This update of the openSUSE 11.3 kernel fixes two local root exploits, various other security issues and some bugs. Following security issues are fixed by this update: CVE-2010-3301: Mismatch between 32bit and 64bit register usage in the system call entry path could be used by local attackers to gain root privileges. This problem only affects x86_64 kernels. CVE-2010-3081: Incorrect buffer handling in the biarch-compat buffer handling could be used by local attackers to gain root privileges. This problem affects foremost x86_64, or potentially other biarch platforms, like PowerPC and S390x. CVE-2010-3084: A buffer overflow in the ETHTOOL_GRXCLSRLALL code could be used to crash the kernel or potentially execute code. CVE-2010-2955: A kernel information leak via the WEXT ioctl was fixed. CVE-2010-2960: The keyctl_session_to_parent function in security/keys/keyctl.c in the Linux kernel expects that a certain parent session keyring exists, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a KEYCTL_SESSION_TO_PARENT argument to the keyctl function. CVE-2010-3080: A double free in an alsa error path was fixed, which could lead to kernel crashes. CVE-2010-3079: Fixed a ftrace NULL pointer dereference problem which could lead to kernel crashes. CVE-2010-3298: Fixed a kernel information leak in the net/usb/hso driver. CVE-2010-3296: Fixed a kernel information leak in the cxgb3 driver. CVE-2010-3297: Fixed a kernel information leak in the net/eql driver.
There is no known workaround, please install the update packages.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
openSUSE | 11.3 | x86_64 | kernel-debug-devel | <Β 2.6.34.7-0.3.1 | kernel-debug-devel-2.6.34.7-0.3.1.x86_64.rpm |
openSUSE | 11.3 | i586 | kernel-pae | <Β 2.6.34.7-0.3.1 | kernel-pae-2.6.34.7-0.3.1.i586.rpm |
openSUSE | 11.3 | i586 | kernel-trace-base | <Β 2.6.34.7-0.3.1 | kernel-trace-base-2.6.34.7-0.3.1.i586.rpm |
openSUSE | 11.3 | x86_64 | kernel-trace-base | <Β 2.6.34.7-0.3.1 | kernel-trace-base-2.6.34.7-0.3.1.x86_64.rpm |
openSUSE | 11.3 | i586 | kernel-ec2-devel | <Β 2.6.34.7-0.3.1 | kernel-ec2-devel-2.6.34.7-0.3.1.i586.rpm |
openSUSE | 11.3 | x86_64 | kernel-debug | <Β 2.6.34.7-0.3.1 | kernel-debug-2.6.34.7-0.3.1.x86_64.rpm |
openSUSE | 11.3 | i586 | kernel-desktop | <Β 2.6.34.7-0.3.1 | kernel-desktop-2.6.34.7-0.3.1.i586.rpm |
openSUSE | 11.3 | x86_64 | kernel-vanilla-devel | <Β 2.6.34.7-0.3.1 | kernel-vanilla-devel-2.6.34.7-0.3.1.x86_64.rpm |
openSUSE | 11.3 | noarch | kernel-source | <Β 2.6.34.7-0.3.1 | kernel-source-2.6.34.7-0.3.1.noarch.rpm |
openSUSE | 11.3 | i586 | kernel-debug | <Β 2.6.34.7-0.3.1 | kernel-debug-2.6.34.7-0.3.1.i586.rpm |