Red Hat Local Security Checks : RedHat Security Advisory RHSA-2010:0424

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.67412

Categoría: Red Hat Local Security Checks

Título: RedHat Security Advisory RHSA-2010:0424

Resumen: NOSUMMARY

Descripción: Description:
The remote host is missing updates announced in
advisory RHSA-2010:0424.

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

This update fixes the following security issue:

* a use-after-free flaw was found in the tcp_rcv_state_process() function
in the Linux kernel TCP/IP protocol suite implementation. If a system using
IPv6 had the IPV6_RECVPKTINFO option set on a listening socket, a remote
attacker could send an IPv6 packet to that system, causing a kernel panic
(denial of service). (CVE-2010-1188, Important)

This update also adds the following enhancement:

* kernel support for the iptables connlimit module. This module can be used
to help mitigate some types of denial of service attacks. Note: This update
alone does not address connlimit support. A future iptables package update
will allow connlimit to work correctly. (BZ#563222)

Users should upgrade to these updated packages, which contain backported
patches to correct this issue and add this enhancement. The system must be
rebooted for this update to take effect.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2010-0424.html
http://www.redhat.com/security/updates/classification/#important

Risk factor : High

CVSS Score:
7.1

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2010-1188
BugTraq ID: 39016
http://www.securityfocus.com/bid/39016
http://www.openwall.com/lists/oss-security/2010/03/29/1
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9878
http://www.redhat.com/support/errata/RHSA-2010-0380.html
http://www.redhat.com/support/errata/RHSA-2010-0394.html
http://www.redhat.com/support/errata/RHSA-2010-0424.html
http://www.redhat.com/support/errata/RHSA-2010-0439.html
http://www.redhat.com/support/errata/RHSA-2010-0882.html
http://www.securitytracker.com/id?1023992
http://secunia.com/advisories/39652

Copyright Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.67412
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2010:0424
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2010:0424. The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issue: * a use-after-free flaw was found in the tcp_rcv_state_process() function in the Linux kernel TCP/IP protocol suite implementation. If a system using IPv6 had the IPV6_RECVPKTINFO option set on a listening socket, a remote attacker could send an IPv6 packet to that system, causing a kernel panic (denial of service). (CVE-2010-1188, Important) This update also adds the following enhancement: * kernel support for the iptables connlimit module. This module can be used to help mitigate some types of denial of service attacks. Note: This update alone does not address connlimit support. A future iptables package update will allow connlimit to work correctly. (BZ#563222) Users should upgrade to these updated packages, which contain backported patches to correct this issue and add this enhancement. The system must be rebooted for this update to take effect. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2010-0424.html http://www.redhat.com/security/updates/classification/#important Risk factor : High CVSS Score: 7.1
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-1188 BugTraq ID: 39016 http://www.securityfocus.com/bid/39016 http://www.openwall.com/lists/oss-security/2010/03/29/1 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9878 http://www.redhat.com/support/errata/RHSA-2010-0380.html http://www.redhat.com/support/errata/RHSA-2010-0394.html http://www.redhat.com/support/errata/RHSA-2010-0424.html http://www.redhat.com/support/errata/RHSA-2010-0439.html http://www.redhat.com/support/errata/RHSA-2010-0882.html http://www.securitytracker.com/id?1023992 http://secunia.com/advisories/39652
Copyright	Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com