Slackware Local Security Checks : Slackware: Security Advisory (SSA:2017-181-02)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 146377 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.1.13.2017.181.02

Kategorie: Slackware Local Security Checks

Titel: Slackware: Security Advisory (SSA:2017-181-02)

Zusammenfassung: The remote host is missing an update for the 'kernel' package(s) announced via the SSA:2017-181-02 advisory.

Beschreibung: Summary:
The remote host is missing an update for the 'kernel' package(s) announced via the SSA:2017-181-02 advisory.

Vulnerability Insight:
New kernel packages are available for Slackware 14.2 and -current to
fix security issues.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/linux-4.4.75/*: Upgraded.
This kernel fixes security issues that include possible stack exhaustion,
memory corruption, and arbitrary code execution.
Be sure to upgrade your initrd after upgrading the kernel packages.
If you use lilo to boot your machine, be sure lilo.conf points to the correct
kernel and initrd and run lilo as root to update the bootloader.
If you use elilo to boot your machine, you should run eliloconfig to copy the
kernel and initrd to the EFI System Partition.
For more information, see:
[links moved to references]
(* Security fix *)
+--------------------------+

Affected Software/OS:
'kernel' package(s) on Slackware 14.2, Slackware current.

Solution:
Please install the updated package(s).

CVSS Score:
7.2

CVSS Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2017-1000365
BugTraq ID: 99156
http://www.securityfocus.com/bid/99156
Debian Security Information: DSA-3927 (Google Search)
http://www.debian.org/security/2017/dsa-3927
Debian Security Information: DSA-3945 (Google Search)
http://www.debian.org/security/2017/dsa-3945
https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt
Common Vulnerability Exposure (CVE) ID: CVE-2017-7482
BugTraq ID: 99299
http://www.securityfocus.com/bid/99299
https://www.debian.org/security/2017/dsa-3927
https://www.debian.org/security/2017/dsa-3945
http://seclists.org/oss-sec/2017/q2/602
RedHat Security Advisories: RHSA-2019:0641
https://access.redhat.com/errata/RHSA-2019:0641
http://www.securitytracker.com/id/1038787

Copyright Copyright (C) 2022 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.1.13.2017.181.02
Kategorie:	Slackware Local Security Checks
Titel:	Slackware: Security Advisory (SSA:2017-181-02)
Zusammenfassung:	The remote host is missing an update for the 'kernel' package(s) announced via the SSA:2017-181-02 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'kernel' package(s) announced via the SSA:2017-181-02 advisory. Vulnerability Insight: New kernel packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: +--------------------------+ patches/packages/linux-4.4.75/: Upgraded. This kernel fixes security issues that include possible stack exhaustion, memory corruption, and arbitrary code execution. Be sure to upgrade your initrd after upgrading the kernel packages. If you use lilo to boot your machine, be sure lilo.conf points to the correct kernel and initrd and run lilo as root to update the bootloader. If you use elilo to boot your machine, you should run eliloconfig to copy the kernel and initrd to the EFI System Partition. For more information, see: [links moved to references] ( Security fix *) +--------------------------+ Affected Software/OS: 'kernel' package(s) on Slackware 14.2, Slackware current. Solution: Please install the updated package(s). CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-1000365 BugTraq ID: 99156 http://www.securityfocus.com/bid/99156 Debian Security Information: DSA-3927 (Google Search) http://www.debian.org/security/2017/dsa-3927 Debian Security Information: DSA-3945 (Google Search) http://www.debian.org/security/2017/dsa-3945 https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt Common Vulnerability Exposure (CVE) ID: CVE-2017-7482 BugTraq ID: 99299 http://www.securityfocus.com/bid/99299 https://www.debian.org/security/2017/dsa-3927 https://www.debian.org/security/2017/dsa-3945 http://seclists.org/oss-sec/2017/q2/602 RedHat Security Advisories: RHSA-2019:0641 https://access.redhat.com/errata/RHSA-2019:0641 http://www.securitytracker.com/id/1038787
Copyright	Copyright (C) 2022 Greenbone AG