Miklos Szeredi

**Name of the Vulnerable Software and Affected Versions** linux-headers-2.6.18-6 versions 2.6.18-6 and earlier linux-image-2.6.18-6 versions 2.6.18-6 and earlier linux-modules-2.6.18-6 versions 2.6.18-6 and earlier linux-support-2.6.18-6 versions 2.6.18-6 and earlier linux-tree-2.6.18 versions 2.6.18-6 and earlier linux-source-2.6.18 versions 2.6.18-6 and earlier linux-doc-2.6.18 versions 2.6.18-6 and earlier linux-manual-2.6.18 versions 2.6.18-6 and earlier linux-patch-debian-2.6.18 versions 2.6.18-6 and earlier linux-image-2.6.18-6-486 versions 2.6.18-6 and earlier linux-image-2.6.18-6-686 versions 2.6.18-6 and earlier linux-image-2.6.18-6-686-bigmem versions 2.6.18-6 and earlier linux-image-2.6.18-6-alpha-generic versions 2.6.18-6 and earlier linux-image-2.6.18-6-alpha-legacy versions 2.6.18-6 and earlier linux-image-2.6.18-6-alpha-smp versions 2.6.18-6 and earlier linux-image-2.6.18-6-amd64 versions 2.6.18-6 and earlier linux-image-2.6.18-6-footbridge versions 2.6.18-6 and earlier linux-image-2.6.18-6-iop32x versions 2.6.18-6 and earlier linux-image-2.6.18-6-itanium versions 2.6.18-6 and earlier linux-image-2.6.18-6-k7 versions 2.6.18-6 and earlier linux-image-2.6.18-6-mckinley versions 2.6.18-6 and earlier linux-image-2.6.18-6-parisc versions 2.6.18-6 and earlier linux-image-2.6.18-6-parisc64 versions 2.6.18-6 and earlier linux-image-2.6.18-6-parisc64-smp versions 2.6.18-6 and earlier linux-image-2.6.18-6-powerpc versions 2.6.18-6 and earlier linux-image-2.6.18-6-powerpc-miboot versions 2.6.18-6 and earlier linux-image-2.6.18-6-powerpc-smp versions 2.6.18-6 and earlier linux-image-2.6.18-6-powerpc64 versions 2.6.18-6 and earlier linux-image-2.6.18-6-prep versions 2.6.18-6 and earlier linux-image-2.6.18-6-qemu versions 2.6.18-6 and earlier linux-image-2.6.18-6-r3k-kn02 versions 2.6.18-6 and earlier linux-image-2.6.18-6-r4k-ip22 versions 2.6.18-6 and earlier linux-image-2.6.18-6-r4k-kn04 versions 2.6.18-6 and earlier linux-image-2.6.18-6-r5k-cobalt versions 2.6.18-6 and earlier linux-image-2.6.18-6-r5k-ip32 versions 2.6.18-6 and earlier linux-image-2.6.18-6-s3c2410 versions 2.6.18-6 and earlier linux-image-2.6.18-6-s390 versions 2.6.18-6 and earlier linux-image-2.6.18-6-s390-tape versions 2.6.18-6 and earlier linux-image-2.6.18-6-s390x versions 2.6.18-6 and earlier linux-image-2.6.18-6-sb1-bcm91250a versions 2.6.18-6 and earlier linux-image-2.6.18-6-sb1a-bcm91480b versions 2.6.18-6 and earlier linux-image-2.6.18-6-sparc64 versions 2.6.18-6 and earlier linux-image-2.6.18-6-sparc64-smp versions 2.6.18-6 and earlier linux-image-2.6.18-6-vserver-686 versions 2.6.18-6 and earlier linux-image-2.6.18-6-vserver-alpha versions 2.6.18-6 and earlier linux-image-2.6.18-6-vserver-amd64 versions 2.6.18-6 and earlier linux-image-2.6.18-6-vserver-k7 versions 2.6.18-6 and earlier linux-image-2.6.18-6-vserver-powerpc versions 2.6.18-6 and earlier linux-image-2.6.18-6-vserver-powerpc64 versions 2.6.18-6 and earlier linux-image-2.6.18-6-vserver-s390x versions 2.6.18-6 and earlier linux-image-2.6.18-6-vserver-sparc64 versions 2.6.18-6 and earlier linux-image-2.6.18-6-xen-686 versions 2.6.18-6 and earlier linux-image-2.6.18-6-xen-amd64 versions 2.6.18-6 and earlier linux-image-2.6.18-6-xen-vserver-686 versions 2.6.18-6 and earlier linux-image-2.6.18-6-xen-vserver-amd64 versions 2.6.18-6 and earlier linux-headers-2.6.18-6 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-486 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-686 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-686-bigmem versions 2.6.18-6 and earlier linux-headers-2.6.18-6-all versions 2.6.18-6 and earlier linux-headers-2.6.18-6-all-alpha versions 2.6.18-6 and earlier linux-headers-2.6.18-6-all-amd64 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-all-hppa versions 2.6.18-6 and earlier linux-headers-2.6.18-6-all-i386 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-all-ia64 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-all-mips versions 2.6.18-6 and earlier linux-headers-2.6.18-6-all-mipsel versions 2.6.18-6 and earlier linux-headers-2.6.18-6-all-powerpc versions 2.6.18-6 and earlier linux-headers-2.6.18-6-all-s390 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-all-sparc versions 2.6.18-6 and earlier linux-headers-2.6.18-6-alpha-generic versions 2.6.18-6 and earlier linux-headers-2.6.18-6-alpha-legacy versions 2.6.18-6 and earlier linux-headers-2.6.18-6-alpha-smp versions 2.6.18-6 and earlier linux-headers-2.6.18-6-amd64 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-footbridge versions 2.6.18-6 and earlier linux-headers-2.6.18-6-iop32x versions 2.6.18-6 and earlier linux-headers-2.6.18-6-itanium versions 2.6.18-6 and earlier linux-headers-2.6.18-6-k7 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-mckinley versions 2.6.18-6 and earlier linux-headers-2.6.18-6-parisc versions 2.6.18-6 and earlier linux-headers-2.6.18-6-parisc64 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-parisc64-smp versions 2.6.18-6 and earlier linux-headers-2.6.18-6-powerpc versions 2.6.18-6 and earlier linux-headers-2.6.18-6-powerpc-miboot versions 2.6.18-6 and earlier linux-headers-2.6.18-6-powerpc-smp versions 2.6.18-6 and earlier linux-headers-2.6.18-6-powerpc64 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-qemu versions 2.6.18-6 and earlier linux-headers-2.6.18-6-r3k-kn02 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-r4k-ip22 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-r4k-kn04 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-r5k-cobalt versions 2.6.18-6 and earlier linux-headers-2.6.18-6-r5k-ip32 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-s3c2410 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-s390 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-s390x versions 2.6.18-6 and earlier linux-headers-2.6.18-6-sb1-bcm91250a versions 2.6.18-6 and earlier linux-headers-2.6.18-6-sb1a-bcm91480b versions 2.6.18-6 and earlier linux-headers-2.6.18-6-sparc32 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-sparc64 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-sparc64-smp versions 2.6.18-6 and earlier linux-headers-2.6.18-6-vserver versions 2.6.18-6 and earlier linux-headers-2.6.18-6-vserver-686 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-vserver-alpha versions 2.6.18-6 and earlier linux-headers-2.6.18-6-vserver-amd64 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-vserver-k7 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-vserver-powerpc versions 2.6.18-6 and earlier linux-headers-2.6.18-6-vserver-powerpc64 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-vserver-s390x versions 2.6.18-6 and earlier linux-headers-2.6.18-6-vserver-sparc64 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-xen versions 2.6.18-6 and earlier linux-headers-2.6.18-6-xen-686 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-xen-amd64 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-xen-vserver versions 2.6.18-6 and earlier linux-headers-2.6.18-6-xen-vserver-686 versions 2.6.18-6 and earlier linux-headers-2.6.18-6-xen-vserver-amd64 versions 2.6.18-6 and earlier fai-kernels versions 2.6.18-6 and earlier **Description** The issue is related to multiple vulnerabilities in the Linux kernel, specifically in the `do splice from` function in `fs/splice.c`, which allows local users to bypass append mode and make arbitrary changes to other locations in the file. The vulnerabilities can be exploited remotely, leading to a disruption of protected information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** openSUSE kernel versions prior to 2.6.30-rc3 openSUSE kernel versions prior to 2.6.27.24 openSUSE kernel versions prior to 2.6.29.4 cluster-network-kmp-pae (affected versions not specified) cluster-network-kmp-default (affected versions not specified) ext4dev-kmp-ppc64 (affected versions not specified) kernel-ppc64-extra (affected versions not specified) ocfs2-kmp-ppc64 (affected versions not specified) cluster-network-kmp-xen (affected versions not specified) ext4dev-kmp-default (affected versions not specified) kernel-ppc64 (affected versions not specified) cluster-network-kmp-ppc64 (affected versions not specified) kernel-default-man (affected versions not specified) ocfs2-kmp-xen (affected versions not specified) kernel-default-extra (affected versions not specified) ext4dev-kmp-pae (affected versions not specified) kernel-xen-extra (affected versions not specified) kernel-debug-extra (affected versions not specified) ext4dev-kmp-vmi (affected versions not specified) kernel-kdump-debuginfo (affected versions not specified) ext4dev-kmp-xen (affected versions not specified) kernel-pae-extra (affected versions not specified) kernel-ppc64-debugsource (affected versions not specified) kernel-ps3 (affected versions not specified) ocfs2-kmp-default (affected versions not specified) ocfs2-kmp-pae (affected versions not specified) kernel-ppc64-base (affected versions not specified) kernel-kdump-debugsource (affected versions not specified) kernel-trace-extra (affected versions not specified) kernel-ppc64-debuginfo (affected versions not specified) kernel-kdump (affected versions not specified) kernel-source-debuginfo (affected versions not specified) **Description** The issue is related to multiple vulnerabilities in the openSUSE kernel and various packages, which can lead to a denial of service (prevention of file creation and removal) via a series of splice system calls that trigger a deadlock. The vulnerabilities can be exploited remotely. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.