Detections
Analytics

openSUSE Security Update : kdump (openSUSE-2016-1215)

high Nessus Plugin ID 94240

Language:

Synopsis

The remote openSUSE host is missing a security update.

Description

This update for kdump provides several fixes and enhancements :

 - Refresh kdumprd if /etc/hosts or /etc/nsswitch.conf is changed. (bsc#943214)

 - Add a separate systemd service to rebuild kdumprd at boot. (bsc#943214)

 - Improve network setup in the kdump environment by reading configuration from wicked by default (system configuration files are used as a fallback).
 (bsc#980328)

 - Use the last mount entry in kdump_get_mountpoints().
 (bsc#951844)

 - Remove 'notsc' from the kdump kernel command line.
 (bsc#973213)

 - Handle dump files with many program headers.
 (bsc#932339, bsc#970708)

 - Fall back to stat() if file type is DT_UNKNOWN.
 (bsc#964206)

 - Remove vm. sysctls from kdump initrd. (bsc#927451, bsc#987862)

 - Use the exit code of kexec, not that of 'local'.
 (bsc#984799)

 - Convert sysroot to a bind mount in kdump initrd.
 (bsc#976864)

 - Distinguish between Xenlinux (aka Xenified or SUSE) and pvops Xen kernels, as the latter can run on bare metal.
 (bsc#974270)

 - CVE-2016-5759: Use full path to dracut as argument to bash. (bsc#989972, bsc#990200)

This update was imported from the SUSE:SLE-12-SP1:Update update project.

Solution

Update the affected kdump packages.

See Also

https://bugzilla.opensuse.org/show_bug.cgi?id=927451

https://bugzilla.opensuse.org/show_bug.cgi?id=932339

https://bugzilla.opensuse.org/show_bug.cgi?id=943214

https://bugzilla.opensuse.org/show_bug.cgi?id=951844

https://bugzilla.opensuse.org/show_bug.cgi?id=964206

https://bugzilla.opensuse.org/show_bug.cgi?id=970708

https://bugzilla.opensuse.org/show_bug.cgi?id=973213

https://bugzilla.opensuse.org/show_bug.cgi?id=974270

https://bugzilla.opensuse.org/show_bug.cgi?id=976864

https://bugzilla.opensuse.org/show_bug.cgi?id=980328

https://bugzilla.opensuse.org/show_bug.cgi?id=984799

https://bugzilla.opensuse.org/show_bug.cgi?id=987862

https://bugzilla.opensuse.org/show_bug.cgi?id=989972

https://bugzilla.opensuse.org/show_bug.cgi?id=990200

Plugin Details

Severity: High

ID: 94240

File Name: openSUSE-2016-1215.nasl

Version: 1.5

Type: local

Agent: unix

Published: 10/25/2016

Updated: 1/19/2021

Supported Sensors: Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 6.9

Vector: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C

CVSS v3

Risk Factor: High

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:kdump, cpe:/o:novell:opensuse:42.1, p-cpe:/a:novell:opensuse:kdump-debuginfo, p-cpe:/a:novell:opensuse:kdump-debugsource

Required KB Items: Host/local_checks_enabled, Host/SuSE/release, Host/SuSE/rpm-list, Host/cpu

Patch Publication Date: 10/24/2016

Reference Information

CVE: CVE-2016-5759