7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
0.056 Low
EPSS
Percentile
93.2%
CentOS Errata and Security Advisory CESA-2007:0013-01
The Linux kernel handles the basic functions of the operating system.
These new kernel packages contain fixes for the security issues described
below:
a flaw in the ATM subsystem affecting systems with installed ATM hardware
and configured ATM support that allowed a remote user to cause a denial of
service (panic) by accessing socket buffer memory after it has been freed
(CVE-2006-4997, Moderate)
a flaw in the DVD handling of the CDROM driver that could be used
together with a custom built USB device to gain root privileges
(CVE-2006-2935, Moderate)
In addition to the security issues described above, the following bugs are
also addressed:
All Red Hat Enterprise Linux 2.1 users are advised to upgrade their kernels
to these updated packages, which contain backported fixes to correct these
issues.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2007-January/075641.html
Affected packages:
kernel
kernel-BOOT
kernel-debug
kernel-doc
kernel-enterprise
kernel-headers
kernel-smp
kernel-source
kernel-summit
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 2 | i386 | kernel-boot | < 2.4.9-e.71 | kernel-BOOT-2.4.9-e.71.i386.rpm |
CentOS | 2 | i386 | kernel-doc | < 2.4.9-e.71 | kernel-doc-2.4.9-e.71.i386.rpm |
CentOS | 2 | i386 | kernel-headers | < 2.4.9-e.71 | kernel-headers-2.4.9-e.71.i386.rpm |
CentOS | 2 | i386 | kernel-source | < 2.4.9-e.71 | kernel-source-2.4.9-e.71.i386.rpm |
CentOS | 2 | i686 | kernel | < 2.4.9-e.71 | kernel-2.4.9-e.71.i686.rpm |
CentOS | 2 | i686 | kernel-debug | < 2.4.9-e.71 | kernel-debug-2.4.9-e.71.i686.rpm |
CentOS | 2 | i686 | kernel-enterprise | < 2.4.9-e.71 | kernel-enterprise-2.4.9-e.71.i686.rpm |
CentOS | 2 | i686 | kernel-smp | < 2.4.9-e.71 | kernel-smp-2.4.9-e.71.i686.rpm |
CentOS | 2 | i686 | kernel-summit | < 2.4.9-e.71 | kernel-summit-2.4.9-e.71.i686.rpm |
CentOS | 2 | athlon | kernel | < 2.4.9-e.71 | kernel-2.4.9-e.71.athlon.rpm |
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
0.056 Low
EPSS
Percentile
93.2%