Conectiva Local Security Checks : Conectiva Security Advisory CLA-2004:820

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.51335
Categoría:	Conectiva Local Security Checks
Título:	Conectiva Security Advisory CLA-2004:820
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory CLA-2004:820. The Linux kernel is responsible for handling the basic functions of the GNU/Linux operating system. Paul Starzetz identified[1] a new vulnerability[2] in the linux memory management code that can be used by local attackers to obtain root privileges. Two other, unrelated, fixes have also been included in this update: - CVE-2004-0010[4]: vulnerability in the ncp file system (ncpfs) - local kmod denial of service (no CAN alocated to this issue)[5]. Solution: The apt tool can be used to perform RPM package upgrades by running 'apt-get update' followed by 'apt-get upgrade' http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt http://cve.mitre.org/cgi-bin/cvename.cgi?name=can-2004-0077 http://www.conectiva.com.br/suporte/pr/sistema.kernel.atualizar.html http://cve.mitre.org/cgi-bin/cvename.cgi?name=can-2004-0010 http://www.securityspace.com/smysecure/catid.html?in=CLA-2004:820 http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=002004 Risk factor : High CVSS Score: 7.2
Referencia Cruzada:	BugTraq ID: 9691 Common Vulnerability Exposure (CVE) ID: CVE-2004-0010 http://www.securityfocus.com/bid/9691 Computer Incident Advisory Center Bulletin: O-082 http://www.ciac.org/ciac/bulletins/o-082.shtml Conectiva Linux advisory: CLA-2004:820 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000820 Debian Security Information: DSA-479 (Google Search) http://www.debian.org/security/2004/dsa-479 Debian Security Information: DSA-480 (Google Search) http://www.debian.org/security/2004/dsa-480 Debian Security Information: DSA-481 (Google Search) http://www.debian.org/security/2004/dsa-481 Debian Security Information: DSA-482 (Google Search) http://www.debian.org/security/2004/dsa-482 Debian Security Information: DSA-489 (Google Search) http://www.debian.org/security/2004/dsa-489 Debian Security Information: DSA-491 (Google Search) http://www.debian.org/security/2004/dsa-491 Debian Security Information: DSA-495 (Google Search) http://www.debian.org/security/2004/dsa-495 http://fedoranews.org/updates/FEDORA-2004-079.shtml http://www.mandriva.com/security/advisories?name=MDKSA-2004:015 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1035 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11388 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A835 http://www.redhat.com/support/errata/RHSA-2004-065.html http://www.redhat.com/support/errata/RHSA-2004-069.html http://www.redhat.com/support/errata/RHSA-2004-188.html SuSE Security Announcement: SuSE-SA:2004:005 (Google Search) http://www.novell.com/linux/security/advisories/2004_05_linux_kernel.html TurboLinux Advisory: TLSA-2004-05 http://www.securityfocus.com/advisories/6759 XForce ISS Database: linux-ncplookup-gain-privileges(15250) https://exchange.xforce.ibmcloud.com/vulnerabilities/15250
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com