CVE-2008-1294

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

---

CVE-2008-1294 at MITRE

Details

Linux kernel 2.6.17, and other versions before 2.6.22, does not check when a user attempts to set RLIMIT_CPU to 0 until after the change is made, which allows local users to bypass intended resource limits.

---

Novell Bugzilla entry: 370198

SUSE Security Advisories:

• SUSE-SA:2009:017 , published Fri, 03 Apr 2009 12:00:00 +0000

Product(s)	Fixed package version(s)	References
SUSE Linux Enterprise Desktop 10 SP2 for AMD64 and Intel EM64T	kernel-default >= 2.6.16.60-0.37_f594963d kernel-smp >= 2.6.16.60-0.37_f594963d kernel-source >= 2.6.16.60-0.37_f594963d kernel-syms >= 2.6.16.60-0.37_f594963d kernel-xen >= 2.6.16.60-0.37_f594963d	sles10-sp2-sdk. x86-64 sles10-sp2-debuginfo. x86-64 sles10-sp2-debuginfo. x86-64 sled10-sp2-debuginfo. x86-64 ZYPP Patch Nr: 6113
SUSE Linux Enterprise 10 SP2 DEBUGINFO for AMD64 and Intel EM64T	kernel-debug-debuginfo >= 2.6.16.60-0.37_f594963d kernel-default-debuginfo >= 2.6.16.60-0.37_f594963d kernel-kdump-debuginfo >= 2.6.16.60-0.37_f594963d kernel-smp-debuginfo >= 2.6.16.60-0.37_f594963d kernel-source-debuginfo >= 2.6.16.60-0.37_f594963d kernel-xen-debuginfo >= 2.6.16.60-0.37_f594963d	sles10-sp2-sdk. x86-64 sles10-sp2-debuginfo. x86-64 sles10-sp2-debuginfo. x86-64 sled10-sp2-debuginfo. x86-64 ZYPP Patch Nr: 6113
SLE SDK 10 SP2 for X86-64	kernel-debug >= 2.6.16.60-0.37_f594963d kernel-kdump >= 2.6.16.60-0.37_f594963d kernel-xen >= 2.6.16.60-0.37_f594963d	sles10-sp2-sdk. x86-64 sles10-sp2-debuginfo. x86-64 sles10-sp2-debuginfo. x86-64 sled10-sp2-debuginfo. x86-64 ZYPP Patch Nr: 6113
SUSE Linux Enterprise Server 10 SP2 for AMD64 and Intel EM64T	kernel-debug >= 2.6.16.60-0.37_f594963d kernel-default >= 2.6.16.60-0.37_f594963d kernel-kdump >= 2.6.16.60-0.37_f594963d kernel-smp >= 2.6.16.60-0.37_f594963d kernel-source >= 2.6.16.60-0.37_f594963d kernel-syms >= 2.6.16.60-0.37_f594963d kernel-xen >= 2.6.16.60-0.37_f594963d	sles10-sp2-sdk. x86-64 sles10-sp2-debuginfo. x86-64 sles10-sp2-debuginfo. x86-64 sled10-sp2-debuginfo. x86-64 ZYPP Patch Nr: 6113
SUSE Linux Enterprise 10 SP2 DEBUGINFO for IBM zSeries 64bit	kernel-default-debuginfo >= 2.6.16.60-0.37_f594963d	sles10-sp2-debuginfo. s390x sles10-sp2-debuginfo. s390x ZYPP Patch Nr: 6112
SUSE Linux Enterprise Server 10 SP2 for IBM zSeries 64bit	kernel-default >= 2.6.16.60-0.37_f594963d kernel-source >= 2.6.16.60-0.37_f594963d kernel-syms >= 2.6.16.60-0.37_f594963d	sles10-sp2-debuginfo. s390x sles10-sp2-debuginfo. s390x ZYPP Patch Nr: 6112
SUSE Linux Enterprise 10 SP2 DEBUGINFO for IBM POWER	kernel-default-debuginfo >= 2.6.16.60-0.37_f594963d kernel-iseries64-debuginfo >= 2.6.16.60-0.37_f594963d kernel-kdump-debuginfo >= 2.6.16.60-0.37_f594963d kernel-ppc64-debuginfo >= 2.6.16.60-0.37_f594963d	sles10-sp2-sdk. ppc sles10-sp2-debuginfo. ppc sles10-sp2-debuginfo. ppc ZYPP Patch Nr: 6111
SLE SDK 10 SP2 for IBM iSeries and IBM pSeries	kernel-kdump >= 2.6.16.60-0.37_f594963d	sles10-sp2-sdk. ppc sles10-sp2-debuginfo. ppc sles10-sp2-debuginfo. ppc ZYPP Patch Nr: 6111
SUSE Linux Enterprise Server 10 SP2 for IBM POWER	kernel-default >= 2.6.16.60-0.37_f594963d kernel-iseries64 >= 2.6.16.60-0.37_f594963d kernel-kdump >= 2.6.16.60-0.37_f594963d kernel-ppc64 >= 2.6.16.60-0.37_f594963d kernel-source >= 2.6.16.60-0.37_f594963d kernel-syms >= 2.6.16.60-0.37_f594963d	sles10-sp2-sdk. ppc sles10-sp2-debuginfo. ppc sles10-sp2-debuginfo. ppc ZYPP Patch Nr: 6111
SUSE Linux Enterprise 10 SP2 DEBUGINFO for IPF	kernel-debug-debuginfo >= 2.6.16.60-0.37_f594963d kernel-default-debuginfo >= 2.6.16.60-0.37_f594963d kernel-source-debuginfo >= 2.6.16.60-0.37_f594963d	sles10-sp2-sdk. ia64 sles10-sp2-debuginfo. ia64 sles10-sp2-debuginfo. ia64 ZYPP Patch Nr: 6110
SLE SDK 10 SP2 for IPF	kernel-debug >= 2.6.16.60-0.37_f594963d	sles10-sp2-sdk. ia64 sles10-sp2-debuginfo. ia64 sles10-sp2-debuginfo. ia64 ZYPP Patch Nr: 6110
SUSE Linux Enterprise Server 10 SP2 for IPF	kernel-debug >= 2.6.16.60-0.37_f594963d kernel-default >= 2.6.16.60-0.37_f594963d kernel-source >= 2.6.16.60-0.37_f594963d kernel-syms >= 2.6.16.60-0.37_f594963d	sles10-sp2-sdk. ia64 sles10-sp2-debuginfo. ia64 sles10-sp2-debuginfo. ia64 ZYPP Patch Nr: 6110
SUSE Linux Enterprise Desktop 10 SP2 for x86	kernel-bigsmp >= 2.6.16.60-0.37_f594963d kernel-default >= 2.6.16.60-0.37_f594963d kernel-smp >= 2.6.16.60-0.37_f594963d kernel-source >= 2.6.16.60-0.37_f594963d kernel-syms >= 2.6.16.60-0.37_f594963d kernel-xen >= 2.6.16.60-0.37_f594963d kernel-xenpae >= 2.6.16.60-0.37_f594963d	sles10-sp2-debuginfo. x86 sled10-sp2-debuginfo. x86 sles10-sp2-sdk. x86 sles10-sp2-debuginfo. x86 ZYPP Patch Nr: 6109
SUSE Linux Enterprise 10 SP2 DEBUGINFO for x86	kernel-bigsmp-debuginfo >= 2.6.16.60-0.37_f594963d kernel-debug-debuginfo >= 2.6.16.60-0.37_f594963d kernel-default-debuginfo >= 2.6.16.60-0.37_f594963d kernel-kdump-debuginfo >= 2.6.16.60-0.37_f594963d kernel-smp-debuginfo >= 2.6.16.60-0.37_f594963d kernel-source-debuginfo >= 2.6.16.60-0.37_f594963d kernel-xen-debuginfo >= 2.6.16.60-0.37_f594963d kernel-xenpae-debuginfo >= 2.6.16.60-0.37_f594963d	sles10-sp2-debuginfo. x86 sled10-sp2-debuginfo. x86 sles10-sp2-sdk. x86 sles10-sp2-debuginfo. x86 ZYPP Patch Nr: 6109
SLE SDK 10 SP2 for x86	kernel-debug >= 2.6.16.60-0.37_f594963d kernel-kdump >= 2.6.16.60-0.37_f594963d kernel-xen >= 2.6.16.60-0.37_f594963d kernel-xenpae >= 2.6.16.60-0.37_f594963d	sles10-sp2-debuginfo. x86 sled10-sp2-debuginfo. x86 sles10-sp2-sdk. x86 sles10-sp2-debuginfo. x86 ZYPP Patch Nr: 6109
SUSE Linux Enterprise Server 10 SP2 for x86	kernel-bigsmp >= 2.6.16.60-0.37_f594963d kernel-debug >= 2.6.16.60-0.37_f594963d kernel-default >= 2.6.16.60-0.37_f594963d kernel-kdump >= 2.6.16.60-0.37_f594963d kernel-smp >= 2.6.16.60-0.37_f594963d kernel-source >= 2.6.16.60-0.37_f594963d kernel-syms >= 2.6.16.60-0.37_f594963d kernel-vmi >= 2.6.16.60-0.37_f594963d kernel-vmipae >= 2.6.16.60-0.37_f594963d kernel-xen >= 2.6.16.60-0.37_f594963d kernel-xenpae >= 2.6.16.60-0.37_f594963d	sles10-sp2-debuginfo. x86 sled10-sp2-debuginfo. x86 sles10-sp2-sdk. x86 sles10-sp2-debuginfo. x86 ZYPP Patch Nr: 6109

• Support Home
• Download
  • Patches
    • Patch Home
    • Patch Finder
  • Products
  • Drivers
  • Beta
  • Cool Tools
• Help yourself
  • Knowledgebase
  • Novell Support Advisor
  • Discussion Forums
  • Documentation
  • Support by Product
  • Product Support Lifecycle
  • Activate My Product
  • Bookstore
  • Technical Subscriptions
  • Support FAQ
• Let us help
  • Novell Support Programs
    • Linux Support
    • Support for MLA
    • Support for VLA
    • Support for Academic Customers
    • Support for Partners
    • Single Service Request
    • All Support Programs
  • Support from Partner
  • Open Service Request
  • Chat with Us (Non-technical questions)
• Contribute
  • Participate in Beta
  • Report a Bug
  • Share a Tip, Trick, etc.
  • Request Enhancement
  • Report Software Vulnerability
  • Provide Feedback

• Customer Center