Comment 3 for bug 187275

Adding CVE-2008-0007 from SUSE-SA:2008:006 (http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00002.html).

Quoting SUSE-SA:2008:006:
"Insufficient range checks in certain fault handlers could be used by local attackers to potentially read or write kernel memory."

Quoting CVE-2008-0007:
"Linux kernel before 2.6.22.17, when using certain drivers that register a fault handler that does not perform range checks, allows local users to access kernel memory via an out-of-range offset."