Security update for the Linux Kernel (Live Patch 5 for SLE 12 SP2)
Details
This update for the Linux Kernel 4.4.49-92_11 fixes several issues.
The following security issues were fixed:
CVE-2017-17712: The raw_sendmsg() function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges (bsc#1073230).
CVE-2017-16939: The XFRM dump policy implementation allowed local users to gain privileges or cause a denial of service (use-after-free) via a crafted SORCVBUF setsockopt system call in conjunction with XFRMMSG_GETPOLICY Netlink messages (bsc#1069708).