openSUSE Security Update : kdump (openSUSE-2016-1215)

high Nessus Plugin ID 94240

Language:

Synopsis

The remote openSUSE host is missing a security update.

Description

This update for kdump provides several fixes and enhancements :

- Refresh kdumprd if /etc/hosts or /etc/nsswitch.conf is changed. (bsc#943214)

- Add a separate systemd service to rebuild kdumprd at boot. (bsc#943214)

- Improve network setup in the kdump environment by reading configuration from wicked by default (system configuration files are used as a fallback).
(bsc#980328)

- Use the last mount entry in kdump_get_mountpoints().
(bsc#951844)

- Remove 'notsc' from the kdump kernel command line.
(bsc#973213)

- Handle dump files with many program headers.
(bsc#932339, bsc#970708)

- Fall back to stat() if file type is DT_UNKNOWN.
(bsc#964206)

- Remove vm. sysctls from kdump initrd. (bsc#927451, bsc#987862)

- Use the exit code of kexec, not that of 'local'.
(bsc#984799)

- Convert sysroot to a bind mount in kdump initrd.
(bsc#976864)

- Distinguish between Xenlinux (aka Xenified or SUSE) and pvops Xen kernels, as the latter can run on bare metal.
(bsc#974270)

- CVE-2016-5759: Use full path to dracut as argument to bash. (bsc#989972, bsc#990200)

This update was imported from the SUSE:SLE-12-SP1:Update update project.

Solution

Update the affected kdump packages.

See Also

https://bugzilla.opensuse.org/show_bug.cgi?id=927451

https://bugzilla.opensuse.org/show_bug.cgi?id=932339

https://bugzilla.opensuse.org/show_bug.cgi?id=943214

https://bugzilla.opensuse.org/show_bug.cgi?id=951844

https://bugzilla.opensuse.org/show_bug.cgi?id=964206

https://bugzilla.opensuse.org/show_bug.cgi?id=970708

https://bugzilla.opensuse.org/show_bug.cgi?id=973213

https://bugzilla.opensuse.org/show_bug.cgi?id=974270

https://bugzilla.opensuse.org/show_bug.cgi?id=976864

https://bugzilla.opensuse.org/show_bug.cgi?id=980328

https://bugzilla.opensuse.org/show_bug.cgi?id=984799

https://bugzilla.opensuse.org/show_bug.cgi?id=987862

https://bugzilla.opensuse.org/show_bug.cgi?id=989972

https://bugzilla.opensuse.org/show_bug.cgi?id=990200

Plugin Details

Severity: High

ID: 94240

File Name: openSUSE-2016-1215.nasl

Version: 1.5

Type: local

Agent: unix

Published: 10/25/2016

Updated: 1/19/2021

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 6.9

Vector: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C

CVSS v3

Risk Factor: High

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:kdump, p-cpe:/a:novell:opensuse:kdump-debuginfo, p-cpe:/a:novell:opensuse:kdump-debugsource, cpe:/o:novell:opensuse:42.1

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 10/24/2016

Reference Information

CVE: CVE-2016-5759