| Source | Link |
|---|---|
| linux | www.linux.oracle.com/errata/ELSA-2011-0004.html |
# SPDX-FileCopyrightText: 2015 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.122285");
script_cve_id("CVE-2010-3432", "CVE-2010-3442", "CVE-2010-3699", "CVE-2010-3858", "CVE-2010-3859", "CVE-2010-3865", "CVE-2010-3876", "CVE-2010-3880", "CVE-2010-4083", "CVE-2010-4157", "CVE-2010-4161", "CVE-2010-4242", "CVE-2010-4247", "CVE-2010-4248");
script_tag(name:"creation_date", value:"2015-10-06 11:15:59 +0000 (Tue, 06 Oct 2015)");
script_version("2025-01-23T05:37:38+0000");
script_tag(name:"last_modification", value:"2025-01-23 05:37:38 +0000 (Thu, 23 Jan 2025)");
script_tag(name:"cvss_base", value:"7.8");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:C");
script_name("Oracle: Security Advisory (ELSA-2011-0004)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2015 Greenbone AG");
script_family("Oracle Linux Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/oracle_linux", "ssh/login/release", re:"ssh/login/release=OracleLinux5");
script_xref(name:"Advisory-ID", value:"ELSA-2011-0004");
script_xref(name:"URL", value:"https://linux.oracle.com/errata/ELSA-2011-0004.html");
script_tag(name:"summary", value:"The remote host is missing an update for the 'kernel, ocfs2-2.6.18-194.32.1.0.1.el5, oracleasm-2.6.18-194.32.1.0.1.el5' package(s) announced via the ELSA-2011-0004 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"[2.6.18-194.32.1.0.1.el5]
- [xen] check to see if hypervisor supports memory reservation change
(Chuck Anderson) [orabug 7556514]
- Add entropy support to igb (John Sobecki) [orabug 7607479]
- [nfs] convert ENETUNREACH to ENOTCONN [orabug 7689332]
- [NET] Add xen pv/bonding netconsole support (Tina Yang) [orabug 6993043]
[bz 7258]
- [mm] shrink_zone patch (John Sobecki,Chris Mason) [orabug 6086839]
- fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042]
- [nfsd] fix failure of file creation from hpux client (Wen gang Wang)
[orabug 7579314]
- [qla] fix qla not to query hccr (Guru Anbalagane) [Orabug 8746702]
- [net] bonding: fix xen+bonding+netconsole panic issue (Joe Jin)
[orabug 9504524]
- [rds] Patch rds to 1.4.2-14 (Andy Grover) [orabug 9471572, 9344105]
RDS: Fix BUG_ONs to not fire when in a tasklet
ipoib: Fix lockup of the tx queue
RDS: Do not call set_page_dirty() with irqs off (Sherman Pun)
RDS: Properly unmap when getting a remote access error (Tina Yang)
RDS: Fix locking in rds_send_drop_to()
- [mm] Enhance shrink_zone patch allow full swap utilization, and also be
NUMA-aware (John Sobecki, Chris Mason, Herbert van den Bergh)
[orabug 9245919]
- [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson)
[orabug 9107465]
- [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson)
[orabug 9764220]
- Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615]
- fix overcommit memory to use percpu_counter for el5 (KOSAKI Motohiro,
Guru Anbalagane) [orabug 6124033]
- [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208]
- [ib] fix memory corruption (Andy Grover) [orabug 9972346]
- make xenkbd.abs_pointer=1 by default (John Haxby) [orabug 67188919]
- fix filp_close() race (Joe Jin) [orabug 10335998]
[2.6.18-194.32.1.el5]
- [fs] nfs: set lock_context field in nfs_readpage_sync (Jeff Layton) [664416 663853]
[2.6.18-194.31.1.el5]
- [fs] nfs: set lock_context field in nfs_writepage_sync (Jeff Layton) [663381 660580]
- [fs] nfs: remove problematic calls to nfs_clear_request (Jeff Layton) [663353 656492]
- [fs] nfs: handle alloc failures in nfs_create_request (Jeff Layton) [663353 656492]
- [fs] nfs: clean up nfs_create_request (Jeff Layton) [663353 656492]
- [virt] xen: fix netback hotplug regression in xenbus fix (Laszlo Ersek) [636412 635999] {CVE-2010-3699}
[2.6.18-194.30.1.el5]
- [scsi] lpfc: set heartbeat timer off by default (Rob Evers) [658079 655119]
- [misc] posix-cpu-timers: workaround for mt exec problems (Oleg Nesterov) [656265 656266] {CVE-2010-4248}
- [fs] setup_arg_pages: diagnose excessive argument size (Oleg Nesterov) [645226 645227] {CVE-2010-3858}
- [net] inet_diag: make sure we run audited bytecode (Jiri Pirko) [651266 651267] {CVE-2010-3880}
- [net] limit sendto/recvfrom/iovec total length to INT_MAX (Jiri Pirko) [645871 645872] {CVE-2010-3859}
- [bluetooth] hci_ldisc: fix missing ... [Please see the references for more information on the vulnerabilities]");
script_tag(name:"affected", value:"'kernel, ocfs2-2.6.18-194.32.1.0.1.el5, oracleasm-2.6.18-194.32.1.0.1.el5' package(s) on Oracle Linux 5.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "OracleLinux5") {
if(!isnull(res = isrpmvuln(pkg:"kernel", rpm:"kernel~2.6.18~194.32.1.0.1.el5", rls:"OracleLinux5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-PAE", rpm:"kernel-PAE~2.6.18~194.32.1.0.1.el5", rls:"OracleLinux5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-PAE-devel", rpm:"kernel-PAE-devel~2.6.18~194.32.1.0.1.el5", rls:"OracleLinux5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-debug", rpm:"kernel-debug~2.6.18~194.32.1.0.1.el5", rls:"OracleLinux5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-debug-devel", rpm:"kernel-debug-devel~2.6.18~194.32.1.0.1.el5", rls:"OracleLinux5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-devel", rpm:"kernel-devel~2.6.18~194.32.1.0.1.el5", rls:"OracleLinux5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-doc", rpm:"kernel-doc~2.6.18~194.32.1.0.1.el5", rls:"OracleLinux5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-headers", rpm:"kernel-headers~2.6.18~194.32.1.0.1.el5", rls:"OracleLinux5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-xen", rpm:"kernel-xen~2.6.18~194.32.1.0.1.el5", rls:"OracleLinux5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-xen-devel", rpm:"kernel-xen-devel~2.6.18~194.32.1.0.1.el5", rls:"OracleLinux5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"ocfs2-2.6.18-194.32.1.0.1.el5", rpm:"ocfs2-2.6.18-194.32.1.0.1.el5~1.4.7~1.el5", rls:"OracleLinux5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"ocfs2-2.6.18-194.32.1.0.1.el5PAE", rpm:"ocfs2-2.6.18-194.32.1.0.1.el5PAE~1.4.7~1.el5", rls:"OracleLinux5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"ocfs2-2.6.18-194.32.1.0.1.el5debug", rpm:"ocfs2-2.6.18-194.32.1.0.1.el5debug~1.4.7~1.el5", rls:"OracleLinux5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"ocfs2-2.6.18-194.32.1.0.1.el5xen", rpm:"ocfs2-2.6.18-194.32.1.0.1.el5xen~1.4.7~1.el5", rls:"OracleLinux5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"oracleasm-2.6.18-194.32.1.0.1.el5", rpm:"oracleasm-2.6.18-194.32.1.0.1.el5~2.0.5~1.el5", rls:"OracleLinux5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"oracleasm-2.6.18-194.32.1.0.1.el5PAE", rpm:"oracleasm-2.6.18-194.32.1.0.1.el5PAE~2.0.5~1.el5", rls:"OracleLinux5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"oracleasm-2.6.18-194.32.1.0.1.el5debug", rpm:"oracleasm-2.6.18-194.32.1.0.1.el5debug~2.0.5~1.el5", rls:"OracleLinux5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"oracleasm-2.6.18-194.32.1.0.1.el5xen", rpm:"oracleasm-2.6.18-194.32.1.0.1.el5xen~2.0.5~1.el5", rls:"OracleLinux5"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation