteriaId\":\"5AD75094-3248-4D37-969E-75272F6F31D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.1\",\"matchCriteriaId\":\"15F4D416-10F4-4C08-A25D-0795F7FE0FBE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7CF10213-FBE4-47A5-8EF2-B45BF15BEB6D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.5.1\",\"versionEndIncluding\":\"11.6.3\",\"matchCriteriaId\":\"A36B6B7D-3900-43D4-B241-E58A1377B4DF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.1.0\",\"versionEndIncluding\":\"12.1.3\",\"matchCriteriaId\":\"E7860523-E8B3-4BEE-853A-6F0B5BCDDA5A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndIncluding\":\"13.1.1\",\"matchCriteriaId\":\"D6944128-3A30-4835-A125-3EA7571D7DC0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_webaccelerator:14.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5A85C15-B821-4992-9B06-45767E7467D2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:traffix_systems_signaling_delivery_controller:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.0.0\",\"versionEndIncluding\":\"5.1.0\",\"matchCriteriaId\":\"A87510FE-775A-44FB-9792-074CD5DE5C38\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:traffix_systems_signaling_delivery_controller:4.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B5497D9-9022-4788-87DB-6C4B4116509A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:a10networks:advanced_core_operating_system:3.2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BB85F4D0-A104-4954-8D73-B9980C8E93E0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:a10networks:advanced_core_operating_system:3.2.2:p5:*:*:*:*:*:*\",\"matchCriteriaId\":\"CECB4DA3-3842-4102-8451-43EC00CBAEA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:a10networks:advanced_core_operating_system:4.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3D286AC5-DB3E-4FAE-8441-A4D98B1F1160\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:a10networks:advanced_core_operating_system:4.1.0:p11:*:*:*:*:*:*\",\"matchCriteriaId\":\"8DE427D5-6E9A-4AC3-830D-7D235DE97389\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:a10networks:advanced_core_operating_system:4.1.1:p8:*:*:*:*:*:*\",\"matchCriteriaId\":\"F32591D5-D7F6-4C45-B1B5-1D1F8C649DF0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:a10networks:advanced_core_operating_system:4.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"032B2E4E-381E-4662-A6CF-8FA517233681\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:a10networks:advanced_core_operating_system:4.1.2:p4:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA708DD0-8A88-4B2B-9B57-A08491DE4696\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:a10networks:advanced_core_operating_system:4.1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0013CA3E-0E73-45EA-B2E9-7EA038BAB336\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:a10networks:advanced_core_operating_system:4.1.4:p1:*:*:*:*:*:*\",\"matchCriteriaId\":\"F993C993-D118-45A3-9F95-382B54E25439\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:collaboration_meeting_rooms:1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E53CEDB-F536-4DA0-917C-C220A3102B90\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:digital_network_architecture_center:1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"27A026D0-AA0D-417A-A06B-8785E5FFCBC9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:expressway:x8.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"31DF55CF-FEDE-43DE-8F55-3264DB7CDD71\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:expressway:x8.10.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1A4C837B-4648-4764-B190-36381EE7E664\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:expressway:x8.10.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F044DA47-D8FA-4EF9-B28C-C69D0DE8C3DC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:expressway:x8.10.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E600BCEC-2466-4348-ACE3-955469AA1C9E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:expressway:x8.10.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB8DD876-7E51-43A9-8944-B4DEE9E9EDD3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:expressway:x8.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"431A3000-D903-4B57-9B54-CC650105B044\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:expressway_series:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8E7428A-D2A5-4B77-8562-F75BB8C72976\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:meeting_management:1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"84E53549-337C-423F-AB34-F2559C1F225C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:meeting_management:1.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EABDA6F4-99E7-4354-9760-E9891B47DC8A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:network_assurance_engine:2.1\\\\(1a\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD40D143-B4B4-4C2A-8D9E-D928459FC59E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:threat_grid-cloud:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B2B5B87A-CECF-48BF-833E-6E4A6DF647CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:webex_hybrid_data_security:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F6A108A5-ADB1-4328-B3C0-9C3CC2CD1346\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:webex_video_mesh:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AE0F9723-F9BD-422D-8414-040C01C9C0D0\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:telepresence_video_communication_server_firmware:x8.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4B534882-60A5-4098-A439-A47CBC546E53\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:telepresence_video_communication_server_firmware:x8.10.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB1C3395-1865-4436-81E0-3821B5BB99D2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:telepresence_video_communication_server_firmware:x8.10.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"86ACAFA3-7F76-428A-A6EE-87284FB30B01\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:telepresence_video_communication_server_firmware:x8.10.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8908328C-FC17-4BDC-B369-36942225DFAD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:telepresence_video_communication_server_firmware:x8.10.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"988EDFD9-4652-4460-BE48-62219B8A0A6D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:telepresence_video_communication_server_firmware:x8.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD9DD18A-43B9-4B43-AF9F-236D42651E46\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:telepresence_video_communication_server:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"177FA398-F812-4E8D-99A3-3F7E0F690CE6\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:telepresence_conductor_firmware:xc4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4A8F173C-2D38-42B2-B86F-72B53A96D05D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:telepresence_conductor_firmware:xc4.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"27E03126-0FF6-4D4E-8766-A4F0B20741AC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:telepresence_conductor_firmware:xc4.3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F24CB2EC-A79E-4C56-8F03-86D53A9B28A3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:telepresence_conductor_firmware:xc4.3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C4F2333B-BE03-4D6C-AA16-1E3EB170496E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:telepresence_conductor_firmware:xc4.3.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B199BF45-F9EF-49A0-B2D5-9B9FA6AA1208\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:telepresence_conductor:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2C65475E-2641-404B-8316-6B6A5029617D\"}]}]}],\"references\":[{\"url\":\"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181031-02-linux-en\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2019/06/28/2\",\"source\":\"cret@cert.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2019/07/06/3\",\"source\":\"cret@cert.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2019/07/06/4\",\"source\":\"cret@cert.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/104976\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1041424\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1041434\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2384\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2395\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2402\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2403\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2645\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2776\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2785\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2789\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2790\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2791\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2924\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2933\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2948\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=1a4f14bab1868b443f0dd3c55b689a478f82e72e\",\"source\":\"cret@cert.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20180815-0003/\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.f5.com/csp/article/K95343321\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.f5.com/csp/article/K95343321?utm_source=f5support\u0026amp%3Butm_medium=RSS\",\"source\":\"cret@cert.org\"},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180824-linux-tcp\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3732-1/\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3732-2/\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3741-1/\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3741-2/\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3742-1/\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3742-2/\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3763-1/\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.a10networks.com/support/security-advisories/tcp-ip-cve-2018-5390-segmentsmack\",\"source\":\"cret@cert.org\",\"tags\":[\"Mitigation\",\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2018/dsa-4266\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.kb.cert.org/vuls/id/962459\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2020.html\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html\",\"source\":\"cret@cert.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.synology.com/support/security/Synology_SA_18_41\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-004.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181031-02-linux-en\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2019/06/28/2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2019/07/06/3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2019/07/06/4\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/104976\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1041424\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1041434\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2384\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2395\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2402\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2403\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2645\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2776\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2785\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2789\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2790\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2791\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2924\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2933\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2948\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-377115.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=1a4f14bab1868b443f0dd3c55b689a478f82e72e\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20180815-0003/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.f5.com/csp/article/K95343321\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.f5.com/csp/article/K95343321?utm_source=f5support\u0026amp%3Butm_medium=RSS\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180824-linux-tcp\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3732-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3732-2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3741-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3741-2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3742-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3742-2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3763-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.a10networks.com/support/security-advisories/tcp-ip-cve-2018-5390-segmentsmack\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mitigation\",\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2018/dsa-4266\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.kb.cert.org/vuls/id/962459\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2020.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.synology.com/support/security/Synology_SA_18_41\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
  }
}

SUSE-SU-2018:2963-1

Vulnerability from csaf_suse - Published: 2018-10-01 16:05 - Updated: 2018-10-01 16:05

Summary

Security update for the Linux Kernel (Live Patch 15 for SLE 12 SP3)

Severity

Important

Notes

Title of the patch: Security update for the Linux Kernel (Live Patch 15 for SLE 12 SP3)

Description of the patch: This update for the Linux Kernel 4.4.140-94_42 fixes several issues. The following security issues were fixed: - CVE-2018-5390: Prevent very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming TCP packet which can lead to a denial of service (bsc#1102682). - CVE-2018-10938: Fixed an infinite loop in the cipso_v4_optptr() function leading to a denial-of-service via crafted network packets (bsc#1106191). - CVE-2018-10902: It was found that the raw midi kernel driver did not protect against concurrent access which lead to a double realloc (double free) in snd_rawmidi_input_params() and snd_rawmidi_output_status(), allowing a malicious local attacker to use this for privilege escalation (bsc#1105323). - CVE-2018-3646: Fixed unauthorized disclosure of information residing in the L1 data cache on systems with microprocessors utilizing speculative execution and address translations (bsc#1099306).

Patchnames: SUSE-SLE-Live-Patching-12-SP3-2018-2108,SUSE-SLE-Live-Patching-12-SP3-2018-2109

CVE-2018-10902

7 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-10938

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-3646

5.6 (Medium)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-5390

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

39 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://www.suse.com/support/update/announcement/…	self
https://bugzilla.suse.com/1099306	self
https://bugzilla.suse.com/1102682	self
https://bugzilla.suse.com/1103203	self
https://bugzilla.suse.com/1105323	self
https://bugzilla.suse.com/1106191	self
https://www.suse.com/security/cve/CVE-2018-10902/	self
https://www.suse.com/security/cve/CVE-2018-10938/	self
https://www.suse.com/security/cve/CVE-2018-3646/	self
https://www.suse.com/security/cve/CVE-2018-5390/	self
https://www.suse.com/security/cve/CVE-2018-10902	external
https://bugzilla.suse.com/1105322	external
https://bugzilla.suse.com/1105323	external
https://www.suse.com/security/cve/CVE-2018-10938	external
https://bugzilla.suse.com/1106016	external
https://bugzilla.suse.com/1106191	external
https://www.suse.com/security/cve/CVE-2018-3646	external
https://bugzilla.suse.com/1087078	external
https://bugzilla.suse.com/1087081	external
https://bugzilla.suse.com/1089343	external
https://bugzilla.suse.com/1091107	external
https://bugzilla.suse.com/1099306	external
https://bugzilla.suse.com/1104365	external
https://bugzilla.suse.com/1104894	external
https://bugzilla.suse.com/1106548	external
https://bugzilla.suse.com/1113534	external
https://bugzilla.suse.com/1136865	external
https://bugzilla.suse.com/1178658	external
https://bugzilla.suse.com/1201877	external
https://www.suse.com/security/cve/CVE-2018-5390	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1102340	external
https://bugzilla.suse.com/1102682	external
https://bugzilla.suse.com/1103097	external
https://bugzilla.suse.com/1103098	external
https://bugzilla.suse.com/1156434	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel (Live Patch 15 for SLE 12 SP3)",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for the Linux Kernel 4.4.140-94_42 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2018-5390: Prevent very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming TCP packet which can lead to a denial of service (bsc#1102682).\n- CVE-2018-10938: Fixed an infinite loop in the cipso_v4_optptr() function leading to a denial-of-service via crafted network packets (bsc#1106191).\n- CVE-2018-10902: It was found that the raw midi kernel driver did not protect against concurrent access which lead to a double realloc (double free) in snd_rawmidi_input_params() and snd_rawmidi_output_status(), allowing a malicious local attacker to use this for privilege escalation (bsc#1105323).\n- CVE-2018-3646: Fixed unauthorized disclosure of information residing in the L1 data cache on systems with microprocessors utilizing speculative execution and address translations (bsc#1099306).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-Live-Patching-12-SP3-2018-2108,SUSE-SLE-Live-Patching-12-SP3-2018-2109",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_2963-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2018:2963-1",
        "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20182963-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2018:2963-1",
        "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20182963-1.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1099306",
        "url": "https://bugzilla.suse.com/1099306"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1102682",
        "url": "https://bugzilla.suse.com/1102682"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1103203",
        "url": "https://bugzilla.suse.com/1103203"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1105323",
        "url": "https://bugzilla.suse.com/1105323"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1106191",
        "url": "https://bugzilla.suse.com/1106191"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-10902 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-10902/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-10938 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-10938/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-3646 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-3646/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5390 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5390/"
      }
    ],
    "title": "Security update for the Linux Kernel (Live Patch 15 for SLE 12 SP3)",
    "tracking": {
      "current_release_date": "2018-10-01T16:05:21Z",
      "generator": {
        "date": "2018-10-01T16:05:21Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2018:2963-1",
      "initial_release_date": "2018-10-01T16:05:21Z",
      "revision_history": [
        {
          "date": "2018-10-01T16:05:21Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le",
                "product": {
                  "name": "kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le",
                  "product_id": "kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le",
                "product": {
                  "name": "kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le",
                  "product_id": "kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64",
                "product": {
                  "name": "kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64",
                  "product_id": "kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64",
                "product": {
                  "name": "kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64",
                  "product_id": "kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Live Patching 12 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Live Patching 12 SP3",
                  "product_id": "SUSE Linux Enterprise Live Patching 12 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-live-patching:12:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Live Patching 12 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Live Patching 12 SP3",
                  "product_id": "SUSE Linux Enterprise Live Patching 12 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-live-patching:12:sp3"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le as component of SUSE Linux Enterprise Live Patching 12 SP3",
          "product_id": "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le"
        },
        "product_reference": "kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP3",
          "product_id": "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le as component of SUSE Linux Enterprise Live Patching 12 SP3",
          "product_id": "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le"
        },
        "product_reference": "kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP3",
          "product_id": "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le as component of SUSE Linux Enterprise Live Patching 12 SP3",
          "product_id": "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le"
        },
        "product_reference": "kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP3",
          "product_id": "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le as component of SUSE Linux Enterprise Live Patching 12 SP3",
          "product_id": "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le"
        },
        "product_reference": "kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP3",
          "product_id": "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP3"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-10902",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-10902"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "It was found that the raw midi kernel driver does not protect against concurrent access which leads to a double realloc (double free) in snd_rawmidi_input_params() and snd_rawmidi_output_status() which are part of snd_rawmidi_ioctl() handler in rawmidi.c file. A malicious local attacker could possibly use this for privilege escalation.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-10902",
          "url": "https://www.suse.com/security/cve/CVE-2018-10902"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1105322 for CVE-2018-10902",
          "url": "https://bugzilla.suse.com/1105322"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1105323 for CVE-2018-10902",
          "url": "https://bugzilla.suse.com/1105323"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-10-01T16:05:21Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-10902"
    },
    {
      "cve": "CVE-2018-10938",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-10938"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipso_v4_optptr() function in net/ipv4/cipso_ipv4.c leading to a denial-of-service. A certain non-default configuration of LSM (Linux Security Module) and NetLabel should be set up on a system before an attacker could leverage this flaw.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-10938",
          "url": "https://www.suse.com/security/cve/CVE-2018-10938"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1106016 for CVE-2018-10938",
          "url": "https://bugzilla.suse.com/1106016"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1106191 for CVE-2018-10938",
          "url": "https://bugzilla.suse.com/1106191"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-10-01T16:05:21Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-10938"
    },
    {
      "cve": "CVE-2018-3646",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-3646"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-3646",
          "url": "https://www.suse.com/security/cve/CVE-2018-3646"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087078 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1087078"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087081 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1087081"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1089343 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1089343"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091107 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1091107"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1099306 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1099306"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1104365 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1104365"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1104894 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1104894"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1106548 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1106548"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1113534 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1113534"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1136865 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1136865"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178658 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1178658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201877 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1201877"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-10-01T16:05:21Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-3646"
    },
    {
      "cve": "CVE-2018-5390",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5390"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5390",
          "url": "https://www.suse.com/security/cve/CVE-2018-5390"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102340 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1102340"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102682 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1102682"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1103097 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1103097"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1103098 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1103098"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156434 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1156434"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_138-94_39-default-3-2.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_140-94_42-default-3-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-10-01T16:05:21Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-5390"
    }
  ]
}

SUSE-SU-2018:3029-1

Vulnerability from csaf_suse - Published: 2018-10-05 11:23 - Updated: 2018-10-05 11:23

Summary

Security update for the Linux Kernel (Live Patch 2 for SLE 12 SP3)

Severity

Important

Notes

Title of the patch: Security update for the Linux Kernel (Live Patch 2 for SLE 12 SP3)

Description of the patch: This update for the Linux Kernel 4.4.82-6_6 fixes several issues. The following security issues were fixed: - CVE-2018-5390: Prevent very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming TCP packet which can lead to a denial of service (bsc#1102682). - CVE-2018-1000026: Fixed an insufficient input validation in bnx2x network card driver that can result in DoS via very large, specially crafted packet to the bnx2x card due to a network card firmware assertion that will take the card offline (bsc#1096723). - CVE-2018-10938: Fixed an infinite loop in the cipso_v4_optptr() function leading to a denial-of-service via crafted network packets (bsc#1106191). - CVE-2018-10902: It was found that the raw midi kernel driver did not protect against concurrent access which lead to a double realloc (double free) in snd_rawmidi_input_params() and snd_rawmidi_output_status(), allowing a malicious local attacker to use this for privilege escalation (bsc#1105323).

Patchnames: SUSE-SLE-Live-Patching-12-SP3-2018-2152,SUSE-SLE-Live-Patching-12-SP3-2018-2153

CVE-2018-1000026

7.7 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Affected products

Recommended 2 products

Product	Identifier	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64		—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64		—	Vendor Fix

Threats

Impact important

CVE-2018-10902

7 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 2 products

Product	Identifier	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64		—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64		—	Vendor Fix

Threats

Impact low

CVE-2018-10938

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 2 products

Product	Identifier	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64		—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64		—	Vendor Fix

Threats

Impact moderate

CVE-2018-5390

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 2 products

Product	Identifier	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64		—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64		—	Vendor Fix

Threats

Impact moderate

References

29 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1096723	self
https://bugzilla.suse.com/1102682	self
https://bugzilla.suse.com/1105323	self
https://bugzilla.suse.com/1106191	self
https://www.suse.com/security/cve/CVE-2018-1000026/	self
https://www.suse.com/security/cve/CVE-2018-10902/	self
https://www.suse.com/security/cve/CVE-2018-10938/	self
https://www.suse.com/security/cve/CVE-2018-5390/	self
https://www.suse.com/security/cve/CVE-2018-1000026	external
https://bugzilla.suse.com/1079384	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1096723	external
https://www.suse.com/security/cve/CVE-2018-10902	external
https://bugzilla.suse.com/1105322	external
https://bugzilla.suse.com/1105323	external
https://www.suse.com/security/cve/CVE-2018-10938	external
https://bugzilla.suse.com/1106016	external
https://bugzilla.suse.com/1106191	external
https://www.suse.com/security/cve/CVE-2018-5390	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1102340	external
https://bugzilla.suse.com/1102682	external
https://bugzilla.suse.com/1103097	external
https://bugzilla.suse.com/1103098	external
https://bugzilla.suse.com/1156434	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel (Live Patch 2 for SLE 12 SP3)",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for the Linux Kernel 4.4.82-6_6 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2018-5390: Prevent very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming TCP packet which can lead to a denial of service (bsc#1102682).\n- CVE-2018-1000026: Fixed an insufficient input validation in bnx2x network card driver that can result in DoS via very large, specially crafted packet to the bnx2x card due to a network card firmware assertion that will take the card offline (bsc#1096723).\n- CVE-2018-10938: Fixed an infinite loop in the cipso_v4_optptr() function leading to a denial-of-service via crafted network packets (bsc#1106191).\n- CVE-2018-10902: It was found that the raw midi kernel driver did not protect against concurrent access which lead to a double realloc (double free) in snd_rawmidi_input_params() and snd_rawmidi_output_status(), allowing a malicious local attacker to use this for privilege escalation (bsc#1105323).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-Live-Patching-12-SP3-2018-2152,SUSE-SLE-Live-Patching-12-SP3-2018-2153",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_3029-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2018:3029-1",
        "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20183029-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2018:3029-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2018-October/004645.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1096723",
        "url": "https://bugzilla.suse.com/1096723"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1102682",
        "url": "https://bugzilla.suse.com/1102682"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1105323",
        "url": "https://bugzilla.suse.com/1105323"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1106191",
        "url": "https://bugzilla.suse.com/1106191"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-1000026 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-1000026/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-10902 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-10902/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-10938 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-10938/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5390 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5390/"
      }
    ],
    "title": "Security update for the Linux Kernel (Live Patch 2 for SLE 12 SP3)",
    "tracking": {
      "current_release_date": "2018-10-05T11:23:56Z",
      "generator": {
        "date": "2018-10-05T11:23:56Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2018:3029-1",
      "initial_release_date": "2018-10-05T11:23:56Z",
      "revision_history": [
        {
          "date": "2018-10-05T11:23:56Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64",
                "product": {
                  "name": "kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64",
                  "product_id": "kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64",
                "product": {
                  "name": "kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64",
                  "product_id": "kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Live Patching 12 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Live Patching 12 SP3",
                  "product_id": "SUSE Linux Enterprise Live Patching 12 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-live-patching:12:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Live Patching 12 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Live Patching 12 SP3",
                  "product_id": "SUSE Linux Enterprise Live Patching 12 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-live-patching:12:sp3"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP3",
          "product_id": "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP3",
          "product_id": "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP3",
          "product_id": "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP3",
          "product_id": "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP3"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-1000026",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-1000026"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Linux Linux kernel version at least v4.8 onwards, probably well before contains a Insufficient input validation vulnerability in bnx2x network card driver that can result in DoS: Network card firmware assertion takes card off-line. This attack appear to be exploitable via An attacker on a must pass a very large, specially crafted packet to the bnx2x card. This can be done from an untrusted guest VM..",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-1000026",
          "url": "https://www.suse.com/security/cve/CVE-2018-1000026"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1079384 for CVE-2018-1000026",
          "url": "https://bugzilla.suse.com/1079384"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-1000026",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1096723 for CVE-2018-1000026",
          "url": "https://bugzilla.suse.com/1096723"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-10-05T11:23:56Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-1000026"
    },
    {
      "cve": "CVE-2018-10902",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-10902"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "It was found that the raw midi kernel driver does not protect against concurrent access which leads to a double realloc (double free) in snd_rawmidi_input_params() and snd_rawmidi_output_status() which are part of snd_rawmidi_ioctl() handler in rawmidi.c file. A malicious local attacker could possibly use this for privilege escalation.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-10902",
          "url": "https://www.suse.com/security/cve/CVE-2018-10902"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1105322 for CVE-2018-10902",
          "url": "https://bugzilla.suse.com/1105322"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1105323 for CVE-2018-10902",
          "url": "https://bugzilla.suse.com/1105323"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-10-05T11:23:56Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-10902"
    },
    {
      "cve": "CVE-2018-10938",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-10938"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipso_v4_optptr() function in net/ipv4/cipso_ipv4.c leading to a denial-of-service. A certain non-default configuration of LSM (Linux Security Module) and NetLabel should be set up on a system before an attacker could leverage this flaw.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-10938",
          "url": "https://www.suse.com/security/cve/CVE-2018-10938"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1106016 for CVE-2018-10938",
          "url": "https://bugzilla.suse.com/1106016"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1106191 for CVE-2018-10938",
          "url": "https://bugzilla.suse.com/1106191"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-10-05T11:23:56Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-10938"
    },
    {
      "cve": "CVE-2018-5390",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5390"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5390",
          "url": "https://www.suse.com/security/cve/CVE-2018-5390"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102340 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1102340"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102682 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1102682"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1103097 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1103097"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1103098 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1103098"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156434 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1156434"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_6-default-11-2.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_82-6_9-default-11-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-10-05T11:23:56Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-5390"
    }
  ]
}

SUSE-SU-2018:3172-1

Vulnerability from csaf_suse - Published: 2018-10-16 16:31 - Updated: 2018-10-16 16:31

Summary

Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP1)

Severity

Important

Notes

Title of the patch: Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP1)

Description of the patch: This update for the Linux Kernel 3.12.74-60_64_104 fixes several issues. The following security issues were fixed: - CVE-2018-17182: The vmacache_flush_all function in mm/vmacache.c mishandled sequence number overflows. An attacker can trigger a use-after-free (and possibly gain privileges) via certain thread creation, map, unmap, invalidation, and dereference operations (bsc#1110233). - CVE-2018-14633: A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack. The attack requires the iSCSI target to be enabled on the victim host. Depending on how the target's code was built (i.e. depending on a compiler, compile flags and hardware architecture) an attack may lead to a system crash and thus to a denial-of-service or possibly to a non-authorized access to data exported by an iSCSI target. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is highly unlikely. (bsc#1107832). - CVE-2018-5390: The Linux kernel could be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service (bsc#1102682).

Patchnames: SUSE-SLE-SERVER-12-SP1-2018-2274

CVE-2018-14633

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 2 products

Product	Identifier	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-default-2-2.1.x86_64		—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-xen-2-2.1.x86_64		—	Vendor Fix

Threats

Impact moderate

CVE-2018-17182

7 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 2 products

Product	Identifier	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-default-2-2.1.x86_64		—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-xen-2-2.1.x86_64		—	Vendor Fix

Threats

Impact moderate

CVE-2018-5390

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 2 products

Product	Identifier	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-default-2-2.1.x86_64		—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-xen-2-2.1.x86_64		—	Vendor Fix

Threats

Impact moderate

References

23 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1102682	self
https://bugzilla.suse.com/1107832	self
https://bugzilla.suse.com/1110233	self
https://www.suse.com/security/cve/CVE-2018-14633/	self
https://www.suse.com/security/cve/CVE-2018-17182/	self
https://www.suse.com/security/cve/CVE-2018-5390/	self
https://www.suse.com/security/cve/CVE-2018-14633	external
https://bugzilla.suse.com/1107829	external
https://bugzilla.suse.com/1107832	external
https://www.suse.com/security/cve/CVE-2018-17182	external
https://bugzilla.suse.com/1108399	external
https://bugzilla.suse.com/1110233	external
https://www.suse.com/security/cve/CVE-2018-5390	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1102340	external
https://bugzilla.suse.com/1102682	external
https://bugzilla.suse.com/1103097	external
https://bugzilla.suse.com/1103098	external
https://bugzilla.suse.com/1156434	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP1)",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for the Linux Kernel 3.12.74-60_64_104 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2018-17182: The vmacache_flush_all function in mm/vmacache.c mishandled sequence number overflows. An attacker can trigger a use-after-free (and possibly gain privileges) via certain thread creation, map, unmap, invalidation, and dereference operations (bsc#1110233).\n- CVE-2018-14633: A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack. The attack requires the iSCSI target to be enabled on the victim host. Depending on how the target\u0027s code was built (i.e. depending on a compiler, compile flags and hardware architecture) an attack may lead to a system crash and thus to a denial-of-service or possibly to a non-authorized access to data exported by an iSCSI target. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is highly unlikely. (bsc#1107832).\n- CVE-2018-5390: The Linux kernel could be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service (bsc#1102682).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-SERVER-12-SP1-2018-2274",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_3172-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2018:3172-1",
        "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20183172-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2018:3172-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2018-October/004680.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1102682",
        "url": "https://bugzilla.suse.com/1102682"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1107832",
        "url": "https://bugzilla.suse.com/1107832"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1110233",
        "url": "https://bugzilla.suse.com/1110233"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-14633 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-14633/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-17182 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-17182/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5390 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5390/"
      }
    ],
    "title": "Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP1)",
    "tracking": {
      "current_release_date": "2018-10-16T16:31:26Z",
      "generator": {
        "date": "2018-10-16T16:31:26Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2018:3172-1",
      "initial_release_date": "2018-10-16T16:31:26Z",
      "revision_history": [
        {
          "date": "2018-10-16T16:31:26Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kgraft-patch-3_12_74-60_64_104-default-2-2.1.x86_64",
                "product": {
                  "name": "kgraft-patch-3_12_74-60_64_104-default-2-2.1.x86_64",
                  "product_id": "kgraft-patch-3_12_74-60_64_104-default-2-2.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kgraft-patch-3_12_74-60_64_104-xen-2-2.1.x86_64",
                "product": {
                  "name": "kgraft-patch-3_12_74-60_64_104-xen-2-2.1.x86_64",
                  "product_id": "kgraft-patch-3_12_74-60_64_104-xen-2-2.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP1-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP1-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:12:sp1"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-3_12_74-60_64_104-default-2-2.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-default-2-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-3_12_74-60_64_104-default-2-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-3_12_74-60_64_104-xen-2-2.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-xen-2-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-3_12_74-60_64_104-xen-2-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-14633",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-14633"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in the Linux kernel in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack. The attack requires the iSCSI target to be enabled on the victim host. Depending on how the target\u0027s code was built (i.e. depending on a compiler, compile flags and hardware architecture) an attack may lead to a system crash and thus to a denial-of-service or possibly to a non-authorized access to data exported by an iSCSI target. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is highly unlikely. Kernel versions 4.18.x, 4.14.x and 3.10.x are believed to be vulnerable.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-default-2-2.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-xen-2-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-14633",
          "url": "https://www.suse.com/security/cve/CVE-2018-14633"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1107829 for CVE-2018-14633",
          "url": "https://bugzilla.suse.com/1107829"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1107832 for CVE-2018-14633",
          "url": "https://bugzilla.suse.com/1107832"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-xen-2-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-xen-2-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-10-16T16:31:26Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-14633"
    },
    {
      "cve": "CVE-2018-17182",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-17182"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 4.18.8. The vmacache_flush_all function in mm/vmacache.c mishandles sequence number overflows. An attacker can trigger a use-after-free (and possibly gain privileges) via certain thread creation, map, unmap, invalidation, and dereference operations.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-default-2-2.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-xen-2-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-17182",
          "url": "https://www.suse.com/security/cve/CVE-2018-17182"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1108399 for CVE-2018-17182",
          "url": "https://bugzilla.suse.com/1108399"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1110233 for CVE-2018-17182",
          "url": "https://bugzilla.suse.com/1110233"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-xen-2-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-xen-2-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-10-16T16:31:26Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-17182"
    },
    {
      "cve": "CVE-2018-5390",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5390"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-default-2-2.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-xen-2-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5390",
          "url": "https://www.suse.com/security/cve/CVE-2018-5390"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102340 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1102340"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102682 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1102682"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1103097 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1103097"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1103098 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1103098"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156434 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1156434"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-xen-2-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_104-xen-2-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-10-16T16:31:26Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-5390"
    }
  ]
}

SUSE-SU-2018:3265-1

Vulnerability from csaf_suse - Published: 2018-10-22 08:28 - Updated: 2018-10-22 08:28

Summary

Security update for the Linux Kernel (Live Patch 38 for SLE 12)

Severity

Important

Notes

Title of the patch: Security update for the Linux Kernel (Live Patch 38 for SLE 12)

Description of the patch: This update for the Linux Kernel 3.12.61-52_146 fixes several issues. The following security issues were fixed: - CVE-2018-14633: A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in the Linux kernel in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack. The attack requires the iSCSI target to be enabled on the victim host. Depending on how the target's code was built (i.e. depending on a compiler, compile flags and hardware architecture) an attack may lead to a system crash and thus to a denial-of-service or possibly to a non-authorized access to data exported by an iSCSI target. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is highly unlikely. (bsc#1107832). - CVE-2018-5390: The Linux kernel could be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service (bsc#1102682).

Patchnames: SUSE-SLE-SERVER-12-2018-2355

CVE-2018-14633

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 2 products

Product	Identifier	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_146-default-2-2.1.x86_64		—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_146-xen-2-2.1.x86_64		—	Vendor Fix

Threats

Impact moderate

CVE-2018-5390

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 2 products

Product	Identifier	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_146-default-2-2.1.x86_64		—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_146-xen-2-2.1.x86_64		—	Vendor Fix

Threats

Impact moderate

References

18 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1102682	self
https://bugzilla.suse.com/1107832	self
https://www.suse.com/security/cve/CVE-2018-14633/	self
https://www.suse.com/security/cve/CVE-2018-5390/	self
https://www.suse.com/security/cve/CVE-2018-14633	external
https://bugzilla.suse.com/1107829	external
https://bugzilla.suse.com/1107832	external
https://www.suse.com/security/cve/CVE-2018-5390	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1102340	external
https://bugzilla.suse.com/1102682	external
https://bugzilla.suse.com/1103097	external
https://bugzilla.suse.com/1103098	external
https://bugzilla.suse.com/1156434	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel (Live Patch 38 for SLE 12)",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for the Linux Kernel 3.12.61-52_146 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2018-14633: A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in the Linux kernel in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack. The attack requires the iSCSI target to be enabled on the victim host. Depending on how the target\u0027s code was built (i.e. depending on a compiler, compile flags and hardware architecture) an attack may lead to a system crash and thus to a denial-of-service or possibly to a non-authorized access to data exported by an iSCSI target. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is highly unlikely. (bsc#1107832).\n- CVE-2018-5390: The Linux kernel could be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service (bsc#1102682).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-SERVER-12-2018-2355",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_3265-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2018:3265-1",
        "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20183265-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2018:3265-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2018-October/004750.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1102682",
        "url": "https://bugzilla.suse.com/1102682"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1107832",
        "url": "https://bugzilla.suse.com/1107832"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-14633 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-14633/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5390 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5390/"
      }
    ],
    "title": "Security update for the Linux Kernel (Live Patch 38 for SLE 12)",
    "tracking": {
      "current_release_date": "2018-10-22T08:28:26Z",
      "generator": {
        "date": "2018-10-22T08:28:26Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2018:3265-1",
      "initial_release_date": "2018-10-22T08:28:26Z",
      "revision_history": [
        {
          "date": "2018-10-22T08:28:26Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kgraft-patch-3_12_61-52_146-default-2-2.1.x86_64",
                "product": {
                  "name": "kgraft-patch-3_12_61-52_146-default-2-2.1.x86_64",
                  "product_id": "kgraft-patch-3_12_61-52_146-default-2-2.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kgraft-patch-3_12_61-52_146-xen-2-2.1.x86_64",
                "product": {
                  "name": "kgraft-patch-3_12_61-52_146-xen-2-2.1.x86_64",
                  "product_id": "kgraft-patch-3_12_61-52_146-xen-2-2.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 12-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:12"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-3_12_61-52_146-default-2-2.1.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_146-default-2-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-3_12_61-52_146-default-2-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-3_12_61-52_146-xen-2-2.1.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_146-xen-2-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-3_12_61-52_146-xen-2-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-14633",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-14633"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in the Linux kernel in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack. The attack requires the iSCSI target to be enabled on the victim host. Depending on how the target\u0027s code was built (i.e. depending on a compiler, compile flags and hardware architecture) an attack may lead to a system crash and thus to a denial-of-service or possibly to a non-authorized access to data exported by an iSCSI target. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is highly unlikely. Kernel versions 4.18.x, 4.14.x and 3.10.x are believed to be vulnerable.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_146-default-2-2.1.x86_64",
          "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_146-xen-2-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-14633",
          "url": "https://www.suse.com/security/cve/CVE-2018-14633"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1107829 for CVE-2018-14633",
          "url": "https://bugzilla.suse.com/1107829"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1107832 for CVE-2018-14633",
          "url": "https://bugzilla.suse.com/1107832"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_146-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_146-xen-2-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_146-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_146-xen-2-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-10-22T08:28:26Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-14633"
    },
    {
      "cve": "CVE-2018-5390",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5390"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_146-default-2-2.1.x86_64",
          "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_146-xen-2-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5390",
          "url": "https://www.suse.com/security/cve/CVE-2018-5390"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102340 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1102340"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102682 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1102682"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1103097 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1103097"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1103098 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1103098"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156434 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1156434"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_146-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_146-xen-2-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_146-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_146-xen-2-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-10-22T08:28:26Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-5390"
    }
  ]
}

SUSE-SU-2018:3328-1

Vulnerability from csaf_suse - Published: 2018-10-23 10:46 - Updated: 2018-10-23 10:46

Summary

Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP1)

Severity

Important

Notes

Title of the patch: Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP1)

Description of the patch: This update for the Linux Kernel 3.12.74-60_64_107 fixes several issues. The following security issues were fixed: - CVE-2018-14633: A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack. The attack requires the iSCSI target to be enabled on the victim host. Depending on how the target's code was built (i.e. depending on a compiler, compile flags and hardware architecture) an attack may lead to a system crash and thus to a denial-of-service or possibly to a non-authorized access to data exported by an iSCSI target. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is highly unlikely. (bsc#1107832). - CVE-2018-5390: The Linux kernel could be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service (bsc#1102682).

Patchnames: SUSE-SLE-SERVER-12-SP1-2018-2394

CVE-2018-14633

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 2 products

Product	Identifier	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_107-default-2-2.1.x86_64		—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_107-xen-2-2.1.x86_64		—	Vendor Fix

Threats

Impact moderate

CVE-2018-5390

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 2 products

Product	Identifier	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_107-default-2-2.1.x86_64		—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_107-xen-2-2.1.x86_64		—	Vendor Fix

Threats

Impact moderate

References

18 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1102682	self
https://bugzilla.suse.com/1107832	self
https://www.suse.com/security/cve/CVE-2018-14633/	self
https://www.suse.com/security/cve/CVE-2018-5390/	self
https://www.suse.com/security/cve/CVE-2018-14633	external
https://bugzilla.suse.com/1107829	external
https://bugzilla.suse.com/1107832	external
https://www.suse.com/security/cve/CVE-2018-5390	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1102340	external
https://bugzilla.suse.com/1102682	external
https://bugzilla.suse.com/1103097	external
https://bugzilla.suse.com/1103098	external
https://bugzilla.suse.com/1156434	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP1)",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for the Linux Kernel 3.12.74-60_64_107 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2018-14633: A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack. The attack requires the iSCSI target to be enabled on the victim host. Depending on how the target\u0027s code was built (i.e. depending on a compiler, compile flags and hardware architecture) an attack may lead to a system crash and thus to a denial-of-service or possibly to a non-authorized access to data exported by an iSCSI target. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is highly unlikely. (bsc#1107832).\n- CVE-2018-5390: The Linux kernel could be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service (bsc#1102682).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-SERVER-12-SP1-2018-2394",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_3328-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2018:3328-1",
        "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20183328-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2018:3328-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2018-October/004766.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1102682",
        "url": "https://bugzilla.suse.com/1102682"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1107832",
        "url": "https://bugzilla.suse.com/1107832"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-14633 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-14633/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5390 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5390/"
      }
    ],
    "title": "Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP1)",
    "tracking": {
      "current_release_date": "2018-10-23T10:46:28Z",
      "generator": {
        "date": "2018-10-23T10:46:28Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2018:3328-1",
      "initial_release_date": "2018-10-23T10:46:28Z",
      "revision_history": [
        {
          "date": "2018-10-23T10:46:28Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kgraft-patch-3_12_74-60_64_107-default-2-2.1.x86_64",
                "product": {
                  "name": "kgraft-patch-3_12_74-60_64_107-default-2-2.1.x86_64",
                  "product_id": "kgraft-patch-3_12_74-60_64_107-default-2-2.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kgraft-patch-3_12_74-60_64_107-xen-2-2.1.x86_64",
                "product": {
                  "name": "kgraft-patch-3_12_74-60_64_107-xen-2-2.1.x86_64",
                  "product_id": "kgraft-patch-3_12_74-60_64_107-xen-2-2.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP1-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP1-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:12:sp1"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-3_12_74-60_64_107-default-2-2.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_107-default-2-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-3_12_74-60_64_107-default-2-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-3_12_74-60_64_107-xen-2-2.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_107-xen-2-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-3_12_74-60_64_107-xen-2-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-14633",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-14633"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in the Linux kernel in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack. The attack requires the iSCSI target to be enabled on the victim host. Depending on how the target\u0027s code was built (i.e. depending on a compiler, compile flags and hardware architecture) an attack may lead to a system crash and thus to a denial-of-service or possibly to a non-authorized access to data exported by an iSCSI target. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is highly unlikely. Kernel versions 4.18.x, 4.14.x and 3.10.x are believed to be vulnerable.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_107-default-2-2.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_107-xen-2-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-14633",
          "url": "https://www.suse.com/security/cve/CVE-2018-14633"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1107829 for CVE-2018-14633",
          "url": "https://bugzilla.suse.com/1107829"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1107832 for CVE-2018-14633",
          "url": "https://bugzilla.suse.com/1107832"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_107-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_107-xen-2-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_107-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_107-xen-2-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-10-23T10:46:28Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-14633"
    },
    {
      "cve": "CVE-2018-5390",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5390"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_107-default-2-2.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_107-xen-2-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5390",
          "url": "https://www.suse.com/security/cve/CVE-2018-5390"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102340 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1102340"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102682 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1102682"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1103097 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1103097"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1103098 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1103098"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156434 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1156434"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_107-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_107-xen-2-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_107-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_107-xen-2-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-10-23T10:46:28Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-5390"
    }
  ]
}

SUSE-SU-2018:3470-1

Vulnerability from csaf_suse - Published: 2018-10-25 18:09 - Updated: 2018-10-25 18:09

Summary

Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP2)

Severity

Important

Notes

Title of the patch: Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP2)

Description of the patch: This update for the Linux Kernel 4.4.121-92_95 fixes several issues. The following security issues were fixed: - CVE-2018-14633: A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack. The attack requires the iSCSI target to be enabled on the victim host. Depending on how the target's code was built (i.e. depending on a compiler, compile flags and hardware architecture) an attack may lead to a system crash and thus to a denial-of-service or possibly to a non-authorized access to data exported by an iSCSI target. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is highly unlikely. (bsc#1107832). - CVE-2018-5390: The Linux kernel could be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service (bsc#1102682).

Patchnames: SUSE-SLE-SAP-12-SP2-2018-2483,SUSE-SLE-SERVER-12-SP2-2018-2483

CVE-2018-14633

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-5390

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

18 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1102682	self
https://bugzilla.suse.com/1107832	self
https://www.suse.com/security/cve/CVE-2018-14633/	self
https://www.suse.com/security/cve/CVE-2018-5390/	self
https://www.suse.com/security/cve/CVE-2018-14633	external
https://bugzilla.suse.com/1107829	external
https://bugzilla.suse.com/1107832	external
https://www.suse.com/security/cve/CVE-2018-5390	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1102340	external
https://bugzilla.suse.com/1102682	external
https://bugzilla.suse.com/1103097	external
https://bugzilla.suse.com/1103098	external
https://bugzilla.suse.com/1156434	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP2)",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for the Linux Kernel 4.4.121-92_95 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2018-14633: A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack. The attack requires the iSCSI target to be enabled on the victim host. Depending on how the target\u0027s code was built (i.e. depending on a compiler, compile flags and hardware architecture) an attack may lead to a system crash and thus to a denial-of-service or possibly to a non-authorized access to data exported by an iSCSI target. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is highly unlikely. (bsc#1107832).\n- CVE-2018-5390: The Linux kernel could be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service (bsc#1102682).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-SAP-12-SP2-2018-2483,SUSE-SLE-SERVER-12-SP2-2018-2483",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_3470-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2018:3470-1",
        "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20183470-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2018:3470-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2018-October/004796.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1102682",
        "url": "https://bugzilla.suse.com/1102682"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1107832",
        "url": "https://bugzilla.suse.com/1107832"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-14633 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-14633/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5390 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5390/"
      }
    ],
    "title": "Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP2)",
    "tracking": {
      "current_release_date": "2018-10-25T18:09:54Z",
      "generator": {
        "date": "2018-10-25T18:09:54Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2018:3470-1",
      "initial_release_date": "2018-10-25T18:09:54Z",
      "revision_history": [
        {
          "date": "2018-10-25T18:09:54Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le",
                "product": {
                  "name": "kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le",
                  "product_id": "kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64",
                "product": {
                  "name": "kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64",
                  "product_id": "kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP2-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP2-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:12:sp2"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le"
        },
        "product_reference": "kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le"
        },
        "product_reference": "kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-14633",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-14633"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in the Linux kernel in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack. The attack requires the iSCSI target to be enabled on the victim host. Depending on how the target\u0027s code was built (i.e. depending on a compiler, compile flags and hardware architecture) an attack may lead to a system crash and thus to a denial-of-service or possibly to a non-authorized access to data exported by an iSCSI target. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is highly unlikely. Kernel versions 4.18.x, 4.14.x and 3.10.x are believed to be vulnerable.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-14633",
          "url": "https://www.suse.com/security/cve/CVE-2018-14633"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1107829 for CVE-2018-14633",
          "url": "https://bugzilla.suse.com/1107829"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1107832 for CVE-2018-14633",
          "url": "https://bugzilla.suse.com/1107832"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-10-25T18:09:54Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-14633"
    },
    {
      "cve": "CVE-2018-5390",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5390"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5390",
          "url": "https://www.suse.com/security/cve/CVE-2018-5390"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102340 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1102340"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102682 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1102682"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1103097 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1103097"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1103098 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1103098"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156434 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1156434"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_95-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_95-default-2-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-10-25T18:09:54Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-5390"
    }
  ]
}

SUSE-SU-2018:3789-1

Vulnerability from csaf_suse - Published: 2018-11-16 14:56 - Updated: 2018-11-16 14:56

Summary

Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP2)

Severity

Important

Notes

Title of the patch: Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP2)

Description of the patch: This update for the Linux Kernel 4.4.121-92_98 fixes several issues. The following security issues were fixed: - CVE-2018-14633: A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in the Linux kernel in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack. The attack requires the iSCSI target to be enabled on the victim host. Depending on how the target's code was built (i.e. depending on a compiler, compile flags and hardware architecture) an attack may lead to a system crash and thus to a denial-of-service or possibly to a non-authorized access to data exported by an iSCSI target. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is highly unlikely (bsc#1107832). - CVE-2018-5390: Fixed the possiblilty that the kernel can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service (bnc#1102682).

Patchnames: SUSE-SLE-SAP-12-SP2-2018-2688,SUSE-SLE-SERVER-12-SP2-2018-2688

CVE-2018-14633

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-5390

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

18 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1102682	self
https://bugzilla.suse.com/1107832	self
https://www.suse.com/security/cve/CVE-2018-14633/	self
https://www.suse.com/security/cve/CVE-2018-5390/	self
https://www.suse.com/security/cve/CVE-2018-14633	external
https://bugzilla.suse.com/1107829	external
https://bugzilla.suse.com/1107832	external
https://www.suse.com/security/cve/CVE-2018-5390	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1102340	external
https://bugzilla.suse.com/1102682	external
https://bugzilla.suse.com/1103097	external
https://bugzilla.suse.com/1103098	external
https://bugzilla.suse.com/1156434	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP2)",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for the Linux Kernel 4.4.121-92_98 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2018-14633: A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in the Linux kernel in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack. The attack requires the iSCSI target to be enabled on the victim host. Depending on how the target\u0027s code was built (i.e. depending on a compiler, compile flags and hardware architecture) an attack may lead to a system crash and thus to a denial-of-service or possibly to a non-authorized access to data exported by an iSCSI target. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is highly unlikely (bsc#1107832).\n- CVE-2018-5390: Fixed the possiblilty that the kernel can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service (bnc#1102682).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-SAP-12-SP2-2018-2688,SUSE-SLE-SERVER-12-SP2-2018-2688",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_3789-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2018:3789-1",
        "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20183789-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2018:3789-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2018-November/004860.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1102682",
        "url": "https://bugzilla.suse.com/1102682"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1107832",
        "url": "https://bugzilla.suse.com/1107832"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-14633 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-14633/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5390 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5390/"
      }
    ],
    "title": "Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP2)",
    "tracking": {
      "current_release_date": "2018-11-16T14:56:04Z",
      "generator": {
        "date": "2018-11-16T14:56:04Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2018:3789-1",
      "initial_release_date": "2018-11-16T14:56:04Z",
      "revision_history": [
        {
          "date": "2018-11-16T14:56:04Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le",
                "product": {
                  "name": "kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le",
                  "product_id": "kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64",
                "product": {
                  "name": "kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64",
                  "product_id": "kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP2-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP2-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:12:sp2"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le"
        },
        "product_reference": "kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le"
        },
        "product_reference": "kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-14633",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-14633"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in the Linux kernel in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack. The attack requires the iSCSI target to be enabled on the victim host. Depending on how the target\u0027s code was built (i.e. depending on a compiler, compile flags and hardware architecture) an attack may lead to a system crash and thus to a denial-of-service or possibly to a non-authorized access to data exported by an iSCSI target. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is highly unlikely. Kernel versions 4.18.x, 4.14.x and 3.10.x are believed to be vulnerable.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-14633",
          "url": "https://www.suse.com/security/cve/CVE-2018-14633"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1107829 for CVE-2018-14633",
          "url": "https://bugzilla.suse.com/1107829"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1107832 for CVE-2018-14633",
          "url": "https://bugzilla.suse.com/1107832"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-11-16T14:56:04Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-14633"
    },
    {
      "cve": "CVE-2018-5390",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5390"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5390",
          "url": "https://www.suse.com/security/cve/CVE-2018-5390"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102340 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1102340"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102682 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1102682"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1103097 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1103097"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1103098 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1103098"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156434 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1156434"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_98-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_98-default-2-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-11-16T14:56:04Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-5390"
    }
  ]
}

SUSE-SU-2019:0955-1

Vulnerability from csaf_suse - Published: 2019-04-16 11:06 - Updated: 2019-04-16 11:06

Summary

Security update for the Linux Kernel (Live Patch 28 for SLE 12 SP2)

Severity

Important

Notes

Title of the patch: Security update for the Linux Kernel (Live Patch 28 for SLE 12 SP2)

Description of the patch: This update for the Linux Kernel 4.4.121-92_104 fixes one issue. The following security issue was fixed: - CVE-2018-5390: The Linux kernel could be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service (bsc#1102682).

Patchnames: SUSE-2019-955,SUSE-SLE-SAP-12-SP2-2019-955,SUSE-SLE-SERVER-12-SP2-2019-955

CVE-2018-5390

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_104-default-2-2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_104-default-2-2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_104-default-2-2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_104-default-2-2.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

13 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1102682	self
https://www.suse.com/security/cve/CVE-2018-5390/	self
https://www.suse.com/security/cve/CVE-2018-5390	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1102340	external
https://bugzilla.suse.com/1102682	external
https://bugzilla.suse.com/1103097	external
https://bugzilla.suse.com/1103098	external
https://bugzilla.suse.com/1156434	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel (Live Patch 28 for SLE 12 SP2)",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for the Linux Kernel 4.4.121-92_104 fixes one issue.\n\nThe following security issue was fixed:\n\n- CVE-2018-5390: The Linux kernel could be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service (bsc#1102682).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2019-955,SUSE-SLE-SAP-12-SP2-2019-955,SUSE-SLE-SERVER-12-SP2-2019-955",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_0955-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2019:0955-1",
        "url": "https://www.suse.com/support/update/announcement/2019/suse-su-20190955-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2019:0955-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2019-April/005341.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1102682",
        "url": "https://bugzilla.suse.com/1102682"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5390 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5390/"
      }
    ],
    "title": "Security update for the Linux Kernel (Live Patch 28 for SLE 12 SP2)",
    "tracking": {
      "current_release_date": "2019-04-16T11:06:42Z",
      "generator": {
        "date": "2019-04-16T11:06:42Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2019:0955-1",
      "initial_release_date": "2019-04-16T11:06:42Z",
      "revision_history": [
        {
          "date": "2019-04-16T11:06:42Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kgraft-patch-4_4_121-92_104-default-2-2.1.ppc64le",
                "product": {
                  "name": "kgraft-patch-4_4_121-92_104-default-2-2.1.ppc64le",
                  "product_id": "kgraft-patch-4_4_121-92_104-default-2-2.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kgraft-patch-4_4_121-92_104-default-2-2.1.x86_64",
                "product": {
                  "name": "kgraft-patch-4_4_121-92_104-default-2-2.1.x86_64",
                  "product_id": "kgraft-patch-4_4_121-92_104-default-2-2.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP2-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP2-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:12:sp2"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_121-92_104-default-2-2.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_104-default-2-2.1.ppc64le"
        },
        "product_reference": "kgraft-patch-4_4_121-92_104-default-2-2.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_121-92_104-default-2-2.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_104-default-2-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-4_4_121-92_104-default-2-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_121-92_104-default-2-2.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_104-default-2-2.1.ppc64le"
        },
        "product_reference": "kgraft-patch-4_4_121-92_104-default-2-2.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_121-92_104-default-2-2.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_104-default-2-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-4_4_121-92_104-default-2-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-5390",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5390"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_104-default-2-2.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_104-default-2-2.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_104-default-2-2.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_104-default-2-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5390",
          "url": "https://www.suse.com/security/cve/CVE-2018-5390"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102340 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1102340"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102682 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1102682"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1103097 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1103097"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1103098 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1103098"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156434 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1156434"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_104-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_104-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_104-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_104-default-2-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_104-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_104-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_104-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_104-default-2-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-04-16T11:06:42Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-5390"
    }
  ]
}

SUSE-SU-2019:14127-1

Vulnerability from csaf_suse - Published: 2019-07-18 15:53 - Updated: 2019-07-18 15:53

Summary

Security update for the Linux Kernel

Severity

Important

Notes

Title of the patch: Security update for the Linux Kernel

Description of the patch: The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2019-3459: A heap address information leak while using L2CAP_GET_CONF_OPT was discovered in the Linux kernel(bnc#1120758). - CVE-2019-3460: A heap data infoleak in multiple locations including L2CAP_PARSE_CONF_RSP was found in the Linux kernel before (bnc#1120758). - CVE-2019-3896: A double-free could happen in idr_remove_all() in lib/idr.c in the Linux kernel. An unprivileged local attacker could use this flaw for a privilege escalation or for a system crash and a denial of service (DoS) (bnc#1138943). - CVE-2018-5390: The Linux kernel could be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which could lead to a denial of service (bnc#1102340). - CVE-2018-20836: An issue was discovered in the Linux kernel There was a race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c, leading to a use-after-free (bnc#1134395). - CVE-2019-12614: An issue was discovered in dlpar_parse_cc_property in arch/powerpc/platforms/pseries/dlpar.c in the Linux kernel There was an unchecked kstrdup of prop-name, which might allow an attacker to cause a denial of service (NULL pointer dereference and system crash) (bnc#1137194). - CVE-2019-3846: A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network (bnc#1136424 1136446). The following non-security bugs were fixed: - KEYS: do not let add_key() update an uninstantiated key (bnc#1063416). - fnic: Fix to cleanup aborted IO to avoid device being offlined by mid-layer (bsc#1134835). - signal: give SEND_SIG_FORCED more power to beat SIGNAL_UNKILLABLE (bsc#1135650). - signal: oom_kill_task: use SEND_SIG_FORCED instead of force_sig() (bsc#1135650). - tcp: a regression in the previous fix for the TCP SACK issue was fixed (bnc#1139751)

Patchnames: slessp4-kernel-source-14127,slexsp3-kernel-source-14127

CVE-2018-20836

6.2 (Medium)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H

Affected products

Recommended 54 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-5390

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 54 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-12614

6.2 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 54 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-3459

2.6 (Low)


                        
                          CVSS:3.0/AV:A/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L

Affected products

Recommended 54 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-3460

2.6 (Low)


                        
                          CVSS:3.0/AV:A/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L

Affected products

Recommended 54 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-3846

7.5 (High)


                        
                          CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 54 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-3896

7 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 54 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

46 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1063416	self
https://bugzilla.suse.com/1090078	self
https://bugzilla.suse.com/1102340	self
https://bugzilla.suse.com/1120758	self
https://bugzilla.suse.com/1134395	self
https://bugzilla.suse.com/1134835	self
https://bugzilla.suse.com/1135650	self
https://bugzilla.suse.com/1136424	self
https://bugzilla.suse.com/1137194	self
https://bugzilla.suse.com/1138943	self
https://bugzilla.suse.com/1139751	self
https://www.suse.com/security/cve/CVE-2018-20836/	self
https://www.suse.com/security/cve/CVE-2018-5390/	self
https://www.suse.com/security/cve/CVE-2019-12614/	self
https://www.suse.com/security/cve/CVE-2019-3459/	self
https://www.suse.com/security/cve/CVE-2019-3460/	self
https://www.suse.com/security/cve/CVE-2019-3846/	self
https://www.suse.com/security/cve/CVE-2019-3896/	self
https://www.suse.com/security/cve/CVE-2018-20836	external
https://bugzilla.suse.com/1134395	external
https://www.suse.com/security/cve/CVE-2018-5390	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1102340	external
https://bugzilla.suse.com/1102682	external
https://bugzilla.suse.com/1103097	external
https://bugzilla.suse.com/1103098	external
https://bugzilla.suse.com/1156434	external
https://www.suse.com/security/cve/CVE-2019-12614	external
https://bugzilla.suse.com/1137194	external
https://www.suse.com/security/cve/CVE-2019-3459	external
https://bugzilla.suse.com/1120758	external
https://www.suse.com/security/cve/CVE-2019-3460	external
https://bugzilla.suse.com/1120758	external
https://bugzilla.suse.com/1155131	external
https://www.suse.com/security/cve/CVE-2019-3846	external
https://bugzilla.suse.com/1136424	external
https://bugzilla.suse.com/1136446	external
https://bugzilla.suse.com/1156330	external
https://www.suse.com/security/cve/CVE-2019-3896	external
https://bugzilla.suse.com/1138943	external
https://bugzilla.suse.com/1156434	external
https://bugzilla.suse.com/1173987	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "\nThe SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2019-3459: A heap address information leak while using L2CAP_GET_CONF_OPT was discovered in the Linux kernel(bnc#1120758).\n- CVE-2019-3460: A heap data infoleak in multiple locations including L2CAP_PARSE_CONF_RSP was found in the Linux kernel before (bnc#1120758).\n- CVE-2019-3896: A double-free could happen in idr_remove_all() in lib/idr.c in the Linux kernel. An unprivileged local attacker could use this flaw for a privilege escalation or for a system crash and a denial of service (DoS) (bnc#1138943).\n- CVE-2018-5390: The Linux kernel could be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which could lead to a denial of service (bnc#1102340).\n- CVE-2018-20836: An issue was discovered in the Linux kernel There was a race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c, leading to a use-after-free (bnc#1134395).\n- CVE-2019-12614: An issue was discovered in dlpar_parse_cc_property in arch/powerpc/platforms/pseries/dlpar.c in the Linux kernel There was an unchecked kstrdup of prop-name, which might allow an attacker to cause a denial of service (NULL pointer dereference and system crash) (bnc#1137194).\n- CVE-2019-3846: A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network (bnc#1136424 1136446).\n\nThe following non-security bugs were fixed:\n\n- KEYS: do not let add_key() update an uninstantiated key (bnc#1063416).\n- fnic: Fix to cleanup aborted IO to avoid device being offlined by mid-layer (bsc#1134835).\n- signal: give SEND_SIG_FORCED more power to beat SIGNAL_UNKILLABLE (bsc#1135650).\n- signal: oom_kill_task: use SEND_SIG_FORCED instead of force_sig() (bsc#1135650).\n- tcp: a regression in the previous fix for the TCP SACK issue was fixed (bnc#1139751)\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "slessp4-kernel-source-14127,slexsp3-kernel-source-14127",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_14127-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2019:14127-1",
        "url": "https://www.suse.com/support/update/announcement/2019/suse-su-201914127-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2019:14127-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2019-July/005734.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1063416",
        "url": "https://bugzilla.suse.com/1063416"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1090078",
        "url": "https://bugzilla.suse.com/1090078"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1102340",
        "url": "https://bugzilla.suse.com/1102340"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1120758",
        "url": "https://bugzilla.suse.com/1120758"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1134395",
        "url": "https://bugzilla.suse.com/1134395"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1134835",
        "url": "https://bugzilla.suse.com/1134835"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1135650",
        "url": "https://bugzilla.suse.com/1135650"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1136424",
        "url": "https://bugzilla.suse.com/1136424"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1137194",
        "url": "https://bugzilla.suse.com/1137194"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1138943",
        "url": "https://bugzilla.suse.com/1138943"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1139751",
        "url": "https://bugzilla.suse.com/1139751"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-20836 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-20836/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5390 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5390/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-12614 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-12614/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3459 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3459/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3460 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3460/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3846 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3846/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3896 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3896/"
      }
    ],
    "title": "Security update for the Linux Kernel",
    "tracking": {
      "current_release_date": "2019-07-18T15:53:32Z",
      "generator": {
        "date": "2019-07-18T15:53:32Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2019:14127-1",
      "initial_release_date": "2019-07-18T15:53:32Z",
      "revision_history": [
        {
          "date": "2019-07-18T15:53:32Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-default-3.0.101-108.98.1.i586",
                "product": {
                  "name": "kernel-default-3.0.101-108.98.1.i586",
                  "product_id": "kernel-default-3.0.101-108.98.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-3.0.101-108.98.1.i586",
                "product": {
                  "name": "kernel-default-base-3.0.101-108.98.1.i586",
                  "product_id": "kernel-default-base-3.0.101-108.98.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-3.0.101-108.98.1.i586",
                "product": {
                  "name": "kernel-default-devel-3.0.101-108.98.1.i586",
                  "product_id": "kernel-default-devel-3.0.101-108.98.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-ec2-3.0.101-108.98.1.i586",
                "product": {
                  "name": "kernel-ec2-3.0.101-108.98.1.i586",
                  "product_id": "kernel-ec2-3.0.101-108.98.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-ec2-base-3.0.101-108.98.1.i586",
                "product": {
                  "name": "kernel-ec2-base-3.0.101-108.98.1.i586",
                  "product_id": "kernel-ec2-base-3.0.101-108.98.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-ec2-devel-3.0.101-108.98.1.i586",
                "product": {
                  "name": "kernel-ec2-devel-3.0.101-108.98.1.i586",
                  "product_id": "kernel-ec2-devel-3.0.101-108.98.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-pae-3.0.101-108.98.1.i586",
                "product": {
                  "name": "kernel-pae-3.0.101-108.98.1.i586",
                  "product_id": "kernel-pae-3.0.101-108.98.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-pae-base-3.0.101-108.98.1.i586",
                "product": {
                  "name": "kernel-pae-base-3.0.101-108.98.1.i586",
                  "product_id": "kernel-pae-base-3.0.101-108.98.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-pae-devel-3.0.101-108.98.1.i586",
                "product": {
                  "name": "kernel-pae-devel-3.0.101-108.98.1.i586",
                  "product_id": "kernel-pae-devel-3.0.101-108.98.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-3.0.101-108.98.1.i586",
                "product": {
                  "name": "kernel-source-3.0.101-108.98.1.i586",
                  "product_id": "kernel-source-3.0.101-108.98.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-3.0.101-108.98.1.i586",
                "product": {
                  "name": "kernel-syms-3.0.101-108.98.1.i586",
                  "product_id": "kernel-syms-3.0.101-108.98.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-3.0.101-108.98.1.i586",
                "product": {
                  "name": "kernel-trace-3.0.101-108.98.1.i586",
                  "product_id": "kernel-trace-3.0.101-108.98.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-base-3.0.101-108.98.1.i586",
                "product": {
                  "name": "kernel-trace-base-3.0.101-108.98.1.i586",
                  "product_id": "kernel-trace-base-3.0.101-108.98.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-devel-3.0.101-108.98.1.i586",
                "product": {
                  "name": "kernel-trace-devel-3.0.101-108.98.1.i586",
                  "product_id": "kernel-trace-devel-3.0.101-108.98.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-xen-3.0.101-108.98.1.i586",
                "product": {
                  "name": "kernel-xen-3.0.101-108.98.1.i586",
                  "product_id": "kernel-xen-3.0.101-108.98.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-xen-base-3.0.101-108.98.1.i586",
                "product": {
                  "name": "kernel-xen-base-3.0.101-108.98.1.i586",
                  "product_id": "kernel-xen-base-3.0.101-108.98.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-xen-devel-3.0.101-108.98.1.i586",
                "product": {
                  "name": "kernel-xen-devel-3.0.101-108.98.1.i586",
                  "product_id": "kernel-xen-devel-3.0.101-108.98.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-bigmem-3.0.101-108.98.1.ppc64",
                "product": {
                  "name": "kernel-bigmem-3.0.101-108.98.1.ppc64",
                  "product_id": "kernel-bigmem-3.0.101-108.98.1.ppc64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-bigmem-base-3.0.101-108.98.1.ppc64",
                "product": {
                  "name": "kernel-bigmem-base-3.0.101-108.98.1.ppc64",
                  "product_id": "kernel-bigmem-base-3.0.101-108.98.1.ppc64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
                "product": {
                  "name": "kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
                  "product_id": "kernel-bigmem-devel-3.0.101-108.98.1.ppc64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-3.0.101-108.98.1.ppc64",
                "product": {
                  "name": "kernel-default-3.0.101-108.98.1.ppc64",
                  "product_id": "kernel-default-3.0.101-108.98.1.ppc64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-3.0.101-108.98.1.ppc64",
                "product": {
                  "name": "kernel-default-base-3.0.101-108.98.1.ppc64",
                  "product_id": "kernel-default-base-3.0.101-108.98.1.ppc64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-3.0.101-108.98.1.ppc64",
                "product": {
                  "name": "kernel-default-devel-3.0.101-108.98.1.ppc64",
                  "product_id": "kernel-default-devel-3.0.101-108.98.1.ppc64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-ppc64-3.0.101-108.98.1.ppc64",
                "product": {
                  "name": "kernel-ppc64-3.0.101-108.98.1.ppc64",
                  "product_id": "kernel-ppc64-3.0.101-108.98.1.ppc64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-ppc64-base-3.0.101-108.98.1.ppc64",
                "product": {
                  "name": "kernel-ppc64-base-3.0.101-108.98.1.ppc64",
                  "product_id": "kernel-ppc64-base-3.0.101-108.98.1.ppc64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
                "product": {
                  "name": "kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
                  "product_id": "kernel-ppc64-devel-3.0.101-108.98.1.ppc64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-3.0.101-108.98.1.ppc64",
                "product": {
                  "name": "kernel-source-3.0.101-108.98.1.ppc64",
                  "product_id": "kernel-source-3.0.101-108.98.1.ppc64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-3.0.101-108.98.1.ppc64",
                "product": {
                  "name": "kernel-syms-3.0.101-108.98.1.ppc64",
                  "product_id": "kernel-syms-3.0.101-108.98.1.ppc64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-3.0.101-108.98.1.ppc64",
                "product": {
                  "name": "kernel-trace-3.0.101-108.98.1.ppc64",
                  "product_id": "kernel-trace-3.0.101-108.98.1.ppc64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-base-3.0.101-108.98.1.ppc64",
                "product": {
                  "name": "kernel-trace-base-3.0.101-108.98.1.ppc64",
                  "product_id": "kernel-trace-base-3.0.101-108.98.1.ppc64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-devel-3.0.101-108.98.1.ppc64",
                "product": {
                  "name": "kernel-trace-devel-3.0.101-108.98.1.ppc64",
                  "product_id": "kernel-trace-devel-3.0.101-108.98.1.ppc64"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-default-3.0.101-108.98.1.s390x",
                "product": {
                  "name": "kernel-default-3.0.101-108.98.1.s390x",
                  "product_id": "kernel-default-3.0.101-108.98.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-3.0.101-108.98.1.s390x",
                "product": {
                  "name": "kernel-default-base-3.0.101-108.98.1.s390x",
                  "product_id": "kernel-default-base-3.0.101-108.98.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-3.0.101-108.98.1.s390x",
                "product": {
                  "name": "kernel-default-devel-3.0.101-108.98.1.s390x",
                  "product_id": "kernel-default-devel-3.0.101-108.98.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-man-3.0.101-108.98.1.s390x",
                "product": {
                  "name": "kernel-default-man-3.0.101-108.98.1.s390x",
                  "product_id": "kernel-default-man-3.0.101-108.98.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-3.0.101-108.98.1.s390x",
                "product": {
                  "name": "kernel-source-3.0.101-108.98.1.s390x",
                  "product_id": "kernel-source-3.0.101-108.98.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-3.0.101-108.98.1.s390x",
                "product": {
                  "name": "kernel-syms-3.0.101-108.98.1.s390x",
                  "product_id": "kernel-syms-3.0.101-108.98.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-3.0.101-108.98.1.s390x",
                "product": {
                  "name": "kernel-trace-3.0.101-108.98.1.s390x",
                  "product_id": "kernel-trace-3.0.101-108.98.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-base-3.0.101-108.98.1.s390x",
                "product": {
                  "name": "kernel-trace-base-3.0.101-108.98.1.s390x",
                  "product_id": "kernel-trace-base-3.0.101-108.98.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-devel-3.0.101-108.98.1.s390x",
                "product": {
                  "name": "kernel-trace-devel-3.0.101-108.98.1.s390x",
                  "product_id": "kernel-trace-devel-3.0.101-108.98.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-default-3.0.101-108.98.1.x86_64",
                "product": {
                  "name": "kernel-default-3.0.101-108.98.1.x86_64",
                  "product_id": "kernel-default-3.0.101-108.98.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-3.0.101-108.98.1.x86_64",
                "product": {
                  "name": "kernel-default-base-3.0.101-108.98.1.x86_64",
                  "product_id": "kernel-default-base-3.0.101-108.98.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-3.0.101-108.98.1.x86_64",
                "product": {
                  "name": "kernel-default-devel-3.0.101-108.98.1.x86_64",
                  "product_id": "kernel-default-devel-3.0.101-108.98.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-ec2-3.0.101-108.98.1.x86_64",
                "product": {
                  "name": "kernel-ec2-3.0.101-108.98.1.x86_64",
                  "product_id": "kernel-ec2-3.0.101-108.98.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-ec2-base-3.0.101-108.98.1.x86_64",
                "product": {
                  "name": "kernel-ec2-base-3.0.101-108.98.1.x86_64",
                  "product_id": "kernel-ec2-base-3.0.101-108.98.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-ec2-devel-3.0.101-108.98.1.x86_64",
                "product": {
                  "name": "kernel-ec2-devel-3.0.101-108.98.1.x86_64",
                  "product_id": "kernel-ec2-devel-3.0.101-108.98.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-3.0.101-108.98.1.x86_64",
                "product": {
                  "name": "kernel-source-3.0.101-108.98.1.x86_64",
                  "product_id": "kernel-source-3.0.101-108.98.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-3.0.101-108.98.1.x86_64",
                "product": {
                  "name": "kernel-syms-3.0.101-108.98.1.x86_64",
                  "product_id": "kernel-syms-3.0.101-108.98.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-3.0.101-108.98.1.x86_64",
                "product": {
                  "name": "kernel-trace-3.0.101-108.98.1.x86_64",
                  "product_id": "kernel-trace-3.0.101-108.98.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-base-3.0.101-108.98.1.x86_64",
                "product": {
                  "name": "kernel-trace-base-3.0.101-108.98.1.x86_64",
                  "product_id": "kernel-trace-base-3.0.101-108.98.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-trace-devel-3.0.101-108.98.1.x86_64",
                "product": {
                  "name": "kernel-trace-devel-3.0.101-108.98.1.x86_64",
                  "product_id": "kernel-trace-devel-3.0.101-108.98.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-xen-3.0.101-108.98.1.x86_64",
                "product": {
                  "name": "kernel-xen-3.0.101-108.98.1.x86_64",
                  "product_id": "kernel-xen-3.0.101-108.98.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-xen-base-3.0.101-108.98.1.x86_64",
                "product": {
                  "name": "kernel-xen-base-3.0.101-108.98.1.x86_64",
                  "product_id": "kernel-xen-base-3.0.101-108.98.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-xen-devel-3.0.101-108.98.1.x86_64",
                "product": {
                  "name": "kernel-xen-devel-3.0.101-108.98.1.x86_64",
                  "product_id": "kernel-xen-devel-3.0.101-108.98.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 11 SP4-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 11 SP4-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse_sles:11:sp4"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-bigmem-3.0.101-108.98.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64"
        },
        "product_reference": "kernel-bigmem-3.0.101-108.98.1.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-bigmem-base-3.0.101-108.98.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64"
        },
        "product_reference": "kernel-bigmem-base-3.0.101-108.98.1.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-bigmem-devel-3.0.101-108.98.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64"
        },
        "product_reference": "kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-3.0.101-108.98.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586"
        },
        "product_reference": "kernel-default-3.0.101-108.98.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-3.0.101-108.98.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64"
        },
        "product_reference": "kernel-default-3.0.101-108.98.1.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-3.0.101-108.98.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x"
        },
        "product_reference": "kernel-default-3.0.101-108.98.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-3.0.101-108.98.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64"
        },
        "product_reference": "kernel-default-3.0.101-108.98.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-3.0.101-108.98.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586"
        },
        "product_reference": "kernel-default-base-3.0.101-108.98.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-3.0.101-108.98.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64"
        },
        "product_reference": "kernel-default-base-3.0.101-108.98.1.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-3.0.101-108.98.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x"
        },
        "product_reference": "kernel-default-base-3.0.101-108.98.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-3.0.101-108.98.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64"
        },
        "product_reference": "kernel-default-base-3.0.101-108.98.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-3.0.101-108.98.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586"
        },
        "product_reference": "kernel-default-devel-3.0.101-108.98.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-3.0.101-108.98.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64"
        },
        "product_reference": "kernel-default-devel-3.0.101-108.98.1.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-3.0.101-108.98.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x"
        },
        "product_reference": "kernel-default-devel-3.0.101-108.98.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-3.0.101-108.98.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64"
        },
        "product_reference": "kernel-default-devel-3.0.101-108.98.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-man-3.0.101-108.98.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x"
        },
        "product_reference": "kernel-default-man-3.0.101-108.98.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ec2-3.0.101-108.98.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586"
        },
        "product_reference": "kernel-ec2-3.0.101-108.98.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ec2-3.0.101-108.98.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64"
        },
        "product_reference": "kernel-ec2-3.0.101-108.98.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ec2-base-3.0.101-108.98.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586"
        },
        "product_reference": "kernel-ec2-base-3.0.101-108.98.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ec2-base-3.0.101-108.98.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64"
        },
        "product_reference": "kernel-ec2-base-3.0.101-108.98.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ec2-devel-3.0.101-108.98.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586"
        },
        "product_reference": "kernel-ec2-devel-3.0.101-108.98.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ec2-devel-3.0.101-108.98.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64"
        },
        "product_reference": "kernel-ec2-devel-3.0.101-108.98.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-pae-3.0.101-108.98.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586"
        },
        "product_reference": "kernel-pae-3.0.101-108.98.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-pae-base-3.0.101-108.98.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586"
        },
        "product_reference": "kernel-pae-base-3.0.101-108.98.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-pae-devel-3.0.101-108.98.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586"
        },
        "product_reference": "kernel-pae-devel-3.0.101-108.98.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ppc64-3.0.101-108.98.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64"
        },
        "product_reference": "kernel-ppc64-3.0.101-108.98.1.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ppc64-base-3.0.101-108.98.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64"
        },
        "product_reference": "kernel-ppc64-base-3.0.101-108.98.1.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-ppc64-devel-3.0.101-108.98.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64"
        },
        "product_reference": "kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-3.0.101-108.98.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586"
        },
        "product_reference": "kernel-source-3.0.101-108.98.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-3.0.101-108.98.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64"
        },
        "product_reference": "kernel-source-3.0.101-108.98.1.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-3.0.101-108.98.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x"
        },
        "product_reference": "kernel-source-3.0.101-108.98.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-3.0.101-108.98.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64"
        },
        "product_reference": "kernel-source-3.0.101-108.98.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-3.0.101-108.98.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586"
        },
        "product_reference": "kernel-syms-3.0.101-108.98.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-3.0.101-108.98.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64"
        },
        "product_reference": "kernel-syms-3.0.101-108.98.1.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-3.0.101-108.98.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x"
        },
        "product_reference": "kernel-syms-3.0.101-108.98.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-3.0.101-108.98.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64"
        },
        "product_reference": "kernel-syms-3.0.101-108.98.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-3.0.101-108.98.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586"
        },
        "product_reference": "kernel-trace-3.0.101-108.98.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-3.0.101-108.98.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64"
        },
        "product_reference": "kernel-trace-3.0.101-108.98.1.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-3.0.101-108.98.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x"
        },
        "product_reference": "kernel-trace-3.0.101-108.98.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-3.0.101-108.98.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64"
        },
        "product_reference": "kernel-trace-3.0.101-108.98.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-base-3.0.101-108.98.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586"
        },
        "product_reference": "kernel-trace-base-3.0.101-108.98.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-base-3.0.101-108.98.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64"
        },
        "product_reference": "kernel-trace-base-3.0.101-108.98.1.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-base-3.0.101-108.98.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x"
        },
        "product_reference": "kernel-trace-base-3.0.101-108.98.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-base-3.0.101-108.98.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64"
        },
        "product_reference": "kernel-trace-base-3.0.101-108.98.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-devel-3.0.101-108.98.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586"
        },
        "product_reference": "kernel-trace-devel-3.0.101-108.98.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-devel-3.0.101-108.98.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64"
        },
        "product_reference": "kernel-trace-devel-3.0.101-108.98.1.ppc64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-devel-3.0.101-108.98.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x"
        },
        "product_reference": "kernel-trace-devel-3.0.101-108.98.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-trace-devel-3.0.101-108.98.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64"
        },
        "product_reference": "kernel-trace-devel-3.0.101-108.98.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-3.0.101-108.98.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586"
        },
        "product_reference": "kernel-xen-3.0.101-108.98.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-3.0.101-108.98.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64"
        },
        "product_reference": "kernel-xen-3.0.101-108.98.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-base-3.0.101-108.98.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586"
        },
        "product_reference": "kernel-xen-base-3.0.101-108.98.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-base-3.0.101-108.98.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64"
        },
        "product_reference": "kernel-xen-base-3.0.101-108.98.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-devel-3.0.101-108.98.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586"
        },
        "product_reference": "kernel-xen-devel-3.0.101-108.98.1.i586",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-xen-devel-3.0.101-108.98.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
        },
        "product_reference": "kernel-xen-devel-3.0.101-108.98.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-20836",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-20836"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel before 4.20. There is a race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c, leading to a use-after-free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-20836",
          "url": "https://www.suse.com/security/cve/CVE-2018-20836"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1134395 for CVE-2018-20836",
          "url": "https://bugzilla.suse.com/1134395"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-07-18T15:53:32Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-20836"
    },
    {
      "cve": "CVE-2018-5390",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5390"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5390",
          "url": "https://www.suse.com/security/cve/CVE-2018-5390"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102340 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1102340"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102682 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1102682"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1103097 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1103097"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1103098 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1103098"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156434 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1156434"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-07-18T15:53:32Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-5390"
    },
    {
      "cve": "CVE-2019-12614",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-12614"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in dlpar_parse_cc_property in arch/powerpc/platforms/pseries/dlpar.c in the Linux kernel through 5.1.6. There is an unchecked kstrdup of prop-\u003ename, which might allow an attacker to cause a denial of service (NULL pointer dereference and system crash).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-12614",
          "url": "https://www.suse.com/security/cve/CVE-2019-12614"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1137194 for CVE-2019-12614",
          "url": "https://bugzilla.suse.com/1137194"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-07-18T15:53:32Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-12614"
    },
    {
      "cve": "CVE-2019-3459",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3459"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A heap address information leak while using L2CAP_GET_CONF_OPT was discovered in the Linux kernel before 5.1-rc1.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3459",
          "url": "https://www.suse.com/security/cve/CVE-2019-3459"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1120758 for CVE-2019-3459",
          "url": "https://bugzilla.suse.com/1120758"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.6,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-07-18T15:53:32Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3459"
    },
    {
      "cve": "CVE-2019-3460",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3460"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A heap data infoleak in multiple locations including L2CAP_PARSE_CONF_RSP was found in the Linux kernel before 5.1-rc1.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3460",
          "url": "https://www.suse.com/security/cve/CVE-2019-3460"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1120758 for CVE-2019-3460",
          "url": "https://bugzilla.suse.com/1120758"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1155131 for CVE-2019-3460",
          "url": "https://bugzilla.suse.com/1155131"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.6,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-07-18T15:53:32Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3460"
    },
    {
      "cve": "CVE-2019-3846",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3846"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3846",
          "url": "https://www.suse.com/security/cve/CVE-2019-3846"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1136424 for CVE-2019-3846",
          "url": "https://bugzilla.suse.com/1136424"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1136446 for CVE-2019-3846",
          "url": "https://bugzilla.suse.com/1136446"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156330 for CVE-2019-3846",
          "url": "https://bugzilla.suse.com/1156330"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-07-18T15:53:32Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3846"
    },
    {
      "cve": "CVE-2019-3896",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3896"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A double-free can happen in idr_remove_all() in lib/idr.c in the Linux kernel 2.6 branch. An unprivileged local attacker can use this flaw for a privilege escalation or for a system crash and a denial of service (DoS).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
          "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3896",
          "url": "https://www.suse.com/security/cve/CVE-2019-3896"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1138943 for CVE-2019-3896",
          "url": "https://bugzilla.suse.com/1138943"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156434 for CVE-2019-3896",
          "url": "https://bugzilla.suse.com/1156434"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173987 for CVE-2019-3896",
          "url": "https://bugzilla.suse.com/1173987"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-bigmem-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ec2-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-pae-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-ppc64-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-syms-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.ppc64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.s390x",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-trace-devel-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-base-3.0.101-108.98.1.x86_64",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.i586",
            "SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-xen-devel-3.0.101-108.98.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-07-18T15:53:32Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3896"
    }
  ]
}

SUSE-SU-2019:1425-1

Vulnerability from csaf_suse - Published: 2019-06-05 08:33 - Updated: 2019-06-05 08:33

Summary

Security update for the Linux Kernel (Live Patch 29 for SLE 12 SP2)

Severity

Important

Notes

Title of the patch: Security update for the Linux Kernel (Live Patch 29 for SLE 12 SP2)

Description of the patch: This update for the Linux Kernel 4.4.121-92_109 fixes one issue. The following security issue was fixed: - CVE-2018-5390: The Linux kernel could be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service (bsc#1102682).

Patchnames: SUSE-2019-1425,SUSE-SLE-SAP-12-SP1-2019-1424,SUSE-SLE-SAP-12-SP2-2019-1425,SUSE-SLE-SERVER-12-2019-1420,SUSE-SLE-SERVER-12-SP1-2019-1424,SUSE-SLE-SERVER-12-SP2-2019-1425

CVE-2018-5390

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 10 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_110-default-2-2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_110-xen-2-2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_109-default-2-2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_109-default-2-2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_149-default-2-2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_149-xen-2-2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_110-default-2-2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_110-xen-2-2.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_109-default-2-2.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_109-default-2-2.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

13 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1102682	self
https://www.suse.com/security/cve/CVE-2018-5390/	self
https://www.suse.com/security/cve/CVE-2018-5390	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1102340	external
https://bugzilla.suse.com/1102682	external
https://bugzilla.suse.com/1103097	external
https://bugzilla.suse.com/1103098	external
https://bugzilla.suse.com/1156434	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel (Live Patch 29 for SLE 12 SP2)",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for the Linux Kernel 4.4.121-92_109 fixes one issue.\n\nThe following security issue was fixed:\n\n- CVE-2018-5390: The Linux kernel could be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service (bsc#1102682).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2019-1425,SUSE-SLE-SAP-12-SP1-2019-1424,SUSE-SLE-SAP-12-SP2-2019-1425,SUSE-SLE-SERVER-12-2019-1420,SUSE-SLE-SERVER-12-SP1-2019-1424,SUSE-SLE-SERVER-12-SP2-2019-1425",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_1425-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2019:1425-1",
        "url": "https://www.suse.com/support/update/announcement/2019/suse-su-20191425-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2019:1425-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2019-June/005531.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1102682",
        "url": "https://bugzilla.suse.com/1102682"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5390 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5390/"
      }
    ],
    "title": "Security update for the Linux Kernel (Live Patch 29 for SLE 12 SP2)",
    "tracking": {
      "current_release_date": "2019-06-05T08:33:57Z",
      "generator": {
        "date": "2019-06-05T08:33:57Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2019:1425-1",
      "initial_release_date": "2019-06-05T08:33:57Z",
      "revision_history": [
        {
          "date": "2019-06-05T08:33:57Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kgraft-patch-4_4_121-92_109-default-2-2.1.ppc64le",
                "product": {
                  "name": "kgraft-patch-4_4_121-92_109-default-2-2.1.ppc64le",
                  "product_id": "kgraft-patch-4_4_121-92_109-default-2-2.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kgraft-patch-4_4_121-92_109-default-2-2.1.x86_64",
                "product": {
                  "name": "kgraft-patch-4_4_121-92_109-default-2-2.1.x86_64",
                  "product_id": "kgraft-patch-4_4_121-92_109-default-2-2.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kgraft-patch-3_12_74-60_64_110-default-2-2.1.x86_64",
                "product": {
                  "name": "kgraft-patch-3_12_74-60_64_110-default-2-2.1.x86_64",
                  "product_id": "kgraft-patch-3_12_74-60_64_110-default-2-2.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kgraft-patch-3_12_74-60_64_110-xen-2-2.1.x86_64",
                "product": {
                  "name": "kgraft-patch-3_12_74-60_64_110-xen-2-2.1.x86_64",
                  "product_id": "kgraft-patch-3_12_74-60_64_110-xen-2-2.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kgraft-patch-3_12_61-52_149-default-2-2.1.x86_64",
                "product": {
                  "name": "kgraft-patch-3_12_61-52_149-default-2-2.1.x86_64",
                  "product_id": "kgraft-patch-3_12_61-52_149-default-2-2.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kgraft-patch-3_12_61-52_149-xen-2-2.1.x86_64",
                "product": {
                  "name": "kgraft-patch-3_12_61-52_149-xen-2-2.1.x86_64",
                  "product_id": "kgraft-patch-3_12_61-52_149-xen-2-2.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:12:sp1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 12-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:12"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP1-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP1-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:12:sp1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP2-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP2-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:12:sp2"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-3_12_74-60_64_110-default-2-2.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_110-default-2-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-3_12_74-60_64_110-default-2-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-3_12_74-60_64_110-xen-2-2.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_110-xen-2-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-3_12_74-60_64_110-xen-2-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_121-92_109-default-2-2.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_109-default-2-2.1.ppc64le"
        },
        "product_reference": "kgraft-patch-4_4_121-92_109-default-2-2.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_121-92_109-default-2-2.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_109-default-2-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-4_4_121-92_109-default-2-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-3_12_61-52_149-default-2-2.1.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_149-default-2-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-3_12_61-52_149-default-2-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-3_12_61-52_149-xen-2-2.1.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_149-xen-2-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-3_12_61-52_149-xen-2-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-3_12_74-60_64_110-default-2-2.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_110-default-2-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-3_12_74-60_64_110-default-2-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-3_12_74-60_64_110-xen-2-2.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_110-xen-2-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-3_12_74-60_64_110-xen-2-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_121-92_109-default-2-2.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_109-default-2-2.1.ppc64le"
        },
        "product_reference": "kgraft-patch-4_4_121-92_109-default-2-2.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_121-92_109-default-2-2.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_109-default-2-2.1.x86_64"
        },
        "product_reference": "kgraft-patch-4_4_121-92_109-default-2-2.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-5390",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5390"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_110-default-2-2.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_110-xen-2-2.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_109-default-2-2.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_109-default-2-2.1.x86_64",
          "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_149-default-2-2.1.x86_64",
          "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_149-xen-2-2.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_110-default-2-2.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_110-xen-2-2.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_109-default-2-2.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_109-default-2-2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5390",
          "url": "https://www.suse.com/security/cve/CVE-2018-5390"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102340 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1102340"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102682 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1102682"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1103097 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1103097"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1103098 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1103098"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156434 for CVE-2018-5390",
          "url": "https://bugzilla.suse.com/1156434"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_110-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_110-xen-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_109-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_109-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_149-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_149-xen-2-2.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_110-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_110-xen-2-2.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_109-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_109-default-2-2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_110-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP1-LTSS:kgraft-patch-3_12_74-60_64_110-xen-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_109-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2-LTSS:kgraft-patch-4_4_121-92_109-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_149-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server 12-LTSS:kgraft-patch-3_12_61-52_149-xen-2-2.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_110-default-2-2.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP1:kgraft-patch-3_12_74-60_64_110-xen-2-2.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_109-default-2-2.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kgraft-patch-4_4_121-92_109-default-2-2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-06-05T08:33:57Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-5390"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2018-5390 (GCVE-0-2018-5390)

Tags

Sightings

Nomenclature