openSUSE Security Update : Mesa (openSUSE-SU-2013:1188-1)

medium Nessus Plugin ID 75083

Synopsis

The remote openSUSE host is missing a security update.

Description

Mesa was updated to fix a security problem in the Intel drivers, where potentially remote attackers via 3D models could inject code.

(CVE-2013-1872 - i965: fix problem with constant out of bounds access (bnc #828007).)

Solution

Update the affected Mesa packages.

See Also

https://bugzilla.novell.com/show_bug.cgi?id=828007

https://lists.opensuse.org/opensuse-updates/2013-07/msg00046.html

Plugin Details

Severity: Medium

ID: 75083

File Name: openSUSE-2013-577.nasl

Version: 1.4

Type: local

Agent: unix

Published: 6/13/2014

Updated: 1/19/2021

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:mesa, p-cpe:/a:novell:opensuse:mesa-32bit, p-cpe:/a:novell:opensuse:mesa-debuginfo, p-cpe:/a:novell:opensuse:mesa-debuginfo-32bit, p-cpe:/a:novell:opensuse:mesa-debugsource, p-cpe:/a:novell:opensuse:mesa-devel, p-cpe:/a:novell:opensuse:mesa-devel-32bit, p-cpe:/a:novell:opensuse:mesa-libegl-devel, p-cpe:/a:novell:opensuse:mesa-libegl-devel-32bit, p-cpe:/a:novell:opensuse:mesa-libegl1, p-cpe:/a:novell:opensuse:mesa-libegl1-32bit, p-cpe:/a:novell:opensuse:mesa-libegl1-debuginfo, p-cpe:/a:novell:opensuse:mesa-libegl1-debuginfo-32bit, p-cpe:/a:novell:opensuse:mesa-libgl-devel, p-cpe:/a:novell:opensuse:mesa-libgl-devel-32bit, p-cpe:/a:novell:opensuse:mesa-libgl1, p-cpe:/a:novell:opensuse:mesa-libgl1-32bit, p-cpe:/a:novell:opensuse:mesa-libgl1-debuginfo, p-cpe:/a:novell:opensuse:mesa-libgl1-debuginfo-32bit, p-cpe:/a:novell:opensuse:mesa-libglesv1_cm-devel, p-cpe:/a:novell:opensuse:mesa-libglu-devel-32bit, p-cpe:/a:novell:opensuse:mesa-libglu1, p-cpe:/a:novell:opensuse:mesa-libglu1-32bit, p-cpe:/a:novell:opensuse:mesa-libglu1-debuginfo, p-cpe:/a:novell:opensuse:mesa-libglu1-debuginfo-32bit, p-cpe:/a:novell:opensuse:mesa-libindirectgl-devel, p-cpe:/a:novell:opensuse:mesa-libindirectgl-devel-32bit, p-cpe:/a:novell:opensuse:mesa-libindirectgl1, p-cpe:/a:novell:opensuse:mesa-libindirectgl1-32bit, p-cpe:/a:novell:opensuse:mesa-libindirectgl1-debuginfo, p-cpe:/a:novell:opensuse:mesa-libindirectgl1-debuginfo-32bit, p-cpe:/a:novell:opensuse:mesa-libglapi-devel, p-cpe:/a:novell:opensuse:mesa-libglapi-devel-32bit, p-cpe:/a:novell:opensuse:mesa-libglapi0, p-cpe:/a:novell:opensuse:mesa-libglapi0-32bit, p-cpe:/a:novell:opensuse:mesa-libglesv1_cm-devel-32bit, p-cpe:/a:novell:opensuse:mesa-libglesv1_cm1, p-cpe:/a:novell:opensuse:mesa-libglesv1_cm1-32bit, p-cpe:/a:novell:opensuse:mesa-libglesv1_cm1-debuginfo, p-cpe:/a:novell:opensuse:mesa-libglesv1_cm1-debuginfo-32bit, p-cpe:/a:novell:opensuse:mesa-libglesv2-2, p-cpe:/a:novell:opensuse:mesa-libglesv2-2-32bit, p-cpe:/a:novell:opensuse:mesa-libglesv2-2-debuginfo, p-cpe:/a:novell:opensuse:mesa-libglesv2-2-debuginfo-32bit, p-cpe:/a:novell:opensuse:mesa-libglesv2-devel, p-cpe:/a:novell:opensuse:mesa-libglesv2-devel-32bit, p-cpe:/a:novell:opensuse:mesa-libglu-devel, p-cpe:/a:novell:opensuse:libosmesa8-32bit, p-cpe:/a:novell:opensuse:libosmesa8-debuginfo, p-cpe:/a:novell:opensuse:libosmesa8-debuginfo-32bit, p-cpe:/a:novell:opensuse:libosmesa9, p-cpe:/a:novell:opensuse:libosmesa9-32bit, p-cpe:/a:novell:opensuse:libosmesa9-debuginfo, p-cpe:/a:novell:opensuse:libosmesa9-debuginfo-32bit, p-cpe:/a:novell:opensuse:libxvmc_nouveau, p-cpe:/a:novell:opensuse:libxvmc_nouveau-32bit, p-cpe:/a:novell:opensuse:libxvmc_nouveau-debuginfo, p-cpe:/a:novell:opensuse:libxvmc_nouveau-debuginfo-32bit, p-cpe:/a:novell:opensuse:libxvmc_r300, p-cpe:/a:novell:opensuse:libxvmc_r300-32bit, p-cpe:/a:novell:opensuse:libxvmc_r300-debuginfo, p-cpe:/a:novell:opensuse:libxvmc_r300-debuginfo-32bit, p-cpe:/a:novell:opensuse:libxvmc_r600, p-cpe:/a:novell:opensuse:libxvmc_r600-32bit, p-cpe:/a:novell:opensuse:libxvmc_r600-debuginfo, p-cpe:/a:novell:opensuse:mesa-libglapi0-debuginfo, p-cpe:/a:novell:opensuse:mesa-libglapi0-debuginfo-32bit, p-cpe:/a:novell:opensuse:libosmesa-devel, p-cpe:/a:novell:opensuse:libosmesa-devel-32bit, p-cpe:/a:novell:opensuse:libosmesa8, p-cpe:/a:novell:opensuse:libxvmc_r600-debuginfo-32bit, p-cpe:/a:novell:opensuse:libxvmc_softpipe, p-cpe:/a:novell:opensuse:libxvmc_softpipe-32bit, p-cpe:/a:novell:opensuse:libxvmc_softpipe-debuginfo, p-cpe:/a:novell:opensuse:libxvmc_softpipe-debuginfo-32bit, p-cpe:/a:novell:opensuse:libgbm-devel, p-cpe:/a:novell:opensuse:libgbm-devel-32bit, p-cpe:/a:novell:opensuse:libgbm1, p-cpe:/a:novell:opensuse:libgbm1-32bit, p-cpe:/a:novell:opensuse:libgbm1-debuginfo, p-cpe:/a:novell:opensuse:libgbm1-debuginfo-32bit, p-cpe:/a:novell:opensuse:libvdpau_nouveau, p-cpe:/a:novell:opensuse:libvdpau_nouveau-32bit, p-cpe:/a:novell:opensuse:libvdpau_nouveau-debuginfo, p-cpe:/a:novell:opensuse:libvdpau_nouveau-debuginfo-32bit, p-cpe:/a:novell:opensuse:libvdpau_r300, p-cpe:/a:novell:opensuse:libvdpau_r300-32bit, p-cpe:/a:novell:opensuse:libvdpau_r300-debuginfo, p-cpe:/a:novell:opensuse:libvdpau_r300-debuginfo-32bit, p-cpe:/a:novell:opensuse:libvdpau_r600, p-cpe:/a:novell:opensuse:libvdpau_r600-32bit, p-cpe:/a:novell:opensuse:libvdpau_r600-debuginfo, p-cpe:/a:novell:opensuse:libvdpau_r600-debuginfo-32bit, p-cpe:/a:novell:opensuse:libvdpau_softpipe, p-cpe:/a:novell:opensuse:libvdpau_softpipe-32bit, p-cpe:/a:novell:opensuse:libvdpau_softpipe-debuginfo, p-cpe:/a:novell:opensuse:libvdpau_softpipe-debuginfo-32bit, p-cpe:/a:novell:opensuse:libxatracker-devel, p-cpe:/a:novell:opensuse:libxatracker1, p-cpe:/a:novell:opensuse:libxatracker1-debuginfo, cpe:/o:novell:opensuse:12.2, cpe:/o:novell:opensuse:12.3

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 7/5/2013

Reference Information

CVE: CVE-2013-1872