SuSE 10 Security Update : kernel-debug (ZYPP Patch Number 6986)

high Nessus Plugin ID 59147


The remote SuSE 10 host is missing a security-related patch.


This SUSE Linux Enterprise 10 SP3 kernel update (for x86_64 only) fixes a severe regression introduced by the previous bugfix that would make some machines not boot due to iommu / AGP memory issues.

The update also fixes several other bugs and the following security issue :

- drivers/net/r8169.c in the r8169 driver in the Linux kernel and earlier does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to (1) cause a denial of service (temporary network outage) via a packet with a crafted size, in conjunction with certain packets containing A characters and certain packets containing E characters;
or (2) cause a denial of service (system crash) via a packet with a crafted size, in conjunction with certain packets containing '0' characters, related to the value of the status register and erroneous behavior associated with the RxMaxSize register. (CVE-2009-4537)


Apply ZYPP patch number 6986.

See Also

Plugin Details

Severity: High

ID: 59147

File Name: suse_kernel-6986.nasl

Version: 1.4

Type: local

Agent: unix

Published: 5/17/2012

Updated: 1/14/2021

Supported Sensors: Nessus Agent

Risk Information


Risk Factor: Low

Score: 3.6


Risk Factor: High

Base Score: 7.8

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Information

CPE: cpe:/o:suse:suse_linux

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 4/13/2010

Reference Information

CVE: CVE-2009-4537

CWE: 20