Upstream information
Description
drivers/vhost/net.c in the Linux kernel before 3.13.10, when mergeable buffers are disabled, does not properly validate packet lengths, which allows guest OS users to cause a denial of service (memory corruption and host OS crash) or possibly gain privileges on the host OS via crafted packets, related to the handle_rx and get_rx_bufs functions.SUSE information
| National Vulnerability Database | |
|---|---|
| Base Score | 5.46 |
| Vector | AV:A/AC:H/Au:S/C:P/I:P/A:C |
| Access Vector | Adjacent Network |
| Access Complexity | High |
| Authentication | Single |
| Confidentiality Impact | Partial |
| Integrity Impact | Partial |
| Availability Impact | Complete |
- SUSE-SU-2014:0908-1, published Thu, 17 Jul 2014 04:04:21 +0200 (CEST)
- SUSE-SU-2014:0909-1, published Thu, 17 Jul 2014 04:35:29 +0200 (CEST)
- SUSE-SU-2014:0910-1, published Thu, 17 Jul 2014 05:04:18 +0200 (CEST)
- SUSE-SU-2014:0911-1, published Thu, 17 Jul 2014 05:47:46 +0200 (CEST)
- SUSE-SU-2014:0912-1, published Thu, 17 Jul 2014 06:33:34 +0200 (CEST)
- SUSE-SU-2014:1105-1, published Tue Sep 9 17:06:56 MDT 2014
- openSUSE-SU-2014:0840-1, published Wed, 25 Jun 2014 09:04:14 +0200 (CEST)
- openSUSE-SU-2014:0856-1, published Tue, 1 Jul 2014 12:04:32 +0200 (CEST)
- openSUSE-SU-2014:1246-1, published Sun, 28 Sep 2014 18:05:01 +0200 (CEST)
List of released packages
| Product(s) | Fixed package version(s) | References |
|---|---|---|
| SUSE Linux Enterprise Desktop 11 SP3 |
| Patchnames: sledsp3-kernel |
| SUSE Linux Enterprise High Availability Extension 11 SP3 |
| Patchnames: slehasp3-kernel |
| SUSE Linux Enterprise Real Time Extension 11 SP3 |
| Patchnames: slertesp3-kernel |
| SUSE Linux Enterprise Server 11 SP2-LTSS |
| Patchnames: slessp2-kernel |
| SUSE Linux Enterprise Server 11 SP3 |
| Patchnames: slessp3-kernel |
| SUSE Linux Enterprise Server for VMWare 11 SP3 |
| Patchnames: slessp3-kernel |
| SUSE Linux Enterprise High Availability Extension 11 SP3 |
|
Builds SAT Patch Nr: 9488 |
| SUSE Linux Enterprise Desktop 11 SP3 |
|
Builds SAT Patch Nr: 9488 |
| SUSE Linux Enterprise Server 11 SP3 for VMware |
|
Builds SAT Patch Nr: 9488 |
| SUSE Linux Enterprise Server 11 SP3 |
|
Builds SAT Patch Nr: 9488 |
| SLE 11 SERVER Unsupported Extras |
|
Builds SAT Patch Nr: 9499 |
| SUSE Linux Enterprise High Availability Extension 11 SP3 |
|
Builds SAT Patch Nr: 9491 |
| SUSE Linux Enterprise Server 11 SP3 |
|
Builds SAT Patch Nr: 9491 |
| SUSE Linux Enterprise Server 11 SP2 LTSS |
|
Builds SAT Patch Nr: 9632 |
| SLE 11 SERVER Unsupported Extras |
|
Builds SAT Patch Nr: 9495 |
| SLE 11 SERVER Unsupported Extras |
|
Builds SAT Patch Nr: 9494 |
| SLE 11 SERVER Unsupported Extras |
|
Builds SAT Patch Nr: 9701 |
| SLE 11 SERVER Unsupported Extras |
|
Builds SAT Patch Nr: 9496 |
| SUSE Linux Enterprise High Availability Extension 11 SP3 |
|
Builds SAT Patch Nr: 9492 |
| SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Server 11 SP3 for VMware |
|
Builds SAT Patch Nr: 9492 |
| SUSE Linux Enterprise Server 11 SP3 |
|
Builds SAT Patch Nr: 9492 |
| SLE 11 SERVER Unsupported Extras |
|
Builds SAT Patch Nr: 9700 |
| SLE 11 SERVER Unsupported Extras |
|
Builds SAT Patch Nr: 9699 |
| SUSE Linux Enterprise Server 11 SP2 LTSS |
|
Builds SAT Patch Nr: 9630 |
| SUSE Linux Enterprise Server 11 SP2 LTSS |
|
Builds SAT Patch Nr: 9631 |
| SLE 11 SERVER Unsupported Extras |
|
Builds SAT Patch Nr: 9498 |
| SUSE Linux Enterprise High Availability Extension 11 SP3 |
|
Builds SAT Patch Nr: 9493 |
| SUSE Linux Enterprise Desktop 11 SP3 |
|
Builds SAT Patch Nr: 9493 |
| SUSE Linux Enterprise Server 11 SP3 for VMware |
|
Builds SAT Patch Nr: 9493 |
| SUSE Linux Enterprise Server 11 SP3 |
|
Builds SAT Patch Nr: 9493 |
| SUSE Linux Enterprise High Availability Extension 11 SP3 |
|
Builds SAT Patch Nr: 9489 |
| SUSE Linux Enterprise Server 11 SP3 |
|
Builds SAT Patch Nr: 9489 |
| SUSE Linux Enterprise Real Time Extension 11 SP3 |
|
Builds SAT Patch Nr: 9504 |
| SUSE Linux Enterprise High Availability Extension 11 SP3 |
|
Builds SAT Patch Nr: 9490 |
| SUSE Linux Enterprise Server 11 SP3 |
|
Builds SAT Patch Nr: 9490 |
| SLE 11 SERVER Unsupported Extras |
|
Builds SAT Patch Nr: 9497 |
| openSUSE 12.3 |
| Patchnames: openSUSE-2014-451 |
| openSUSE 13.1 |
| Patchnames: openSUSE-2014-441 |
| openSUSE Evergreen 11.4 |
| Patchnames: 2014-89 |