Segoon

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 2.6.39 **Description** The issue allows local users to obtain potentially sensitive information from kernel stack memory or cause a denial of service, resulting in a system crash. This is due to the `bnep sock ioctl` function in `net/bluetooth/bnep/sock.c` not ensuring that a certain device field ends with a '0' character, which can be exploited via a BNEPCONNADD command. **Recommendations** For Linux kernel versions prior to 2.6.39, update to version 2.6.39 or later to resolve the issue. As a temporary workaround, consider restricting access to the `bnep sock ioctl` function to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 2.6.39 **Description** The issue allows local users to obtain potentially sensitive information from kernel stack memory. This is possible because the `do replace` function in `net/bridge/netfilter/ebtables.c` does not ensure that a certain name field ends with a '0' character. A local user with the CAP NET ADMIN capability can replace a table and then read a modprobe command line to exploit this. **Recommendations** For versions prior to 2.6.39, update to version 2.6.39 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** SUSE Linux Enterprise versions prior to 2.6.39.4 btrfs-kmp-xen (affected versions not specified) btrfs-kmp-pae (affected versions not specified) kernel-desktop-devel (affected versions not specified) **Description** The issue allows local users to obtain sensitive information, potentially leading to a breach of confidentiality, integrity, and availability of protected information. Exploitation can be performed locally. In the Linux kernel, the `fs/proc/base.c` file does not properly restrict access to `/proc/#####/io` files, enabling local users to obtain sensitive I/O statistics by polling a file. This could be used to discover the length of another user's password. **Recommendations** For SUSE Linux Enterprise versions prior to 2.6.39.4, update to version 2.6.39.4 or later to resolve the issue. For btrfs-kmp-xen, btrfs-kmp-pae, and kernel-desktop-devel, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SUSE Linux Enterprise versions prior to the fixed version btrfs-kmp-xen versions (affected versions not specified) btrfs-kmp-pae versions (affected versions not specified) kernel-desktop-devel versions (affected versions not specified) **Description** The issue affects the SUSE Linux Enterprise operating system, specifically the btrfs-kmp-xen, btrfs-kmp-pae, and kernel-desktop-devel packages. Exploitation of the vulnerabilities can lead to a breach of confidentiality, integrity, and availability of protected information. The vulnerabilities can be exploited locally. The do devinfo ioctl function in the Linux kernel is also affected, allowing local users to obtain sensitive information from kernel memory. **Recommendations** For btrfs-kmp-xen, consider disabling the vulnerable package until a patch is available. For btrfs-kmp-pae, restrict access to the vulnerable package to minimize the risk of exploitation. For kernel-desktop-devel, avoid using the vulnerable package until the issue is resolved. As a temporary workaround, consider disabling the do devinfo ioctl function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.