Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.63828
Category:Red Hat Local Security Checks
Title:RedHat Security Advisory RHSA-2009:0427
Summary:NOSUMMARY
Description:Description:
The remote host is missing updates announced in
advisory RHSA-2009:0427.

udev provides a user-space API and implements a dynamic device directory,
providing only the devices present on the system. udev replaces devfs in
order to provide greater hot plug functionality. Netlink is a datagram
oriented service, used to transfer information between kernel modules and
user-space processes.

It was discovered that udev did not properly check the origin of Netlink
messages. A local attacker could use this flaw to gain root privileges via
a crafted Netlink message sent to udev, causing it to create a
world-writable block device file for an existing system block device (for
example, the root file system). (CVE-2009-1185)

Red Hat would like to thank Sebastian Krahmer of the SUSE Security Team for
responsibly reporting this flaw.

Users of udev are advised to upgrade to these updated packages, which
contain a backported patch to correct this issue. After installing the
update, the udevd daemon will be restarted automatically.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2009-0427.html
http://www.redhat.com/security/updates/classification/#important

CVSS Score:
7.2

CVSS Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2009-1185
BugTraq ID: 34536
http://www.securityfocus.com/bid/34536
Bugtraq: 20090417 rPSA-2009-0063-1 udev (Google Search)
http://www.securityfocus.com/archive/1/502752/100/0/threaded
Bugtraq: 20090711 VMSA-2009-0009 ESX Service Console updates for udev, sudo, and curl (Google Search)
http://www.securityfocus.com/archive/1/504849/100/0/threaded
Debian Security Information: DSA-1772 (Google Search)
http://www.debian.org/security/2009/dsa-1772
https://www.exploit-db.com/exploits/8572
https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00463.html
https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00462.html
http://www.gentoo.org/security/en/glsa/glsa-200904-18.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2009:103
http://www.mandriva.com/security/advisories?name=MDVSA-2009:104
http://wiki.rpath.com/wiki/Advisories:rPSA-2009-0063
https://launchpad.net/bugs/cve/2009-1185
http://lists.vmware.com/pipermail/security-announce/2009/000060.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10925
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5975
http://www.redhat.com/support/errata/RHSA-2009-0427.html
http://www.securitytracker.com/id?1022067
http://secunia.com/advisories/34731
http://secunia.com/advisories/34750
http://secunia.com/advisories/34753
http://secunia.com/advisories/34771
http://secunia.com/advisories/34776
http://secunia.com/advisories/34785
http://secunia.com/advisories/34787
http://secunia.com/advisories/34801
http://secunia.com/advisories/35766
http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.446399
SuSE Security Announcement: SUSE-SA:2009:020 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00006.html
SuSE Security Announcement: SUSE-SA:2009:025 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00012.html
http://www.ubuntu.com/usn/usn-758-1
http://www.vupen.com/english/advisories/2009/1053
http://www.vupen.com/english/advisories/2009/1865
CopyrightCopyright (c) 2009 E-Soft Inc. http://www.securityspace.com

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2021 E-Soft Inc. All rights reserved.