Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
centosCentOS ProjectCESA-2007:0085
HistoryFeb 27, 2007 - 9:57 p.m.

kernel security update

2007-02-2721:57:02
CentOS Project
lists.centos.org
50

4.7 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:N/A:C

0.015 Low

EPSS

Percentile

86.8%

JSON

CentOS Errata and Security Advisory CESA-2007:0085

The Linux kernel handles the basic functions of the operating system.

These new kernel packages contain fixes for two security issues:

  • a flaw in the key serial number collision avoidance algorithm of the
    keyctl subsystem that allowed a local user to cause a denial of service
    (CVE-2007-0006, Important)

  • a flaw in the file watch implementation of the audit subsystems that
    allowed a local user to cause a denial of service (panic). To exploit this
    flaw a privileged user must have previously created a watch for a file
    (CVE-2007-0001, Moderate)

In addition to the security issues described above, a fix for the SCTP
subsystem to address a system crash which may be experienced in Telco
environments has been included.

Red Hat Enterprise Linux 4 users are advised to upgrade their kernels to
the packages associated with their machine architecture and configurations
as listed in this erratum.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2007-February/075746.html
https://lists.centos.org/pipermail/centos-announce/2007-February/075747.html
https://lists.centos.org/pipermail/centos-announce/2007-February/075748.html
https://lists.centos.org/pipermail/centos-announce/2007-February/075749.html

Affected packages:
kernel
kernel-devel
kernel-doc
kernel-hugemem
kernel-hugemem-devel
kernel-largesmp
kernel-largesmp-devel
kernel-smp
kernel-smp-devel

Upstream details at:
https://access.redhat.com/errata/RHSA-2007:0085

OSVersionArchitecturePackageVersionFilename
CentOS4ia64kernel< 2.6.9-42.0.10.ELkernel-2.6.9-42.0.10.EL.ia64.rpm
CentOS4ia64kernel-devel< 2.6.9-42.0.10.ELkernel-devel-2.6.9-42.0.10.EL.ia64.rpm
CentOS4ia64kernel-largesmp< 2.6.9-42.0.10.ELkernel-largesmp-2.6.9-42.0.10.EL.ia64.rpm
CentOS4ia64kernel-largesmp-devel< 2.6.9-42.0.10.ELkernel-largesmp-devel-2.6.9-42.0.10.EL.ia64.rpm
CentOS4s390kernel< 2.6.9-42.0.10.ELkernel-2.6.9-42.0.10.EL.s390.rpm
CentOS4s390kernel-devel< 2.6.9-42.0.10.ELkernel-devel-2.6.9-42.0.10.EL.s390.rpm
CentOS4s390xkernel< 2.6.9-42.0.10.ELkernel-2.6.9-42.0.10.EL.s390x.rpm
CentOS4s390xkernel-devel< 2.6.9-42.0.10.ELkernel-devel-2.6.9-42.0.10.EL.s390x.rpm
CentOS4i586kernel< 2.6.9-42.0.10.ELkernel-2.6.9-42.0.10.EL.i586.rpm
CentOS4i686kernel< 2.6.9-42.0.10.ELkernel-2.6.9-42.0.10.EL.i686.rpm
Rows per page:
1-10 of 261

Related

nessus 8
redhat 2
oraclelinux 2
cve 2
prion 2
securityvulns 2
veracode 1
ubuntucve 2
openvas 22
fedora 7
ubuntu 1
suse 1
nessus
nessus
CentOS 4 : kernel (CESA-2007:0085)
2007-02-28 00:00:00
Oracle Linux 4 : kernel (ELSA-2007-0085)
2013-07-12 00:00:00
RHEL 4 : kernel (RHSA-2007:0085)
2007-02-27 00:00:00
redhat
redhat
(RHSA-2007:0085) Important: kernel security update
2007-02-27 00:00:00
(RHSA-2007:0099) Important: kernel security and bug fix update
2007-03-14 00:00:00
oraclelinux
oraclelinux
Important: kernel security update
2007-02-28 00:00:00
Important: kernel security and bug fix update
2007-06-26 00:00:00
cve
cve
CVE-2007-0006
2007-02-06 19:28:00
CVE-2007-0001
2007-03-02 21:18:00
prion
prion
Design/Logic Flaw
2007-02-06 19:28:00
Code injection
2007-03-02 21:18:00
securityvulns
securityvulns
Linux kernel keyctl DoS
2007-02-07 00:00:00
RedHat linux DoS through audit subsystem
2007-03-02 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:13:44
ubuntucve
ubuntucve
CVE-2007-0006
2007-02-06 00:00:00
CVE-2007-0001
2008-09-22 00:00:00
openvas
openvas
Fedora Update for kernel FEDORA-2007-226
2009-02-27 00:00:00
Fedora Update for kernel FEDORA-2007-226
2009-02-27 00:00:00
Mandriva Update for kernel MDKSA-2007:047 (kernel)
2009-04-09 00:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: kernel-2.6.19-1.2911.fc6
2007-02-13 22:23:56
[SECURITY] Fedora Core 5 Update: kernel-2.6.19-1.2288.fc5
2007-02-13 22:41:04
[SECURITY] Fedora Core 5 Update: kernel-2.6.19-1.2288.2.1.fc5
2007-03-02 16:58:32
ubuntu
ubuntu
Linux kernel vulnerabilities
2007-04-11 00:00:00
suse
suse
remote denial of service in kernel
2007-03-16 14:36:00

4.7 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:N/A:C

0.015 Low

EPSS

Percentile

86.8%

JSON
Related for CESA-2007:0085
nessus8redhat2oraclelinux2cve2prion2securityvulns2veracode1ubuntucve2openvas22fedora7ubuntu1suse1