openSUSE Security Update : kernel (kernel-1097)
high Nessus Plugin ID 40360
New! Plugin Severity Now Using CVSS v3
The calculated severity for Plugins has been updated to use CVSS v3 by default. Plugins that do not have a CVSS v3 score will fall back to CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Synopsis
The remote openSUSE host is missing a security update.Description
The openSUSE 11.1 kernel was updated to fix various bugs and several security issues. It was also updated to the stable release 2.6.27.25.Following security issues were fixed: CVE-2009-1961: A local denial of service problem in the splice(2) system call was fixed.
CVE-2009-1389: A crash on r8169 network cards when receiving large packets was fixed.
CVE-2009-1385: Integer underflow in the e1000_clean_rx_irq function in drivers/net/e1000/e1000_main.c in the e1000 driver in the Linux kernel, the e1000e driver in the Linux kernel, and Intel Wired Ethernet (aka e1000) before 7.5.5 allows remote attackers to cause a denial of service (panic) via a crafted frame size.
CVE-2009-1630: The nfs_permission function in fs/nfs/dir.c in the NFS client implementation in the Linux kernel, when atomic_open is available, does not check execute (aka EXEC or MAY_EXEC) permission bits, which allows local users to bypass permissions and execute files, as demonstrated by files on an NFSv4 fileserver
Solution
Update the affected kernel packages.See Also
https://bugzilla.novell.com/show_bug.cgi?id=185164
https://bugzilla.novell.com/show_bug.cgi?id=191648
https://bugzilla.novell.com/show_bug.cgi?id=395775
https://bugzilla.novell.com/show_bug.cgi?id=439775
https://bugzilla.novell.com/show_bug.cgi?id=450658
https://bugzilla.novell.com/show_bug.cgi?id=475149
https://bugzilla.novell.com/show_bug.cgi?id=476525
https://bugzilla.novell.com/show_bug.cgi?id=476822
https://bugzilla.novell.com/show_bug.cgi?id=478462
https://bugzilla.novell.com/show_bug.cgi?id=481074
https://bugzilla.novell.com/show_bug.cgi?id=484716
https://bugzilla.novell.com/show_bug.cgi?id=485768
https://bugzilla.novell.com/show_bug.cgi?id=487247
https://bugzilla.novell.com/show_bug.cgi?id=491802
https://bugzilla.novell.com/show_bug.cgi?id=493214
https://bugzilla.novell.com/show_bug.cgi?id=495065
https://bugzilla.novell.com/show_bug.cgi?id=495091
https://bugzilla.novell.com/show_bug.cgi?id=497341
https://bugzilla.novell.com/show_bug.cgi?id=497648
https://bugzilla.novell.com/show_bug.cgi?id=498358
https://bugzilla.novell.com/show_bug.cgi?id=498369
https://bugzilla.novell.com/show_bug.cgi?id=499152
https://bugzilla.novell.com/show_bug.cgi?id=499278
https://bugzilla.novell.com/show_bug.cgi?id=499845
https://bugzilla.novell.com/show_bug.cgi?id=500429
https://bugzilla.novell.com/show_bug.cgi?id=501396
https://bugzilla.novell.com/show_bug.cgi?id=501651
https://bugzilla.novell.com/show_bug.cgi?id=502675
https://bugzilla.novell.com/show_bug.cgi?id=502903
https://bugzilla.novell.com/show_bug.cgi?id=503353
https://bugzilla.novell.com/show_bug.cgi?id=503635
https://bugzilla.novell.com/show_bug.cgi?id=503855
https://bugzilla.novell.com/show_bug.cgi?id=505578
https://bugzilla.novell.com/show_bug.cgi?id=506361
https://bugzilla.novell.com/show_bug.cgi?id=507557
https://bugzilla.novell.com/show_bug.cgi?id=509071
https://bugzilla.novell.com/show_bug.cgi?id=509544
https://bugzilla.novell.com/show_bug.cgi?id=509822
https://bugzilla.novell.com/show_bug.cgi?id=511243
https://bugzilla.novell.com/show_bug.cgi?id=514644
Plugin Details
Severity: High
ID: 40360
File Name: suse_11_1_kernel-090709.nasl
Version: 1.10
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 7/24/2009
Updated: 1/14/2021
Dependencies: ssh_get_info.nasl
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: High
Base Score: 7.8
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Vulnerability Information
CPE: p-cpe:/a:novell:opensuse:aufs-kmp-debug, p-cpe:/a:novell:opensuse:aufs-kmp-trace, p-cpe:/a:novell:opensuse:brocade-bfa-kmp-debug, p-cpe:/a:novell:opensuse:brocade-bfa-kmp-trace, p-cpe:/a:novell:opensuse:dazuko-kmp-debug, p-cpe:/a:novell:opensuse:dazuko-kmp-trace, p-cpe:/a:novell:opensuse:drbd-kmp-debug, p-cpe:/a:novell:opensuse:drbd-kmp-trace, p-cpe:/a:novell:opensuse:intel-iamt-heci-kmp-debug, p-cpe:/a:novell:opensuse:intel-iamt-heci-kmp-trace, p-cpe:/a:novell:opensuse:iscsitarget-kmp-debug, p-cpe:/a:novell:opensuse:iscsitarget-kmp-trace, p-cpe:/a:novell:opensuse:kernel-debug, p-cpe:/a:novell:opensuse:kernel-debug-base, p-cpe:/a:novell:opensuse:kernel-debug-extra, p-cpe:/a:novell:opensuse:kernel-default, p-cpe:/a:novell:opensuse:kernel-default-base, p-cpe:/a:novell:opensuse:kernel-default-extra, p-cpe:/a:novell:opensuse:kernel-pae, p-cpe:/a:novell:opensuse:kernel-pae-base, p-cpe:/a:novell:opensuse:kernel-pae-extra, p-cpe:/a:novell:opensuse:kernel-source, p-cpe:/a:novell:opensuse:kernel-syms, p-cpe:/a:novell:opensuse:kernel-trace, p-cpe:/a:novell:opensuse:kernel-trace-base, p-cpe:/a:novell:opensuse:kernel-trace-extra, p-cpe:/a:novell:opensuse:kernel-vanilla, p-cpe:/a:novell:opensuse:kernel-xen, p-cpe:/a:novell:opensuse:kernel-xen-base, p-cpe:/a:novell:opensuse:kernel-xen-extra, p-cpe:/a:novell:opensuse:kqemu-kmp-debug, p-cpe:/a:novell:opensuse:kqemu-kmp-trace, p-cpe:/a:novell:opensuse:kvm-kmp-trace, p-cpe:/a:novell:opensuse:lirc-kmp-trace, p-cpe:/a:novell:opensuse:ofed-kmp-debug, p-cpe:/a:novell:opensuse:ofed-kmp-trace, p-cpe:/a:novell:opensuse:oracleasm-kmp-debug, p-cpe:/a:novell:opensuse:oracleasm-kmp-trace, p-cpe:/a:novell:opensuse:pcfclock-kmp-debug, p-cpe:/a:novell:opensuse:pcfclock-kmp-trace, p-cpe:/a:novell:opensuse:virtualbox-ose-kmp-debug, p-cpe:/a:novell:opensuse:virtualbox-ose-kmp-trace, p-cpe:/a:novell:opensuse:vmware-kmp-debug, p-cpe:/a:novell:opensuse:vmware-kmp-trace, cpe:/o:novell:opensuse:11.1
Required KB Items: Host/local_checks_enabled, Host/SuSE/release, Host/SuSE/rpm-list, Host/cpu
Patch Publication Date: 7/9/2009
Reference Information
CVE: CVE-2009-1385, CVE-2009-1389, CVE-2009-1630, CVE-2009-1961