English | Deutsch | Español | Português
 UserID:
 Passwd:
new user
 About:   Dedicated  | Advanced  | Standard  | Recurring  | No Risk  | Desktop  | Basic  | Single  | Security Seal  | FAQ
  Price/Feature Summary  | Order  | New Vulnerabilities  | Confidentiality  | Vulnerability Search
 Vulnerability   
Search   
    Search 75096 CVE descriptions
and 39644 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.51190
Category:Red Hat Local Security Checks
Title:RedHat Security Advisory RHSA-2005:043
Summary:Redhat Security Advisory RHSA-2005:043
Description:
The remote host is missing updates announced in
advisory RHSA-2005:043.

The Linux kernel handles the basic functions of the operating system.

This advisory includes fixes for several security issues:

iSEC Security Research discovered a VMA handling flaw in the uselib(2)
system call of the Linux kernel. A local user could make use of this
flaw to gain elevated (root) privileges. The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the name CVE-2004-1235 to
this issue.

A flaw was discovered where an executable could cause a VMA overlap leading
to a crash. A local user could trigger this flaw by creating a carefully
crafted a.out binary on 32-bit systems or a carefully crafted ELF binary
on Itanium systems. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CVE-2005-0003 to this issue.

iSEC Security Research discovered a flaw in the page fault handler code
that could lead to local users gaining elevated (root) privileges on
multiprocessor machines. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CVE-2005-0001 to this issue. A patch
that coincidentally fixed this issue was committed to the Update 4 kernel
release in December 2004. Therefore Red Hat Enterprise Linux 3 kernels
provided by RHBA-2004:550 and subsequent updates are not vulnerable to
this issue.

A flaw in the system call filtering code in the audit subsystem included
in Red Hat Enterprise Linux 3 allowed a local user to cause a crash when
auditing was enabled. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CVE-2004-1237 to this issue.

Olaf Kirch discovered that the recent security fixes for cmsg_len handling
(CVE-2004-1016) broke 32-bit compatibility on 64-bit platforms such as
AMD64 and Intel EM64T. A patch to correct this issue is included.

A recent Internet Draft by Fernando Gont recommended that ICMP Source
Quench messages be ignored by hosts. A patch to ignore these messages is
included.

Note: The kernel-unsupported package contains various drivers and modules
that are unsupported and therefore might contain security problems that
have not been addressed.

All Red Hat Enterprise Linux 3 users are advised to upgrade their
kernels to the packages associated with their machine architectures
and configurations as listed in this erratum.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2005-043.html
http://marc.theaimsgroup.com/?m=109503896031720
http://www.isec.pl/vulnerabilities/isec-0021-uselib.txt
http://www.isec.pl/vulnerabilities/isec-0022-pagefault.txt

Risk factor : High
Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2004-1235
Bugtraq: 20050107 Linux kernel sys_uselib local root vulnerability (Google Search)
http://marc.theaimsgroup.com/?l=bugtraq&m=110512575901427&w=2
http://isec.pl/vulnerabilities/isec-0021-uselib.txt
Conectiva Linux advisory: CLA-2005:930
http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000930
Debian Security Information: DSA-1070 (Google Search)
http://www.debian.org/security/2006/dsa-1070
Debian Security Information: DSA-1067 (Google Search)
http://www.debian.org/security/2006/dsa-1067
Debian Security Information: DSA-1069 (Google Search)
http://www.debian.org/security/2006/dsa-1069
Debian Security Information: DSA-1082 (Google Search)
http://www.debian.org/security/2006/dsa-1082
http://www.securityfocus.com/advisories/7806
http://www.securityfocus.com/advisories/7805
https://bugzilla.fedora.us/show_bug.cgi?id=2336
http://www.mandriva.com/security/advisories?name=MDKSA-2005:022
http://www.redhat.com/support/errata/RHSA-2005-043.html
http://www.redhat.com/support/errata/RHSA-2005-092.html
http://www.redhat.com/support/errata/RHSA-2005-016.html
http://www.redhat.com/support/errata/RHSA-2005-017.html
SuSE Security Announcement: SUSE-SR:2005:001 (Google Search)
http://www.novell.com/linux/security/advisories/2005_01_sr.html
http://www.trustix.org/errata/2005/0001/
BugTraq ID: 12190
http://www.securityfocus.com/bid/12190
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9567
http://secunia.com/advisories/20162
http://secunia.com/advisories/20163
http://secunia.com/advisories/20202
http://secunia.com/advisories/20338
XForce ISS Database: linux-uselib-gain-privileges(18800)
http://xforce.iss.net/xforce/xfdb/18800
Common Vulnerability Exposure (CVE) ID: CVE-2004-1237
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11282
Common Vulnerability Exposure (CVE) ID: CVE-2005-0003
SuSE Security Announcement: SUSE-SA:2005:018 (Google Search)
http://www.novell.com/linux/security/advisories/2005_18_kernel.html
http://linux.bkbits.net:8080/linux-2.6/cset@41a6721cce-LoPqkzKXudYby_3TUmg
BugTraq ID: 12261
http://www.securityfocus.com/bid/12261
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9512
http://securitytracker.com/id?1012885
XForce ISS Database: linux-vma-gain-privileges(18886)
http://xforce.iss.net/xforce/xfdb/18886
Common Vulnerability Exposure (CVE) ID: CVE-2005-0001
Bugtraq: 20050112 Linux kernel i386 SMP page fault handler privilege escalation (Google Search)
http://marc.theaimsgroup.com/?l=bugtraq&m=110554694522719&w=2
http://lists.grok.org.uk/pipermail/full-disclosure/2005-January/030826.html
http://isec.pl/vulnerabilities/isec-0022-pagefault.txt
Bugtraq: 20050114 [USN-60-0] Linux kernel vulnerabilities (Google Search)
http://marc.theaimsgroup.com/?l=bugtraq&m=110581146702951&w=2
BugTraq ID: 12244
http://www.securityfocus.com/bid/12244
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10322
http://securitytracker.com/id?1012862
http://secunia.com/advisories/13822
XForce ISS Database: linux-fault-handler-gain-privileges(18849)
http://xforce.iss.net/xforce/xfdb/18849
Common Vulnerability Exposure (CVE) ID: CVE-2004-1016
http://isec.pl/vulnerabilities/isec-0019-scm.txt
SuSE Security Announcement: SUSE-SA:2004:044 (Google Search)
http://www.novell.com/linux/security/advisories/2004_44_kernel.html
http://marc.theaimsgroup.com/?l=bugtraq&m=110306397320336&w=2
http://www.redhat.com/support/errata/RHSA-2004-689.html
BugTraq ID: 11921
http://www.securityfocus.com/bid/11921
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11816
XForce ISS Database: linux-scmsend-dos(18483)
http://xforce.iss.net/xforce/xfdb/18483
CopyrightCopyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 39644 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

New User Registration
Email:
UserID:
Passwd:
Please email me your monthly newsletters, informing the latest services, improvements & surveys.
Please email me a vulnerability test announcement whenever a new test is added.
   Privacy
Registered User Login
 
UserID:   
Passwd:  

 Forgot userid or passwd?
Email/Userid:




Home | About Us | Contact Us | Partner Programs | Privacy | Mailing Lists | Abuse
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe | Whois

© 1998-2014 E-Soft Inc. All rights reserved.