OVAL Reference oval:org.opensuse.security:def:20093002

Oval Definition:

oval:org.opensuse.security:def:20093002

Revision Date:	2022-05-20	Version:	1
Title:	CVE-2009-3002
Description:	The Linux kernel before 2.6.31-rc7 does not initialize certain data structures within getname functions, which allows local users to read the contents of some kernel memory locations by calling getsockname on (1) an AF_APPLETALK socket, related to the atalk_getname function in net/appletalk/ddp.c; (2) an AF_IRDA socket, related to the irda_getname function in net/irda/af_irda.c; (3) an AF_ECONET socket, related to the econet_getname function in net/econet/af_econet.c; (4) an AF_NETROM socket, related to the nr_getname function in net/netrom/af_netrom.c; (5) an AF_ROSE socket, related to the rose_getname function in net/rose/af_rose.c; or (6) a raw CAN socket, related to the raw_getname function in net/can/raw.c.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2009-3002 Mitre CVE-2009-3002 SUSE CVE-2009-3002 SUSE-SA:2009:051 SUSE-SA:2009:051 SUSE-SA:2009:054 SUSE-SA:2009:054 SUSE-SA:2009:056 SUSE-SA:2009:056 SUSE-SA:2010:012 SUSE-SA:2010:012
Platform(s):	Novell Linux Desktop 9 for x86 Novell Linux Desktop 9 for x86_64 Open Enterprise Server openSUSE 11.0 openSUSE 11.1 SUSE CORE 9 for AMD64 and Intel EM64T SUSE Linux Enterprise 11 GA for EC2 SUSE Linux Enterprise Desktop 11 GA SUSE Linux Enterprise High Availability Extension 11 SUSE Linux Enterprise Realtime 10 SP2 SUSE Linux Enterprise SDK 10 SP2 SUSE Linux Enterprise SDK 11 GA SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 GA SUSE Linux Enterprise Server for SAP Applications 11	Product(s):
Definition Synopsis
Release Information sles10-sp2-sdk is installed AND kernel-debug less than 2.6.16.60-0.42.7 OR Package Information sles10-sp2-rt is installed AND ib-bonding-kmp-rt less than 0.9.0_2.6.22.19_0.35-1.21.1 OR ib-bonding-kmp-rt_bigsmp less than 0.9.0_2.6.22.19_0.35-1.21.1 OR ib-bonding-kmp-rt_debug less than 0.9.0_2.6.22.19_0.35-1.21.1 OR ib-bonding-kmp-rt_timing less than 0.9.0_2.6.22.19_0.35-1.21.1 OR kernel-rt less than 2.6.22.19-0.35 OR kernel-rt_bigsmp less than 2.6.22.19-0.35 OR kernel-rt_debug less than 2.6.22.19-0.35 OR kernel-rt_timing less than 2.6.22.19-0.35 OR kernel-source less than 2.6.22.19-0.35 OR kernel-syms less than 2.6.22.19-0.35 OR ofed-cxgb3-NIC-kmp-rt less than 1.3_2.6.22.19_0.35-0.18.1 OR ofed-cxgb3-NIC-kmp-rt_bigsmp less than 1.3_2.6.22.19_0.35-0.18.1 OR ofed-cxgb3-NIC-kmp-rt_debug less than 1.3_2.6.22.19_0.35-0.18.1 OR ofed-cxgb3-NIC-kmp-rt_timing less than 1.3_2.6.22.19_0.35-0.18.1 OR ofed-doc less than 1.3-0.33.4 OR ofed-kmp-rt less than 1.3_2.6.22.19_0.35-0.33.4 OR ofed-kmp-rt_bigsmp less than 1.3_2.6.22.19_0.35-0.33.4 OR ofed-kmp-rt_debug less than 1.3_2.6.22.19_0.35-0.33.4 OR ofed-kmp-rt_timing less than 1.3_2.6.22.19_0.35-0.33.4 OR ofed less than 1.3-0.33.4 OR Package Information sles10-sp2-sdk is installed AND kernel-kdump less than 2.6.16.60-0.42.7 OR Package Information sles10-sp2-sdk is installed AND kernel-debug less than 2.6.16.60-0.42.7 OR kernel-kdump less than 2.6.16.60-0.42.7 OR kernel-xen less than 2.6.16.60-0.42.7 OR kernel-xenpae less than 2.6.16.60-0.42.7 OR Package Information sles10-sp2-sdk is installed AND kernel-debug less than 2.6.16.60-0.42.7 OR kernel-kdump less than 2.6.16.60-0.42.7 OR kernel-xen less than 2.6.16.60-0.42.7
Definition Synopsis
SUSE Linux Enterprise Server 11 is installed AND Package Information ext4dev-kmp-default-0_2.6.27.37_0.1-7.1 is installed OR ext4dev-kmp-pae-0_2.6.27.23_0.1-7.1 is installed OR ext4dev-kmp-ppc64-0_2.6.27.37_0.1-7.1 is installed OR ext4dev-kmp-vmi-0_2.6.27.23_0.1-7.1 is installed OR ext4dev-kmp-xen-0_2.6.27.23_0.1-7.1 is installed OR iscsitarget-kmp-default-0.4.15_2.6.27.54_0.2-94.14 is installed OR kernel-default-2.6.27.37-0.1 is installed OR kernel-default-base-2.6.27.37-0.1 is installed OR kernel-default-man-2.6.27.23-0.1 is installed OR kernel-kdump-2.6.27.37-0.1 is installed OR kernel-pae-2.6.27.23-0.1 is installed OR kernel-pae-base-2.6.27.23-0.1 is installed OR kernel-ppc64-2.6.27.37-0.1 is installed OR kernel-ppc64-base-2.6.27.37-0.1 is installed OR kernel-source-2.6.27.37-0.1 is installed OR kernel-syms-2.6.27.37-0.1 is installed OR kernel-vmi-2.6.27.23-0.1 is installed OR kernel-vmi-base-2.6.27.23-0.1 is installed OR kernel-xen-2.6.27.23-0.1 is installed OR kernel-xen-base-2.6.27.23-0.1 is installed OR oracleasm-kmp-default-2.0.5_2.6.27.54_0.2-7.9 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 is installed OR SUSE Linux Enterprise Server for SAP Applications 11 is installed AND Package Information ext4dev-kmp-default-0_2.6.27.37_0.1-7.1.18 is installed OR ext4dev-kmp-pae-0_2.6.27.37_0.1-7.1.18 is installed OR ext4dev-kmp-ppc64-0_2.6.27.37_0.1-7.1.18 is installed OR ext4dev-kmp-vmi-0_2.6.27.37_0.1-7.1.18 is installed OR ext4dev-kmp-xen-0_2.6.27.37_0.1-7.1.18 is installed OR iscsitarget-kmp-default-0.4.15_2.6.27.54_0.2-94.14.8 is installed OR kernel-default-2.6.27.37-0.1.1 is installed OR kernel-default-base-2.6.27.37-0.1.1 is installed OR kernel-default-man-2.6.27.37-0.1.1 is installed OR kernel-kdump-2.6.27.37-0.1.1 is installed OR kernel-pae-2.6.27.37-0.1.1 is installed OR kernel-pae-base-2.6.27.37-0.1.1 is installed OR kernel-ppc64-2.6.27.37-0.1.1 is installed OR kernel-ppc64-base-2.6.27.37-0.1.1 is installed OR kernel-source-2.6.27.37-0.1.1 is installed OR kernel-syms-2.6.27.37-0.1.1 is installed OR kernel-vmi-2.6.27.37-0.1.1 is installed OR kernel-vmi-base-2.6.27.37-0.1.1 is installed OR kernel-xen-2.6.27.37-0.1.1 is installed OR kernel-xen-base-2.6.27.37-0.1.1 is installed OR oracleasm-kmp-default-2.0.5_2.6.27.54_0.2-7.9.1 is installed

BACK