Date: Fri, 12 Oct 2007 16:04:36 +0200
From: Marcus Meissner <meissner@suse.de>
To: opensuse-security-announce@opensuse.org
Subject: [security-announce] SUSE Security Announcement: Linux kernel (SUSE-SA:2007:053)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

______________________________________________________________________________

                        SUSE Security Announcement

        Package:                kernel
        Announcement ID:        SUSE-SA:2007:053
        Date:                   Fri, 12 Oct 2007 16:00:00 +0000
        Affected Products:      SUSE LINUX 10.0
                                SUSE LINUX 10.1
                                openSUSE 10.2
                                openSUSE 10.3
                                UnitedLinux 1.0
                                SuSE Linux Enterprise Server 8
                                SuSE Linux Openexchange Server 4
                                SuSE Linux Standard Server 8
                                SuSE Linux School Server
                                SUSE LINUX Retail Solution 8
                                SUSE SLES 9
                                Novell Linux Desktop 9
                                Open Enterprise Server
                                Novell Linux POS 9
                                SUSE Linux Enterprise Desktop 10 SP1
                                SUSE Linux Enterprise 10 SP1 DEBUGINFO
                                SLE SDK 10 SP1
                                SUSE Linux Enterprise Server 10 SP1
        Vulnerability Type:     local privilege escalation
        Severity (1-10):        8
        SUSE Default Package:   yes
        Cross-References:       CVE-2006-4145, CVE-2006-6106, CVE-2007-0773
                                CVE-2007-2525, CVE-2007-2875, CVE-2007-2876
                                CVE-2007-3105, CVE-2007-3107, CVE-2007-3513
                                CVE-2007-3848, CVE-2007-3851, CVE-2007-4571
                                CVE-2007-4573

    Content of This Advisory:
        1) Security Vulnerability Resolved:
             kernel security update
           Problem Description
        2) Solution or Work-Around
        3) Special Instructions and Notes
        4) Package Location and Checksums
        5) Pending Vulnerabilities, Solutions, and Work-Arounds:
            See SUSE Security Summary Report.
        6) Authenticity Verification and Additional Information

______________________________________________________________________________

1) Problem Description and Brief Discussion

   The Linux kernel has been updated to fix various security problems.

   Please note that some of the issues below might have been fixed
   previously for other distributions by updates already and were
   issued separate advisories. Only CVE-2007-4573 and CVE-2007-4571 are
   completely new issues.

   Updates for SLES 10, SUSE Linux 10.0, 10.1 and openSUSE 10.2, 10.3
   were released on Wednesday. Updates for SUSE Linux Enterprise Server 9
   were released Thursday (yesterday), updates for SUSE Linux Enterprise
   Server 8 were released Friday (today).

   - CVE-2007-4573: It was possible for local user to become root by
     exploitable a bug in the IA32 system call emulation. This problem
     affects the x86_64 platform only, on all distributions.

   - CVE-2007-4571: An information disclosure vulnerability in the ALSA
     driver can be exploited by local users to read sensitive data from
     the kernel memory. This affects system with ALSA drivers loaded.

   - CVE-2007-3105: Stack-based buffer overflow in the random number
     generator (RNG) implementation in the Linux kernel before 2.6.22
     might allow local root users to cause a denial of service or gain
     privileges by setting the default wake-up threshold to a value
     greater than the output pool size, which triggers writing random
     numbers to the stack by the pool transfer function involving "bound
     check ordering". Since this value can only be changed by a root user,
     exploitability is low.

   - CVE-2007-2525: A memory leak in the PPPoE driver can be abused  by
     local users to cause a denial-of-service condition.

   - CVE-2007-3851: On machines with a Intel i965 based graphics card
     local users with access to the direct rendering device node could
     overwrite memory on the machine and so gain root privileges.

   - CVE-2007-2875: An integer underflow in the cpuset_tasks_read function
     allows local users to obtain portions of kernel memory when the
     cpuset filesystem is mounted.

   - CVE-2007-3107: The signal handling in the Linux kernel, when run on
     PowerPC systems using HTX, allows local users to cause a denial of
     service via unspecified vectors involving floating point corruption
     and concurrency.

   - CVE-2007-3513: The lcd_write function in drivers/usb/misc/usblcd.c
     in the Linux kernel did not limit the amount of memory used by
     a caller, which allowed local users to cause a denial of service
     (memory consumption).

   - CVE-2007-3848: A local attacker could send a death signal to a
     setuid root program under certain conditions, potentially causing
     unwanted behavior in this program.

   - CVE-2007-2876: A NULL pointer dereference in SCTP connection
     tracking could be caused by a remote attacker by sending specially
     crafted packets.
     Note that this requires SCTP set-up and active to be exploitable.

   - CVE-2007-3848: Local users are allowed to send arbitrary signals
     to child processes running with different UID.

   Fixed for SLES 8 now (fixed previously for the other distributions already):
   - CVE-2006-4145: The Universal Disk Format (UDF) filesystem driver
     allowed local users to cause a denial-of-service.

   - CVE-2006-6106: Multiple buffer overflows in the cmtp_recv_interopmsg
     function in the Bluetooth driver allowed remote attackers to cause
     a denial-of-service and possibly execute arbitrary code via CAPI
     messages.

   - CVE-2007-0773: Local users can exploit a bug in the kernel to cause
     a denial-of-service (kernel OOPS) via fput in a 32-bit ioctl on a
     64-bit x86 system.

   Additionally a lot of bugs were fixed, especially for SUSE Linux
   Enterprise Server 8, 9 and 10, SUSE Linux 10.1, and openSUSE 10.3.

2) Solution or Work-Around

   There is no known workaround, please install the update packages.

3) Special Instructions and Notes

   You need to reboot the machine after this upgrade to let the changes
   become effective.

4) Package Location and Checksums

   The preferred method for installing security updates is to use the YaST
   Online Update (YOU) tool. YOU detects which updates are required and
   automatically performs the necessary steps to verify and install them.
   Alternatively, download the update packages for your distribution manually
   and verify their integrity by the methods listed in Section 6 of this
   announcement. Then install the packages using the command

     rpm -Fhv <file.rpm>

   to apply the update, replacing <file.rpm> with the filename of the
   downloaded RPM package.


   x86 Platform:

   openSUSE 10.3:
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/kernel-bigsmp-2.6.22.9-0.4.i586.rpm
          6440d794f4ecfe90689244c84975d88b
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/kernel-default-2.6.22.9-0.4.i586.rpm
          2c088c5b8d7b7cb72662633808932e47
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/kernel-source-2.6.22.9-0.4.i586.rpm
          ffd7008aad2a83e6f3850ee7e5c535b8
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/kernel-syms-2.6.22.9-0.4.i586.rpm
          29e05e34d0c913128d3dc7d9d0435297
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/kernel-xen-2.6.22.9-0.4.i586.rpm
          b09fa3d23e104dd7d3197d6060109506
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/kernel-xenpae-2.6.22.9-0.4.i586.rpm
          9a0177f6651eed5a1a73026a55061103

   openSUSE 10.2:
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/kernel-bigsmp-2.6.18.8-0.7.i586.rpm
          d7354671533d1a9bb56486a7fb80825c
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/kernel-default-2.6.18.8-0.7.i586.rpm
          fb70b368725d35b85a909efdb7fed6a5
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/kernel-kdump-2.6.18.8-0.7.i586.rpm
          7ac4d21d39aa2d50fce7fbf914b57d4a
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/kernel-source-2.6.18.8-0.7.i586.rpm
          94550496412a0deba98b9ca1bac634d0
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/kernel-syms-2.6.18.8-0.7.i586.rpm
          dbd70dd74909064f4004060739a33e6d
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/kernel-xen-2.6.18.8-0.7.i586.rpm
          4d5a0f765612022b424ba00af98fdabf
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/kernel-xenpae-2.6.18.8-0.7.i586.rpm
          d50f24d82d5fe69bec4faa862b0ab3dd

   SUSE LINUX 10.1:
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/kernel-bigsmp-2.6.16.53-0.16.i586.rpm
          1dbe9da914d98dbbb62788e96751e785
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/kernel-debug-2.6.16.53-0.16.i586.rpm
          170a27507a8584fe597d597804da3f6c
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/kernel-default-2.6.16.53-0.16.i586.rpm
          bdb562f03de06ea602df5f0637f08485
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/kernel-kdump-2.6.16.53-0.16.i586.rpm
          4731652c3a46ee848c6916a335b54b6f
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/kernel-smp-2.6.16.53-0.16.i586.rpm
          faa71818a40ff946a2934b7b20d1c5b1
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/kernel-source-2.6.16.53-0.16.i586.rpm
          b5c8785bd0d843f3ad25568e82f631e2
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/kernel-syms-2.6.16.53-0.16.i586.rpm
          228b84bfb1f99e4bd6c5a02df636b7dc
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/kernel-um-2.6.16.53-0.16.i586.rpm
          dd78cb81983b64a67df9294b098b4018
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/kernel-xen-2.6.16.53-0.16.i586.rpm
          244015d32ca4b9e90e91eb36502c3dd0
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/kernel-xenpae-2.6.16.53-0.16.i586.rpm
          62420215aba5f7278cf3101ad0c42c22
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/kexec-tools-1.101-32.42.i586.rpm
          36893e7097def2508bd7a7de2d5292dd
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/mkinitrd-1.2-106.59.i586.rpm
          5abd502ed2d24cae4e007ffeb0b80cae
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/multipath-tools-0.4.6-25.22.i586.rpm
          b22abb1176562dd334e0d8f36278ef8c
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/open-iscsi-2.0.707-0.27.i586.rpm
          886152ab1d2ebd77555f97ff8fd6fbd2
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/udev-085-30.40.i586.rpm
          a1744585f2b25a4579deb19f34f2ce41

   SUSE LINUX 10.0:
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/Intel-536ep-4.69-0.3.i586.rpm
          5a8e0014a2a454a75878df9fcf2833b6
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-bigsmp-2.6.13-15.18.i586.rpm
          ef39a776670650474ae199a61381d34d
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-bigsmp-nongpl-2.6.13-15.18.i586.rpm
          b2ebfd03c4037a08f451bcdf7373536f
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-default-2.6.13-15.18.i586.rpm
          f1f09cc1303bc7f88b95b3da8888eb8a
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-default-nongpl-2.6.13-15.18.i586.rpm
          9f670dae50f1da1a5ffbbae701f8272a
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-smp-2.6.13-15.18.i586.rpm
          97962c3f293703150675e18b37e4bc7a
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-smp-nongpl-2.6.13-15.18.i586.rpm
          836b0aa4e3605bd5751ee99dcceb68e6
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-source-2.6.13-15.18.i586.rpm
          2d344532eae5c3995ff539999cde7e23
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-syms-2.6.13-15.18.i586.rpm
          9d6e81c374de38d7284211035edd5d3f
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-um-2.6.13-15.18.i586.rpm
          198f58271baf998bb13fcfae214051eb
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-um-nongpl-2.6.13-15.18.i586.rpm
          bd2604ee8367ff89c8d985c021ee7d70
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-xen-2.6.13-15.18.i586.rpm
          206d3f5e4b574a463677b1d14e9ad54a
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-xen-nongpl-2.6.13-15.18.i586.rpm
          a4bbf2d460e35d7a8e1566d3f75353fd
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/um-host-kernel-2.6.13-15.18.i586.rpm
          684347a931329abe702d4d9c95a7bd63

   Power PC Platform:

   openSUSE 10.3:
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/kernel-default-2.6.22.9-0.4.ppc.rpm
          07c6f72b1c855be020795ef1efd4a102
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/kernel-ppc64-2.6.22.9-0.4.ppc.rpm
          f39156a3158ddf7b5d550b4403632907
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/kernel-source-2.6.22.9-0.4.ppc.rpm
          0448b644d20337442e65f7f3d0ded93a
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/kernel-syms-2.6.22.9-0.4.ppc.rpm
          028c5559010e1a50a6e6ef5f20d0f923

   openSUSE 10.2:
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/kernel-default-2.6.18.8-0.7.ppc.rpm
          44d0c1b0f61bc47c2ad2db26e07412a7
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/kernel-iseries64-2.6.18.8-0.7.ppc.rpm
          faae0ac284d120e6c1dcf448e1f15d91
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/kernel-kdump-2.6.18.8-0.7.ppc.rpm
          31363483f16bc1cdf93e4a814438d8a2
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/kernel-ppc64-2.6.18.8-0.7.ppc.rpm
          449b288327216fc7b20867be5010474e
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/kernel-source-2.6.18.8-0.7.ppc.rpm
          e7be5c19b8893413f42212e6689a0f2c
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/kernel-syms-2.6.18.8-0.7.ppc.rpm
          62798260ef86fb2f8e5a1392aacec697

   SUSE LINUX 10.1:
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/kernel-default-2.6.16.53-0.16.ppc.rpm
          1b43365ce13b19f9249f26562422abec
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/kernel-iseries64-2.6.16.53-0.16.ppc.rpm
          d5197898d8e0abc294ad1ec59f5f5633
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/kernel-kdump-2.6.16.53-0.16.ppc.rpm
          aff035f61c5ec76f53307a44974359fd
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/kernel-ppc64-2.6.16.53-0.16.ppc.rpm
          efd15b61b548b0947bc5172ab4e1cebd
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/kernel-source-2.6.16.53-0.16.ppc.rpm
          1a24a3ccd4fa9d554ebcf9bc8f3d354f
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/kernel-syms-2.6.16.53-0.16.ppc.rpm
          49ddd68a7760db7dce8e5bb25c97e962
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/mkinitrd-1.2-106.59.ppc.rpm
          e23bc73cc7807fba191c032fb949ca0e
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/multipath-tools-0.4.6-25.22.ppc.rpm
          727599503d862f0d27fa0a154ad34148
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/open-iscsi-2.0.707-0.27.ppc.rpm
          bf1d9a89331a8e0659046327d2efbf52
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/udev-085-30.40.ppc.rpm
          d4130f63da87ff09f06ac617bc1e4595

   SUSE LINUX 10.0:
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/kernel-default-2.6.13-15.18.ppc.rpm
          d737632c39e3f4055dbfd773f41f5ecf
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/kernel-iseries64-2.6.13-15.18.ppc.rpm
          13fceeb2cf5dc36e4592fc9134eb03be
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/kernel-ppc64-2.6.13-15.18.ppc.rpm
          3cd76c7b4534e52f07381c6f54475412
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/kernel-source-2.6.13-15.18.ppc.rpm
          f3a1b876cc067185fae3fa83fed18e64
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/kernel-syms-2.6.13-15.18.ppc.rpm
          ea71a4ef9336a98548e37fd5f1e49a8b

   x86-64 Platform:

   openSUSE 10.3:
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/kernel-default-2.6.22.9-0.4.x86_64.rpm
          d4f8f181b31c45c234088447276d9ab4
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/kernel-source-2.6.22.9-0.4.x86_64.rpm
          1d5813aaa0100909853a67c563497c9d
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/kernel-syms-2.6.22.9-0.4.x86_64.rpm
          ea31d5c5aea3734fb30421208e75211d
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/kernel-xen-2.6.22.9-0.4.x86_64.rpm
          b17c8b5a28f6c494245ffa44629366f0

   openSUSE 10.2:
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/kernel-default-2.6.18.8-0.7.x86_64.rpm
          6c382428efd1f43265bcd24bd9533472
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/kernel-kdump-2.6.18.8-0.7.x86_64.rpm
          127aeb9b2b721967d95af2cbd903e528
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/kernel-source-2.6.18.8-0.7.x86_64.rpm
          6b63162731d7193e84d0987c8167637b
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/kernel-syms-2.6.18.8-0.7.x86_64.rpm
          5e367278d48a2962beb5084ff780fb5e
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/kernel-xen-2.6.18.8-0.7.x86_64.rpm
          3b9ab8acf656bd7e6d03fabad6b24189

   SUSE LINUX 10.1:
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/kernel-debug-2.6.16.53-0.16.x86_64.rpm
          635cb855fb23b83d415db311fce739a4
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/kernel-default-2.6.16.53-0.16.x86_64.rpm
          e96d4935d8bf7df71fb1478e040a5688
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/kernel-kdump-2.6.16.53-0.16.x86_64.rpm
          48e94dc252900025febd34fa6420507f
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/kernel-smp-2.6.16.53-0.16.x86_64.rpm
          45a00c34241a4d68f9d98a4adc6b6cb6
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/kernel-source-2.6.16.53-0.16.x86_64.rpm
          2cdb453ce89ad57c04693244a791dee5
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/kernel-syms-2.6.16.53-0.16.x86_64.rpm
          2b0a409df103a272b9d9207538c3ad1d
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/kernel-xen-2.6.16.53-0.16.x86_64.rpm
          b5dbea79959fc663cd11bf5878cdce1e
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/kexec-tools-1.101-32.42.x86_64.rpm
          e7737420cd16a8a419b2e82ff5848d5d
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/mkinitrd-1.2-106.59.x86_64.rpm
          522bf16f1bb2b1af5fce6bee43e26ae1
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/multipath-tools-0.4.6-25.22.x86_64.rpm
          2c3a57880196ceefa77ebcec1bc085ae
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/open-iscsi-2.0.707-0.27.x86_64.rpm
          0d3596a34a12c8ae9ff13c0f50c41f3b
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/udev-085-30.40.x86_64.rpm
          66115ed3a55bcbd8691c0c0f304f51a1

   SUSE LINUX 10.0:
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/kernel-default-2.6.13-15.18.x86_64.rpm
          4edcc26393b0b6a3edd63b8c764e18b8
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/kernel-default-nongpl-2.6.13-15.18.x86_64.rpm
          add84959733c7491b3bf2cd6f91feac3
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/kernel-smp-2.6.13-15.18.x86_64.rpm
          8ca9f62edae3396616ded6c541e24db2
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/kernel-smp-nongpl-2.6.13-15.18.x86_64.rpm
          7650b6c56b21b7a6eb34e1f70b624cb1
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/kernel-source-2.6.13-15.18.x86_64.rpm
          1393b1074d307d7973c615907afec2da
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/kernel-syms-2.6.13-15.18.x86_64.rpm
          917bc7f98e62c4ded30ccfab408fbbdb
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/kernel-xen-2.6.13-15.18.x86_64.rpm
          8eb75ed880b2d0514e7eccc59bb25102
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/kernel-xen-nongpl-2.6.13-15.18.x86_64.rpm
          a7e7ec0fa8601371a32ba2a4c6f55d47

   Sources:

   openSUSE 10.3:
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/kernel-bigsmp-2.6.22.9-0.4.nosrc.rpm
          9824cedbb9494eb29b729b846b766595
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/kernel-default-2.6.22.9-0.4.nosrc.rpm
          0d0cd7f28988670bd9dda21fe3702f26
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/kernel-ppc64-2.6.22.9-0.4.nosrc.rpm
          cd17eb56e8cc5319a2b83d4a5528eae4
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/kernel-source-2.6.22.9-0.4.src.rpm
          e285518c3acdd0628a5a440d208f415e
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/kernel-syms-2.6.22.9-0.4.src.rpm
          17c32157711898261f46fc347522ee4c
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/kernel-xen-2.6.22.9-0.4.nosrc.rpm
          c6c6470e1332252b14188e055b740352
   http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/kernel-xenpae-2.6.22.9-0.4.nosrc.rpm
          b80cf36cdb3dda0daf3d6a10a9f82942

   openSUSE 10.2:
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/kernel-bigsmp-2.6.18.8-0.7.nosrc.rpm
          7566a2299acf3d5642d75f4a7b555ac9
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/kernel-default-2.6.18.8-0.7.nosrc.rpm
          c568a07b1e72ee91d7522ce22ced948e
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/kernel-iseries64-2.6.18.8-0.7.nosrc.rpm
          99090a08b38a96683ec1bd492bf9f824
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/kernel-kdump-2.6.18.8-0.7.nosrc.rpm
          7c6bfcde352891af00271950919a3024
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/kernel-ppc64-2.6.18.8-0.7.nosrc.rpm
          85a7856d554460f861597a0630197338
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/kernel-source-2.6.18.8-0.7.src.rpm
          c0972909f837e7b4501125cdb73fb9ae
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/kernel-syms-2.6.18.8-0.7.src.rpm
          b554e4dcc267bcddca28f8177cc71c80
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/kernel-xen-2.6.18.8-0.7.nosrc.rpm
          03039fdd236402eabb4a35e02e1e2ab9
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/kernel-xenpae-2.6.18.8-0.7.nosrc.rpm
          381c10b0d0df4a00eedc61885d3db550

   SUSE LINUX 10.1:
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/kernel-bigsmp-2.6.16.53-0.16.nosrc.rpm
          daf457643a872affda6733f394b258d6
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/kernel-debug-2.6.16.53-0.16.nosrc.rpm
          5c4675eb474d2537a5322727affdbcf4
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/kernel-default-2.6.16.53-0.16.nosrc.rpm
          617fe73d52c96c79bb1f3f551082b559
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/kernel-iseries64-2.6.16.53-0.16.nosrc.rpm
          1fe48c788c424e9cd7ffc1290d2ed85c
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/kernel-kdump-2.6.16.53-0.16.nosrc.rpm
          3395f29984e5ac12bb2025da6440ed92
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/kernel-ppc64-2.6.16.53-0.16.nosrc.rpm
          a1c74e3ca60cced8cc486dbe8b887a44
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/kernel-smp-2.6.16.53-0.16.nosrc.rpm
          2792719a023f50fd111c2165ec1e6925
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/kernel-source-2.6.16.53-0.16.src.rpm
          067561b955b277ad03cc7a18095827cd
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/kernel-syms-2.6.16.53-0.16.src.rpm
          c61d924e327d6eeb468869730f513389
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/kernel-um-2.6.16.53-0.16.nosrc.rpm
          85c6bdfc95f95a3ce7bf81730feaa4d8
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/kernel-xen-2.6.16.53-0.16.nosrc.rpm
          ca00364e6404e5b2826c6347cd589c86
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/kernel-xenpae-2.6.16.53-0.16.nosrc.rpm
          bd6e99b29b2a279cfe8f2d60ad1fd08e
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/kexec-tools-1.101-32.42.src.rpm
          f12f66e8e236c5bca9e2f4fbd53f3665
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/mkinitrd-1.2-106.59.src.rpm
          0a98720e8eb9dc0e36a858345d8b78fd
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/multipath-tools-0.4.6-25.22.src.rpm
          15540cc56ebc1488ee6d962efc82469f
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/open-iscsi-2.0.707-0.27.src.rpm
          4ee04918e9fc08a972c3098f0b7edc9c
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/udev-085-30.40.src.rpm
          9b80e109d3ae408d4a6e6e1fabad4ee3

   SUSE LINUX 10.0:
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/Intel-536ep-4.69-0.3.src.rpm
          2a9871103c9499a029a31861d9a41489
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/kernel-bigsmp-2.6.13-15.18.nosrc.rpm
          de7fb9508e6873381c382047066d09b0
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/kernel-default-2.6.13-15.18.nosrc.rpm
          27c7d34cd348e0ba1cb964271e265962
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/kernel-iseries64-2.6.13-15.18.nosrc.rpm
          e780a18934781bfd9d529eada91ad030
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/kernel-ppc64-2.6.13-15.18.nosrc.rpm
          cc95757c62497cac4a6603bd3501179a
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/kernel-smp-2.6.13-15.18.nosrc.rpm
          b5ddad8d856ba6cbf4e137f176ab33d0
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/kernel-source-2.6.13-15.18.nosrc.rpm
          11de5880ef68deec52ede2142fef464c
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/kernel-source-2.6.13-15.18.src.rpm
          02f5b8688be09b25567510b36575c479
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/kernel-syms-2.6.13-15.18.src.rpm
          113d79112df43c1cc0a4044be8d99937
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/kernel-um-2.6.13-15.18.nosrc.rpm
          a6efc7feb2c946d2d60a2c03d1243e0c
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/kernel-xen-2.6.13-15.18.nosrc.rpm
          d5b2a2c42b5f3f5239bb32a5bac66656

   Our maintenance customers are notified individually. The packages are
   offered for installation from the maintenance web:

   SuSE Linux Enterprise Server 8 for AMD64
     http://support.novell.com/techcenter/psdb/1fc0b38a729d2106a7c33c37c9808fb2.html

   SuSE Linux Enterprise Server 8 for IBM zSeries
     http://support.novell.com/techcenter/psdb/49767a473dae43e90febbbc8117e5759.html

   SuSE Linux Enterprise Server 8 for IBM S/390 and IBM zSeries
     http://support.novell.com/techcenter/psdb/24d35d2326b08e270db425ce7945a0f3.html

   SuSE Linux Enterprise Server 8 for IBM iSeries and IBM pSeries
     http://support.novell.com/techcenter/psdb/125218427aa377aedb2b3b47b85b0d05.html

   SuSE Linux Openexchange Server 4
     http://support.novell.com/techcenter/psdb/3ab5b760a92f04f7cd009b618ae2fe07.html

   SuSE Linux Standard Server 8
     http://support.novell.com/techcenter/psdb/3ab5b760a92f04f7cd009b618ae2fe07.html

   SuSE Linux School Server
     http://support.novell.com/techcenter/psdb/3ab5b760a92f04f7cd009b618ae2fe07.html

   SUSE LINUX Retail Solution 8
     http://support.novell.com/techcenter/psdb/3ab5b760a92f04f7cd009b618ae2fe07.html

   UnitedLinux 1.0
     http://support.novell.com/techcenter/psdb/1fc0b38a729d2106a7c33c37c9808fb2.html
     http://support.novell.com/techcenter/psdb/3ab5b760a92f04f7cd009b618ae2fe07.html
     http://support.novell.com/techcenter/psdb/88b554c71ae991bab3c597f5f51e9656.html

   SuSE Linux Enterprise Server 8
     http://support.novell.com/techcenter/psdb/1fc0b38a729d2106a7c33c37c9808fb2.html
     http://support.novell.com/techcenter/psdb/49767a473dae43e90febbbc8117e5759.html
     http://support.novell.com/techcenter/psdb/24d35d2326b08e270db425ce7945a0f3.html
     http://support.novell.com/techcenter/psdb/125218427aa377aedb2b3b47b85b0d05.html
     http://support.novell.com/techcenter/psdb/3ab5b760a92f04f7cd009b618ae2fe07.html
     http://support.novell.com/techcenter/psdb/88b554c71ae991bab3c597f5f51e9656.html

   SuSE Linux Enterprise Server 8 for IPF
     http://support.novell.com/techcenter/psdb/88b554c71ae991bab3c597f5f51e9656.html

   SUSE Linux Enterprise Desktop 10 SP1 for AMD64 and Intel EM64T
     http://support.novell.com/techcenter/psdb/4de56c78bd03f5479227093dadd0b006.html

   SUSE Linux Enterprise 10 SP1 DEBUGINFO for IBM zSeries 64bit
     http://support.novell.com/techcenter/psdb/274f7b8b00f317e8958d114487743e27.html

   SUSE Linux Enterprise 10 SP1 DEBUGINFO for IBM POWER
     http://support.novell.com/techcenter/psdb/4bb1b38fd58e3d4eb7b054364b26656b.html

   SUSE Linux Enterprise 10 SP1 DEBUGINFO for IPF
     http://support.novell.com/techcenter/psdb/41569c9dc7eda00aba524a0d6f34a7b6.html

   SUSE Linux Enterprise Server 10 SP1
     http://support.novell.com/techcenter/psdb/4de56c78bd03f5479227093dadd0b006.html
     http://support.novell.com/techcenter/psdb/274f7b8b00f317e8958d114487743e27.html
     http://support.novell.com/techcenter/psdb/4bb1b38fd58e3d4eb7b054364b26656b.html
     http://support.novell.com/techcenter/psdb/41569c9dc7eda00aba524a0d6f34a7b6.html
     http://support.novell.com/techcenter/psdb/e6e2ffbd54ec927734c60e0c70947511.html

   SLE SDK 10 SP1
     http://support.novell.com/techcenter/psdb/4de56c78bd03f5479227093dadd0b006.html
     http://support.novell.com/techcenter/psdb/4bb1b38fd58e3d4eb7b054364b26656b.html
     http://support.novell.com/techcenter/psdb/41569c9dc7eda00aba524a0d6f34a7b6.html
     http://support.novell.com/techcenter/psdb/e6e2ffbd54ec927734c60e0c70947511.html

   SUSE Linux Enterprise 10 SP1 DEBUGINFO
     http://support.novell.com/techcenter/psdb/4de56c78bd03f5479227093dadd0b006.html
     http://support.novell.com/techcenter/psdb/4bb1b38fd58e3d4eb7b054364b26656b.html
     http://support.novell.com/techcenter/psdb/41569c9dc7eda00aba524a0d6f34a7b6.html
     http://support.novell.com/techcenter/psdb/e6e2ffbd54ec927734c60e0c70947511.html

   SUSE Linux Enterprise Desktop 10 SP1
     http://support.novell.com/techcenter/psdb/4de56c78bd03f5479227093dadd0b006.html
     http://support.novell.com/techcenter/psdb/e6e2ffbd54ec927734c60e0c70947511.html

   SUSE Linux Enterprise Desktop 10 SP1 for x86
     http://support.novell.com/techcenter/psdb/e6e2ffbd54ec927734c60e0c70947511.html

   SUSE CORE 9 for IBM zSeries 64bit
     http://support.novell.com/techcenter/psdb/1c8f3645ba3d5dbc64e0896cf7c55997.html

   SUSE CORE 9 for IBM S/390 31bit
     http://support.novell.com/techcenter/psdb/977651f223935a83c8e78063a5d4a199.html

   SUSE CORE 9 for IBM POWER
     http://support.novell.com/techcenter/psdb/db175614c512157df22f534c459eec62.html

   SUSE CORE 9 for AMD64 and Intel EM64T
     http://support.novell.com/techcenter/psdb/7e7048f8f7ffd90614b0e72e6fbe6a95.html
     http://support.novell.com/techcenter/psdb/615785e3ad7b9994c5088545f0cfc2b5.html

   Novell Linux Desktop 9
     http://support.novell.com/techcenter/psdb/615785e3ad7b9994c5088545f0cfc2b5.html
     http://support.novell.com/techcenter/psdb/353a84ed7b2f4d437e90169112757674.html

   SUSE CORE 9 for Itanium Processor Family
     http://support.novell.com/techcenter/psdb/04a995573698ff4214863690f5aeba5c.html

   SUSE SLES 9
     http://support.novell.com/techcenter/psdb/8649524e2dacae36ec222801b5ab337b.html
     http://support.novell.com/techcenter/psdb/7e7048f8f7ffd90614b0e72e6fbe6a95.html
     http://support.novell.com/techcenter/psdb/1c8f3645ba3d5dbc64e0896cf7c55997.html
     http://support.novell.com/techcenter/psdb/977651f223935a83c8e78063a5d4a199.html
     http://support.novell.com/techcenter/psdb/db175614c512157df22f534c459eec62.html
     http://support.novell.com/techcenter/psdb/615785e3ad7b9994c5088545f0cfc2b5.html
     http://support.novell.com/techcenter/psdb/353a84ed7b2f4d437e90169112757674.html
     http://support.novell.com/techcenter/psdb/04a995573698ff4214863690f5aeba5c.html
     http://support.novell.com/techcenter/psdb/79ad90eebcf05ad4304479c0d22b0b96.html

   Open Enterprise Server
     http://support.novell.com/techcenter/psdb/8649524e2dacae36ec222801b5ab337b.html
     http://support.novell.com/techcenter/psdb/353a84ed7b2f4d437e90169112757674.html
     http://support.novell.com/techcenter/psdb/0e48ee7406277b3d7e82a2a15d603435.html

   Novell Linux POS 9
     http://support.novell.com/techcenter/psdb/8649524e2dacae36ec222801b5ab337b.html
     http://support.novell.com/techcenter/psdb/353a84ed7b2f4d437e90169112757674.html
     http://support.novell.com/techcenter/psdb/79ad90eebcf05ad4304479c0d22b0b96.html
     http://support.novell.com/techcenter/psdb/0e48ee7406277b3d7e82a2a15d603435.html

   SUSE CORE 9 for x86
     http://support.novell.com/techcenter/psdb/353a84ed7b2f4d437e90169112757674.html
     http://support.novell.com/techcenter/psdb/79ad90eebcf05ad4304479c0d22b0b96.html
     http://support.novell.com/techcenter/psdb/0e48ee7406277b3d7e82a2a15d603435.html
______________________________________________________________________________

5) Pending Vulnerabilities, Solutions, and Work-Arounds:

   See SUSE Security Summary Report.
______________________________________________________________________________

6) Authenticity Verification and Additional Information

  - Announcement authenticity verification:

    SUSE security announcements are published via mailing lists and on Web
    sites. The authenticity and integrity of a SUSE security announcement is
    guaranteed by a cryptographic signature in each announcement. All SUSE
    security announcements are published with a valid signature.

    To verify the signature of the announcement, save it as text into a file
    and run the command

      gpg --verify <file>

    replacing <file> with the name of the file where you saved the
    announcement. The output for a valid signature looks like:

      gpg: Signature made <DATE> using RSA key ID 3D25D3D9
      gpg: Good signature from "SuSE Security Team <security@suse.de>"

    where <DATE> is replaced by the date the document was signed.

    If the security team's key is not contained in your key ring, you can
    import it from the first installation CD. To import the key, use the
    command

      gpg --import gpg-pubkey-3d25d3d9-36e12d04.asc

  - Package authenticity verification:

    SUSE update packages are available on many mirror FTP servers all over the
    world. While this service is considered valuable and important to the free
    and open source software community, the authenticity and the integrity of
    a package needs to be verified to ensure that it has not been tampered
    with.

    There are two verification methods that can be used independently from
    each other to prove the authenticity of a downloaded file or RPM package:

    1) Using the internal gpg signatures of the rpm package
    2) MD5 checksums as provided in this announcement

    1) The internal rpm package signatures provide an easy way to verify the
       authenticity of an RPM package. Use the command

        rpm -v --checksig <file.rpm>

       to verify the signature of the package, replacing <file.rpm> with the
       filename of the RPM package downloaded. The package is unmodified if it
       contains a valid signature from build@suse.de with the key ID 9C800ACA.

       This key is automatically imported into the RPM database (on
       RPMv4-based distributions) and the gpg key ring of 'root' during
       installation. You can also find it on the first installation CD and at
       the end of this announcement.

    2) If you need an alternative means of verification, use the md5sum
       command to verify the authenticity of the packages. Execute the command

         md5sum <filename.rpm>

       after you downloaded the file from a SUSE FTP server or its mirrors.
       Then compare the resulting md5sum with the one that is listed in the
       SUSE security announcement. Because the announcement containing the
       checksums is cryptographically signed (by security@suse.de), the
       checksums show proof of the authenticity of the package if the
       signature of the announcement is valid. Note that the md5 sums
       published in the SUSE Security Announcements are valid for the
       respective packages only. Newer versions of these packages cannot be
       verified.

  - SUSE runs two security mailing lists to which any interested party may
    subscribe:

    opensuse-security@opensuse.org
        -   General Linux and SUSE security discussion.
            All SUSE security announcements are sent to this list.
            To subscribe, send an e-mail to
                <opensuse-security+subscribe@opensuse.org>.

    opensuse-security-announce@opensuse.org
        -   SUSE's announce-only mailing list.
            Only SUSE's security announcements are sent to this list.
            To subscribe, send an e-mail to
                <opensuse-security-announce+subscribe@opensuse.org>.

    =====================================================================
    SUSE's security contact is <security@suse.com> or <security@suse.de>.
    The <security@suse.de> public key is listed below.
    =====================================================================
______________________________________________________________________________

    The information in this advisory may be distributed or reproduced,
    provided that the advisory is not modified in any way. In particular, the
    clear text signature should show proof of the authenticity of the text.

    SUSE Linux Products GmbH provides no warranties of any kind whatsoever
    with respect to the information contained in this security advisory.

Type Bits/KeyID     Date       User ID
pub  2048R/3D25D3D9 1999-03-06 SuSE Security Team <security@suse.de>
pub  1024D/9C800ACA 2000-10-19 SuSE Package Signing Key <build@suse.de>

- -----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v1.4.2 (GNU/Linux)
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=ypVs
- -----END PGP PUBLIC KEY BLOCK-----

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.4-svn0 (GNU/Linux)

iQEVAwUBRw9+uHey5gA9JdPZAQKEUwf9EPrMhP/ddjeIY++GTo/IvpAX0o8mLeCR
An7w14Oe+n2T5/OnWA2luBpwznEHbRO8FLwLWcZ5okHWxhZRXCwmvMFSZZ/vkWyn
IduX8Gn8YqKBSMCeQRxS9KPwX22RWP2G6oIcjteVAdYPNs3pYRHPNvgMF1pXmf0e
wroMXF6h+5P3MaC5exDlJPnh3l5gzHcuw5DbswvdHlzmCuUg8OtWtinpwSjA5mUn
Ubs2igZsEvtgvS5jffC7MDybivRjj89uG1Y7sYTKAaXiuuYAGpyqJQgwAAoE7mls
u+T4IWex/0WZIkKGqFl103JzkzIX3VhDlEli23QuBxS458kQRQywQg==
=ZCa6
-----END PGP SIGNATURE-----