SuSE Update For Kernel SUSE-SA:2008:017 Network Vulnerability

Impact

remote denial of service

Solution

Please Install the Updated Packages.

Insight

The Linux kernel was updated for SUSE Linux Enterprise Server 9 SP4, Novell Linux Desktop 9, and Open Enterprise Server and fixes the following security problems: - Memory overrun vulnerability in ISDN code CVE-2007-6151 - Insufficient range checks of certain fault handlers CVE-2008-0007 - Reset current-&gt pdeath_signal on SUID binary execution CVE-2007-3848 - aacraid: Fix range checks CVE-2007-4308. - fixed a remote buffer overflow in CIFS CVE-2007-5904 Further improvements include: - Several kernel crashes addressed. - Improvements to running as a VMWare guest. - Update of OCFS2 to 1.2.8-2. - New code drop for the s390 architecture. For details and a complete list of changes, please refer to the package changelog.

Affected

kernel on SUSE SLES 9, Novell Linux Desktop 9, Open Enterprise Server, Novell Linux POS 9

References

http://www.novell.com/linux/security/advisories/2008_17_kernel.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2007-3848, CVE-2007-4308, CVE-2007-5904, CVE-2007-6151, CVE-2008-0007

CVSS	Base Score: 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

SuSE Update for kernel SUSE-SA:2008:017

Take action and discover your vulnerabilities