Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 538
Alerts This Week
Warning Icon 1 538

openSUSE 11.4: 2012:0236-1 Important Kernel Security Fix

opensuse
Calendar Grey February 9, 2012
Dist Opensuse Esm H88
New patch addresses 15 security flaws, including a critical kernel issue in openSUSE. Urgent measures advised for protection.
An update that solves 15 vulnerabilities and has four fixes An update that solves 15 vulnerabilities and has four fixes An update that solves 15 vulnerabilities and has four fixes ...

Description

The openSUSE 11.4 kernel was updated to fix bugs and

security issues.

Following security issues have been fixed: CVE-2011-4604:

If root does read() on a specific socket, it's possible to

corrupt (kernel) memory over network, with an ICMP packet,

if the B.A.T.M.A.N. mesh protocol is used.

CVE-2011-2699: Fernando Gont discovered that the IPv6 stack

used predictable fragment identification numbers. A remote

attacker could exploit this to exhaust network resources,

leading to a denial of service.

CVE-2011-1173: A kernel information leak via ip6_tables was

fixed.

CVE-2011-1172: A kernel information leak via ip6_tables

netfilter was fixed.

CVE-2011-1171: A kernel information leak via ip_tables was

fixed.

CVE-2011-1170: A kernel information leak via arp_tables was

fixed.

CVE-2011-1080: A kernel information leak via netfilter was

fixed.

CVE-2011-2213: The inet_diag_bc_audit function in

net/ipv4/inet_diag.c in the Linux...

Read the Full Advisory

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE 11.4:

zypper in -t patch kernel-5606

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE 11.4 (i586 x86_64) [New Version: 2.6.37.6]:

kernel-debug-2.6.37.6-0.11.1

kernel-debug-base-2.6.37.6-0.11.1

kernel-debug-devel-2.6.37.6-0.11.1

kernel-default-2.6.37.6-0.11.1

kernel-default-base-2.6.37.6-0.11.1

kernel-default-devel-2.6.37.6-0.11.1

kernel-desktop-2.6.37.6-0.11.1

kernel-desktop-base-2.6.37.6-0.11.1

kernel-desktop-devel-2.6.37.6-0.11.1

kernel-ec2-2.6.37.6-0.11.1

kernel-ec2-base-2.6.37.6-0.11.1

kernel-ec2-devel-2.6.37.6-0.11.1

kernel-ec2-extra-2.6.37.6-0.11.1

kernel-syms-2.6.37.6-0.11.1

kernel-trace-2.6.37.6-0.11.1

kernel-trace-base-2.6.37.6-0.11.1

kernel-trace-devel-2.6.37.6-0.11.1

kernel-vanilla-2.6.37.6-0.11.1

kernel-vanilla-base-2.6.37.6-0.11.1

kernel-vanilla-devel-2.6.37.6-0.11.1

kernel-xen-2.6.37.6-0.11.1

kernel-xen-base-2.6.37.6-0.11.1

kernel-xen-devel-2.6.37.6-0.11.1

preload-kmp-default-1.2_k2.6.37.6_0.11-6.7.28

preload-kmp-desktop-1.2_k2.6.37.6_0.11-6.7.28

- openSUSE 11.4 (noarch) [New Version: 2.6.37.6]:

kernel-devel-2.6.37.6-0.11.1

kernel-docs-2.6.37.6-0.11.1

kernel-source-2.6.37.6...

Read the Full Advisory

References

https://www.suse.com/security/cve/CVE-2011-1080.html

https://www.suse.com/security/cve/CVE-2011-1170.html

https://www.suse.com/security/cve/CVE-2011-1171.html

https://www.suse.com/security/cve/CVE-2011-1172.html

https://www.suse.com/security/cve/CVE-2011-1173.html

https://www.suse.com/security/cve/CVE-2011-1770.html

https://www.suse.com/security/cve/CVE-2011-2203.html

https://www.suse.com/security/cve/CVE-2011-2213.html

https://www.suse.com/security/cve/CVE-2011-2534.html

https://www.suse.com/security/cve/CVE-2011-2699.html

https://www.suse.com/security/cve/CVE-2011-2723.html

https://www.suse.com/security/cve/CVE-2011-2898.html

https://www.suse.com/security/cve/CVE-2011-4081.html

https://www.suse.com/security/cve/CVE-2011-4087.html

https://www.suse.com/security/cve/CVE-2011-4604.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2012:0236-1
Rating: important
Affected Products: openSUSE 11.4

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.