openSUSE Security Update : kdump (openSUSE-2016-1215)

This script is Copyright (C) 2016-2017 Tenable Network Security, Inc.

Synopsis :

The remote openSUSE host is missing a security update.

Description :

This update for kdump provides several fixes and enhancements :

- Refresh kdumprd if /etc/hosts or /etc/nsswitch.conf is
changed. (bsc#943214)

- Add a separate systemd service to rebuild kdumprd at
boot. (bsc#943214)

- Improve network setup in the kdump environment by
reading configuration from wicked by default (system
configuration files are used as a fallback).

- Use the last mount entry in kdump_get_mountpoints().

- Remove 'notsc' from the kdump kernel command line.

- Handle dump files with many program headers.
(bsc#932339, bsc#970708)

- Fall back to stat() if file type is DT_UNKNOWN.

- Remove vm. sysctls from kdump initrd. (bsc#927451,

- Use the exit code of kexec, not that of 'local'.

- Convert sysroot to a bind mount in kdump initrd.

- Distinguish between Xenlinux (aka Xenified or SUSE) and
pvops Xen kernels, as the latter can run on bare metal.

- CVE-2016-5759: Use full path to dracut as argument to
bash. (bsc#989972, bsc#990200)

This update was imported from the SUSE:SLE-12-SP1:Update update

See also :

Solution :

Update the affected kdump packages.

Risk factor :

Medium / CVSS Base Score : 6.9

Family: SuSE Local Security Checks

Nessus Plugin ID: 94240 ()

Bugtraq ID:

CVE ID: CVE-2016-5759

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now