Red Hat Local Security Checks : RedHat Update for kernel RHSA-2013:0830-01

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.870993

Categoría: Red Hat Local Security Checks

Título: RedHat Update for kernel RHSA-2013:0830-01

Resumen: The remote host is missing an update for the 'kernel'; package(s) announced via the referenced advisory.

Descripción: Summary:
The remote host is missing an update for the 'kernel'
package(s) announced via the referenced advisory.

Vulnerability Insight:
The kernel packages contain the Linux kernel, the core of any Linux
operating system.

This update fixes the following security issue:

* It was found that the Red Hat Enterprise Linux 6.1 kernel update
(RHSA-2011:0542) introduced an integer conversion issue in the Linux
kernel's Performance Events implementation. This led to a user-supplied
index into the perf_swevent_enabled array not being validated properly,
resulting in out-of-bounds kernel memory access. A local, unprivileged user
could use this flaw to escalate their privileges. (CVE-2013-2094,
Important)

A public exploit that affects Red Hat Enterprise Linux 6 is available.

Refer to Red Hat Knowledge Solution 373743, linked to in the References,
for further information and mitigation instructions for users who are
unable to immediately apply this update.

Users should upgrade to these updated packages, which contain a backported
patch to correct this issue. The system must be rebooted for this update to
take effect.

4. Solution:

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at the references.

To install kernel packages manually, use rpm -ivh [package]. Do not
use rpm -Uvh as that will remove the running kernel binaries from
your system. You may use rpm -e to remove old kernels after
determining that the new kernel functions properly on your system.

5. Bugs fixed:

962792 - CVE-2013-2094 kernel: perf_swevent_enabled array out-of-bound access

Description truncated, please see the referenced URL(s) for more information.

Affected Software/OS:
kernel on Red Hat Enterprise Linux Desktop (v. 6),
Red Hat Enterprise Linux Server (v. 6),
Red Hat Enterprise Linux Workstation (v. 6)

Solution:
Please Install the Updated Packages.

CVSS Score:
7.2

CVSS Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2013-2094
33589
http://www.exploit-db.com/exploits/33589
93361
http://www.osvdb.org/93361
MDVSA-2013:176
http://www.mandriva.com/security/advisories?name=MDVSA-2013:176
RHSA-2013:0830
http://rhn.redhat.com/errata/RHSA-2013-0830.html
SUSE-SU-2013:0819
http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00008.html
USN-1825-1
http://www.ubuntu.com/usn/USN-1825-1
USN-1826-1
http://www.ubuntu.com/usn/USN-1826-1
USN-1827-1
http://www.ubuntu.com/usn/USN-1827-1
USN-1828-1
http://www.ubuntu.com/usn/USN-1828-1
USN-1836-1
http://www.ubuntu.com/usn/USN-1836-1
USN-1838-1
http://www.ubuntu.com/usn/USN-1838-1
[CentOS-announce] 20130515 CentOS-6 CVE-2013-2094 Kernel Issue
http://lists.centos.org/pipermail/centos-announce/2013-May/019729.html
[CentOS-announce] 20130517 CESA-2013:0830 Important CentOS 6 kernel Update
http://lists.centos.org/pipermail/centos-announce/2013-May/019733.html
[linux-kernel] 20130412 Re: sw_perf_event_destroy() oops while fuzzing
http://lkml.indiana.edu/hypermail/linux/kernel/1304.1/03976.html
[linux-kernel] 20130412 sw_perf_event_destroy() oops while fuzzing
http://lkml.indiana.edu/hypermail/linux/kernel/1304.1/03652.html
[linux-kernel] 20130413 Re: sw_perf_event_destroy() oops while fuzzing
http://lkml.indiana.edu/hypermail/linux/kernel/1304.1/04302.html
[oss-security] 20130514 Re: CVE Request: linux kernel perf out-of-bounds access
http://www.openwall.com/lists/oss-security/2013/05/14/6
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8176cced706b5e5d15887584150764894e94e02f
http://news.ycombinator.com/item?id=5703758
http://packetstormsecurity.com/files/121616/semtex.c
http://twitter.com/djrbliss/statuses/334301992648331267
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.8.9
http://www.reddit.com/r/netsec/comments/1eb9iw
https://bugzilla.redhat.com/show_bug.cgi?id=962792
https://github.com/torvalds/linux/commit/8176cced706b5e5d15887584150764894e94e02f
openSUSE-SU-2013:0847
http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00018.html
openSUSE-SU-2013:0925
http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00005.html
openSUSE-SU-2013:0951
http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00009.html
openSUSE-SU-2013:1042
http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00017.html

Copyright Copyright (C) 2013 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.870993
Categoría:	Red Hat Local Security Checks
Título:	RedHat Update for kernel RHSA-2013:0830-01
Resumen:	The remote host is missing an update for the 'kernel'; package(s) announced via the referenced advisory.
Descripción:	Summary: The remote host is missing an update for the 'kernel' package(s) announced via the referenced advisory. Vulnerability Insight: The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issue: * It was found that the Red Hat Enterprise Linux 6.1 kernel update (RHSA-2011:0542) introduced an integer conversion issue in the Linux kernel's Performance Events implementation. This led to a user-supplied index into the perf_swevent_enabled array not being validated properly, resulting in out-of-bounds kernel memory access. A local, unprivileged user could use this flaw to escalate their privileges. (CVE-2013-2094, Important) A public exploit that affects Red Hat Enterprise Linux 6 is available. Refer to Red Hat Knowledge Solution 373743, linked to in the References, for further information and mitigation instructions for users who are unable to immediately apply this update. Users should upgrade to these updated packages, which contain a backported patch to correct this issue. The system must be rebooted for this update to take effect. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at the references. To install kernel packages manually, use rpm -ivh [package]. Do not use rpm -Uvh as that will remove the running kernel binaries from your system. You may use rpm -e to remove old kernels after determining that the new kernel functions properly on your system. 5. Bugs fixed: 962792 - CVE-2013-2094 kernel: perf_swevent_enabled array out-of-bound access Description truncated, please see the referenced URL(s) for more information. Affected Software/OS: kernel on Red Hat Enterprise Linux Desktop (v. 6), Red Hat Enterprise Linux Server (v. 6), Red Hat Enterprise Linux Workstation (v. 6) Solution: Please Install the Updated Packages. CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2013-2094 33589 http://www.exploit-db.com/exploits/33589 93361 http://www.osvdb.org/93361 MDVSA-2013:176 http://www.mandriva.com/security/advisories?name=MDVSA-2013:176 RHSA-2013:0830 http://rhn.redhat.com/errata/RHSA-2013-0830.html SUSE-SU-2013:0819 http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00008.html USN-1825-1 http://www.ubuntu.com/usn/USN-1825-1 USN-1826-1 http://www.ubuntu.com/usn/USN-1826-1 USN-1827-1 http://www.ubuntu.com/usn/USN-1827-1 USN-1828-1 http://www.ubuntu.com/usn/USN-1828-1 USN-1836-1 http://www.ubuntu.com/usn/USN-1836-1 USN-1838-1 http://www.ubuntu.com/usn/USN-1838-1 [CentOS-announce] 20130515 CentOS-6 CVE-2013-2094 Kernel Issue http://lists.centos.org/pipermail/centos-announce/2013-May/019729.html [CentOS-announce] 20130517 CESA-2013:0830 Important CentOS 6 kernel Update http://lists.centos.org/pipermail/centos-announce/2013-May/019733.html [linux-kernel] 20130412 Re: sw_perf_event_destroy() oops while fuzzing http://lkml.indiana.edu/hypermail/linux/kernel/1304.1/03976.html [linux-kernel] 20130412 sw_perf_event_destroy() oops while fuzzing http://lkml.indiana.edu/hypermail/linux/kernel/1304.1/03652.html [linux-kernel] 20130413 Re: sw_perf_event_destroy() oops while fuzzing http://lkml.indiana.edu/hypermail/linux/kernel/1304.1/04302.html [oss-security] 20130514 Re: CVE Request: linux kernel perf out-of-bounds access http://www.openwall.com/lists/oss-security/2013/05/14/6 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8176cced706b5e5d15887584150764894e94e02f http://news.ycombinator.com/item?id=5703758 http://packetstormsecurity.com/files/121616/semtex.c http://twitter.com/djrbliss/statuses/334301992648331267 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.8.9 http://www.reddit.com/r/netsec/comments/1eb9iw https://bugzilla.redhat.com/show_bug.cgi?id=962792 https://github.com/torvalds/linux/commit/8176cced706b5e5d15887584150764894e94e02f openSUSE-SU-2013:0847 http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00018.html openSUSE-SU-2013:0925 http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00005.html openSUSE-SU-2013:0951 http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00009.html openSUSE-SU-2013:1042 http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00017.html
Copyright	Copyright (C) 2013 Greenbone AG