SUSE-SA:2009:010 -- SUSE kernel local privilege escalationID: oval:org.secpod.oval:def:400066 | Date: (C)2012-01-31 (M)2024-02-19 |
Class: PATCH | Family: unix |
This update fixes several security issues and lots of bugs in the openSUSE 11.1 kernel. The Linux kernel on openSUSE 11.1 was updated to the stable version 2.6.27.19 and is also now at the same kernel as we are planning to ship with SUSE Linux Enterprise 11. This update introduces kABI changes, so all kernel module packages also need to be rebuilt and reapplied. Rebuilt NVIDIA KMPs already are provided by NVIDIA, ATI and Madwifi KMPs will follow soon. Following security issues are fixed: CVE-2008-5079: net/atm/svc.c in the ATM subsystem in the Linux kernel allows local users to cause a denial of service by making two calls to svc_listen for the same socket, and then reading a /proc/net/atm/*vc file, related to corruption of the vcc table. CVE-2008-5700: libata in the Linux kernel does not set minimum timeouts for SG_IO requests, which allows local users to cause a denial of service via multiple simultaneous invocations of an unspecified test program. CVE-2008-5702: Buffer underflow in the ibwdt_ioctl function in drivers/watchdog/ib700wdt.c in the Linux kernel might allow local users to have an unknown impact via a certain /dev/watchdog WDIOC_SETTIMEOUT IOCTL call. CVE-2009-0028: A minor signal handling vulnerability was fixed, where a child could send his parent a arbitrary signal. CVE-2009-0029: The ABI in the Linux kernel on s390, PowerPC, sparc64, and MIPS 64-bit platforms requires that a 32-bit argument in a 64-bit register was properly sign extended when sent from a user-mode application, but cannot verify this, which allows local users to cause a denial of service or possibly gain privileges via a crafted system call. CVE-2009-0031: Memory leak in the keyctl_join_session_keyring function in Linux kernel allows local users to cause a denial of service via unknown vectors related to a &qt missing kfree. &qt CVE-2009-0065: Buffer overflow in net/sctp/sm_statefuns.c in the Stream Control Transmission Protocol implementation in the Linux kernel allows remote attackers to have an unknown impact via an FWD-TSN chunk with a large stream ID. CVE-2009-0269:fs/ecryptfs/inode.c in the eCryptfs subsystem in the Linux kernel before allows local users to cause a denial of service , or possibly have unspecified other impact, via a readlink call that results in an error, leading to use of a -1 return value as an array index. CVE-2009-0322: drivers/firmware/dell_rbu.c in the Linux kernel allows local users to cause a denial of service via a read system call that specifies zero bytes from the image_type or packet_size file in /sys/devices/platform/dell_rbu/.