Alerts This Week
Warning Icon 1 626
Alerts This Week
Warning Icon 1 626

openSUSE 12.2 Critical Kernel Patches Released on December 2, 2012

opensuse
Calendar Grey October 12, 2012
Dist Opensuse Esm H88
This significant software patch for Fedora resolves three major security flaws and boosts overall performance.
An update that solves two vulnerabilities and has 12 fixes is now available.

Description

This kernel update to 3.4.11 fixes various bugs and

security issues.

The changes up to 3.4.11 contain both security and bugfixes

and are not explicitly listed here.

Following security issues were fixed: CVE-2012-3520: Force

passing credentials, otherwise local services could be

fooled to assume requests coming from root.

CVE-2012-3412: Do not allow extreme TSO parameters in the

sfc driver and tcp stack.

Following non-security bugs were fixed:

- nbd: clear waiting_queue on shutdown (bnc#778630).

- NFS: avoid warning from nfs_drop_nlink (bnc#780624).

- net: do not disable sg for packets requiring no checksum

(bnc#774859).

- sfc: Fix maximum number of TSO segments and minimum TX

queue size (bnc#774523 CVE-2012-3412).

- net: Allow driver to limit number of GSO segments per skb

(bnc#774523 CVE-2012-3412).

- drm/nouveau: fix booting with plymouth + dumb support

(bnc#771392).

- memcg: warn on deeper hierarchies with...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory important kernel fixes bugfix openSUSE cve

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE 12.2:

zypper in -t patch openSUSE-2012-700

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE 12.2 (i586 x86_64):

kernel-default-3.4.11-2.16.1

kernel-default-base-3.4.11-2.16.1

kernel-default-base-debuginfo-3.4.11-2.16.1

kernel-default-debuginfo-3.4.11-2.16.1

kernel-default-debugsource-3.4.11-2.16.1

kernel-default-devel-3.4.11-2.16.1

kernel-default-devel-debuginfo-3.4.11-2.16.1

kernel-syms-3.4.11-2.16.1

- openSUSE 12.2 (i686 x86_64):

kernel-debug-3.4.11-2.16.1

kernel-debug-base-3.4.11-2.16.1

kernel-debug-base-debuginfo-3.4.11-2.16.1

kernel-debug-debuginfo-3.4.11-2.16.1

kernel-debug-debugsource-3.4.11-2.16.1

kernel-debug-devel-3.4.11-2.16.1

kernel-debug-devel-debuginfo-3.4.11-2.16.1

kernel-desktop-3.4.11-2.16.1

kernel-desktop-base-3.4.11-2.16.1

kernel-desktop-base-debuginfo-3.4.11-2.16.1

kernel-desktop-debuginfo-3.4.11-2.16.1

kernel-desktop-debugsource-3.4.11-2.16.1

kernel-desktop-devel-3.4.11-2.16.1

kernel-desktop-devel-debuginfo-3.4.11-2.16.1

kernel-ec2-3.4.11-2.16.1

kernel-ec2-base-3.4.11-2.16.1

kernel-ec2-base-debuginfo-3.4.11-2.16.1

kernel-ec2-debuginfo-3.4.11-2.16.1

kernel-ec2-debugsource-...

Read the Full Advisory

References

https://www.suse.com/security/cve/CVE-2012-3412.html

https://www.suse.com/security/cve/CVE-2012-3520.html

--

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2012:1330-1
Rating: important
Affected Products: openSUSE 12.2 le.

Topics%20covered

Topics Covered

security advisory important kernel fixes bugfix openSUSE cve

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here