Oval Definition:	oval:org.opensuse.security:def:20091185
Revision Date: 2022-08-07 Version: 1 Title: CVE-2009-1185 Description: udev before 1.4.1 does not verify whether a NETLINK message originates from kernel space, which allows local users to gain privileges by sending a NETLINK message from user space. Family: unix Class: vulnerability Status: Reference(s): CVE-2009-1185 Mitre CVE-2009-1185 SUSE CVE-2009-1185 SUSE-SA:2009:020 SUSE-SA:2009:020 SUSE-SA:2009:025 SUSE-SA:2009:025 Platform(s): openSUSE 11.0 openSUSE 11.1 SUSE Linux Enterprise 11 Moblin 2.0 SUSE Linux Enterprise Desktop 11 GA SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise Desktop 15 SP1 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise Micro 5.0 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Development Tools 15 SP1 SUSE Linux Enterprise SDK 11 GA SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 GA SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server for SAP Applications 11 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Storage 6 SUSE Manager Proxy 4.0 SUSE Manager Retail Branch Server 4.0 SUSE Manager Server 4.0 Product(s): Definition Synopsis Release Information sle11-moblin20 is installed AND libudev0 less than 137-1.3.1 OR libvolume_id1 less than 137-1.3.1 OR udev less than 137-1.3.1 OR Package Information suse110 is installed libvolume_id-devel less than 120-13.2 OR libvolume_id less than 120-13.2 OR udev less than 120-13.2 OR suse111 is installed libudev-devel less than 128-9.7.1 OR libudev0 less than 128-9.7.1 OR libvolume_id-devel less than 128-9.7.1 OR libvolume_id1 less than 128-9.7.1 OR libvolume_id less than 126-17.38.1 OR udev less than 128-9.7.1 OR Package Information sle11-sdk is installed libudev-devel less than 128-13.2.1 OR libudev0 less than 128-13.2.1 OR libvolume_id-devel less than 128-13.2.1 OR sled11 is installed libvolume_id1 less than 128-13.2.1 OR udev less than 128-13.2.1 Definition Synopsis SUSE Linux Enterprise Server 11 is installed AND Package Information libvolume_id1-128-13.2 is installed OR udev-128-13.2 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 is installed OR SUSE Linux Enterprise Server for SAP Applications 11 is installed AND Package Information libvolume_id1-128-13.2.1 is installed OR udev-128-13.2.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed OR SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND Package Information kernel-default is not affected OR kernel-source is not affected Definition Synopsis Release Information SUSE Linux Enterprise Module for Basesystem 15 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed OR SUSE Linux Enterprise Module for Development Tools 15 is installed OR SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND Package Information kernel-default is not affected OR kernel-source is not affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information kernel-default is not affected OR kernel-source is not affected Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND kernel-default is not affected OR kernel-source is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND kernel-default is not affected OR kernel-default-base is not affected OR kernel-default-devel is not affected OR kernel-devel is not affected OR kernel-macros is not affected OR kernel-source is not affected OR Package Information SUSE Linux Enterprise Server 12 SP5 is installed AND kernel-default is not affected OR kernel-default-base is not affected OR kernel-default-devel is not affected OR kernel-default-man is not affected OR kernel-devel is not affected OR kernel-macros is not affected OR kernel-source is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND kernel-default is not affected OR kernel-default-base is not affected OR kernel-default-devel is not affected OR kernel-default-kgraft is not affected OR kernel-devel is not affected OR kernel-macros is not affected OR kernel-source is not affected Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information kernel-default is not affected OR kernel-source is not affected Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information kernel-default is not affected OR kernel-source is not affected Definition Synopsis SUSE Linux Enterprise Micro 5.0 is installed AND kernel-default is not affected
BACK