CVE-2014-7826

Upstream information

CVE-2014-7826 at MITRE

Description

kernel/trace/trace_syscalls.c in the Linux kernel through 3.17.2 does not properly handle private syscall numbers during use of the ftrace subsystem, which allows local users to gain privileges or cause a denial of service (invalid pointer dereference) via a crafted application.

---

SUSE information

SUSE Bugzilla entries: 904012 [RESOLVED / FIXED], 904013 [RESOLVED / FIXED]

SUSE Security Advisories:

• SUSE-SU-2014:1693-1, published Tue, 23 Dec 2014 19:06:22 +0100 (CET)
• SUSE-SU-2014:1693-2, published Wed, 24 Dec 2014 08:08:49 +0100 (CET)
• SUSE-SU-2014:1695-1, published Tue, 23 Dec 2014 20:05:05 +0100 (CET)
• SUSE-SU-2014:1695-2, published Wed, 14 Jan 2015 19:04:44 +0100 (CET)
• SUSE-SU-2015:0068-1, published Fri, 16 Jan 2015 14:05:04 +0100 (CET)
• SUSE-SU-2015:0481-1, published Wed, 11 Mar 2015 20:05:42 +0100 (CET)
• openSUSE-SU-2014:1669-1, published Fri, 19 Dec 2014 19:04:46 +0100 (CET)
• openSUSE-SU-2014:1677-1, published Sun, 21 Dec 2014 13:04:41 +0100 (CET)
• openSUSE-SU-2014:1678-1, published Sun, 21 Dec 2014 13:12:48 +0100 (CET)
• openSUSE-SU-2015:0566-1, published Sat, 21 Mar 2015 15:04:43 +0100 (CET)

List of released packages

Product(s)	Fixed package version(s)	References
SUSE Linux Enterprise Build System Kit 12	kernel-zfcpdump >= 3.12.32-33.1	Patchnames: SUSE-SLE-BSK-12-2015-21
SUSE Linux Enterprise Desktop 11 SP3	kernel-bigsmp-devel >= 3.0.101-0.46.1 kernel-default >= 3.0.101-0.46.1 kernel-default-base >= 3.0.101-0.46.1 kernel-default-devel >= 3.0.101-0.46.1 kernel-default-extra >= 3.0.101-0.46.1 kernel-pae >= 3.0.101-0.42.1 kernel-pae-base >= 3.0.101-0.42.1 kernel-pae-devel >= 3.0.101-0.42.1 kernel-pae-extra >= 3.0.101-0.42.1 kernel-source >= 3.0.101-0.46.1 kernel-syms >= 3.0.101-0.46.1 kernel-trace-devel >= 3.0.101-0.46.1 kernel-xen >= 3.0.101-0.46.1 kernel-xen-base >= 3.0.101-0.46.1 kernel-xen-devel >= 3.0.101-0.46.1 kernel-xen-extra >= 3.0.101-0.46.1 xen-kmp-default >= 4.2.5_02_3.0.101_0.46-0.7.9 xen-kmp-pae >= 4.2.5_02_3.0.101_0.42-0.7.2	Patchnames: sledsp3-kernel
SUSE Linux Enterprise Desktop 12 SP1	kernel-default >= 3.12.49-11.1 kernel-default-devel >= 3.12.49-11.1 kernel-default-extra >= 3.12.49-11.1 kernel-devel >= 3.12.49-11.1 kernel-macros >= 3.12.49-11.1 kernel-source >= 3.12.49-11.1 kernel-syms >= 3.12.49-11.1 kernel-xen >= 3.12.49-11.1 kernel-xen-devel >= 3.12.49-11.1
SUSE Linux Enterprise Desktop 12	kernel-default >= 3.12.32-33.1 kernel-default-devel >= 3.12.32-33.1 kernel-default-extra >= 3.12.32-33.1 kernel-devel >= 3.12.32-33.1 kernel-macros >= 3.12.32-33.1 kernel-source >= 3.12.32-33.1 kernel-syms >= 3.12.32-33.1 kernel-xen >= 3.12.32-33.1 kernel-xen-devel >= 3.12.32-33.1	Patchnames: SUSE-SLE-DESKTOP-12-2015-21
SUSE Linux Enterprise High Availability Extension 11 SP3	cluster-network-kmp-bigsmp >= 1.4_3.0.101_0.46-2.27.120 cluster-network-kmp-default >= 1.4_3.0.101_0.46-2.27.120 cluster-network-kmp-pae >= 1.4_3.0.101_0.42-2.27.115 cluster-network-kmp-ppc64 >= 1.4_3.0.101_0.42-2.27.115 cluster-network-kmp-trace >= 1.4_3.0.101_0.46-2.27.120 cluster-network-kmp-xen >= 1.4_3.0.101_0.46-2.27.120 gfs2-kmp-bigsmp >= 2_3.0.101_0.46-0.16.126 gfs2-kmp-default >= 2_3.0.101_0.46-0.16.126 gfs2-kmp-pae >= 2_3.0.101_0.42-0.16.121 gfs2-kmp-ppc64 >= 2_3.0.101_0.42-0.16.121 gfs2-kmp-trace >= 2_3.0.101_0.46-0.16.126 gfs2-kmp-xen >= 2_3.0.101_0.46-0.16.126 ocfs2-kmp-bigsmp >= 1.6_3.0.101_0.46-0.20.120 ocfs2-kmp-default >= 1.6_3.0.101_0.46-0.20.120 ocfs2-kmp-pae >= 1.6_3.0.101_0.42-0.20.115 ocfs2-kmp-ppc64 >= 1.6_3.0.101_0.42-0.20.115 ocfs2-kmp-trace >= 1.6_3.0.101_0.46-0.20.120 ocfs2-kmp-xen >= 1.6_3.0.101_0.46-0.20.120	Patchnames: slehasp3-kernel
SUSE Linux Enterprise Module for Public Cloud 12	kernel-ec2 >= 3.12.32-33.1 kernel-ec2-devel >= 3.12.32-33.1 kernel-ec2-extra >= 3.12.32-33.1	Patchnames: SUSE-SLE-Module-Public-Cloud-12-2015-21
SUSE Linux Enterprise Real Time Extension 11 SP3	cluster-network-kmp-rt >= 1.4_3.0.101_rt130_0.32-2.27.121 cluster-network-kmp-rt_trace >= 1.4_3.0.101_rt130_0.32-2.27.121 drbd-kmp-rt >= 8.4.4_3.0.101_rt130_0.32-0.22.87 drbd-kmp-rt_trace >= 8.4.4_3.0.101_rt130_0.32-0.22.87 iscsitarget-kmp-rt >= 1.4.20_3.0.101_rt130_0.32-0.38.106 iscsitarget-kmp-rt_trace >= 1.4.20_3.0.101_rt130_0.32-0.38.106 kernel-rt >= 3.0.101.rt130-0.32.1 kernel-rt-base >= 3.0.101.rt130-0.32.1 kernel-rt-devel >= 3.0.101.rt130-0.32.1 kernel-rt_trace >= 3.0.101.rt130-0.32.1 kernel-rt_trace-base >= 3.0.101.rt130-0.32.1 kernel-rt_trace-devel >= 3.0.101.rt130-0.32.1 kernel-source-rt >= 3.0.101.rt130-0.32.1 kernel-syms-rt >= 3.0.101.rt130-0.32.1 lttng-modules-kmp-rt >= 2.1.1_3.0.101_rt130_0.32-0.11.96 lttng-modules-kmp-rt_trace >= 2.1.1_3.0.101_rt130_0.32-0.11.96 ocfs2-kmp-rt >= 1.6_3.0.101_rt130_0.32-0.20.121 ocfs2-kmp-rt_trace >= 1.6_3.0.101_rt130_0.32-0.20.121 ofed-kmp-rt >= 1.5.4.1_3.0.101_rt130_0.32-0.13.112 ofed-kmp-rt_trace >= 1.5.4.1_3.0.101_rt130_0.32-0.13.112	Patchnames: slertesp3-kernel
SUSE Linux Enterprise Server 11 SP2-LTSS	kernel-default >= 3.0.101-0.7.29.1 kernel-default-base >= 3.0.101-0.7.29.1 kernel-default-devel >= 3.0.101-0.7.29.1 kernel-default-man >= 3.0.101-0.7.29.1 kernel-ec2 >= 3.0.101-0.7.29.1 kernel-ec2-base >= 3.0.101-0.7.29.1 kernel-ec2-devel >= 3.0.101-0.7.29.1 kernel-pae >= 3.0.101-0.7.29.1 kernel-pae-base >= 3.0.101-0.7.29.1 kernel-pae-devel >= 3.0.101-0.7.29.1 kernel-source >= 3.0.101-0.7.29.1 kernel-syms >= 3.0.101-0.7.29.1 kernel-trace >= 3.0.101-0.7.29.1 kernel-trace-base >= 3.0.101-0.7.29.1 kernel-trace-devel >= 3.0.101-0.7.29.1 kernel-xen >= 3.0.101-0.7.29.1 kernel-xen-base >= 3.0.101-0.7.29.1 kernel-xen-devel >= 3.0.101-0.7.29.1 xen-kmp-default >= 4.1.6_08_3.0.101_0.7.29-0.5.19 xen-kmp-pae >= 4.1.6_08_3.0.101_0.7.29-0.5.19 xen-kmp-trace >= 4.1.6_08_3.0.101_0.7.29-0.5.19	Patchnames: slessp2-kernel
SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server for SAP Applications 11 SP3	kernel-bigsmp >= 3.0.101-0.46.1 kernel-bigsmp-base >= 3.0.101-0.46.1 kernel-bigsmp-devel >= 3.0.101-0.46.1 kernel-default >= 3.0.101-0.46.1 kernel-default-base >= 3.0.101-0.46.1 kernel-default-devel >= 3.0.101-0.46.1 kernel-default-man >= 3.0.101-0.42.1 kernel-ec2 >= 3.0.101-0.46.1 kernel-ec2-base >= 3.0.101-0.46.1 kernel-ec2-devel >= 3.0.101-0.46.1 kernel-pae >= 3.0.101-0.42.1 kernel-pae-base >= 3.0.101-0.42.1 kernel-pae-devel >= 3.0.101-0.42.1 kernel-ppc64 >= 3.0.101-0.42.1 kernel-ppc64-base >= 3.0.101-0.42.1 kernel-ppc64-devel >= 3.0.101-0.42.1 kernel-source >= 3.0.101-0.46.1 kernel-syms >= 3.0.101-0.46.1 kernel-trace >= 3.0.101-0.46.1 kernel-trace-base >= 3.0.101-0.46.1 kernel-trace-devel >= 3.0.101-0.46.1 kernel-xen >= 3.0.101-0.46.1 kernel-xen-base >= 3.0.101-0.46.1 kernel-xen-devel >= 3.0.101-0.46.1 xen-kmp-default >= 4.2.5_02_3.0.101_0.46-0.7.9 xen-kmp-pae >= 4.2.5_02_3.0.101_0.42-0.7.2	Patchnames: slessp3-kernel
SUSE Linux Enterprise Server 11 SP4	kernel-default >= 3.0.101-63.1 kernel-default-base >= 3.0.101-63.1 kernel-default-devel >= 3.0.101-63.1 kernel-default-man >= 3.0.101-63.1 kernel-pae >= 3.0.101-63.1 kernel-pae-base >= 3.0.101-63.1 kernel-pae-devel >= 3.0.101-63.1 kernel-ppc64 >= 3.0.101-63.1 kernel-ppc64-base >= 3.0.101-63.1 kernel-ppc64-devel >= 3.0.101-63.1 kernel-source >= 3.0.101-63.1 kernel-syms >= 3.0.101-63.1 kernel-trace >= 3.0.101-63.1 kernel-trace-base >= 3.0.101-63.1 kernel-trace-devel >= 3.0.101-63.1 kernel-xen >= 3.0.101-63.1 kernel-xen-base >= 3.0.101-63.1 kernel-xen-devel >= 3.0.101-63.1
SUSE Linux Enterprise Server 12 SP1	kernel-default >= 3.12.49-11.1 kernel-default-base >= 3.12.49-11.1 kernel-default-devel >= 3.12.49-11.1 kernel-default-man >= 3.12.49-11.1 kernel-devel >= 3.12.49-11.1 kernel-macros >= 3.12.49-11.1 kernel-source >= 3.12.49-11.1 kernel-syms >= 3.12.49-11.1 kernel-xen >= 3.12.49-11.1 kernel-xen-base >= 3.12.49-11.1 kernel-xen-devel >= 3.12.49-11.1
SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server for SAP Applications 12	kernel-default >= 3.12.32-33.1 kernel-default-base >= 3.12.32-33.1 kernel-default-devel >= 3.12.32-33.1 kernel-default-man >= 3.12.32-33.1 kernel-devel >= 3.12.32-33.1 kernel-macros >= 3.12.32-33.1 kernel-source >= 3.12.32-33.1 kernel-syms >= 3.12.32-33.1 kernel-xen >= 3.12.32-33.1 kernel-xen-base >= 3.12.32-33.1 kernel-xen-devel >= 3.12.32-33.1	Patchnames: SUSE-SLE-SERVER-12-2015-21
SUSE Linux Enterprise Server for VMWare 11 SP3	kernel-bigsmp >= 3.0.101-0.47.55.1 kernel-bigsmp-base >= 3.0.101-0.47.55.1 kernel-bigsmp-devel >= 3.0.101-0.47.55.1 kernel-default >= 3.0.101-0.46.1 kernel-default-base >= 3.0.101-0.46.1 kernel-default-devel >= 3.0.101-0.46.1 kernel-default-man >= 3.0.101-0.40.1 kernel-ec2 >= 3.0.101-0.40.1 kernel-ec2-base >= 3.0.101-0.40.1 kernel-ec2-devel >= 3.0.101-0.40.1 kernel-pae >= 3.0.101-0.42.1 kernel-pae-base >= 3.0.101-0.42.1 kernel-pae-devel >= 3.0.101-0.42.1 kernel-ppc64 >= 3.0.101-0.40.1 kernel-ppc64-base >= 3.0.101-0.40.1 kernel-ppc64-devel >= 3.0.101-0.40.1 kernel-source >= 3.0.101-0.46.1 kernel-syms >= 3.0.101-0.46.1 kernel-trace >= 3.0.101-0.46.1 kernel-trace-base >= 3.0.101-0.46.1 kernel-trace-devel >= 3.0.101-0.46.1 kernel-xen >= 3.0.101-0.40.1 kernel-xen-base >= 3.0.101-0.40.1 kernel-xen-devel >= 3.0.101-0.46.1 xen-kmp-default >= 4.2.4_04_3.0.101_0.40-0.7.3 xen-kmp-pae >= 4.2.4_04_3.0.101_0.40-0.7.3	Patchnames: slessp3-kernel
SUSE Linux Enterprise Software Development Kit 11 SP4	kernel-docs >= 3.0.101-63.1
SUSE Linux Enterprise Software Development Kit 12 SP1	kernel-docs >= 3.12.49-11.1 kernel-obs-build >= 3.12.49-11.2
SUSE Linux Enterprise Software Development Kit 12	kernel-docs >= 3.12.32-33.3 kernel-obs-build >= 3.12.32-33.1	Patchnames: SUSE-SLE-SDK-12-2015-21
SUSE Linux Enterprise Workstation Extension 12 SP1	kernel-default-extra >= 3.12.49-11.1
SUSE Linux Enterprise Workstation Extension 12	kernel-default-extra >= 3.12.32-33.1	Patchnames: SUSE-SLE-WE-12-2015-21