Scientific Linux Security Update : kernel on SL6.x i386/x86

NASLDB: Scientific Linux Security Update : kernel on SL6.x i386/x86_64

General

ID: 61560
Name: Scientific Linux Security Update : kernel on SL6.x i386/x86_64

Summary: Checks rpm output for the updated packages

Credits: Tenable Network Security, Inc.

Classification

Risk: –

CVSS: –
CVSS Base Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C
CVSS Temporal Vector: –

Port: 0
Family: Scientific Linux Local Security Checks
Type: Local

Description

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

This update fixes the following security issues :

– An integer overflow flaw was found in the
i915_gem_execbuffer2() function in the Intel i915 driver
in the Linux kernel. A local, unprivileged user could
use this flaw to cause a denial of service. This issue
only affected 32-bit systems. (CVE-2012-2383, Moderate)

– A missing initialization flaw was found in the
sco_sock_getsockopt_old() function in the Linux kernel’s
Bluetooth implementation. A local, unprivileged user
could use this flaw to cause an information leak.
(CVE-2011-1078, Low)

This update also fixes several bugs.

Users should upgrade to these updated packages, which contain
backported patches to correct these issues. The system must be
rebooted for this update to take effect.

Exploiting

Exploit Available: –
Exploitability Ease: –

Sources

CVE: CVE-2011-1078
OSVDB: –
Bugtraq: –
scipID: –

Timeline

Vulnerability Disclosure: –
Patch Release: 2012/08/14
Plugin Release: 2012/08/16

Plugin

Version: 1.1
Filename: sl_20120814_kernel_on_SL6_x.nasl
Filesize: 4112 bytes
MD5 Hash: 3d308123749eb1c21e7a0d3506bfd616

Identification: Host/local_checks_enabled
Require Keys: Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list
Dependencies: "ssh_get_info.nasl"

Letzte Plugins

Letzte Plugins

scip AG