openSUSE-SU-2010:0902-1 (critical): kernel: security and bugfix update.

27 Oct 2010

      openSUSE Security Update: kernel: security and bugfix update.
______________________________________________________________________________

Announcement ID:    openSUSE-SU-2010:0902-1
Rating:             critical
References:         #564324 #573330 #643477 #645066 #646045 #647392 

Affected Products:
                    openSUSE 11.3
______________________________________________________________________________

   An update that contains security fixes can now be
   installed. It includes one version update.

Description:

   This update of the openSUSE 11.3 Linux kernel fixes two
   critical security issues and some bugs.

   Following security issues were fixed: CVE-2010-3904: A
   local privilege escalation in RDS sockets allowed local
   attackers to gain privileges.

   CVE-2010-2963: A problem in the compat ioctl handling in
   video4linux allowed local attackers with a video device
   plugged in to gain privileges on x86_64 systems.

Special Instructions and Notes:

   Please reboot the system after installing this update.

Patch Instructions:

   To install this openSUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - openSUSE 11.3:

      zypper in -t patch kernel-3396

   To bring your system up-to-date, use "zypper patch".

Package List:

   - openSUSE 11.3 (i586 x86_64) [New Version: 2.6.34.7]:

      kernel-debug-2.6.34.7-0.5.1
      kernel-debug-base-2.6.34.7-0.5.1
      kernel-debug-devel-2.6.34.7-0.5.1
      kernel-default-2.6.34.7-0.5.1
      kernel-default-base-2.6.34.7-0.5.1
      kernel-default-devel-2.6.34.7-0.5.1
      kernel-desktop-2.6.34.7-0.5.1
      kernel-desktop-base-2.6.34.7-0.5.1
      kernel-desktop-devel-2.6.34.7-0.5.1
      kernel-ec2-2.6.34.7-0.5.1
      kernel-ec2-base-2.6.34.7-0.5.1
      kernel-ec2-devel-2.6.34.7-0.5.1
      kernel-ec2-extra-2.6.34.7-0.5.1
      kernel-syms-2.6.34.7-0.5.1
      kernel-trace-2.6.34.7-0.5.1
      kernel-trace-base-2.6.34.7-0.5.1
      kernel-trace-devel-2.6.34.7-0.5.1
      kernel-vanilla-2.6.34.7-0.5.1
      kernel-vanilla-base-2.6.34.7-0.5.1
      kernel-vanilla-devel-2.6.34.7-0.5.1
      kernel-xen-2.6.34.7-0.5.1
      kernel-xen-base-2.6.34.7-0.5.1
      kernel-xen-devel-2.6.34.7-0.5.1
      preload-kmp-default-1.1_k2.6.34.7_0.5-19.1.8
      preload-kmp-desktop-1.1_k2.6.34.7_0.5-19.1.8

   - openSUSE 11.3 (noarch) [New Version: 2.6.34.7]:

      kernel-devel-2.6.34.7-0.5.1
      kernel-source-2.6.34.7-0.5.1
      kernel-source-vanilla-2.6.34.7-0.5.1

   - openSUSE 11.3 (i586) [New Version: 2.6.34.7]:

      kernel-pae-2.6.34.7-0.5.1
      kernel-pae-base-2.6.34.7-0.5.1
      kernel-pae-devel-2.6.34.7-0.5.1
      kernel-vmi-2.6.34.7-0.5.1
      kernel-vmi-base-2.6.34.7-0.5.1
      kernel-vmi-devel-2.6.34.7-0.5.1

References:

   https://bugzilla.novell.com/564324
   https://bugzilla.novell.com/573330
   https://bugzilla.novell.com/643477
   https://bugzilla.novell.com/645066
   https://bugzilla.novell.com/646045
   https://bugzilla.novell.com/647392

openSUSE-SU-2010:0902-1 (critical): kernel: security and bugfix update.

opensuse-security＠opensuse.org