SUSE-SA:2010:041 -- SUSE kernel local privilege escalationID: oval:org.secpod.oval:def:400055 | Date: (C)2012-01-31 (M)2024-01-02 |
Class: PATCH | Family: unix |
The openSUSE 11.3 kernel was updated to version 2.6.34.7. The update fixes lots of bugs and security issues. A major regression in handling some USB Input devices introduced by the previous update was fixed. We also fixed a lot of bugs in the ATH5K wireless driver. Following security issues were fixed: CVE-2010-3078: A XFS stack memory information disclosure was fixed. CVE-2010-2954: A NULL pointer dereference in the IRDA stack was fixed, which could lead to kernel crashes. CVE-2010-2959: A local privilege escalation in the CAN bus protocol module can_bcm was fixed. CVE-2010-2942: Several memory leaks in the net scheduling code were fixed. CVE-2010-2803: Fixed kernel memory information leaks from DRM ioctls.