ID de Prueba:	1.3.6.1.4.1.25623.1.0.71918
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2011:1253
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2011:1253. Security fixes: * A flaw in the SCTP and DCCP implementations could allow a remote attacker to cause a denial of service. (CVE-2010-4526, CVE-2011-1770, Important) * Flaws in the Management Module Support for Message Passing Technology (MPT) based controllers could allow a local, unprivileged user to cause a denial of service, an information leak, or escalate their privileges. (CVE-2011-1494, CVE-2011-1495, Important) * Flaws in the AGPGART driver, and a flaw in agp_allocate_memory(), could allow a local user to cause a denial of service or escalate their privileges. (CVE-2011-1745, CVE-2011-2022, CVE-2011-1746, Important) * A flaw in the client-side NLM implementation could allow a local, unprivileged user to cause a denial of service. (CVE-2011-2491, Important) * A flaw in the Bluetooth implementation could allow a remote attacker to cause a denial of service or escalate their privileges. (CVE-2011-2497, Important) * Flaws in the netlink-based wireless configuration interface could allow a local user, who has the CAP_NET_ADMIN capability, to cause a denial of service or escalate their privileges on systems that have an active wireless interface. (CVE-2011-2517, Important) * The maximum file offset handling for ext4 file systems could allow a local, unprivileged user to cause a denial of service. (CVE-2011-2695, Important) * A local, unprivileged user could allocate large amounts of memory not visible to the OOM killer, causing a denial of service. (CVE-2010-4243, Moderate) * The proc file system could allow a local, unprivileged user to obtain sensitive information or possibly cause integrity issues. (CVE-2011-1020, Moderate) * A local, privileged user could possibly write arbitrary kernel memory via /sys/kernel/debug/acpi/custom_method. (CVE-2011-1021, Moderate) * Inconsistency in the methods for allocating and freeing NFSv4 ACL data CVE-2010-4250 fix caused a regression a flaw in next_pidmap() and inet_diag_bc_audit() flaws in the CAN implementation a race condition in the memory merging support a flaw in the taskstats subsystem and the way mapping expansions were handled could allow a local, unprivileged user to cause a denial of service. (CVE-2011-1090, CVE-2011-1479, CVE-2011-1593, CVE-2011-2213, CVE-2011-1598, CVE-2011-1748, CVE-2011-2183, CVE-2011-2484, CVE-2011-2496, Moderate) * A flaw in GRO could result in a denial of service when a malformed VLAN frame is received. (CVE-2011-1478, Moderate) * napi_reuse_skb() could be called on VLAN packets allowing an attacker on the local network to possibly trigger a denial of service. (CVE-2011-1576, Moderate) * A denial of service could occur if packets were received while the ipip or ip_gre module was being loaded. (CVE-2011-1767, CVE-2011-1768, Moderate) * Information leaks. (CVE-2011-1160, CVE-2011-2492, CVE-2011-2495, Low) * Flaws in the EFI GUID Partition Table implementation could allow a local attacker to cause a denial of service. (CVE-2011-1577, CVE-2011-1776, Low) * While a user has a CIFS share mounted that required successful authentication, a local, unprivileged user could mount that share without knowing the correct password if mount.cifs was setuid root. (CVE-2011-1585, Low) Red Hat would like to thank Dan Rosenberg for reporting CVE-2011-1770, CVE-2011-1494, CVE-2011-1495, CVE-2011-2497, and CVE-2011-2213 Vasiliy Kulikov of Openwall for reporting CVE-2011-1745, CVE-2011-2022, CVE-2011-1746, CVE-2011-2484, and CVE-2011-2495 Vasily Averin for reporting CVE-2011-2491 Brad Spengler for reporting CVE-2010-4243 Kees Cook for reporting CVE-2011-1020 Robert Swiecki for reporting CVE-2011-1593 and CVE-2011-2496 Oliver Hartkopp for reporting CVE-2011-1748 Andrea Righi for reporting CVE-2011-2183 Ryan Sweat for reporting CVE-2011-1478 and CVE-2011-1576 Peter Huewe for reporting CVE-2011-1160 Marek Kroemeke and Filip Palian for reporting CVE-2011-2492 and Timo Warns for reporting CVE-2011-1577 and CVE-2011-1776. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2011-1253.html Risk factor : High
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-4243 15619 http://www.exploit-db.com/exploits/15619 20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console http://www.securityfocus.com/archive/1/520102/100/0/threaded 42884 http://secunia.com/advisories/42884 45004 http://www.securityfocus.com/bid/45004 46397 http://secunia.com/advisories/46397 RHSA-2011:0017 http://www.redhat.com/support/errata/RHSA-2011-0017.html [linux-kernel] 20100827 [PATCH] exec argument expansion can inappropriately trigger OOM-killer http://lkml.org/lkml/2010/8/27/429 [linux-kernel] 20100830 Re: [PATCH] exec argument expansion can inappropriately trigger OOM-killer http://lkml.org/lkml/2010/8/29/206 http://lkml.org/lkml/2010/8/30/138 http://lkml.org/lkml/2010/8/30/378 [linux-kernel] 20101130 [PATCH 1/2] exec: make argv/envp memory visible to oom-killer http://linux.derkeiler.com/Mailing-Lists/Kernel/2010-11/msg13278.html [oss-security] 20101122 CVE request: kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads http://openwall.com/lists/oss-security/2010/11/22/6 [oss-security] 20101122 Re: CVE request: kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads http://openwall.com/lists/oss-security/2010/11/22/15 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=3c77f845722158206a7209c45ccddc264d19319c http://grsecurity.net/~spender/64bit_dos.c http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.37 http://www.vmware.com/security/advisories/VMSA-2011-0012.html https://bugzilla.redhat.com/show_bug.cgi?id=625688 linux-kernel-execve-dos(64700) https://exchange.xforce.ibmcloud.com/vulnerabilities/64700 Common Vulnerability Exposure (CVE) ID: CVE-2010-4526 42964 http://secunia.com/advisories/42964 45661 http://www.securityfocus.com/bid/45661 ADV-2011-0169 http://www.vupen.com/english/advisories/2011/0169 RHSA-2011:0163 http://www.redhat.com/support/errata/RHSA-2011-0163.html [oss-security] 20110104 CVE-2010-4526 kernel: sctp: a race between ICMP protocol unreachable and connect() http://www.openwall.com/lists/oss-security/2011/01/04/3 [oss-security] 20110104 Re: CVE-2010-4526 kernel: sctp: a race between ICMP protocol unreachable and connect() http://www.openwall.com/lists/oss-security/2011/01/04/13 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=50b5d6ad63821cea324a5a7a19854d4de1a0a819 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-4526 kernel-icmp-message-dos(64616) https://exchange.xforce.ibmcloud.com/vulnerabilities/64616 Common Vulnerability Exposure (CVE) ID: CVE-2011-1020 20110122 Proc filesystem and SUID-Binaries http://seclists.org/fulldisclosure/2011/Jan/421 43496 http://secunia.com/advisories/43496 46567 http://www.securityfocus.com/bid/46567 8107 http://securityreason.com/securityalert/8107 [linux-kernel] 20110207 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec https://lkml.org/lkml/2011/2/7/414 https://lkml.org/lkml/2011/2/7/474 [linux-kernel] 20110207 [SECURITY] /proc/$pid/ leaks contents across setuid exec https://lkml.org/lkml/2011/2/7/368 [linux-kernel] 20110208 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec https://lkml.org/lkml/2011/2/7/404 https://lkml.org/lkml/2011/2/7/466 [linux-kernel] 20110209 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec https://lkml.org/lkml/2011/2/10/21 https://lkml.org/lkml/2011/2/9/417 [oss-security] 20110224 CVE request: kernel: /proc/$pid/ leaks contents across setuid exec http://openwall.com/lists/oss-security/2011/02/24/18 [oss-security] 20110225 Re: CVE request: kernel: /proc/$pid/ leaks contents across setuid exec http://openwall.com/lists/oss-security/2011/02/25/2 http://www.halfdog.net/Security/2011/SuidBinariesAndProcInterface/ kernel-procpid-security-bypass(65693) https://exchange.xforce.ibmcloud.com/vulnerabilities/65693 Common Vulnerability Exposure (CVE) ID: CVE-2011-1021 [oss-security] 20110225 Re: CVE request: kernel: /sys/kernel/debug/acpi/custom_method can bypass module restrictions http://www.openwall.com/lists/oss-security/2011/02/25/5 http://ftp.osuosl.org/pub/linux/kernel/v3.0/ChangeLog-3.0 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=526b4af47f44148c9d665e57723ed9f86634c6e3 https://bugzilla.redhat.com/show_bug.cgi?id=680841 https://github.com/torvalds/linux/commit/526b4af47f44148c9d665e57723ed9f86634c6e3 Common Vulnerability Exposure (CVE) ID: CVE-2011-1090 1025336 http://securitytracker.com/id?1025336 SUSE-SU-2015:0812 http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html [oss-security] 20110307 CVE request - kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab http://openwall.com/lists/oss-security/2011/03/07/2 [oss-security] 20110307 Re: CVE request - kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab http://openwall.com/lists/oss-security/2011/03/07/12 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=e9e3d724e2145f5039b423c290ce2b2c3d8f94bc http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38 https://bugzilla.redhat.com/show_bug.cgi?id=682641 Common Vulnerability Exposure (CVE) ID: CVE-2011-1160 [oss-security] 20110315 Re: CVE requests - kernel: tpm infoleaks http://www.openwall.com/lists/oss-security/2011/03/15/13 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1309d7afbed112f0e8e90be9af975550caa0076b https://bugzilla.redhat.com/show_bug.cgi?id=684671 https://github.com/torvalds/linux/commit/1309d7afbed112f0e8e90be9af975550caa0076b Common Vulnerability Exposure (CVE) ID: CVE-2011-1478 8480 http://securityreason.com/securityalert/8480 [oss-security] 20110328 CVE-2011-1478 kernel: gro: reset dev and skb_iff on skb reuse http://openwall.com/lists/oss-security/2011/03/28/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=66c46d741e2e60f0e8b625b80edb0ab820c46d7a http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6d152e23ad1a7a5b40fef1f42e017d66e6115159 http://mirror.anl.gov/pub/linux/kernel/v2.6/ChangeLog-2.6.38 https://bugzilla.redhat.com/show_bug.cgi?id=691270 Common Vulnerability Exposure (CVE) ID: CVE-2011-1479 [oss-security] 20110411 Re: CVE request: kernel: inotify memory leak http://www.openwall.com/lists/oss-security/2011/04/11/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d0de4dc584ec6aa3b26fffea320a8457827768fc https://bugzilla.redhat.com/show_bug.cgi?id=691793 https://github.com/torvalds/linux/commit/d0de4dc584ec6aa3b26fffea320a8457827768fc Common Vulnerability Exposure (CVE) ID: CVE-2011-1494 47185 http://www.securityfocus.com/bid/47185 RHSA-2011:0833 http://rhn.redhat.com/errata/RHSA-2011-0833.html [linux-kernel] 20110405 [PATCH] drivers/scsi/mpt2sas: prevent heap overflows and unchecked reads http://lkml.org/lkml/2011/4/5/327 [oss-security] 20110405 CVE request: kernel: two issues in mpt2sas http://openwall.com/lists/oss-security/2011/04/05/32 [oss-security] 20110406 Re: CVE request: kernel: two issues in mpt2sas http://openwall.com/lists/oss-security/2011/04/06/2 http://downloads.avaya.com/css/P8/documents/100145416 https://bugzilla.redhat.com/show_bug.cgi?id=694021 https://patchwork.kernel.org/patch/688021/ Common Vulnerability Exposure (CVE) ID: CVE-2011-1495 Common Vulnerability Exposure (CVE) ID: CVE-2011-1576 1025853 http://www.securitytracker.com/id?1025853 48907 http://www.securityfocus.com/bid/48907 RHSA-2011:0927 http://rhn.redhat.com/errata/RHSA-2011-0927.html RHSA-2011:1090 http://www.redhat.com/support/errata/RHSA-2011-1090.html RHSA-2011:1106 http://www.redhat.com/support/errata/RHSA-2011-1106.html https://bugzilla.redhat.com/show_bug.cgi?id=695173 Common Vulnerability Exposure (CVE) ID: CVE-2011-1577 1025355 http://securitytracker.com/id?1025355 20110413 [PRE-SA-2011-03] Denial-of-service vulnerability in EFI partition handling code of the Linux kernel http://www.securityfocus.com/archive/1/517477/100/0/threaded 47343 http://www.securityfocus.com/bid/47343 8238 http://securityreason.com/securityalert/8238 FEDORA-2011-7823 http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061236.html [mm-commits] 20110412 + fs-partitions-efic-corrupted-guid-partition-tables-can-cause-kernel-oops.patch added to -mm tree http://www.spinics.net/lists/mm-commits/msg83274.html [oss-security] 20110412 CVE Request: kernel: fs/partitions: Corrupted GUID partition tables can cause kernel oops http://openwall.com/lists/oss-security/2011/04/12/17 [oss-security] 20110413 Re: CVE Request: kernel: fs/partitions: Corrupted GUID partition tables can cause kernel oops http://openwall.com/lists/oss-security/2011/04/13/1 https://bugzilla.redhat.com/show_bug.cgi?id=695976 kernel-guid-dos(66773) https://exchange.xforce.ibmcloud.com/vulnerabilities/66773 Common Vulnerability Exposure (CVE) ID: CVE-2011-1585 [oss-security] 20110415 Re: CVE Request: cifs session reuse http://www.openwall.com/lists/oss-security/2011/04/15/8 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=4ff67b720c02c36e54d55b88c2931879b7db1cd2 https://bugzilla.redhat.com/show_bug.cgi?id=697394 https://github.com/torvalds/linux/commit/4ff67b720c02c36e54d55b88c2931879b7db1cd2 Common Vulnerability Exposure (CVE) ID: CVE-2011-1593 1025420 http://securitytracker.com/id?1025420 44164 http://secunia.com/advisories/44164 47497 http://www.securityfocus.com/bid/47497 USN-1146-1 http://www.ubuntu.com/usn/USN-1146-1 [linux-kernel] 20110418 Re: Kernel panic (NULL ptr deref?) in find_ge_pid()/next_pidmap() (via sys_getdents or sys_readdir) http://groups.google.com/group/fa.linux.kernel/msg/4a28ecb7f755a88d?dmode=source [oss-security] 20110419 CVE request -- kernel: proc: signedness issue in next_pidmap() http://openwall.com/lists/oss-security/2011/04/19/1 [oss-security] 20110420 Re: CVE request -- kernel: proc: signedness issue in next_pidmap() http://openwall.com/lists/oss-security/2011/04/20/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c78193e9c7bcbf25b8237ad0dec82f805c4ea69b http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d8bdc59f215e62098bc5b4256fd9928bf27053a1 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38.4 https://bugzilla.redhat.com/show_bug.cgi?id=697822 kernel-nextpidmap-dos(66876) https://exchange.xforce.ibmcloud.com/vulnerabilities/66876 Common Vulnerability Exposure (CVE) ID: CVE-2011-1598 47503 http://www.securityfocus.com/bid/47503 [netdev] 20110420 Add missing socket check in can/bcm release. http://permalink.gmane.org/gmane.linux.network/192898 [oss-security] 20110420 CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/20/2 [oss-security] 20110420 Re: CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/20/6 [oss-security] 20110421 Re: CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/20/7 http://openwall.com/lists/oss-security/2011/04/21/1 http://openwall.com/lists/oss-security/2011/04/21/2 http://openwall.com/lists/oss-security/2011/04/21/7 [oss-security] 20110422 Re: CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/22/2 [oss-security] 20110425 Re: CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/25/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c6914a6f261aca0c9f715f883a353ae7ff51fe83 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.39-rc6 https://bugzilla.redhat.com/show_bug.cgi?id=698057 Common Vulnerability Exposure (CVE) ID: CVE-2011-1745 47534 http://www.securityfocus.com/bid/47534 [linux-kernel] 20110414 [PATCH] char: agp: fix arbitrary kernel memory writes https://lkml.org/lkml/2011/4/14/293 [oss-security] 20110421 CVE request: kernel: buffer overflow and DoS issues in agp http://openwall.com/lists/oss-security/2011/04/21/4 [oss-security] 20110422 Re: CVE request: kernel: buffer overflow and DoS issues in agp http://openwall.com/lists/oss-security/2011/04/22/7 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=194b3da873fd334ef183806db751473512af29ce http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38.5 https://bugzilla.redhat.com/show_bug.cgi?id=698996 Common Vulnerability Exposure (CVE) ID: CVE-2011-1746 47535 http://www.securityfocus.com/bid/47535 [linux-kernel] 20110414 [PATCH] char: agp: fix OOM and buffer overflow https://lkml.org/lkml/2011/4/14/294 [linux-kernel] 20110419 Re: [PATCH] char: agp: fix OOM and buffer overflow https://lkml.org/lkml/2011/4/19/400 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b522f02184b413955f3bc952e3776ce41edc6355 https://bugzilla.redhat.com/show_bug.cgi?id=698998 Common Vulnerability Exposure (CVE) ID: CVE-2011-1748 47835 http://www.securityfocus.com/bid/47835 [netdev] 20110420 [PATCH v2] can: add missing socket check in can/raw release http://permalink.gmane.org/gmane.linux.network/192974 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=10022a6c66e199d8f61d9044543f38785713cbbd Common Vulnerability Exposure (CVE) ID: CVE-2011-1767 [oss-security] 20110505 Re: CVE requests - kernel network vulns http://www.openwall.com/lists/oss-security/2011/05/05/6 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.34 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c2892f02712e9516d72841d5c019ed6916329794 https://bugzilla.redhat.com/show_bug.cgi?id=702303 https://github.com/torvalds/linux/commit/c2892f02712e9516d72841d5c019ed6916329794 Common Vulnerability Exposure (CVE) ID: CVE-2011-1768 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d5aa407f59f5b83d2c50ec88f5bf56d40f1f8978 https://github.com/torvalds/linux/commit/d5aa407f59f5b83d2c50ec88f5bf56d40f1f8978 Common Vulnerability Exposure (CVE) ID: CVE-2011-1770 1025592 http://www.securitytracker.com/id?1025592 44932 http://secunia.com/advisories/44932 47769 http://www.securityfocus.com/bid/47769 8286 http://securityreason.com/securityalert/8286 FEDORA-2011-7551 http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061366.html [linux-kernel] 20110506 Re: [PATCH] dccp: handle invalid feature options length http://marc.info/?l=linux-kernel&m=130469305815140&w=2 [linux-kernel] 20110506 [PATCH] dccp: handle invalid feature options length http://marc.info/?l=linux-kernel&m=130468845209036&w=2 http://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.33/ChangeLog-2.6.33.14 https://bugzilla.redhat.com/show_bug.cgi?id=703011 Common Vulnerability Exposure (CVE) ID: CVE-2011-1776 47796 http://www.securityfocus.com/bid/47796 8369 http://securityreason.com/securityalert/8369 [oss-security] 20110510 Re: CVE request: kernel: validate size of EFI GUID partition entries http://openwall.com/lists/oss-security/2011/05/10/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fa039d5f6b126fbd65eefa05db2f67e44df8f121 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39 http://www.pre-cert.de/advisories/PRE-SA-2011-04.txt https://bugzilla.redhat.com/show_bug.cgi?id=703026 Common Vulnerability Exposure (CVE) ID: CVE-2011-2022 BugTraq ID: 47843 http://www.securityfocus.com/bid/47843 RedHat Security Advisories: RHSA-2011:0927 Common Vulnerability Exposure (CVE) ID: CVE-2011-2183 [oss-security] 20110606 Re: CVE request: kernel: ksm: race between ksmd and exiting task http://www.openwall.com/lists/oss-security/2011/06/06/1 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.3 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=2b472611a32a72f4a118c069c2d62a1a3f087afd https://bugzilla.redhat.com/show_bug.cgi?id=710338 https://github.com/torvalds/linux/commit/2b472611a32a72f4a118c069c2d62a1a3f087afd Common Vulnerability Exposure (CVE) ID: CVE-2011-2213 HPSBGN02970 http://marc.info/?l=bugtraq&m=139447903326211&w=2 [netdev] 20110601 Re: inet_diag insufficient validation? http://article.gmane.org/gmane.linux.network/197208 [netdev] 20110601 inet_diag insufficient validation? http://article.gmane.org/gmane.linux.network/197206 [netdev] 20110603 Re: inet_diag insufficient validation? http://article.gmane.org/gmane.linux.network/197386 [netdev] 20110617 [PATCH] inet_diag: fix inet_diag_bc_audit() http://article.gmane.org/gmane.linux.network/198809 [oss-security] 20110620 CVE request: kernel: inet_diag: fix inet_diag_bc_audit() http://www.openwall.com/lists/oss-security/2011/06/20/1 [oss-security] 20110620 Re: CVE request: kernel: inet_diag: fix inet_diag_bc_audit() http://www.openwall.com/lists/oss-security/2011/06/20/13 http://www.openwall.com/lists/oss-security/2011/06/20/16 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=eeb1497277d6b1a0a34ed36b97e18f2bd7d6de0d http://patchwork.ozlabs.org/patch/100857/ http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.3 https://bugzilla.redhat.com/show_bug.cgi?id=714536 Common Vulnerability Exposure (CVE) ID: CVE-2011-2484 48383 http://www.securityfocus.com/bid/48383 [linux-kernel] 20110616 [PATCH] taskstats: don't allow duplicate entries in listener mode http://lists.openwall.net/linux-kernel/2011/06/16/605 [oss-security] 20110622 CVE request: kernel: taskstats local DoS http://openwall.com/lists/oss-security/2011/06/22/1 [oss-security] 20110622 Re: CVE request: kernel: taskstats local DoS http://openwall.com/lists/oss-security/2011/06/22/2 https://bugzilla.redhat.com/show_bug.cgi?id=715436 kernel-taskstats-dos(68150) https://exchange.xforce.ibmcloud.com/vulnerabilities/68150 Common Vulnerability Exposure (CVE) ID: CVE-2011-2491 RHSA-2011:1212 http://rhn.redhat.com/errata/RHSA-2011-1212.html [oss-security] 20110623 Re: CVE request: kernel: NLM: Don't hang forever on NLM unlock requests http://www.openwall.com/lists/oss-security/2011/06/23/6 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=0b760113a3a155269a3fba93a409c640031dd68f https://bugzilla.redhat.com/show_bug.cgi?id=709393 https://github.com/torvalds/linux/commit/0b760113a3a155269a3fba93a409c640031dd68f Common Vulnerability Exposure (CVE) ID: CVE-2011-2492 1025778 http://securitytracker.com/id?1025778 [linux-bluetooth] 20110508 Bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace. http://permalink.gmane.org/gmane.linux.bluez.kernel/12909 [oss-security] 20110624 CVE request: kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace http://www.openwall.com/lists/oss-security/2011/06/24/2 [oss-security] 20110624 Re: CVE request: kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace http://www.openwall.com/lists/oss-security/2011/06/24/3 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8d03e971cf403305217b8e62db3a2e5ad2d6263f http://www.kernel.org/pub/linux/kernel/v3.0/testing/ChangeLog-3.0-rc4 https://bugzilla.redhat.com/show_bug.cgi?id=703019 Common Vulnerability Exposure (CVE) ID: CVE-2011-2495 [oss-security] 20110627 Re: CVE request: kernel: taskstats/procfs io infoleak http://www.openwall.com/lists/oss-security/2011/06/27/1 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1d1221f375c94ef961ba8574ac4f85c8870ddd51 https://bugzilla.redhat.com/show_bug.cgi?id=716825 https://github.com/torvalds/linux/commit/1d1221f375c94ef961ba8574ac4f85c8870ddd51 Common Vulnerability Exposure (CVE) ID: CVE-2011-2496 [oss-security] 20110627 Re: CVE request: kernel: mm: avoid wrapping vm_pgoff in mremap() and stack expansions http://www.openwall.com/lists/oss-security/2011/06/27/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=982134ba62618c2d69fbbbd166d0a11ee3b7e3d8 https://bugzilla.redhat.com/show_bug.cgi?id=716538 https://github.com/torvalds/linux/commit/982134ba62618c2d69fbbbd166d0a11ee3b7e3d8 Common Vulnerability Exposure (CVE) ID: CVE-2011-2497 48472 http://www.securityfocus.com/bid/48472 74679 http://www.osvdb.org/74679 8359 http://securityreason.com/securityalert/8359 [linux-kernel] 20110624 [PATCH] Bluetooth: Prevent buffer overflow in l2cap config request http://marc.info/?l=linux-kernel&m=130891911909436&w=2 [oss-security] 20110624 CVE request: kernel: remote buffer overflow in bluetooth http://www.openwall.com/lists/oss-security/2011/06/24/9 [oss-security] 20110627 Re: CVE request: kernel: remote buffer overflow in bluetooth http://www.openwall.com/lists/oss-security/2011/06/27/3 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7ac28817536797fd40e9646452183606f9e17f71 http://www.kernel.org/pub/linux/kernel/v3.0/ChangeLog-3.0 https://bugzilla.redhat.com/show_bug.cgi?id=716805 Common Vulnerability Exposure (CVE) ID: CVE-2011-2517 [oss-security] 20110701 Re: CVE request: kernel: nl80211: missing check for valid SSID size in scan operations http://www.openwall.com/lists/oss-security/2011/07/01/4 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=208c72f4fe44fe09577e7975ba0e7fa0278f3d03 https://bugzilla.redhat.com/show_bug.cgi?id=718152 https://github.com/torvalds/linux/commit/208c72f4fe44fe09577e7975ba0e7fa0278f3d03 Common Vulnerability Exposure (CVE) ID: CVE-2011-2695 45193 http://secunia.com/advisories/45193 [linux-ext4] 20110603 [PATCH 1/2] ext4: Fix max file size and logical block counting of extent format file http://www.spinics.net/lists/linux-ext4/msg25697.html [oss-security] 20110715 CVE Request -- kernel: ext4: kernel panic when writing data to the last block of sparse file http://www.openwall.com/lists/oss-security/2011/07/15/7 [oss-security] 20110715 Re: CVE Request -- kernel: ext4: kernel panic when writing data to the last block of sparse file http://www.openwall.com/lists/oss-security/2011/07/15/8 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f17722f917b2f21497deb6edc62fb1683daa08e6 http://www.kernel.org/pub/linux/kernel/v3.0/testing/ChangeLog-3.0-rc5 https://bugzilla.redhat.com/show_bug.cgi?id=722557 Common Vulnerability Exposure (CVE) ID: CVE-2010-4250 [oss-security] 20101124 Re: CVE request: kernel: inotify memory leak http://www.openwall.com/lists/oss-security/2010/11/24/11 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.37 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a2ae4cc9a16e211c8a128ba10d22a85431f093ab https://bugzilla.redhat.com/show_bug.cgi?id=656830 https://github.com/torvalds/linux/commit/a2ae4cc9a16e211c8a128ba10d22a85431f093ab
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.