openSUSE 10 Security Update : kernel (kernel-4473)
High Nessus Plugin ID 27297
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis kernel update fixes the following security problems :
- CVE-2007-4573: It was possible for local user to become root by exploiting a bug in the IA32 system call emulation. This affects x86_64 platforms with kernel 2.4.x and 2.6.x before 18.104.22.168 only.
- CVE-2007-4571: An information disclosure vulnerability in the ALSA driver can be exploited by local users to read sensitive data from the kernel memory.
Furthermore, this kernel catches up to the SLE 10 state of the kernel, with numerous additional fixes.
SolutionUpdate the affected kernel packages.