sledp3-kernelSecurity update for Linux kernel (x86_64)Security update for Linux kernel (x86_64)This update fixes lots of bugs and some security issues in the SUSE Linux Enterprise 10 SP 3 kernel.
CVE-2009-4020: A stack-based buffer overflow in the HFS subsystem of the Linux kernel allows remote attackers to have an unspecified impact via a crafted Hierarchical File System (HFS) filesystem, related to the hfs_readdir() function in fs/hfs/dir.c.
CVE-2010-0410: The connector netlink driver (drivers/connector/connector.c) of the Linux kernel allows local users to cause a denial of service (memory consumption or system crash) by sending the kernel many NETLINK_CONNECTOR messages.
CVE-2009-3556: A configuration value in the qla2xxx driver of the Linux kernel when N_Port ID Virtualization (NPIV) hardware is used, sets world-writable permissions for the vport_create and vport_delete files under /sys/class/scsi_host/, which allows local users to make arbitrary changes to SCSI host attributes by modifying these files.
Installation notes
This update is provided as RPM packages that can easily be installed onto a running system by using this command:
rpm -Fvh kernel-debug.rpm kernel-debug-debuginfo.rpm kernel-default.rpm kernel-default-debuginfo.rpm kernel-kdump.rpm kernel-kdump-debuginfo.rpm kernel-smp.rpm kernel-smp-debuginfo.rpm kernel-source.rpm kernel-source-debuginfo.rpm kernel-syms.rpm kernel-xen.rpm kernel-xen-debuginfo.rpmThis update fixes lots of bugs and some security issues in
the SUSE Linux Enterprise 10 SP 3 kernel.
CVE-2009-4020: Stack-based buffer overflow in the hfs
subsystem in the Linux kernel allows remote attackers to
have an unspecified impact via a crafted Hierarchical File
System (HFS) filesystem, related to the hfs_readdir
function in fs/hfs/dir.c.
CVE-2010-0410: drivers/connector/connector.c in the Linux
kernel allows local users to cause a denial of service
(memory consumption and system crash) by sending the kernel
many NETLINK_CONNECTOR messages.
CVE-2009-3556: A configuration value in the qla2xxx driver
in the Linux kernel when N_Port ID Virtualization (NPIV)
hardware is used, sets world-writable permissions for the
(1) vport_create and (2) vport_delete files under
/sys/class/scsi_host/, which allows local users to make
arbitrary changes to SCSI host attributes by modifying
these files.
security
This update can be used to install a new kernel.
If you decide to use the kernel update, we recommend that you reboot
your system upon completion of the YaST Online Update, as additional
kernel modules may be needed which can only be loaded after the system
is rebooted.
If you are in the course of performing a new installation, the installer
will reboot the machine after installing the patch. If you do not want
to reboot, deselect this patch.
kernel-defaultx86_64919adb6f2419f19268bdfbdc154f3ee040b643cckernel-smpx86_6470c6e807d87153eaf8f1f3a32c74040c3afba380kernel-sourcex86_64a5264a2fc639733a2ee9cf12943ba7461070da5bkernel-symsx86_64774aa402a789be3e84c8f086b3aeba43930391e0kernel-xenx86_64e58f5a73a8c8b785969c18d560180773d6c39aab