Articles / SuSE

All articles tagged with SuSE

October 20, 2010 06:19 SuSE: New kernel packages fix local privilege escalation

0

This updated openSUSE 11.3 kernel fixes the two security bugs. Local users could corrupt kernel heap memory via ROSE sockets. Local users could write to any kernel memory location via the i915 GEM ioctl interface. Updated packages are available from download.opensuse.org.

October 20, 2010 06:14 SuSE: New kernel packages fix local privilege escalation

0

This SUSE Linux Enterprise 11 Service Pack 1 kernel contains various security fixes. Updated packages are available from download.novell.com.

October 13, 2010 06:02 SuSE: New Firefox, Thunderbird, and Seamonkey packages fi...

0

Mozilla Firefox, Thunderbird, and Seamonkey were updated to version 3.6.10, fixing various bugs and security issues. Updated packages are available from download.opensuse.org.

October 13, 2010 06:00 SuSE: New acroread packages fix remote code execution

0

Specially crafted PDF documents could crash acroread or lead to execution of arbitrary code. acroread was updated to version 9.4 which addresses the issues. Updated packages are available from download.opensuse.org.

September 28, 2010 08:04 SuSE: New SUSE Linux Enterprise 11 GA kernel packages fix...

0

The SUSE Linux Enterprise 11 GA and openSUSE 11.1 kernels were updated to fix 3 critical security issues. A mismatch between 32bit and 64bit register usage in the system call entry paths could be used by local attackers to gain root privileges. Incorrect buffer handling in the biarch-compat buffer handling could be used by local attackers to gain root privileges. An integer overflow in the Controller Area Network (CAN) implementation allowed attackers to execute arbitrary code or cause a denial of service (system crash) via crafted CAN traffic. Updated packages are available from download.opensuse.org.

September 28, 2010 08:00 SuSE: New openSUSE 11.3 kernel packages fix local privile...

0

This update of the openSUSE 11.3 kernel fixes two local root exploits, various other security issues and some bugs. A mismatch between 32bit and 64bit register usage in the system call entry path could be used by local attackers to gain root privileges. Incorrect buffer handling in the biarch-compat buffer handling could be used by local attackers to gain root privileges. A buffer overflow in the ETHTOOL_GRXCLSRLALL code could be used to crash the kernel or potentially execute code. A kernel information leak via the WEXT ioctl was fixed. The keyctl_session_to_parent function in expects that a certain parent session keyring exists, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact. A double free in an alsa error path was fixed, which could lead to kernel crashes. A ftrace NULL pointer dereference problem which could lead to kernel crashes was fixed. Several kernel information leaks were fixed in various drivers. Updated packages are available from download.opensuse.org.

September 28, 2010 07:51 SuSE: New flash-player packages fix remote code execution

0

Adobe Flash Player was updated to fix a vulnerability that allowed remote attackers to crash the player or potentially even cause execution of arbitrary code. Updated packages are available from download.opensuse.org.

September 21, 2010 05:45 SuSE: New kernel packages fix local privilege escalation

0

The openSUSE 11.3 kernel was updated to version 2.6.34.7. The update fixes several security issues. A XFS stack memory information disclosure was fixed, a NULL pointer dereference in the IRDA stack was fixed, a local privilege escalation in the CAN bus protocol module can_bcm was fixed, several memory leaks in the net scheduling code were fixed, and kernel memory information leaks from DRM ioctls were fixed. Updated packages are available from download.opensuse.org.

September 14, 2010 11:42 SuSE: New kernel packages fix remote denial of service

0

This SUSE Linux Enterprise 11 Service Pack 1 kernel update contains various security fixes and lots of other bugfixes. Insufficient range checks on the ETHTOOL_GRXCLSRLALL command allowed local users to at least crash the kernel. Specially crafted NFS write requests could crash the kernel. A malicious local user could fill the cache used by CIFS do perform dns lookups with chosen data, therefore tricking the kernel into mounting a wrong CIFS server. A local user could overwrite append-only files on a btrfs file system. A local user could read kernel memory of a btrfs file system. Local users could trigger a NULL dereference via gfs2 file system. Driver specific drm ioctl could leak kernel memory to users with access to dri devices. tc dump could leak some kernel memory. The os2 xattr namespace could be used to bypass xattr namespace rules. Integer overflows in the CAN subsystem allowed attackers to crash the kernel or gain privileges. Certain write operations on an ext4 filesystem could crash the kernel. Updated packages are available from download.opensuse.org.

September 14, 2010 11:37 SuSE: New kernel packages fix local privilege escalation

0

This update of the openSUSE 11.3 kernel brings the kernel to version 2.6.34.4 and contains various security fixes. Missing bounds checks in several ioctls of the Novell Client novfs /proc interface allowed unprivileged local users to crash the kernel or even execute code in kernel context. A malicious local user could fill the cache used by CIFS do perform dns lookups with chosen data, therefore tricking the kernel into mounting a wrong CIFS server. A local user could trigger a NULL dereference on a gfs2 file system. A local user could overwrite append-only files on a btrfs file system. A local user could read kernel memory of a btrfs file system. Updated packages are available from download.opensuse.org.

September 07, 2010 10:58 SuSE: New kernel packages fix local privilege escalation

0

This SUSE Linux Enterprise 10 SP3 kernel update contains several fixes for security. The stack of a process could grow into other mapped areas, therefore overwriting memory instead of terminating the process. Specially crafted requests could crash an NFSv4 server. Updated packages are available from download.opensuse.org.

September 07, 2010 10:50 SuSE: New kernel packages fix remote code execution

0

This update fixes various security issues and some bugs in the SUSE Linux Enterprise 9 kernel. A crafted NFS write request might have caused a buffer overwrite, potentially causing a kernel crash. The copy_to_user implementation might have leaked kernel memory depending on specific user buffer setups. The r8169 driver did not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to cause a denial of service. A use-after-free vulnerability when IPV6_RECVPKTINFO is set on a listening socket, allowed remote attackers to cause a denial of service. The vfs implementation did not prevent creation of a child dentry for a deleted (aka S_DEAD) directory, which allowed local users to cause a denial of service. The nfs_lock function did not properly remove POSIX locks on files that are setgid without group-execute permission, which allows local users to cause a denial of service. The do_coredump function did not change the UID of a core dump file if it exists before a root process creates a core dump in the same location, which might have allowed local users to obtain sensitive information. The Linux kernel did not always follow NFS automount “symlinks,” which allowed attackers to have an unknown impact. A stack-based buffer overflow in the hfs subsystem allowed remote attackers to have an unspecified impact. The processcompl_compat function did not clear the transfer buffer before returning to userspace when a USB command fails, which might have made it easier for physically proximate attackers to obtain sensitive information (kernel memory). Updated packages are available from download.opensuse.org.

September 07, 2010 10:49 SuSE: New acroread packages fix remote code execution

0

Specially crafted PDF documents could crash acroread or lead to execution of arbitrary code. Updated packages are available from download.opensuse.org.

August 24, 2010 08:51 SuSE: New kernel packages fix remote denial of service

0

The SUSE Linux Enterprise 10 SP3 kernel was updated to fix a security issue. The nfs_wait_on_request function allows attackers to cause a denial of service (Oops) via unknown vectors related to truncating a file and an operation that is not interruptible. Updated packages are available from download.opensuse.org.

August 17, 2010 13:14 SuSE: New Flash Player packages fix remote code execution

0

Flash Player was updated to version 10.1.82.76 fixing several critical security issues, including various buffer errors and code injection vulnerabilities. Updated packages are available from download.opensuse.org.

August 03, 2010 10:38 SuSE: New kernel packages fix local privilege escalation

0

This SUSE Linux Enterprise 11 Service Pack 1 kernel contains various security fixes and lots of other bugfixes. Several buffer overflows in the Novell Client novfs kernel module could be used by local users to execute code in the kernel. On ext4 filesystems make sure the MOVE_EXT ioctl cannot overwrite append-only files. A oops (denial of service) caused by a NULL pointer dereference in the l2tp protocol was fixed. In the gfs2 filesystem, fixed permissions checking for the setflags ioctl(). Updated packages are available from download.opensuse.org.

August 03, 2010 10:28 SuSE: New Mozilla Firefox, Mozilla Thunderbird packages f...

0

Various remotely exploitable security issues have been found in the Mozilla suite, and the various browsers have been updated to fix these issues. Updated packages are available from download.opensuse.org.

July 27, 2010 18:50 SuSE: New kernel packages fix remote denial of service

0

The SUSE Linux Enterprise 11 GA Kernel was updated to 2.6.27.48 fixing various bugs and security issues. The do_gfs2_set_flags function does not verify the ownership of a file, which allows local users to bypass intended access restrictions via a SETFLAGS ioctl request. The nfs_wait_on_request function allows attackers to cause a denial of service (Oops) via unknown vectors related to truncating a file and an operation that is not interruptible. The Linux kernel does not properly handle the export of shmemfs objects by knfsd, which allows attackers to cause a denial of service (NULL pointer dereference and knfsd crash) or possibly have unspecified other impact via unknown vectors. A race condition in the find_keyring_by_name function allows local users to cause a denial of service (memory corruption and system crash) or possibly have unspecified other impact via keyctl session commands that trigger access to a dead keyring that is undergoing deletion by the key_cleanup function. KGDB does not properly perform a security check for access to a kernel page, which allows local users to overwrite arbitrary kernel memory, related to Fsl booke. The release_one_tty function omits certain required calls to the put_pid function, which has unspecified impact and local attack vectors. Updated packages are available from download.opensuse.org.

July 13, 2010 18:24 SuSE: New Mozilla Firefox packages fix remote code execution

0

Mozilla Firefox was updated to version 3.5.10, fixing various bugs and security issues. Updated packages are available from download.opensuse.org.

July 13, 2010 18:22 SuSE: New Acrobat Reader packages fix remote code execution

0

Acrobat Reader was updated to version 9.3.3 to fix lots of security issues and bugs, several of whom could be used to execute code by trick the target user to open specially crafted PDFs. Updated packages are available from download.opensuse.org.

July 13, 2010 18:19 SuSE: New IBM Java packages fix remote code execution

0

This update of IBM Java 1.5.0 to SR11 FP2 brings various bug and lots of security fixes. Updated packages are available from download.opensuse.org.

July 06, 2010 12:31 SuSE: New kernel packages fix remote denial of service

0

This SUSE Linux Enterprise 11 Service Pack 1 kernel update brings the kernel to 2.6.32.13. The sctp_process_unk_param function in in the SCTP functionality allows remote attackers to cause a denial of service (system crash) via an SCTPChunkInit packet containing multiple invalid parameters that require a large amount of error data. Updated packages are available from download.opensuse.org.

July 06, 2010 12:28 SuSE: New IBM Java 6 packages fix remote code execution

0

IBM Java 6 was updated to Service Release 8 to fix various security issues, including a variety of unspecified vulnerabilities in various components of Oracle Java SE and Java for Business 6, affecting confidentiality, integrity, and availability. Updated packages are available from download.opensuse.org.

July 06, 2010 12:26 SuSE: New samba packages fix potential remote code execution

0

The Samba server was updated to fix security issues and bugs. A buffer overrun was possible in chain_reply code in 3.3.x and below, which could be used to crash the samba server or potentially execute code. The samba daemon now takes extra care that a mount point of mount.cifs isn’t changed during mount. Updated packages are available from download.opensuse.org.

June 15, 2010 06:11 SuSE: New flash-player packages fix remote code execution

0

Adobe Flash Player was updated to fix multiple critical security vulnerabilities which allow an attacker to remotely execute arbitrary code or to cause a denial of service. Updated packages are available from download.opensuse.org.

May 20, 2010 12:38 SuSE: New kernel packages fix remote denial of service

0

This update fixes several security issues and various bugs in the SUSE Linux Enterprise 10 SP 2 kernel. The r8169 driver does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to cause a denial of service The ULE decapsulation functionality in dvb-core allows attackers to cause a denial of service. The Linux kernel does not always follow NFS automount “symlinks,” which allows attackers to have an unknown impact, related to LOOKUP_FOLLOW. A stack-based buffer overflow in the hfs subsystem allows remote attackers to have an unspecified impact via a crafted Hierarchical File System (HFS) filesystem. The processcompl_compat function in does not clear the transfer buffer before returning to user space when a USB command fails, which might make it easier for physically proximate attackers to obtain sensitive information. The Linux kernel allows local users to cause a denial of service by sending it many NETLINK_CONNECTOR messages. Updated packages are available from download.opensuse.org.

April 22, 2010 08:08 SuSE: New Firefox, Thunderbird packages fix remote denial...

0

The Mozilla Firefox browser was updated to version 3.5.9 fixing lots of bugs and security issues. Among other problems, Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products that, under certain circumstances, could be exploited to run arbitrary code. Security researcher regenrecht reported various problems with the handling of XUL tree items could be called after the tree item was deleted, which could crash a victim’s browser and run arbitrary code on the victim’s computer. Security researcher Paul Stone reported that a browser applet could be used to turn a simple mouse click into a drag-and-drop action, potentially resulting in the unintended loading of resources in a user’s browser. Mozilla security researcher moz_bug_r_a4 reported that the XMLHttpRequestSpy module in the Firebug add-on was exposing an underlying chrome privilege escalation vulnerability. Mozilla developers added support in the Network Security Services module for preventing a type of man-in-the-middle attack against TLS using forced renegotiation. Updated packages are available from download.opensuse.org.

April 01, 2010 14:54 SuSE: New kernel packages fix remote denial of service

0

This update fixes various security issues in the SUSE Linux Enterprise 10 SP 3 kernel. A stack-based buffer overflow in the hfs subsystem in the Linux kernel allows remote attackers to have an unspecified impact via a crafted Hierarchical File System (HFS) filesystem. A flaw in the Linux kernel allows local users to cause a denial of service (memory consumption and system crash) by sending the kernel many NETLINK_CONNECTOR messages. A configuration value in the qla2xxx driver sets world-writable permissions for the vport_create and vport_delete files in the /proc filesystem, which allows local users to make arbitrary changes to SCSI host attributes. A kernel information leak using user space USB devices could be used by local attackers with USB access to read recently freed kernel memory. A ULE decapsulation denial of service problem in DVB drivers was fixed that could be triggered by invalid DVB data packets. A NFS denial of service by following “automount” symlinks was fixed. Updated packages are available from download.opensuse.org.

March 24, 2010 09:01 SuSE: New kernel packages fix local privilege escalation

0

This update of the openSUSE 11.2 kernel contains various security fixes. The wake_futex_pi function does not properly handle certain unlock operations for a Priority Inheritance (PI) futex, which allows local users to cause a denial of service. The futex_lock_pi function does not properly manage a certain reference count, which allows local users to cause a denial of service. The do_pages_move function does not validate node values, which allows local users to read arbitrary kernel memory locations or cause a denial of service. drivers/connector/connector.c allows local users to cause a denial of service. The x86 emulator in the KVM subsystem tries to interpret instructions that contain too many bytes to be valid, which allows guest OS users to cause a denial of service. Updated packages are available from download.opensuse.org.

March 24, 2010 07:39 SuSE: New OpenOffice_org packages fix remote code execution

0

This update of OpenOffice.org includes fixes for various vulnerabilities, including a XML signature weakness, an XPM import integer overflow, a GIF import heap overflow, and two MS Word sprmTDefTable memory corruptions. Updated packages are available from download.opensuse.org.

Screenshot

Project Spotlight

milter manager

A flexible and low administrative cost anti-spam system.

Screenshot

Project Spotlight

PyQt

Python bindings for the Qt GUI toolkit