SuSE 11.3 Security Update : kvm (SAT Patch Number 10645)

This script is Copyright (C) 2015 Tenable Network Security, Inc.


Synopsis :

The remote SuSE 11 host is missing a security update.

Description :

This update for KVM fixes an issue in the virtio-blk driver which
could result in incorrectly setting its WCE configuration. Under some
circumstances, this misconfiguration could cause severe file system
corruption, because cache flushes were not generated as they ought to
have been.

The update also addresses one security vulnerability :

- Insufficient resource limiting in VNC websockets
decoder. (bsc#924018). (CVE-2015-1779)

See also :

https://bugzilla.novell.com/show_bug.cgi?id=920571
https://bugzilla.novell.com/show_bug.cgi?id=924018
http://support.novell.com/security/cve/CVE-2015-1779.html

Solution :

Apply SAT patch number 10645.

Risk factor :

High

Family: SuSE Local Security Checks

Nessus Plugin ID: 83462 ()

Bugtraq ID:

CVE ID: CVE-2015-1779

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now