I have both LEAP and 13.2 (on different computers) and was wondering when this patch will be released: https://threatpost.com/serious-linux-kernel-vulnerability-patched/115923/
Hi
You can search on the CVE reference (embargo only lifted today) in bugzilla to see what it’s status is (and add yourself to the email list?);
https://bugzilla.opensuse.org/show_bug.cgi?id=CVE-2016-0728
nothing ??
Hi
I got the SLE 12 and 12 SP1 updates overnight here…
I see it’s done for Leap, maybe some extra checks needed;
It seems to be sitting in the test repo, probably waiting for some test reports.
The kernel update lists the bug 962075 for this problem.
It also fixes several other bugs. Expect to see it real soon now.
It’s in the current (today: 29th January 2016) kernel patch:
- Name: openSUSE-2016-116
- Build date: Fr 29 Jan 2016 10:21:52 CET
The Linux kernel for openSUSE Leap 42.1 was updated to the 4.1.15 stable
release, and also includes security and bugfixes.
Following security bugs were fixed:
- CVE-2016-0728: A reference leak in keyring handling with
join_session_keyring() could lead to local attackers gain root
privileges. (bsc#962075).