Test ID:	1.3.6.1.4.1.25623.1.0.59765
Category:	Fedora Local Security Checks
Title:	Fedora Core 7 FEDORA-2007-1130 (kernel)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to kernel announced via advisory FEDORA-2007-1130. Update Information: Rebase kernel to 2.6.22.1: http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.1 Includes the CFS scheduler from upstream kernel 2.6.23. Users should update to the latest autofs package with this kernel or autofs will use excessive amounts of CPU time. CVE-2007-3642: The decode_choice function in net/netfilter/bf_conntrack_h323_asn1.c in the Linux kernel before 2.6.22 allows remote attackers to cause a denial of service (crash) via an encoded, out-of-range index value for a choice field, which triggers a NULL pointer dereference. Solution: Apply the appropriate updates. This update can be installed with the 'yum' update program. Use 'yum update package-name' at the command line. For more information, refer to 'Managing Software with yum,' available at http://docs.fedoraproject.org/yum/. http://www.securityspace.com/smysecure/catid.html?in=FEDORA-2007-1130 Risk factor : High CVSS Score: 7.8
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2007-3642 BugTraq ID: 24818 http://www.securityfocus.com/bid/24818 Debian Security Information: DSA-1356 (Google Search) http://www.debian.org/security/2007/dsa-1356 http://www.mandriva.com/security/advisories?name=MDKSA-2007:195 http://osvdb.org/37117 http://secunia.com/advisories/25955 http://secunia.com/advisories/26450 http://secunia.com/advisories/27212 http://www.ubuntu.com/usn/usn-510-1 http://www.vupen.com/english/advisories/2007/2466
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.