Test ID:	1.3.6.1.4.1.25623.1.0.880602
Category:	CentOS Local Security Checks
Title:	CentOS Update for kernel CESA-2010:0839 centos5 i386
Summary:	The remote host is missing an update for the 'kernel'; package(s) announced via the referenced advisory.
Description:	Summary: The remote host is missing an update for the 'kernel' package(s) announced via the referenced advisory. Vulnerability Insight: The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues: * A NULL pointer dereference flaw was found in the io_submit_one() function in the Linux kernel asynchronous I/O implementation. A local, unprivileged user could use this flaw to cause a denial of service. (CVE-2010-3066, Moderate) * A flaw was found in the xfs_ioc_fsgetxattr() function in the Linux kernel XFS file system implementation. A data structure in xfs_ioc_fsgetxattr() was not initialized properly before being copied to user-space. A local, unprivileged user could use this flaw to cause an information leak. (CVE-2010-3078, Moderate) * The exception fixup code for the __futex_atomic_op1, __futex_atomic_op2, and futex_atomic_cmpxchg_inatomic() macros replaced the LOCK prefix with a NOP instruction. A local, unprivileged user could use this flaw to cause a denial of service. (CVE-2010-3086, Moderate) * A flaw was found in the tcf_act_police_dump() function in the Linux kernel network traffic policing implementation. A data structure in tcf_act_police_dump() was not initialized properly before being copied to user-space. A local, unprivileged user could use this flaw to cause an information leak. (CVE-2010-3477, Moderate) * A missing upper bound integer check was found in the sys_io_submit() function in the Linux kernel asynchronous I/O implementation. A local, unprivileged user could use this flaw to cause an information leak. (CVE-2010-3067, Low) Red Hat would like to thank Tavis Ormandy for reporting CVE-2010-3066, CVE-2010-3086, and CVE-2010-3067, and Dan Rosenberg for reporting CVE-2010-3078. This update also fixes several bugs. Documentation for these bug fixes will be available shortly from the Technical Notes document linked to in the References section. Users should upgrade to these updated packages, which contain backported patches to correct these issues. The system must be rebooted for this update to take effect. Affected Software/OS: kernel on CentOS 5 Solution: Please install the updated packages. CVSS Score: 6.2 CVSS Vector: AV:L/AC:H/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-3066 1024708 http://securitytracker.com/id?1024708 20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console http://www.securityfocus.com/archive/1/520102/100/0/threaded 46397 http://secunia.com/advisories/46397 RHSA-2010:0839 http://www.redhat.com/support/errata/RHSA-2010-0839.html http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=87e2831c3fa39cbf6f7ab676bb5aef039b9659e2 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.23 http://www.vmware.com/security/advisories/VMSA-2011-0012.html https://bugzilla.redhat.com/show_bug.cgi?id=631716 Common Vulnerability Exposure (CVE) ID: CVE-2010-3067 42778 http://secunia.com/advisories/42778 42801 http://secunia.com/advisories/42801 42890 http://secunia.com/advisories/42890 43291 http://secunia.com/advisories/43291 ADV-2011-0012 http://www.vupen.com/english/advisories/2011/0012 ADV-2011-0298 http://www.vupen.com/english/advisories/2011/0298 ADV-2011-0375 http://www.vupen.com/english/advisories/2011/0375 DSA-2126 http://www.debian.org/security/2010/dsa-2126 MDVSA-2010:257 http://www.mandriva.com/security/advisories?name=MDVSA-2010:257 MDVSA-2011:029 http://www.mandriva.com/security/advisories?name=MDVSA-2011:029 MDVSA-2011:051 http://www.mandriva.com/security/advisories?name=MDVSA-2011:051 RHSA-2010:0758 http://www.redhat.com/support/errata/RHSA-2010-0758.html RHSA-2010:0779 http://www.redhat.com/support/errata/RHSA-2010-0779.html RHSA-2011:0007 http://www.redhat.com/support/errata/RHSA-2011-0007.html SUSE-SA:2010:060 http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00004.html SUSE-SA:2011:001 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00000.html SUSE-SA:2011:002 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00001.html SUSE-SA:2011:007 http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html SUSE-SA:2011:008 http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00002.html USN-1000-1 http://www.ubuntu.com/usn/USN-1000-1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=75e1c70fc31490ef8a373ea2a4bea2524099b478 http://www.kernel.org/pub/linux/kernel/v2.6/next/patch-v2.6.36-rc4-next-20100915.bz2 https://bugzilla.redhat.com/show_bug.cgi?id=629441 kernel-doiosubmit-dos(61884) https://exchange.xforce.ibmcloud.com/vulnerabilities/61884 Common Vulnerability Exposure (CVE) ID: CVE-2010-3078 1024418 http://securitytracker.com/id?1024418 41284 http://secunia.com/advisories/41284 41512 http://secunia.com/advisories/41512 43022 http://www.securityfocus.com/bid/43022 ADV-2010-2430 http://www.vupen.com/english/advisories/2010/2430 SUSE-SA:2010:041 http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00005.html SUSE-SA:2010:050 http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00003.html SUSE-SA:2010:054 http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00000.html [oss-security] 20100907 CVE request: kernel: xfs: XFS_IOC_FSGETXATTR ioctl memory leak http://www.openwall.com/lists/oss-security/2010/09/07/1 [oss-security] 20100907 Re: CVE request: kernel: xfs: XFS_IOC_FSGETXATTR ioctl memory leak http://www.openwall.com/lists/oss-security/2010/09/07/12 [xfs-masters] 20100906 [PATCH] xfs: prevent reading uninitialized stack memory http://www.linux.sgi.com/archives/xfs-masters/2010-09/msg00002.html http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a122eb2fdfd78b58c6dd992d6f4b1aaef667eef9 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.36-rc4 https://bugzilla.redhat.com/show_bug.cgi?id=630804 Common Vulnerability Exposure (CVE) ID: CVE-2010-3086 1024709 http://securitytracker.com/id?1024709 [oss-security] 20101110 CVE-2010-3086 kernel panic via futex http://marc.info/?l=oss-security&m=128935856605589&w=2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=9d55b9923a1b7ea8193b8875c57ec940dc2ff027 http://kerneltrap.org/mailarchive/linux-kernel/2008/2/6/752194/thread http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25 https://bugzilla.redhat.com/show_bug.cgi?id=429412 https://bugzilla.redhat.com/show_bug.cgi?id=633170 Common Vulnerability Exposure (CVE) ID: CVE-2010-3477 Bugtraq: 20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console (Google Search) Debian Security Information: DSA-2126 (Google Search) http://www.securitytracker.com/id?1024603 Common Vulnerability Exposure (CVE) ID: CVE-2010-2963 BugTraq ID: 44242 http://www.securityfocus.com/bid/44242 http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052513.html http://www.outflux.net/blog/archives/2010/10/19/cve-2010-2963-v4l-compat-exploit/ http://www.securitytracker.com/id?1024710 http://secunia.com/advisories/42745 SuSE Security Announcement: SUSE-SA:2010:053 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00008.html SuSE Security Announcement: SUSE-SA:2010:057 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00004.html http://www.vupen.com/english/advisories/2010/3321
Copyright	Copyright (C) 2011 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.