kernel is vulnerable to denial of service. A NULL pointer dereference flaws were found in the r128 driver in the Linux kernel. Checks to test if the Concurrent Command Engine state was initialized were missing in private IOCTL functions. An attacker could use these flaws to cause a local denial of service or escalate their privileges.
article.gmane.org/gmane.linux.kernel/892259
git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7dc482dfeeeefcfd000d4271c4626937406756d7
git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=7dc482dfeeeefcfd000d4271c4626937406756d7
kbase.redhat.com/faq/docs/DOC-17866
kbase.redhat.com/faq/docs/DOC-18042
lists.opensuse.org/opensuse-security-announce/2009-12/msg00002.html
lists.opensuse.org/opensuse-security-announce/2009-12/msg00005.html
lists.opensuse.org/opensuse-security-announce/2010-02/msg00005.html
lists.opensuse.org/opensuse-security-announce/2010-02/msg00007.html
lists.vmware.com/pipermail/security-announce/2010/000082.html
secunia.com/advisories/36707
secunia.com/advisories/37909
secunia.com/advisories/38794
secunia.com/advisories/38834
www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.31-git11.log
www.mandriva.com/security/advisories?name=MDVSA-2010:088
www.mandriva.com/security/advisories?name=MDVSA-2010:198
www.openwall.com/lists/oss-security/2009/10/19/1
www.openwall.com/lists/oss-security/2009/10/19/3
www.redhat.com/docs/en-US/Red_Hat_Enterprise_MRG/
www.redhat.com/security/updates/classification/#important
www.redhat.com/support/errata/RHSA-2009-1670.html
www.redhat.com/support/errata/RHSA-2009-1671.html
www.redhat.com/support/errata/RHSA-2010-0882.html
www.securityfocus.com/bid/36824
www.ubuntu.com/usn/usn-864-1
www.vupen.com/english/advisories/2010/0528
access.redhat.com/errata/RHSA-2009:1540
access.redhat.com/errata/RHSA-2009:1670
access.redhat.com/errata/RHSA-2009:1671
access.redhat.com/errata/RHSA-2010:0882
access.redhat.com/security/cve/CVE-2009-3620
bugzilla.redhat.com/show_bug.cgi?id=529597
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6763
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9891
rhn.redhat.com/errata/RHSA-2009-1540.html
www.redhat.com/archives/fedora-package-announce/2009-November/msg00190.html