Test ID:	1.3.6.1.4.1.25623.1.0.122152
Category:	Oracle Linux Local Security Checks
Title:	Oracle: Security Advisory (ELSA-2011-2019)
Summary:	The remote host is missing an update for the 'kernel-uek, ofa-2.6.32-100.35.1.el5uek, ofa-2.6.32-100.35.1.el6uek' package(s) announced via the ELSA-2011-2019 advisory.
Description:	Summary: The remote host is missing an update for the 'kernel-uek, ofa-2.6.32-100.35.1.el5uek, ofa-2.6.32-100.35.1.el6uek' package(s) announced via the ELSA-2011-2019 advisory. Vulnerability Insight: [2.6.32-100.35.1.el6uek] - [net] dccp: handle invalid feature options length {CVE-2011-1770} - [net] can: add missing socket check in can/raw release {CVE-2011-1748} - [net] can: Add missing socket check in can/bcm release {CVE-2011-1598} Affected Software/OS: 'kernel-uek, ofa-2.6.32-100.35.1.el5uek, ofa-2.6.32-100.35.1.el6uek' package(s) on Oracle Linux 5, Oracle Linux 6. Solution: Please install the updated package(s). CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1598 47503 http://www.securityfocus.com/bid/47503 [netdev] 20110420 Add missing socket check in can/bcm release. http://permalink.gmane.org/gmane.linux.network/192898 [oss-security] 20110420 CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/20/2 [oss-security] 20110420 Re: CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/20/6 [oss-security] 20110421 Re: CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/20/7 http://openwall.com/lists/oss-security/2011/04/21/1 http://openwall.com/lists/oss-security/2011/04/21/2 http://openwall.com/lists/oss-security/2011/04/21/7 [oss-security] 20110422 Re: CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/22/2 [oss-security] 20110425 Re: CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/25/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c6914a6f261aca0c9f715f883a353ae7ff51fe83 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.39-rc6 https://bugzilla.redhat.com/show_bug.cgi?id=698057 Common Vulnerability Exposure (CVE) ID: CVE-2011-1748 47835 http://www.securityfocus.com/bid/47835 [netdev] 20110420 [PATCH v2] can: add missing socket check in can/raw release http://permalink.gmane.org/gmane.linux.network/192974 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=10022a6c66e199d8f61d9044543f38785713cbbd Common Vulnerability Exposure (CVE) ID: CVE-2011-1770 1025592 http://www.securitytracker.com/id?1025592 44932 http://secunia.com/advisories/44932 47769 http://www.securityfocus.com/bid/47769 8286 http://securityreason.com/securityalert/8286 FEDORA-2011-7551 http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061366.html FEDORA-2011-7823 http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061236.html [linux-kernel] 20110506 Re: [PATCH] dccp: handle invalid feature options length http://marc.info/?l=linux-kernel&m=130469305815140&w=2 [linux-kernel] 20110506 [PATCH] dccp: handle invalid feature options length http://marc.info/?l=linux-kernel&m=130468845209036&w=2 http://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.33/ChangeLog-2.6.33.14 https://bugzilla.redhat.com/show_bug.cgi?id=703011
Copyright	Copyright (C) 2015 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.