Upstream information

CVE-2011-1163 at MITRE

Description

The osf_partition function in fs/partitions/osf.c in the Linux kernel before 2.6.38 does not properly handle an invalid number of partitions, which might allow local users to obtain potentially sensitive information from kernel heap memory via vectors related to partition-table parsing.

SUSE information

CVSS v2 Scores
  National Vulnerability Database
Base Score 2.11
Vector AV:L/AC:L/Au:N/C:P/I:N/A:N
Access Vector Local
Access Complexity Low
Authentication None
Confidentiality Impact Partial
Integrity Impact None
Availability Impact None
SUSE Bugzilla entry: 679812 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise SDK 10 SP3
  • kernel-debug >= 2.6.16.60-0.79.1
sles10-sp3.ia64
sles10-sp3-debuginfo.ia64
sle10-sp3-sdk.ia64
ZYPP Patch Nr: 7564
SUSE Linux Enterprise Server 10 SP3
  • kernel-debug >= 2.6.16.60-0.79.1
  • kernel-default >= 2.6.16.60-0.79.1
  • kernel-source >= 2.6.16.60-0.79.1
  • kernel-syms >= 2.6.16.60-0.79.1
sles10-sp3.ia64
sles10-sp3-debuginfo.ia64
sle10-sp3-sdk.ia64
ZYPP Patch Nr: 7564
SUSE Linux Enterprise High Availability Extension 11 SP1
  • cluster-network-kmp-default >= 1.4_2.6.32.36_0.5-2.3.40
  • cluster-network-kmp-xen >= 1.4_2.6.32.36_0.5-2.3.40
  • gfs2-kmp-default >= 2_2.6.32.36_0.5-0.2.40
  • gfs2-kmp-xen >= 2_2.6.32.36_0.5-0.2.40
sle11-sp1-hae.x86-64
sled11-sp1.x86-64
sles11-sp1.x86-64
sles11-sp1-vmware.x86-64
SAT Patch Nr: 4376
SUSE Linux Enterprise Desktop 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.36_0.5-0.3.40
  • btrfs-kmp-xen >= 0_2.6.32.36_0.5-0.3.40
  • kernel-default >= 2.6.32.36-0.5.2
  • kernel-default-base >= 2.6.32.36-0.5.2
  • kernel-default-devel >= 2.6.32.36-0.5.2
  • kernel-default-extra >= 2.6.32.36-0.5.2
  • kernel-desktop-devel >= 2.6.32.36-0.5.2
  • kernel-source >= 2.6.32.36-0.5.2
  • kernel-syms >= 2.6.32.36-0.5.2
  • kernel-xen >= 2.6.32.36-0.5.2
  • kernel-xen-base >= 2.6.32.36-0.5.2
  • kernel-xen-devel >= 2.6.32.36-0.5.2
  • kernel-xen-extra >= 2.6.32.36-0.5.2
sle11-sp1-hae.x86-64
sled11-sp1.x86-64
sles11-sp1.x86-64
sles11-sp1-vmware.x86-64
SAT Patch Nr: 4376
SUSE Linux Enterprise Server 11 SP1 for VMware
  • btrfs-kmp-default >= 0_2.6.32.36_0.5-0.3.40
  • ext4dev-kmp-default >= 0_2.6.32.36_0.5-7.9.8
  • kernel-default >= 2.6.32.36-0.5.2
  • kernel-default-base >= 2.6.32.36-0.5.2
  • kernel-default-devel >= 2.6.32.36-0.5.2
  • kernel-source >= 2.6.32.36-0.5.2
  • kernel-syms >= 2.6.32.36-0.5.2
  • kernel-trace >= 2.6.32.36-0.5.2
  • kernel-trace-base >= 2.6.32.36-0.5.2
  • kernel-trace-devel >= 2.6.32.36-0.5.2
sle11-sp1-hae.x86-64
sled11-sp1.x86-64
sles11-sp1.x86-64
sles11-sp1-vmware.x86-64
SAT Patch Nr: 4376
SUSE Linux Enterprise Server 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.36_0.5-0.3.40
  • btrfs-kmp-xen >= 0_2.6.32.36_0.5-0.3.40
  • ext4dev-kmp-default >= 0_2.6.32.36_0.5-7.9.8
  • ext4dev-kmp-xen >= 0_2.6.32.36_0.5-7.9.8
  • kernel-default >= 2.6.32.36-0.5.2
  • kernel-default-base >= 2.6.32.36-0.5.2
  • kernel-default-devel >= 2.6.32.36-0.5.2
  • kernel-ec2 >= 2.6.32.36-0.5.2
  • kernel-ec2-base >= 2.6.32.36-0.5.2
  • kernel-source >= 2.6.32.36-0.5.2
  • kernel-syms >= 2.6.32.36-0.5.2
  • kernel-trace >= 2.6.32.36-0.5.2
  • kernel-trace-base >= 2.6.32.36-0.5.2
  • kernel-trace-devel >= 2.6.32.36-0.5.2
  • kernel-xen >= 2.6.32.36-0.5.2
  • kernel-xen-base >= 2.6.32.36-0.5.2
  • kernel-xen-devel >= 2.6.32.36-0.5.2
sle11-sp1-hae.x86-64
sled11-sp1.x86-64
sles11-sp1.x86-64
sles11-sp1-vmware.x86-64
SAT Patch Nr: 4376
SUSE Linux Enterprise Server 10 SP4 LTSS for AMD64 and Intel EM64T
  • kernel-debug >= 2.6.16.60-0.132.1
  • kernel-default >= 2.6.16.60-0.132.1
  • kernel-kdump >= 2.6.16.60-0.132.1
  • kernel-smp >= 2.6.16.60-0.132.1
  • kernel-source >= 2.6.16.60-0.132.1
  • kernel-syms >= 2.6.16.60-0.132.1
  • kernel-xen >= 2.6.16.60-0.132.1
Builds
ZYPP Patch Nr: 9093
SUSE Linux Enterprise SDK 10 SP3
SUSE Linux Enterprise Server for SAP 10 SP3
  • kernel-debug >= 2.6.16.60-0.79.1
  • kernel-default >= 2.6.16.60-0.79.1
  • kernel-kdump >= 2.6.16.60-0.79.1
  • kernel-smp >= 2.6.16.60-0.79.1
  • kernel-source >= 2.6.16.60-0.79.1
  • kernel-syms >= 2.6.16.60-0.79.1
  • kernel-xen >= 2.6.16.60-0.79.1
sles10-sp3.x86-64
sle10-sp3-sdk.x86-64
sles10-sp3-debuginfo.x86-64
ZYPP Patch Nr: 7567
SUSE Linux Enterprise SDK 10 SP3
  • kernel-debug >= 2.6.16.60-0.79.1
  • kernel-kdump >= 2.6.16.60-0.79.1
  • kernel-xen >= 2.6.16.60-0.79.1
sles10-sp3.x86-64
sle10-sp3-sdk.x86-64
sles10-sp3-debuginfo.x86-64
ZYPP Patch Nr: 7567
SUSE Linux Enterprise Server 10 SP4 LTSS for IBM zSeries 64bit
  • kernel-default >= 2.6.16.60-0.132.1
  • kernel-source >= 2.6.16.60-0.132.1
  • kernel-syms >= 2.6.16.60-0.132.1
Builds
ZYPP Patch Nr: 9095
SUSE Linux Enterprise Server 10 SP3
  • kernel-default >= 2.6.16.60-0.79.1
  • kernel-source >= 2.6.16.60-0.79.1
  • kernel-syms >= 2.6.16.60-0.79.1
sles10-sp3-debuginfo.s390x
sles10-sp3.s390x
ZYPP Patch Nr: 7566
openSUSE 11.2
  • kernel-debug-base-debuginfo >= 2.6.31.14-0.8.1
  • kernel-debug-debuginfo >= 2.6.31.14-0.8.1
  • kernel-debug-debugsource >= 2.6.31.14-0.8.1
  • kernel-debug-devel-debuginfo >= 2.6.31.14-0.8.1
  • kernel-default-base-debuginfo >= 2.6.31.14-0.8.1
  • kernel-default-debuginfo >= 2.6.31.14-0.8.1
  • kernel-default-debugsource >= 2.6.31.14-0.8.1
  • kernel-default-devel-debuginfo >= 2.6.31.14-0.8.1
  • kernel-desktop-base-debuginfo >= 2.6.31.14-0.8.1
  • kernel-desktop-debuginfo >= 2.6.31.14-0.8.1
  • kernel-desktop-debugsource >= 2.6.31.14-0.8.1
  • kernel-desktop-devel-debuginfo >= 2.6.31.14-0.8.1
  • kernel-pae-base-debuginfo >= 2.6.31.14-0.8.1
  • kernel-pae-debuginfo >= 2.6.31.14-0.8.1
  • kernel-pae-debugsource >= 2.6.31.14-0.8.1
  • kernel-pae-devel-debuginfo >= 2.6.31.14-0.8.1
  • kernel-trace-base-debuginfo >= 2.6.31.14-0.8.1
  • kernel-trace-debuginfo >= 2.6.31.14-0.8.1
  • kernel-trace-debugsource >= 2.6.31.14-0.8.1
  • kernel-trace-devel-debuginfo >= 2.6.31.14-0.8.1
  • kernel-vanilla-base-debuginfo >= 2.6.31.14-0.8.1
  • kernel-vanilla-debuginfo >= 2.6.31.14-0.8.1
  • kernel-vanilla-debugsource >= 2.6.31.14-0.8.1
  • kernel-vanilla-devel-debuginfo >= 2.6.31.14-0.8.1
  • kernel-xen-base-debuginfo >= 2.6.31.14-0.8.1
  • kernel-xen-debuginfo >= 2.6.31.14-0.8.1
  • kernel-xen-debugsource >= 2.6.31.14-0.8.1
  • kernel-xen-devel-debuginfo >= 2.6.31.14-0.8.1
  • preload-kmp-default-debuginfo >= 1.1_2.6.31.14_0.8-6.9.49
  • preload-kmp-desktop-debuginfo >= 1.1_2.6.31.14_0.8-6.9.49
openSUSE 11.2
  • kernel-debug >= 2.6.31.14-0.8.1
  • kernel-debug-base >= 2.6.31.14-0.8.1
  • kernel-debug-devel >= 2.6.31.14-0.8.1
  • kernel-default >= 2.6.31.14-0.8.1
  • kernel-default-base >= 2.6.31.14-0.8.1
  • kernel-default-devel >= 2.6.31.14-0.8.1
  • kernel-desktop >= 2.6.31.14-0.8.1
  • kernel-desktop-base >= 2.6.31.14-0.8.1
  • kernel-desktop-devel >= 2.6.31.14-0.8.1
  • kernel-pae >= 2.6.31.14-0.8.1
  • kernel-pae-base >= 2.6.31.14-0.8.1
  • kernel-pae-devel >= 2.6.31.14-0.8.1
  • kernel-source >= 2.6.31.14-0.8.1
  • kernel-source-vanilla >= 2.6.31.14-0.8.1
  • kernel-syms >= 2.6.31.14-0.8.1
  • kernel-trace >= 2.6.31.14-0.8.1
  • kernel-trace-base >= 2.6.31.14-0.8.1
  • kernel-trace-devel >= 2.6.31.14-0.8.1
  • kernel-vanilla >= 2.6.31.14-0.8.1
  • kernel-vanilla-base >= 2.6.31.14-0.8.1
  • kernel-vanilla-devel >= 2.6.31.14-0.8.1
  • kernel-xen >= 2.6.31.14-0.8.1
  • kernel-xen-base >= 2.6.31.14-0.8.1
  • kernel-xen-devel >= 2.6.31.14-0.8.1
  • preload-kmp-default >= 1.1_2.6.31.14_0.8-6.9.49
  • preload-kmp-desktop >= 1.1_2.6.31.14_0.8-6.9.49
SLE 11 SERVER Unsupported Extras
  • kernel-default-extra >= 2.6.32.36-0.5.2
  • kernel-ppc64-extra >= 2.6.32.36-0.5.2
Builds
SAT Patch Nr: 4379
SUSE Linux Enterprise High Availability Extension 11 SP1
  • cluster-network-kmp-default >= 1.4_2.6.32.36_0.5-2.3.40
  • gfs2-kmp-default >= 2_2.6.32.36_0.5-0.2.40
sle11-sp1-hae.ia64
sles11-sp1.ia64
SAT Patch Nr: 4375
SUSE Linux Enterprise Server 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.36_0.5-0.3.40
  • ext4dev-kmp-default >= 0_2.6.32.36_0.5-7.9.8
  • kernel-default >= 2.6.32.36-0.5.2
  • kernel-default-base >= 2.6.32.36-0.5.2
  • kernel-default-devel >= 2.6.32.36-0.5.2
  • kernel-source >= 2.6.32.36-0.5.2
  • kernel-syms >= 2.6.32.36-0.5.2
  • kernel-trace >= 2.6.32.36-0.5.2
  • kernel-trace-base >= 2.6.32.36-0.5.2
  • kernel-trace-devel >= 2.6.32.36-0.5.2
sle11-sp1-hae.ia64
sles11-sp1.ia64
SAT Patch Nr: 4375
SUSE Linux Enterprise Server 10 SP4 LTSS for x86
  • kernel-bigsmp >= 2.6.16.60-0.132.1
  • kernel-debug >= 2.6.16.60-0.132.1
  • kernel-default >= 2.6.16.60-0.132.1
  • kernel-kdump >= 2.6.16.60-0.132.1
  • kernel-kdumppae >= 2.6.16.60-0.132.1
  • kernel-smp >= 2.6.16.60-0.132.1
  • kernel-source >= 2.6.16.60-0.132.1
  • kernel-syms >= 2.6.16.60-0.132.1
  • kernel-vmi >= 2.6.16.60-0.132.1
  • kernel-vmipae >= 2.6.16.60-0.132.1
  • kernel-xen >= 2.6.16.60-0.132.1
  • kernel-xenpae >= 2.6.16.60-0.132.1
Builds
ZYPP Patch Nr: 9094
SUSE Linux Enterprise SDK 10 SP3
  • kernel-kdump >= 2.6.16.60-0.79.1
sle10-sp3-sdk.ppc
sles10-sp3-debuginfo.ppc
sles10-sp3.ppc
ZYPP Patch Nr: 7565
SUSE Linux Enterprise Server 10 SP3
  • kernel-default >= 2.6.16.60-0.79.1
  • kernel-iseries64 >= 2.6.16.60-0.79.1
  • kernel-kdump >= 2.6.16.60-0.79.1
  • kernel-ppc64 >= 2.6.16.60-0.79.1
  • kernel-source >= 2.6.16.60-0.79.1
  • kernel-syms >= 2.6.16.60-0.79.1
sle10-sp3-sdk.ppc
sles10-sp3-debuginfo.ppc
sles10-sp3.ppc
ZYPP Patch Nr: 7565
SUSE Linux Enterprise High Availability Extension 11 SP1
  • cluster-network-kmp-default >= 1.4_2.6.32.36_0.5-2.3.40
  • cluster-network-kmp-ppc64 >= 1.4_2.6.32.36_0.5-2.3.40
  • gfs2-kmp-default >= 2_2.6.32.36_0.5-0.2.40
  • gfs2-kmp-ppc64 >= 2_2.6.32.36_0.5-0.2.40
sle11-sp1-hae.ppc
sles11-sp1.ppc
SAT Patch Nr: 4385
SUSE Linux Enterprise Server 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.36_0.5-0.3.40
  • ext4dev-kmp-default >= 0_2.6.32.36_0.5-7.9.8
  • ext4dev-kmp-ppc64 >= 0_2.6.32.36_0.5-7.9.8
  • kernel-default >= 2.6.32.36-0.5.2
  • kernel-default-base >= 2.6.32.36-0.5.2
  • kernel-default-devel >= 2.6.32.36-0.5.2
  • kernel-ppc64 >= 2.6.32.36-0.5.2
  • kernel-ppc64-base >= 2.6.32.36-0.5.2
  • kernel-ppc64-devel >= 2.6.32.36-0.5.2
  • kernel-source >= 2.6.32.36-0.5.2
  • kernel-syms >= 2.6.32.36-0.5.2
  • kernel-trace >= 2.6.32.36-0.5.2
  • kernel-trace-base >= 2.6.32.36-0.5.2
  • kernel-trace-devel >= 2.6.32.36-0.5.2
sle11-sp1-hae.ppc
sles11-sp1.ppc
SAT Patch Nr: 4385
openSUSE 11.4
  • kernel-debug >= 2.6.37.6-0.5.1
  • kernel-debug-base >= 2.6.37.6-0.5.1
  • kernel-debug-devel >= 2.6.37.6-0.5.1
  • kernel-default >= 2.6.37.6-0.5.1
  • kernel-default-base >= 2.6.37.6-0.5.1
  • kernel-default-devel >= 2.6.37.6-0.5.1
  • kernel-desktop >= 2.6.37.6-0.5.1
  • kernel-desktop-base >= 2.6.37.6-0.5.1
  • kernel-desktop-devel >= 2.6.37.6-0.5.1
  • kernel-devel >= 2.6.37.6-0.5.1
  • kernel-docs >= 2.6.37.6-0.5.1
  • kernel-ec2 >= 2.6.37.6-0.5.1
  • kernel-ec2-base >= 2.6.37.6-0.5.1
  • kernel-ec2-devel >= 2.6.37.6-0.5.1
  • kernel-ec2-extra >= 2.6.37.6-0.5.1
  • kernel-pae >= 2.6.37.6-0.5.1
  • kernel-pae-base >= 2.6.37.6-0.5.1
  • kernel-pae-devel >= 2.6.37.6-0.5.1
  • kernel-source >= 2.6.37.6-0.5.1
  • kernel-source-vanilla >= 2.6.37.6-0.5.1
  • kernel-syms >= 2.6.37.6-0.5.1
  • kernel-trace >= 2.6.37.6-0.5.1
  • kernel-trace-base >= 2.6.37.6-0.5.1
  • kernel-trace-devel >= 2.6.37.6-0.5.1
  • kernel-vanilla >= 2.6.37.6-0.5.1
  • kernel-vanilla-base >= 2.6.37.6-0.5.1
  • kernel-vanilla-devel >= 2.6.37.6-0.5.1
  • kernel-vmi >= 2.6.37.6-0.5.1