local privilege escalation, remote denial of in kernel

ID SUSE-SA:2011:001
Type suse
Reporter Suse
Modified 2011-01-03T15:33:10


The openSUSE 11.3 kernel was updated to fix various bugs and security issues. Following security issues have been fixed: CVE-2010-4347: A local user could inject ACPI code into the kernel via the world-writable "custom_debug" file, allowing local privilege escalation.


There is no known workaround, please install the update packages.