kernel: security update
The openSUSE 12.1 kernel was updated to fix a critical security issue and
also some reiserfs bugs.
CVE-2013-2850: Incorrect strncpy usage in the network
listening part of the iscsi target driver could have been
used by remote attackers to crash the kernel or execute
code.
This required the iscsi target running on the machine
and the attacker able to make a network connection to it
(aka not filtered by firewalls).
Bugs:
- reiserfs: fix spurious multiple-fill in reiserfs_readdir_dentry
(bnc#822722).
- reiserfs: fix problems with chowning setuid file w/ xattrs
(bnc#790920).
-
Submitted by
Jeff Mahoney (jeff_mahoney)
- Reboot is suggested
Fixed bugs
bnc#790920
reiser filesystem hangs when chown a file with both suid bit and acl set
bnc#821560
VUL-0: kernel: CVE-2013-2850: iSCSI target heap overflow
bnc#822722
reiserfs: readdir() can return the same entry multiple times under load
