OVAL Reference oval:org.opensuse.security:def:20091895

Oval Definition:

oval:org.opensuse.security:def:20091895

Revision Date:	2015-11-16	Version:	1
Title:	CVE-2009-1895
Description:	The personality subsystem in the Linux kernel before 2.6.31-rc3 has a PER_CLEAR_ON_SETID setting that does not clear the ADDR_COMPAT_LAYOUT and MMAP_PAGE_ZERO flags when executing a setuid or setgid program, which makes it easier for local users to leverage the details of memory usage to (1) conduct NULL pointer dereference attacks, (2) bypass the mmap_min_addr protection mechanism, or (3) defeat address space layout randomization (ASLR).
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2009-1895
Platform(s):	openSUSE 11.0 openSUSE 11.1 SLE 11 SERVER Unsupported Extras SUSE Linux Enterprise 11 GA for EC2 SUSE Linux Enterprise Desktop 11 GA SUSE Linux Enterprise High Availability Extension 11 SUSE Linux Enterprise SDK 11 GA SUSE Linux Enterprise Server 11 GA	Product(s):
Definition Synopsis
Release Information sle11-ec2 is installed kernel-ec2-base less than 2.6.27.29-0.1.1 OR kernel-ec2-extra less than 2.6.27.29-0.1.1 OR kernel-ec2 less than 2.6.27.29-0.1.1 OR sle11-hae is installed cluster-network-kmp-default less than 1.4_2.6.27.29_0.1-2.1.13 OR cluster-network-kmp-pae less than 1.4_2.6.27.29_0.1-2.1.13 OR cluster-network-kmp-xen less than 1.4_2.6.27.29_0.1-2.1.13 OR ocfs2-kmp-default less than 1.4_2.6.27.29_0.1-4.1.13 OR ocfs2-kmp-pae less than 1.4_2.6.27.29_0.1-4.1.13 OR ocfs2-kmp-xen less than 1.4_2.6.27.29_0.1-4.1.13 OR sle11-sdk is installed kernel-ec2-base less than 2.6.27.29-0.1.1 OR kernel-ec2 less than 2.6.27.29-0.1.1 OR sled11 is installed kernel-default-base less than 2.6.27.29-0.1.1 OR kernel-default-extra less than 2.6.27.29-0.1.1 OR kernel-default less than 2.6.27.29-0.1.1 OR kernel-pae-base less than 2.6.27.29-0.1.1 OR kernel-pae-extra less than 2.6.27.29-0.1.1 OR kernel-pae less than 2.6.27.29-0.1.1 OR kernel-source less than 2.6.27.29-0.1.1 OR kernel-syms less than 2.6.27.29-0.1.1 OR kernel-xen-base less than 2.6.27.29-0.1.1 OR kernel-xen-extra less than 2.6.27.29-0.1.1 OR kernel-xen less than 2.6.27.29-0.1.1 OR sles11 is installed ext4dev-kmp-default less than 0_2.6.27.29_0.1-7.1.13 OR ext4dev-kmp-pae less than 0_2.6.27.29_0.1-7.1.13 OR ext4dev-kmp-vmi less than 0_2.6.27.29_0.1-7.1.13 OR ext4dev-kmp-xen less than 0_2.6.27.29_0.1-7.1.13 OR kernel-default-base less than 2.6.27.29-0.1.1 OR kernel-default less than 2.6.27.29-0.1.1 OR kernel-pae-base less than 2.6.27.29-0.1.1 OR kernel-pae less than 2.6.27.29-0.1.1 OR kernel-source less than 2.6.27.29-0.1.1 OR kernel-syms less than 2.6.27.29-0.1.1 OR kernel-vmi-base less than 2.6.27.29-0.1.1 OR kernel-vmi less than 2.6.27.29-0.1.1 OR kernel-xen-base less than 2.6.27.29-0.1.1 OR kernel-xen less than 2.6.27.29-0.1.1 OR Package Information sles11-extra is installed AND kernel-default-extra less than 2.6.27.29-0.1.1 OR kernel-xen-extra less than 2.6.27.29-0.1.1 OR Package Information sles11-extra is installed AND kernel-default-extra less than 2.6.27.29-0.1.1 OR Package Information sles11-extra is installed AND kernel-default-extra less than 2.6.27.29-0.1.1 OR Package Information sle11-ec2 is installed kernel-ec2-base less than 2.6.27.29-0.1.1 OR kernel-ec2-extra less than 2.6.27.29-0.1.1 OR kernel-ec2 less than 2.6.27.29-0.1.1 OR sle11-hae is installed cluster-network-kmp-default less than 1.4_2.6.27.29_0.1-2.1.13 OR cluster-network-kmp-xen less than 1.4_2.6.27.29_0.1-2.1.13 OR ocfs2-kmp-default less than 1.4_2.6.27.29_0.1-4.1.13 OR ocfs2-kmp-xen less than 1.4_2.6.27.29_0.1-4.1.13 OR sle11-sdk is installed kernel-ec2-base less than 2.6.27.29-0.1.1 OR kernel-ec2 less than 2.6.27.29-0.1.1 OR sled11 is installed kernel-default-base less than 2.6.27.29-0.1.1 OR kernel-default-extra less than 2.6.27.29-0.1.1 OR kernel-default less than 2.6.27.29-0.1.1 OR kernel-source less than 2.6.27.29-0.1.1 OR kernel-syms less than 2.6.27.29-0.1.1 OR kernel-xen-base less than 2.6.27.29-0.1.1 OR kernel-xen-extra less than 2.6.27.29-0.1.1 OR kernel-xen less than 2.6.27.29-0.1.1 OR sles11 is installed ext4dev-kmp-default less than 0_2.6.27.29_0.1-7.1.13 OR ext4dev-kmp-xen less than 0_2.6.27.29_0.1-7.1.13 OR kernel-default-base less than 2.6.27.29-0.1.1 OR kernel-default less than 2.6.27.29-0.1.1 OR kernel-source less than 2.6.27.29-0.1.1 OR kernel-syms less than 2.6.27.29-0.1.1 OR kernel-xen-base less than 2.6.27.29-0.1.1 OR kernel-xen less than 2.6.27.29-0.1.1 OR Package Information sles11-extra is installed AND kernel-default-extra less than 2.6.27.29-0.1.1 OR kernel-ppc64-extra less than 2.6.27.29-0.1.1 OR Package Information suse111 is installed AND aufs-kmp-debug less than cvs20081020_2.6.27.29_0.1-1.32.14 OR aufs-kmp-trace less than cvs20081020_2.6.27.29_0.1-1.32.14 OR brocade-bfa-kmp-debug less than 1.1.0.2_2.6.27.29_0.1-1.8.2 OR brocade-bfa-kmp-trace less than 1.1.0.2_2.6.27.29_0.1-1.8.2 OR dazuko-kmp-debug less than 2.3.6_2.6.27.29_0.1-1.49.12 OR dazuko-kmp-trace less than 2.3.6_2.6.27.29_0.1-1.49.12 OR drbd-kmp-debug less than 8.2.7_2.6.27.29_0.1-1.19.25 OR drbd-kmp-trace less than 8.2.7_2.6.27.29_0.1-1.19.25 OR intel-iamt-heci-kmp-debug less than 3.1.0.31_2.6.27.29_0.1-2.40.12 OR intel-iamt-heci-kmp-trace less than 3.1.0.31_2.6.27.29_0.1-2.40.12 OR iscsitarget-kmp-debug less than 0.4.15_2.6.27.29_0.1-89.11.18 OR iscsitarget-kmp-trace less than 0.4.15_2.6.27.29_0.1-89.11.18 OR kernel-debug-base less than 2.6.27.29-0.1.1 OR kernel-debug-extra less than 2.6.27.29-0.1.1 OR kernel-debug less than 2.6.27.29-0.1.1 OR kernel-default-base less than 2.6.27.29-0.1.1 OR kernel-default-extra less than 2.6.27.29-0.1.1 OR kernel-default less than 2.6.27.29-0.1.1 OR kernel-docs less than 2.6.3-3.13.46 OR kernel-ec2-base less than 2.6.27.29-0.1.1 OR kernel-ec2-extra less than 2.6.27.29-0.1.1 OR kernel-ec2 less than 2.6.27.29-0.1.1 OR kernel-kdump less than 2.6.27.29-0.1.1 OR kernel-pae-base less than 2.6.27.29-0.1.1 OR kernel-pae-extra less than 2.6.27.29-0.1.1 OR kernel-pae less than 2.6.27.29-0.1.1 OR kernel-ppc64-base less than 2.6.27.29-0.1.1 OR kernel-ppc64-extra less than 2.6.27.29-0.1.1 OR kernel-ppc64 less than 2.6.27.29-0.1.1 OR kernel-ps3 less than 2.6.27.29-0.1.1 OR kernel-source less than 2.6.27.29-0.1.1 OR kernel-syms less than 2.6.27.29-0.1.1 OR kernel-trace-base less than 2.6.27.29-0.1.1 OR kernel-trace-extra less than 2.6.27.29-0.1.1 OR kernel-trace less than 2.6.27.29-0.1.1 OR kernel-vanilla less than 2.6.27.29-0.1.1 OR kernel-xen-base less than 2.6.27.29-0.1.1 OR kernel-xen-extra less than 2.6.27.29-0.1.1 OR kernel-xen less than 2.6.27.29-0.1.1 OR kqemu-kmp-debug less than 1.4.0pre1_2.6.27.29_0.1-2.1.12 OR kqemu-kmp-trace less than 1.4.0pre1_2.6.27.29_0.1-2.1.12 OR kvm-kmp-trace less than 78_2.6.27.29_0.1-6.7.4 OR lirc-kmp-trace less than 0.8.4_2.6.27.29_0.1-0.1.14 OR ofed-kmp-debug less than 1.4_2.6.27.29_0.1-21.16.2 OR ofed-kmp-trace less than 1.4_2.6.27.29_0.1-21.16.2 OR oracleasm-kmp-debug less than 2.0.5_2.6.27.29_0.1-2.36.14 OR oracleasm-kmp-trace less than 2.0.5_2.6.27.29_0.1-2.36.14 OR pcfclock-kmp-debug less than 0.44_2.6.27.29_0.1-227.56.14 OR pcfclock-kmp-trace less than 0.44_2.6.27.29_0.1-227.56.14 OR virtualbox-ose-kmp-debug less than 2.0.6_2.6.27.29_0.1-2.8.55 OR virtualbox-ose-kmp-trace less than 2.0.6_2.6.27.29_0.1-2.8.55 OR vmware-kmp-debug less than 2008.09.03_2.6.27.29_0.1-5.50.37 OR vmware-kmp-trace less than 2008.09.03_2.6.27.29_0.1-5.50.37 OR Package Information suse110 is installed AND acerhk-kmp-debug less than 0.5.35_2.6.25.20_0.5-98.1 OR acx-kmp-debug less than 20080210_2.6.25.20_0.5-3.1 OR appleir-kmp-debug less than 1.1_2.6.25.20_0.5-108.1 OR at76_usb-kmp-debug less than 0.17_2.6.25.20_0.5-2.1 OR atl2-kmp-debug less than 2.0.4_2.6.25.20_0.5-4.1 OR aufs-kmp-debug less than cvs20080429_2.6.25.20_0.5-13.3 OR dazuko-kmp-debug less than 2.3.4.4_2.6.25.20_0.5-42.1 OR drbd-kmp-debug less than 8.2.6_2.6.25.20_0.5-0.2 OR gspcav-kmp-debug less than 01.00.20_2.6.25.20_0.5-1.1 OR iscsitarget-kmp-debug less than 0.4.15_2.6.25.20_0.5-63.1 OR ivtv-kmp-debug less than 1.0.3_2.6.25.20_0.5-66.1 OR kernel-debug less than 2.6.25.20-0.5 OR kernel-default less than 2.6.25.20-0.5 OR kernel-docs less than 2.6.25.20-0.5 OR kernel-kdump less than 2.6.25.20-0.5 OR kernel-pae less than 2.6.25.20-0.5 OR kernel-ppc64 less than 2.6.25.20-0.5 OR kernel-ps3 less than 2.6.25.20-0.5 OR kernel-source less than 2.6.25.20-0.5 OR kernel-syms less than 2.6.25.20-0.5 OR kernel-vanilla less than 2.6.25.20-0.5 OR kernel-xen less than 2.6.25.20-0.5 OR kqemu-kmp-debug less than 1.3.0pre11_2.6.25.20_0.5-7.1 OR nouveau-kmp-debug less than 0.10.1.20081112_2.6.25.20_0.5-0.4 OR omnibook-kmp-debug less than 20080313_2.6.25.20_0.5-1.1 OR pcc-acpi-kmp-debug less than 0.9_2.6.25.20_0.5-4.1 OR pcfclock-kmp-debug less than 0.44_2.6.25.20_0.5-207.1 OR tpctl-kmp-debug less than 4.17_2.6.25.20_0.5-189.1 OR uvcvideo-kmp-debug less than r200_2.6.25.20_0.5-2.4 OR virtualbox-ose-kmp-debug less than 1.5.6_2.6.25.20_0.5-33.3 OR vmware-kmp-debug less than 2008.04.14_2.6.25.20_0.5-21.1 OR wlan-ng-kmp-debug less than 0.2.8_2.6.25.20_0.5-107.1 OR Package Information sles11-extra is installed AND kernel-default-extra less than 2.6.27.29-0.1.1 OR kernel-pae-extra less than 2.6.27.29-0.1.1 OR kernel-xen-extra less than 2.6.27.29-0.1.1 OR Package Information sle11-hae is installed cluster-network-kmp-default less than 1.4_2.6.27.29_0.1-2.1.13 OR ocfs2-kmp-default less than 1.4_2.6.27.29_0.1-4.1.13 OR sles11 is installed ext4dev-kmp-default less than 0_2.6.27.29_0.1-7.1.13 OR kernel-default-base less than 2.6.27.29-0.1.1 OR kernel-default less than 2.6.27.29-0.1.1 OR kernel-source less than 2.6.27.29-0.1.1 OR kernel-syms less than 2.6.27.29-0.1.1 OR Package Information sle11-hae is installed cluster-network-kmp-default less than 1.4_2.6.27.29_0.1-2.1.13 OR cluster-network-kmp-ppc64 less than 1.4_2.6.27.29_0.1-2.1.13 OR ocfs2-kmp-default less than 1.4_2.6.27.29_0.1-4.1.13 OR ocfs2-kmp-ppc64 less than 1.4_2.6.27.29_0.1-4.1.13 OR sles11 is installed ext4dev-kmp-default less than 0_2.6.27.29_0.1-7.1.13 OR ext4dev-kmp-ppc64 less than 0_2.6.27.29_0.1-7.1.13 OR kernel-default-base less than 2.6.27.29-0.1.1 OR kernel-default less than 2.6.27.29-0.1.1 OR kernel-kdump less than 2.6.27.29-0.1.1 OR kernel-ppc64-base less than 2.6.27.29-0.1.1 OR kernel-ppc64 less than 2.6.27.29-0.1.1 OR kernel-source less than 2.6.27.29-0.1.1 OR kernel-syms less than 2.6.27.29-0.1.1 OR Package Information sle11-hae is installed cluster-network-kmp-default less than 1.4_2.6.27.29_0.1-2.1.13 OR ocfs2-kmp-default less than 1.4_2.6.27.29_0.1-4.1.13 OR sles11 is installed ext4dev-kmp-default less than 0_2.6.27.29_0.1-7.1.13 OR kernel-default-base less than 2.6.27.29-0.1.1 OR kernel-default-man less than 2.6.27.29-0.1.1 OR kernel-default less than 2.6.27.29-0.1.1 OR kernel-source less than 2.6.27.29-0.1.1 OR kernel-syms less than 2.6.27.29-0.1.1

BACK