SuSE 11.3 Security Update : Linux Kernel (SAT Patch Numbers 9328 / 9329 / 9330)
High Nessus Plugin ID 74462
SynopsisThe remote SuSE 11 host is missing one or more security updates.
DescriptionThe SUSE Linux Enterprise 11 Service Pack 3 kernel was updated to fix a critical privilege escalation security issue :
- The futex acquisition code in kernel/futex.c can be used to gain ring0 access via the futex syscall. This could be used for privilege escalation by non-root users.
SolutionApply SAT patch number 9328 / 9329 / 9330 as appropriate.