SuSE 11.1 Security Update : sysconfig (SAT Patch Number 5618)

High Nessus Plugin ID 57597


The remote SuSE 11 host is missing a security update.


sysconfig hook script for NetworkManager did not properly quote shell meta characters when processing ESSIDs. Specially crafted network names could have therefore lead to execution of shell code.

In addition, the following non-security bugs were fixed :

- 580018: ip addr flush $ifname causes vanishing /proc/sys/net/ipv6/conf/$ifname

- 697929: ipv6, rcnetwork returns before dad completed


Apply SAT patch number 5618.

See Also

Plugin Details

Severity: High

ID: 57597

File Name: suse_11_sysconfig-120106.nasl

Version: $Revision: 1.3 $

Type: local

Agent: unix

Published: 2012/01/19

Modified: 2013/10/25

Dependencies: 12634

Risk Information

Risk Factor: High

Vulnerability Information

CPE: p-cpe:/a:novell:suse_linux:11:sysconfig, cpe:/o:novell:suse_linux:11

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 2012/01/06

Reference Information

CVE: CVE-2011-4182