The SUSE Linux Enterprise 11 Service Pack 3 kernel was
updated to 3.0.82 and to fix various bugs and security
issues.
Following security issues were fixed: CVE-2013-1774: The
chase_port function in drivers/usb/serial/io_ti.c in the
Linux kernel allowed local users to cause a denial of
service (NULL pointer dereference and system crash) via an
attempted /dev/ttyUSB read or write operation on a
disconnected Edgeport USB serial converter.
CVE-2013-0160: Timing side channel on attacks were possible
on /dev/ptmx that could allow local attackers to predict
keypresses like e.g. passwords. This has been fixed again
by updating accessed/modified time on the pty devices in
resolution of 8 seconds, so that idle time detection can
still work.
CVE-2013-3222: The vcc_recvmsg function in net/atm/common.c
in the Linux kernel did not initialize a certain length
variable, which allowed local users to obtain sensitive
information from kernel stack memory via a crafted recvmsg
or recvfrom system call.
CVE-2013-3223: The ax25_recvmsg function in
net/ax25/af_ax25.c in the Linux kernel did not initialize a
certain data structure, which allowed local users to obtain
sensitive information from kernel stack memory via a
crafted recvmsg or recvfrom system call.
CVE-2013-3224: The bt_sock_recvmsg function in
net/bluetooth/af_bluetooth.c in the Linux kernel did not
properly initialize a certain length variable, which
allowed local users to obtain sensitive information from
kernel stack memory via a crafted recvmsg or recvfrom
system call.
CVE-2013-3225: The rfcomm_sock_recvmsg function in
net/bluetooth/rfcomm/sock.c in the Linux kernel did not
initialize a certain length variable, which allowed local
users to obtain sensitive information from kernel stack
memory via a crafted recvmsg or recvfrom system call.
CVE-2013-3227: The caif_seqpkt_recvmsg function in
net/caif/caif_socket.c in the Linux kernel did not
initialize a certain length variable, which allowed local
users to obtain sensitive information from kernel stack
memory via a crafted recvmsg or recvfrom system call.
CVE-2013-3228: The irda_recvmsg_dgram function in
net/irda/af_irda.c in the Linux kernel did not initialize a
certain length variable, which allowed local users to
obtain sensitive information from kernel stack memory via a
crafted recvmsg or recvfrom system call.
CVE-2013-3229: The iucv_sock_recvmsg function in
net/iucv/af_iucv.c in the Linux kernel did not initialize a
certain length variable, which allowed local users to
obtain sensitive information from kernel stack memory via a
crafted recvmsg or recvfrom system call.
CVE-2013-3231: The llc_ui_recvmsg function in
net/llc/af_llc.c in the Linux kernel did not initialize a
certain length variable, which allowed local users to
obtain sensitive information from kernel stack memory via a
crafted recvmsg or recvfrom system call.
CVE-2013-3232: The nr_recvmsg function in
net/netrom/af_netrom.c in the Linux kernel did not
initialize a certain data structure, which allowed local
users to obtain sensitive information from kernel stack
memory via a crafted recvmsg or recvfrom system call.
CVE-2013-3234: The rose_recvmsg function in
net/rose/af_rose.c in the Linux kernel did not initialize a
certain data structure, which allowed local users to obtain
sensitive information from kernel stack memory via a
crafted recvmsg or recvfrom system call.
CVE-2013-3235: net/tipc/socket.c in the Linux kernel did
not initialize a certain data structure and a certain
length variable, which allowed local users to obtain
sensitive information from kernel stack memory via a
crafted recvmsg or recvfrom system call.
CVE-2013-3076: The crypto API in the Linux kernel did not
initialize certain length variables, which allowed local
users to obtain sensitive information from kernel stack
memory via a crafted recvmsg or recvfrom system call,
related to the hash_recvmsg function in crypto/algif_hash.c
and the skcipher_recvmsg function in
crypto/algif_skcipher.c.
CVE-2013-1979: The scm_set_cred function in
include/net/scm.h in the Linux kernel used incorrect uid
and gid values during credentials passing, which allowed
local users to gain privileges via a crafted application.
A kernel information leak via tkill/tgkill was fixed.
Following non security bugs were fixed: S/390:
HyperV:
BTRFS:
XFS:
ALSA:
Direct Rendering Manager (DRM):
XEN:
Other:
x86, efi: retry ExitBootServices() on failure
(bnc#823386).
x86/efi: Fix dummy variable buffer allocation
(bnc#822080).
ext4: avoid hang when mounting non-journal filesystems
with orphan list (bnc#817377).
mm: compaction: Scan PFN caching KABI workaround (Fix
KABI breakage (bnc#825657)).
autofs4 - fix get_next_positive_subdir() (bnc#819523).
ocfs2: Add bits_wanted while calculating credits in
ocfs2_calc_extend_credits (bnc#822077).
writeback: Avoid needless scanning of b_dirty list
(bnc#819018).
writeback: Do not sort b_io list only because of block
device inode (bnc#819018).
re-enable io tracing (bnc#785901).
pciehp: Corrected the old mismatching DMI strings.
SUNRPC: Prevent an rpc_task wakeup race (bnc#825591).
tg3: Prevent system hang during repeated EEH errors
(bnc#822066).
scsi_dh_alua: multipath failover fails with error 15
(bnc#825696).
Do not switch camera on HP EB 8780 (bnc#797090).
Do not switch webcam for HP EB 8580w (bnc#797090).
mm: fixup compilation error due to an asm write through a
const pointer. (bnc#823795)
do not switch cam port on HP EliteBook 840 (bnc#822164).
net/sunrpc: xpt_auth_cache should be ignored when expired
(bnc#803320).
sunrpc/cache: ensure items removed from cache do not have
pending upcalls (bnc#803320).
sunrpc/cache: remove races with queuing an upcall
(bnc#803320).
sunrpc/cache: use cache_fresh_unlocked consistently and
correctly (bnc#803320).
KVM: x86: emulate movdqa (bnc#821070).
KVM: x86: emulator: add support for vector alignment
(bnc#821070).
KVM: x86: emulator: expand decode flags to 64 bits
(bnc#821070).
xhci - correct comp_mode_recovery_timer on return from
hibernate (bnc#808136).
md/raid10 enough fixes (bnc#773837).
lib/Makefile: Fix oid_registry build dependency
(bnc#823223).
Update config files: disable IP_PNP (bnc#822825)
Fix kABI breakage for addition of
snd_hda_bus.no_response_fallback (bnc#823597).
Disable efi pstore by default (bnc#804482 bnc#820172).
md: Fix problem with GET_BITMAP_FILE returning wrong
status (bnc#812974).
bnx2x: Fix bridged GSO for 57710/57711 chips (bnc#819610).
USB: xHCI: override bogus bulk wMaxPacketSize values
(bnc#823082).
BTUSB: Add MediaTek bluetooth MT76x0E support (bnc#797727
bnc#822340).
qlge: Update version to 1.00.00.32 (bnc#819195).
qlge: Fix ethtool autoneg advertising (bnc#819195).
qlge: Fix receive path to drop error frames (bnc#819195).
qlge: remove NETIF_F_TSO6 flag (bnc#819195).
remove init of dev->perm_addr in drivers (bnc#819195).
drivers/net: fix up function prototypes after __dev*
removals (bnc#819195).
qlge: remove __dev* attributes (bnc#819195).
drivers: ethernet: qlogic: qlge_dbg.c: Fixed a coding
style issue (bnc#819195).
cxgb4: Force uninitialized state if FW_ON_ADAPTER is <
FW_VERSION and we are the MASTER_PF (bnc#809130).
USB: UHCI: fix for suspend of virtual HP controller
(bnc#817035).
timer_list: Convert timer list to be a proper seq_file
(bnc#818047).
timer_list: Split timer_list_show_tickdevices
(bnc#818047).
sched: Fix /proc/sched_debug failure on very very large
systems (bnc#818047).
sched: Fix /proc/sched_stat failure on very very large
systems (bnc#818047).
reiserfs: fix spurious multiple-fill in
reiserfs_readdir_dentry (bnc#822722).
libfc: do not exch_done() on invalid sequence ptr
(bnc#810722).
netfilter: ip6t_LOG: fix logging of packet mark
(bnc#821930).
virtio_net: introduce VIRTIO_NET_HDR_F_DATA_VALID
(bnc#819655).
HWPOISON: fix misjudgement of page_action() for errors on
mlocked pages (Memory failure RAS (bnc#821799)).
HWPOISON: check dirty flag to match against clean page
(Memory failure RAS (bnc#821799)).
HWPOISON: change order of error_states elements (Memory
failure RAS (bnc#821799)).
mm: hwpoison: fix action_result() to print out
dirty/clean (Memory failure RAS (bnc#821799)).
mm: mmu_notifier: re-fix freed page still mapped in
secondary MMU (bnc#821052).
Do not switch webcams in some HP ProBooks to XHCI
(bnc#805804).
Do not switch BT on HP ProBook 4340 (bnc#812281).
mm: memory_dev_init make sure nmi watchdog does not
trigger while registering memory sections (bnc#804609,
bnc#820434).
mm: compaction: Restart compaction from near where it
left off
mm: compaction: cache if a pageblock was scanned and no
pages were isolated
mm: compaction: clear PG_migrate_skip based on compaction
and reclaim activity
mm: compaction: Scan PFN caching KABI workaround
mm: page_allocator: Remove first_pass guard
mm: vmscan: do not stall on writeback during memory
compaction Cache compaction restart points for faster
compaction cycles (bnc#816451)
download.novell.com/patch/finder/?keywords=9deafe882b5e3b5f0df9f5075f0d6114
download.novell.com/patch/finder/?keywords=bdd1cc737ed1a109b28b077184acad08
download.novell.com/patch/finder/?keywords=ddd472e1f756fe2a224c4a247ce90bef
bugzilla.novell.com/763968
bugzilla.novell.com/773837
bugzilla.novell.com/785901
bugzilla.novell.com/797090
bugzilla.novell.com/797727
bugzilla.novell.com/801427
bugzilla.novell.com/803320
bugzilla.novell.com/804482
bugzilla.novell.com/804609
bugzilla.novell.com/805804
bugzilla.novell.com/806976
bugzilla.novell.com/808015
bugzilla.novell.com/808136
bugzilla.novell.com/808837
bugzilla.novell.com/808855
bugzilla.novell.com/809130
bugzilla.novell.com/809895
bugzilla.novell.com/809975
bugzilla.novell.com/810722
bugzilla.novell.com/812281
bugzilla.novell.com/812332
bugzilla.novell.com/812526
bugzilla.novell.com/812974
bugzilla.novell.com/813604
bugzilla.novell.com/813922
bugzilla.novell.com/815356
bugzilla.novell.com/816451
bugzilla.novell.com/817035
bugzilla.novell.com/817377
bugzilla.novell.com/818047
bugzilla.novell.com/818371
bugzilla.novell.com/818465
bugzilla.novell.com/819018
bugzilla.novell.com/819195
bugzilla.novell.com/819523
bugzilla.novell.com/819610
bugzilla.novell.com/819655
bugzilla.novell.com/820172
bugzilla.novell.com/820434
bugzilla.novell.com/821052
bugzilla.novell.com/821070
bugzilla.novell.com/821235
bugzilla.novell.com/821799
bugzilla.novell.com/821859
bugzilla.novell.com/821930
bugzilla.novell.com/822066
bugzilla.novell.com/822077
bugzilla.novell.com/822080
bugzilla.novell.com/822164
bugzilla.novell.com/822340
bugzilla.novell.com/822431
bugzilla.novell.com/822722
bugzilla.novell.com/822825
bugzilla.novell.com/823082
bugzilla.novell.com/823223
bugzilla.novell.com/823342
bugzilla.novell.com/823386
bugzilla.novell.com/823597
bugzilla.novell.com/823795
bugzilla.novell.com/824159
bugzilla.novell.com/825037
bugzilla.novell.com/825591
bugzilla.novell.com/825657
bugzilla.novell.com/825696
bugzilla.novell.com/826186