Upstream information

CVE-2017-2636 at MITRE

Description

Race condition in drivers/tty/n_hdlc.c in the Linux kernel through 4.10.1 allows local users to gain privileges or cause a denial of service (double free) by setting the HDLC line discipline.

SUSE information

CVSS v2 Scores
  National Vulnerability Database SUSE
Base Score 7.15 6.02
Vector AV:L/AC:L/Au:N/C:C/I:C/A:C AV:L/AC:H/Au:S/C:C/I:C/A:C
Access Vector Local Local
Access Complexity Low High
Authentication None Single
Confidentiality Impact Complete Complete
Integrity Impact Complete Complete
Availability Impact Complete Complete
CVSS v3 Scores
  National Vulnerability Database
Base Score 7.8
Vector AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Access Vector Local
Access Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality Impact High
Integrity Impact High
Availability Impact High

This issue is currently rated as having important severity.

Note from the SUSE Security Team

This issue affects the SUSE Linux Enterprise 11 SP1 and newer codebases. Fixes are being prepared.

SUSE Bugzilla entries: 1027565 [RESOLVED / ], 1027575 [IN_PROGRESS], 1028372 [RESOLVED / DUPLICATE]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
Openstack Cloud Magnum Orchestration 7
  • kernel-default >= 4.4.49-92.14.1
Patchnames:
SUSE-OpenStack-Cloud-Magnum-Orchestration-7-2017-487
SUSE Linux Enterprise Build System Kit 12 SP1
  • kernel-zfcpdump >= 3.12.69-60.64.35.1
Patchnames:
SUSE-SLE-BSK-12-SP1-2017-485
SUSE Linux Enterprise Build System Kit 12 SP2
  • kernel-zfcpdump >= 4.4.49-92.14.1
Patchnames:
SUSE-SLE-BSK-12-SP2-2017-487
SUSE Linux Enterprise Desktop 12 SP1
  • kernel-default >= 3.12.69-60.64.35.1
  • kernel-default-devel >= 3.12.69-60.64.35.1
  • kernel-default-extra >= 3.12.69-60.64.35.1
  • kernel-devel >= 3.12.69-60.64.35.1
  • kernel-macros >= 3.12.69-60.64.35.1
  • kernel-source >= 3.12.69-60.64.35.1
  • kernel-syms >= 3.12.69-60.64.35.1
  • kernel-xen >= 3.12.69-60.64.35.1
  • kernel-xen-devel >= 3.12.69-60.64.35.1
Patchnames:
SUSE-SLE-DESKTOP-12-SP1-2017-485
SUSE Linux Enterprise Desktop 12 SP2
  • kernel-default >= 4.4.49-92.14.1
  • kernel-default-devel >= 4.4.49-92.14.1
  • kernel-default-extra >= 4.4.49-92.14.1
  • kernel-devel >= 4.4.49-92.14.1
  • kernel-macros >= 4.4.49-92.14.1
  • kernel-source >= 4.4.49-92.14.1
  • kernel-syms >= 4.4.49-92.14.1
Patchnames:
SUSE-SLE-DESKTOP-12-SP2-2017-487
SUSE Linux Enterprise High Availability 12 SP2
  • cluster-md-kmp-default >= 4.4.49-92.14.1
  • cluster-network-kmp-default >= 4.4.49-92.14.1
  • dlm-kmp-default >= 4.4.49-92.14.1
  • gfs2-kmp-default >= 4.4.49-92.14.1
  • kernel-default >= 4.4.49-92.14.1
  • ocfs2-kmp-default >= 4.4.49-92.14.1
Patchnames:
SUSE-SLE-HA-12-SP2-2017-487
SUSE Linux Enterprise Live Patching 12
  • kgraft-patch-3_12_69-60_64_35-default >= 1-2.1
  • kgraft-patch-3_12_69-60_64_35-xen >= 1-2.1
  • kgraft-patch-4_4_49-92_14-default >= 1-2.1
  • kgraft-patch-SLE12-SP1_Update_14 >= 1-2.1
  • kgraft-patch-SLE12-SP2_Update_6 >= 1-2.1
Patchnames:
SUSE-SLE-Live-Patching-12-2017-485
SUSE-SLE-Live-Patching-12-2017-487
SUSE Linux Enterprise Module for Public Cloud 12
  • kernel-ec2 >= 3.12.61-52.69.2
  • kernel-ec2-devel >= 3.12.61-52.69.2
  • kernel-ec2-extra >= 3.12.61-52.69.2
Patchnames:
SUSE-SLE-Module-Public-Cloud-12-2017-485
SUSE-SLE-Module-Public-Cloud-12-2017-486
SUSE Linux Enterprise Point of Sale 11 SP3
  • kernel-default >= 3.0.101-0.47.99.1
  • kernel-default-base >= 3.0.101-0.47.99.1
  • kernel-default-devel >= 3.0.101-0.47.99.1
  • kernel-ec2 >= 3.0.101-0.47.99.1
  • kernel-ec2-base >= 3.0.101-0.47.99.1
  • kernel-ec2-devel >= 3.0.101-0.47.99.1
  • kernel-pae >= 3.0.101-0.47.99.1
  • kernel-pae-base >= 3.0.101-0.47.99.1
  • kernel-pae-devel >= 3.0.101-0.47.99.1
  • kernel-source >= 3.0.101-0.47.99.1
  • kernel-syms >= 3.0.101-0.47.99.1
  • kernel-trace >= 3.0.101-0.47.99.1
  • kernel-trace-base >= 3.0.101-0.47.99.1
  • kernel-trace-devel >= 3.0.101-0.47.99.1
  • kernel-xen >= 3.0.101-0.47.99.1
  • kernel-xen-base >= 3.0.101-0.47.99.1
  • kernel-xen-devel >= 3.0.101-0.47.99.1
Patchnames:
sleposp3-kernel-13048
SUSE Linux Enterprise Server 11 SP3-LTSS
  • kernel-bigsmp >= 3.0.101-0.47.99.1
  • kernel-bigsmp-base >= 3.0.101-0.47.99.1
  • kernel-bigsmp-devel >= 3.0.101-0.47.99.1
  • kernel-default >= 3.0.101-0.47.99.1
  • kernel-default-base >= 3.0.101-0.47.99.1
  • kernel-default-devel >= 3.0.101-0.47.99.1
  • kernel-default-man >= 3.0.101-0.47.99.1
  • kernel-ec2 >= 3.0.101-0.47.99.1
  • kernel-ec2-base >= 3.0.101-0.47.99.1
  • kernel-ec2-devel >= 3.0.101-0.47.99.1
  • kernel-pae >= 3.0.101-0.47.99.1
  • kernel-pae-base >= 3.0.101-0.47.99.1
  • kernel-pae-devel >= 3.0.101-0.47.99.1
  • kernel-source >= 3.0.101-0.47.99.1
  • kernel-syms >= 3.0.101-0.47.99.1
  • kernel-trace >= 3.0.101-0.47.99.1
  • kernel-trace-base >= 3.0.101-0.47.99.1
  • kernel-trace-devel >= 3.0.101-0.47.99.1
  • kernel-xen >= 3.0.101-0.47.99.1
  • kernel-xen-base >= 3.0.101-0.47.99.1
  • kernel-xen-devel >= 3.0.101-0.47.99.1
Patchnames:
slessp3-kernel-13048
SUSE Linux Enterprise Server 11 SP4
  • kernel-bigmem >= 3.0.101-97.1
  • kernel-bigmem-base >= 3.0.101-97.1
  • kernel-bigmem-devel >= 3.0.101-97.1
  • kernel-default >= 3.0.101-97.1
  • kernel-default-base >= 3.0.101-97.1
  • kernel-default-devel >= 3.0.101-97.1
  • kernel-default-man >= 3.0.101-97.1
  • kernel-ec2 >= 3.0.101-97.1
  • kernel-ec2-base >= 3.0.101-97.1
  • kernel-ec2-devel >= 3.0.101-97.1
  • kernel-pae >= 3.0.101-97.1
  • kernel-pae-base >= 3.0.101-97.1
  • kernel-pae-devel >= 3.0.101-97.1
  • kernel-ppc64 >= 3.0.101-97.1
  • kernel-ppc64-base >= 3.0.101-97.1
  • kernel-ppc64-devel >= 3.0.101-97.1
  • kernel-source >= 3.0.101-97.1
  • kernel-syms >= 3.0.101-97.1
  • kernel-trace >= 3.0.101-97.1
  • kernel-trace-base >= 3.0.101-97.1
  • kernel-trace-devel >= 3.0.101-97.1
  • kernel-xen >= 3.0.101-97.1
  • kernel-xen-base >= 3.0.101-97.1
  • kernel-xen-devel >= 3.0.101-97.1
Patchnames:
slessp4-kernel-13047
SUSE Linux Enterprise Server 12 SP1
  • kernel-default >= 3.12.69-60.64.35.1
  • kernel-default-base >= 3.12.69-60.64.35.1
  • kernel-default-devel >= 3.12.69-60.64.35.1
  • kernel-default-man >= 3.12.69-60.64.35.1
  • kernel-devel >= 3.12.69-60.64.35.1
  • kernel-macros >= 3.12.69-60.64.35.1
  • kernel-source >= 3.12.69-60.64.35.1
  • kernel-syms >= 3.12.69-60.64.35.1
  • kernel-xen >= 3.12.69-60.64.35.1
  • kernel-xen-base >= 3.12.69-60.64.35.1
  • kernel-xen-devel >= 3.12.69-60.64.35.1
Patchnames:
SUSE-SLE-SERVER-12-SP1-2017-485
SUSE Linux Enterprise Server 12 SP2
  • kernel-default >= 4.4.49-92.14.1
  • kernel-default-base >= 4.4.49-92.14.1
  • kernel-default-devel >= 4.4.49-92.14.1
  • kernel-default-man >= 4.4.49-92.14.1
  • kernel-devel >= 4.4.49-92.14.1
  • kernel-macros >= 4.4.49-92.14.1
  • kernel-source >= 4.4.49-92.14.1
  • kernel-syms >= 4.4.49-92.14.1
Patchnames:
SUSE-SLE-SERVER-12-SP2-2017-487
SUSE Linux Enterprise Server 12-LTSS
  • kernel-default >= 3.12.61-52.69.2
  • kernel-default-base >= 3.12.61-52.69.2
  • kernel-default-devel >= 3.12.61-52.69.2
  • kernel-default-man >= 3.12.61-52.69.2
  • kernel-devel >= 3.12.61-52.69.2
  • kernel-macros >= 3.12.61-52.69.2
  • kernel-source >= 3.12.61-52.69.2
  • kernel-syms >= 3.12.61-52.69.1
  • kernel-xen >= 3.12.61-52.69.2
  • kernel-xen-base >= 3.12.61-52.69.2
  • kernel-xen-devel >= 3.12.61-52.69.2
  • kgraft-patch-3_12_61-52_69-default >= 1-2.3
  • kgraft-patch-3_12_61-52_69-xen >= 1-2.3
  • kgraft-patch-SLE12_Update_20 >= 1-2.3
Patchnames:
SUSE-SLE-SERVER-12-2017-486
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
  • kernel-default >= 4.4.49-92.14.1
  • kernel-default-base >= 4.4.49-92.14.1
  • kernel-default-devel >= 4.4.49-92.14.1
  • kernel-devel >= 4.4.49-92.14.1
  • kernel-macros >= 4.4.49-92.14.1
  • kernel-source >= 4.4.49-92.14.1
  • kernel-syms >= 4.4.49-92.14.1
Patchnames:
SUSE-SLE-RPI-12-SP2-2017-487
SUSE Linux Enterprise Software Development Kit 11 SP4
  • kernel-docs >= 3.0.101-97.3
Patchnames:
sdksp4-kernel-13047
SUSE Linux Enterprise Software Development Kit 12 SP1
  • kernel-docs >= 3.12.69-60.64.35.3
  • kernel-obs-build >= 3.12.69-60.64.35.1
Patchnames:
SUSE-SLE-SDK-12-SP1-2017-485
SUSE Linux Enterprise Software Development Kit 12 SP2
  • kernel-docs >= 4.4.49-92.14.3
  • kernel-obs-build >= 4.4.49-92.14.1
Patchnames:
SUSE-SLE-SDK-12-SP2-2017-487
SUSE Linux Enterprise Workstation Extension 12 SP1
  • kernel-default >= 3.12.69-60.64.35.1
  • kernel-default-extra >= 3.12.69-60.64.35.1
Patchnames:
SUSE-SLE-WE-12-SP1-2017-485
SUSE Linux Enterprise Workstation Extension 12 SP2
  • kernel-default >= 4.4.49-92.14.1
  • kernel-default-extra >= 4.4.49-92.14.1
Patchnames:
SUSE-SLE-WE-12-SP2-2017-487
SUSE Linux Enterprise for SAP 12
  • kernel-default >= 3.12.61-52.69.2
  • kernel-default-base >= 3.12.61-52.69.2
  • kernel-default-devel >= 3.12.61-52.69.2
  • kernel-devel >= 3.12.61-52.69.2
  • kernel-macros >= 3.12.61-52.69.2
  • kernel-source >= 3.12.61-52.69.2
  • kernel-syms >= 3.12.61-52.69.1
  • kernel-xen >= 3.12.61-52.69.2
  • kernel-xen-base >= 3.12.61-52.69.2
  • kernel-xen-devel >= 3.12.61-52.69.2
  • kgraft-patch-3_12_61-52_69-default >= 1-2.3
  • kgraft-patch-3_12_61-52_69-xen >= 1-2.3
  • kgraft-patch-SLE12_Update_20 >= 1-2.3
Patchnames:
SUSE-SLE-SAP-12-2017-486
SUSE Manager 2.1
  • kernel-bigsmp >= 3.0.101-0.47.99.1
  • kernel-bigsmp-base >= 3.0.101-0.47.99.1
  • kernel-bigsmp-devel >= 3.0.101-0.47.99.1
  • kernel-default >= 3.0.101-0.47.99.1
  • kernel-default-base >= 3.0.101-0.47.99.1
  • kernel-default-devel >= 3.0.101-0.47.99.1
  • kernel-default-man >= 3.0.101-0.47.99.1
  • kernel-ec2 >= 3.0.101-0.47.99.1
  • kernel-ec2-base >= 3.0.101-0.47.99.1
  • kernel-ec2-devel >= 3.0.101-0.47.99.1
  • kernel-source >= 3.0.101-0.47.99.1
  • kernel-syms >= 3.0.101-0.47.99.1
  • kernel-trace >= 3.0.101-0.47.99.1
  • kernel-trace-base >= 3.0.101-0.47.99.1
  • kernel-trace-devel >= 3.0.101-0.47.99.1
  • kernel-xen >= 3.0.101-0.47.99.1
  • kernel-xen-base >= 3.0.101-0.47.99.1
  • kernel-xen-devel >= 3.0.101-0.47.99.1
Patchnames:
sleman21-kernel-13048
SUSE Manager Proxy 2.1
  • kernel-bigsmp >= 3.0.101-0.47.99.1
  • kernel-bigsmp-base >= 3.0.101-0.47.99.1
  • kernel-bigsmp-devel >= 3.0.101-0.47.99.1
  • kernel-default >= 3.0.101-0.47.99.1
  • kernel-default-base >= 3.0.101-0.47.99.1
  • kernel-default-devel >= 3.0.101-0.47.99.1
  • kernel-ec2 >= 3.0.101-0.47.99.1
  • kernel-ec2-base >= 3.0.101-0.47.99.1
  • kernel-ec2-devel >= 3.0.101-0.47.99.1
  • kernel-source >= 3.0.101-0.47.99.1
  • kernel-syms >= 3.0.101-0.47.99.1
  • kernel-trace >= 3.0.101-0.47.99.1
  • kernel-trace-base >= 3.0.101-0.47.99.1
  • kernel-trace-devel >= 3.0.101-0.47.99.1
  • kernel-xen >= 3.0.101-0.47.99.1
  • kernel-xen-base >= 3.0.101-0.47.99.1
  • kernel-xen-devel >= 3.0.101-0.47.99.1
Patchnames:
slemap21-kernel-13048
SUSE OpenStack Cloud 5
  • kernel-bigsmp >= 3.0.101-0.47.99.1
  • kernel-bigsmp-base >= 3.0.101-0.47.99.1
  • kernel-bigsmp-devel >= 3.0.101-0.47.99.1
  • kernel-default >= 3.0.101-0.47.99.1
  • kernel-default-base >= 3.0.101-0.47.99.1
  • kernel-default-devel >= 3.0.101-0.47.99.1
  • kernel-ec2 >= 3.0.101-0.47.99.1
  • kernel-ec2-base >= 3.0.101-0.47.99.1
  • kernel-ec2-devel >= 3.0.101-0.47.99.1
  • kernel-source >= 3.0.101-0.47.99.1
  • kernel-syms >= 3.0.101-0.47.99.1
  • kernel-trace >= 3.0.101-0.47.99.1
  • kernel-trace-base >= 3.0.101-0.47.99.1
  • kernel-trace-devel >= 3.0.101-0.47.99.1
  • kernel-xen >= 3.0.101-0.47.99.1
  • kernel-xen-base >= 3.0.101-0.47.99.1
  • kernel-xen-devel >= 3.0.101-0.47.99.1
Patchnames:
sleclo50sp3-kernel-13048
openSUSE Leap 42.1
  • kernel-debug >= 4.1.39-53.1
  • kernel-debug-base >= 4.1.39-53.1
  • kernel-debug-base-debuginfo >= 4.1.39-53.1
  • kernel-debug-debuginfo >= 4.1.39-53.1
  • kernel-debug-debugsource >= 4.1.39-53.1
  • kernel-debug-devel >= 4.1.39-53.1
  • kernel-debug-devel-debuginfo >= 4.1.39-53.1
  • kernel-default >= 4.1.39-53.1
  • kernel-default-base >= 4.1.39-53.1
  • kernel-default-base-debuginfo >= 4.1.39-53.1
  • kernel-default-debuginfo >= 4.1.39-53.1
  • kernel-default-debugsource >= 4.1.39-53.1
  • kernel-default-devel >= 4.1.39-53.1
  • kernel-devel >= 4.1.39-53.1
  • kernel-docs >= 4.1.39-53.2
  • kernel-docs-html >= 4.1.39-53.2
  • kernel-docs-pdf >= 4.1.39-53.2
  • kernel-ec2 >= 4.1.39-53.1
  • kernel-ec2-base >= 4.1.39-53.1
  • kernel-ec2-base-debuginfo >= 4.1.39-53.1
  • kernel-ec2-debuginfo >= 4.1.39-53.1
  • kernel-ec2-debugsource >= 4.1.39-53.1
  • kernel-ec2-devel >= 4.1.39-53.1
  • kernel-macros >= 4.1.39-53.1
  • kernel-obs-build >= 4.1.39-53.1
  • kernel-obs-build-debugsource >= 4.1.39-53.1
  • kernel-obs-qa >= 4.1.39-53.1
  • kernel-pae >= 4.1.39-53.1
  • kernel-pae-base >= 4.1.39-53.1
  • kernel-pae-base-debuginfo >= 4.1.39-53.1
  • kernel-pae-debuginfo >= 4.1.39-53.1
  • kernel-pae-debugsource >= 4.1.39-53.1
  • kernel-pae-devel >= 4.1.39-53.1
  • kernel-pv >= 4.1.39-53.1
  • kernel-pv-base >= 4.1.39-53.1
  • kernel-pv-base-debuginfo >= 4.1.39-53.1
  • kernel-pv-debuginfo >= 4.1.39-53.1
  • kernel-pv-debugsource >= 4.1.39-53.1
  • kernel-pv-devel >= 4.1.39-53.1
  • kernel-source >= 4.1.39-53.1
  • kernel-source-vanilla >= 4.1.39-53.1
  • kernel-syms >= 4.1.39-53.1
  • kernel-vanilla >= 4.1.39-53.1
  • kernel-vanilla-debuginfo >= 4.1.39-53.1
  • kernel-vanilla-debugsource >= 4.1.39-53.1
  • kernel-vanilla-devel >= 4.1.39-53.1
  • kernel-xen >= 4.1.39-53.1
  • kernel-xen-base >= 4.1.39-53.1
  • kernel-xen-base-debuginfo >= 4.1.39-53.1
  • kernel-xen-debuginfo >= 4.1.39-53.1
  • kernel-xen-debugsource >= 4.1.39-53.1
  • kernel-xen-devel >= 4.1.39-53.1
Patchnames:
openSUSE-2017-419
openSUSE Leap 42.2
  • kernel-debug >= 4.4.57-18.3.1
  • kernel-debug-base >= 4.4.57-18.3.1
  • kernel-debug-base-debuginfo >= 4.4.57-18.3.1
  • kernel-debug-debuginfo >= 4.4.57-18.3.1
  • kernel-debug-debugsource >= 4.4.57-18.3.1
  • kernel-debug-devel >= 4.4.57-18.3.1
  • kernel-debug-devel-debuginfo >= 4.4.57-18.3.1
  • kernel-default >= 4.4.57-18.3.1
  • kernel-default-base >= 4.4.57-18.3.1
  • kernel-default-base-debuginfo >= 4.4.57-18.3.1
  • kernel-default-debuginfo >= 4.4.57-18.3.1
  • kernel-default-debugsource >= 4.4.57-18.3.1
  • kernel-default-devel >= 4.4.57-18.3.1
  • kernel-devel >= 4.4.57-18.3.1
  • kernel-docs >= 4.4.57-18.3.2
  • kernel-docs-html >= 4.4.57-18.3.2
  • kernel-docs-pdf >= 4.4.57-18.3.2
  • kernel-macros >= 4.4.57-18.3.1
  • kernel-obs-build >= 4.4.57-18.3.1
  • kernel-obs-build-debugsource >= 4.4.57-18.3.1
  • kernel-obs-qa >= 4.4.57-18.3.1
  • kernel-source >= 4.4.57-18.3.1
  • kernel-source-vanilla >= 4.4.57-18.3.1
  • kernel-syms >= 4.4.57-18.3.1
  • kernel-vanilla >= 4.4.57-18.3.1
  • kernel-vanilla-base >= 4.4.57-18.3.1
  • kernel-vanilla-base-debuginfo >= 4.4.57-18.3.1
  • kernel-vanilla-debuginfo >= 4.4.57-18.3.1
  • kernel-vanilla-debugsource >= 4.4.57-18.3.1
  • kernel-vanilla-devel >= 4.4.57-18.3.1
Patchnames:
openSUSE-2017-418


List of planned updates

The following information is the current evaluation information for this security issue. It might neither be accurate nor complete, Use at own risk.
Product(s) Source package
  • SUSE Linux Enterprise Server for SAP 11 SP3
kernel-source