Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.52615
Category:Fedora Local Security Checks
Title:Fedora Core 3 FEDORA-2005-313 (kernel)
Summary:NOSUMMARY
Description:Description:

The remote host is missing an update to kernel
announced via advisory FEDORA-2005-313.

The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system. The kernel handles the basic functions
of the operating system: memory allocation, process allocation, device
input and output, etc.

This update rebases the kernel to the latest upstream stable release,
which fixes a number of security issues. Notably:
- CVE-2005-0210 : dst leak
- CVE-2005-0384 : ppp dos
- CVE-2005-0531 : Sign handling issues.
- CVE-2005-0400 : EXT2 information leak.
- CVE-2005-0449 : Remote oops.
- CVE-2005-0736 : Epoll overflow
- CVE-2005-0749 : ELF loader may kfree wrong memory.
- CVE-2005-0750 : Missing range checking in bluetooth
- CVE-2005-0767 : drm race in radeon
- CVE-2005-0815 : Corrupt isofs images could cause oops

Additionally, a large number of improvements have come from the
2.6.10 -> 2.6.11 transition.

This update requires you are running the latest udev package, and
also (if you are using SELinux) the latest selinux policy packages.

This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/

This update can also be installed with the Update Agent
you can
launch the Update Agent with the 'up2date' command.

Solution: Apply the appropriate updates.
http://www.fedoranews.org/blog/index.php?p=585

Risk factor : High

CVSS Score:
7.2

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2005-0210
BugTraq ID: 12816
http://www.securityfocus.com/bid/12816
Bugtraq: 20050315 [USN-95-1] Linux kernel vulnerabilities (Google Search)
http://marc.info/?l=bugtraq&m=111091402626556&w=2
Conectiva Linux advisory: CLA-2005:945
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000945
http://www.mandriva.com/security/advisories?name=MDKSA-2005:218
http://www.mandriva.com/security/advisories?name=MDKSA-2005:219
http://www.osvdb.org/14966
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10275
http://www.redhat.com/support/errata/RHSA-2005-366.html
http://rhn.redhat.com/errata/RHSA-2005-366.html
http://www.redhat.com/support/errata/RHSA-2005-663.html
http://rhn.redhat.com/errata/RHSA-2005-663.html
http://secunia.com/advisories/14295
http://secunia.com/advisories/17002
http://secunia.com/advisories/17826
SuSE Security Announcement: SUSE-SA:2005:018 (Google Search)
http://www.novell.com/linux/security/advisories/2005_18_kernel.html
http://www.vupen.com/english/advisories/2005/1878
Common Vulnerability Exposure (CVE) ID: CVE-2005-0384
BugTraq ID: 12810
http://www.securityfocus.com/bid/12810
Debian Security Information: DSA-1067 (Google Search)
http://www.debian.org/security/2006/dsa-1067
Debian Security Information: DSA-1069 (Google Search)
http://www.debian.org/security/2006/dsa-1069
Debian Security Information: DSA-1070 (Google Search)
http://www.debian.org/security/2006/dsa-1070
Debian Security Information: DSA-1082 (Google Search)
http://www.debian.org/security/2006/dsa-1082
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=152532
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9562
http://www.redhat.com/support/errata/RHSA-2005-283.html
http://www.redhat.com/support/errata/RHSA-2005-284.html
http://www.redhat.com/support/errata/RHSA-2005-293.html
http://secunia.com/advisories/20163
http://secunia.com/advisories/20202
http://secunia.com/advisories/20338
http://www.trustix.org/errata/2005/0009/
https://usn.ubuntu.com/95-1/
Common Vulnerability Exposure (CVE) ID: CVE-2005-0531
Conectiva Linux advisory: CLA-2005:930
http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000930
http://marc.info/?l=full-disclosure&m=110846727602817&w=2
http://www.guninski.com/where_do_you_want_billg_to_go_today_3.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10095
Common Vulnerability Exposure (CVE) ID: CVE-2005-0400
BugTraq ID: 12932
http://www.securityfocus.com/bid/12932
Bugtraq: 20050401 Information leak in the Linux kernel ext2 implementation (Google Search)
http://marc.info/?l=bugtraq&m=111238764720696&w=2
http://arkoon.net/advisories/ext2-make-empty-leak.txt
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10336
http://www.redhat.com/support/errata/RHSA-2006-0190.html
http://www.redhat.com/support/errata/RHSA-2006-0191.html
http://secunia.com/advisories/14713/
http://secunia.com/advisories/18684
https://usn.ubuntu.com/103-1/
XForce ISS Database: kernel-ext2-information-disclosure(19866)
https://exchange.xforce.ibmcloud.com/vulnerabilities/19866
Common Vulnerability Exposure (CVE) ID: CVE-2005-0449
BugTraq ID: 12598
http://www.securityfocus.com/bid/12598
Debian Security Information: DSA-1017 (Google Search)
http://www.debian.org/security/2006/dsa-1017
Debian Security Information: DSA-1018 (Google Search)
http://www.debian.org/security/2006/dsa-1018
http://oss.sgi.com/archives/netdev/2005-01/msg01036.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10753
http://secunia.com/advisories/19369
http://secunia.com/advisories/19374
http://secunia.com/advisories/19607
SGI Security Advisory: 20060402-01-U
ftp://patches.sgi.com/support/free/security/advisories/20060402-01-U
https://usn.ubuntu.com/82-1/
Common Vulnerability Exposure (CVE) ID: CVE-2005-0736
BugTraq ID: 12763
http://www.securityfocus.com/bid/12763
http://lists.grok.org.uk/pipermail/full-disclosure/2005-March/032314.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9870
Common Vulnerability Exposure (CVE) ID: CVE-2005-0749
BugTraq ID: 12935
http://www.securityfocus.com/bid/12935
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10640
http://www.redhat.com/support/errata/RHSA-2005-529.html
http://www.redhat.com/support/errata/RHSA-2005-551.html
XForce ISS Database: kernel-loadelflibrary-dos(19867)
https://exchange.xforce.ibmcloud.com/vulnerabilities/19867
Common Vulnerability Exposure (CVE) ID: CVE-2005-0750
BugTraq ID: 12911
http://www.securityfocus.com/bid/12911
Bugtraq: 20050327 local root security bug in linux >= 2.4.6 <= 2.4.30-rc1 and 2.6.x.y <= 2.6.11.5 (Google Search)
http://marc.info/?l=bugtraq&m=111204562102633&w=2
http://lists.grok.org.uk/pipermail/full-disclosure/2005-March/032913.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11719
XForce ISS Database: kernel-bluezsockcreate-integer-underflow(19844)
https://exchange.xforce.ibmcloud.com/vulnerabilities/19844
Common Vulnerability Exposure (CVE) ID: CVE-2005-0767
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10431
Common Vulnerability Exposure (CVE) ID: CVE-2005-0815
BugTraq ID: 12837
http://www.securityfocus.com/bid/12837
Bugtraq: 20050317 Linux ISO9660 handling flaws (Google Search)
http://www.securityfocus.com/archive/1/393590
http://www.mandriva.com/security/advisories?name=MDKSA-2006:072
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9307
XForce ISS Database: kernel-iso9660-filesystem(19741)
https://exchange.xforce.ibmcloud.com/vulnerabilities/19741
CopyrightCopyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.