ID de Prueba:	1.3.6.1.4.1.25623.1.0.58082
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2007:0085
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2007:0085. The Linux kernel handles the basic functions of the operating system. These new kernel packages contain fixes for two security issues: * a flaw in the key serial number collision avoidance algorithm of the keyctl subsystem that allowed a local user to cause a denial of service (CVE-2007-0006, Important) * a flaw in the file watch implementation of the audit subsystems that allowed a local user to cause a denial of service (panic). To exploit this flaw a privileged user must have previously created a watch for a file (CVE-2007-0001, Moderate) In addition to the security issues described above, a fix for the SCTP subsystem to address a system crash which may be experienced in Telco environments has been included. Red Hat Enterprise Linux 4 users are advised to upgrade their kernels to the packages associated with their machine architecture and configurations as listed in this erratum. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2007-0085.html http://www.redhat.com/security/updates/classification/#important Risk factor : Medium CVSS Score: 4.7
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-0001 1017705 http://www.securitytracker.com/id?1017705 22737 http://www.securityfocus.com/bid/22737 24300 http://secunia.com/advisories/24300 33031 http://osvdb.org/33031 RHSA-2007:0085 http://www.redhat.com/support/errata/RHSA-2007-0085.html http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=223129 oval:org.mitre.oval:def:9560 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9560 Common Vulnerability Exposure (CVE) ID: CVE-2007-0006 20070615 rPSA-2007-0124-1 kernel xen http://www.securityfocus.com/archive/1/471457 22539 http://www.securityfocus.com/bid/22539 24109 http://secunia.com/advisories/24109 24259 http://secunia.com/advisories/24259 24429 http://secunia.com/advisories/24429 24482 http://secunia.com/advisories/24482 24547 http://secunia.com/advisories/24547 24752 http://secunia.com/advisories/24752 25691 http://secunia.com/advisories/25691 MDKSA-2007:047 http://www.mandriva.com/security/advisories?name=MDKSA-2007:047 MDKSA-2007:060 http://www.mandriva.com/security/advisories?name=MDKSA-2007:060 RHSA-2007:0099 http://www.redhat.com/support/errata/RHSA-2007-0099.html SUSE-SA:2007:021 http://www.novell.com/linux/security/advisories/2007_21_kernel.html USN-451-1 http://www.ubuntu.com/usn/usn-451-1 http://bugzilla.kernel.org/show_bug.cgi?id=7727 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=227495 https://issues.rpath.com/browse/RPL-1097 oval:org.mitre.oval:def:9829 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9829
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.