Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.53184
Category:Debian Local Security Checks
Title:Debian Security Advisory DSA 492-1 (iproute)
Summary:NOSUMMARY
Description:Description:
The remote host is missing an update to iproute
announced via advisory DSA 492-1.

Herbert Xu reported that local users could cause a denial of service
against iproute, a set of tools for controlling networking in Linux
kernels. iproute uses the netlink interface to communicate with the
kernel, but failed to verify that the messages it received came from
the kernel (rather than from other user processes).

For the current stable distribution (woody) this problem has been
fixed in version 20010824-8woody1.

For the unstable distribution (sid), this problem will be fixed soon.

We recommend that you update your iproute package.



Solution:
http://www.securityspace.com/smysecure/catid.html?in=DSA%20492-1

CVSS Score:
4.9

CVSS Vector:
AV:L/AC:L/Au:N/C:N/I:N/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2003-0856
Debian Security Information: DSA-492 (Google Search)
http://www.debian.org/security/2004/dsa-492
http://www.redhat.com/archives/fedora-announce-list/2004-May/msg00004.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10912
http://www.redhat.com/support/errata/RHSA-2003-316.html
http://www.redhat.com/support/errata/RHSA-2003-317.html
SuSE Security Announcement: SUSE-SR:2005:001 (Google Search)
http://www.novell.com/linux/security/advisories/2005_01_sr.html
CopyrightCopyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2022 E-Soft Inc. All rights reserved.