Overview Details Repositories Revisions Requests Users Attributes Meta
kernel: security and bugfix update

The openSUSE 12.1 kernel was updated to 3.1.9 to fix bugs and security issues. The full list of changes in 3.1.9 is available here:

http://www.kernel.org/pub/linux/kernel/v3.0/ChangeLog-3.1.9
http://www.kernel.org/pub/linux/kernel/v3.0/ChangeLog-3.1.8
http://www.kernel.org/pub/linux/kernel/v3.0/ChangeLog-3.1.7
http://www.kernel.org/pub/linux/kernel/v3.0/ChangeLog-3.1.6
http://www.kernel.org/pub/linux/kernel/v3.0/ChangeLog-3.1.5
http://www.kernel.org/pub/linux/kernel/v3.0/ChangeLog-3.1.4
http://www.kernel.org/pub/linux/kernel/v3.0/ChangeLog-3.1.3
http://www.kernel.org/pub/linux/kernel/v3.0/ChangeLog-3.1.2
http://www.kernel.org/pub/linux/kernel/v3.0/ChangeLog-3.1.2

Following security issues have been fixed:

CVE-2011-2203: Missing null pointer check in hfs filesystem code

CVE-2011-4604: Fix possible kernel memory corruption
if B.A.T.M.A.N. mesh protocol is being used.

CVE-2012-0056: Local root vulnerability via writing to /proc/pid/mem

CVE-2012-0207: Remote DoS vulnerability via crafted IGMP
packages.

Following non-security bug fixes have been added:

* BTRFS support has been improved with many bug fixes.

Fixed bugs
bnc#672923
zypper ps lists thousands of files right after boot (due to btrfs?)
bnc#679059
Boot hangs when NFS is enabled
bnc#691052
After kernel update 2.6.37.6-0.5.1 display stop to work with invalid framebuffer id error
bnc#698540
btrfs clone ioctl does not work across snapshots
bnc#699709
VUL-1: kernel: hfs_find_init() sb->ext_tree NULL pointer dereference
bnc#724616
sles11sp2beta7: hv_storvsc crashes in copy_from_bounce_buffer
bnc#724620
btrfs bugs and corruptions with 4k blocks and non-4k pages [ppc64]
bnc#724734
Xen kernel crash in qemu-dm
bnc#726296
osc build --local-package with kvm -cpu host param root lead to kernel due to intel_idle driver
bnc#727348
when using pulseaudio unmuting the master volume is not possible via kmix
bnc#730103
random btrfs hangup
bnc#730731
Kernel 3.1 crash at start up if using PAE version.
bnc#731261
SLES/SLED 11SP2 Beta7/Beta8 32bit will hang after setting its memory >= 4GB with PAE kernel in VMware ESX Server
bnc#736149
VUL-1: CVE-2011-4604: kernel: bat_socket_read: memory corruption
bnc#737624
If the number of ipsec policies exceeds the xfrm6 GC threshold (ipv6) the kernel crashes (panic).
bnc#742279
VUL-0: CVE-2012-0056: kernel: local privilege escalation via /proc/pid/mem
bnc#689860
kernel BUG at linux-2.6.37/fs/notify/mark.c:140
bnc#740118
No sound with VIA VT1802 codec
bnc#743608
uninstallable kernel update candidate in openSUSE Maintenance Issue 192
bnc#742322
Dell Vostro A90: Audio capture from internal microphone does not work
CVE-CVE-2011-4604
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE-CVE-2011-2203
The hfs_find_init function in the Linux kernel 2.6 allows local users to cause a denial of service (NULL pointer dereference and Oops) by mounting an HFS file system with a malformed MDB extent record.
CVE-CVE-2012-0056
The mem_write function in Linux kernel 2.6.39 and other versions, when ASLR is disabled, does not properly check permissions when writing to /proc/<pid>/mem, which allows local users to gain privileges by modifying process memory, as demonstrated by Mempo
CVE-CVE-2012-0207
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Selected Binaries
openSUSE Build Service is sponsored by
Places