Test ID:	1.3.6.1.4.1.25623.1.0.56090
Category:	Fedora Local Security Checks
Title:	Fedora Core 4 FEDORA-2005-013 (kernel)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to kernel announced via advisory FEDORA-2005-013. This update fixes several low-priority security problems that were discovered during the development of 2.6.15, and backported. Notably, CVE-2005-4605. * Thu Jan 5 2006 Dave Jones [2.6.14-1.1656_FC4] - Rebuild. * Tue Jan 3 2006 Dave Jones [2.6.14-1.1655_FC4] - Small fixes from 2.6.15 sysctl: don't overflow the user-supplied buffer with '0' sysctl: make sure to terminate strings with a NUL Insanity avoidance in /proc * Sun Jan 1 2006 Dave Jones - Fix the ACPI whitelist date again. * Wed Dec 28 2005 Dave Jones - Tighten permissions on /proc/pid/smaps. (#176687) * Wed Dec 28 2005 Dave Jones [2.6.14-1.1654_FC4] - Fix usb storage oops. (#176576) - Fix ACPI owner_id limit. - Decrease stack usage in block layer. * Tue Dec 27 2005 Dave Jones - 2.6.14.5 - usbhid incorrectly claimed wacom penpartner tablet. (#161241) - Reinstate the y2k ACPI blacklist cutoff. It broke working suspend for apm users. * Fri Dec 16 2005 Dave Jones - Rebase to final 2.6.14.4 Solution: Apply the appropriate updates. This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/ This update can also be installed with the Update Agent you can launch the Update Agent with the 'up2date' command. http://www.securityspace.com/smysecure/catid.html?in=FEDORA-2005-013 Risk factor : Medium CVSS Score: 2.1
Cross-Ref:	BugTraq ID: 16284 Common Vulnerability Exposure (CVE) ID: CVE-2005-4605 16284 http://www.securityfocus.com/bid/16284 18216 http://secunia.com/advisories/18216 18351 http://secunia.com/advisories/18351 18510 http://secunia.com/advisories/18510 18527 http://secunia.com/advisories/18527 18788 http://secunia.com/advisories/18788 19038 http://secunia.com/advisories/19038 19374 http://secunia.com/advisories/19374 20051223 linux procfs vulnerablity http://marc.info/?l=full-disclosure&m=113535380422339&w=2 DSA-1017 http://www.debian.org/security/2006/dsa-1017 FLSA:157459-4 http://www.securityfocus.com/archive/1/427981/100/0/threaded MDKSA-2006:040 http://www.mandriva.com/security/advisories?name=MDKSA-2006:040 RHSA-2006:0101 http://www.redhat.com/support/errata/RHSA-2006-0101.html SUSE-SA:2006:006 http://www.novell.com/linux/security/advisories/2006_06_kernel.html SUSE-SA:2006:012 http://lists.suse.de/archive/suse-security-announce/2006-Feb/0010.html USN-244-1 https://usn.ubuntu.com/244-1/ http://linux.bkbits.net:8080/linux-2.6/cset%4043b562ae6hJGLWZA4TNf2k-RzXnVlQ http://linux.bkbits.net:8080/linux-2.6/gnupatch%4043b562ae6hJGLWZA4TNf2k-RzXnVlQ http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8b90db0df7187a01fb7177f1f812123138f562cf http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00014.html linux-procfs-information-disclosure(23811) https://exchange.xforce.ibmcloud.com/vulnerabilities/23811 oval:org.mitre.oval:def:11747 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11747
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.