| Description: | Summary:
The remote host is missing an update for the 'kernel, ocfs2-2.6.18-92.1.6.0.2.el5, oracleasm-2.6.18-92.1.6.0.2.el5' package(s) announced via the ELSA-2008-0519 advisory.
Vulnerability Insight:
[2.6.18-92.1.6.0.2.el5]
- [NET] Add entropy support to e1000 and bnx2 (John Sobecki) [orabug 6045759]
- [splice] Fix bad unlock_page() in error case (Jens Axboe) [orabug 6263574]
- [dio] fix error-path crashes (Linus Torvalds) [orabug 6242289]
- [NET] fix netpoll race (Tina Yang) [orabugz 5791]
[2.6.18-92.1.6.el5]
- [x86] sanity checking for read_tsc on i386 (Brian Maly ) [447686 443435]
[2.6.18-92.1.5.el5]
- [x86_64] copy_user doesn't zero tail bytes on page fault (Vitaly Mayatskikh) [451275 451276] {CVE-2008-2729}
[2.6.18-92.1.4.el5]
- Revert: [misc] ttyS1 loses interrupt and stops transmitting (Simon McGrath ) [443071 440121]
[2.6.18-92.1.3.el5]
- [x86_64] fix possible data leaks in copy_from_user() routine (Anton Arapov ) [433944 433945] {CVE-2008-0598}
[2.6.18-92.1.2.el5]
- [misc] ttyS1 loses interrupt and stops transmitting (Simon McGrath ) [443071 440121]
- [net] DCCP sanity check feature length (Anton Arapov ) [447395 447396] {CVE-2008-2358}
- [misc] fix possible buffer overflow in ASN.1 parsing routine (Anton Arapov ) [444464 444465] {CVE-2008-1673}
Affected Software/OS:
'kernel, ocfs2-2.6.18-92.1.6.0.2.el5, oracleasm-2.6.18-92.1.6.0.2.el5' package(s) on Oracle Linux 5.
Solution:
Please install the updated package(s).
CVSS Score:
7.2
CVSS Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C
|
