openSUSE Security Update : kernel (kernel-1415)

This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

The openSUSE 11.1 Kernel was updated to 2.6.27.37 fixing various bugs
and security issues.

Following security issues were fixed: CVE-2009-2909: Unsigned check in
the ax25 socket handler could allow local attackers to potentially
crash the kernel or even execute code.

CVE-2009-3002: Fixed various sockethandler getname leaks, which could
disclose memory previously used by the kernel or other userland
processes to the local attacker.

CVE-2009-2910: A information leakage with upper 32bit register values
on x86_64 systems was fixed.

Various KVM stability and security fixes have also been added.

See also :

https://bugzilla.novell.com/show_bug.cgi?id=410452
https://bugzilla.novell.com/show_bug.cgi?id=441650
https://bugzilla.novell.com/show_bug.cgi?id=448410
https://bugzilla.novell.com/show_bug.cgi?id=459146
https://bugzilla.novell.com/show_bug.cgi?id=466279
https://bugzilla.novell.com/show_bug.cgi?id=466554
https://bugzilla.novell.com/show_bug.cgi?id=471396
https://bugzilla.novell.com/show_bug.cgi?id=472342
https://bugzilla.novell.com/show_bug.cgi?id=476582
https://bugzilla.novell.com/show_bug.cgi?id=477816
https://bugzilla.novell.com/show_bug.cgi?id=483375
https://bugzilla.novell.com/show_bug.cgi?id=483706
https://bugzilla.novell.com/show_bug.cgi?id=487412
https://bugzilla.novell.com/show_bug.cgi?id=490030
https://bugzilla.novell.com/show_bug.cgi?id=492547
https://bugzilla.novell.com/show_bug.cgi?id=498708
https://bugzilla.novell.com/show_bug.cgi?id=501563
https://bugzilla.novell.com/show_bug.cgi?id=504646
https://bugzilla.novell.com/show_bug.cgi?id=509753
https://bugzilla.novell.com/show_bug.cgi?id=511306
https://bugzilla.novell.com/show_bug.cgi?id=514022
https://bugzilla.novell.com/show_bug.cgi?id=515640
https://bugzilla.novell.com/show_bug.cgi?id=524242
https://bugzilla.novell.com/show_bug.cgi?id=527754
https://bugzilla.novell.com/show_bug.cgi?id=528769
https://bugzilla.novell.com/show_bug.cgi?id=531260
https://bugzilla.novell.com/show_bug.cgi?id=531384
https://bugzilla.novell.com/show_bug.cgi?id=531437
https://bugzilla.novell.com/show_bug.cgi?id=531533
https://bugzilla.novell.com/show_bug.cgi?id=531633
https://bugzilla.novell.com/show_bug.cgi?id=532063
https://bugzilla.novell.com/show_bug.cgi?id=532443
https://bugzilla.novell.com/show_bug.cgi?id=532598
https://bugzilla.novell.com/show_bug.cgi?id=533267
https://bugzilla.novell.com/show_bug.cgi?id=534065
https://bugzilla.novell.com/show_bug.cgi?id=534202
https://bugzilla.novell.com/show_bug.cgi?id=534214
https://bugzilla.novell.com/show_bug.cgi?id=534232
https://bugzilla.novell.com/show_bug.cgi?id=534961
https://bugzilla.novell.com/show_bug.cgi?id=534977
https://bugzilla.novell.com/show_bug.cgi?id=535380
https://bugzilla.novell.com/show_bug.cgi?id=535409
https://bugzilla.novell.com/show_bug.cgi?id=535497
https://bugzilla.novell.com/show_bug.cgi?id=535801
https://bugzilla.novell.com/show_bug.cgi?id=535880
https://bugzilla.novell.com/show_bug.cgi?id=535890
https://bugzilla.novell.com/show_bug.cgi?id=535947
https://bugzilla.novell.com/show_bug.cgi?id=536117
https://bugzilla.novell.com/show_bug.cgi?id=537435
https://bugzilla.novell.com/show_bug.cgi?id=539271
https://bugzilla.novell.com/show_bug.cgi?id=541403
https://bugzilla.novell.com/show_bug.cgi?id=544759
https://bugzilla.novell.com/show_bug.cgi?id=544779
https://bugzilla.novell.com/show_bug.cgi?id=545013
https://bugzilla.novell.com/show_bug.cgi?id=545236
https://bugzilla.novell.com/show_bug.cgi?id=546006

Solution :

Update the affected kernel packages.

Risk factor :

Medium / CVSS Base Score : 4.9
(CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C)
Public Exploit Available : true

Family: SuSE Local Security Checks

Nessus Plugin ID: 42334 ()

Bugtraq ID:

CVE ID: CVE-2009-2909
CVE-2009-2910
CVE-2009-3002

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now