Novell Home

CVE-2010-4656

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2010-4656 at MITRE

Description

The iowarrior_write function in drivers/usb/misc/iowarrior.c in the Linux kernel before 2.6.37 does not properly allocate memory, which might allow local users to trigger a heap-based buffer overflow, and consequently cause a denial of service or gain privileges, via a long report.

NVD CVSS v2 Base Score: 6.2 (AV:L/AC:H/Au:N/C:C/I:C/A:C)

Novell/SUSE information

Note from the SUSE Security Team

The iowarrior did not exists on SUSE Linux Enterprise 10 and older kernels, so these are not affected.,The iowarrior did not exists on SUSE Linux Enterprise 10 and older kernels, so these are not affected.

Novell Bugzilla entries: 653148, 666842

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise High Availability Extension 11 SP1
  • cluster-network-kmp-default >= 1.4_2.6.32.36_0.5-2.3.40
  • cluster-network-kmp-xen >= 1.4_2.6.32.36_0.5-2.3.40
  • gfs2-kmp-default >= 2_2.6.32.36_0.5-0.2.40
  • gfs2-kmp-xen >= 2_2.6.32.36_0.5-0.2.40
sle11-sp1-hae.x86-64
sled11-sp1.x86-64
sles11-sp1.x86-64
sles11-sp1-vmware.x86-64
SAT Patch Nr: 4376
SUSE Linux Enterprise Desktop 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.36_0.5-0.3.40
  • btrfs-kmp-xen >= 0_2.6.32.36_0.5-0.3.40
  • kernel-default >= 2.6.32.36-0.5.2
  • kernel-default-base >= 2.6.32.36-0.5.2
  • kernel-default-devel >= 2.6.32.36-0.5.2
  • kernel-default-extra >= 2.6.32.36-0.5.2
  • kernel-desktop-devel >= 2.6.32.36-0.5.2
  • kernel-source >= 2.6.32.36-0.5.2
  • kernel-syms >= 2.6.32.36-0.5.2
  • kernel-xen >= 2.6.32.36-0.5.2
  • kernel-xen-base >= 2.6.32.36-0.5.2
  • kernel-xen-devel >= 2.6.32.36-0.5.2
  • kernel-xen-extra >= 2.6.32.36-0.5.2
sle11-sp1-hae.x86-64
sled11-sp1.x86-64
sles11-sp1.x86-64
sles11-sp1-vmware.x86-64
SAT Patch Nr: 4376
SUSE Linux Enterprise Server 11 SP1 for VMware
  • btrfs-kmp-default >= 0_2.6.32.36_0.5-0.3.40
  • ext4dev-kmp-default >= 0_2.6.32.36_0.5-7.9.8
  • kernel-default >= 2.6.32.36-0.5.2
  • kernel-default-base >= 2.6.32.36-0.5.2
  • kernel-default-devel >= 2.6.32.36-0.5.2
  • kernel-source >= 2.6.32.36-0.5.2
  • kernel-syms >= 2.6.32.36-0.5.2
  • kernel-trace >= 2.6.32.36-0.5.2
  • kernel-trace-base >= 2.6.32.36-0.5.2
  • kernel-trace-devel >= 2.6.32.36-0.5.2
sle11-sp1-hae.x86-64
sled11-sp1.x86-64
sles11-sp1.x86-64
sles11-sp1-vmware.x86-64
SAT Patch Nr: 4376
SUSE Linux Enterprise Server 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.36_0.5-0.3.40
  • btrfs-kmp-xen >= 0_2.6.32.36_0.5-0.3.40
  • ext4dev-kmp-default >= 0_2.6.32.36_0.5-7.9.8
  • ext4dev-kmp-xen >= 0_2.6.32.36_0.5-7.9.8
  • kernel-default >= 2.6.32.36-0.5.2
  • kernel-default-base >= 2.6.32.36-0.5.2
  • kernel-default-devel >= 2.6.32.36-0.5.2
  • kernel-ec2 >= 2.6.32.36-0.5.2
  • kernel-ec2-base >= 2.6.32.36-0.5.2
  • kernel-source >= 2.6.32.36-0.5.2
  • kernel-syms >= 2.6.32.36-0.5.2
  • kernel-trace >= 2.6.32.36-0.5.2
  • kernel-trace-base >= 2.6.32.36-0.5.2
  • kernel-trace-devel >= 2.6.32.36-0.5.2
  • kernel-xen >= 2.6.32.36-0.5.2
  • kernel-xen-base >= 2.6.32.36-0.5.2
  • kernel-xen-devel >= 2.6.32.36-0.5.2
sle11-sp1-hae.x86-64
sled11-sp1.x86-64
sles11-sp1.x86-64
sles11-sp1-vmware.x86-64
SAT Patch Nr: 4376
SLE 11 SERVER Unsupported Extras
  • kernel-default-extra >= 2.6.32.36-0.5.2
  • kernel-ppc64-extra >= 2.6.32.36-0.5.2
Builds
SAT Patch Nr: 4379
SUSE Linux Enterprise High Availability Extension 11 SP1
  • cluster-network-kmp-default >= 1.4_2.6.32.36_0.5-2.3.40
  • gfs2-kmp-default >= 2_2.6.32.36_0.5-0.2.40
sle11-sp1-hae.ia64
sles11-sp1.ia64
SAT Patch Nr: 4375
SUSE Linux Enterprise Server 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.36_0.5-0.3.40
  • ext4dev-kmp-default >= 0_2.6.32.36_0.5-7.9.8
  • kernel-default >= 2.6.32.36-0.5.2
  • kernel-default-base >= 2.6.32.36-0.5.2
  • kernel-default-devel >= 2.6.32.36-0.5.2
  • kernel-source >= 2.6.32.36-0.5.2
  • kernel-syms >= 2.6.32.36-0.5.2
  • kernel-trace >= 2.6.32.36-0.5.2
  • kernel-trace-base >= 2.6.32.36-0.5.2
  • kernel-trace-devel >= 2.6.32.36-0.5.2
sle11-sp1-hae.ia64
sles11-sp1.ia64
SAT Patch Nr: 4375
SUSE Linux Enterprise High Availability Extension 11 SP1
  • cluster-network-kmp-default >= 1.4_2.6.32.36_0.5-2.3.40
  • cluster-network-kmp-ppc64 >= 1.4_2.6.32.36_0.5-2.3.40
  • gfs2-kmp-default >= 2_2.6.32.36_0.5-0.2.40
  • gfs2-kmp-ppc64 >= 2_2.6.32.36_0.5-0.2.40
sle11-sp1-hae.ppc
sles11-sp1.ppc
SAT Patch Nr: 4385
SUSE Linux Enterprise Server 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.36_0.5-0.3.40
  • ext4dev-kmp-default >= 0_2.6.32.36_0.5-7.9.8
  • ext4dev-kmp-ppc64 >= 0_2.6.32.36_0.5-7.9.8
  • kernel-default >= 2.6.32.36-0.5.2
  • kernel-default-base >= 2.6.32.36-0.5.2
  • kernel-default-devel >= 2.6.32.36-0.5.2
  • kernel-ppc64 >= 2.6.32.36-0.5.2
  • kernel-ppc64-base >= 2.6.32.36-0.5.2
  • kernel-ppc64-devel >= 2.6.32.36-0.5.2
  • kernel-source >= 2.6.32.36-0.5.2
  • kernel-syms >= 2.6.32.36-0.5.2
  • kernel-trace >= 2.6.32.36-0.5.2
  • kernel-trace-base >= 2.6.32.36-0.5.2
  • kernel-trace-devel >= 2.6.32.36-0.5.2
sle11-sp1-hae.ppc
sles11-sp1.ppc
SAT Patch Nr: 4385
SLE 11 SERVER Unsupported Extras
  • kernel-default-extra >= 2.6.32.36-0.5.2
  • kernel-pae-extra >= 2.6.32.36-0.5.2
  • kernel-xen-extra >= 2.6.32.36-0.5.2
Builds
SAT Patch Nr: 4377
SLE 11 SERVER Unsupported Extras
  • kernel-default-extra >= 2.6.32.36-0.5.2
Builds
SAT Patch Nr: 4380
SLE 11 SERVER Unsupported Extras
  • kernel-default-extra >= 2.6.32.36-0.5.2
Builds
SAT Patch Nr: 4378
SUSE Linux Enterprise High Availability Extension 11 SP1
  • cluster-network-kmp-default >= 1.4_2.6.32.36_0.5-2.3.40
  • cluster-network-kmp-pae >= 1.4_2.6.32.36_0.5-2.3.40
  • cluster-network-kmp-xen >= 1.4_2.6.32.36_0.5-2.3.40
  • gfs2-kmp-default >= 2_2.6.32.36_0.5-0.2.40
  • gfs2-kmp-pae >= 2_2.6.32.36_0.5-0.2.40
  • gfs2-kmp-xen >= 2_2.6.32.36_0.5-0.2.40
sles11-sp1-vmware.x86
sle11-sp1-hae.x86
sles11-sp1.x86
sled11-sp1.x86
SAT Patch Nr: 4384
SUSE Linux Enterprise Desktop 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.36_0.5-0.3.40
  • btrfs-kmp-pae >= 0_2.6.32.36_0.5-0.3.40
  • btrfs-kmp-xen >= 0_2.6.32.36_0.5-0.3.40
  • kernel-default >= 2.6.32.36-0.5.2
  • kernel-default-base >= 2.6.32.36-0.5.2
  • kernel-default-devel >= 2.6.32.36-0.5.2
  • kernel-default-extra >= 2.6.32.36-0.5.2
  • kernel-desktop-devel >= 2.6.32.36-0.5.2
  • kernel-pae >= 2.6.32.36-0.5.2
  • kernel-pae-base >= 2.6.32.36-0.5.2
  • kernel-pae-devel >= 2.6.32.36-0.5.2
  • kernel-pae-extra >= 2.6.32.36-0.5.2
  • kernel-source >= 2.6.32.36-0.5.2
  • kernel-syms >= 2.6.32.36-0.5.2
  • kernel-xen >= 2.6.32.36-0.5.2
  • kernel-xen-base >= 2.6.32.36-0.5.2
  • kernel-xen-devel >= 2.6.32.36-0.5.2
  • kernel-xen-extra >= 2.6.32.36-0.5.2
sles11-sp1-vmware.x86
sle11-sp1-hae.x86
sles11-sp1.x86
sled11-sp1.x86
SAT Patch Nr: 4384
SUSE Linux Enterprise Server 11 SP1 for VMware
  • btrfs-kmp-default >= 0_2.6.32.36_0.5-0.3.40
  • btrfs-kmp-pae >= 0_2.6.32.36_0.5-0.3.40
  • ext4dev-kmp-default >= 0_2.6.32.36_0.5-7.9.8
  • ext4dev-kmp-pae >= 0_2.6.32.36_0.5-7.9.8
  • kernel-default >= 2.6.32.36-0.5.2
  • kernel-default-base >= 2.6.32.36-0.5.2
  • kernel-default-devel >= 2.6.32.36-0.5.2
  • kernel-pae >= 2.6.32.36-0.5.2
  • kernel-pae-base >= 2.6.32.36-0.5.2
  • kernel-pae-devel >= 2.6.32.36-0.5.2
  • kernel-source >= 2.6.32.36-0.5.2
  • kernel-syms >= 2.6.32.36-0.5.2
  • kernel-trace >= 2.6.32.36-0.5.2
  • kernel-trace-base >= 2.6.32.36-0.5.2
  • kernel-trace-devel >= 2.6.32.36-0.5.2
sles11-sp1-vmware.x86
sle11-sp1-hae.x86
sles11-sp1.x86
sled11-sp1.x86
SAT Patch Nr: 4384
SUSE Linux Enterprise Server 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.36_0.5-0.3.40
  • btrfs-kmp-pae >= 0_2.6.32.36_0.5-0.3.40
  • btrfs-kmp-xen >= 0_2.6.32.36_0.5-0.3.40
  • ext4dev-kmp-default >= 0_2.6.32.36_0.5-7.9.8
  • ext4dev-kmp-pae >= 0_2.6.32.36_0.5-7.9.8
  • ext4dev-kmp-xen >= 0_2.6.32.36_0.5-7.9.8
  • kernel-default >= 2.6.32.36-0.5.2
  • kernel-default-base >= 2.6.32.36-0.5.2
  • kernel-default-devel >= 2.6.32.36-0.5.2
  • kernel-ec2 >= 2.6.32.36-0.5.2
  • kernel-ec2-base >= 2.6.32.36-0.5.2
  • kernel-pae >= 2.6.32.36-0.5.2
  • kernel-pae-base >= 2.6.32.36-0.5.2
  • kernel-pae-devel >= 2.6.32.36-0.5.2
  • kernel-source >= 2.6.32.36-0.5.2
  • kernel-syms >= 2.6.32.36-0.5.2
  • kernel-trace >= 2.6.32.36-0.5.2
  • kernel-trace-base >= 2.6.32.36-0.5.2
  • kernel-trace-devel >= 2.6.32.36-0.5.2
  • kernel-xen >= 2.6.32.36-0.5.2
  • kernel-xen-base >= 2.6.32.36-0.5.2
  • kernel-xen-devel >= 2.6.32.36-0.5.2
sles11-sp1-vmware.x86
sle11-sp1-hae.x86
sles11-sp1.x86
sled11-sp1.x86
SAT Patch Nr: 4384
SUSE Linux Enterprise High Availability Extension 11 SP1
  • cluster-network-kmp-default >= 1.4_2.6.32.36_0.5-2.3.40
  • gfs2-kmp-default >= 2_2.6.32.36_0.5-0.2.40
sles11-sp1.s390x
sle11-sp1-hae.s390x
SAT Patch Nr: 4386
SUSE Linux Enterprise Server 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.36_0.5-0.3.40
  • ext4dev-kmp-default >= 0_2.6.32.36_0.5-7.9.8
  • kernel-default >= 2.6.32.36-0.5.2
  • kernel-default-base >= 2.6.32.36-0.5.2
  • kernel-default-devel >= 2.6.32.36-0.5.2
  • kernel-default-man >= 2.6.32.36-0.5.2
  • kernel-source >= 2.6.32.36-0.5.2
  • kernel-syms >= 2.6.32.36-0.5.2
  • kernel-trace >= 2.6.32.36-0.5.2
  • kernel-trace-base >= 2.6.32.36-0.5.2
  • kernel-trace-devel >= 2.6.32.36-0.5.2
sles11-sp1.s390x
sle11-sp1-hae.s390x
SAT Patch Nr: 4386
SLE 11 SERVER Unsupported Extras
  • kernel-default-extra >= 2.6.32.36-0.5.2
  • kernel-xen-extra >= 2.6.32.36-0.5.2
Builds
SAT Patch Nr: 4381
openSUSE 11.3
  • kernel-debug-base-debuginfo >= 2.6.34.8-0.2.1
  • kernel-debug-debuginfo >= 2.6.34.8-0.2.1
  • kernel-debug-debugsource >= 2.6.34.8-0.2.1
  • kernel-debug-devel-debuginfo >= 2.6.34.8-0.2.1
  • kernel-default-base-debuginfo >= 2.6.34.8-0.2.1
  • kernel-default-debuginfo >= 2.6.34.8-0.2.1
  • kernel-default-debugsource >= 2.6.34.8-0.2.1
  • kernel-default-devel-debuginfo >= 2.6.34.8-0.2.1
  • kernel-desktop-base-debuginfo >= 2.6.34.8-0.2.1
  • kernel-desktop-debuginfo >= 2.6.34.8-0.2.1
  • kernel-desktop-debugsource >= 2.6.34.8-0.2.1
  • kernel-desktop-devel-debuginfo >= 2.6.34.8-0.2.1
  • kernel-ec2-base-debuginfo >= 2.6.34.8-0.2.1
  • kernel-ec2-debuginfo >= 2.6.34.8-0.2.1
  • kernel-ec2-debugsource >= 2.6.34.8-0.2.1
  • kernel-ec2-devel-debuginfo >= 2.6.34.8-0.2.1
  • kernel-ec2-extra-debuginfo >= 2.6.34.8-0.2.1
  • kernel-pae-base-debuginfo >= 2.6.34.8-0.2.1
  • kernel-pae-debuginfo >= 2.6.34.8-0.2.1
  • kernel-pae-debugsource >= 2.6.34.8-0.2.1
  • kernel-pae-devel-debuginfo >= 2.6.34.8-0.2.1
  • kernel-trace-base-debuginfo >= 2.6.34.8-0.2.1
  • kernel-trace-debuginfo >= 2.6.34.8-0.2.1
  • kernel-trace-debugsource >= 2.6.34.8-0.2.1
  • kernel-trace-devel-debuginfo >= 2.6.34.8-0.2.1
  • kernel-vanilla-base-debuginfo >= 2.6.34.8-0.2.1
  • kernel-vanilla-debuginfo >= 2.6.34.8-0.2.1
  • kernel-vanilla-debugsource >= 2.6.34.8-0.2.1
  • kernel-vanilla-devel-debuginfo >= 2.6.34.8-0.2.1
  • kernel-vmi-base-debuginfo >= 2.6.34.8-0.2.1
  • kernel-vmi-debuginfo >= 2.6.34.8-0.2.1
  • kernel-vmi-debugsource >= 2.6.34.8-0.2.1
  • kernel-vmi-devel-debuginfo >= 2.6.34.8-0.2.1
  • kernel-xen-base-debuginfo >= 2.6.34.8-0.2.1
  • kernel-xen-debuginfo >= 2.6.34.8-0.2.1
  • kernel-xen-debugsource >= 2.6.34.8-0.2.1
  • kernel-xen-devel-debuginfo >= 2.6.34.8-0.2.1
  • preload-kmp-default-debuginfo >= 1.1_k2.6.34.8_0.2-19.1.19
  • preload-kmp-desktop-debuginfo >= 1.1_k2.6.34.8_0.2-19.1.19
openSUSE 11.3
  • kernel-debug >= 2.6.34.8-0.2.1
  • kernel-debug-base >= 2.6.34.8-0.2.1
  • kernel-debug-devel >= 2.6.34.8-0.2.1
  • kernel-default >= 2.6.34.8-0.2.1
  • kernel-default-base >= 2.6.34.8-0.2.1
  • kernel-default-devel >= 2.6.34.8-0.2.1
  • kernel-desktop >= 2.6.34.8-0.2.1
  • kernel-desktop-base >= 2.6.34.8-0.2.1
  • kernel-desktop-devel >= 2.6.34.8-0.2.1
  • kernel-devel >= 2.6.34.8-0.2.1
  • kernel-ec2 >= 2.6.34.8-0.2.1
  • kernel-ec2-base >= 2.6.34.8-0.2.1
  • kernel-ec2-devel >= 2.6.34.8-0.2.1
  • kernel-ec2-extra >= 2.6.34.8-0.2.1
  • kernel-pae >= 2.6.34.8-0.2.1
  • kernel-pae-base >= 2.6.34.8-0.2.1
  • kernel-pae-devel >= 2.6.34.8-0.2.1
  • kernel-source >= 2.6.34.8-0.2.1
  • kernel-source-vanilla >= 2.6.34.8-0.2.1
  • kernel-syms >= 2.6.34.8-0.2.1
  • kernel-trace >= 2.6.34.8-0.2.1
  • kernel-trace-base >= 2.6.34.8-0.2.1
  • kernel-trace-devel >= 2.6.34.8-0.2.1
  • kernel-vanilla >= 2.6.34.8-0.2.1
  • kernel-vanilla-base >= 2.6.34.8-0.2.1
  • kernel-vanilla-devel >= 2.6.34.8-0.2.1
  • kernel-vmi >= 2.6.34.8-0.2.1
  • kernel-vmi-base >= 2.6.34.8-0.2.1
  • kernel-vmi-devel >= 2.6.34.8-0.2.1
  • kernel-xen >= 2.6.34.8-0.2.1
  • kernel-xen-base >= 2.6.34.8-0.2.1
  • kernel-xen-devel >= 2.6.34.8-0.2.1
  • preload-kmp-default >= 1.1_k2.6.34.8_0.2-19.1.19
  • preload-kmp-desktop >= 1.1_k2.6.34.8_0.2-19.1.19

List of products where fixes are in QA

SLE 11 SERVER Unsupported Extras
SLE 11 SERVER Unsupported Extras
SLE 11 SERVER Unsupported Extras
SLE 11 SERVER Unsupported Extras
SLE 11 SERVER Unsupported Extras
SLE 11 SERVER Unsupported Extras
SLE 11 SERVER Unsupported Extras
SLE 11 SERVER Unsupported Extras
SLE 11 SERVER Unsupported Extras
SLE 11 SERVER Unsupported Extras
SUSE Linux Enterprise Desktop 11 SP1
SUSE Linux Enterprise Desktop 11 SP1
SUSE Linux Enterprise High Availability Extension 11 SP1
SUSE Linux Enterprise High Availability Extension 11 SP1
SUSE Linux Enterprise High Availability Extension 11 SP1
SUSE Linux Enterprise High Availability Extension 11 SP1
SUSE Linux Enterprise High Availability Extension 11 SP1
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP1 for VMware
SUSE Linux Enterprise Server 11 SP1 for VMware

© 2014 Novell