openSUSE Security Update : kernel (kernel-171)

This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.

Synopsis :

The remote openSUSE host is missing a security update.

Description :

The openSUSE 11.0 kernel was updated to

It fixes various stability bugs and also security bugs.

CVE-2008-1673: Fixed the range checking in the ASN.1 decoder in NAT
for SNMP and CIFS, which could have been used by a remote attacker to
crash the machine.

CVE-2008-3276: An integer overflow flaw was found in the Linux kernel
dccp_setsockopt_change() function. An attacker may leverage this
vulnerability to trigger a kernel panic on a victim's machine

CVE-2008-3272: The snd_seq_oss_synth_make_info function in
sound/core/seq/oss/seq_oss_synth.c in the sound subsystem does not
verify that the device number is within the range defined by
max_synthdev before returning certain data to the caller, which allows
local users to obtain sensitive information.

CVE-2008-3275: The (1) real_lookup and (2) __lookup_hash functions in
fs/namei.c in the vfs implementation do not prevent creation of a
child dentry for a deleted (aka S_DEAD) directory, which allows local
users to cause a denial of service ('overflow' of the UBIFS orphan
area) via a series of attempted file creations within deleted

Also lots of bugs were fixed.

See also :

Solution :

Update the affected kernel packages.

Risk factor :

Critical / CVSS Base Score : 10.0

Family: SuSE Local Security Checks

Nessus Plugin ID: 40009 ()

Bugtraq ID:

CVE ID: CVE-2008-1673

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now