English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 145615 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.52907
Category:Turbolinux Local Security Tests
Title:Turbolinux TLSA-2004-34 (kernel)
Summary:NOSUMMARY
Description:Description:

The remote host is missing an update to kernel
announced via advisory TLSA-2004-34.

The kernel package contains the Linux kernel -- the core of the Linux
operating system.

The following have been addressed:
- Numerous issues in the Linux ELF binary loader
- Issues relating to IDE DMA transfers which prevent installation on
machines with SiS chipsets using the SiS 962/963 IDE controller
- Null pointer dereferencing in the SG driver
- Kernel panic in the SG module caused by successive loading/unloading
of SCSI LLD kernel modules (i.e., successive calls to insmod/rmmod)
- Race condition in the usb-ehci module
- Deadlock condition in the memory manager with certain application-level
invocations of mutex_lock
- Quirks in the snd-intel8x0 module on some HP machines
- Kernel oops on USB CD devices
- A problem causing processes to be killed with Out of Memory errors

The following have been added/updated:
- 3c59x driver
- aic7xxx driver
- aic79xx driver
- ndisdriver (0.12) driver
- Support for 82597EX_LR by ixgb
- megaraid (v2.20.4.1) driver
- ext3 and xfs filesystem bug fixes and updates


Solution: Please use the turbopkg (zabom) tool to apply the update.
http://www.securityspace.com/smysecure/catid.html?in=TLSA-2004-34

Risk factor : High

CVSS Score:
7.2

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2004-1070
BugTraq ID: 11646
http://www.securityfocus.com/bid/11646
Debian Security Information: DSA-1067 (Google Search)
http://www.debian.org/security/2006/dsa-1067
Debian Security Information: DSA-1069 (Google Search)
http://www.debian.org/security/2006/dsa-1069
Debian Security Information: DSA-1070 (Google Search)
http://www.debian.org/security/2006/dsa-1070
Debian Security Information: DSA-1082 (Google Search)
http://www.debian.org/security/2006/dsa-1082
https://bugzilla.fedora.us/show_bug.cgi?id=2336
http://www.mandriva.com/security/advisories?name=MDKSA-2005:022
http://www.isec.pl/vulnerabilities/isec-0017-binfmt_elf.txt
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9450
http://www.redhat.com/support/errata/RHSA-2004-504.html
http://www.redhat.com/support/errata/RHSA-2004-505.html
http://www.redhat.com/support/errata/RHSA-2004-549.html
http://secunia.com/advisories/19607
http://secunia.com/advisories/20162
http://secunia.com/advisories/20163
http://secunia.com/advisories/20202
http://secunia.com/advisories/20338
SGI Security Advisory: 20060402-01-U
ftp://patches.sgi.com/support/free/security/advisories/20060402-01-U
XForce ISS Database: linux-elf-setuid-gain-privileges(18025)
https://exchange.xforce.ibmcloud.com/vulnerabilities/18025
Common Vulnerability Exposure (CVE) ID: CVE-2004-1071
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9917
http://www.redhat.com/support/errata/RHSA-2004-537.html
Common Vulnerability Exposure (CVE) ID: CVE-2004-1072
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11195
http://www.redhat.com/support/errata/RHSA-2005-275.html
Common Vulnerability Exposure (CVE) ID: CVE-2004-1073
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11503
http://www.redhat.com/support/errata/RHSA-2005-293.html
http://www.redhat.com/support/errata/RHSA-2006-0190.html
http://www.redhat.com/support/errata/RHSA-2006-0191.html
http://secunia.com/advisories/18684
Common Vulnerability Exposure (CVE) ID: CVE-2004-1074
BugTraq ID: 11754
http://www.securityfocus.com/bid/11754
Bugtraq: 20041216 [USN-39-1] Linux amd64 kernel vulnerability (Google Search)
http://marc.info/?l=bugtraq&m=110322596918807&w=2
Conectiva Linux advisory: CLA-2005:930
http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000930
http://marc.info/?l=linux-kernel&m=110021173607372&w=2
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9751
http://www.trustix.org/errata/2005/0001/
XForce ISS Database: linux-aout-binary-dos(18290)
https://exchange.xforce.ibmcloud.com/vulnerabilities/18290
CopyrightCopyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.