This script is Copyright (C) 2015 Tenable Network Security, Inc.
The remote openSUSE host is missing a security update.
e2fsprogs was updated to fix two security issues.
The following vulnerabilities were fixed :
- CVE-2015-1572: A local user could have executed
arbitrary code by causing a crafted block group
descriptor to be marked as dirty. Completes fix for
- CVE-2015-0247: A local user could have executed
arbitrary code via crafted block group descriptor data
in a filesystem image. (boo#915402)
See also :
Update the affected e2fsprogs packages.
Risk factor :
Medium / CVSS Base Score : 4.6