Security update for Linux kernel
(Last modified: 31MAY2005)
solutions Security update for Linux kernel SuSE Linux Maintenance Web (f0f03f02699b998edb62098de7b55696)
Product(s): SuSE Linux Enterprise Server 8 for IPF
- when creating directories on ext2 filesystems the kernel did not zero initialize the memory allocated. Therefore potentially sensitive information could be exposed to users (CAN-2005-0400).
- local users can crash the kernel via a crafted ELF library or executable, which causes a free of an invalid pointer (CAN-2005-0749).
- local users could gain root access by causing a core dump of specially crafted ELF executables (CAN-2005-1263).
- fix files beeing truncated to four gigabytes on ext3
- fix entries in /proc that caused 'top' to crash
- fix kernel crash caused by busy inodes after umount
- fix data corruption issue in MD multipath when retrying failed IO
- enhanced locking in MD multipath and raid1
- fix endless loop in IPsec
- fix crash in XFS filesystem
- fix write performance problems on machines with more than 1GB memory
First find out which kernel package to install by using the following command:
rpm -qf /boot/vmlinuz
Download the kernel image fitting your setup and install it with either:
rpm -Fvh k_deflt-*.rpmfor the default kernel image, or
rpm -Fvh k_itanium2-smp-*.rpmfor the Itanium2 SMP kernel image, or
rpm -Fhv k_itanium2.rpm-*.rpmfor the Itanium2 kernel image, or
rpm -Fhv k_smp-*.rpmfor the SMP kernel image
Finally, reboot the system with
shutdown -r now
to load the new kernel (replace "now" with the appropriate amount of time to allow local users to cleanly log out, for example "+5" for five minutes.)
Download Source Packages
Download the source code of the patches for maintained products.