Test ID:	1.3.6.1.4.1.25623.1.0.63056
Category:	Fedora Local Security Checks
Title:	Fedora Core 10 FEDORA-2008-11593 (kernel)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to kernel announced via advisory FEDORA-2008-11593. Update Information: Update kernel from version 2.6.27.7 to 2.6.27.9: http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.8 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.9 Also includes three critical fixes scheduled for 2.6.27.10 ChangeLog: * Tue Dec 16 2008 Chuck Ebbert 2.6.27.9-159 - Disable input beep feature in Intel HDA sound driver. * Tue Dec 16 2008 Chuck Ebbert 2.6.27.9-158 - Fix the CDROM door status patch right this time. (from rawhide) * Mon Dec 15 2008 John W. Linville 2.6.27.9-157 - iwlagn: fix RX skb alignment * Mon Dec 15 2008 Chuck Ebbert 2.6.27.9-156 - Revert -stable patch that causes suspend problems (L-K BZ 12149, 12155) * Sun Dec 14 2008 Chuck Ebbert 2.6.27.9-155 - Linux 2.6.27.9 * Sat Dec 13 2008 Tom spot Callaway 2.6.27.9-154.rc2 - pull patch from davem sparc-2.6 git branch to add ebus_dma.h * Sat Dec 13 2008 Tom spot Callaway 2.6.27.9-153.rc2 - Add scsi_esp_register to the search terms for modules.block so we pick up sun_esp.ko * Fri Dec 12 2008 Chuck Ebbert 2.6.27.9-152.rc2 - Enable input beep feature in Intel HDA sound driver. * Fri Dec 12 2008 Chuck Ebbert 2.6.27.9-151.rc2 - Linux 2.6.27.9-rc2 * Fri Dec 12 2008 Chuck Ebbert 2.6.27.9-150.rc1 - Fix VMI crash on boot introduced in 2.6.27.7 (#476062) * Fri Dec 12 2008 Chuck Ebbert 2.6.27.9-149.rc1 - Linux 2.6.27.9-rc1 - Linux 2.6.27.8 References: [ 1 ] Bug #473696 - CVE-2008-5079 Linux Kernel 'atm module' Local Denial of Service https://bugzilla.redhat.com/show_bug.cgi?id=473696 [ 2 ] Bug #472325 - CVE-2008-5182 kernel: fix inotify watch removal/umount races https://bugzilla.redhat.com/show_bug.cgi?id=472325 [ 3 ] Bug #473259 - CVE-2008-5300 kernel: fix soft lockups/OOM issues with unix socket garbage collector https://bugzilla.redhat.com/show_bug.cgi?id=473259 Solution: Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update kernel' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. http://www.securityspace.com/smysecure/catid.html?in=FEDORA-2008-11593 Risk factor : High CVSS Score: 6.9
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2008-5079 1021360 http://www.securitytracker.com/id?1021360 20081205 CVE-2008-5079: multiple listen()s on same socket corrupts the vcc table http://www.securityfocus.com/archive/1/498943/100/0/threaded 20081209 rPSA-2008-0332-1 kernel http://www.securityfocus.com/archive/1/499044/100/0/threaded 32676 http://www.securityfocus.com/bid/32676 32913 http://secunia.com/advisories/32913 33083 http://secunia.com/advisories/33083 33348 http://secunia.com/advisories/33348 33623 http://secunia.com/advisories/33623 33641 http://secunia.com/advisories/33641 33704 http://secunia.com/advisories/33704 33706 http://secunia.com/advisories/33706 33756 http://secunia.com/advisories/33756 33854 http://secunia.com/advisories/33854 34981 http://secunia.com/advisories/34981 4694 http://securityreason.com/securityalert/4694 DSA-1787 http://www.debian.org/security/2009/dsa-1787 FEDORA-2008-11618 https://www.redhat.com/archives/fedora-package-announce/2008-December/msg01358.html MDVSA-2009:032 http://www.mandriva.com/security/advisories?name=MDVSA-2009:032 RHSA-2009:0053 http://www.redhat.com/support/errata/RHSA-2009-0053.html RHSA-2009:0225 http://www.redhat.com/support/errata/RHSA-2009-0225.html SUSE-SA:2009:004 http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00006.html SUSE-SA:2009:008 http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00010.html SUSE-SA:2009:010 http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00003.html USN-714-1 https://usn.ubuntu.com/714-1/ USN-715-1 http://www.ubuntu.com/usn/usn-715-1 [linux-netdev] 20081204 [PATCH] ATM: CVE-2008-5079: multiple listen()s on same socket corrupts the vcc table http://marc.info/?l=linux-netdev&m=122841256115780&w=2 http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0332 https://issues.rpath.com/browse/RPL-2915 oval:org.mitre.oval:def:11288 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11288 Common Vulnerability Exposure (CVE) ID: CVE-2008-5182 BugTraq ID: 33503 http://www.securityfocus.com/bid/33503 Bugtraq: 20081209 rPSA-2008-0332-1 kernel (Google Search) Debian Security Information: DSA-1681 (Google Search) http://www.debian.org/security/2008/dsa-1681 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10584 http://secunia.com/advisories/32998 SuSE Security Announcement: SUSE-SA:2009:004 (Google Search) SuSE Security Announcement: SUSE-SA:2009:008 (Google Search) Common Vulnerability Exposure (CVE) ID: CVE-2008-5300 BugTraq ID: 32516 http://www.securityfocus.com/bid/32516 Bugtraq: 20100625 VMSA-2010-0010 ESX 3.5 third party update for Service Console kernel (Google Search) http://www.securityfocus.com/archive/1/512019/100/0/threaded http://marc.info/?l=linux-netdev&m=122721862313564&w=2 http://marc.info/?l=linux-netdev&m=122765505415944&w=2 http://osvdb.org/50272 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10283 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11427 http://www.redhat.com/support/errata/RHSA-2009-0014.html RedHat Security Advisories: RHSA-2009:1550 https://rhn.redhat.com/errata/RHSA-2009-1550.html http://secunia.com/advisories/33556 http://securityreason.com/securityalert/4673 XForce ISS Database: linux-kernel-sendmsg-dos(46943) https://exchange.xforce.ibmcloud.com/vulnerabilities/46943
Copyright	Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.