local privilege escalation in kernel

2010-09-2316:37:53

lists.opensuse.org

0.003 Low

EPSS

Percentile

64.6%

JSON

This update of the openSUSE 11.3 kernel fixes two local root exploits, various other security issues and some bugs. Following security issues are fixed by this update: CVE-2010-3301: Mismatch between 32bit and 64bit register usage in the system call entry path could be used by local attackers to gain root privileges. This problem only affects x86_64 kernels. CVE-2010-3081: Incorrect buffer handling in the biarch-compat buffer handling could be used by local attackers to gain root privileges. This problem affects foremost x86_64, or potentially other biarch platforms, like PowerPC and S390x. CVE-2010-3084: A buffer overflow in the ETHTOOL_GRXCLSRLALL code could be used to crash the kernel or potentially execute code. CVE-2010-2955: A kernel information leak via the WEXT ioctl was fixed. CVE-2010-2960: The keyctl_session_to_parent function in security/keys/keyctl.c in the Linux kernel expects that a certain parent session keyring exists, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a KEYCTL_SESSION_TO_PARENT argument to the keyctl function. CVE-2010-3080: A double free in an alsa error path was fixed, which could lead to kernel crashes. CVE-2010-3079: Fixed a ftrace NULL pointer dereference problem which could lead to kernel crashes. CVE-2010-3298: Fixed a kernel information leak in the net/usb/hso driver. CVE-2010-3296: Fixed a kernel information leak in the cxgb3 driver. CVE-2010-3297: Fixed a kernel information leak in the net/eql driver.

Solution

There is no known workaround, please install the update packages.

OSVersionArchitecturePackageVersionFilename
openSUSE11.3x86_64kernel-debug-devel< 2.6.34.7-0.3.1kernel-debug-devel-2.6.34.7-0.3.1.x86_64.rpm
openSUSE11.3i586kernel-pae< 2.6.34.7-0.3.1kernel-pae-2.6.34.7-0.3.1.i586.rpm
openSUSE11.3i586kernel-trace-base< 2.6.34.7-0.3.1kernel-trace-base-2.6.34.7-0.3.1.i586.rpm
openSUSE11.3x86_64kernel-trace-base< 2.6.34.7-0.3.1kernel-trace-base-2.6.34.7-0.3.1.x86_64.rpm
openSUSE11.3i586kernel-ec2-devel< 2.6.34.7-0.3.1kernel-ec2-devel-2.6.34.7-0.3.1.i586.rpm
openSUSE11.3x86_64kernel-debug< 2.6.34.7-0.3.1kernel-debug-2.6.34.7-0.3.1.x86_64.rpm
openSUSE11.3i586kernel-desktop< 2.6.34.7-0.3.1kernel-desktop-2.6.34.7-0.3.1.i586.rpm
openSUSE11.3x86_64kernel-vanilla-devel< 2.6.34.7-0.3.1kernel-vanilla-devel-2.6.34.7-0.3.1.x86_64.rpm
openSUSE11.3noarchkernel-source< 2.6.34.7-0.3.1kernel-source-2.6.34.7-0.3.1.noarch.rpm
openSUSE11.3i586kernel-debug< 2.6.34.7-0.3.1kernel-debug-2.6.34.7-0.3.1.i586.rpm

OS	Version	Architecture	Package	Version	Filename
openSUSE	11.3	x86_64	kernel-debug-devel	< 2.6.34.7-0.3.1	kernel-debug-devel-2.6.34.7-0.3.1.x86_64.rpm
openSUSE	11.3	i586	kernel-pae	< 2.6.34.7-0.3.1	kernel-pae-2.6.34.7-0.3.1.i586.rpm
openSUSE	11.3	i586	kernel-trace-base	< 2.6.34.7-0.3.1	kernel-trace-base-2.6.34.7-0.3.1.i586.rpm
openSUSE	11.3	x86_64	kernel-trace-base	< 2.6.34.7-0.3.1	kernel-trace-base-2.6.34.7-0.3.1.x86_64.rpm
openSUSE	11.3	i586	kernel-ec2-devel	< 2.6.34.7-0.3.1	kernel-ec2-devel-2.6.34.7-0.3.1.i586.rpm
openSUSE	11.3	x86_64	kernel-debug	< 2.6.34.7-0.3.1	kernel-debug-2.6.34.7-0.3.1.x86_64.rpm
openSUSE	11.3	i586	kernel-desktop	< 2.6.34.7-0.3.1	kernel-desktop-2.6.34.7-0.3.1.i586.rpm
openSUSE	11.3	x86_64	kernel-vanilla-devel	< 2.6.34.7-0.3.1	kernel-vanilla-devel-2.6.34.7-0.3.1.x86_64.rpm
openSUSE	11.3	noarch	kernel-source	< 2.6.34.7-0.3.1	kernel-source-2.6.34.7-0.3.1.noarch.rpm
openSUSE	11.3	i586	kernel-debug	< 2.6.34.7-0.3.1	kernel-debug-2.6.34.7-0.3.1.i586.rpm