openSUSE 10 Security Update : kernel (kernel-2705)

This script is Copyright (C) 2007-2014 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

This kernel update fixes the following security problems :

- CVE-2006-5751: An integer overflow in the networking
bridge ioctl starting with Kernel 2.6.7 could be used by
local attackers to overflow kernel memory buffers and
potentially escalate privileges [#222656]

- CVE-2006-6106: Multiple buffer overflows in the
cmtp_recv_interopmsg function in the Bluetooth driver
(net/bluetooth/cmtp/capi.c) in the Linux kernel allowed
remote attackers to cause a denial of service (crash)
and possibly execute arbitrary code via CAPI messages
with a large value for the length of the (1) manu
(manufacturer) or (2) serial (serial number) field.
[#227603]

- CVE-2006-5749: The isdn_ppp_ccp_reset_alloc_state
function in drivers/isdn/isdn_ppp.c in the Linux kernel
does not call the init_timer function for the ISDN PPP
CCP reset state timer, which has unknown attack vectors
and results in a system crash. [#229619]

- CVE-2006-5753: Unspecified vulnerability in the
listxattr system call in Linux kernel, when a 'bad
inode' is present, allows local users to cause a denial
of service (data corruption) and possibly gain
privileges. [#230270]

- CVE-2007-0006: The key serial number collision avoidance
code in the key_alloc_serial function allows local users
to cause a denial of service (crash) via vectors that
trigger a null dereference. [#243003]

- CVE-2007-0772: A remote denial of service problem on
NFSv2 mounts with ACL enabled was fixed. [#244909]

Furthermore, it catches up to the mainline kernel, version 2.6.18.8,
and contains a large number of additional fixes for non security bugs.

Solution :

Update the affected kernel packages.

Risk factor :

High / CVSS Base Score : 7.8
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)

Family: SuSE Local Security Checks

Nessus Plugin ID: 27293 ()

Bugtraq ID:

CVE ID: CVE-2006-5749
CVE-2006-5751
CVE-2006-5753
CVE-2006-6106
CVE-2007-0006
CVE-2007-0772

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now