Novell Home

CVE-2011-2928

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2011-2928 at MITRE

Description

The befs_follow_link function in fs/befs/linuxvfs.c in the Linux kernel before 3.1-rc3 does not validate the length attribute of long symlinks, which allows local users to cause a denial of service (incorrect pointer dereference and OOPS) by accessing a long symlink on a malformed Be filesystem.

NVD CVSS v2 Base Score: 4.9 (AV:L/AC:L/Au:N/C:N/I:N/A:C)

Novell/SUSE information

Novell Bugzilla entry: 713430

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SLE 11 SERVER Unsupported Extras
  • kernel-default-extra >= 2.6.32.46-0.3.1
Builds
SAT Patch Nr: 5215
SLE 11 SERVER Unsupported Extras
  • kernel-default-extra >= 2.6.32.46-0.3.1
  • kernel-pae-extra >= 2.6.32.46-0.3.1
  • kernel-xen-extra >= 2.6.32.46-0.3.1
Builds
SAT Patch Nr: 5212
SUSE Linux Enterprise High Availability Extension 11 SP1
  • cluster-network-kmp-default >= 1.4_2.6.32.46_0.3-2.5.9
  • gfs2-kmp-default >= 2_2.6.32.46_0.3-0.2.56
  • ocfs2-kmp-default >= 1.6_2.6.32.46_0.3-0.4.2.9
sle11-sp1-hae.ia64
sles11-sp1.ia64
SAT Patch Nr: 5220
SUSE Linux Enterprise Server 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.46_0.3-0.3.57
  • ext4dev-kmp-default >= 0_2.6.32.46_0.3-7.9.24
  • kernel-default >= 2.6.32.46-0.3.1
  • kernel-default-base >= 2.6.32.46-0.3.1
  • kernel-default-devel >= 2.6.32.46-0.3.1
  • kernel-source >= 2.6.32.46-0.3.1
  • kernel-syms >= 2.6.32.46-0.3.1
  • kernel-trace >= 2.6.32.46-0.3.1
  • kernel-trace-base >= 2.6.32.46-0.3.1
  • kernel-trace-devel >= 2.6.32.46-0.3.1
sle11-sp1-hae.ia64
sles11-sp1.ia64
SAT Patch Nr: 5220
SUSE Linux Enterprise Real Time 11 SP1
  • brocade-bna-kmp-rt >= 2.1.0.0_2.6.33.20_rt31_0.3-0.2.34
  • cluster-network-kmp-rt >= 1.4_2.6.33.20_rt31_0.3-2.5.28
  • cluster-network-kmp-rt_trace >= 1.4_2.6.33.20_rt31_0.3-2.5.28
  • drbd-kmp-rt >= 8.3.11_2.6.33.20_rt31_0.3-0.3.28
  • drbd-kmp-rt_trace >= 8.3.11_2.6.33.20_rt31_0.3-0.3.28
  • iscsitarget-kmp-rt >= 1.4.19_2.6.33.20_rt31_0.3-0.9.11.2
  • kernel-rt >= 2.6.33.20-0.3.1
  • kernel-rt-base >= 2.6.33.20-0.3.1
  • kernel-rt-devel >= 2.6.33.20-0.3.1
  • kernel-rt_trace >= 2.6.33.20-0.3.1
  • kernel-rt_trace-base >= 2.6.33.20-0.3.1
  • kernel-rt_trace-devel >= 2.6.33.20-0.3.1
  • kernel-source-rt >= 2.6.33.20-0.3.1
  • kernel-syms-rt >= 2.6.33.20-0.3.1
  • ocfs2-kmp-rt >= 1.6_2.6.33.20_rt31_0.3-0.4.2.28
  • ocfs2-kmp-rt_trace >= 1.6_2.6.33.20_rt31_0.3-0.4.2.28
  • ofed-kmp-rt >= 1.5.2_2.6.33.20_rt31_0.3-0.9.13.15
slert11-sp1.x86-64
SAT Patch Nr: 5802
SUSE Linux Enterprise Server 10 SP3 LTSS for IBM zSeries 64bit
  • kernel-default >= 2.6.16.60-0.113.1
  • kernel-source >= 2.6.16.60-0.113.1
  • kernel-syms >= 2.6.16.60-0.113.1
Builds
ZYPP Patch Nr: 8755
SUSE Linux Enterprise High Availability Extension 11 SP1
  • cluster-network-kmp-default >= 1.4_2.6.32.46_0.3-2.5.9
  • cluster-network-kmp-pae >= 1.4_2.6.32.46_0.3-2.5.9
  • cluster-network-kmp-xen >= 1.4_2.6.32.46_0.3-2.5.9
  • gfs2-kmp-default >= 2_2.6.32.46_0.3-0.2.56
  • gfs2-kmp-pae >= 2_2.6.32.46_0.3-0.2.56
  • gfs2-kmp-xen >= 2_2.6.32.46_0.3-0.2.56
  • ocfs2-kmp-default >= 1.6_2.6.32.46_0.3-0.4.2.9
  • ocfs2-kmp-pae >= 1.6_2.6.32.46_0.3-0.4.2.9
  • ocfs2-kmp-xen >= 1.6_2.6.32.46_0.3-0.4.2.9
sles11-sp1.x86
sled11-sp1.x86
sles11-sp1-vmware.x86
sle11-sp1-hae.x86
SAT Patch Nr: 5219
SUSE Linux Enterprise Desktop 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.46_0.3-0.3.57
  • btrfs-kmp-pae >= 0_2.6.32.46_0.3-0.3.57
  • btrfs-kmp-xen >= 0_2.6.32.46_0.3-0.3.57
  • hyper-v-kmp-default >= 0_2.6.32.46_0.3-0.14.11
  • hyper-v-kmp-pae >= 0_2.6.32.46_0.3-0.14.11
  • kernel-default >= 2.6.32.46-0.3.1
  • kernel-default-base >= 2.6.32.46-0.3.1
  • kernel-default-devel >= 2.6.32.46-0.3.1
  • kernel-default-extra >= 2.6.32.46-0.3.1
  • kernel-desktop-devel >= 2.6.32.46-0.3.1
  • kernel-pae >= 2.6.32.46-0.3.1
  • kernel-pae-base >= 2.6.32.46-0.3.1
  • kernel-pae-devel >= 2.6.32.46-0.3.1
  • kernel-pae-extra >= 2.6.32.46-0.3.1
  • kernel-source >= 2.6.32.46-0.3.1
  • kernel-syms >= 2.6.32.46-0.3.1
  • kernel-xen >= 2.6.32.46-0.3.1
  • kernel-xen-base >= 2.6.32.46-0.3.1
  • kernel-xen-devel >= 2.6.32.46-0.3.1
  • kernel-xen-extra >= 2.6.32.46-0.3.1
sles11-sp1.x86
sled11-sp1.x86
sles11-sp1-vmware.x86
sle11-sp1-hae.x86
SAT Patch Nr: 5219
SUSE Linux Enterprise Server 11 SP1 for VMware
  • btrfs-kmp-default >= 0_2.6.32.46_0.3-0.3.57
  • btrfs-kmp-pae >= 0_2.6.32.46_0.3-0.3.57
  • ext4dev-kmp-default >= 0_2.6.32.46_0.3-7.9.24
  • ext4dev-kmp-pae >= 0_2.6.32.46_0.3-7.9.24
  • hyper-v-kmp-default >= 0_2.6.32.46_0.3-0.14.11
  • hyper-v-kmp-pae >= 0_2.6.32.46_0.3-0.14.11
  • kernel-default >= 2.6.32.46-0.3.1
  • kernel-default-base >= 2.6.32.46-0.3.1
  • kernel-default-devel >= 2.6.32.46-0.3.1
  • kernel-pae >= 2.6.32.46-0.3.1
  • kernel-pae-base >= 2.6.32.46-0.3.1
  • kernel-pae-devel >= 2.6.32.46-0.3.1
  • kernel-source >= 2.6.32.46-0.3.1
  • kernel-syms >= 2.6.32.46-0.3.1
  • kernel-trace >= 2.6.32.46-0.3.1
  • kernel-trace-base >= 2.6.32.46-0.3.1
  • kernel-trace-devel >= 2.6.32.46-0.3.1
sles11-sp1.x86
sled11-sp1.x86
sles11-sp1-vmware.x86
sle11-sp1-hae.x86
SAT Patch Nr: 5219
SUSE Linux Enterprise Server 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.46_0.3-0.3.57
  • btrfs-kmp-pae >= 0_2.6.32.46_0.3-0.3.57
  • btrfs-kmp-xen >= 0_2.6.32.46_0.3-0.3.57
  • ext4dev-kmp-default >= 0_2.6.32.46_0.3-7.9.24
  • ext4dev-kmp-pae >= 0_2.6.32.46_0.3-7.9.24
  • ext4dev-kmp-xen >= 0_2.6.32.46_0.3-7.9.24
  • hyper-v-kmp-default >= 0_2.6.32.46_0.3-0.14.11
  • hyper-v-kmp-pae >= 0_2.6.32.46_0.3-0.14.11
  • kernel-default >= 2.6.32.46-0.3.1
  • kernel-default-base >= 2.6.32.46-0.3.1
  • kernel-default-devel >= 2.6.32.46-0.3.1
  • kernel-ec2 >= 2.6.32.46-0.3.1
  • kernel-ec2-base >= 2.6.32.46-0.3.1
  • kernel-pae >= 2.6.32.46-0.3.1
  • kernel-pae-base >= 2.6.32.46-0.3.1
  • kernel-pae-devel >= 2.6.32.46-0.3.1
  • kernel-source >= 2.6.32.46-0.3.1
  • kernel-syms >= 2.6.32.46-0.3.1
  • kernel-trace >= 2.6.32.46-0.3.1
  • kernel-trace-base >= 2.6.32.46-0.3.1
  • kernel-trace-devel >= 2.6.32.46-0.3.1
  • kernel-xen >= 2.6.32.46-0.3.1
  • kernel-xen-base >= 2.6.32.46-0.3.1
  • kernel-xen-devel >= 2.6.32.46-0.3.1
sles11-sp1.x86
sled11-sp1.x86
sles11-sp1-vmware.x86
sle11-sp1-hae.x86
SAT Patch Nr: 5219
SLE SDK 10 SP4 for IPF
  • kernel-debug >= 2.6.16.60-0.97.1
Builds
ZYPP Patch Nr: 8160
SUSE Linux Enterprise Server 10 SP4 for IPF
  • kernel-debug >= 2.6.16.60-0.97.1
  • kernel-default >= 2.6.16.60-0.97.1
  • kernel-source >= 2.6.16.60-0.97.1
  • kernel-syms >= 2.6.16.60-0.97.1
Builds
ZYPP Patch Nr: 8160
SUSE Linux Enterprise High Availability Extension 11 SP1
  • cluster-network-kmp-default >= 1.4_2.6.32.46_0.3-2.5.9
  • gfs2-kmp-default >= 2_2.6.32.46_0.3-0.2.56
  • ocfs2-kmp-default >= 1.6_2.6.32.46_0.3-0.4.2.9
sle11-sp1-hae.s390x
sles11-sp1.s390x
SAT Patch Nr: 5222
SUSE Linux Enterprise Server 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.46_0.3-0.3.57
  • ext4dev-kmp-default >= 0_2.6.32.46_0.3-7.9.24
  • kernel-default >= 2.6.32.46-0.3.1
  • kernel-default-base >= 2.6.32.46-0.3.1
  • kernel-default-devel >= 2.6.32.46-0.3.1
  • kernel-default-man >= 2.6.32.46-0.3.1
  • kernel-source >= 2.6.32.46-0.3.1
  • kernel-syms >= 2.6.32.46-0.3.1
  • kernel-trace >= 2.6.32.46-0.3.1
  • kernel-trace-base >= 2.6.32.46-0.3.1
  • kernel-trace-devel >= 2.6.32.46-0.3.1
sle11-sp1-hae.s390x
sles11-sp1.s390x
SAT Patch Nr: 5222
SUSE Linux Enterprise High Availability Extension 11 SP1
  • cluster-network-kmp-default >= 1.4_2.6.32.46_0.3-2.5.9
  • cluster-network-kmp-xen >= 1.4_2.6.32.46_0.3-2.5.9
  • gfs2-kmp-default >= 2_2.6.32.46_0.3-0.2.56
  • gfs2-kmp-xen >= 2_2.6.32.46_0.3-0.2.56
  • ocfs2-kmp-default >= 1.6_2.6.32.46_0.3-0.4.2.9
  • ocfs2-kmp-xen >= 1.6_2.6.32.46_0.3-0.4.2.9
sles11-sp1-vmware.x86-64
sled11-sp1.x86-64
SAT Patch Nr: 5223
SUSE Linux Enterprise Desktop 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.46_0.3-0.3.57
  • btrfs-kmp-xen >= 0_2.6.32.46_0.3-0.3.57
  • hyper-v-kmp-default >= 0_2.6.32.46_0.3-0.14.11
  • kernel-default >= 2.6.32.46-0.3.1
  • kernel-default-base >= 2.6.32.46-0.3.1
  • kernel-default-devel >= 2.6.32.46-0.3.1
  • kernel-default-extra >= 2.6.32.46-0.3.1
  • kernel-desktop-devel >= 2.6.32.46-0.3.1
  • kernel-source >= 2.6.32.46-0.3.1
  • kernel-syms >= 2.6.32.46-0.3.1
  • kernel-xen >= 2.6.32.46-0.3.1
  • kernel-xen-base >= 2.6.32.46-0.3.1
  • kernel-xen-devel >= 2.6.32.46-0.3.1
  • kernel-xen-extra >= 2.6.32.46-0.3.1
sles11-sp1-vmware.x86-64
sled11-sp1.x86-64
SAT Patch Nr: 5223
SUSE Linux Enterprise Server 11 SP1 for VMware
  • btrfs-kmp-default >= 0_2.6.32.46_0.3-0.3.57
  • ext4dev-kmp-default >= 0_2.6.32.46_0.3-7.9.24
  • hyper-v-kmp-default >= 0_2.6.32.46_0.3-0.14.11
  • kernel-default >= 2.6.32.46-0.3.1
  • kernel-default-base >= 2.6.32.46-0.3.1
  • kernel-default-devel >= 2.6.32.46-0.3.1
  • kernel-source >= 2.6.32.46-0.3.1
  • kernel-syms >= 2.6.32.46-0.3.1
  • kernel-trace >= 2.6.32.46-0.3.1
  • kernel-trace-base >= 2.6.32.46-0.3.1
  • kernel-trace-devel >= 2.6.32.46-0.3.1
sles11-sp1-vmware.x86-64
sled11-sp1.x86-64
SAT Patch Nr: 5223
SUSE Linux Enterprise Server 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.46_0.3-0.3.57
  • btrfs-kmp-xen >= 0_2.6.32.46_0.3-0.3.57
  • ext4dev-kmp-default >= 0_2.6.32.46_0.3-7.9.24
  • ext4dev-kmp-xen >= 0_2.6.32.46_0.3-7.9.24
  • hyper-v-kmp-default >= 0_2.6.32.46_0.3-0.14.11
  • kernel-default >= 2.6.32.46-0.3.1
  • kernel-default-base >= 2.6.32.46-0.3.1
  • kernel-default-devel >= 2.6.32.46-0.3.1
  • kernel-ec2 >= 2.6.32.46-0.3.1
  • kernel-ec2-base >= 2.6.32.46-0.3.1
  • kernel-source >= 2.6.32.46-0.3.1
  • kernel-syms >= 2.6.32.46-0.3.1
  • kernel-trace >= 2.6.32.46-0.3.1
  • kernel-trace-base >= 2.6.32.46-0.3.1
  • kernel-trace-devel >= 2.6.32.46-0.3.1
  • kernel-xen >= 2.6.32.46-0.3.1
  • kernel-xen-base >= 2.6.32.46-0.3.1
  • kernel-xen-devel >= 2.6.32.46-0.3.1
sles11-sp1-vmware.x86-64
sled11-sp1.x86-64
SAT Patch Nr: 5223
SUSE Linux Enterprise Desktop 10 SP4 for AMD64 and Intel EM64T
  • kernel-default >= 2.6.16.60-0.97.1
  • kernel-smp >= 2.6.16.60-0.97.1
  • kernel-source >= 2.6.16.60-0.97.1
  • kernel-syms >= 2.6.16.60-0.97.1
  • kernel-xen >= 2.6.16.60-0.97.1
Builds
ZYPP Patch Nr: 8161
SLE SDK 10 SP4 for X86-64
  • kernel-debug >= 2.6.16.60-0.97.1
  • kernel-kdump >= 2.6.16.60-0.97.1
  • kernel-xen >= 2.6.16.60-0.97.1
Builds
ZYPP Patch Nr: 8161
SUSE Linux Enterprise Server 10 SP4 for AMD64 and Intel EM64T
  • kernel-debug >= 2.6.16.60-0.97.1
  • kernel-default >= 2.6.16.60-0.97.1
  • kernel-kdump >= 2.6.16.60-0.97.1
  • kernel-smp >= 2.6.16.60-0.97.1
  • kernel-source >= 2.6.16.60-0.97.1
  • kernel-syms >= 2.6.16.60-0.97.1
  • kernel-xen >= 2.6.16.60-0.97.1
Builds
ZYPP Patch Nr: 8161
SUSE Linux Enterprise High Availability Extension 11 SP1
  • cluster-network-kmp-default >= 1.4_2.6.32.46_0.3-2.5.9
  • cluster-network-kmp-ppc64 >= 1.4_2.6.32.46_0.3-2.5.9
  • gfs2-kmp-default >= 2_2.6.32.46_0.3-0.2.56
  • gfs2-kmp-ppc64 >= 2_2.6.32.46_0.3-0.2.56
  • ocfs2-kmp-default >= 1.6_2.6.32.46_0.3-0.4.2.9
  • ocfs2-kmp-ppc64 >= 1.6_2.6.32.46_0.3-0.4.2.9
sle11-sp1-hae.ppc
sles11-sp1.ppc
SAT Patch Nr: 5221
SUSE Linux Enterprise Server 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.46_0.3-0.3.57
  • ext4dev-kmp-default >= 0_2.6.32.46_0.3-7.9.24
  • ext4dev-kmp-ppc64 >= 0_2.6.32.46_0.3-7.9.24
  • kernel-default >= 2.6.32.46-0.3.1
  • kernel-default-base >= 2.6.32.46-0.3.1
  • kernel-default-devel >= 2.6.32.46-0.3.1
  • kernel-ppc64 >= 2.6.32.46-0.3.1
  • kernel-ppc64-base >= 2.6.32.46-0.3.1
  • kernel-ppc64-devel >= 2.6.32.46-0.3.1
  • kernel-source >= 2.6.32.46-0.3.1
  • kernel-syms >= 2.6.32.46-0.3.1
  • kernel-trace >= 2.6.32.46-0.3.1
  • kernel-trace-base >= 2.6.32.46-0.3.1
  • kernel-trace-devel >= 2.6.32.46-0.3.1
sle11-sp1-hae.ppc
sles11-sp1.ppc
SAT Patch Nr: 5221
SUSE CORE 9 for AMD64 and Intel EM64T
  • kernel-default >= 2.6.5-7.330.TDC
  • kernel-smp >= 2.6.5-7.330.TDC
  • kernel-source >= 2.6.5-7.330.TDC
  • kernel-syms >= 2.6.5-7.330.TDC
  • xen-kmp >= 3.0.4_2.6.5_7.330.TDC_-0.3
Builds
YOU Patch Nr: 12854
SLE SDK 10 SP4 for IBM iSeries and IBM pSeries
  • kernel-kdump >= 2.6.16.60-0.97.1
Builds
ZYPP Patch Nr: 8163
SUSE Linux Enterprise Server 10 SP4 for IBM POWER
  • kernel-default >= 2.6.16.60-0.97.1
  • kernel-iseries64 >= 2.6.16.60-0.97.1
  • kernel-kdump >= 2.6.16.60-0.97.1
  • kernel-ppc64 >= 2.6.16.60-0.97.1
  • kernel-source >= 2.6.16.60-0.97.1
  • kernel-syms >= 2.6.16.60-0.97.1
Builds
ZYPP Patch Nr: 8163
SUSE Linux Enterprise Server 10 SP3 LTSS for AMD64 and Intel EM64T
  • kernel-debug >= 2.6.16.60-0.113.1
  • kernel-default >= 2.6.16.60-0.113.1
  • kernel-kdump >= 2.6.16.60-0.113.1
  • kernel-smp >= 2.6.16.60-0.113.1
  • kernel-source >= 2.6.16.60-0.113.1
  • kernel-syms >= 2.6.16.60-0.113.1
  • kernel-xen >= 2.6.16.60-0.113.1
Builds
ZYPP Patch Nr: 8756
SLE 11 SERVER Unsupported Extras
  • kernel-default-extra >= 2.6.32.46-0.3.1
Builds
SAT Patch Nr: 5213
SLE 11 SERVER Unsupported Extras
  • kernel-default-extra >= 2.6.32.46-0.3.1
  • kernel-ppc64-extra >= 2.6.32.46-0.3.1
Builds
SAT Patch Nr: 5214
SLE 11 SERVER Unsupported Extras
  • kernel-default-extra >= 2.6.32.46-0.3.1
  • kernel-xen-extra >= 2.6.32.46-0.3.1
Builds
SAT Patch Nr: 5216
SUSE Linux Enterprise Server 10 SP3 LTSS for x86
  • kernel-bigsmp >= 2.6.16.60-0.113.1
  • kernel-debug >= 2.6.16.60-0.113.1
  • kernel-default >= 2.6.16.60-0.113.1
  • kernel-kdump >= 2.6.16.60-0.113.1
  • kernel-kdumppae >= 2.6.16.60-0.113.1
  • kernel-smp >= 2.6.16.60-0.113.1
  • kernel-source >= 2.6.16.60-0.113.1
  • kernel-syms >= 2.6.16.60-0.113.1
  • kernel-vmi >= 2.6.16.60-0.113.1
  • kernel-vmipae >= 2.6.16.60-0.113.1
  • kernel-xen >= 2.6.16.60-0.113.1
  • kernel-xenpae >= 2.6.16.60-0.113.1
Builds
ZYPP Patch Nr: 8754

List of products where fixes are in QA

SUSE Linux Enterprise Server 10 SP3 LTSS for AMD64 and Intel EM64T
SUSE Linux Enterprise Server 10 SP3 LTSS for IBM zSeries 64bit
SUSE Linux Enterprise Server 10 SP3 LTSS for x86

© 2014 Novell