openSUSE-SU-2010:0933-1 (critical): SLE11 SP1

openSUSE Security Update: SLE11 SP1 ______________________________________________________________________________ Announcement ID: openSUSE-SU-2010:0933-1 Rating: critical References: #564324 #573330 #603738 #609196 #612729 #623307 #624850 #629901 #629908 #638860 #639261 #640278 #643249 #644219 #644350 #644373 #646045 #647392 #647497 #647775 #648308 #649231 #649257 #649820 #650109 #650111 #650113 #650116 #650128 Affected Products: SLE 11 SERVER Unsupported Extras ______________________________________________________________________________ An update that contains security fixes can now be installed. Description: This update of the SUSE Linux Enterprise Server 11 SP1 kernel brings the kernel to 2.6.32.24 and fixes some critical security bugs and other non-security bugs. Following security bugs were fixed: CVE-2010-3865: A iovec integer overflow in RDS sockets was fixed which could lead to local attackers gaining kernel privileges. CVE-2010-3904: A local privilege escalation in RDS sockets allowed local attackers to gain privileges. Please note that the net/rds socket protocol module only lives in the -extra kernel package, which is not installed by default on the SUSE Linux Enterprise Server 11. CVE-2010-2963: A problem in the compat ioctl handling in video4linux allowed local attackers with a video device plugged in to gain privileges on x86_64 systems. Special Instructions and Notes: Please reboot the system after installing this update. Package List: - SLE 11 SERVER Unsupported Extras (i586 ia64 ppc64 s390x x86_64): kernel-default-extra-2.6.32.24-0.2.1 - SLE 11 SERVER Unsupported Extras (i586 x86_64): kernel-xen-extra-2.6.32.24-0.2.1 - SLE 11 SERVER Unsupported Extras (ppc64): kernel-ppc64-extra-2.6.32.24-0.2.1 - SLE 11 SERVER Unsupported Extras (i586): kernel-pae-extra-2.6.32.24-0.2.1 References: https://bugzilla.novell.com/564324 https://bugzilla.novell.com/573330 https://bugzilla.novell.com/603738 https://bugzilla.novell.com/609196 https://bugzilla.novell.com/612729 https://bugzilla.novell.com/623307 https://bugzilla.novell.com/624850 https://bugzilla.novell.com/629901 https://bugzilla.novell.com/629908 https://bugzilla.novell.com/638860 https://bugzilla.novell.com/639261 https://bugzilla.novell.com/640278 https://bugzilla.novell.com/643249 https://bugzilla.novell.com/644219 https://bugzilla.novell.com/644350 https://bugzilla.novell.com/644373 https://bugzilla.novell.com/646045 https://bugzilla.novell.com/647392 https://bugzilla.novell.com/647497 https://bugzilla.novell.com/647775 https://bugzilla.novell.com/648308 https://bugzilla.novell.com/649231 https://bugzilla.novell.com/649257 https://bugzilla.novell.com/649820 https://bugzilla.novell.com/650109 https://bugzilla.novell.com/650111 https://bugzilla.novell.com/650113 https://bugzilla.novell.com/650116 https://bugzilla.novell.com/650128