Lucene search
This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.SUSE_11_0_KERNEL-080721.NASLHistoryJul 21, 2009 - 12:00 a.m.
openSUSE Security Update : kernel (kernel-111)
2009-07-2100:00:00
This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.
www.tenable.com
28
The openSUSE 11.0 kernel was updated to 2.6.25.11.
It fixes following security problems: CVE-2008-2812: Various tty / serial devices did not check functionpointers for NULL before calling them, leading to potential crashes or code execution. The devices affected are usually only accessible by the root user though.
CVE-2008-2750: The pppol2tp_recvmsg function in drivers/net/pppol2tp.c in the Linux kernel allows remote attackers to cause a denial of service (kernel heap memory corruption and system crash) and possibly have unspecified other impact via a crafted PPPOL2TP packet that results in a large value for a certain length variable.
No CVE yet: On x86_64 systems, a incorrect buffersize in LDT handling might lead to local untrusted attackers causing a crash of the machine or potentially execute code with kernel privileges.
The update also has lots of other bugfixes that are listed in the RPM changelog.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update kernel-111.
#
# The text description of this plugin is (C) SUSE LLC.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(40008);
script_version("1.11");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2008-2750", "CVE-2008-2812");
script_name(english:"openSUSE Security Update : kernel (kernel-111)");
script_summary(english:"Check for the kernel-111 patch");
script_set_attribute(
attribute:"synopsis",
value:"The remote openSUSE host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"The openSUSE 11.0 kernel was updated to 2.6.25.11.
It fixes following security problems: CVE-2008-2812: Various tty /
serial devices did not check functionpointers for NULL before calling
them, leading to potential crashes or code execution. The devices
affected are usually only accessible by the root user though.
CVE-2008-2750: The pppol2tp_recvmsg function in drivers/net/pppol2tp.c
in the Linux kernel allows remote attackers to cause a denial of
service (kernel heap memory corruption and system crash) and possibly
have unspecified other impact via a crafted PPPOL2TP packet that
results in a large value for a certain length variable.
No CVE yet: On x86_64 systems, a incorrect buffersize in LDT handling
might lead to local untrusted attackers causing a crash of the machine
or potentially execute code with kernel privileges.
The update also has lots of other bugfixes that are listed in the RPM
changelog."
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=216857"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=400815"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=400874"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=404892"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=408734"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected kernel packages."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
script_cwe_id(20);
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:kernel-debug");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:kernel-default");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:kernel-pae");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:kernel-rt");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:kernel-source");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:kernel-syms");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:kernel-vanilla");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:kernel-xen");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:11.0");
script_set_attribute(attribute:"patch_publication_date", value:"2008/07/21");
script_set_attribute(attribute:"plugin_publication_date", value:"2009/07/21");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE11\.0)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "11.0", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);
flag = 0;
if ( rpm_check(release:"SUSE11.0", reference:"kernel-debug-2.6.25.11-0.1") ) flag++;
if ( rpm_check(release:"SUSE11.0", reference:"kernel-default-2.6.25.11-0.1") ) flag++;
if ( rpm_check(release:"SUSE11.0", reference:"kernel-pae-2.6.25.11-0.1") ) flag++;
if ( rpm_check(release:"SUSE11.0", reference:"kernel-rt-2.6.25.11-0.1") ) flag++;
if ( rpm_check(release:"SUSE11.0", reference:"kernel-source-2.6.25.11-0.1") ) flag++;
if ( rpm_check(release:"SUSE11.0", reference:"kernel-syms-2.6.25.11-0.1") ) flag++;
if ( rpm_check(release:"SUSE11.0", reference:"kernel-vanilla-2.6.25.11-0.1") ) flag++;
if ( rpm_check(release:"SUSE11.0", reference:"kernel-xen-2.6.25.11-0.1") ) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel-debug / kernel-default / kernel-pae / kernel-rt / etc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | opensuse | kernel-debug | p-cpe:/a:novell:opensuse:kernel-debug |
| novell | opensuse | kernel-default | p-cpe:/a:novell:opensuse:kernel-default |
| novell | opensuse | kernel-pae | p-cpe:/a:novell:opensuse:kernel-pae |
| novell | opensuse | kernel-rt | p-cpe:/a:novell:opensuse:kernel-rt |
| novell | opensuse | kernel-source | p-cpe:/a:novell:opensuse:kernel-source |
| novell | opensuse | kernel-syms | p-cpe:/a:novell:opensuse:kernel-syms |
| novell | opensuse | kernel-vanilla | p-cpe:/a:novell:opensuse:kernel-vanilla |
| novell | opensuse | kernel-xen | p-cpe:/a:novell:opensuse:kernel-xen |
| novell | opensuse | 11.0 | cpe:/o:novell:opensuse:11.0 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2750
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2812
bugzilla.novell.com/show_bug.cgi?id=216857
bugzilla.novell.com/show_bug.cgi?id=400815
bugzilla.novell.com/show_bug.cgi?id=400874
bugzilla.novell.com/show_bug.cgi?id=404892
bugzilla.novell.com/show_bug.cgi?id=408734
Related
prion
prion
Memory corruption
2008-06-18 19:41:00
Null pointer dereference
2008-07-09 00:41:00
ubuntucve
ubuntucve
CVE-2008-2750
2008-06-18 00:00:00
CVE-2008-2812
2008-07-09 00:00:00
cve
cve
CVE-2008-2750
2008-06-18 19:41:00
CVE-2008-2812
2008-07-09 00:41:00
suse
suse
local privilege escalation in kernel
2008-07-22 17:25:31
remote denial of service in kernel
2008-07-21 10:42:10
remote denial of service in kernel
2008-10-01 15:09:37
openvas
openvas
SuSE Update for kernel SUSE-SA:2008:037
2009-01-23 00:00:00
Fedora Update for kernel FEDORA-2008-5893
2009-02-17 00:00:00
Fedora Update for kernel FEDORA-2008-5893
2009-02-17 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:25:22
seebug
seebug
Linux Kernel TTYζδ½NULLζιεΌη¨ζη»ζε‘ζΌζ΄
2008-07-07 00:00:00
Linux Kernel TTYζδ½η©ΊζιεΌη¨ζη»ζε‘ζΌζ΄
2008-07-14 00:00:00
nessus
nessus
Fedora 9 : kernel-2.6.25.9-76.fc9 (2008-5893)
2008-07-08 00:00:00
RHEL 4 : kernel (RHSA-2008:0665)
2008-07-25 00:00:00
Scientific Linux Security Update : kernel on SL5.x i386/x86_64
2012-08-01 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: kernel-2.6.25.9-76.fc9
2008-07-04 03:40:41
[SECURITY] Fedora 9 Update: kernel-2.6.25.9-76.fc9
2008-07-02 06:35:04
[SECURITY] Fedora 9 Update: kernel-2.6.27.12-78.2.8.fc9
2009-01-27 01:54:28
redhat
redhat
(RHSA-2008:0665) Moderate: Updated kernel packages for Red Hat Enterprise Linux 4.7
2008-07-24 00:00:00
(RHSA-2008:0612) Important: kernel security and bug fix update
2008-08-04 00:00:00
(RHSA-2008:0973) Important: kernel security and bug fix update
2008-12-16 00:00:00
centos
centos
kernel security update
2008-08-06 09:53:20
kernel security update
2008-12-17 15:30:17
oraclelinux
oraclelinux
kernel security and bug fix update
2008-08-05 00:00:00
kernel security and bug fix update
2008-12-18 00:00:00
Updated kernel packages for Oracle Enterprise Linux 4.7
2008-08-01 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2008-08-25 00:00:00
Linux kernel vulnerabilities
2008-07-15 00:00:00
osv
osv
fai-kernels linux-2.6 user-mode-linux - several vulnerabilities
2008-08-21 00:00:00
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2008-08-21 00:00:00
debian
debian
vmware
vmware
Related for SUSE_11_0_KERNEL-080721.NASL