Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.57060
Category:Red Hat Local Security Checks
Title:RedHat Security Advisory RHSA-2006:0574
Summary:NOSUMMARY
Description:Description:

The remote host is missing updates announced in
advisory RHSA-2006:0574.

The Linux kernel handles the basic functions of the operating system.

During security research, Red Hat discovered a behavioral flaw in core dump
handling. A local user could create a program that would cause a core file
to be dumped into a directory they would not normally have permissions to
write to. This could lead to a denial of service (disk consumption), or
allow the local user to gain root privileges. (CVE-2006-2451)

Prior to applying this update, users can remove the ability to escalate
privileges using this flaw by configuring core files to dump to an absolute
location. By default, core files are created in the working directory of
the faulting application, but this can be overridden by specifying an
absolute location for core files in /proc/sys/kernel/core_pattern. To
avoid a potential denial of service, a separate partition for the core
files should be used.

All Red Hat Enterprise Linux 4 users are advised to upgrade their kernels
to the packages associated with their machine architectures and
configurations as listed in this erratum.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2006-0574.html
http://kbase.redhat.com/faq/FAQ_52_2890.shtm
http://www.redhat.com/security/updates/classification/#important

Risk factor : Medium

CVSS Score:
4.6

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2006-2451
BugTraq ID: 18874
http://www.securityfocus.com/bid/18874
Bugtraq: 20060707 rPSA-2006-0122-1 kernel (Google Search)
http://www.securityfocus.com/archive/1/439483/100/100/threaded
Bugtraq: 20060710 Re: rPSA-2006-0122-1 kernel (Google Search)
http://www.securityfocus.com/archive/1/439610/100/100/threaded
Bugtraq: 20060712 Linux Kernel 2.6.x PRCTL Core Dump Handling - Local r00t Exploit ( BID 18874 / CVE-2006-2451 ) (Google Search)
http://www.securityfocus.com/archive/1/439869/100/0/threaded
Bugtraq: 20060713 Linux sys_prctl LKM based hotfix (Google Search)
http://www.securityfocus.com/archive/1/440118/100/0/threaded
Bugtraq: 20060713 Re: [Full-disclosure] Re: Linux Kernel 2.6.x PRCTL Core Dump Handling - Local r00t Exploit ( BID 18874 / CVE-2006-2451 ) (Google Search)
http://www.securityfocus.com/archive/1/440117/100/0/threaded
Bugtraq: 20060714 Linux Kernel 2.6.x PRCTL Core Dump Handling -- Simple workaround (Google Search)
http://www.securityfocus.com/archive/1/440057/100/0/threaded
Bugtraq: 20060716 Re: Linux Kernel 2.6.x PRCTL Core Dump Handling -- Simple workaround (Google Search)
http://www.securityfocus.com/archive/1/440379/100/0/threaded
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=195902
http://www.osvdb.org/27030
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11336
http://www.redhat.com/support/errata/RHSA-2006-0574.html
http://securitytracker.com/id?1016451
http://secunia.com/advisories/20953
http://secunia.com/advisories/20960
http://secunia.com/advisories/20965
http://secunia.com/advisories/20986
http://secunia.com/advisories/20991
http://secunia.com/advisories/21179
http://secunia.com/advisories/21498
http://secunia.com/advisories/21966
SuSE Security Announcement: SUSE-SA:2006:042 (Google Search)
http://www.novell.com/linux/security/advisories/2006_42_kernel.html
SuSE Security Announcement: SUSE-SA:2006:047 (Google Search)
http://www.novell.com/linux/security/advisories/2006_47_kernel.html
SuSE Security Announcement: SUSE-SA:2006:049 (Google Search)
http://www.novell.com/linux/security/advisories/2006_49_kernel.html
SuSE Security Announcement: SUSE-SR:2006:016 (Google Search)
http://www.novell.com/linux/security/advisories/2006_16_sr.html
SuSE Security Announcement: SUSE-SR:2006:017 (Google Search)
http://www.novell.com/linux/security/advisories/2006_17_sr.html
http://www.ubuntu.com/usn/usn-311-1
http://www.vupen.com/english/advisories/2006/2699
CopyrightCopyright (c) 2006 E-Soft Inc. http://www.securityspace.com

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2021 E-Soft Inc. All rights reserved.