CVE-2010-3067

Name of the Vulnerable Software and Affected Versions SUSE Linux Enterprise (affected versions not specified) kernel-vmipae-debuginfo (affected versions not specified) kernel-kdumppae-debuginfo (affected versions not specified) Linux kernel versions prior to 2.6.36-rc4-next-20100915

Description The issue involves multiple vulnerabilities in the Linux kernel and related packages, which can lead to a disruption of protected information availability. These vulnerabilities can be exploited remotely. Additionally, an integer overflow in the do io submit function in fs/aio.c allows local users to cause a denial of service or possibly have other unspecified impacts via crafted use of the io submit system call.

Recommendations For SUSE Linux Enterprise, kernel-vmipae-debuginfo, and kernel-kdumppae-debuginfo, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Linux kernel versions prior to 2.6.36-rc4-next-20100915, consider restricting access to the io submit system call until a patch is available.