openSUSE 10 Security Update : kernel (kernel-4987)

This script is Copyright (C) 2008-2016 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

This kernel update fixes the following security problems :

- CVE-2008-0600: A local privilege escalation was found in
the vmsplice_pipe system call, which could be used by
local attackers to gain root access.

- CVE-2007-6151: The isdn_ioctl function in isdn_common.c
allowed local users to cause a denial of service via a
crafted ioctl struct in which iocts is not null
terminated, which triggers a buffer overflow.

Solution :

Update the affected kernel packages.

Risk factor :

High / CVSS Base Score : 7.2
(CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C)
Public Exploit Available : true

Family: SuSE Local Security Checks

Nessus Plugin ID: 31090 ()

Bugtraq ID:

CVE ID: CVE-2007-6151
CVE-2008-0600

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now