This Linux kernel update fixes various security issues and
bugs in the SUSE Linux Enterprise 10 SP4 kernel.
The following security issues have been fixed:
CVE-2013-0871: A race condition in ptrace(2) could be
used by local attackers to crash the kernel and/or execute
code in kernel context.
CVE-2013-0160: Avoid side channel information leaks
from the ptys via ptmx, which allowed local attackers to
guess keypresses.
CVE-2012-4530: Avoid leaving bprm->interp on the
stack which might have leaked information from the kernel
to userland attackers.
CVE-2013-0268: The msr_open function in
arch/x86/kernel/msr.c in the Linux kernel allowed local
users to bypass intended capability restrictions by
executing a crafted application as root, as demonstrated by
msr32.c.
CVE-2013-0216: The Xen netback functionality in the
Linux kernel allowed guest OS users to cause a denial of
service (loop) by triggering ring pointer corruption.
CVE-2013-0231: The pciback_enable_msi function in the
PCI backend driver
(drivers/xen/pciback/conf_space_capability_msi.c) in Xen
for the Linux kernel allowed guest OS users with PCI device
access to cause a denial of service via a large number of
kernel log messages. NOTE: some of these details are
obtained from third party information.
Also the following non-security bugs have been fixed:
S/390:
XEN:
Other:
download.novell.com/patch/finder/?keywords=2b51bf3e02179f8f70c7b2ada2571a2d
download.novell.com/patch/finder/?keywords=7cf4de409b28c5f187bc1e9f71ccd64f
download.novell.com/patch/finder/?keywords=ac5626f6e7f483c6dac1cc5fe253fcf9
download.novell.com/patch/finder/?keywords=ba0e542087a9075aed8c17a29d5f1cb8
download.novell.com/patch/finder/?keywords=dba6fc0fdae22199ec260695a6d2179e
bugzilla.novell.com/742111
bugzilla.novell.com/765687
bugzilla.novell.com/769093
bugzilla.novell.com/770980
bugzilla.novell.com/776370
bugzilla.novell.com/781485
bugzilla.novell.com/785101
bugzilla.novell.com/786013
bugzilla.novell.com/787272
bugzilla.novell.com/789012
bugzilla.novell.com/790236
bugzilla.novell.com/792697
bugzilla.novell.com/795075
bugzilla.novell.com/795335
bugzilla.novell.com/797175
bugzilla.novell.com/799611
bugzilla.novell.com/800280
bugzilla.novell.com/801178
bugzilla.novell.com/802642
bugzilla.novell.com/804154
bugzilla.novell.com/809692