----------------------------------------------------------------------



Accurate Vulnerability Scanning
No more false positives, no more false negatives

http://secunia.com/vulnerability_scanning/



----------------------------------------------------------------------

TITLE:
SUSE update for kernel

SECUNIA ADVISORY ID:
SA38017

VERIFY ADVISORY:
http://secunia.com/advisories/38017/

DESCRIPTION:
SUSE has issued an update for the kernel. This fixes some security
issues and vulnerabilities, which can be exploited by malicious,
local users to manipulate certain data, cause a DoS (Denial of
Service), and potentially gain escalated privileges, and by malicious
people to cause a DoS.

For more information:
SA37086
SA37233
SA37357
SA37435
SA37590
SA37658

1) A vulnerability is caused due to an error within the "ip_defrag()"
function in net/ipv4/ip_fragment.c, which may be exploited to cause a
NULL pointer dereference by sending overly large packets to a
vulnerable system.

SOLUTION:
Apply updated packages.

x86 Platform:

openSUSE 11.2:

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-debug-debuginfo-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-debug-debugsource-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-debug-devel-debuginfo-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-default-debuginfo-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-default-debugsource-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-default-devel-debuginfo-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-desktop-base-debuginfo-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-desktop-debuginfo-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-desktop-debugsource-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-pae-debuginfo-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-pae-debugsource-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-pae-devel-debuginfo-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-trace-base-debuginfo-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-trace-debuginfo-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-trace-debugsource-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-vanilla-base-debuginfo-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-vanilla-debuginfo-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-vanilla-debugsource-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-xen-debuginfo-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-xen-debugsource-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/debug/update/11.2/rpm/i586/kernel-xen-devel-debuginfo-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-debug-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-debug-base-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-debug-devel-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-default-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-default-base-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-default-devel-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-desktop-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-desktop-base-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-desktop-devel-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-pae-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-pae-base-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-pae-devel-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-syms-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-trace-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-trace-base-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-trace-devel-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-vanilla-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-vanilla-base-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-vanilla-devel-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-xen-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-xen-base-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/kernel-xen-devel-2.6.31.8-0.1.1.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/preload-kmp-default-1.1_2.6.31.8_0.1-6.9.3.i586.rpm

http://download.opensuse.org/update/11.2/rpm/i586/preload-kmp-desktop-1.1_2.6.31.8_0.1-6.9.3.i586.rpm

Platform Independent:

openSUSE 11.2:

http://download.opensuse.org/update/11.2/rpm/noarch/kernel-source-2.6.31.8-0.1.1.noarch.rpm

http://download.opensuse.org/update/11.2/rpm/noarch/kernel-source-vanilla-2.6.31.8-0.1.1.noarch.rpm

x86-64 Platform:

openSUSE 11.2:

http://download.opensuse.org/debug/update/11.2/rpm/x86_64/kernel-debug-debuginfo-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/debug/update/11.2/rpm/x86_64/kernel-debug-debugsource-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/debug/update/11.2/rpm/x86_64/kernel-debug-devel-debuginfo-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/debug/update/11.2/rpm/x86_64/kernel-default-debuginfo-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/debug/update/11.2/rpm/x86_64/kernel-default-debugsource-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/debug/update/11.2/rpm/x86_64/kernel-default-devel-debuginfo-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/debug/update/11.2/rpm/x86_64/kernel-desktop-base-debuginfo-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/debug/update/11.2/rpm/x86_64/kernel-desktop-debuginfo-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/debug/update/11.2/rpm/x86_64/kernel-desktop-debugsource-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/debug/update/11.2/rpm/x86_64/kernel-trace-base-debuginfo-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/debug/update/11.2/rpm/x86_64/kernel-trace-debuginfo-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/debug/update/11.2/rpm/x86_64/kernel-trace-debugsource-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/debug/update/11.2/rpm/x86_64/kernel-vanilla-base-debuginfo-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/debug/update/11.2/rpm/x86_64/kernel-vanilla-debuginfo-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/debug/update/11.2/rpm/x86_64/kernel-vanilla-debugsource-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/debug/update/11.2/rpm/x86_64/kernel-xen-debuginfo-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/debug/update/11.2/rpm/x86_64/kernel-xen-debugsource-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/debug/update/11.2/rpm/x86_64/kernel-xen-devel-debuginfo-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/kernel-debug-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/kernel-debug-base-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/kernel-debug-devel-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/kernel-default-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/kernel-default-base-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/kernel-default-devel-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/kernel-desktop-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/kernel-desktop-base-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/kernel-desktop-devel-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/kernel-syms-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/kernel-trace-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/kernel-trace-base-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/kernel-trace-devel-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/kernel-vanilla-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/kernel-vanilla-base-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/kernel-vanilla-devel-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/kernel-xen-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/kernel-xen-base-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/kernel-xen-devel-2.6.31.8-0.1.1.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/preload-kmp-default-1.1_2.6.31.8_0.1-6.9.3.x86_64.rpm

http://download.opensuse.org/update/11.2/rpm/x86_64/preload-kmp-desktop-1.1_2.6.31.8_0.1-6.9.3.x86_64.rpm

Sources:

openSUSE 11.2:

http://download.opensuse.org/update/11.2/rpm/src/kernel-debug-2.6.31.8-0.1.1.nosrc.rpm

http://download.opensuse.org/update/11.2/rpm/src/kernel-default-2.6.31.8-0.1.1.nosrc.rpm

http://download.opensuse.org/update/11.2/rpm/src/kernel-desktop-2.6.31.8-0.1.1.nosrc.rpm

http://download.opensuse.org/update/11.2/rpm/src/kernel-pae-2.6.31.8-0.1.1.nosrc.rpm

http://download.opensuse.org/update/11.2/rpm/src/kernel-source-2.6.31.8-0.1.1.src.rpm

http://download.opensuse.org/update/11.2/rpm/src/kernel-syms-2.6.31.8-0.1.1.src.rpm

http://download.opensuse.org/update/11.2/rpm/src/kernel-trace-2.6.31.8-0.1.1.nosrc.rpm

http://download.opensuse.org/update/11.2/rpm/src/kernel-vanilla-2.6.31.8-0.1.1.nosrc.rpm

http://download.opensuse.org/update/11.2/rpm/src/kernel-xen-2.6.31.8-0.1.1.nosrc.rpm

ORIGINAL ADVISORY:
SUSE-SA:2010:001:
http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00000.html

OTHER REFERENCES:
SA37086:
http://secunia.com/advisories/37086/

SA37233:
http://secunia.com/advisories/37233/

SA37357:
http://secunia.com/advisories/37357/

SA37435:
http://secunia.com/advisories/37435/

SA37590:
http://secunia.com/advisories/37590/

SA37658:
http://secunia.com/advisories/37658/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

----------------------------------------------------------------------