OVAL Reference oval:org.opensuse.security:def:20090835

Oval Definition:

oval:org.opensuse.security:def:20090835

Revision Date:	2022-09-02	Version:	1
Title:	CVE-2009-0835
Description:	The __secure_computing function in kernel/seccomp.c in the seccomp subsystem in the Linux kernel 2.6.28.7 and earlier on the x86_64 platform, when CONFIG_SECCOMP is enabled, does not properly handle (1) a 32-bit process making a 64-bit syscall or (2) a 64-bit process making a 32-bit syscall, which allows local users to bypass intended access restrictions via crafted syscalls that are misinterpreted as (a) stat or (b) chmod, a related issue to CVE-2009-0342 and CVE-2009-0343.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2009-0835 Mitre CVE-2009-0835 SUSE CVE-2009-0835 SUSE-SA:2009:021 SUSE-SA:2009:021 SUSE-SA:2009:028 SUSE-SA:2009:028 SUSE-SA:2009:030 SUSE-SA:2009:030 SUSE-SA:2009:031 SUSE-SA:2009:031
Platform(s):	openSUSE 10.3 openSUSE 11.0 openSUSE 11.1 SUSE Linux Enterprise Desktop 11 GA SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise Desktop 15 SP1 SUSE Linux Enterprise High Availability Extension 11 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise Micro 5.0 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Development Tools 15 SP1 SUSE Linux Enterprise Realtime 10 SP2 SUSE Linux Enterprise SDK 10 SP2 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 GA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server for SAP Applications 11 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Storage 6 SUSE Manager Proxy 4.0 SUSE Manager Retail Branch Server 4.0 SUSE Manager Server 4.0	Product(s):
Definition Synopsis
Release Information sles10-sp2-sdk is installed AND kernel-kdump less than 2.6.16.60-0.39.3 OR Package Information sles10-sp2-sdk is installed AND kernel-debug less than 2.6.16.60-0.39.3 OR Package Information sles10-sp2-sdk is installed AND kernel-debug less than 2.6.16.60-0.39.3 OR kernel-kdump less than 2.6.16.60-0.39.3 OR kernel-xen less than 2.6.16.60-0.39.3 OR Package Information sles10-sp2-sdk is installed AND kernel-debug less than 2.6.16.60-0.39.3 OR kernel-kdump less than 2.6.16.60-0.39.3 OR kernel-xen less than 2.6.16.60-0.39.3 OR kernel-xenpae less than 2.6.16.60-0.39.3 OR Package Information sles10-sp2-rt is installed AND ib-bonding-kmp-rt less than 0.9.0_2.6.22.19_0.22-1.21.1 OR ib-bonding-kmp-rt_bigsmp less than 0.9.0_2.6.22.19_0.22-1.21.1 OR ib-bonding-kmp-rt_debug less than 0.9.0_2.6.22.19_0.22-1.21.1 OR ib-bonding-kmp-rt_timing less than 0.9.0_2.6.22.19_0.22-1.21.1 OR kernel-rt less than 2.6.22.19-0.22 OR kernel-rt_bigsmp less than 2.6.22.19-0.22 OR kernel-rt_debug less than 2.6.22.19-0.22 OR kernel-rt_timing less than 2.6.22.19-0.22 OR kernel-source less than 2.6.22.19-0.22 OR kernel-syms less than 2.6.22.19-0.22 OR ofed-cxgb3-NIC-kmp-rt less than 1.3_2.6.22.19_0.22-0.18.1 OR ofed-cxgb3-NIC-kmp-rt_bigsmp less than 1.3_2.6.22.19_0.22-0.18.1 OR ofed-cxgb3-NIC-kmp-rt_debug less than 1.3_2.6.22.19_0.22-0.18.1 OR ofed-cxgb3-NIC-kmp-rt_timing less than 1.3_2.6.22.19_0.22-0.18.1 OR ofed-doc less than 1.3-0.33.1 OR ofed-kmp-rt less than 1.3_2.6.22.19_0.22-0.33.1 OR ofed-kmp-rt_bigsmp less than 1.3_2.6.22.19_0.22-0.33.1 OR ofed-kmp-rt_debug less than 1.3_2.6.22.19_0.22-0.33.1 OR ofed-kmp-rt_timing less than 1.3_2.6.22.19_0.22-0.33.1 OR ofed less than 1.3-0.33.1
Definition Synopsis
SUSE Linux Enterprise Server 11 is installed AND Package Information ext4dev-kmp-default-0_2.6.27.21_0.1-7.1 is installed OR ext4dev-kmp-pae-0_2.6.27.23_0.1-7.1 is installed OR ext4dev-kmp-ppc64-0_2.6.27.21_0.1-7.1 is installed OR ext4dev-kmp-vmi-0_2.6.27.23_0.1-7.1 is installed OR ext4dev-kmp-xen-0_2.6.27.23_0.1-7.1 is installed OR iscsitarget-kmp-default-0.4.15_2.6.27.54_0.2-94.14 is installed OR kernel-default-2.6.27.21-0.1 is installed OR kernel-default-base-2.6.27.21-0.1 is installed OR kernel-default-man-2.6.27.23-0.1 is installed OR kernel-kdump-2.6.27.21-0.1 is installed OR kernel-pae-2.6.27.23-0.1 is installed OR kernel-pae-base-2.6.27.23-0.1 is installed OR kernel-ppc64-2.6.27.21-0.1 is installed OR kernel-ppc64-base-2.6.27.21-0.1 is installed OR kernel-source-2.6.27.21-0.1 is installed OR kernel-syms-2.6.27.21-0.1 is installed OR kernel-vmi-2.6.27.23-0.1 is installed OR kernel-vmi-base-2.6.27.23-0.1 is installed OR kernel-xen-2.6.27.23-0.1 is installed OR kernel-xen-base-2.6.27.23-0.1 is installed OR oracleasm-kmp-default-2.0.5_2.6.27.54_0.2-7.9 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 is installed OR SUSE Linux Enterprise Server for SAP Applications 11 is installed AND Package Information ext4dev-kmp-default-0_2.6.27.21_0.1-7.1.2 is installed OR ext4dev-kmp-pae-0_2.6.27.23_0.1-7.1.7 is installed OR ext4dev-kmp-ppc64-0_2.6.27.23_0.1-7.1.7 is installed OR ext4dev-kmp-vmi-0_2.6.27.23_0.1-7.1.7 is installed OR ext4dev-kmp-xen-0_2.6.27.23_0.1-7.1.7 is installed OR iscsitarget-kmp-default-0.4.15_2.6.27.54_0.2-94.14.8 is installed OR kernel-default-2.6.27.21-0.1.2 is installed OR kernel-default-base-2.6.27.21-0.1.2 is installed OR kernel-default-man-2.6.27.23-0.1.1 is installed OR kernel-kdump-2.6.27.23-0.1.1 is installed OR kernel-pae-2.6.27.23-0.1.1 is installed OR kernel-pae-base-2.6.27.23-0.1.1 is installed OR kernel-ppc64-2.6.27.23-0.1.1 is installed OR kernel-ppc64-base-2.6.27.23-0.1.1 is installed OR kernel-source-2.6.27.21-0.1.1 is installed OR kernel-syms-2.6.27.21-0.1.2 is installed OR kernel-vmi-2.6.27.23-0.1.1 is installed OR kernel-vmi-base-2.6.27.23-0.1.1 is installed OR kernel-xen-2.6.27.23-0.1.1 is installed OR kernel-xen-base-2.6.27.23-0.1.1 is installed OR oracleasm-kmp-default-2.0.5_2.6.27.54_0.2-7.9.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information kernel-default is not affected OR kernel-source is not affected
Definition Synopsis
Release Information SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed OR SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND Package Information kernel-default is not affected OR kernel-source is not affected
Definition Synopsis
Release Information SUSE Linux Enterprise Module for Basesystem 15 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed OR SUSE Linux Enterprise Module for Development Tools 15 is installed OR SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND Package Information kernel-default is not affected OR kernel-source is not affected
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND kernel-default is not affected OR kernel-source is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND kernel-default is not affected OR kernel-default-base is not affected OR kernel-default-devel is not affected OR kernel-devel is not affected OR kernel-macros is not affected OR kernel-source is not affected OR Package Information SUSE Linux Enterprise Server 12 SP5 is installed AND kernel-default is not affected OR kernel-default-base is not affected OR kernel-default-devel is not affected OR kernel-default-man is not affected OR kernel-devel is not affected OR kernel-macros is not affected OR kernel-source is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND kernel-default is not affected OR kernel-default-base is not affected OR kernel-default-devel is not affected OR kernel-default-kgraft is not affected OR kernel-devel is not affected OR kernel-macros is not affected OR kernel-source is not affected
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information kernel-default is not affected OR kernel-source is not affected
Definition Synopsis
SUSE Linux Enterprise Micro 5.0 is installed AND kernel-default is not affected
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND kernel-default is not affected OR kernel-source is not affected OR Package Information SUSE Linux Enterprise Server 12 SP5 is installed AND kernel-default is not affected OR kernel-default-base is not affected OR kernel-default-devel is not affected OR kernel-default-man is not affected OR kernel-devel is not affected OR kernel-macros is not affected OR kernel-source is not affected
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed AND kernel-default is not affected OR kernel-source is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND kernel-default is not affected OR kernel-default-base is not affected OR kernel-default-devel is not affected OR kernel-devel is not affected OR kernel-macros is not affected OR kernel-source is not affected

BACK