openSUSE Security Update : kdump (openSUSE-2016-1215)

This script is Copyright (C) 2016-2017 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

This update for kdump provides several fixes and enhancements :

- Refresh kdumprd if /etc/hosts or /etc/nsswitch.conf is
changed. (bsc#943214)

- Add a separate systemd service to rebuild kdumprd at
boot. (bsc#943214)

- Improve network setup in the kdump environment by
reading configuration from wicked by default (system
configuration files are used as a fallback).
(bsc#980328)

- Use the last mount entry in kdump_get_mountpoints().
(bsc#951844)

- Remove 'notsc' from the kdump kernel command line.
(bsc#973213)

- Handle dump files with many program headers.
(bsc#932339, bsc#970708)

- Fall back to stat() if file type is DT_UNKNOWN.
(bsc#964206)

- Remove vm. sysctls from kdump initrd. (bsc#927451,
bsc#987862)

- Use the exit code of kexec, not that of 'local'.
(bsc#984799)

- Convert sysroot to a bind mount in kdump initrd.
(bsc#976864)

- Distinguish between Xenlinux (aka Xenified or SUSE) and
pvops Xen kernels, as the latter can run on bare metal.
(bsc#974270)

- CVE-2016-5759: Use full path to dracut as argument to
bash. (bsc#989972, bsc#990200)

This update was imported from the SUSE:SLE-12-SP1:Update update
project.

See also :

https://bugzilla.opensuse.org/show_bug.cgi?id=927451
https://bugzilla.opensuse.org/show_bug.cgi?id=932339
https://bugzilla.opensuse.org/show_bug.cgi?id=943214
https://bugzilla.opensuse.org/show_bug.cgi?id=951844
https://bugzilla.opensuse.org/show_bug.cgi?id=964206
https://bugzilla.opensuse.org/show_bug.cgi?id=970708
https://bugzilla.opensuse.org/show_bug.cgi?id=973213
https://bugzilla.opensuse.org/show_bug.cgi?id=974270
https://bugzilla.opensuse.org/show_bug.cgi?id=976864
https://bugzilla.opensuse.org/show_bug.cgi?id=980328
https://bugzilla.opensuse.org/show_bug.cgi?id=984799
https://bugzilla.opensuse.org/show_bug.cgi?id=987862
https://bugzilla.opensuse.org/show_bug.cgi?id=989972
https://bugzilla.opensuse.org/show_bug.cgi?id=990200

Solution :

Update the affected kdump packages.

Risk factor :

Medium / CVSS Base Score : 6.9
(CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C)

Family: SuSE Local Security Checks

Nessus Plugin ID: 94240 ()

Bugtraq ID:

CVE ID: CVE-2016-5759

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now