Test Kennung:	1.3.6.1.4.1.25623.1.0.51335
Kategorie:	Conectiva Local Security Checks
Titel:	Conectiva Security Advisory CLA-2004:820
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host is missing updates announced in advisory CLA-2004:820. The Linux kernel is responsible for handling the basic functions of the GNU/Linux operating system. Paul Starzetz identified[1] a new vulnerability[2] in the linux memory management code that can be used by local attackers to obtain root privileges. Two other, unrelated, fixes have also been included in this update: - CVE-2004-0010[4]: vulnerability in the ncp file system (ncpfs) - local kmod denial of service (no CAN alocated to this issue)[5]. Solution: The apt tool can be used to perform RPM package upgrades by running 'apt-get update' followed by 'apt-get upgrade' http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt http://cve.mitre.org/cgi-bin/cvename.cgi?name=can-2004-0077 http://www.conectiva.com.br/suporte/pr/sistema.kernel.atualizar.html http://cve.mitre.org/cgi-bin/cvename.cgi?name=can-2004-0010 http://www.securityspace.com/smysecure/catid.html?in=CLA-2004:820 http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=002004 Risk factor : High CVSS Score: 7.2
Querverweis:	BugTraq ID: 9691 Common Vulnerability Exposure (CVE) ID: CVE-2004-0010 http://www.securityfocus.com/bid/9691 Computer Incident Advisory Center Bulletin: O-082 http://www.ciac.org/ciac/bulletins/o-082.shtml Conectiva Linux advisory: CLA-2004:820 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000820 Debian Security Information: DSA-479 (Google Search) http://www.debian.org/security/2004/dsa-479 Debian Security Information: DSA-480 (Google Search) http://www.debian.org/security/2004/dsa-480 Debian Security Information: DSA-481 (Google Search) http://www.debian.org/security/2004/dsa-481 Debian Security Information: DSA-482 (Google Search) http://www.debian.org/security/2004/dsa-482 Debian Security Information: DSA-489 (Google Search) http://www.debian.org/security/2004/dsa-489 Debian Security Information: DSA-491 (Google Search) http://www.debian.org/security/2004/dsa-491 Debian Security Information: DSA-495 (Google Search) http://www.debian.org/security/2004/dsa-495 http://fedoranews.org/updates/FEDORA-2004-079.shtml http://www.mandriva.com/security/advisories?name=MDKSA-2004:015 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1035 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11388 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A835 http://www.redhat.com/support/errata/RHSA-2004-065.html http://www.redhat.com/support/errata/RHSA-2004-069.html http://www.redhat.com/support/errata/RHSA-2004-188.html SuSE Security Announcement: SuSE-SA:2004:005 (Google Search) http://www.novell.com/linux/security/advisories/2004_05_linux_kernel.html TurboLinux Advisory: TLSA-2004-05 http://www.securityfocus.com/advisories/6759 XForce ISS Database: linux-ncplookup-gain-privileges(15250) https://exchange.xforce.ibmcloud.com/vulnerabilities/15250
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.