Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2021 Tenable Network Security, Inc.SUSE_KERNEL-6986.NASL
HistoryMay 17, 2012 - 12:00 a.m.

SuSE 10 Security Update : kernel-debug (ZYPP Patch Number 6986)

2012-05-1700:00:00
This script is Copyright (C) 2012-2021 Tenable Network Security, Inc.
www.tenable.com
108

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.055 Low

EPSS

Percentile

93.2%

JSON

This SUSE Linux Enterprise 10 SP3 kernel update (for x86_64 only) fixes a severe regression introduced by the previous bugfix that would make some machines not boot due to iommu / AGP memory issues.

The update also fixes several other bugs and the following security issue :

  • drivers/net/r8169.c in the r8169 driver in the Linux kernel 2.6.32.3 and earlier does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to (1) cause a denial of service (temporary network outage) via a packet with a crafted size, in conjunction with certain packets containing A characters and certain packets containing E characters;
    or (2) cause a denial of service (system crash) via a packet with a crafted size, in conjunction with certain packets containing ‘0’ characters, related to the value of the status register and erroneous behavior associated with the RxMaxSize register. (CVE-2009-4537)
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The text description of this plugin is (C) Novell, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(59147);
  script_version("1.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2009-4537");

  script_name(english:"SuSE 10 Security Update : kernel-debug (ZYPP Patch Number 6986)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote SuSE 10 host is missing a security-related patch."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This SUSE Linux Enterprise 10 SP3 kernel update (for x86_64 only)
fixes a severe regression introduced by the previous bugfix that would
make some machines not boot due to iommu / AGP memory issues.

The update also fixes several other bugs and the following security
issue :

  - drivers/net/r8169.c in the r8169 driver in the Linux
    kernel 2.6.32.3 and earlier does not properly check the
    size of an Ethernet frame that exceeds the MTU, which
    allows remote attackers to (1) cause a denial of service
    (temporary network outage) via a packet with a crafted
    size, in conjunction with certain packets containing A
    characters and certain packets containing E characters;
    or (2) cause a denial of service (system crash) via a
    packet with a crafted size, in conjunction with certain
    packets containing '0' characters, related to the value
    of the status register and erroneous behavior associated
    with the RxMaxSize register. (CVE-2009-4537)"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2009-4537.html"
  );
  script_set_attribute(attribute:"solution", value:"Apply ZYPP patch number 6986.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_cwe_id(20);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:suse:suse_linux");

  script_set_attribute(attribute:"patch_publication_date", value:"2010/04/13");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/05/17");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) exit(0, "Local checks are not enabled.");
if (!get_kb_item("Host/SuSE/release")) exit(0, "The host is not running SuSE.");
if (!get_kb_item("Host/SuSE/rpm-list")) exit(1, "Could not obtain the list of installed packages.");

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) exit(1, "Failed to determine the architecture type.");
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") exit(1, "Local checks for SuSE 10 on the '"+cpu+"' architecture have not been implemented.");


flag = 0;
if (rpm_check(release:"SLED10", sp:3, cpu:"x86_64", reference:"kernel-default-2.6.16.60-0.62.1")) flag++;
if (rpm_check(release:"SLED10", sp:3, cpu:"x86_64", reference:"kernel-smp-2.6.16.60-0.62.1")) flag++;
if (rpm_check(release:"SLED10", sp:3, cpu:"x86_64", reference:"kernel-source-2.6.16.60-0.62.1")) flag++;
if (rpm_check(release:"SLED10", sp:3, cpu:"x86_64", reference:"kernel-syms-2.6.16.60-0.62.1")) flag++;
if (rpm_check(release:"SLED10", sp:3, cpu:"x86_64", reference:"kernel-xen-2.6.16.60-0.62.1")) flag++;
if (rpm_check(release:"SLES10", sp:3, cpu:"x86_64", reference:"kernel-debug-2.6.16.60-0.62.1")) flag++;
if (rpm_check(release:"SLES10", sp:3, cpu:"x86_64", reference:"kernel-default-2.6.16.60-0.62.1")) flag++;
if (rpm_check(release:"SLES10", sp:3, cpu:"x86_64", reference:"kernel-kdump-2.6.16.60-0.62.1")) flag++;
if (rpm_check(release:"SLES10", sp:3, cpu:"x86_64", reference:"kernel-smp-2.6.16.60-0.62.1")) flag++;
if (rpm_check(release:"SLES10", sp:3, cpu:"x86_64", reference:"kernel-source-2.6.16.60-0.62.1")) flag++;
if (rpm_check(release:"SLES10", sp:3, cpu:"x86_64", reference:"kernel-syms-2.6.16.60-0.62.1")) flag++;
if (rpm_check(release:"SLES10", sp:3, cpu:"x86_64", reference:"kernel-xen-2.6.16.60-0.62.1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else exit(0, "The host is not affected.");
VendorProductVersionCPE
susesuse_linuxcpe:/o:suse:suse_linux

Related

f5 2
veracode 1
seebug 1
cvelist 2
cve 2
nvd 2
ubuntucve 2
nessus 33
prion 2
oraclelinux 3
openvas 53
centos 3
redhat 8
fedora 11
securityvulns 3
suse 5
debian 1
osv 1
ubuntu 2
vmware 2
f5
f5
SOL16479 - Linux kernel vulnerability CVE-2009-4537
2015-04-22 00:00:00
K16479 : Linux kernel vulnerability CVE-2009-4537
2015-07-23 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:41:04
seebug
seebug
Linux Kernel RTL8169网卡RxMaxSize帧大小拒绝服务漏洞
2010-01-14 00:00:00
cvelist
cvelist
CVE-2009-4538
2010-01-12 17:00:00
CVE-2009-4537
2010-01-12 17:00:00
cve
cve
CVE-2009-4537
2010-01-12 17:30:00
CVE-2009-4538
2010-01-12 17:30:00
nvd
nvd
CVE-2009-4537
2010-01-12 17:30:00
CVE-2009-4538
2010-01-12 17:30:00
ubuntucve
ubuntucve
CVE-2009-4537
2010-01-12 00:00:00
CVE-2009-4538
2010-01-12 00:00:00
nessus
nessus
SuSE 10 Security Update : the Linux kernel (x86_64) (ZYPP Patch Number 7063)
2012-05-17 00:00:00
SuSE 10 Security Update : Linux kernel (i386) (ZYPP Patch Number 7059)
2010-10-11 00:00:00
F5 Networks BIG-IP : Linux kernel vulnerability (SOL16479)
2015-04-23 00:00:00
prion
prion
Design/Logic Flaw
2010-01-12 17:30:00
Code injection
2010-01-12 17:30:00
oraclelinux
oraclelinux
kernel security update
2010-01-08 00:00:00
kernel security update
2010-01-08 00:00:00
Oracle Enterprise Linux 5.5 kernel security and bug fix update
2010-04-05 00:00:00
openvas
openvas
CentOS Update for kernel CESA-2010:0020 centos4 x86_64
2010-01-19 00:00:00
CentOS Update for kernel CESA-2010:0020 centos4 i386
2010-01-19 00:00:00
RedHat Update for kernel RHSA-2010:0020-01
2010-01-15 00:00:00
centos
centos
kernel security update
2010-01-14 23:48:52
kernel security update
2010-01-08 21:25:32
kernel security update
2010-02-04 12:33:45
redhat
redhat
(RHSA-2010:0111) Important: kernel security update
2010-02-16 00:00:00
(RHSA-2010:0020) Important: kernel security update
2010-01-07 00:00:00
(RHSA-2010:0019) Important: kernel security update
2010-01-07 00:00:00
fedora
fedora
[SECURITY] Fedora 12 Update: kernel-2.6.32.12-115.fc12
2010-05-18 21:59:07
[SECURITY] Fedora 12 Update: kernel-2.6.32.14-127.fc12
2010-06-14 17:13:44
[SECURITY] Fedora 12 Update: kernel-2.6.32.16-141.fc12
2010-07-13 07:49:26
securityvulns
securityvulns
[ MDVSA-2010:066 ] kernel
2010-03-25 00:00:00
[SECURITY] [DSA 2053-1] New Linux 2.6.26 packages fix several issues
2010-05-26 00:00:00
Linux kernel multiple security vulnerabilities
2010-05-26 00:00:00
suse
suse
remote denial of service in kernel
2010-05-06 16:28:01
remote denial of service in kernel
2010-07-20 16:48:50
remote code execution in kernel
2010-01-15 15:06:43
debian
debian
[SECURITY] [DSA 2053-1] New Linux 2.6.26 packages fix several issues
2010-05-25 06:51:38
osv
osv
linux-2.6 - several issues
2010-05-25 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2010-06-03 00:00:00
Linux kernel regression
2010-06-04 00:00:00
vmware
vmware
ESXi utilities and ESX Service Console third party updates
2010-05-27 00:00:00
ESXi utilities and ESX Service Console third party updates
2010-05-27 00:00:00

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.055 Low

EPSS

Percentile

93.2%

JSON
Related for SUSE_KERNEL-6986.NASL
f52veracode1seebug1cvelist2cve2nvd2ubuntucve2nessus33prion2oraclelinux3openvas53centos3redhat8fedora11securityvulns3suse5debian1osv1ubuntu2vmware2