Impact
remote denial of service
Solution
Please Install the Updated Packages.
Insight
The Linux kernel was updated for SUSE Linux Enterprise Server 9 SP4, Novell Linux Desktop 9, and Open Enterprise Server and fixes the following security problems:
- Memory overrun vulnerability in ISDN code CVE-2007-6151 - Insufficient range checks of certain fault handlers CVE-2008-0007 - Reset current->
pdeath_signal on SUID binary execution CVE-2007-3848 - aacraid: Fix range checks CVE-2007-4308.
- fixed a remote buffer overflow in CIFS CVE-2007-5904
Further improvements include:
- Several kernel crashes addressed.
- Improvements to running as a VMWare guest.
- Update of OCFS2 to 1.2.8-2.
- New code drop for the s390 architecture.
For details and a complete list of changes, please refer to the package changelog.
Affected
kernel on SUSE SLES 9, Novell Linux Desktop 9, Open Enterprise Server, Novell Linux POS 9
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2007-3848, CVE-2007-4308, CVE-2007-5904, CVE-2007-6151, CVE-2008-0007 -
CVSS Base Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities