Quoting SUSE-SA:2008:006:
"Insufficient range checks in certain fault handlers could be used by local attackers to potentially read or write kernel memory."
Quoting CVE-2008-0007:
"Linux kernel before 2.6.22.17, when using certain drivers that register a fault handler that does not perform range checks, allows local users to access kernel memory via an out-of-range offset."
Adding CVE-2008-0007 from SUSE-SA:2008:006 (http:// lists.opensuse. org/opensuse- security- announce/ 2008-02/ msg00002. html).
Quoting SUSE-SA:2008:006:
"Insufficient range checks in certain fault handlers could be used by local attackers to potentially read or write kernel memory."
Quoting CVE-2008-0007:
"Linux kernel before 2.6.22.17, when using certain drivers that register a fault handler that does not perform range checks, allows local users to access kernel memory via an out-of-range offset."