This script is Copyright (C) 2016-2017 Tenable Network Security, Inc.
The remote openSUSE host is missing a security update.
The openSUSE 13.1 kernel was updated to fix two security issues.
The following security bugs were fixed :
- CVE-2016-9576: A use-after-free vulnerability in the
SCSI generic driver allows users with write access to
/dev/sg* or /dev/bsg* to elevate their privileges
- CVE-2016-9794: A use-after-free vulnerability in the
ALSA pcm layer allowed local users to cause a denial of
service, memory corruption or possibly even to elevate
their privileges (bsc#1013533).
See also :
Update the affected the Linux Kernel packages.
Risk factor :
High / CVSS Base Score : 7.2