kernel: security and bugfix update
The openSUSE 11.4 kernel was updated to fix
various bugs and security issues.
This is the final update of the 2.6.37 kernel of openSUSE 11.4.
-
Submitted by
Jeff Mahoney (jeff_mahoney)
- Reboot is suggested
Fixed bugs
bnc#717749
VUL-1: CVE-2011-3359: kernel: b43 allocates receive buffers big enough for max frame len + offset
bnc#769896
VUL-0: CVE-2012-3375: kernel: crash in epoll()
bnc#653260
VUL-1: kernel: remote DoS in X.25
bnc#758260
VUL-1: CVE-2012-2123: kernel: fcaps: clear the same personality flags as suid when fcaps are used
bnc#765102
VUL-1: CVE-2012-6638: kernel: denial of service via specially forged TCP packets (SYN+FIN)
bnc#765320
VUL-1: CVE-2012-2136: kernel: data_len not validated before allocating skb in sock_alloc_send_pskb()
bnc#749569
VUL-1: CVE-2012-1090: kernel: cifs: dentry refcount leak when opening a FIFO on lookup leads to panic on unmount
bnc#756840
BUG: unable to handle kernel paging request at 000000003b91bbac
bnc#707332
VUL-1: kernel: si4713-i2c: avoid potential buffer overflow on si4713
bnc#756203
unable to handle kernel paging request (task_rq_lock)
bnc#711941
VUL-1: kernel: staging: comedi: fix infoleak to userspace
bnc#713430
VUL-1: CVE-2011-2928: kernel: ZERO_SIZE_PTR dereference for long symlinks in Be FS
bnc#740745
VUL-0: CVE-2012-0044: kernel: integer overflow in drm_mode_dirtyfb_ioctl()
bnc#760902
VUL-1: CVE-2012-2319: kernel: hfsplus: mounting crafted filesystem can cause code execution
bnc#689860
kernel BUG at linux-2.6.37/fs/notify/mark.c:140
bnc#703410
VUL-1: kernel: nl80211: missing check for valid SSID size in scan operations
bnc#750079
VUL-0: CVE-2012-1097: kernel: null pointer dereference on readonly regsets
bnc#747038
fscache 2 GB file size limitation
bnc#726600
VUL-1: kernel: xfs: potential buffer overflow in xfs_readlink()
bnc#655696
VUL-1: kernel: unix socket local dos
bnc#730118
VUL-1: CVE-2011-4132: kernel: jbd/jbd2: oops
bnc#734056
VUL-1: CVE-2011-4110: kernel: NULL pointer deref in the user-defined key type
bnc#757278
VUL-1: CVE-2012-2100: kernel: ext4: fix undefined behaviour in ext4_fill_flex_info()
bnc#740448
VUL-1: kernel: igmp: Avoid zero delay when receiving odd mixture of IGMP queries
bnc#740703
VUL-0: kernel: xfs heap overflow
bnc#738644
SKY2 driver reporting checksum problems
bnc#714455
Opensuse 11.4 64b Kernel 2.6.37.6-0.7 bug : kworker thread at 90%
bnc#683671
vlans cause softirq overload
bnc#745832
VUL-1: CVE-2011-4086: kernel: jbd2: unmapped buffer with _Unwritten or _Delay flags set can lead to DoS
bnc#721366
failed to use pam_tty_audit
bnc#717209
VUL-1: kernel: /proc/[PID]/attr/current overwrite Null pointer dereference
bnc#769408
mount.ocfs2 failed - dlm_send_nodeinfo:1235 ERROR: node mismatch -92
bnc#676204
VUL-1: kernel: epoll DoS via large nested struct
bnc#726045
VUL-1: kernel: ext4_ext_insert_extent() kernel oops
bnc#758813
VUL-1: kernel: unfiltered netdev rio_ioctl access by users
bnc#731673
VUL-1: CVE-2011-4330: kernel: hfs: wrong ->len field can cause overflow on a corrupted fs
bnc#732908
Access to hd or filesystem broken after suspend2disk / resume
bnc#681186
VUL-0: kernel: econet: 4 byte infoleak to the network
bnc#758243
VUL-1: CVE-2012-2119: kernel: macvtap: zerocopy: vector length is not validated before pinning user pages
bnc#769784
VUL-1: CVE-2012-3400: kernel: udf filesystem logical volume descriptor overflows
bnc#747660
FTP passive mode fails
bnc#750959
VUL-0: kernel: mm: memcg: unregistring of events attached to the same eventfd can lead to oops
bnc#651219
VUL-0: kernel: X.25 remote DoS
