Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2011-1532)

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.122036

Category: Oracle Linux Local Security Checks

Title: Oracle: Security Advisory (ELSA-2011-1532)

Summary: The remote host is missing an update for the 'kexec-tools' package(s) announced via the ELSA-2011-1532 advisory.

Description: Summary:
The remote host is missing an update for the 'kexec-tools' package(s) announced via the ELSA-2011-1532 advisory.

Vulnerability Insight:
[2.0.0-209.0.1.el6]
- Make sure '--allow-missing' is effective by adding to MKDUMPRD_ARGS in
kdump.sysconfig, kdump.sysconfig.i386, and kdump.sysconfig.x86_64 [12590865] [11678808]

[2.0.0-209]
- Improve debugfs mounting code, from Dave Young.
Resolve bug 748748.

[2.0.0-208]
- Search DUP firmware directory too, from Caspar Zhang.
Resolve bug 747233.

[2.0.0-207]
- Don't run kdump service on s390x, from Caspar Zhang.
Resolve bug 746207.

[2.0.0-206]
- Fix some security flaws, resolve bug 743165.

[2.0.0-205]
- Fix a scriptlet failure in fence-agents, resolve bug 739050.

[2.0.0-204]
- Add new config 'force_rebuild', resolve bug 598067.

[2.0.0-203]
- Warn users to use maxcpus=1 instead of nr_cpus=1 for older
kernels, resolve bug 727892.

[2.0.0-202]
- Pass 'noefi acpi_rsdp=X' to the second kernel, resolve bug 681796.

[2.0.0-201]
- Include patch 602 for rawbuild, resolve bug 708503.

[2.0.0-200]
- Remove the warning for reserved memory on x86, resolve BZ 731394.

[2.0.0-199]
- Add debug_mem_level debugging option, from Jan Stancek.
Resolve Bug 734528.

[2.0.0-198]
- Fix the error message on /etc/cluster_iface,
resolve bug 731236. From Ryan O'Hara.

[2.0.0-197]
- Add coordination between kdump and cluster fencing for long
kernel panic dumps, resolve bug 585332. From Ryan O'Hara.

[2.0.0-196]
- Use nr_cpus=1 instead of maxcpus=1 on x86, resolve Bug 725484.

[2.0.0-195]
- Fix segfault on ppc machine with 1TB memory, resolve Bug 709441.

[2.0.0-194]
- Specify kernel version for every modprobe, resolve Bug 719105.

[2.0.0-193]
- Don't handle raid device specially, resolve Bug 707805.

[2.0.0-192]
- Read mdadm.conf correctly, resolve Bug 707805.

[2.0.0-191]
- Use makedumpfile as default core_collector for ssh dump.
Resolve Bug 693025.

[2.0.0-190]
- Revert the previous patch, resolve Bug 701339.

[2.0.0-189]
- Disable THP in kdump kernel, resolve Bug 701339.

Affected Software/OS:
'kexec-tools' package(s) on Oracle Linux 6.

Solution:
Please install the updated package(s).

CVSS Score:
5.7

CVSS Vector:
AV:A/AC:M/Au:N/C:C/I:N/A:N

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2011-3588
RHSA-2011:1532
http://rhn.redhat.com/errata/RHSA-2011-1532.html
RHSA-2012:0152
http://rhn.redhat.com/errata/RHSA-2012-0152.html
https://bugzilla.redhat.com/show_bug.cgi?id=716439
Common Vulnerability Exposure (CVE) ID: CVE-2011-3589
Common Vulnerability Exposure (CVE) ID: CVE-2011-3590

Copyright Copyright (C) 2015 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.122036
Category:	Oracle Linux Local Security Checks
Title:	Oracle: Security Advisory (ELSA-2011-1532)
Summary:	The remote host is missing an update for the 'kexec-tools' package(s) announced via the ELSA-2011-1532 advisory.
Description:	Summary: The remote host is missing an update for the 'kexec-tools' package(s) announced via the ELSA-2011-1532 advisory. Vulnerability Insight: [2.0.0-209.0.1.el6] - Make sure '--allow-missing' is effective by adding to MKDUMPRD_ARGS in kdump.sysconfig, kdump.sysconfig.i386, and kdump.sysconfig.x86_64 [12590865] [11678808] [2.0.0-209] - Improve debugfs mounting code, from Dave Young. Resolve bug 748748. [2.0.0-208] - Search DUP firmware directory too, from Caspar Zhang. Resolve bug 747233. [2.0.0-207] - Don't run kdump service on s390x, from Caspar Zhang. Resolve bug 746207. [2.0.0-206] - Fix some security flaws, resolve bug 743165. [2.0.0-205] - Fix a scriptlet failure in fence-agents, resolve bug 739050. [2.0.0-204] - Add new config 'force_rebuild', resolve bug 598067. [2.0.0-203] - Warn users to use maxcpus=1 instead of nr_cpus=1 for older kernels, resolve bug 727892. [2.0.0-202] - Pass 'noefi acpi_rsdp=X' to the second kernel, resolve bug 681796. [2.0.0-201] - Include patch 602 for rawbuild, resolve bug 708503. [2.0.0-200] - Remove the warning for reserved memory on x86, resolve BZ 731394. [2.0.0-199] - Add debug_mem_level debugging option, from Jan Stancek. Resolve Bug 734528. [2.0.0-198] - Fix the error message on /etc/cluster_iface, resolve bug 731236. From Ryan O'Hara. [2.0.0-197] - Add coordination between kdump and cluster fencing for long kernel panic dumps, resolve bug 585332. From Ryan O'Hara. [2.0.0-196] - Use nr_cpus=1 instead of maxcpus=1 on x86, resolve Bug 725484. [2.0.0-195] - Fix segfault on ppc machine with 1TB memory, resolve Bug 709441. [2.0.0-194] - Specify kernel version for every modprobe, resolve Bug 719105. [2.0.0-193] - Don't handle raid device specially, resolve Bug 707805. [2.0.0-192] - Read mdadm.conf correctly, resolve Bug 707805. [2.0.0-191] - Use makedumpfile as default core_collector for ssh dump. Resolve Bug 693025. [2.0.0-190] - Revert the previous patch, resolve Bug 701339. [2.0.0-189] - Disable THP in kdump kernel, resolve Bug 701339. Affected Software/OS: 'kexec-tools' package(s) on Oracle Linux 6. Solution: Please install the updated package(s). CVSS Score: 5.7 CVSS Vector: AV:A/AC:M/Au:N/C:C/I:N/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-3588 RHSA-2011:1532 http://rhn.redhat.com/errata/RHSA-2011-1532.html RHSA-2012:0152 http://rhn.redhat.com/errata/RHSA-2012-0152.html https://bugzilla.redhat.com/show_bug.cgi?id=716439 Common Vulnerability Exposure (CVE) ID: CVE-2011-3589 Common Vulnerability Exposure (CVE) ID: CVE-2011-3590
Copyright	Copyright (C) 2015 Greenbone AG