Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200408-24 (Kernel)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.54654

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200408-24 (Kernel)

Resumen: The remote host is missing updates announced in;advisory GLSA 200408-24.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200408-24.

Vulnerability Insight:
Multiple information leaks have been found in the Linux kernel, allowing an
attacker to obtain sensitive data which may be used for further
exploitation of the system.

Solution:
Users are encouraged to upgrade to the latest available sources for their
system:

# emerge sync
# emerge -pv your-favorite-sources
# emerge your-favorite-sources

# # Follow usual procedure for compiling and installing a kernel.
# # If you use genkernel, run genkernel as you would normally.

CVSS Score:
4.6

CVSS Vector:
AV:L/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2004-0415
Conectiva Linux advisory: CLA-2004:879
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000879
http://www.gentoo.org/security/en/glsa/glsa-200408-24.xml
http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:087
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9965
http://www.redhat.com/support/errata/RHSA-2004-413.html
http://www.redhat.com/support/errata/RHSA-2004-418.html
SGI Security Advisory: 20040804-01-U
ftp://patches.sgi.com/support/free/security/advisories/20040804-01-U.asc
XForce ISS Database: linux-pointer-info-disclosure(16877)
https://exchange.xforce.ibmcloud.com/vulnerabilities/16877
Common Vulnerability Exposure (CVE) ID: CVE-2004-0685
BugTraq ID: 10892
http://www.securityfocus.com/bid/10892
CERT/CC vulnerability note: VU#981134
http://www.kb.cert.org/vuls/id/981134
Debian Security Information: DSA-1067 (Google Search)
http://www.debian.org/security/2006/dsa-1067
Debian Security Information: DSA-1069 (Google Search)
http://www.debian.org/security/2006/dsa-1069
Debian Security Information: DSA-1070 (Google Search)
http://www.debian.org/security/2006/dsa-1070
Debian Security Information: DSA-1082 (Google Search)
http://www.debian.org/security/2006/dsa-1082
https://bugzilla.fedora.us/show_bug.cgi?id=2336
http://www.securityspace.com/smysecure/catid.html?id=14580
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10665
http://www.redhat.com/support/errata/RHSA-2004-504.html
http://www.redhat.com/support/errata/RHSA-2004-505.html
http://secunia.com/advisories/20162
http://secunia.com/advisories/20163
http://secunia.com/advisories/20202
http://secunia.com/advisories/20338
http://www.trustix.net/errata/2004/0041/
XForce ISS Database: linux-usb-gain-privileges(16931)
https://exchange.xforce.ibmcloud.com/vulnerabilities/16931

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.54654
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200408-24 (Kernel)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200408-24.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200408-24. Vulnerability Insight: Multiple information leaks have been found in the Linux kernel, allowing an attacker to obtain sensitive data which may be used for further exploitation of the system. Solution: Users are encouraged to upgrade to the latest available sources for their system: # emerge sync # emerge -pv your-favorite-sources # emerge your-favorite-sources # # Follow usual procedure for compiling and installing a kernel. # # If you use genkernel, run genkernel as you would normally. CVSS Score: 4.6 CVSS Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0415 Conectiva Linux advisory: CLA-2004:879 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000879 http://www.gentoo.org/security/en/glsa/glsa-200408-24.xml http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:087 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9965 http://www.redhat.com/support/errata/RHSA-2004-413.html http://www.redhat.com/support/errata/RHSA-2004-418.html SGI Security Advisory: 20040804-01-U ftp://patches.sgi.com/support/free/security/advisories/20040804-01-U.asc XForce ISS Database: linux-pointer-info-disclosure(16877) https://exchange.xforce.ibmcloud.com/vulnerabilities/16877 Common Vulnerability Exposure (CVE) ID: CVE-2004-0685 BugTraq ID: 10892 http://www.securityfocus.com/bid/10892 CERT/CC vulnerability note: VU#981134 http://www.kb.cert.org/vuls/id/981134 Debian Security Information: DSA-1067 (Google Search) http://www.debian.org/security/2006/dsa-1067 Debian Security Information: DSA-1069 (Google Search) http://www.debian.org/security/2006/dsa-1069 Debian Security Information: DSA-1070 (Google Search) http://www.debian.org/security/2006/dsa-1070 Debian Security Information: DSA-1082 (Google Search) http://www.debian.org/security/2006/dsa-1082 https://bugzilla.fedora.us/show_bug.cgi?id=2336 http://www.securityspace.com/smysecure/catid.html?id=14580 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10665 http://www.redhat.com/support/errata/RHSA-2004-504.html http://www.redhat.com/support/errata/RHSA-2004-505.html http://secunia.com/advisories/20162 http://secunia.com/advisories/20163 http://secunia.com/advisories/20202 http://secunia.com/advisories/20338 http://www.trustix.net/errata/2004/0041/ XForce ISS Database: linux-usb-gain-privileges(16931) https://exchange.xforce.ibmcloud.com/vulnerabilities/16931
Copyright	Copyright (C) 2008 E-Soft Inc.