openSUSE Security Update : kernel (kernel-1097)
high Nessus Plugin ID 40360
New! Vulnerability Priority Rating (VPR)
Tenable calculates a dynamic VPR for every vulnerability. VPR combines vulnerability information with threat intelligence and machine learning algorithms to predict which vulnerabilities are most likely to be exploited in attacks. Read more about what VPR is and how it is different from CVSS.
VPR Score: 5.9
Synopsis
The remote openSUSE host is missing a security update.Description
The openSUSE 11.1 kernel was updated to fix various bugs and several security issues. It was also updated to the stable release 2.6.27.25.Following security issues were fixed: CVE-2009-1961: A local denial of service problem in the splice(2) system call was fixed.
CVE-2009-1389: A crash on r8169 network cards when receiving large packets was fixed.
CVE-2009-1385: Integer underflow in the e1000_clean_rx_irq function in drivers/net/e1000/e1000_main.c in the e1000 driver in the Linux kernel, the e1000e driver in the Linux kernel, and Intel Wired Ethernet (aka e1000) before 7.5.5 allows remote attackers to cause a denial of service (panic) via a crafted frame size.
CVE-2009-1630: The nfs_permission function in fs/nfs/dir.c in the NFS client implementation in the Linux kernel, when atomic_open is available, does not check execute (aka EXEC or MAY_EXEC) permission bits, which allows local users to bypass permissions and execute files, as demonstrated by files on an NFSv4 fileserver
Solution
Update the affected kernel packages.See Also
https://bugzilla.novell.com/show_bug.cgi?id=185164
https://bugzilla.novell.com/show_bug.cgi?id=191648
https://bugzilla.novell.com/show_bug.cgi?id=395775
https://bugzilla.novell.com/show_bug.cgi?id=439775
https://bugzilla.novell.com/show_bug.cgi?id=450658
https://bugzilla.novell.com/show_bug.cgi?id=475149
https://bugzilla.novell.com/show_bug.cgi?id=476525
https://bugzilla.novell.com/show_bug.cgi?id=476822
https://bugzilla.novell.com/show_bug.cgi?id=478462
https://bugzilla.novell.com/show_bug.cgi?id=481074
https://bugzilla.novell.com/show_bug.cgi?id=484716
https://bugzilla.novell.com/show_bug.cgi?id=485768
https://bugzilla.novell.com/show_bug.cgi?id=487247
https://bugzilla.novell.com/show_bug.cgi?id=491802
https://bugzilla.novell.com/show_bug.cgi?id=493214
https://bugzilla.novell.com/show_bug.cgi?id=495065
https://bugzilla.novell.com/show_bug.cgi?id=495091
https://bugzilla.novell.com/show_bug.cgi?id=497341
https://bugzilla.novell.com/show_bug.cgi?id=497648
https://bugzilla.novell.com/show_bug.cgi?id=498358
https://bugzilla.novell.com/show_bug.cgi?id=498369
https://bugzilla.novell.com/show_bug.cgi?id=499152
https://bugzilla.novell.com/show_bug.cgi?id=499278
https://bugzilla.novell.com/show_bug.cgi?id=499845
https://bugzilla.novell.com/show_bug.cgi?id=500429
https://bugzilla.novell.com/show_bug.cgi?id=501396
https://bugzilla.novell.com/show_bug.cgi?id=501651
https://bugzilla.novell.com/show_bug.cgi?id=502675
https://bugzilla.novell.com/show_bug.cgi?id=502903
https://bugzilla.novell.com/show_bug.cgi?id=503353
https://bugzilla.novell.com/show_bug.cgi?id=503635
https://bugzilla.novell.com/show_bug.cgi?id=503855
https://bugzilla.novell.com/show_bug.cgi?id=505578
https://bugzilla.novell.com/show_bug.cgi?id=506361
https://bugzilla.novell.com/show_bug.cgi?id=507557
https://bugzilla.novell.com/show_bug.cgi?id=509071
https://bugzilla.novell.com/show_bug.cgi?id=509544
https://bugzilla.novell.com/show_bug.cgi?id=509822
https://bugzilla.novell.com/show_bug.cgi?id=511243
https://bugzilla.novell.com/show_bug.cgi?id=514644
Plugin Details
Severity: High
ID: 40360
File Name: suse_11_1_kernel-090709.nasl
Version: 1.10
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 7/24/2009
Updated: 1/14/2021
Dependencies: 12634
Risk Information
Risk Factor: High
VPR Score: 5.9
CVSS v2.0
Base Score: 7.8
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Vulnerability Information
CPE: p-cpe:/a:novell:opensuse:aufs-kmp-debug, p-cpe:/a:novell:opensuse:aufs-kmp-trace, p-cpe:/a:novell:opensuse:brocade-bfa-kmp-debug, p-cpe:/a:novell:opensuse:brocade-bfa-kmp-trace, p-cpe:/a:novell:opensuse:dazuko-kmp-debug, p-cpe:/a:novell:opensuse:dazuko-kmp-trace, p-cpe:/a:novell:opensuse:drbd-kmp-debug, p-cpe:/a:novell:opensuse:drbd-kmp-trace, p-cpe:/a:novell:opensuse:intel-iamt-heci-kmp-debug, p-cpe:/a:novell:opensuse:intel-iamt-heci-kmp-trace, p-cpe:/a:novell:opensuse:iscsitarget-kmp-debug, p-cpe:/a:novell:opensuse:iscsitarget-kmp-trace, p-cpe:/a:novell:opensuse:kernel-debug, p-cpe:/a:novell:opensuse:kernel-debug-base, p-cpe:/a:novell:opensuse:kernel-debug-extra, p-cpe:/a:novell:opensuse:kernel-default, p-cpe:/a:novell:opensuse:kernel-default-base, p-cpe:/a:novell:opensuse:kernel-default-extra, p-cpe:/a:novell:opensuse:kernel-pae, p-cpe:/a:novell:opensuse:kernel-pae-base, p-cpe:/a:novell:opensuse:kernel-pae-extra, p-cpe:/a:novell:opensuse:kernel-source, p-cpe:/a:novell:opensuse:kernel-syms, p-cpe:/a:novell:opensuse:kernel-trace, p-cpe:/a:novell:opensuse:kernel-trace-base, p-cpe:/a:novell:opensuse:kernel-trace-extra, p-cpe:/a:novell:opensuse:kernel-vanilla, p-cpe:/a:novell:opensuse:kernel-xen, p-cpe:/a:novell:opensuse:kernel-xen-base, p-cpe:/a:novell:opensuse:kernel-xen-extra, p-cpe:/a:novell:opensuse:kqemu-kmp-debug, p-cpe:/a:novell:opensuse:kqemu-kmp-trace, p-cpe:/a:novell:opensuse:kvm-kmp-trace, p-cpe:/a:novell:opensuse:lirc-kmp-trace, p-cpe:/a:novell:opensuse:ofed-kmp-debug, p-cpe:/a:novell:opensuse:ofed-kmp-trace, p-cpe:/a:novell:opensuse:oracleasm-kmp-debug, p-cpe:/a:novell:opensuse:oracleasm-kmp-trace, p-cpe:/a:novell:opensuse:pcfclock-kmp-debug, p-cpe:/a:novell:opensuse:pcfclock-kmp-trace, p-cpe:/a:novell:opensuse:virtualbox-ose-kmp-debug, p-cpe:/a:novell:opensuse:virtualbox-ose-kmp-trace, p-cpe:/a:novell:opensuse:vmware-kmp-debug, p-cpe:/a:novell:opensuse:vmware-kmp-trace, cpe:/o:novell:opensuse:11.1
Required KB Items: Host/local_checks_enabled, Host/SuSE/release, Host/SuSE/rpm-list, Host/cpu
Patch Publication Date: 7/9/2009
Reference Information
CVE: CVE-2009-1385, CVE-2009-1389, CVE-2009-1630, CVE-2009-1961