SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 6437)

high Nessus Plugin ID 59138
New! Vulnerability Priority Rating (VPR)

Tenable calculates a dynamic VPR for every vulnerability. VPR combines vulnerability information with threat intelligence and machine learning algorithms to predict which vulnerabilities are most likely to be exploited in attacks. Read more about what VPR is and how it is different from CVSS.

VPR Score: 9.2


The remote SuSE 10 host is missing a security-related patch.


This patch updates the SUSE Linux Enterprise 10 SP2 kernel to fix various bugs and some security issues.

The following security issues were fixed: CVE-2009-2692: A missing NULL pointer check in the socket sendpage function can be used by local attackers to gain root privileges.

(No cve yet) A information leak from using sigaltstack was fixed.

Enabled -fno-delete-null-pointer-checks to avoid optimizing away NULL pointer checks and fixed Makefiles to make sure

-fwrapv is used everywhere. CVE-2009-1758: The hypervisor_callback function in Xen allows guest user applications to cause a denial of service (kernel oops) of the guest OS by triggering a segmentation fault in 'certain address ranges.'

- A crash on r8169 network cards when receiving large packets was fixed. (CVE-2009-1389)

- The nfs_permission function in fs/nfs/dir.c in the NFS client implementation in the Linux kernel, when atomic_open is available, does not check execute (aka EXEC or MAY_EXEC) permission bits, which allows local users to bypass permissions and execute files, as demonstrated by files on an NFSv4 fileserver.


Apply ZYPP patch number 6437.

See Also

Plugin Details

Severity: High

ID: 59138

File Name: suse_kernel-6437.nasl

Version: 1.9

Type: local

Agent: unix

Published: 5/17/2012

Updated: 1/14/2021

Risk Information

Risk Factor: High

VPR Score: 9.2

CVSS v2.0

Base Score: 7.8

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Information

CPE: cpe:/o:suse:suse_linux

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 8/15/2009

Exploitable With


Core Impact

Metasploit (Linux Kernel Sendpage Local Privilege Escalation)

Reference Information

CVE: CVE-2009-1389, CVE-2009-1630, CVE-2009-1758, CVE-2009-2692

CWE: 119, 264, 399