| Description: | Summary:
The remote host is missing an update for the 'kernel' package(s) announced via the SSA:2021-202-01 advisory.
Vulnerability Insight:
New kernel packages are available for Slackware 14.2 to fix a security issue.
Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
Wed Jul 21 05:30:44 UTC 2021
patches/packages/linux-4.4.276/*: Upgraded.
These updates fix various bugs and security issues, including the recently
announced local privilege escalation vulnerability in the filesystem layer
(CVE-2021-33909).
Be sure to upgrade your initrd after upgrading the kernel packages.
If you use lilo to boot your machine, be sure lilo.conf points to the correct
kernel and initrd and run lilo as root to update the bootloader.
If you use elilo to boot your machine, you should run eliloconfig to copy the
kernel and initrd to the EFI System Partition.
For more information, see:
[link moved to references]
Fixed in 4.4.262:
[links moved to references]
Fixed in 4.4.263:
[links moved to references]
Fixed in 4.4.264:
[link moved to references]
Fixed in 4.4.265:
[link moved to references]
Fixed in 4.4.266:
[link moved to references]
Fixed in 4.4.267:
[links moved to references]
Fixed in 4.4.269:
[links moved to references]
Fixed in 4.4.270:
[links moved to references]
Fixed in 4.4.271:
[links moved to references]
Fixed in 4.4.272:
[link moved to references]
... [Please see the references for more information on the vulnerabilities]
Affected Software/OS:
'kernel' package(s) on Slackware 14.2.
Solution:
Please install the updated package(s).
CVSS Score:
8.3
CVSS Vector:
AV:A/AC:L/Au:N/C:C/I:C/A:C
|
