Tenable Network Security
Solutions Products Nessus Demos Partners Online Store
Nessus
Download
Plugins
     Newest Plugins
     Obtain an activation code
     View all plugins
     Search
Documentation
Register
Buy Now
ProfessionalFeed Support
Bugs
All the Tenable Products

SuSE 11.0 Security Update: kernel (2010-03-01)
This script is Copyright (C) 2010 Tenable Network Security, Inc.

FamilySuSE Local Security Checks
Nessus Plugin ID45010 (suse_11_0_kernel-100301.nasl)
Bugtraq ID
CVE IDCVE-2009-4020
CVE-2010-0307
CVE-2010-0410
CVE-2010-0415
CVE-2010-0622

Description:
Synopsis :

The remote SuSE system is missing a security patch for kernel

Description :

The openSUSE 11.0 kernel was updated to fix following
security issues:

CVE-2009-4020: Stack-based buffer overflow in the hfs
subsystem in the Linux kernel 2.6.32 allows remote
attackers to have an unspecified impact via a crafted
Hierarchical File System (HFS) filesystem, related to the
hfs_readdir function in fs/hfs/dir.c.

CVE-2010-0307: The load_elf_binary function in
fs/binfmt_elf.c in the Linux kernel before 2.6.32.8 on the
x86_64 platform does not ensure that the ELF interpreter is
available before a call to the SET_PERSONALITY macro, which
allows local users to cause a denial of service (system
crash) via a 32-bit application that attempts to execute a
64-bit application and then triggers a segmentation fault,
as demonstrated by amd64_killer, related to the
flush_old_exec function.

CVE-2010-0622: The wake_futex_pi function in kernel/futex.c
in the Linux kernel before 2.6.33-rc7 does not properly
handle certain unlock operations for a Priority Inheritance
(PI) futex, which allows local users to cause a denial of
service (OOPS) and possibly have unspecified other impact
via vectors involving modification of the futex value from
user space.

CVE-2010-0410: drivers/connector/connector.c in the Linux
kernel before 2.6.32.8 allows local users to cause a denial
of service (memory consumption and system crash) by sending
the kernel many NETLINK_CONNECTOR messages.

CVE-2010-0415: The do_pages_move function in mm/migrate.c
in the Linux kernel before 2.6.33-rc7 does not validate
node values, which allows local users to read arbitrary
kernel memory locations, cause a denial of service (OOPS),
and possibly have unspecified other impact by specifying a
node that is not part of the kernel's node set.

See also :

https://bugzilla.novell.com/show_bug.cgi?id=564374
https://bugzilla.novell.com/show_bug.cgi?id=581718
https://bugzilla.novell.com/show_bug.cgi?id=575644
https://bugzilla.novell.com/show_bug.cgi?id=579439
https://bugzilla.novell.com/show_bug.cgi?id=576927
https://bugzilla.novell.com/show_bug.cgi?id=577753

Solution :

Install the kernel security patch by using 'yast', for example.

Risk factor :

High / CVSS Base Score : 7.8
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)
About Us | Jobs | Whitepapers | Training | Discussion Forums | Support Portal | Blog | RSS Feeds | Contact Us | Legal | Privacy

© Copyright 2002 - 2010 Tenable Network Security(R). All Rights Reserved.

This is the web site for the Nessus Vulnerability Scanner from Tenable Network Security. If you are looking for the probabilistic analysis software from Southwest Research Institute, please visit www.nessus.swri.org