Detections
Analytics
SuSE 10 Security Update : ofed (ZYPP Patch Number 8386)
medium Nessus Plugin ID 63345
Language:
Synopsis
The remote SuSE 10 host is missing a security-related patch.Description
This update of ofed fixed multiple issues (including security related flaws) :- sdp: move histogram allocation from stack to heap.
(bnc#706175)
- cma: Fix crash in request handlers. (bnc#678795, CVE-2011-0695)
- rds: set correct msg_namelen. (bnc#773383, CVE-2012-3430)
- cm: Bump reference count on cm_id before invoking.
(bnc#678795, CVE-2011-0695)
- sdp / ipath: Added fixes for 64bit divide on 32bit builds
- updated Infiniband sysconfig file to match openibd (bnc#721597)
Solution
Apply ZYPP patch number 8386.See Also
Plugin Details
Severity: Medium
ID: 63345
File Name: suse_ofed-8386.nasl
Version: 1.3
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 12/28/2012
Updated: 1/19/2021
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 4.4
CVSS v2
Risk Factor: Medium
Base Score: 5.7
Vector: CVSS2#AV:A/AC:M/Au:N/C:N/I:N/A:C
Vulnerability Information
CPE: cpe:/o:suse:suse_linux
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Patch Publication Date: 11/29/2012
Reference Information
CVE: CVE-2011-0695, CVE-2012-3430