Security update for SuSE kernel fixing CVE-2012-3520 and CVE-2012-3412
Reporter | Title | Published | Views | Family All 197 |
---|---|---|---|---|
![]() | openSUSE Security Update : kernel (openSUSE-SU-2012:1330-1) | 13 Jun 201400:00 | – | nessus |
![]() | RHEL 6 : kernel (RHSA-2012:1401) | 24 Jan 201300:00 | – | nessus |
![]() | Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20121016) | 18 Oct 201200:00 | – | nessus |
![]() | RHEL 6 : kernel (RHSA-2012:1430) | 24 Jan 201300:00 | – | nessus |
![]() | Oracle Linux 5 / 6 : Unbreakable Enterprise kernel Security (ELSA-2012-2041) | 12 Jul 201300:00 | – | nessus |
![]() | Oracle Linux 5 / 6 : Unbreakable Enterprise kernel Security (ELSA-2012-2039) | 12 Jul 201300:00 | – | nessus |
![]() | Oracle Linux 5 / 6 : Unbreakable Enterprise kernel Security (ELSA-2012-2040) | 12 Jul 201300:00 | – | nessus |
![]() | USN-1599-1 : linux-ti-omap4 vulnerability | 10 Oct 201200:00 | – | nessus |
![]() | Oracle Linux 6 : kernel (ELSA-2012-1366) | 12 Jul 201300:00 | – | nessus |
![]() | CentOS 6 : kernel (CESA-2012:1366) | 18 Oct 201200:00 | – | nessus |
###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_suse_2012_1330_1.nasl 8494 2018-01-23 06:57:55Z teissa $
#
# SuSE Update for kernel openSUSE-SU-2012:1330-1 (kernel)
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################
include("revisions-lib.inc");
tag_insight = "This kernel update to 3.4.11 fixes various bugs and
security issues.
The changes up to 3.4.11 contain both security and bugfixes
and are not explicitly listed here.
Following security issues were fixed: CVE-2012-3520: Force
passing credentials, otherwise local services could be
fooled to assume requests coming from root.
CVE-2012-3412: Do not allow extreme TSO parameters in the
sfc driver and tcp stack.
Following non-security bugs were fixed:
- nbd: clear waiting_queue on shutdown (bnc#778630).
- NFS: avoid warning from nfs_drop_nlink (bnc#780624).
- net: do not disable sg for packets requiring no checksum
(bnc#774859).
- sfc: Fix maximum number of TSO segments and minimum TX
queue size (bnc#774523 CVE-2012-3412).
- net: Allow driver to limit number of GSO segments per skb
(bnc#774523 CVE-2012-3412).
- drm/nouveau: fix booting with plymouth + dumb support
(bnc#771392).
- memcg: warn on deeper hierarchies with use_hierarchy==0
(bnc#781134).
- Linux 3.4.11.
- Update config files.
- Refresh patches.suse/scsi-error-test-unit-ready-timeout.
- Btrfs: fix tree log remove space corner case (bnc#779432)
- irq_remap: disable IRQ remapping if any IOAPIC lacks an
IOMMU.
- Linux 3.4.10.
- Linux 3.4.9.
- kABI: protect struct irq_desc.
- Linux 3.4.8.
- kABI: sdhci, remove inclusion.
- reiserfs: fix deadlock with nfs racing on create/lookup
(bnc#762693).
- Properly update Xen patches to 3.4.7.
- Refresh other Xen patches (bnc#772831).
- config: enable various ARM errata workarounds to improve
stability
- Import kabi files for 12.2
- rpm/config.sh: Build the KOTD against 12.2
- ASoC: omap: Add missing modules aliases to get sound
working on omap devices.
- Update config files to fix build
- rt2800: add chipset revision RT5390R support (bnc#772566).
- reiserfs: fix deadlocks with quotas
- ACPI, APEI: Fixup common access width firmware bug
(bnc#765230).
- i2c/busses: Fix build error if
CONFIG_I2C_DESIGNWARE_PLATFORM=y and CONFIG_I2C_DESIGN.
- Update ARM configs to match kernel 3.4.7
- Update ARM omap2plus config to match kernel 3.4.7 and add
Smartreflex support (auto voltage)
- ALSA: hda - Fix mute-LED GPIO initialization for IDT
codecs (bnc#772923).
- ALSA: hda - Fix polarity of mute LED on HP Mini 210
(bnc#772923).
- Linux 3.4.7.
- Refresh patches.suse/dm-raid45-26-Nov-2009.patch.
- Enable RTL8150 for omap2plus Generic USB Network device
that also works fine on ARM, so enable it
- update RNDIS_OID_GEN_RNDIS_CONFIG_PARAMETER patch name
- Drivers: hv: Cleanup the guest ID computation.
- hyperv: Add a check for ring_size value.
- hyperv: Add error handling to rndis_filter_device_add().
- Drivers: hv: Change the hex constant to a decimal
constant.
- hyperv: Add support for setting MAC from within guests.
- net/hyperv: Use wait_event on outstanding sends during
device removal.
- hv: add RNDIS_OID_GEN_RNDIS_CONFIG_PARAMETER.
- Refresh patches.suse/SUSE-bootsplash. Fix wrong vfree()
(bnc#773406)
Description truncated, for more information please check the Reference URL";
tag_affected = "kernel on openSUSE 12.2";
tag_solution = "Please Install the Updated Packages.";
desc = "
Vulnerability Insight:
" + tag_insight + "
Affected Software/OS:
" + tag_affected + "
Solution:
" + tag_solution;
if(description)
{
script_xref(name : "URL" , value : "http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00005.html");
script_id(850429);
script_version("$Revision: 8494 $");
script_tag(name:"last_modification", value:"$Date: 2018-01-23 07:57:55 +0100 (Tue, 23 Jan 2018) $");
script_tag(name:"creation_date", value:"2013-03-11 18:29:37 +0530 (Mon, 11 Mar 2013)");
script_cve_id("CVE-2012-3412", "CVE-2012-3520");
script_tag(name:"cvss_base", value:"7.8");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:C");
script_xref(name: "openSUSE-SU", value: "2012:1330_1");
script_name("SuSE Update for kernel openSUSE-SU-2012:1330-1 (kernel)");
script_tag(name: "summary" , value: "Check for the Version of kernel");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (c) 2013 Greenbone Networks GmbH");
script_family("SuSE Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/suse", "ssh/login/rpms");
script_tag(name : "affected" , value : tag_affected);
script_tag(name : "solution" , value : tag_solution);
script_tag(name : "insight" , value : tag_insight);
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
include("pkg-lib-rpm.inc");
release = get_kb_item("ssh/login/release");
res = "";
if(release == NULL){
exit(0);
}
if(release == "openSUSE12.2")
{
if ((res = isrpmvuln(pkg:"kernel-default", rpm:"kernel-default~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-default-base", rpm:"kernel-default-base~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-default-base-debuginfo", rpm:"kernel-default-base-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-default-debuginfo", rpm:"kernel-default-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-default-debugsource", rpm:"kernel-default-debugsource~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-default-devel", rpm:"kernel-default-devel~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-default-devel-debuginfo", rpm:"kernel-default-devel-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-syms", rpm:"kernel-syms~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-debug", rpm:"kernel-debug~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-debug-base", rpm:"kernel-debug-base~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-debug-base-debuginfo", rpm:"kernel-debug-base-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-debug-debuginfo", rpm:"kernel-debug-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-debug-debugsource", rpm:"kernel-debug-debugsource~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-debug-devel", rpm:"kernel-debug-devel~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-debug-devel-debuginfo", rpm:"kernel-debug-devel-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-desktop", rpm:"kernel-desktop~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-desktop-base", rpm:"kernel-desktop-base~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-desktop-base-debuginfo", rpm:"kernel-desktop-base-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-desktop-debuginfo", rpm:"kernel-desktop-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-desktop-debugsource", rpm:"kernel-desktop-debugsource~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-desktop-devel", rpm:"kernel-desktop-devel~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-desktop-devel-debuginfo", rpm:"kernel-desktop-devel-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-ec2", rpm:"kernel-ec2~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-ec2-base", rpm:"kernel-ec2-base~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-ec2-base-debuginfo", rpm:"kernel-ec2-base-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-ec2-debuginfo", rpm:"kernel-ec2-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-ec2-debugsource", rpm:"kernel-ec2-debugsource~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-ec2-devel", rpm:"kernel-ec2-devel~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-ec2-devel-debuginfo", rpm:"kernel-ec2-devel-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-ec2-extra", rpm:"kernel-ec2-extra~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-ec2-extra-debuginfo", rpm:"kernel-ec2-extra-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-trace", rpm:"kernel-trace~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-trace-base", rpm:"kernel-trace-base~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-trace-base-debuginfo", rpm:"kernel-trace-base-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-trace-debuginfo", rpm:"kernel-trace-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-trace-debugsource", rpm:"kernel-trace-debugsource~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-trace-devel", rpm:"kernel-trace-devel~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-trace-devel-debuginfo", rpm:"kernel-trace-devel-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-vanilla", rpm:"kernel-vanilla~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-vanilla-debuginfo", rpm:"kernel-vanilla-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-vanilla-debugsource", rpm:"kernel-vanilla-debugsource~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-vanilla-devel", rpm:"kernel-vanilla-devel~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-vanilla-devel-debuginfo", rpm:"kernel-vanilla-devel-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-xen", rpm:"kernel-xen~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-xen-base", rpm:"kernel-xen-base~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-xen-base-debuginfo", rpm:"kernel-xen-base-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-xen-debuginfo", rpm:"kernel-xen-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-xen-debugsource", rpm:"kernel-xen-debugsource~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-xen-devel", rpm:"kernel-xen-devel~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-xen-devel-debuginfo", rpm:"kernel-xen-devel-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-devel", rpm:"kernel-devel~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-docs", rpm:"kernel-docs~3.4.11~2.16.2", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-source", rpm:"kernel-source~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-source-vanilla", rpm:"kernel-source-vanilla~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-pae", rpm:"kernel-pae~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-pae-base", rpm:"kernel-pae-base~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-pae-base-debuginfo", rpm:"kernel-pae-base-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-pae-debuginfo", rpm:"kernel-pae-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-pae-debugsource", rpm:"kernel-pae-debugsource~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-pae-devel", rpm:"kernel-pae-devel~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"kernel-pae-devel-debuginfo", rpm:"kernel-pae-devel-debuginfo~3.4.11~2.16.1", rls:"openSUSE12.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99); # Not vulnerable.
exit(0);
}
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo