----------------------------------------------------------------------

Do you need accurate and reliable IDS / IPS / AV detection rules?

Get in-depth vulnerability details:
http://secunia.com/binary_analysis/sample_analysis/

----------------------------------------------------------------------

TITLE:
SUSE update for kernel

SECUNIA ADVISORY ID:
SA32370

VERIFY ADVISORY:
http://secunia.com/advisories/32370/

CRITICAL:
Moderately critical

IMPACT:
Exposure of sensitive information, Privilege escalation, DoS

WHERE:
>From local network

OPERATING SYSTEM:
openSUSE 10.3
http://secunia.com/advisories/product/16124/

DESCRIPTION:
SUSE has issued an update for the kernel. This fixes some
vulnerabilities, which can be exploited by malicious, local users to
cause a DoS (Denial of Service), disclose potentially sensitive
information, and gain escalated privileges, and by malicious people
to cause a DoS.

For more information:
SA30580
SA31048
SA31366
SA31509

SOLUTION:
Apply updated packages.

x86 Platform:

openSUSE 10.3:

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/kernel-bigsmp-2.6.22.19-0.1.i586.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/kernel-debug-2.6.22.19-0.1.i586.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/kernel-default-2.6.22.19-0.1.i586.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/kernel-source-2.6.22.19-0.1.i586.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/kernel-syms-2.6.22.19-0.1.i586.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/kernel-xen-2.6.22.19-0.1.i586.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/kernel-xenpae-2.6.22.19-0.1.i586.rpm

Power PC Platform:

openSUSE 10.3:

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/kernel-default-2.6.22.19-0.1.ppc.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/kernel-kdump-2.6.22.19-0.1.ppc.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/kernel-ppc64-2.6.22.19-0.1.ppc.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/kernel-source-2.6.22.19-0.1.ppc.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/kernel-syms-2.6.22.19-0.1.ppc.rpm

x86-64 Platform:

openSUSE 10.3:

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/kernel-debug-2.6.22.19-0.1.x86_64.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/kernel-default-2.6.22.19-0.1.x86_64.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/kernel-source-2.6.22.19-0.1.x86_64.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/kernel-syms-2.6.22.19-0.1.x86_64.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/kernel-xen-2.6.22.19-0.1.x86_64.rpm

Sources:

openSUSE 10.3:

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/kernel-bigsmp-2.6.22.19-0.1.nosrc.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/kernel-debug-2.6.22.19-0.1.nosrc.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/kernel-default-2.6.22.19-0.1.nosrc.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/kernel-kdump-2.6.22.19-0.1.nosrc.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/kernel-ppc64-2.6.22.19-0.1.nosrc.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/kernel-source-2.6.22.19-0.1.src.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/kernel-syms-2.6.22.19-0.1.src.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/kernel-xen-2.6.22.19-0.1.nosrc.rpm

http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/kernel-xenpae-2.6.22.19-0.1.nosrc.rpm

ORIGINAL ADVISORY:
SUSE-SA:2008:052:
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00008.html

OTHER REFERENCES:
SA30580:
http://secunia.com/advisories/30580/

SA31048:
http://secunia.com/advisories/31048/

SA31366:
http://secunia.com/advisories/31366/

SA31509:
http://secunia.com/advisories/31509/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

----------------------------------------------------------------------