Secunia - Stay Secure
Gartner
Home Corporate Website Jobs Updated Mailing Lists RSS Blog  Online Shop Advertise
Software Inspectors
  Scan Online
  Personal (PSI)
  Network (NSI 2.0)

Solutions For
  Security Professionals
  Security Vendors

Free Solutions For
  Open Communities
  Journalists & Media

Secunia Advisories
  Search
  Historic Advisories
  Listed By Product
  Listed By Vendor
  Statistics / Graphs
  Secunia Research
  Report Vulnerability
  About Advisories

Virus Information
  Chronological List
  Last 10 Virus Alerts
  About Virus Information

Secunia Customers
  Customer Area


SUSE update for kernel Advisory Available in German 

Secunia Advisory: SA28889  
Release Date: 2008-02-12

Critical:
Less critical
Impact: Exposure of sensitive information
Privilege escalation
Where: Local system
Solution Status: Partial Fix

OS:openSUSE 10.2
openSUSE 10.3

Software:SUSE Linux Enterprise Realtime 10

CVE reference:CVE-2007-6151 (Secunia mirror)
CVE-2007-6206 (Secunia mirror)
CVE-2008-0600 (Secunia mirror)


Description:
SUSE has issued an update for the kernel. This fixes a security issue an a vulnerability, which can be exploited by malicious, local users to disclose potentially sensitive information or gain escalated privileges.

For more information:
SA27908
SA28835

Solution:
Apply updated packages.

Updated packages for SUSE Linux Enterprise Realtime 10 are reportedly being prepared.


x86 Platform:

openSUSE 10.3:

http://download.opensuse.org/pub/open.../kernel-bigsmp-2.6.22.17-0.1.i586.rpm
8a25326349043f763b7ee1f272575ac9

http://download.opensuse.org/pub/open...6/kernel-debug-2.6.22.17-0.1.i586.rpm
aef17fa619bb8d1d1f7f78f7506c267b

http://download.opensuse.org/pub/open...kernel-default-2.6.22.17-0.1.i586.rpm
34fae134fcffe0740d6899e7a86f5e6e

http://download.opensuse.org/pub/open...i586/kernel-rt-2.6.22.17-0.1.i586.rpm
265b5a744299f6f7c519c6f837de1014

http://download.opensuse.org/pub/open...ernel-rt_debug-2.6.22.17-0.1.i586.rpm
3735cb1d57a65b414dfee6fda8d6d43f

http://download.opensuse.org/pub/open.../kernel-source-2.6.22.17-0.1.i586.rpm
3a57ed041fb4141c733cc84e541c6324

http://download.opensuse.org/pub/open...86/kernel-syms-2.6.22.17-0.1.i586.rpm
a69110f06587ac06e8e25550b59b6f2e

http://download.opensuse.org/pub/open...586/kernel-xen-2.6.22.17-0.1.i586.rpm
a31013e9d5ef5fa996ae8b96b274619d

http://download.opensuse.org/pub/open.../kernel-xenpae-2.6.22.17-0.1.i586.rpm
3ae38037c32f05a238a15dde7a1c5f88

openSUSE 10.2:

ftp://ftp.suse.com/pub/suse/update/10...6/kernel-bigsmp-2.6.18.8-0.9.i586.rpm
a5b4202bf5a5ff0ffe12d805deb90b58

ftp://ftp.suse.com/pub/suse/update/10.../kernel-default-2.6.18.8-0.9.i586.rpm
feb311251d01e4fd6268071e24a36c6c

ftp://ftp.suse.com/pub/suse/update/10...86/kernel-kdump-2.6.18.8-0.9.i586.rpm
c35a4735a2420ec71bdabadbf39a1ce9

ftp://ftp.suse.com/pub/suse/update/10...6/kernel-source-2.6.18.8-0.9.i586.rpm
6fd2e6ebfeba11f8919bd733284f996a

ftp://ftp.suse.com/pub/suse/update/10...586/kernel-syms-2.6.18.8-0.9.i586.rpm
034dea6d325dcdc49154be9e37109140

ftp://ftp.suse.com/pub/suse/update/10...i586/kernel-xen-2.6.18.8-0.9.i586.rpm
90bdfca8529c3b44e2dfa1db601f719e

ftp://ftp.suse.com/pub/suse/update/10...6/kernel-xenpae-2.6.18.8-0.9.i586.rpm
7c5be80194d1eb8c395424252df085f2

Power PC Platform:

openSUSE 10.3:

http://download.opensuse.org/pub/open.../kernel-default-2.6.22.17-0.1.ppc.rpm
4d0f63b55789fc47175ae6b844cb0620

http://download.opensuse.org/pub/open...pc/kernel-kdump-2.6.22.17-0.1.ppc.rpm
5b0389aeb6d557a2e7da967b7c76166f

http://download.opensuse.org/pub/open...pc/kernel-ppc64-2.6.22.17-0.1.ppc.rpm
ca3d9cd4140c0253e80a67429594deec

http://download.opensuse.org/pub/open...c/kernel-source-2.6.22.17-0.1.ppc.rpm
ae9adbe9443fa26830c9de1fd4c6ac94

http://download.opensuse.org/pub/open...ppc/kernel-syms-2.6.22.17-0.1.ppc.rpm
164db9fcacd161845961533e71423538

openSUSE 10.2:

ftp://ftp.suse.com/pub/suse/update/10...c/kernel-default-2.6.18.8-0.9.ppc.rpm
20ffaec3185ce5f206208070373d574c

ftp://ftp.suse.com/pub/suse/update/10...kernel-iseries64-2.6.18.8-0.9.ppc.rpm
e37869df68d1b0a6c8317267278694fd

ftp://ftp.suse.com/pub/suse/update/10...ppc/kernel-kdump-2.6.18.8-0.9.ppc.rpm
6fffa75e425ea70cd25a3f1e66495174

ftp://ftp.suse.com/pub/suse/update/10...ppc/kernel-ppc64-2.6.18.8-0.9.ppc.rpm
a424a54166b46cea9147643a2a3c4bd8

ftp://ftp.suse.com/pub/suse/update/10...pc/kernel-source-2.6.18.8-0.9.ppc.rpm
0add877d14ac642a2628cba1d2489188

ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/kernel-syms-2.6.18.8-0.9.ppc.rpm
003d0da5609b7d94290333c745b72ede

x86-64 Platform:

openSUSE 10.3:

http://download.opensuse.org/pub/open...kernel-debug-2.6.22.17-0.1.x86_64.rpm
bd39e73becbf676056c8b41f4acc6b76

http://download.opensuse.org/pub/open...rnel-default-2.6.22.17-0.1.x86_64.rpm
059b6dc223093f8cb59ab78446b62571

http://download.opensuse.org/pub/open...64/kernel-rt-2.6.22.17-0.1.x86_64.rpm
efe310fb3170d6baa5f40031b1680719

http://download.opensuse.org/pub/open...nel-rt_debug-2.6.22.17-0.1.x86_64.rpm
200011e3dfb75954d67c0624c7cbe82c

http://download.opensuse.org/pub/open...ernel-source-2.6.22.17-0.1.x86_64.rpm
a14f480d53d42ce0f4f5c5a65f7f58c1

http://download.opensuse.org/pub/open.../kernel-syms-2.6.22.17-0.1.x86_64.rpm
5cd6db35cfef3dd48451d7143537f528

http://download.opensuse.org/pub/open...4/kernel-xen-2.6.22.17-0.1.x86_64.rpm
49ff7963dcead4fe6bee5abd2ee05d97

openSUSE 10.2:

ftp://ftp.suse.com/pub/suse/update/10...ernel-default-2.6.18.8-0.9.x86_64.rpm
db176b500fd6e1d4f7cf6ccd75a6f60b

ftp://ftp.suse.com/pub/suse/update/10.../kernel-kdump-2.6.18.8-0.9.x86_64.rpm
cea61bcc88d50628ffab9324f9b47391

ftp://ftp.suse.com/pub/suse/update/10...kernel-source-2.6.18.8-0.9.x86_64.rpm
f36b8b48f8c0162c9b0e49f7dc4c99a8

ftp://ftp.suse.com/pub/suse/update/10...4/kernel-syms-2.6.18.8-0.9.x86_64.rpm
056bc674cf94e69afdca3b45c1c43fa0

ftp://ftp.suse.com/pub/suse/update/10...64/kernel-xen-2.6.18.8-0.9.x86_64.rpm
edab93cccd1d91fbe97f070c26a9f051

Sources:

openSUSE 10.3:

http://download.opensuse.org/pub/open...kernel-bigsmp-2.6.22.17-0.1.nosrc.rpm
6d7a9c38144edb1dacb2c18b5c300d7d

http://download.opensuse.org/pub/open.../kernel-debug-2.6.22.17-0.1.nosrc.rpm
d33f96f601a117378e701b9bfff31470

http://download.opensuse.org/pub/open...ernel-default-2.6.22.17-0.1.nosrc.rpm
3febbdc8006a591913f9b3f717636fc9

http://download.opensuse.org/pub/open.../kernel-kdump-2.6.22.17-0.1.nosrc.rpm
a42aaff6d71df9b96f6795096e732d1d

http://download.opensuse.org/pub/open.../kernel-ppc64-2.6.22.17-0.1.nosrc.rpm
eb0fd7e940a020b84cd67136569c2fd5

http://download.opensuse.org/pub/open...src/kernel-rt-2.6.22.17-0.1.nosrc.rpm
45db3caca01b280a18ca65b3948ef2e0

http://download.opensuse.org/pub/open...rnel-rt_debug-2.6.22.17-0.1.nosrc.rpm
9979595ac1d609ea204f556494d52960

http://download.opensuse.org/pub/open...c/kernel-source-2.6.22.17-0.1.src.rpm
72f3f44ea5f330853963e56c481ee3f7

http://download.opensuse.org/pub/open...src/kernel-syms-2.6.22.17-0.1.src.rpm
0e4ff163cd849db30e6e5f556a674b48

http://download.opensuse.org/pub/open...rc/kernel-xen-2.6.22.17-0.1.nosrc.rpm
3916440c8650d6926a724b3de667c80c

http://download.opensuse.org/pub/open...kernel-xenpae-2.6.22.17-0.1.nosrc.rpm
5e90eda74a91b6432d44ae18e070bd74

openSUSE 10.2:

ftp://ftp.suse.com/pub/suse/update/10.../kernel-bigsmp-2.6.18.8-0.9.nosrc.rpm
fc384cf47a5aec37cf813116cba4e6d7

ftp://ftp.suse.com/pub/suse/update/10...kernel-default-2.6.18.8-0.9.nosrc.rpm
06d97aa363493f028e8368eebe996493

ftp://ftp.suse.com/pub/suse/update/10...rnel-iseries64-2.6.18.8-0.9.nosrc.rpm
a35675c22809cd88757afc0d5f66741c

ftp://ftp.suse.com/pub/suse/update/10...c/kernel-kdump-2.6.18.8-0.9.nosrc.rpm
e7276d68bbd8be2b67cb2bb769b70ad7

ftp://ftp.suse.com/pub/suse/update/10...c/kernel-ppc64-2.6.18.8-0.9.nosrc.rpm
635d0921aec1af3053d508c014fcf94c

ftp://ftp.suse.com/pub/suse/update/10...rc/kernel-source-2.6.18.8-0.9.src.rpm
93c89ce1da9f1f752af9ae0a9bff2cf4

ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/kernel-syms-2.6.18.8-0.9.src.rpm
2a288f8e12e899961febf5de7ae6a2b7

ftp://ftp.suse.com/pub/suse/update/10...src/kernel-xen-2.6.18.8-0.9.nosrc.rpm
796394be803069751082eb2cfebcc04f

ftp://ftp.suse.com/pub/suse/update/10.../kernel-xenpae-2.6.18.8-0.9.nosrc.rpm
94ba5b49d8890452b957b11705f20534

Original Advisory:
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00005.html

Other References:
SA27908:
http://secunia.com/advisories/27908/

SA28835:
http://secunia.com/advisories/28835/


Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

119 Related Secunia Security Advisories, displaying 10

1. SUSE Update for Multiple Packages
2. SUSE update for MozillaFirefox
3. SUSE update for bind
4. SUSE update for MozillaFirefox
5. SUSE Update for Multiple Packages
6. SUSE update for kernel
7. SUSE Update for Multiple Packages
8. SUSE update for evolution
9. SUSE update for xorg-x11 and XFree86
10. SUSE update for opera

Show all related advisories


Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.








Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Do you think it's important to read Setup/User Guides for applications for use within your network?


See Results   


Most Popular Advisories

1.
Linux Kernel LDT Buffer Size Handling Vulnerability
2.
Drupal Session Fixation Vulnerability
3.
OpenBSD BIND Query Port DNS Cache Poisoning
4.
Red Hat update for kernel
5.
Ubuntu update for php
6.
IPCop update for perl
7.
Debian update for xulrunner
8.
Slackware update for dnsmasq
9.
Debian update for cupsys
10.
Apple Safari Cross-Domain Cookie Injection Vulnerability





Vulnerability Management - Terms & Conditions - Copyright 2002-2008 Secunia - Compliance - Contact Secunia