(RHSA-2007:0671) Moderate: kernel security and bugfix update
2007-08-16T04:00:00
ID RHSA-2007:0671 Type redhat Reporter RedHat Modified 2017-07-28T18:43:48
Description
The Linux kernel handles the basic functions of the operating system.
These new kernel packages contain fixes for the security issues described
below:
a flaw in the ISDN CAPI subsystem that allowed a remote user to cause a
denial of service or potential privilege escalation. (CVE-2007-1217, Moderate)
a flaw in the Bluetooth subsystem that allowed a local user to trigger an
information leak. (CVE-2007-1353, Low)
In addition to the security issues described above, fixes for the following
have been included:
a race condition in the e1000 network driver that could cause ESB2
systems to be started without the RX unit being turned on.
a related e1000 bug on ESB2 systems that could cause rlogin to fail.
Red Hat would like to thank Ilja van Sprundel for reporting an issue fixed
in this erratum.
Note: The kernel-unsupported package contains various drivers and modules
that are unsupported and therefore might contain security problems that
have not been addressed.
All Red Hat Enterprise Linux 3 users are advised to upgrade their kernels
to the packages associated with their machine architecture and
configurations as listed in this erratum.
{"cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "viewCount": 0, "reporter": "RedHat", "references": [], "description": "The Linux kernel handles the basic functions of the operating system.\r\n\r\nThese new kernel packages contain fixes for the security issues described\r\nbelow:\r\n\r\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to cause a\r\ndenial of service or potential privilege escalation. (CVE-2007-1217, Moderate)\r\n\r\n* a flaw in the Bluetooth subsystem that allowed a local user to trigger an\r\ninformation leak. (CVE-2007-1353, Low) \r\n\r\nIn addition to the security issues described above, fixes for the following\r\nhave been included:\r\n\r\n* a race condition in the e1000 network driver that could cause ESB2\r\nsystems to be started without the RX unit being turned on. \r\n\r\n* a related e1000 bug on ESB2 systems that could cause rlogin to fail.\r\n\r\nRed Hat would like to thank Ilja van Sprundel for reporting an issue fixed\r\nin this erratum. \r\n\r\nNote: The kernel-unsupported package contains various drivers and modules\r\nthat are unsupported and therefore might contain security problems that\r\nhave not been addressed.\r\n\r\nAll Red Hat Enterprise Linux 3 users are advised to upgrade their kernels\r\nto the packages associated with their machine architecture and\r\nconfigurations as listed in this erratum.", "href": "https://access.redhat.com/errata/RHSA-2007:0671", "modified": "2017-07-28T18:43:48", "objectVersion": "1.4", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "enchantments": {"score": {"value": 7.2, "vector": "NONE"}, "vulnersScore": 7.2}, "id": "RHSA-2007:0671", "title": "(RHSA-2007:0671) Moderate: kernel security and bugfix update", "bulletinFamily": "unix", "published": "2007-08-16T04:00:00", "enchantments_done": [], "type": "redhat", "_object_type": "robots.models.redhat.RedHatBulletin", "history": [], "affectedPackage": [{"packageFilename": "kernel-2.4.21-51.EL.ppc64iseries.rpm", "OS": "RedHat", "OSVersion": "any", "packageName": "kernel", "operator": "lt", "packageVersion": "2.4.21-51.EL", "arch": "ppc64iseries"}, {"packageFilename": "kernel-source-2.4.21-51.EL.ppc64.rpm", "OS": "RedHat", "OSVersion": "any", "packageName": "kernel-source", "operator": "lt", "packageVersion": "2.4.21-51.EL", "arch": "ppc64"}, {"packageFilename": "kernel-2.4.21-51.EL.ppc64pseries.rpm", "OS": "RedHat", "OSVersion": "any", "packageName": "kernel", "operator": "lt", "packageVersion": "2.4.21-51.EL", "arch": "ppc64pseries"}, {"packageFilename": "kernel-unsupported-2.4.21-51.EL.ppc64pseries.rpm", "OS": "RedHat", "OSVersion": "any", "packageName": "kernel-unsupported", "operator": "lt", "packageVersion": "2.4.21-51.EL", "arch": "ppc64pseries"}, {"packageFilename": "kernel-doc-2.4.21-51.EL.ppc64.rpm", "OS": "RedHat", "OSVersion": "any", "packageName": "kernel-doc", "operator": "lt", "packageVersion": "2.4.21-51.EL", "arch": "ppc64"}, {"packageFilename": "kernel-unsupported-2.4.21-51.EL.ppc64iseries.rpm", "OS": "RedHat", "OSVersion": "any", "packageName": "kernel-unsupported", "operator": "lt", "packageVersion": "2.4.21-51.EL", "arch": "ppc64iseries"}], "cvelist": ["CVE-2007-1217", "CVE-2007-1353"], "lastseen": "2017-08-01T06:58:07"}
{"result": {"cve": [{"lastseen": "2017-10-11T11:07:02", "references": ["http://www.redhat.com/support/errata/RHSA-2007-0774.html", "http://www.redhat.com/support/errata/RHSA-2007-0672.html", "http://www.securityfocus.com/bid/23333", "http://bugzilla.kernel.org/show_bug.cgi?id=8028", "http://www.redhat.com/support/errata/RHSA-2007-0671.html", "http://www.mandriva.com/security/advisories?name=MDKSA-2007:078", "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=408530", "http://security.gentoo.org/glsa/glsa-200704-23.xml", "http://www.redhat.com/support/errata/RHSA-2007-0673.html", "http://www.redhat.com/support/errata/RHSA-2007-0705.html", "http://www.securitytracker.com/id?1018539", "http://support.avaya.com/elmodocs2/security/ASA-2007-404.htm"], "description": "Buffer overflow in the bufprint function in capiutil.c in libcapi, as used in Linux kernel 2.6.9 to 2.6.20 and isdn4k-utils, allows local users to cause a denial of service (crash) and possibly gain privileges via a crafted CAPI packet.", "edition": 2, "reporter": "NVD", "published": "2007-03-02T16:18:00", "title": "CVE-2007-1217", "type": "cve", "enchantments": {"score": {"modified": "2017-10-11T11:07:02", "vector": "NONE", "value": 7.2}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:10503", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10503"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2007-1217"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:10503", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:10503"}], "modified": "2017-10-10T21:31:47", "cpe": ["cpe:/o:linux:linux_kernel:2.6.12:rc6", "cpe:/o:linux:linux_kernel:2.6.12.22", "cpe:/o:linux:linux_kernel:2.6.13:rc1", "cpe:/o:linux:linux_kernel:2.6.18.1", "cpe:/o:linux:linux_kernel:2.6.19.1", "cpe:/o:linux:linux_kernel:2.6.16.4", "cpe:/o:linux:linux_kernel:2.6.16.15", "cpe:/o:linux:linux_kernel:2.6.15.2", "cpe:/o:linux:linux_kernel:2.6.16:rc2", "cpe:/o:linux:linux_kernel:2.6.16.3", "cpe:/o:linux:linux_kernel:2.6.13:rc3", "cpe:/o:linux:linux_kernel:2.6.14.4", "cpe:/o:linux:linux_kernel:2.6.16.20", "cpe:/o:linux:linux_kernel:2.6.15:rc5", "cpe:/o:linux:linux_kernel:2.6.19:rc4", "cpe:/o:linux:linux_kernel:2.6.16.9", "cpe:/o:linux:linux_kernel:2.6.16.10", "cpe:/o:linux:linux_kernel:2.6.11.7", "cpe:/o:linux:linux_kernel:2.6.11.8", "cpe:/o:linux:linux_kernel:2.6.16:rc3", "cpe:/o:linux:linux_kernel:2.6.12.3", "cpe:/o:linux:linux_kernel:2.6.16_rc7", "cpe:/o:linux:linux_kernel:2.6.14.1", "cpe:/o:linux:linux_kernel:2.6.10:rc2", "cpe:/o:linux:linux_kernel:2.6.14.7", "cpe:/o:linux:linux_kernel:2.6.16.40", "cpe:/o:linux:linux_kernel:2.6.16.22", "cpe:/o:linux:linux_kernel:2.6.16.5", "cpe:/o:linux:linux_kernel:2.6.12", "cpe:/o:linux:linux_kernel:2.6.12:rc5", "cpe:/o:linux:linux_kernel:2.6.13:rc6", "cpe:/o:linux:linux_kernel:2.6.11:rc1", "cpe:/o:linux:linux_kernel:2.6.18:rc3", "cpe:/o:linux:linux_kernel:2.6.16.18", "cpe:/o:linux:linux_kernel:2.6.15.7", "cpe:/o:linux:linux_kernel:2.6.19:rc3", "cpe:/o:linux:linux_kernel:2.6.17.11", "cpe:/o:linux:linux_kernel:2.6.14", "cpe:/o:linux:linux_kernel:2.6.16.29", "cpe:/o:linux:linux_kernel:2.6.16.27", "cpe:/o:linux:linux_kernel:2.6.11.2", "cpe:/o:linux:linux_kernel:2.6.17.2", "cpe:/o:linux:linux_kernel:2.6.11.11", "cpe:/o:linux:linux_kernel:2.6.17:rc3", "cpe:/o:linux:linux_kernel:2.6.16.21", "cpe:/o:linux:linux_kernel:2.6.14:rc5", "cpe:/o:linux:linux_kernel:2.6.12.5", "cpe:/o:linux:linux_kernel:2.6.17.1", "cpe:/o:linux:linux_kernel:2.6.16.30", "cpe:/o:linux:linux_kernel:2.6.10:rc3", "cpe:/o:linux:linux_kernel:2.6.13", "cpe:/o:linux:linux_kernel:2.6.11.9", "cpe:/o:linux:linux_kernel:2.6.14.5", "cpe:/o:linux:linux_kernel:2.6.15.6", "cpe:/o:linux:linux_kernel:2.6.17:rc2", "cpe:/o:linux:linux_kernel:2.6.19.2", "cpe:/o:linux:linux_kernel:2.6.15:rc1", "cpe:/o:linux:linux_kernel:2.6.17.10", "cpe:/o:linux:linux_kernel:2.6.16.19", "cpe:/o:linux:linux_kernel:2.6.15.1", "cpe:/o:linux:linux_kernel:2.6.17:rc5", "cpe:/o:linux:linux_kernel:2.6.13:rc5", "cpe:/o:linux:linux_kernel:2.6.20", "cpe:/o:linux:linux_kernel:2.6.16.34", "cpe:/o:linux:linux_kernel:2.6.16.14", "cpe:/o:linux:linux_kernel:2.6.18", "cpe:/o:linux:linux_kernel:2.6.13:rc7", "cpe:/o:linux:linux_kernel:2.6.18:rc2", "cpe:/o:linux:linux_kernel:2.6.19:rc2", "cpe:/o:linux:linux_kernel:2.6.14.2", "cpe:/o:linux:linux_kernel:2.6.16:rc6", "cpe:/o:linux:linux_kernel:2.6.11.10", "cpe:/o:linux:linux_kernel:2.6.16.12", "cpe:/o:linux:linux_kernel:2.6.17.13", "cpe:/o:linux:linux_kernel:2.6.11:rc3", "cpe:/o:linux:linux_kernel:2.6.12.1", "cpe:/o:linux:linux_kernel:2.6.16.39", "cpe:/o:linux:linux_kernel:2.6.16.8", "cpe:/o:linux:linux_kernel:2.6.16.25", "cpe:/o:linux:linux_kernel:2.6.18.5", "cpe:/o:linux:linux_kernel:2.6.16.17", "cpe:/o:linux:linux_kernel:2.6.14:rc1", "cpe:/o:linux:linux_kernel:2.6.12:rc4", "cpe:/o:linux:linux_kernel:2.6.16.26", "cpe:/o:linux:linux_kernel:2.6.16.32", "cpe:/o:linux:linux_kernel:2.6.14.3", "cpe:/o:linux:linux_kernel:2.6.16:rc5", "cpe:/o:linux:linux_kernel:2.6.16.1", "cpe:/o:linux:linux_kernel:2.6.17.3", "cpe:/o:linux:linux_kernel:2.6.16.33", "cpe:/o:linux:linux_kernel:2.6.15:rc6", "cpe:/o:linux:linux_kernel:2.6.19.3", "cpe:/o:linux:linux_kernel:2.6.18.3", "cpe:/o:linux:linux_kernel:2.6.18.6", "cpe:/o:linux:linux_kernel:2.6.13.2", "cpe:/o:linux:linux_kernel:2.6.11:rc2", "cpe:/o:linux:linux_kernel:2.6.16.36", "cpe:/o:linux:linux_kernel:2.6.16.37", "cpe:/o:linux:linux_kernel:2.6.13.5", "cpe:/o:linux:linux_kernel:2.6.17.9", "cpe:/o:linux:linux_kernel:2.6.17:rc6", "cpe:/o:linux:linux_kernel:2.6.18.2", "cpe:/o:linux:linux_kernel:2.6.9", "cpe:/o:linux:linux_kernel:2.6.10", "cpe:/o:linux:linux_kernel:2.6.17.8", "cpe:/o:linux:linux_kernel:2.6.11.12", "cpe:/o:linux:linux_kernel:2.6.11", "cpe:/o:linux:linux_kernel:2.6.15.5", "cpe:/o:linux:linux_kernel:2.6.12:rc3", "cpe:/o:linux:linux_kernel:2.6.17:rc4", "cpe:/o:linux:linux_kernel:2.6.15.3", "cpe:/o:linux:linux_kernel:2.6.19:rc1", "cpe:/o:linux:linux_kernel:2.6.17.14", "cpe:/o:linux:linux_kernel:2.6.16.7", "cpe:/o:linux:linux_kernel:2.6.15:rc7", "cpe:/o:linux:linux_kernel:2.6.18:rc6", "cpe:/o:linux:linux_kernel:2.6.15.4", "cpe:/o:linux:linux_kernel:2.6.14:rc3", "cpe:/o:linux:linux_kernel:2.6.11.6", "cpe:/o:linux:linux_kernel:2.6.16.38", "cpe:/o:linux:linux_kernel:2.6.17.12", "cpe:/o:linux:linux_kernel:2.6.16.16", "cpe:/o:linux:linux_kernel:2.6.16.2", "cpe:/o:linux:linux_kernel:2.6.12:rc2", "cpe:/o:linux:linux_kernel:2.6.17", "cpe:/o:linux:linux_kernel:2.6.16.31", "cpe:/o:linux:linux_kernel:2.6.13.4", "cpe:/o:linux:linux_kernel:2.6.11.4", "cpe:/o:linux:linux_kernel:2.6.12.4", "cpe:/o:linux:linux_kernel:2.6.16", "cpe:/o:linux:linux_kernel:2.6.11:rc4", "cpe:/o:linux:linux_kernel:2.6.15:rc2", "cpe:/o:linux:linux_kernel:2.6.11_rc1_bk6", "cpe:/o:linux:linux_kernel:2.6.16:rc4", "cpe:/o:linux:linux_kernel:2.6.19.0", "cpe:/o:linux:linux_kernel:2.6.16.41", "cpe:/o:linux:linux_kernel:2.6.12:rc1", "cpe:/o:linux:linux_kernel:2.6.18:rc7", "cpe:/o:linux:linux_kernel:2.6.15.11", "cpe:/o:linux:linux_kernel:2.6.15", "cpe:/o:linux:linux_kernel:2.6.17.7", "cpe:/o:linux:linux_kernel:2.6.11.1", "cpe:/o:linux:linux_kernel:2.6.15:rc4", "cpe:/o:linux:linux_kernel:2.6.16.28", "cpe:/o:linux:linux_kernel:2.6.13:rc2", "cpe:/o:linux:linux_kernel:2.6.18.4", "cpe:/o:linux:linux_kernel:2.6.18:rc5", "cpe:/o:linux:linux_kernel:2.6.12.12", "cpe:/o:linux:linux_kernel:2.6.11.5", "cpe:/o:linux:linux_kernel:2.6.12.6", "cpe:/o:linux:linux_kernel:2.6.16.24", "cpe:/o:linux:linux_kernel:2.6.11::x86_64", "cpe:/o:linux:linux_kernel:2.6.17.6", "cpe:/o:linux:linux_kernel:2.6.13:rc4", "cpe:/o:linux:linux_kernel:2.6.14:rc4", "cpe:/o:linux:linux_kernel:2.6.17.4", "cpe:/o:linux:linux_kernel:2.6.13.1", "cpe:/o:linux:linux_kernel:2.6.16.6", "cpe:/o:linux:linux_kernel:2.6.11.3", "cpe:/o:linux:linux_kernel:2.6.10:rc1", "cpe:/o:linux:linux_kernel:2.6.17:rc1", "cpe:/o:linux:linux_kernel:2.6.14.6", "cpe:/o:linux:linux_kernel:2.6.14:rc2", "cpe:/o:linux:linux_kernel:2.6.16.35", "cpe:/o:linux:linux_kernel:2.6.12.2", "cpe:/o:linux:linux_kernel:2.6.15:rc3", "cpe:/o:linux:linux_kernel:2.6.16:rc1", "cpe:/o:linux:linux_kernel:2.6.16.11", "cpe:/o:linux:linux_kernel:2.6.11:rc5", "cpe:/o:linux:linux_kernel:2.6.17.5", "cpe:/o:linux:linux_kernel:2.6.16.23", "cpe:/o:linux:linux_kernel:2.6.13.3", "cpe:/o:linux:linux_kernel:2.6.18:rc1", "cpe:/o:linux:linux_kernel:2.6.18:rc4", "cpe:/o:linux:linux_kernel:2.6.16.13"], "id": "CVE-2007-1217", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-1217", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-10-11T11:07:02", "references": ["http://www.ubuntu.com/usn/usn-486-1", "http://www.redhat.com/support/errata/RHSA-2007-0672.html", "http://rhn.redhat.com/errata/RHSA-2007-0488.html", "http://www.debian.org/security/2008/dsa-1503", "http://www.redhat.com/support/errata/RHSA-2007-0671.html", "http://www.debian.org/security/2008/dsa-1504", "http://www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.34.3", "http://www.debian.org/security/2007/dsa-1356", "http://www.redhat.com/support/errata/RHSA-2007-0673.html", "http://www.novell.com/linux/security/advisories/2007_35_kernel.html", "http://www.vupen.com/english/advisories/2007/1495", "http://www.ubuntu.com/usn/usn-470-1", "https://rhn.redhat.com/errata/RHSA-2007-0376.html", "http://support.avaya.com/elmodocs2/security/ASA-2007-287.htm", "http://www.securityfocus.com/bid/23594", "http://www.ubuntu.com/usn/usn-489-1", "http://support.avaya.com/elmodocs2/security/ASA-2007-404.htm"], "description": "The setsockopt function in the L2CAP and HCI Bluetooth support in the Linux kernel before 2.4.34.3 allows context-dependent attackers to read kernel memory and obtain sensitive information via unspecified vectors involving the copy_from_user function accessing an uninitialized stack buffer.", "edition": 2, "reporter": "NVD", "published": "2007-04-24T12:19:00", "title": "CVE-2007-1353", "type": "cve", "enchantments": {"score": {"modified": "2017-10-11T11:07:02", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:10626", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10626"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2007-1353"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:10626", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:10626"}], "modified": "2017-10-10T21:31:50", "cpe": ["cpe:/o:linux:linux_kernel:2.4.34.2"], "id": "CVE-2007-1353", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-1353", "cvss": {"score": 2.1, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "f5": [{"lastseen": "2016-09-26T17:23:20", "references": [], "edition": 1, "description": "A flaw in the ISDN CAPI subsystem allows a remote user to cause a denial of service or potential remote access. Exploitation would require the attacker to be able to send arbitrary frames over the ISDN network to the vulnerable system.\n\nInformation about this advisory is available at the following location:\n\n<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1217>\n", "reporter": "f5", "published": "2008-06-30T00:00:00", "title": "SOL8917 - Linux kernel vulnerability CVE-2007-1217", "type": "f5", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2007-1217"], "modified": "2013-03-18T00:00:00", "href": "http://support.f5.com/kb/en-us/solutions/public/8000/900/sol8917.html", "id": "SOL8917", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "gentoo": [{"lastseen": "2016-09-06T19:46:31", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=2007-1217", "https://bugs.gentoo.org/show_bug.cgi?id=170870"], "affectedPackage": [{"OS": "Gentoo", "OSVersion": "any", "packageVersion": "20050718-r3", "arch": "all", "packageFilename": "UNKNOWN", "packageName": "net-dialup/capi4k-utils", "operator": "lt"}], "edition": 1, "description": "### Background\n\ncapi4k-utils is a set of utilities for accessing COMMON-ISDN-API software interfaces for ISDN devices. \n\n### Description\n\nThe bufprint() function in capi4k-utils fails to properly check boundaries of data coming from CAPI packets. \n\n### Impact\n\nA local attacker could possibly escalate privileges or cause a Denial of Service by sending a crafted CAPI packet. \n\n### Workaround\n\nThere is no known workaround at this time. \n\n### Resolution\n\nAll capi4k-utils users should upgrade to the latest version: \n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=net-dialup/capi4k-utils-20050718-r3\"", "reporter": "Gentoo Foundation", "published": "2007-04-27T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "type": "gentoo", "title": "capi4k-utils: Buffer overflow", "bulletinFamily": "unix", "cvelist": ["CVE-2007-1217"], "modified": "2007-04-27T00:00:00", "id": "GLSA-200704-23", "href": "https://security.gentoo.org/glsa/200704-23", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "openvas": [{"lastseen": "2017-07-24T12:49:43", "references": ["http://bugs.gentoo.org/show_bug.cgi?id=170870", "http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200704-23"], "pluginID": "58250", "description": "The remote host is missing updates announced in\nadvisory GLSA 200704-23.", "edition": 2, "reporter": "Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com", "published": "2008-09-24T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "Gentoo Security Advisory GLSA 200704-23 (capi4k-utils)", "type": "openvas", "naslFamily": "Gentoo Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2007-1217"], "modified": "2017-07-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=58250", "id": "OPENVAS:58250", "sourceData": "# OpenVAS Vulnerability Test\n# $\n# Description: Auto generated from Gentoo's XML based advisory\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisories, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"capi4k-utils is vulnerable to a buffer overflow in the bufprint() function.\";\ntag_solution = \"All capi4k-utils users should upgrade to the latest version:\n\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=net-dialup/capi4k-utils-20050718-r3'\";\n\ntag_summary = \"The remote host is missing updates announced in\nadvisory GLSA 200704-23.\";\n\n \n\nif(description)\n{\n script_id(58250);\n script_version(\"$Revision: 6596 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 11:21:37 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2008-09-24 21:14:03 +0200 (Wed, 24 Sep 2008)\");\n script_cve_id(\"CVE-2007-1217\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Gentoo Security Advisory GLSA 200704-23 (capi4k-utils)\");\n\n script_xref(name:\"URL\" , value:\"http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200704-23\");\n script_xref(name:\"URL\" , value:\"http://bugs.gentoo.org/show_bug.cgi?id=170870\");\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Gentoo Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/gentoo\", \"ssh/login/pkg\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-gentoo.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = ispkgvuln(pkg:\"net-dialup/capi4k-utils\", unaffected: make_list(\"ge 20050718-r3\"), vulnerable: make_list(\"lt 20050718-r3\"))) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-07-24T12:56:55", "references": ["http://lists.mandriva.com/security-announce/2007-04/msg00006.php", "2007:078"], "pluginID": "830108", "description": "Check for the Version of kernel", "edition": 2, "reporter": "Copyright (C) 2009 Greenbone Networks GmbH", "published": "2009-04-09T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "Mandriva Update for kernel MDKSA-2007:078 (kernel)", "type": "openvas", "naslFamily": "Mandrake Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-6056", "CVE-2007-1592", "CVE-2007-0958", "CVE-2007-0005", "CVE-2007-1000", "CVE-2007-0772", "CVE-2007-1217", "CVE-2004-1073", "CVE-2007-1388"], "modified": "2017-07-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=830108", "id": "OPENVAS:830108", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Mandriva Update for kernel MDKSA-2007:078 (kernel)\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Some vulnerabilities were discovered and corrected in the Linux\n 2.6 kernel:\n\n When SELinux hooks are enabled, the kernel could allow a local user\n to cause a DoS (crash) via a malformed file stream that triggers a\n NULL pointer derefernece (CVE-2006-6056).\n \n Multiple buffer overflows in the (1) read and (2) write handlers in\n the Omnikey CardMan 4040 driver in the Linux kernel before 2.6.21-rc3\n allow local users to gain privileges. (CVE-2007-0005)\n \n The Linux kernel version 2.6.13 to 2.6.20.1 allowed a remote attacker to\n cause a DoS (oops) via a crafted NFSACL2 ACCESS request that triggered\n a free of an incorrect pointer (CVE-2007-0772).\n \n A local user could read unreadable binaries by using the interpreter\n (PT_INTERP) functionality and triggering a core dump; a variant of\n CVE-2004-1073 (CVE-2007-0958).\n \n The ipv6_getsockopt_sticky function in net/ipv6/ipv6_sockglue.c in the\n Linux kernel before 2.6.20.2 allows local users to read arbitrary\n kernel memory via certain getsockopt calls that trigger a NULL\n dereference. (CVE-2007-1000)\n \n Buffer overflow in the bufprint function in capiutil.c in libcapi,\n as used in Linux kernel 2.6.9 to 2.6.20 and isdn4k-utils, allows local\n users to cause a denial of service (crash) and possibly gain privileges\n via a crafted CAPI packet. (CVE-2007-1217)\n \n The do_ipv6_setsockopt function in net/ipv6/ipv6_sockglue.c in Linux\n kernel 2.6.17, and possibly other versions, allows local users to cause\n a denial of service (oops) by calling setsockopt with the IPV6_RTHDR\n option name and possibly a zero option length or invalid option value,\n which triggers a NULL pointer dereference. (CVE-2007-1388)\n \n net/ipv6/tcp_ipv6.c in Linux kernel 2.4 and 2.6.x up to 2.6.21-rc3\n inadvertently copies the ipv6_fl_socklist from a listening TCP socket\n to child sockets, which allows local users to cause a denial of service\n (OOPS) or double-free by opening a listeing IPv6 socket, attaching a\n flow label, and connecting to that socket. (CVE-2007-1592)\n \n The provided packages are patched to fix these vulnerabilities.\n All users are encouraged to upgrade to these updated kernels immediately\n and reboot to effect the fixes.\n \n In addition to these security fixes, other fixes have been included\n such as:\n \n - Suspend to disk speed improvements\n - Add nmi watchdog support for core2\n - Add atl1 driver\n - Update KVM\n - Add acer_acpi\n - Update asus_acpi\n - Fix suspend on r8169, i8259A\n - Fix suspend when using ondemand governor\n - Add ide acpi support\n - Add suspend/resume support ... \n\n Description truncated, for more information please check the Reference URL\";\n\ntag_affected = \"kernel on Mandriva Linux 2007.0,\n Mandriva Linux 2007.0/X86_64\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.mandriva.com/security-announce/2007-04/msg00006.php\");\n script_id(830108);\n script_version(\"$Revision: 6568 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-06 15:04:21 +0200 (Thu, 06 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-04-09 13:53:01 +0200 (Thu, 09 Apr 2009)\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name: \"MDKSA\", value: \"2007:078\");\n script_cve_id(\"CVE-2006-6056\", \"CVE-2007-0005\", \"CVE-2007-0772\", \"CVE-2004-1073\", \"CVE-2007-0958\", \"CVE-2007-1000\", \"CVE-2007-1217\", \"CVE-2007-1388\", \"CVE-2007-1592\");\n script_name( \"Mandriva Update for kernel MDKSA-2007:078 (kernel)\");\n\n script_summary(\"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"Mandrake Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/mandriva_mandrake_linux\", \"ssh/login/release\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"MNDK_2007.0\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.17.13mdv~1~1mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.17.13mdv~1~1mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-enterprise\", rpm:\"kernel-enterprise~2.6.17.13mdv~1~1mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-legacy\", rpm:\"kernel-legacy~2.6.17.13mdv~1~1mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-source\", rpm:\"kernel-source~2.6.17.13mdv~1~1mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-source-stripped\", rpm:\"kernel-source-stripped~2.6.17.13mdv~1~1mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen0\", rpm:\"kernel-xen0~2.6.17.13mdv~1~1mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU\", rpm:\"kernel-xenU~2.6.17.13mdv~1~1mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-07-24T12:54:01", "references": ["http://linux.oracle.com/errata/ELSA-2007-0705.html"], "pluginID": "1361412562310122663", "description": "Oracle Linux Local Security Checks ELSA-2007-0705", "edition": 3, "reporter": "Eero Volotinen", "published": "2015-10-08T00:00:00", "title": "Oracle Linux Local Check: ELSA-2007-0705", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Oracle Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2007-2876", "CVE-2007-3739", "CVE-2007-3851", "CVE-2007-3843", "CVE-2007-2875", "CVE-2007-3740", "CVE-2007-2878", "CVE-2007-1217"], "modified": "2017-07-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122663", "id": "OPENVAS:1361412562310122663", "sourceData": "# OpenVAS Vulnerability Test \n# Description: Oracle Linux Local Check \n# $Id: ELSA-2007-0705.nasl 6561 2017-07-06 12:03:14Z cfischer $\n \n# Authors: \n# Eero Volotinen <eero.volotinen@solinor.com> \n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\nif(description)\n {\nscript_oid(\"1.3.6.1.4.1.25623.1.0.122663\");\nscript_version(\"$Revision: 6561 $\");\nscript_tag(name:\"creation_date\", value:\"2015-10-08 14:50:33 +0300 (Thu, 08 Oct 2015)\");\nscript_tag(name:\"last_modification\", value:\"$Date: 2017-07-06 14:03:14 +0200 (Thu, 06 Jul 2017) $\");\nscript_name(\"Oracle Linux Local Check: ELSA-2007-0705\");\nscript_tag(name: \"insight\", value: \"ELSA-2007-0705 - Important: kernel security update - [2.6.18-8.1.10.0.1.el5] - Fix bonding primary=ethX (Bert Barbe) [IT 101532] [ORA 5136660] - Add entropy module option to e1000/bnx2 (John Sobecki) [ORA 6045759] [2.6.18-8.1.10.el5] - [mm] Prevent the stack growth into hugetlb reserved regions (Konrad Rzeszutek) [253313] {CVE-2007-3739} [2.6.18-8.1.9.el5] - [misc] cpuset information leak (Prarit Bhargava ) [245773] {CVE-2007-2875} - [net] ip_conntrack_sctp: fix remotely triggerable panic (Don Howard ) [245774] {CVE-2007-2876} - [misc] Overflow in CAPI subsystem (Anton Arapov ) [232260] {CVE-2007-1217} - [CIFS] fix signing sec= mount options (Jeff Layton ) [253315] {CVE-2007-3843} - [CIFS] respect umask when unix extensions are enabled (Jeff Layton ) [253314] {CVE-2007-3740} - [misc] i915_dma: fix batch buffer security bit for i965 chipsets (Aristeu Rozanski ) [252305] {CVE-2007-3851} - [fs] - Move msdos compat ioctl to msdos dir (Eric Sandeen ) [253317] - [fs] - fix VFAT compat ioctls on 64-bit systems (Eric Sandeen ) [253317] {CVE-2007-2878}\"); \nscript_tag(name : \"solution\", value : \"update software\");\nscript_tag(name : \"solution_type\", value : \"VendorFix\");\nscript_tag(name : \"summary\", value : \"Oracle Linux Local Security Checks ELSA-2007-0705\");\nscript_xref(name : \"URL\" , value : \"http://linux.oracle.com/errata/ELSA-2007-0705.html\");\nscript_cve_id(\"CVE-2007-1217\",\"CVE-2007-2875\",\"CVE-2007-2876\",\"CVE-2007-2878\",\"CVE-2007-3739\",\"CVE-2007-3740\",\"CVE-2007-3843\",\"CVE-2007-3851\");\nscript_tag(name:\"cvss_base\", value:\"6.9\");\nscript_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\nscript_tag(name:\"qod_type\", value:\"package\");\nscript_dependencies(\"gather-package-list.nasl\");\nscript_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\");\nscript_category(ACT_GATHER_INFO);\nscript_copyright(\"Eero Volotinen\");\nscript_family(\"Oracle Linux Local Security Checks\");\nexit(0);\n}\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\nrelease = get_kb_item(\"ssh/login/release\");\nres = \"\";\nif(release == NULL)\n{\n exit(0);\n}\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.18~8.1.10.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-PAE\", rpm:\"kernel-PAE~2.6.18~8.1.10.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-PAE-devel\", rpm:\"kernel-PAE-devel~2.6.18~8.1.10.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.18~8.1.10.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.18~8.1.10.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.18~8.1.10.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.18~8.1.10.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.18~8.1.10.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~8.1.10.0.1.el5~1.2.6~6.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~8.1.10.0.1.el5PAE~1.2.6~6.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~8.1.10.0.1.el5xen~1.2.6~6.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~8.1.10.0.1.el5~2.0.4~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~8.1.10.0.1.el5PAE~2.0.4~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~8.1.10.0.1.el5xen~2.0.4~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif (__pkg_match) exit(99); #Not vulnerable\n exit(0);\n\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-04-09T11:40:56", "references": ["http://lists.mandriva.com/security-announce/2007-04/msg00006.php", "2007:078"], "pluginID": "1361412562310830108", "description": "Check for the Version of kernel", "edition": 2, "reporter": "Copyright (C) 2009 Greenbone Networks GmbH", "published": "2009-04-09T00:00:00", "title": "Mandriva Update for kernel MDKSA-2007:078 (kernel)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Mandrake Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-6056", "CVE-2007-1592", "CVE-2007-0958", "CVE-2007-0005", "CVE-2007-1000", "CVE-2007-0772", "CVE-2007-1217", "CVE-2004-1073", "CVE-2007-1388"], "modified": "2018-04-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310830108", "id": "OPENVAS:1361412562310830108", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Mandriva Update for kernel MDKSA-2007:078 (kernel)\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Some vulnerabilities were discovered and corrected in the Linux\n 2.6 kernel:\n\n When SELinux hooks are enabled, the kernel could allow a local user\n to cause a DoS (crash) via a malformed file stream that triggers a\n NULL pointer derefernece (CVE-2006-6056).\n \n Multiple buffer overflows in the (1) read and (2) write handlers in\n the Omnikey CardMan 4040 driver in the Linux kernel before 2.6.21-rc3\n allow local users to gain privileges. (CVE-2007-0005)\n \n The Linux kernel version 2.6.13 to 2.6.20.1 allowed a remote attacker to\n cause a DoS (oops) via a crafted NFSACL2 ACCESS request that triggered\n a free of an incorrect pointer (CVE-2007-0772).\n \n A local user could read unreadable binaries by using the interpreter\n (PT_INTERP) functionality and triggering a core dump; a variant of\n CVE-2004-1073 (CVE-2007-0958).\n \n The ipv6_getsockopt_sticky function in net/ipv6/ipv6_sockglue.c in the\n Linux kernel before 2.6.20.2 allows local users to read arbitrary\n kernel memory via certain getsockopt calls that trigger a NULL\n dereference. (CVE-2007-1000)\n \n Buffer overflow in the bufprint function in capiutil.c in libcapi,\n as used in Linux kernel 2.6.9 to 2.6.20 and isdn4k-utils, allows local\n users to cause a denial of service (crash) and possibly gain privileges\n via a crafted CAPI packet. (CVE-2007-1217)\n \n The do_ipv6_setsockopt function in net/ipv6/ipv6_sockglue.c in Linux\n kernel 2.6.17, and possibly other versions, allows local users to cause\n a denial of service (oops) by calling setsockopt with the IPV6_RTHDR\n option name and possibly a zero option length or invalid option value,\n which triggers a NULL pointer dereference. (CVE-2007-1388)\n \n net/ipv6/tcp_ipv6.c in Linux kernel 2.4 and 2.6.x up to 2.6.21-rc3\n inadvertently copies the ipv6_fl_socklist from a listening TCP socket\n to child sockets, which allows local users to cause a denial of service\n (OOPS) or double-free by opening a listeing IPv6 socket, attaching a\n flow label, and connecting to that socket. (CVE-2007-1592)\n \n The provided packages are patched to fix these vulnerabilities.\n All users are encouraged to upgrade to these updated kernels immediately\n and reboot to effect the fixes.\n \n In addition to these security fixes, other fixes have been included\n such as:\n \n - Suspend to disk speed improvements\n - Add nmi watchdog support for core2\n - Add atl1 driver\n - Update KVM\n - Add acer_acpi\n - Update asus_acpi\n - Fix suspend on r8169, i8259A\n - Fix suspend when using ondemand governor\n - Add ide acpi support\n - Add suspend/resume support ... \n\n Description truncated, for more information please check the Reference URL\";\n\ntag_affected = \"kernel on Mandriva Linux 2007.0,\n Mandriva Linux 2007.0/X86_64\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.mandriva.com/security-announce/2007-04/msg00006.php\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.830108\");\n script_version(\"$Revision: 9370 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:53:14 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2009-04-09 13:53:01 +0200 (Thu, 09 Apr 2009)\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name: \"MDKSA\", value: \"2007:078\");\n script_cve_id(\"CVE-2006-6056\", \"CVE-2007-0005\", \"CVE-2007-0772\", \"CVE-2004-1073\", \"CVE-2007-0958\", \"CVE-2007-1000\", \"CVE-2007-1217\", \"CVE-2007-1388\", \"CVE-2007-1592\");\n script_name( \"Mandriva Update for kernel MDKSA-2007:078 (kernel)\");\n\n script_tag(name:\"summary\", value:\"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"Mandrake Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/mandriva_mandrake_linux\", \"ssh/login/release\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"MNDK_2007.0\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.17.13mdv~1~1mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.17.13mdv~1~1mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-enterprise\", rpm:\"kernel-enterprise~2.6.17.13mdv~1~1mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-legacy\", rpm:\"kernel-legacy~2.6.17.13mdv~1~1mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-source\", rpm:\"kernel-source~2.6.17.13mdv~1~1mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-source-stripped\", rpm:\"kernel-source-stripped~2.6.17.13mdv~1~1mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen0\", rpm:\"kernel-xen0~2.6.17.13mdv~1~1mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU\", rpm:\"kernel-xenU~2.6.17.13mdv~1~1mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-12-04T11:28:04", "references": ["470-1", "http://www.ubuntu.com/usn/usn-470-1/"], "pluginID": "840165", "description": "Ubuntu Update for Linux kernel vulnerabilities USN-470-1", "edition": 3, "reporter": "Copyright (C) 2009 Greenbone Networks GmbH", "published": "2009-03-23T00:00:00", "title": "Ubuntu Update for linux-source-2.6.20 vulnerabilities USN-470-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2007-1353", "CVE-2007-2453", "CVE-2007-2451"], "modified": "2017-12-01T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=840165", "id": "OPENVAS:840165", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_470_1.nasl 7969 2017-12-01 09:23:16Z santu $\n#\n# Ubuntu Update for linux-source-2.6.20 vulnerabilities USN-470-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"USN-464-1 fixed several vulnerabilities in the Linux kernel. Some\n additional code changes were accidentally included in the Feisty update\n which caused trouble for some people who were not using UUID-based\n filesystem mounts. These changes have been reverted. We apologize for\n the inconvenience. For more information see:\n <A HREF='https://launchpad.net/bugs/117314'>https://launchpad.net/bugs/117314</A>\n <A HREF='https://wiki.ubuntu.com/UsingUUID'>https://wiki.ubuntu.com/UsingUUID</A>\n\n Ilja van Sprundel discovered that Bluetooth setsockopt calls could leak\n kernel memory contents via an uninitialized stack buffer. A local\n attacker could exploit this flaw to view sensitive kernel information.\n (CVE-2007-1353)\n \n The GEODE-AES driver did not correctly initialize its encryption key.\n Any data encrypted using this type of device would be easily compromised.\n (CVE-2007-2451)\n \n The random number generator was hashing a subset of the available\n entropy, leading to slightly less random numbers. Additionally, systems\n without an entropy source would be seeded with the same inputs at boot\n time, leading to a repeatable series of random numbers. (CVE-2007-2453)\";\n\ntag_summary = \"Ubuntu Update for Linux kernel vulnerabilities USN-470-1\";\ntag_affected = \"linux-source-2.6.20 vulnerabilities on Ubuntu 7.04\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-470-1/\");\n script_id(840165);\n script_version(\"$Revision: 7969 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-01 10:23:16 +0100 (Fri, 01 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-03-23 10:55:18 +0100 (Mon, 23 Mar 2009)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_xref(name: \"USN\", value: \"470-1\");\n script_cve_id(\"CVE-2007-1353\", \"CVE-2007-2451\", \"CVE-2007-2453\");\n script_name( \"Ubuntu Update for linux-source-2.6.20 vulnerabilities USN-470-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU7.04\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-headers\", ver:\"2.6.20-16-386_2.6.20-16.29\", rls:\"UBUNTU7.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers\", ver:\"2.6.20-16-generic_2.6.20-16.29\", rls:\"UBUNTU7.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers\", ver:\"2.6.20-16-lowlatency_2.6.20-16.29\", rls:\"UBUNTU7.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers\", ver:\"2.6.20-16-server-bigiron_2.6.20-16.29\", rls:\"UBUNTU7.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers\", ver:\"2.6.20-16-server_2.6.20-16.29\", rls:\"UBUNTU7.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers\", ver:\"2.6.20-16_2.6.20-16.29\", rls:\"UBUNTU7.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image\", ver:\"2.6.20-16-386_2.6.20-16.29\", rls:\"UBUNTU7.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image\", ver:\"2.6.20-16-generic_2.6.20-16.29\", rls:\"UBUNTU7.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image\", ver:\"2.6.20-16-lowlatency_2.6.20-16.29\", rls:\"UBUNTU7.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image\", ver:\"2.6.20-16-server-bigiron_2.6.20-16.29\", rls:\"UBUNTU7.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image\", ver:\"2.6.20-16-server_2.6.20-16.29\", rls:\"UBUNTU7.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-debug\", ver:\"2.6.20-16-386_2.6.20-16.29\", rls:\"UBUNTU7.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-debug\", ver:\"2.6.20-16-generic_2.6.20-16.29\", rls:\"UBUNTU7.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-debug\", ver:\"2.6.20-16-lowlatency_2.6.20-16.29\", rls:\"UBUNTU7.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-debug\", ver:\"2.6.20-16-server-bigiron_2.6.20-16.29\", rls:\"UBUNTU7.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-debug\", ver:\"2.6.20-16-server_2.6.20-16.29\", rls:\"UBUNTU7.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-libc-dev\", ver:\"2.6.20-16.29\", rls:\"UBUNTU7.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-doc\", ver:\"2.6.20_2.6.20-16.29\", rls:\"UBUNTU7.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-kernel-devel\", ver:\"2.6.20-16.29\", rls:\"UBUNTU7.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-source\", ver:\"2.6.20_2.6.20-16.29\", rls:\"UBUNTU7.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2017-07-24T12:52:54", "references": ["http://linux.oracle.com/errata/ELSA-2007-0376.html"], "pluginID": "1361412562310122679", "description": "Oracle Linux Local Security Checks ELSA-2007-0376", "edition": 3, "reporter": "Eero Volotinen", "published": "2015-10-08T00:00:00", "title": "Oracle Linux Local Check: ELSA-2007-0376", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Oracle Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2007-1353", "CVE-2006-7203", "CVE-2007-2453", "CVE-2007-2525"], "modified": "2017-07-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122679", "id": "OPENVAS:1361412562310122679", "sourceData": "# OpenVAS Vulnerability Test \n# Description: Oracle Linux Local Check \n# $Id: ELSA-2007-0376.nasl 6561 2017-07-06 12:03:14Z cfischer $\n \n# Authors: \n# Eero Volotinen <eero.volotinen@solinor.com> \n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\nif(description)\n {\nscript_oid(\"1.3.6.1.4.1.25623.1.0.122679\");\nscript_version(\"$Revision: 6561 $\");\nscript_tag(name:\"creation_date\", value:\"2015-10-08 14:51:01 +0300 (Thu, 08 Oct 2015)\");\nscript_tag(name:\"last_modification\", value:\"$Date: 2017-07-06 14:03:14 +0200 (Thu, 06 Jul 2017) $\");\nscript_name(\"Oracle Linux Local Check: ELSA-2007-0376\");\nscript_tag(name: \"insight\", value: \"ELSA-2007-0376 - Important: kernel security and bug fix update - [2.6.18-8.1.6.0.1.el5] -Fix bonding primary=ethX so it picks correct network (Bert Barbe) [IT 101532] [ORA 5136660] -Add entropy module option to e1000 (John Sobecki) [ORA 6045759] -Add entropy module option to bnx2 (John Sobecki) [ORA 6045759] [2.6.18.8-1.6.el5] - [bluetooth] close information leaks in setsockopt (Marcel Holtmann ) [241862]{CVE-2007-1353} - [net] fix memory leak in PPPoE (Neil Horman ) [241863] {CVE-2007-2525} - [random] fix seeding of dev/random (Aristeu Rozanski ) [241888] [2.6.18-8.1.5.el5] - [fs] prevent oops in compat_sys_mount (Jeff Layton ) [240456] {CVE-2006-7203} - [e1000] fix watchdog timeout panics (Andy Gospodarek ) [238048] - [ext3] return ENOENT from ext3_link when racing with unlink (Eric Sandeen ) [239787]\"); \nscript_tag(name : \"solution\", value : \"update software\");\nscript_tag(name : \"solution_type\", value : \"VendorFix\");\nscript_tag(name : \"summary\", value : \"Oracle Linux Local Security Checks ELSA-2007-0376\");\nscript_xref(name : \"URL\" , value : \"http://linux.oracle.com/errata/ELSA-2007-0376.html\");\nscript_cve_id(\"CVE-2006-7203\",\"CVE-2007-1353\",\"CVE-2007-2453\",\"CVE-2007-2525\");\nscript_tag(name:\"cvss_base\", value:\"4.9\");\nscript_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:N/I:N/A:C\");\nscript_tag(name:\"qod_type\", value:\"package\");\nscript_dependencies(\"gather-package-list.nasl\");\nscript_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\");\nscript_category(ACT_GATHER_INFO);\nscript_copyright(\"Eero Volotinen\");\nscript_family(\"Oracle Linux Local Security Checks\");\nexit(0);\n}\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\nrelease = get_kb_item(\"ssh/login/release\");\nres = \"\";\nif(release == NULL)\n{\n exit(0);\n}\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.18~8.1.6.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-PAE\", rpm:\"kernel-PAE~2.6.18~8.1.6.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-PAE-devel\", rpm:\"kernel-PAE-devel~2.6.18~8.1.6.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.18~8.1.6.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.18~8.1.6.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.18~8.1.6.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.18~8.1.6.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.18~8.1.6.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~8.1.6.0.1.el5~1.2.6~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~8.1.6.0.1.el5PAE~1.2.6~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~8.1.6.0.1.el5xen~1.2.6~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~8.1.6.0.1.el5~2.0.4~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~8.1.6.0.1.el5PAE~2.0.4~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~8.1.6.0.1.el5xen~2.0.4~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif (__pkg_match) exit(99); #Not vulnerable\n exit(0);\n\n", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-07-24T12:50:25", "references": [], "pluginID": "58528", "description": "The remote host is missing an update to linux-2.6\nannounced via advisory DSA 1356-1.", "edition": 2, "reporter": "Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com", "published": "2008-01-17T00:00:00", "title": "Debian Security Advisory DSA 1356-1 (linux-2.6)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2007-2172", "CVE-2007-2876", "CVE-2007-3848", "CVE-2007-1353", "CVE-2007-3851", "CVE-2007-3513", "CVE-2007-2453", "CVE-2007-3642", "CVE-2007-2525"], "modified": "2017-07-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=58528", "id": "OPENVAS:58528", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_1356_1.nasl 6616 2017-07-07 12:10:49Z cfischer $\n# Description: Auto-generated from advisory DSA 1356-1\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largerly excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Several local and remote vulnerabilities have been discovered in the Linux\nkernel that may lead to a denial of service or the execution of arbitrary\ncode. For more details, please visit the referenced security advisories.\n\nThese problems have been fixed in the stable distribution in version\n2.6.18.dfsg.1-13etch1.\n\nThe following matrix lists additional packages that were rebuilt for\ncompatibility with or to take advantage of this update:\n\nDebian 4.0 (etch)\nfai-kernels 1.17+etch4\nuser-mode-linux 2.6.18-1um-2etch3\n\nWe recommend that you upgrade your kernel package immediately and reboot\";\ntag_summary = \"The remote host is missing an update to linux-2.6\nannounced via advisory DSA 1356-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201356-1\";\n\nif(description)\n{\n script_id(58528);\n script_version(\"$Revision: 6616 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 14:10:49 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2008-01-17 23:19:52 +0100 (Thu, 17 Jan 2008)\");\n script_cve_id(\"CVE-2007-1353\", \"CVE-2007-2172\", \"CVE-2007-2453\", \"CVE-2007-2525\", \"CVE-2007-2876\", \"CVE-2007-3513\", \"CVE-2007-3642\", \"CVE-2007-3848\", \"CVE-2007-3851\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_name(\"Debian Security Advisory DSA 1356-1 (linux-2.6)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"linux-doc-2.6.18\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-manual-2.6.18\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-patch-debian-2.6.18\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-source-2.6.18\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-support-2.6.18-5\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-tree-2.6.18\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-all\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-all-alpha\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-alpha-generic\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-alpha-legacy\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-alpha-smp\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-vserver\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-vserver-alpha\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-alpha-generic\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-alpha-legacy\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-alpha-smp\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-vserver-alpha\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-all-amd64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-amd64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-vserver-amd64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-xen\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-xen-amd64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-xen-vserver\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-xen-vserver-amd64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-vserver-amd64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-xen-amd64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-xen-vserver-amd64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-modules-2.6.18-5-xen-amd64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-modules-2.6.18-5-xen-vserver-amd64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"xen-linux-system-2.6.18-5-xen-amd64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"xen-linux-system-2.6.18-5-xen-vserver-amd64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-all-arm\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-footbridge\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-iop32x\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-ixp4xx\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-rpc\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-s3c2410\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-footbridge\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-iop32x\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-ixp4xx\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-rpc\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-s3c2410\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-all-hppa\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-parisc\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-parisc-smp\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-parisc64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-parisc64-smp\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-parisc\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-parisc-smp\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-parisc64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-parisc64-smp\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-486\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-686\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-686-bigmem\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-all-i386\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-k7\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-vserver-686\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-vserver-k7\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-xen-686\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-xen-vserver-686\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-486\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-686\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-686-bigmem\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-amd64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-k7\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-vserver-686\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-vserver-k7\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-xen-686\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-xen-vserver-686\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-modules-2.6.18-5-xen-686\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-modules-2.6.18-5-xen-vserver-686\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"xen-linux-system-2.6.18-5-xen-686\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"xen-linux-system-2.6.18-5-xen-vserver-686\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-all-ia64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-itanium\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-mckinley\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-itanium\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-mckinley\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-all-mips\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-qemu\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-r4k-ip22\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-r5k-ip32\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-sb1-bcm91250a\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-sb1a-bcm91480b\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-qemu\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-r4k-ip22\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-r5k-ip32\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-sb1-bcm91250a\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-sb1a-bcm91480b\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-all-mipsel\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-r3k-kn02\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-r4k-kn04\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-r5k-cobalt\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-r3k-kn02\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-r4k-kn04\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-r5k-cobalt\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-all-powerpc\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-powerpc\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-powerpc-miboot\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-powerpc-smp\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-powerpc64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-prep\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-vserver-powerpc\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-vserver-powerpc64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-powerpc\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-powerpc-miboot\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-powerpc-smp\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-powerpc64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-prep\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-vserver-powerpc\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-vserver-powerpc64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-all-s390\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-s390\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-s390x\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-vserver-s390x\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-s390\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-s390-tape\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-s390x\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-vserver-s390x\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-all-sparc\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-sparc32\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-sparc64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-sparc64-smp\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-5-vserver-sparc64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-sparc32\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-sparc64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-sparc64-smp\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-5-vserver-sparc64\", ver:\"2.6.18.dfsg.1-13etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-12-04T11:29:20", "references": ["486-1", "http://www.ubuntu.com/usn/usn-486-1/"], "pluginID": "840134", "description": "Ubuntu Update for Linux kernel vulnerabilities USN-486-1", "edition": 3, "reporter": "Copyright (C) 2009 Greenbone Networks GmbH", "published": "2009-03-23T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "Ubuntu Update for linux-source-2.6.17 vulnerabilities USN-486-1", "type": "openvas", "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2007-2876", "CVE-2007-1353", "CVE-2006-7203", "CVE-2007-2242", "CVE-2007-2453", "CVE-2007-2875", "CVE-2007-0005", "CVE-2007-1861", "CVE-2007-1000", "CVE-2007-2878", "CVE-2007-2525"], "modified": "2017-12-01T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=840134", "id": "OPENVAS:840134", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_486_1.nasl 7969 2017-12-01 09:23:16Z santu $\n#\n# Ubuntu Update for linux-source-2.6.17 vulnerabilities USN-486-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The compat_sys_mount function allowed local users to cause a denial of\n service when mounting a smbfs filesystem in compatibility mode.\n (CVE-2006-7203)\n\n The Omnikey CardMan 4040 driver (cm4040_cs) did not limit the size of\n buffers passed to read() and write(). A local attacker could exploit\n this to execute arbitrary code with kernel privileges. (CVE-2007-0005)\n \n Due to a variable handling flaw in the ipv6_getsockopt_sticky()\n function a local attacker could exploit the getsockopt() calls to\n read arbitrary kernel memory. This could disclose sensitive data.\n (CVE-2007-1000)\n \n Ilja van Sprundel discovered that Bluetooth setsockopt calls could leak\n kernel memory contents via an uninitialized stack buffer. A local\n attacker could exploit this flaw to view sensitive kernel information.\n (CVE-2007-1353)\n \n A flaw was discovered in the handling of netlink messages. Local\n attackers could cause infinite recursion leading to a denial of service.\n (CVE-2007-1861)\n \n A flaw was discovered in the IPv6 stack's handling of type 0 route\n headers. By sending a specially crafted IPv6 packet, a remote attacker\n could cause a denial of service between two IPv6 hosts. (CVE-2007-2242)\n \n The random number generator was hashing a subset of the available\n entropy, leading to slightly less random numbers. Additionally, systems\n without an entropy source would be seeded with the same inputs at boot\n time, leading to a repeatable series of random numbers. (CVE-2007-2453)\n \n A flaw was discovered in the PPP over Ethernet implementation. Local\n attackers could manipulate ioctls and cause kernel memory consumption\n leading to a denial of service. (CVE-2007-2525)\n \n An integer underflow was discovered in the cpuset filesystem. If mounted,\n local attackers could obtain kernel memory using large file offsets\n while reading the tasks file. This could disclose sensitive data.\n (CVE-2007-2875)\n \n Vilmos Nebehaj discovered that the SCTP netfilter code did not correctly\n validate certain states. A remote attacker could send a specially\n crafted packet causing a denial of service. (CVE-2007-2876)\n \n Luca Tettamanti discovered a flaw in the VFAT compat ioctls on 64-bit\n systems. A local attacker could corrupt a kernel_dirent struct and\n cause a denial of service. (CVE-2007-2878)\";\n\ntag_summary = \"Ubuntu Update for Linux kernel vulnerabilities USN-486-1\";\ntag_affected = \"linux-source-2.6.17 vulnerabilities on Ubuntu 6.10\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-486-1/\");\n script_id(840134);\n script_version(\"$Revision: 7969 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-01 10:23:16 +0100 (Fri, 01 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-03-23 10:55:18 +0100 (Mon, 23 Mar 2009)\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name: \"USN\", value: \"486-1\");\n script_cve_id(\"CVE-2006-7203\", \"CVE-2007-0005\", \"CVE-2007-1000\", \"CVE-2007-1353\", \"CVE-2007-1861\", \"CVE-2007-2242\", \"CVE-2007-2453\", \"CVE-2007-2525\", \"CVE-2007-2875\", \"CVE-2007-2876\", \"CVE-2007-2878\");\n script_name( \"Ubuntu Update for linux-source-2.6.17 vulnerabilities USN-486-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU6.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-headers\", ver:\"2.6.17-12-386_2.6.17.1-12.39\", rls:\"UBUNTU6.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers\", ver:\"2.6.17-12-generic_2.6.17.1-12.39\", rls:\"UBUNTU6.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers\", ver:\"2.6.17-12-server-bigiron_2.6.17.1-12.39\", rls:\"UBUNTU6.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers\", ver:\"2.6.17-12-server_2.6.17.1-12.39\", rls:\"UBUNTU6.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers\", ver:\"2.6.17-12_2.6.17.1-12.39\", rls:\"UBUNTU6.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image\", ver:\"2.6.17-12-386_2.6.17.1-12.39\", rls:\"UBUNTU6.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image\", ver:\"2.6.17-12-generic_2.6.17.1-12.39\", rls:\"UBUNTU6.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image\", ver:\"2.6.17-12-server-bigiron_2.6.17.1-12.39\", rls:\"UBUNTU6.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image\", ver:\"2.6.17-12-server_2.6.17.1-12.39\", rls:\"UBUNTU6.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-debug\", ver:\"2.6.17-12-386_2.6.17.1-12.39\", rls:\"UBUNTU6.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-debug\", ver:\"2.6.17-12-generic_2.6.17.1-12.39\", rls:\"UBUNTU6.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-debug\", ver:\"2.6.17-12-server-bigiron_2.6.17.1-12.39\", rls:\"UBUNTU6.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-debug\", ver:\"2.6.17-12-server_2.6.17.1-12.39\", rls:\"UBUNTU6.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-kdump\", ver:\"2.6.17.1-12.39\", rls:\"UBUNTU6.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-libc-dev\", ver:\"2.6.17.1-12.39\", rls:\"UBUNTU6.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-doc\", ver:\"2.6.17_2.6.17.1-12.39\", rls:\"UBUNTU6.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-kernel-devel\", ver:\"2.6.17.1-12.39\", rls:\"UBUNTU6.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-source\", ver:\"2.6.17_2.6.17.1-12.39\", rls:\"UBUNTU6.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-04-06T11:40:09", "references": [], "pluginID": "136141256231065237", "description": "The remote host is missing updates to packages that affect\nthe security of your system. One or more of the following packages\nare affected:\n\n um-host-install-initrd\n kernel-smp\n kernel-source\n kernel-debug\n um-host-kernel\n kernel-bigsmp\n kernel-um\n kernel-syms\n kernel-default\n\nFor more information, please visit the referenced security\nadvisories.\n\nMore details may also be found by searching for keyword\n5011429 within the SuSE Enterprise Server 9 patch\ndatabase at http://download.novell.com/patch/finder/", "edition": 1, "reporter": "Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com", "published": "2009-10-10T00:00:00", "title": "SLES9: Security update for Linux kernel", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-6535", "CVE-2007-1353", "CVE-2006-7203", "CVE-2006-6106", "CVE-2006-5754", "CVE-2007-1592", "CVE-2006-5871", "CVE-2006-5753", "CVE-2007-1357", "CVE-2006-2936", "CVE-2006-5749"], "modified": "2018-04-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231065237", "id": "OPENVAS:136141256231065237", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: sles9p5011429.nasl 9350 2018-04-06 07:03:33Z cfischer $\n# Description: Security update for Linux kernel\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_summary = \"The remote host is missing updates to packages that affect\nthe security of your system. One or more of the following packages\nare affected:\n\n um-host-install-initrd\n kernel-smp\n kernel-source\n kernel-debug\n um-host-kernel\n kernel-bigsmp\n kernel-um\n kernel-syms\n kernel-default\n\nFor more information, please visit the referenced security\nadvisories.\n\nMore details may also be found by searching for keyword\n5011429 within the SuSE Enterprise Server 9 patch\ndatabase at http://download.novell.com/patch/finder/\";\n\ntag_solution = \"Please install the updates provided by SuSE.\";\n \nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.65237\");\n script_version(\"$Revision: 9350 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:03:33 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2009-10-10 16:11:46 +0200 (Sat, 10 Oct 2009)\");\n script_cve_id(\"CVE-2006-2936\", \"CVE-2006-5871\", \"CVE-2006-6106\", \"CVE-2006-6535\", \"CVE-2006-5749\", \"CVE-2006-5753\", \"CVE-2006-5754\", \"CVE-2007-1357\", \"CVE-2007-1592\", \"CVE-2007-1353\", \"CVE-2006-7203\");\n script_tag(name:\"cvss_base\", value:\"9.4\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:C/A:C\");\n script_name(\"SLES9: Security update for Linux kernel\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse_sles\", \"ssh/login/rpms\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-rpm.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isrpmvuln(pkg:\"um-host-install-initrd\", rpm:\"um-host-install-initrd~1.0~48.22\", rls:\"SLES9.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 9.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-12-04T11:28:09", "references": ["489-1", "http://www.ubuntu.com/usn/usn-489-1/"], "pluginID": "840028", "description": "Ubuntu Update for Linux kernel vulnerabilities USN-489-1", "edition": 3, "reporter": "Copyright (C) 2009 Greenbone Networks GmbH", "published": "2009-03-23T00:00:00", "title": "Ubuntu Update for linux-source-2.6.15 vulnerability USN-489-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2007-2876", "CVE-2007-1353", "CVE-2006-7203", "CVE-2007-3380", "CVE-2007-3513", "CVE-2007-2453", "CVE-2007-2875", "CVE-2007-0005", "CVE-2006-4623", "CVE-2007-1861", "CVE-2007-1000", "CVE-2007-2878", "CVE-2007-2525"], "modified": "2017-12-01T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=840028", "id": "OPENVAS:840028", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_489_1.nasl 7969 2017-12-01 09:23:16Z santu $\n#\n# Ubuntu Update for linux-source-2.6.15 vulnerability USN-489-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"A flaw was discovered in dvb ULE decapsulation. A remote attacker could\n send a specially crafted message and cause a denial of service.\n (CVE-2006-4623)\n\n The compat_sys_mount function allowed local users to cause a denial of\n service when mounting a smbfs filesystem in compatibility mode.\n (CVE-2006-7203)\n \n The Omnikey CardMan 4040 driver (cm4040_cs) did not limit the size of\n buffers passed to read() and write(). A local attacker could exploit\n this to execute arbitrary code with kernel privileges. (CVE-2007-0005)\n \n Due to an variable handling flaw in the ipv6_getsockopt_sticky()\n function a local attacker could exploit the getsockopt() calls to read\n arbitrary kernel memory. This could disclose sensitive data.\n (CVE-2007-1000)\n \n Ilja van Sprundel discovered that Bluetooth setsockopt calls could\n leak kernel memory contents via an uninitialized stack buffer. A local\n attacker could exploit this flaw to view sensitive kernel information.\n (CVE-2007-1353)\n \n A flaw was discovered in the handling of netlink messages. Local\n attackers could cause infinite recursion leading to a denial of service.\n (CVE-2007-1861)\n \n The random number generator was hashing a subset of the available entropy,\n leading to slightly less random numbers. Additionally, systems without\n an entropy source would be seeded with the same inputs at boot time,\n leading to a repeatable series of random numbers. (CVE-2007-2453)\n \n A flaw was discovered in the PPP over Ethernet implementation. Local\n attackers could manipulate ioctls and cause kernel memory consumption\n leading to a denial of service. (CVE-2007-2525)\n \n An integer underflow was discovered in the cpuset filesystem. If mounted,\n local attackers could obtain kernel memory using large file offsets\n while reading the tasks file. This could disclose sensitive data.\n (CVE-2007-2875)\n \n Vilmos Nebehaj discovered that the SCTP netfilter code did not correctly\n validate certain states. A remote attacker could send a specially\n crafted packet causing a denial of service. (CVE-2007-2876)\n \n Luca Tettamanti discovered a flaw in the VFAT compat ioctls on 64-bit\n systems. A local attacker could corrupt a kernel_dirent struct and\n cause a denial of service. (CVE-2007-2878)\n \n A flaw was discovered in the cluster manager. A remote attacker could\n connect to the DLM port and block further DLM operations.\n (CVE-2007-3380)\n \n A flaw was discovered in the usblcd driver. A local attacker could\n cause large amounts of kernel memory consumption, leading to a denial\n of service. (CVE-2007-3513)\";\n\ntag_summary = \"Ubuntu Update for Linux kernel vulnerabilities USN-489-1\";\ntag_affected = \"linux-source-2.6.15 vulnerability on Ubuntu 6.06 LTS\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-489-1/\");\n script_id(840028);\n script_version(\"$Revision: 7969 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-01 10:23:16 +0100 (Fri, 01 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-03-23 10:55:18 +0100 (Mon, 23 Mar 2009)\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name: \"USN\", value: \"489-1\");\n script_cve_id(\"CVE-2006-4623\", \"CVE-2006-7203\", \"CVE-2007-0005\", \"CVE-2007-1000\", \"CVE-2007-1353\", \"CVE-2007-1861\", \"CVE-2007-2453\", \"CVE-2007-2525\", \"CVE-2007-2875\", \"CVE-2007-2876\", \"CVE-2007-2878\", \"CVE-2007-3380\", \"CVE-2007-3513\");\n script_name( \"Ubuntu Update for linux-source-2.6.15 vulnerability USN-489-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU6.06 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-headers\", ver:\"2.6.15-28-386_2.6.15-28.57\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers\", ver:\"2.6.15-28-686_2.6.15-28.57\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers\", ver:\"2.6.15-28-k7_2.6.15-28.57\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers\", ver:\"2.6.15-28-server-bigiron_2.6.15-28.57\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers\", ver:\"2.6.15-28-server_2.6.15-28.57\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-headers\", ver:\"2.6.15-28_2.6.15-28.57\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image\", ver:\"2.6.15-28-386_2.6.15-28.57\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image\", ver:\"2.6.15-28-686_2.6.15-28.57\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image\", ver:\"2.6.15-28-k7_2.6.15-28.57\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image\", ver:\"2.6.15-28-server-bigiron_2.6.15-28.57\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image\", ver:\"2.6.15-28-server_2.6.15-28.57\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-doc\", ver:\"2.6.15_2.6.15-28.57\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-kernel-devel\", ver:\"2.6.15-28.57\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-source\", ver:\"2.6.15_2.6.15-28.57\", rls:\"UBUNTU6.06 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "nessus": [{"lastseen": "2018-08-11T09:28:58", "references": ["https://security.gentoo.org/glsa/200704-23"], "pluginID": "25111", "description": "The remote host is affected by the vulnerability described in GLSA-200704-23 (capi4k-utils: Buffer overflow)\n\n The bufprint() function in capi4k-utils fails to properly check boundaries of data coming from CAPI packets.\n Impact :\n\n A local attacker could possibly escalate privileges or cause a Denial of Service by sending a crafted CAPI packet.\n Workaround :\n\n There is no known workaround at this time.", "edition": 3, "reporter": "Tenable", "published": "2007-04-30T00:00:00", "title": "GLSA-200704-23 : capi4k-utils: Buffer overflow", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Gentoo Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2007-1217"], "modified": "2018-08-10T00:00:00", "cpe": ["cpe:/o:gentoo:linux", "p-cpe:/a:gentoo:linux:capi4k-utils"], "id": "GENTOO_GLSA-200704-23.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=25111", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 200704-23.\n#\n# The advisory text is Copyright (C) 2001-2015 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(25111);\n script_version(\"1.14\");\n script_cvs_date(\"Date: 2018/08/10 18:07:06\");\n\n script_cve_id(\"CVE-2007-1217\");\n script_xref(name:\"GLSA\", value:\"200704-23\");\n\n script_name(english:\"GLSA-200704-23 : capi4k-utils: Buffer overflow\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-200704-23\n(capi4k-utils: Buffer overflow)\n\n The bufprint() function in capi4k-utils fails to properly check\n boundaries of data coming from CAPI packets.\n \nImpact :\n\n A local attacker could possibly escalate privileges or cause a Denial\n of Service by sending a crafted CAPI packet.\n \nWorkaround :\n\n There is no known workaround at this time.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/200704-23\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"All capi4k-utils users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=net-dialup/capi4k-utils-20050718-r3'\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:capi4k-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/04/27\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/04/30\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2007/02/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2007-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"net-dialup/capi4k-utils\", unaffected:make_list(\"ge 20050718-r3\"), vulnerable:make_list(\"lt 20050718-r3\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:qpkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"capi4k-utils\");\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-10-29T13:40:29", "references": ["http://www.nessus.org/u?0273f279"], "pluginID": "60241", "edition": 2, "description": "- a flaw in the ISDN CAPI subsystem that allowed a remote user to cause a denial of service or potential privilege escalation. (CVE-2007-1217, Moderate)\n\n - a flaw in the Bluetooth subsystem that allowed a local user to trigger an information leak. (CVE-2007-1353, Low)\n\nIn addition to the security issues described above, fixes for the following have been included :\n\n - a race condition in the e1000 network driver that could cause ESB2 systems to be started without the RX unit being turned on.\n\n - a related e1000 bug on ESB2 systems that could cause rlogin to fail.", "reporter": "Tenable", "published": "2012-08-01T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "type": "nessus", "title": "Scientific Linux Security Update : kernel on SL3.x i386/x86_64", "naslFamily": "Scientific Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2007-1353", "CVE-2007-1217"], "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "modified": "2012-08-01T00:00:00", "id": "SL_20070816_KERNEL_ON_SL3.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=60241", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(60241);\n script_version(\"$Revision: 1.1 $\");\n script_cvs_date(\"$Date: 2012/08/01 14:38:52 $\");\n\n script_cve_id(\"CVE-2007-1217\", \"CVE-2007-1353\");\n\n script_name(english:\"Scientific Linux Security Update : kernel on SL3.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - a flaw in the ISDN CAPI subsystem that allowed a remote\n user to cause a denial of service or potential privilege\n escalation. (CVE-2007-1217, Moderate)\n\n - a flaw in the Bluetooth subsystem that allowed a local\n user to trigger an information leak. (CVE-2007-1353,\n Low)\n\nIn addition to the security issues described above, fixes for the\nfollowing have been included :\n\n - a race condition in the e1000 network driver that could\n cause ESB2 systems to be started without the RX unit\n being turned on.\n\n - a related e1000 bug on ESB2 systems that could cause\n rlogin to fail.\"\n );\n # http://listserv.fnal.gov/scripts/wa.exe?A2=ind0708&L=scientific-linux-errata&T=0&P=673\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?0273f279\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/08/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012 Tenable Network Security, Inc.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL3\", reference:\"kernel-2.4.21-51.EL\")) flag++;\nif (rpm_check(release:\"SL3\", cpu:\"i386\", reference:\"kernel-BOOT-2.4.21-51.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"kernel-doc-2.4.21-51.EL\")) flag++;\nif (rpm_check(release:\"SL3\", cpu:\"i386\", reference:\"kernel-hugemem-2.4.21-51.EL\")) flag++;\nif (rpm_check(release:\"SL3\", cpu:\"i386\", reference:\"kernel-hugemem-unsupported-2.4.21-51.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"kernel-smp-2.4.21-51.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"kernel-smp-unsupported-2.4.21-51.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"kernel-source-2.4.21-51.EL\")) flag++;\nif (rpm_check(release:\"SL3\", reference:\"kernel-unsupported-2.4.21-51.EL\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-15T15:23:24", "references": ["https://oss.oracle.com/pipermail/el-errata/2007-September/000319.html"], "pluginID": "67556", "description": "From Red Hat Security Advisory 2007:0774 :\n\nUpdated kernel packages that fix several security issues and bugs in the Red Hat Enterprise Linux 4 kernel are now available.\n\nThis security advisory has been rated as having moderate security impact by the Red Hat Security Response Team.\n\nThe Linux kernel handles the basic functions of the operating system.\n\nThese new kernel packages contain fixes for the security issues described below :\n\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to cause a denial of service or potential remote access. Exploitation would require the attacker to be able to send arbitrary frames over the ISDN network to the victim's machine. (CVE-2007-1217, Moderate)\n\n* a flaw in the perfmon subsystem on ia64 platforms that allowed a local user to cause a denial of service. (CVE-2006-0558, Moderate)\n\nIn addition, the following bugs were addressed :\n\n* a panic after reloading of the LSI Fusion driver.\n\n* a vm performance problem was corrected by balancing inactive page lists.\n\n* added a nodirplus option to address NFSv3 performance issues with large directories.\n\n* changed the personality handling to disallow personality changes of setuid and setgid binaries. This ensures they keep any randomization and Exec-shield protection.\n\nAll Red Hat Enterprise Linux 4 users are advised to upgrade their kernels to the packages associated with their machine architectures and configurations as listed in this erratum.", "edition": 3, "reporter": "Tenable", "published": "2013-07-12T00:00:00", "title": "Oracle Linux 4 : kernel (ELSA-2007-0774)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Oracle Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-0558", "CVE-2007-1217"], "modified": "2018-08-13T00:00:00", "cpe": ["p-cpe:/a:oracle:linux:kernel-hugemem", "p-cpe:/a:oracle:linux:kernel-devel", "p-cpe:/a:oracle:linux:kernel-doc", "p-cpe:/a:oracle:linux:kernel-xenU-devel", "p-cpe:/a:oracle:linux:kernel-xenU", "p-cpe:/a:oracle:linux:kernel-smp-devel", "p-cpe:/a:oracle:linux:kernel-largesmp", "p-cpe:/a:oracle:linux:kernel-smp", "p-cpe:/a:oracle:linux:kernel-hugemem-devel", "cpe:/o:oracle:linux:4", "p-cpe:/a:oracle:linux:kernel", "p-cpe:/a:oracle:linux:kernel-largesmp-devel"], "id": "ORACLELINUX_ELSA-2007-0774.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=67556", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2007:0774 and \n# Oracle Linux Security Advisory ELSA-2007-0774 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(67556);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/08/13 14:32:36\");\n\n script_cve_id(\"CVE-2006-0558\", \"CVE-2007-1217\");\n script_xref(name:\"RHSA\", value:\"2007:0774\");\n\n script_name(english:\"Oracle Linux 4 : kernel (ELSA-2007-0774)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2007:0774 :\n\nUpdated kernel packages that fix several security issues and bugs in\nthe Red Hat Enterprise Linux 4 kernel are now available.\n\nThis security advisory has been rated as having moderate security\nimpact by the Red Hat Security Response Team.\n\nThe Linux kernel handles the basic functions of the operating system.\n\nThese new kernel packages contain fixes for the security issues\ndescribed below :\n\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to\ncause a denial of service or potential remote access. Exploitation\nwould require the attacker to be able to send arbitrary frames over\nthe ISDN network to the victim's machine. (CVE-2007-1217, Moderate)\n\n* a flaw in the perfmon subsystem on ia64 platforms that allowed a\nlocal user to cause a denial of service. (CVE-2006-0558, Moderate)\n\nIn addition, the following bugs were addressed :\n\n* a panic after reloading of the LSI Fusion driver.\n\n* a vm performance problem was corrected by balancing inactive page\nlists.\n\n* added a nodirplus option to address NFSv3 performance issues with\nlarge directories.\n\n* changed the personality handling to disallow personality changes of\nsetuid and setgid binaries. This ensures they keep any randomization\nand Exec-shield protection.\n\nAll Red Hat Enterprise Linux 4 users are advised to upgrade their\nkernels to the packages associated with their machine architectures\nand configurations as listed in this erratum.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2007-September/000319.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-hugemem\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-hugemem-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-largesmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-largesmp-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-smp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-smp-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-xenU\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-xenU-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:4\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/09/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/02/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^4([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 4\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_exists(release:\"EL4\", rpm:\"kernel-2.6.9\") && rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"kernel-2.6.9-55.0.6.0.1.EL\")) flag++;\nif (rpm_exists(release:\"EL4\", rpm:\"kernel-2.6.9\") && rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"kernel-2.6.9-55.0.6.0.1.EL\")) flag++;\nif (rpm_exists(release:\"EL4\", rpm:\"kernel-devel-2.6.9\") && rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"kernel-devel-2.6.9-55.0.6.0.1.EL\")) flag++;\nif (rpm_exists(release:\"EL4\", rpm:\"kernel-devel-2.6.9\") && rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"kernel-devel-2.6.9-55.0.6.0.1.EL\")) flag++;\nif (rpm_exists(release:\"EL4\", rpm:\"kernel-doc-2.6.9\") && rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"kernel-doc-2.6.9-55.0.6.0.1.EL\")) flag++;\nif (rpm_exists(release:\"EL4\", rpm:\"kernel-doc-2.6.9\") && rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"kernel-doc-2.6.9-55.0.6.0.1.EL\")) flag++;\nif (rpm_exists(release:\"EL4\", rpm:\"kernel-hugemem-2.6.9\") && rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"kernel-hugemem-2.6.9-55.0.6.0.1.EL\")) flag++;\nif (rpm_exists(release:\"EL4\", rpm:\"kernel-hugemem-devel-2.6.9\") && rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"kernel-hugemem-devel-2.6.9-55.0.6.0.1.EL\")) flag++;\nif (rpm_exists(release:\"EL4\", rpm:\"kernel-largesmp-2.6.9\") && rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"kernel-largesmp-2.6.9-55.0.6.0.1.EL\")) flag++;\nif (rpm_exists(release:\"EL4\", rpm:\"kernel-largesmp-devel-2.6.9\") && rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"kernel-largesmp-devel-2.6.9-55.0.6.0.1.EL\")) flag++;\nif (rpm_exists(release:\"EL4\", rpm:\"kernel-smp-2.6.9\") && rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"kernel-smp-2.6.9-55.0.6.0.1.EL\")) flag++;\nif (rpm_exists(release:\"EL4\", rpm:\"kernel-smp-2.6.9\") && rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"kernel-smp-2.6.9-55.0.6.0.1.EL\")) flag++;\nif (rpm_exists(release:\"EL4\", rpm:\"kernel-smp-devel-2.6.9\") && rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"kernel-smp-devel-2.6.9-55.0.6.0.1.EL\")) flag++;\nif (rpm_exists(release:\"EL4\", rpm:\"kernel-smp-devel-2.6.9\") && rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"kernel-smp-devel-2.6.9-55.0.6.0.1.EL\")) flag++;\nif (rpm_exists(release:\"EL4\", rpm:\"kernel-xenU-2.6.9\") && rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"kernel-xenU-2.6.9-55.0.6.0.1.EL\")) flag++;\nif (rpm_exists(release:\"EL4\", rpm:\"kernel-xenU-2.6.9\") && rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"kernel-xenU-2.6.9-55.0.6.0.1.EL\")) flag++;\nif (rpm_exists(release:\"EL4\", rpm:\"kernel-xenU-devel-2.6.9\") && rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"kernel-xenU-devel-2.6.9-55.0.6.0.1.EL\")) flag++;\nif (rpm_exists(release:\"EL4\", rpm:\"kernel-xenU-devel-2.6.9\") && rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"kernel-xenU-devel-2.6.9-55.0.6.0.1.EL\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"affected kernel\");\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-10-29T13:42:05", "references": ["http://www.nessus.org/u?445839d7"], "pluginID": "60246", "description": "These new kernel packages contain fixes for the security issues described below :\n\n - a flaw in the ISDN CAPI subsystem that allowed a remote user to cause a denial of service or potential remote access. Exploitation would require the attacker to be able to send arbitrary frames over the ISDN network to the victim's machine. (CVE-2007-1217, Moderate)\n\n - a flaw in the perfmon subsystem on ia64 platforms that allowed a local user to cause a denial of service.\n (CVE-2006-0558, Moderate)\n\nIn addition, the following bugs were addressed :\n\n - a panic after reloading of the LSI Fusion driver.\n\n - a vm performance problem was corrected by balancing inactive page lists.\n\n - added a nodirplus option to address NFSv3 performance issues with large directories.\n\n - changed the personality handling to disallow personality changes of setuid and setgid binaries. This ensures they keep any randomization and Exec-shield protection.", "edition": 2, "reporter": "Tenable", "published": "2012-08-01T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "type": "nessus", "title": "Scientific Linux Security Update : kernel on SL4.x i386/x86_64", "naslFamily": "Scientific Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-0558", "CVE-2007-1217"], "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "modified": "2012-08-01T00:00:00", "id": "SL_20070904_KERNEL_ON_SL4_X.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=60246", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(60246);\n script_version(\"$Revision: 1.1 $\");\n script_cvs_date(\"$Date: 2012/08/01 14:38:52 $\");\n\n script_cve_id(\"CVE-2006-0558\", \"CVE-2007-1217\");\n\n script_name(english:\"Scientific Linux Security Update : kernel on SL4.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"These new kernel packages contain fixes for the security issues\ndescribed below :\n\n - a flaw in the ISDN CAPI subsystem that allowed a remote\n user to cause a denial of service or potential remote\n access. Exploitation would require the attacker to be\n able to send arbitrary frames over the ISDN network to\n the victim's machine. (CVE-2007-1217, Moderate)\n\n - a flaw in the perfmon subsystem on ia64 platforms that\n allowed a local user to cause a denial of service.\n (CVE-2006-0558, Moderate)\n\nIn addition, the following bugs were addressed :\n\n - a panic after reloading of the LSI Fusion driver.\n\n - a vm performance problem was corrected by balancing\n inactive page lists.\n\n - added a nodirplus option to address NFSv3 performance\n issues with large directories.\n\n - changed the personality handling to disallow personality\n changes of setuid and setgid binaries. This ensures they\n keep any randomization and Exec-shield protection.\"\n );\n # http://listserv.fnal.gov/scripts/wa.exe?A2=ind0709&L=scientific-linux-errata&T=0&P=555\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?445839d7\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/09/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012 Tenable Network Security, Inc.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL4\", reference:\"kernel-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"SL4\", reference:\"kernel-devel-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"SL4\", reference:\"kernel-doc-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"SL4\", cpu:\"i386\", reference:\"kernel-hugemem-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"SL4\", cpu:\"i386\", reference:\"kernel-hugemem-devel-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"SL4\", cpu:\"x86_64\", reference:\"kernel-largesmp-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"SL4\", cpu:\"x86_64\", reference:\"kernel-largesmp-devel-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"SL4\", reference:\"kernel-smp-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"SL4\", reference:\"kernel-smp-devel-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"SL4\", reference:\"kernel-xenU-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"SL4\", reference:\"kernel-xenU-devel-2.6.9-55.0.6.EL\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-15T15:43:13", "references": ["https://www.redhat.com/security/data/cve/CVE-2007-1353.html", "https://www.redhat.com/security/data/cve/CVE-2007-1217.html", "http://rhn.redhat.com/errata/RHSA-2007-0671.html"], "pluginID": "25924", "description": "Updated kernel packages that fix several security issues and bugs in the Red Hat Enterprise Linux 3 kernel are now available.\n\nThis security advisory has been rated as having moderate security impact by the Red Hat Security Response Team.\n\nThe Linux kernel handles the basic functions of the operating system.\n\nThese new kernel packages contain fixes for the security issues described below :\n\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to cause a denial of service or potential privilege escalation.\n(CVE-2007-1217, Moderate)\n\n* a flaw in the Bluetooth subsystem that allowed a local user to trigger an information leak. (CVE-2007-1353, Low)\n\nIn addition to the security issues described above, fixes for the following have been included :\n\n* a race condition in the e1000 network driver that could cause ESB2 systems to be started without the RX unit being turned on.\n\n* a related e1000 bug on ESB2 systems that could cause rlogin to fail.\n\nRed Hat would like to thank Ilja van Sprundel for reporting an issue fixed in this erratum.\n\nNote: The kernel-unsupported package contains various drivers and modules that are unsupported and therefore might contain security problems that have not been addressed.\n\nAll Red Hat Enterprise Linux 3 users are advised to upgrade their kernels to the packages associated with their machine architecture and configurations as listed in this erratum.", "edition": 4, "reporter": "Tenable", "published": "2007-08-21T00:00:00", "title": "RHEL 3 : kernel (RHSA-2007:0671)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2007-1353", "CVE-2007-1217"], "modified": "2018-08-13T00:00:00", "cpe": ["cpe:/o:redhat:enterprise_linux:3", "p-cpe:/a:redhat:enterprise_linux:kernel-BOOT", "p-cpe:/a:redhat:enterprise_linux:kernel-hugemem-unsupported", "p-cpe:/a:redhat:enterprise_linux:kernel-unsupported", "p-cpe:/a:redhat:enterprise_linux:kernel-smp", "p-cpe:/a:redhat:enterprise_linux:kernel", "p-cpe:/a:redhat:enterprise_linux:kernel-source", "p-cpe:/a:redhat:enterprise_linux:kernel-smp-unsupported", "p-cpe:/a:redhat:enterprise_linux:kernel-hugemem", "p-cpe:/a:redhat:enterprise_linux:kernel-doc"], "id": "REDHAT-RHSA-2007-0671.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=25924", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2007:0671. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(25924);\n script_version (\"1.19\");\n script_cvs_date(\"Date: 2018/08/13 14:32:37\");\n\n script_cve_id(\"CVE-2007-1217\", \"CVE-2007-1353\");\n script_xref(name:\"RHSA\", value:\"2007:0671\");\n\n script_name(english:\"RHEL 3 : kernel (RHSA-2007:0671)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated kernel packages that fix several security issues and bugs in\nthe Red Hat Enterprise Linux 3 kernel are now available.\n\nThis security advisory has been rated as having moderate security\nimpact by the Red Hat Security Response Team.\n\nThe Linux kernel handles the basic functions of the operating system.\n\nThese new kernel packages contain fixes for the security issues\ndescribed below :\n\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to\ncause a denial of service or potential privilege escalation.\n(CVE-2007-1217, Moderate)\n\n* a flaw in the Bluetooth subsystem that allowed a local user to\ntrigger an information leak. (CVE-2007-1353, Low)\n\nIn addition to the security issues described above, fixes for the\nfollowing have been included :\n\n* a race condition in the e1000 network driver that could cause ESB2\nsystems to be started without the RX unit being turned on.\n\n* a related e1000 bug on ESB2 systems that could cause rlogin to fail.\n\nRed Hat would like to thank Ilja van Sprundel for reporting an issue\nfixed in this erratum.\n\nNote: The kernel-unsupported package contains various drivers and\nmodules that are unsupported and therefore might contain security\nproblems that have not been addressed.\n\nAll Red Hat Enterprise Linux 3 users are advised to upgrade their\nkernels to the packages associated with their machine architecture and\nconfigurations as listed in this erratum.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2007-1217.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2007-1353.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://rhn.redhat.com/errata/RHSA-2007-0671.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-BOOT\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-hugemem\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-hugemem-unsupported\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-smp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-smp-unsupported\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-source\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-unsupported\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/08/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/08/21\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2007/02/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2007-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^3([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 3.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2007:0671\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL3\", reference:\"kernel-2.4.21-51.EL\")) flag++;\n if (rpm_check(release:\"RHEL3\", cpu:\"i386\", reference:\"kernel-BOOT-2.4.21-51.EL\")) flag++;\n if (rpm_check(release:\"RHEL3\", reference:\"kernel-doc-2.4.21-51.EL\")) flag++;\n if (rpm_check(release:\"RHEL3\", cpu:\"i686\", reference:\"kernel-hugemem-2.4.21-51.EL\")) flag++;\n if (rpm_check(release:\"RHEL3\", cpu:\"i686\", reference:\"kernel-hugemem-unsupported-2.4.21-51.EL\")) flag++;\n if (rpm_check(release:\"RHEL3\", cpu:\"i686\", reference:\"kernel-smp-2.4.21-51.EL\")) flag++;\n if (rpm_check(release:\"RHEL3\", cpu:\"x86_64\", reference:\"kernel-smp-2.4.21-51.EL\")) flag++;\n if (rpm_check(release:\"RHEL3\", cpu:\"i686\", reference:\"kernel-smp-unsupported-2.4.21-51.EL\")) flag++;\n if (rpm_check(release:\"RHEL3\", cpu:\"x86_64\", reference:\"kernel-smp-unsupported-2.4.21-51.EL\")) flag++;\n if (rpm_check(release:\"RHEL3\", reference:\"kernel-source-2.4.21-51.EL\")) flag++;\n if (rpm_check(release:\"RHEL3\", reference:\"kernel-unsupported-2.4.21-51.EL\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel / kernel-BOOT / kernel-doc / kernel-hugemem / etc\");\n }\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-10-29T13:45:43", "references": ["http://www.nessus.org/u?5c27b02b"], "pluginID": "60247", "edition": 2, "description": "- a flaw in the ISDN CAPI subsystem that allowed a remote user to cause a denial of service or potential remote access. Exploitation would require the attacker to be able to send arbitrary frames over the ISDN network to the victim's machine. (CVE-2007-1217, Moderate)\n\n - a flaw in the perfmon subsystem on ia64 platforms that allowed a local user to cause a denial of service.\n (CVE-2006-0558, Moderate)\n\nIn addition, the following bugs were addressed :\n\n - a panic after reloading of the LSI Fusion driver.\n\n - a vm performance problem was corrected by balancing inactive page lists.\n\n - added a nodirplus option to address NFSv3 performance issues with large directories.\n\n - changed the personality handling to disallow personality changes of setuid and setgid binaries. This ensures they keep any randomization and Exec-shield protection.", "reporter": "Tenable", "published": "2012-08-01T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "type": "nessus", "title": "Scientific Linux Security Update : kernel on SL5.x i386/x86_64", "naslFamily": "Scientific Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-0558", "CVE-2007-1217"], "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "modified": "2012-08-01T00:00:00", "id": "SL_20070904_KERNEL_ON_SL5_X.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=60247", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(60247);\n script_version(\"$Revision: 1.1 $\");\n script_cvs_date(\"$Date: 2012/08/01 14:38:52 $\");\n\n script_cve_id(\"CVE-2006-0558\", \"CVE-2007-1217\");\n\n script_name(english:\"Scientific Linux Security Update : kernel on SL5.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - a flaw in the ISDN CAPI subsystem that allowed a remote\n user to cause a denial of service or potential remote\n access. Exploitation would require the attacker to be\n able to send arbitrary frames over the ISDN network to\n the victim's machine. (CVE-2007-1217, Moderate)\n\n - a flaw in the perfmon subsystem on ia64 platforms that\n allowed a local user to cause a denial of service.\n (CVE-2006-0558, Moderate)\n\nIn addition, the following bugs were addressed :\n\n - a panic after reloading of the LSI Fusion driver.\n\n - a vm performance problem was corrected by balancing\n inactive page lists.\n\n - added a nodirplus option to address NFSv3 performance\n issues with large directories.\n\n - changed the personality handling to disallow personality\n changes of setuid and setgid binaries. This ensures they\n keep any randomization and Exec-shield protection.\"\n );\n # http://listserv.fnal.gov/scripts/wa.exe?A2=ind0709&L=scientific-linux-errata&T=0&P=910\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?5c27b02b\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/09/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012 Tenable Network Security, Inc.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL5\", reference:\"kernel-2.6.18-8.1.10.el5\")) flag++;\nif (rpm_check(release:\"SL5\", cpu:\"i386\", reference:\"kernel-PAE-2.6.18-8.1.10.el5\")) flag++;\nif (rpm_check(release:\"SL5\", cpu:\"i386\", reference:\"kernel-PAE-devel-2.6.18-8.1.10.el5\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"kernel-devel-2.6.18-8.1.10.el5\")) flag++;\nif (rpm_check(release:\"SL5\", cpu:\"i386\", reference:\"kernel-doc-2.6.18-8.1.10.el5\")) flag++;\nif (rpm_check(release:\"SL5\", cpu:\"x86_64\", reference:\"kernel-headers-2.6.18-8.1.10.el5\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"kernel-xen-2.6.18-8.1.10.el5\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"kernel-xen-devel-2.6.18-8.1.10.el5\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-15T15:06:28", "references": ["https://oss.oracle.com/pipermail/el-errata/2007-August/000302.html"], "pluginID": "67540", "description": "From Red Hat Security Advisory 2007:0671 :\n\nUpdated kernel packages that fix several security issues and bugs in the Red Hat Enterprise Linux 3 kernel are now available.\n\nThis security advisory has been rated as having moderate security impact by the Red Hat Security Response Team.\n\nThe Linux kernel handles the basic functions of the operating system.\n\nThese new kernel packages contain fixes for the security issues described below :\n\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to cause a denial of service or potential privilege escalation.\n(CVE-2007-1217, Moderate)\n\n* a flaw in the Bluetooth subsystem that allowed a local user to trigger an information leak. (CVE-2007-1353, Low)\n\nIn addition to the security issues described above, fixes for the following have been included :\n\n* a race condition in the e1000 network driver that could cause ESB2 systems to be started without the RX unit being turned on.\n\n* a related e1000 bug on ESB2 systems that could cause rlogin to fail.\n\nRed Hat would like to thank Ilja van Sprundel for reporting an issue fixed in this erratum.\n\nNote: The kernel-unsupported package contains various drivers and modules that are unsupported and therefore might contain security problems that have not been addressed.\n\nAll Red Hat Enterprise Linux 3 users are advised to upgrade their kernels to the packages associated with their machine architecture and configurations as listed in this erratum.", "edition": 3, "reporter": "Tenable", "published": "2013-07-12T00:00:00", "title": "Oracle Linux 3 : kernel (ELSA-2007-0671)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Oracle Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2007-1353", "CVE-2007-1217"], "modified": "2018-08-13T00:00:00", "cpe": ["p-cpe:/a:oracle:linux:kernel-hugemem", "p-cpe:/a:oracle:linux:kernel-doc", "p-cpe:/a:oracle:linux:kernel-unsupported", "p-cpe:/a:oracle:linux:kernel-smp", "cpe:/o:oracle:linux:3", "p-cpe:/a:oracle:linux:kernel-BOOT", "p-cpe:/a:oracle:linux:kernel-source", "p-cpe:/a:oracle:linux:kernel", "p-cpe:/a:oracle:linux:kernel-smp-unsupported", "p-cpe:/a:oracle:linux:kernel-hugemem-unsupported"], "id": "ORACLELINUX_ELSA-2007-0671.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=67540", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2007:0671 and \n# Oracle Linux Security Advisory ELSA-2007-0671 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(67540);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/08/13 14:32:36\");\n\n script_cve_id(\"CVE-2007-1217\", \"CVE-2007-1353\");\n script_xref(name:\"RHSA\", value:\"2007:0671\");\n\n script_name(english:\"Oracle Linux 3 : kernel (ELSA-2007-0671)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2007:0671 :\n\nUpdated kernel packages that fix several security issues and bugs in\nthe Red Hat Enterprise Linux 3 kernel are now available.\n\nThis security advisory has been rated as having moderate security\nimpact by the Red Hat Security Response Team.\n\nThe Linux kernel handles the basic functions of the operating system.\n\nThese new kernel packages contain fixes for the security issues\ndescribed below :\n\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to\ncause a denial of service or potential privilege escalation.\n(CVE-2007-1217, Moderate)\n\n* a flaw in the Bluetooth subsystem that allowed a local user to\ntrigger an information leak. (CVE-2007-1353, Low)\n\nIn addition to the security issues described above, fixes for the\nfollowing have been included :\n\n* a race condition in the e1000 network driver that could cause ESB2\nsystems to be started without the RX unit being turned on.\n\n* a related e1000 bug on ESB2 systems that could cause rlogin to fail.\n\nRed Hat would like to thank Ilja van Sprundel for reporting an issue\nfixed in this erratum.\n\nNote: The kernel-unsupported package contains various drivers and\nmodules that are unsupported and therefore might contain security\nproblems that have not been addressed.\n\nAll Red Hat Enterprise Linux 3 users are advised to upgrade their\nkernels to the packages associated with their machine architecture and\nconfigurations as listed in this erratum.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2007-August/000302.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-BOOT\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-hugemem\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-hugemem-unsupported\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-smp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-smp-unsupported\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-source\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:kernel-unsupported\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/08/17\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2007/02/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^3([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 3\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_exists(release:\"EL3\", rpm:\"kernel-2.4.21\") && rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"kernel-2.4.21-51.EL\")) flag++;\nif (rpm_exists(release:\"EL3\", rpm:\"kernel-2.4.21\") && rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"kernel-2.4.21-51.EL\")) flag++;\nif (rpm_exists(release:\"EL3\", rpm:\"kernel-BOOT-2.4.21\") && rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"kernel-BOOT-2.4.21-51.EL\")) flag++;\nif (rpm_exists(release:\"EL3\", rpm:\"kernel-doc-2.4.21\") && rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"kernel-doc-2.4.21-51.EL\")) flag++;\nif (rpm_exists(release:\"EL3\", rpm:\"kernel-doc-2.4.21\") && rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"kernel-doc-2.4.21-51.EL\")) flag++;\nif (rpm_exists(release:\"EL3\", rpm:\"kernel-hugemem-2.4.21\") && rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"kernel-hugemem-2.4.21-51.EL\")) flag++;\nif (rpm_exists(release:\"EL3\", rpm:\"kernel-hugemem-unsupported-2.4.21\") && rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"kernel-hugemem-unsupported-2.4.21-51.EL\")) flag++;\nif (rpm_exists(release:\"EL3\", rpm:\"kernel-smp-2.4.21\") && rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"kernel-smp-2.4.21-51.EL\")) flag++;\nif (rpm_exists(release:\"EL3\", rpm:\"kernel-smp-2.4.21\") && rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"kernel-smp-2.4.21-51.EL\")) flag++;\nif (rpm_exists(release:\"EL3\", rpm:\"kernel-smp-unsupported-2.4.21\") && rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"kernel-smp-unsupported-2.4.21-51.EL\")) flag++;\nif (rpm_exists(release:\"EL3\", rpm:\"kernel-smp-unsupported-2.4.21\") && rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"kernel-smp-unsupported-2.4.21-51.EL\")) flag++;\nif (rpm_exists(release:\"EL3\", rpm:\"kernel-source-2.4.21\") && rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"kernel-source-2.4.21-51.EL\")) flag++;\nif (rpm_exists(release:\"EL3\", rpm:\"kernel-source-2.4.21\") && rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"kernel-source-2.4.21-51.EL\")) flag++;\nif (rpm_exists(release:\"EL3\", rpm:\"kernel-unsupported-2.4.21\") && rpm_check(release:\"EL3\", cpu:\"i386\", reference:\"kernel-unsupported-2.4.21-51.EL\")) flag++;\nif (rpm_exists(release:\"EL3\", rpm:\"kernel-unsupported-2.4.21\") && rpm_check(release:\"EL3\", cpu:\"x86_64\", reference:\"kernel-unsupported-2.4.21-51.EL\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"affected kernel\");\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-10T17:17:42", "references": ["http://www.nessus.org/u?0b672f6e", "http://www.nessus.org/u?13203bc6", "http://www.nessus.org/u?df3339c4"], "pluginID": "26003", "description": "Updated kernel packages that fix several security issues and bugs in the Red Hat Enterprise Linux 4 kernel are now available.\n\nThis security advisory has been rated as having moderate security impact by the Red Hat Security Response Team.\n\nThe Linux kernel handles the basic functions of the operating system.\n\nThese new kernel packages contain fixes for the security issues described below :\n\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to cause a denial of service or potential remote access. Exploitation would require the attacker to be able to send arbitrary frames over the ISDN network to the victim's machine. (CVE-2007-1217, Moderate)\n\n* a flaw in the perfmon subsystem on ia64 platforms that allowed a local user to cause a denial of service. (CVE-2006-0558, Moderate)\n\nIn addition, the following bugs were addressed :\n\n* a panic after reloading of the LSI Fusion driver.\n\n* a vm performance problem was corrected by balancing inactive page lists.\n\n* added a nodirplus option to address NFSv3 performance issues with large directories.\n\n* changed the personality handling to disallow personality changes of setuid and setgid binaries. This ensures they keep any randomization and Exec-shield protection.\n\nAll Red Hat Enterprise Linux 4 users are advised to upgrade their kernels to the packages associated with their machine architectures and configurations as listed in this erratum.", "edition": 3, "reporter": "Tenable", "published": "2007-09-07T00:00:00", "title": "CentOS 4 : kernel (CESA-2007:0774)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-0558", "CVE-2007-1217"], "modified": "2018-08-09T00:00:00", "cpe": ["p-cpe:/a:centos:centos:kernel-xenU-devel", "p-cpe:/a:centos:centos:kernel-largesmp", "p-cpe:/a:centos:centos:kernel-hugemem", "p-cpe:/a:centos:centos:kernel-doc", "cpe:/o:centos:centos:4", "p-cpe:/a:centos:centos:kernel-smp", "p-cpe:/a:centos:centos:kernel-devel", "p-cpe:/a:centos:centos:kernel", "p-cpe:/a:centos:centos:kernel-smp-devel", "p-cpe:/a:centos:centos:kernel-largesmp-devel", "p-cpe:/a:centos:centos:kernel-xenU", "p-cpe:/a:centos:centos:kernel-hugemem-devel"], "id": "CENTOS_RHSA-2007-0774.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=26003", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2007:0774 and \n# CentOS Errata and Security Advisory 2007:0774 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(26003);\n script_version(\"1.12\");\n script_cvs_date(\"Date: 2018/08/09 17:06:35\");\n\n script_cve_id(\"CVE-2006-0558\", \"CVE-2007-1217\");\n script_xref(name:\"RHSA\", value:\"2007:0774\");\n\n script_name(english:\"CentOS 4 : kernel (CESA-2007:0774)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated kernel packages that fix several security issues and bugs in\nthe Red Hat Enterprise Linux 4 kernel are now available.\n\nThis security advisory has been rated as having moderate security\nimpact by the Red Hat Security Response Team.\n\nThe Linux kernel handles the basic functions of the operating system.\n\nThese new kernel packages contain fixes for the security issues\ndescribed below :\n\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to\ncause a denial of service or potential remote access. Exploitation\nwould require the attacker to be able to send arbitrary frames over\nthe ISDN network to the victim's machine. (CVE-2007-1217, Moderate)\n\n* a flaw in the perfmon subsystem on ia64 platforms that allowed a\nlocal user to cause a denial of service. (CVE-2006-0558, Moderate)\n\nIn addition, the following bugs were addressed :\n\n* a panic after reloading of the LSI Fusion driver.\n\n* a vm performance problem was corrected by balancing inactive page\nlists.\n\n* added a nodirplus option to address NFSv3 performance issues with\nlarge directories.\n\n* changed the personality handling to disallow personality changes of\nsetuid and setgid binaries. This ensures they keep any randomization\nand Exec-shield protection.\n\nAll Red Hat Enterprise Linux 4 users are advised to upgrade their\nkernels to the packages associated with their machine architectures\nand configurations as listed in this erratum.\"\n );\n # http://lists.centos.org/pipermail/centos-announce/2007-September/014184.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?0b672f6e\"\n );\n # http://lists.centos.org/pipermail/centos-announce/2007-September/014185.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?13203bc6\"\n );\n # http://lists.centos.org/pipermail/centos-announce/2007-September/014188.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?df3339c4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-hugemem\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-hugemem-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-largesmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-largesmp-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-smp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-smp-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-xenU\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-xenU-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:4\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/09/07\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/09/07\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/02/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2007-2018 Tenable Network Security, Inc.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/CentOS/release\")) audit(AUDIT_OS_NOT, \"CentOS\");\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-4\", reference:\"kernel-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"kernel-devel-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"i386\", reference:\"kernel-doc-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"x86_64\", reference:\"kernel-doc-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"i386\", reference:\"kernel-hugemem-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"i386\", reference:\"kernel-hugemem-devel-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"ia64\", reference:\"kernel-largesmp-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"x86_64\", reference:\"kernel-largesmp-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"ia64\", reference:\"kernel-largesmp-devel-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"x86_64\", reference:\"kernel-largesmp-devel-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"i386\", reference:\"kernel-smp-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"x86_64\", reference:\"kernel-smp-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"i386\", reference:\"kernel-smp-devel-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"x86_64\", reference:\"kernel-smp-devel-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"i386\", reference:\"kernel-xenU-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"x86_64\", reference:\"kernel-xenU-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"i386\", reference:\"kernel-xenU-devel-2.6.9-55.0.6.EL\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"x86_64\", reference:\"kernel-xenU-devel-2.6.9-55.0.6.EL\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-15T15:21:15", "references": ["http://rhn.redhat.com/errata/RHSA-2007-0774.html", "https://www.redhat.com/security/data/cve/CVE-2007-1217.html", "https://www.redhat.com/security/data/cve/CVE-2006-0558.html"], "pluginID": "25985", "description": "Updated kernel packages that fix several security issues and bugs in the Red Hat Enterprise Linux 4 kernel are now available.\n\nThis security advisory has been rated as having moderate security impact by the Red Hat Security Response Team.\n\nThe Linux kernel handles the basic functions of the operating system.\n\nThese new kernel packages contain fixes for the security issues described below :\n\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to cause a denial of service or potential remote access. Exploitation would require the attacker to be able to send arbitrary frames over the ISDN network to the victim's machine. (CVE-2007-1217, Moderate)\n\n* a flaw in the perfmon subsystem on ia64 platforms that allowed a local user to cause a denial of service. (CVE-2006-0558, Moderate)\n\nIn addition, the following bugs were addressed :\n\n* a panic after reloading of the LSI Fusion driver.\n\n* a vm performance problem was corrected by balancing inactive page lists.\n\n* added a nodirplus option to address NFSv3 performance issues with large directories.\n\n* changed the personality handling to disallow personality changes of setuid and setgid binaries. This ensures they keep any randomization and Exec-shield protection.\n\nAll Red Hat Enterprise Linux 4 users are advised to upgrade their kernels to the packages associated with their machine architectures and configurations as listed in this erratum.", "edition": 4, "reporter": "Tenable", "published": "2007-09-05T00:00:00", "title": "RHEL 4 : kernel (RHSA-2007:0774)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-0558", "CVE-2007-1217"], "modified": "2018-08-13T00:00:00", "cpe": ["cpe:/o:redhat:enterprise_linux:4", "p-cpe:/a:redhat:enterprise_linux:kernel-largesmp-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-smp-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-xenU", "p-cpe:/a:redhat:enterprise_linux:kernel-hugemem-devel", "cpe:/o:redhat:enterprise_linux:4.5", "p-cpe:/a:redhat:enterprise_linux:kernel-smp", "p-cpe:/a:redhat:enterprise_linux:kernel", "p-cpe:/a:redhat:enterprise_linux:kernel-hugemem", "p-cpe:/a:redhat:enterprise_linux:kernel-xenU-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-doc", "p-cpe:/a:redhat:enterprise_linux:kernel-largesmp"], "id": "REDHAT-RHSA-2007-0774.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=25985", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2007:0774. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(25985);\n script_version (\"1.18\");\n script_cvs_date(\"Date: 2018/08/13 14:32:37\");\n\n script_cve_id(\"CVE-2006-0558\", \"CVE-2007-1217\");\n script_xref(name:\"RHSA\", value:\"2007:0774\");\n\n script_name(english:\"RHEL 4 : kernel (RHSA-2007:0774)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated kernel packages that fix several security issues and bugs in\nthe Red Hat Enterprise Linux 4 kernel are now available.\n\nThis security advisory has been rated as having moderate security\nimpact by the Red Hat Security Response Team.\n\nThe Linux kernel handles the basic functions of the operating system.\n\nThese new kernel packages contain fixes for the security issues\ndescribed below :\n\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to\ncause a denial of service or potential remote access. Exploitation\nwould require the attacker to be able to send arbitrary frames over\nthe ISDN network to the victim's machine. (CVE-2007-1217, Moderate)\n\n* a flaw in the perfmon subsystem on ia64 platforms that allowed a\nlocal user to cause a denial of service. (CVE-2006-0558, Moderate)\n\nIn addition, the following bugs were addressed :\n\n* a panic after reloading of the LSI Fusion driver.\n\n* a vm performance problem was corrected by balancing inactive page\nlists.\n\n* added a nodirplus option to address NFSv3 performance issues with\nlarge directories.\n\n* changed the personality handling to disallow personality changes of\nsetuid and setgid binaries. This ensures they keep any randomization\nand Exec-shield protection.\n\nAll Red Hat Enterprise Linux 4 users are advised to upgrade their\nkernels to the packages associated with their machine architectures\nand configurations as listed in this erratum.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2006-0558.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2007-1217.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://rhn.redhat.com/errata/RHSA-2007-0774.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-hugemem\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-hugemem-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-largesmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-largesmp-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-smp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-smp-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-xenU\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-xenU-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:4.5\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/09/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/09/05\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/02/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2007-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^4([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 4.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2007:0774\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL4\", reference:\"kernel-2.6.9-55.0.6.EL\")) flag++;\n\n if (rpm_check(release:\"RHEL4\", reference:\"kernel-devel-2.6.9-55.0.6.EL\")) flag++;\n\n if (rpm_check(release:\"RHEL4\", reference:\"kernel-doc-2.6.9-55.0.6.EL\")) flag++;\n\n if (rpm_check(release:\"RHEL4\", cpu:\"i686\", reference:\"kernel-hugemem-2.6.9-55.0.6.EL\")) flag++;\n\n if (rpm_check(release:\"RHEL4\", cpu:\"i686\", reference:\"kernel-hugemem-devel-2.6.9-55.0.6.EL\")) flag++;\n\n if (rpm_check(release:\"RHEL4\", cpu:\"x86_64\", reference:\"kernel-largesmp-2.6.9-55.0.6.EL\")) flag++;\n\n if (rpm_check(release:\"RHEL4\", cpu:\"x86_64\", reference:\"kernel-largesmp-devel-2.6.9-55.0.6.EL\")) flag++;\n\n if (rpm_check(release:\"RHEL4\", cpu:\"i686\", reference:\"kernel-smp-2.6.9-55.0.6.EL\")) flag++;\n\n if (rpm_check(release:\"RHEL4\", cpu:\"x86_64\", reference:\"kernel-smp-2.6.9-55.0.6.EL\")) flag++;\n\n if (rpm_check(release:\"RHEL4\", cpu:\"i686\", reference:\"kernel-smp-devel-2.6.9-55.0.6.EL\")) flag++;\n\n if (rpm_check(release:\"RHEL4\", cpu:\"x86_64\", reference:\"kernel-smp-devel-2.6.9-55.0.6.EL\")) flag++;\n\n if (rpm_check(release:\"RHEL4\", cpu:\"i686\", reference:\"kernel-xenU-2.6.9-55.0.6.EL\")) flag++;\n\n if (rpm_check(release:\"RHEL4\", cpu:\"x86_64\", reference:\"kernel-xenU-2.6.9-55.0.6.EL\")) flag++;\n\n if (rpm_check(release:\"RHEL4\", cpu:\"i686\", reference:\"kernel-xenU-devel-2.6.9-55.0.6.EL\")) flag++;\n\n if (rpm_check(release:\"RHEL4\", cpu:\"x86_64\", reference:\"kernel-xenU-devel-2.6.9-55.0.6.EL\")) flag++;\n\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel / kernel-devel / kernel-doc / kernel-hugemem / etc\");\n }\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-10T17:00:14", "references": ["http://www.nessus.org/u?76c640a8", "http://www.nessus.org/u?f9357661", "http://www.nessus.org/u?5ff69700"], "pluginID": "25908", "description": "Updated kernel packages that fix several security issues and bugs in the Red Hat Enterprise Linux 3 kernel are now available.\n\nThis security advisory has been rated as having moderate security impact by the Red Hat Security Response Team.\n\nThe Linux kernel handles the basic functions of the operating system.\n\nThese new kernel packages contain fixes for the security issues described below :\n\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to cause a denial of service or potential privilege escalation.\n(CVE-2007-1217, Moderate)\n\n* a flaw in the Bluetooth subsystem that allowed a local user to trigger an information leak. (CVE-2007-1353, Low)\n\nIn addition to the security issues described above, fixes for the following have been included :\n\n* a race condition in the e1000 network driver that could cause ESB2 systems to be started without the RX unit being turned on.\n\n* a related e1000 bug on ESB2 systems that could cause rlogin to fail.\n\nRed Hat would like to thank Ilja van Sprundel for reporting an issue fixed in this erratum.\n\nNote: The kernel-unsupported package contains various drivers and modules that are unsupported and therefore might contain security problems that have not been addressed.\n\nAll Red Hat Enterprise Linux 3 users are advised to upgrade their kernels to the packages associated with their machine architecture and configurations as listed in this erratum.", "edition": 3, "reporter": "Tenable", "published": "2007-08-21T00:00:00", "title": "CentOS 3 : kernel (CESA-2007:0671)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2007-1353", "CVE-2007-1217"], "modified": "2018-08-09T00:00:00", "cpe": ["p-cpe:/a:centos:centos:kernel-hugemem-unsupported", "p-cpe:/a:centos:centos:kernel-hugemem", "p-cpe:/a:centos:centos:kernel-doc", "p-cpe:/a:centos:centos:kernel-smp", "p-cpe:/a:centos:centos:kernel", "p-cpe:/a:centos:centos:kernel-BOOT", "p-cpe:/a:centos:centos:kernel-smp-unsupported", "p-cpe:/a:centos:centos:kernel-source", "p-cpe:/a:centos:centos:kernel-unsupported", "cpe:/o:centos:centos:3"], "id": "CENTOS_RHSA-2007-0671.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=25908", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2007:0671 and \n# CentOS Errata and Security Advisory 2007:0671 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(25908);\n script_version(\"1.11\");\n script_cvs_date(\"Date: 2018/08/09 17:06:35\");\n\n script_cve_id(\"CVE-2007-1217\", \"CVE-2007-1353\");\n script_xref(name:\"RHSA\", value:\"2007:0671\");\n\n script_name(english:\"CentOS 3 : kernel (CESA-2007:0671)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated kernel packages that fix several security issues and bugs in\nthe Red Hat Enterprise Linux 3 kernel are now available.\n\nThis security advisory has been rated as having moderate security\nimpact by the Red Hat Security Response Team.\n\nThe Linux kernel handles the basic functions of the operating system.\n\nThese new kernel packages contain fixes for the security issues\ndescribed below :\n\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to\ncause a denial of service or potential privilege escalation.\n(CVE-2007-1217, Moderate)\n\n* a flaw in the Bluetooth subsystem that allowed a local user to\ntrigger an information leak. (CVE-2007-1353, Low)\n\nIn addition to the security issues described above, fixes for the\nfollowing have been included :\n\n* a race condition in the e1000 network driver that could cause ESB2\nsystems to be started without the RX unit being turned on.\n\n* a related e1000 bug on ESB2 systems that could cause rlogin to fail.\n\nRed Hat would like to thank Ilja van Sprundel for reporting an issue\nfixed in this erratum.\n\nNote: The kernel-unsupported package contains various drivers and\nmodules that are unsupported and therefore might contain security\nproblems that have not been addressed.\n\nAll Red Hat Enterprise Linux 3 users are advised to upgrade their\nkernels to the packages associated with their machine architecture and\nconfigurations as listed in this erratum.\"\n );\n # http://lists.centos.org/pipermail/centos-announce/2007-August/014145.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?f9357661\"\n );\n # http://lists.centos.org/pipermail/centos-announce/2007-August/014147.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?5ff69700\"\n );\n # http://lists.centos.org/pipermail/centos-announce/2007-August/014148.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?76c640a8\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kernel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-BOOT\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-hugemem\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-hugemem-unsupported\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-smp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-smp-unsupported\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-source\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:kernel-unsupported\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/08/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/08/21\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2007/02/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2007-2018 Tenable Network Security, Inc.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/CentOS/release\")) audit(AUDIT_OS_NOT, \"CentOS\");\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-3\", reference:\"kernel-2.4.21-51.EL\")) flag++;\nif (rpm_check(release:\"CentOS-3\", cpu:\"i386\", reference:\"kernel-BOOT-2.4.21-51.EL\")) flag++;\nif (rpm_check(release:\"CentOS-3\", reference:\"kernel-doc-2.4.21-51.EL\")) flag++;\nif (rpm_check(release:\"CentOS-3\", cpu:\"i386\", reference:\"kernel-hugemem-2.4.21-51.EL\")) flag++;\nif (rpm_check(release:\"CentOS-3\", cpu:\"i386\", reference:\"kernel-hugemem-unsupported-2.4.21-51.EL\")) flag++;\nif (rpm_check(release:\"CentOS-3\", cpu:\"i386\", reference:\"kernel-smp-2.4.21-51.EL\")) flag++;\nif (rpm_check(release:\"CentOS-3\", cpu:\"x86_64\", reference:\"kernel-smp-2.4.21-51.EL\")) flag++;\nif (rpm_check(release:\"CentOS-3\", cpu:\"i386\", reference:\"kernel-smp-unsupported-2.4.21-51.EL\")) flag++;\nif (rpm_check(release:\"CentOS-3\", cpu:\"x86_64\", reference:\"kernel-smp-unsupported-2.4.21-51.EL\")) flag++;\nif (rpm_check(release:\"CentOS-3\", reference:\"kernel-source-2.4.21-51.EL\")) flag++;\nif (rpm_check(release:\"CentOS-3\", reference:\"kernel-unsupported-2.4.21-51.EL\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "osvdb": [{"lastseen": "2017-04-28T13:20:30", "references": [], "description": "# No description provided by the source\n\n## References:\nVendor Specific News/Changelog Entry: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=408530\nVendor Specific News/Changelog Entry: http://bugzilla.kernel.org/show_bug.cgi?id=8028\n[Secunia Advisory ID:26709](https://secuniaresearch.flexerasoftware.com/advisories/26709/)\n[Secunia Advisory ID:26379](https://secuniaresearch.flexerasoftware.com/advisories/26379/)\n[Secunia Advisory ID:27528](https://secuniaresearch.flexerasoftware.com/advisories/27528/)\n[Secunia Advisory ID:24777](https://secuniaresearch.flexerasoftware.com/advisories/24777/)\n[Secunia Advisory ID:26478](https://secuniaresearch.flexerasoftware.com/advisories/26478/)\nRedHat RHSA: RHSA-2007:0774\nRedHat RHSA: RHSA-2007:0672\nRedHat RHSA: RHSA-2007:0671\nOther Advisory URL: http://security.gentoo.org/glsa/glsa-200704-23.xml\nOther Advisory URL: http://www.mandriva.com/security/advisories?name=MDKSA-2007:078\nOther Advisory URL: http://frontal2.mandriva.com/security/advisories?name=MDKSA-2007:078\nOther Advisory URL: http://support.avaya.com/elmodocs2/security/ASA-2007-404.htm\n[CVE-2007-1217 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1217>](https://vulners.com/cve/CVE-2007-1217 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1217>)\nBugtraq ID: 23333\n", "edition": 1, "reporter": "OSVDB", "published": "2007-02-17T07:51:29", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "title": "Linux Kernel libcapi capiutil.c bufprint Function CAPI Packet Local DoS", "type": "osvdb", "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2007-1217 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1217>"], "modified": "2007-02-17T07:51:29", "href": "https://vulners.com/osvdb/OSVDB:34742", "id": "OSVDB:34742", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2017-04-28T13:20:30", "references": [], "description": "# No description provided by the source\n\n## References:\nVendor Specific News/Changelog Entry: http://www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.34.3\n[Secunia Advisory ID:24976](https://secuniaresearch.flexerasoftware.com/advisories/24976/)\n[Secunia Advisory ID:25596](https://secuniaresearch.flexerasoftware.com/advisories/25596/)\n[Secunia Advisory ID:26133](https://secuniaresearch.flexerasoftware.com/advisories/26133/)\n[Secunia Advisory ID:26450](https://secuniaresearch.flexerasoftware.com/advisories/26450/)\n[Secunia Advisory ID:26379](https://secuniaresearch.flexerasoftware.com/advisories/26379/)\n[Secunia Advisory ID:25700](https://secuniaresearch.flexerasoftware.com/advisories/25700/)\n[Secunia Advisory ID:27528](https://secuniaresearch.flexerasoftware.com/advisories/27528/)\n[Secunia Advisory ID:25683](https://secuniaresearch.flexerasoftware.com/advisories/25683/)\n[Secunia Advisory ID:26289](https://secuniaresearch.flexerasoftware.com/advisories/26289/)\n[Secunia Advisory ID:26139](https://secuniaresearch.flexerasoftware.com/advisories/26139/)\n[Secunia Advisory ID:25838](https://secuniaresearch.flexerasoftware.com/advisories/25838/)\n[Secunia Advisory ID:26478](https://secuniaresearch.flexerasoftware.com/advisories/26478/)\nRedHat RHSA: RHSA-2007:0376\nRedHat RHSA: RHSA-2007:0672\nRedHat RHSA: RHSA-2007:0488\nRedHat RHSA: RHSA-2007:0671\nOther Advisory URL: http://www.ubuntu.com/usn/usn-470-1\nOther Advisory URL: http://www.ubuntu.com/usn/usn-486-1\nOther Advisory URL: http://www.us.debian.org/security/2007/dsa-1356\nOther Advisory URL: http://support.avaya.com/elmodocs2/security/ASA-2007-287.htm\nOther Advisory URL: http://support.avaya.com/elmodocs2/security/ASA-2007-404.htm\nOther Advisory URL: http://lists.opensuse.org/opensuse-security-announce/2007-06/msg00004.html\nOther Advisory URL: http://www.ubuntu.com/usn/usn-489-1\nFrSIRT Advisory: ADV-2007-1495\n[CVE-2007-1353](https://vulners.com/cve/CVE-2007-1353)\nBugtraq ID: 23594\n", "edition": 1, "reporter": "OSVDB", "published": "2007-04-22T12:18:26", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "Linux Kernel L2CAP / HCI Bluetooth copy_from_user Function Arbitrary Memory Disclosure", "type": "osvdb", "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2007-1353"], "modified": "2007-04-22T12:18:26", "href": "https://vulners.com/osvdb/OSVDB:34739", "id": "OSVDB:34739", "cvss": {"score": 2.1, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "redhat": [{"lastseen": "2017-09-09T07:20:19", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "enchantments_done": [], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "i686", "packageFilename": "kernel-devel-2.6.9-55.0.6.EL.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "i686", "packageFilename": "kernel-hugemem-devel-2.6.9-55.0.6.EL.i686.rpm", "packageName": "kernel-hugemem-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "ia64", "packageFilename": "kernel-devel-2.6.9-55.0.6.EL.ia64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "i686", "packageFilename": "kernel-hugemem-2.6.9-55.0.6.EL.i686.rpm", "packageName": "kernel-hugemem", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "x86_64", "packageFilename": "kernel-2.6.9-55.0.6.EL.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "ppc64iseries", "packageFilename": "kernel-devel-2.6.9-55.0.6.EL.ppc64iseries.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "x86_64", "packageFilename": "kernel-largesmp-devel-2.6.9-55.0.6.EL.x86_64.rpm", "packageName": "kernel-largesmp-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "x86_64", "packageFilename": "kernel-largesmp-2.6.9-55.0.6.EL.x86_64.rpm", "packageName": "kernel-largesmp", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "s390", "packageFilename": "kernel-2.6.9-55.0.6.EL.s390.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "x86_64", "packageFilename": "kernel-smp-devel-2.6.9-55.0.6.EL.x86_64.rpm", "packageName": "kernel-smp-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "x86_64", "packageFilename": "kernel-xenU-devel-2.6.9-55.0.6.EL.x86_64.rpm", "packageName": "kernel-xenU-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "i686", "packageFilename": "kernel-smp-devel-2.6.9-55.0.6.EL.i686.rpm", "packageName": "kernel-smp-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "i686", "packageFilename": "kernel-smp-2.6.9-55.0.6.EL.i686.rpm", "packageName": "kernel-smp", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "x86_64", "packageFilename": "kernel-xenU-2.6.9-55.0.6.EL.x86_64.rpm", "packageName": "kernel-xenU", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "noarch", "packageFilename": "kernel-doc-2.6.9-55.0.6.EL.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "ia64", "packageFilename": "kernel-2.6.9-55.0.6.EL.ia64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "i686", "packageFilename": "kernel-2.6.9-55.0.6.EL.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "i686", "packageFilename": "kernel-xenU-2.6.9-55.0.6.EL.i686.rpm", "packageName": "kernel-xenU", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "i686", "packageFilename": "kernel-xenU-devel-2.6.9-55.0.6.EL.i686.rpm", "packageName": "kernel-xenU-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "s390x", "packageFilename": "kernel-devel-2.6.9-55.0.6.EL.s390x.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "s390", "packageFilename": "kernel-devel-2.6.9-55.0.6.EL.s390.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "s390x", "packageFilename": "kernel-2.6.9-55.0.6.EL.s390x.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "ppc64", "packageFilename": "kernel-largesmp-2.6.9-55.0.6.EL.ppc64.rpm", "packageName": "kernel-largesmp", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "ppc64", "packageFilename": "kernel-2.6.9-55.0.6.EL.ppc64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "x86_64", "packageFilename": "kernel-smp-2.6.9-55.0.6.EL.x86_64.rpm", "packageName": "kernel-smp", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "ppc64iseries", "packageFilename": "kernel-2.6.9-55.0.6.EL.ppc64iseries.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "ia64", "packageFilename": "kernel-largesmp-devel-2.6.9-55.0.6.EL.ia64.rpm", "packageName": "kernel-largesmp-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.9-55.0.6.EL.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "ia64", "packageFilename": "kernel-largesmp-2.6.9-55.0.6.EL.ia64.rpm", "packageName": "kernel-largesmp", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "ppc64", "packageFilename": "kernel-largesmp-devel-2.6.9-55.0.6.EL.ppc64.rpm", "packageName": "kernel-largesmp-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "ppc64", "packageFilename": "kernel-devel-2.6.9-55.0.6.EL.ppc64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.6.EL", "arch": "src", "packageFilename": "kernel-2.6.9-55.0.6.EL.src.rpm", "packageName": "kernel", "operator": "lt"}], "description": "The Linux kernel handles the basic functions of the operating system.\r\n\r\nThese new kernel packages contain fixes for the security issues described\r\nbelow:\r\n\r\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to cause a\r\ndenial of service or potential remote access. Exploitation would require\r\nthe attacker to be able to send arbitrary frames over the ISDN network to\r\nthe victim's machine. (CVE-2007-1217, Moderate) \r\n\r\n* a flaw in the perfmon subsystem on ia64 platforms that allowed a local\r\nuser to cause a denial of service. (CVE-2006-0558, Moderate)\r\n\r\nIn addition, the following bugs were addressed:\r\n\r\n* a panic after reloading of the LSI Fusion driver.\r\n\r\n* a vm performance problem was corrected by balancing inactive page lists.\r\n\r\n* added a nodirplus option to address NFSv3 performance issues with large\r\ndirectories.\r\n\r\n* changed the personality handling to disallow personality changes of\r\nsetuid and setgid binaries. This ensures they keep any randomization and\r\nExec-shield protection.\r\n\r\nAll Red Hat Enterprise Linux 4 users are advised to upgrade their kernels\r\nto the packages associated with their machine architectures and\r\nconfigurations as listed in this erratum.", "reporter": "RedHat", "published": "2007-09-04T04:00:00", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "type": "redhat", "title": "(RHSA-2007:0774) Moderate: kernel security and bugfix update", "bulletinFamily": "unix", "cvelist": ["CVE-2006-0558", "CVE-2007-1217"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T12:09:33", "id": "RHSA-2007:0774", "href": "https://access.redhat.com/errata/RHSA-2007:0774", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-03-14T15:43:08", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.4.18-e.65", "arch": "ia64", "packageFilename": "kernel-smp-2.4.18-e.65.ia64.rpm", "packageName": "kernel-smp", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.4.18-e.65", "arch": "ia64", "packageFilename": "kernel-doc-2.4.18-e.65.ia64.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.4.18-e.65", "arch": "ia64", "packageFilename": "kernel-2.4.18-e.65.ia64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.4.18-e.65", "arch": "ia64", "packageFilename": "kernel-source-2.4.18-e.65.ia64.rpm", "packageName": "kernel-source", "operator": "lt"}], "description": "The Linux kernel handles the basic functions of the operating system.\r\n\r\nThese new kernel packages contain fixes for the security issues described\r\nbelow:\r\n\r\n* a flaw in IPV6 flow label handling that allowed a local user to\r\ncause a denial of service (crash). (CVE-2007-1592, Important)\r\n\r\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to cause a\r\ndenial of service or potential privilege escalation. (CVE-2007-1217, Moderate)\r\n\r\n* a flaw in the Bluetooth subsystem that allowed a local user to trigger an\r\ninformation leak. (CVE-2007-1353, Low)\r\n\r\n* a flaw in the supported filesystems that allowed a local privileged user\r\nto cause a denial of service. (CVE-2006-6054, Low)\r\n\r\nRed Hat would like to thank Ilja van Sprundel for reporting an issue fixed\r\nin this erratum.\r\n\r\nAll Red Hat Enterprise Linux 2.1 users are advised to upgrade their kernels\r\nto these updated packages, which contain backported fixes to correct these\r\nissues.", "reporter": "RedHat", "published": "2007-08-08T04:00:00", "type": "redhat", "title": "(RHSA-2007:0673) Important: kernel security update", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-6054", "CVE-2007-1217", "CVE-2007-1353", "CVE-2007-1592"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-03-14T19:25:41", "id": "RHSA-2007:0673", "href": "https://access.redhat.com/errata/RHSA-2007:0673", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-03-14T15:43:10", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.4.9-e.72", "arch": "i386", "packageFilename": "kernel-headers-2.4.9-e.72.i386.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.4.9-e.72", "arch": "i686", "packageFilename": "kernel-2.4.9-e.72.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.4.9-e.72", "arch": "athlon", "packageFilename": "kernel-2.4.9-e.72.athlon.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.4.9-e.72", "arch": "i386", "packageFilename": "kernel-BOOT-2.4.9-e.72.i386.rpm", "packageName": "kernel-BOOT", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.4.9-e.72", "arch": "i686", "packageFilename": "kernel-summit-2.4.9-e.72.i686.rpm", "packageName": "kernel-summit", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.4.9-e.72", "arch": "i386", "packageFilename": "kernel-source-2.4.9-e.72.i386.rpm", "packageName": "kernel-source", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.4.9-e.72", "arch": "i686", "packageFilename": "kernel-enterprise-2.4.9-e.72.i686.rpm", "packageName": "kernel-enterprise", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.4.9-e.72", "arch": "athlon", "packageFilename": "kernel-smp-2.4.9-e.72.athlon.rpm", "packageName": "kernel-smp", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.4.9-e.72", "arch": "i686", "packageFilename": "kernel-smp-2.4.9-e.72.i686.rpm", "packageName": "kernel-smp", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.4.9-e.72", "arch": "i686", "packageFilename": "kernel-debug-2.4.9-e.72.i686.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.4.9-e.72", "arch": "i386", "packageFilename": "kernel-doc-2.4.9-e.72.i386.rpm", "packageName": "kernel-doc", "operator": "lt"}], "description": "The Linux kernel handles the basic functions of the operating system.\r\n\r\nThese new kernel packages contain fixes for the security issues described\r\nbelow:\r\n\r\n* a flaw in IPv6 flow label handling that allowed a local user to cause a\r\ndenial of service (crash). (CVE-2007-1592, Important)\r\n\r\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to cause a\r\ndenial of service or potential privilege escalation. (CVE-2007-1217, Moderate)\r\n\r\n* a flaw in the Bluetooth subsystem that allowed a local user to trigger an\r\ninformation leak. (CVE-2007-1353, Low)\r\n\r\n* various flaws in the supported filesystems that allowed a local\r\nprivileged user to cause a denial of service. (CVE-2006-6054, CVE-2006-6058,\r\nLow)\r\n\r\nRed Hat would like to thank Ilja van Sprundel for reporting an issue fixed\r\nin this erratum.\r\n\r\nAll Red Hat Enterprise Linux 2.1 users are advised to upgrade their kernels\r\nto these updated packages, which contain backported fixes to correct these\r\nissues.", "reporter": "RedHat", "published": "2007-08-08T04:00:00", "type": "redhat", "title": "(RHSA-2007:0672) Important: kernel security update", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-6054", "CVE-2006-6058", "CVE-2007-1217", "CVE-2007-1353", "CVE-2007-1592"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-03-14T19:26:00", "id": "RHSA-2007:0672", "href": "https://access.redhat.com/errata/RHSA-2007:0672", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-09-09T07:19:49", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "enchantments_done": [], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-8.1.10.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-8.1.10.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-8.1.10.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-8.1.10.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-PAE-devel", "packageFilename": "kernel-PAE-devel-2.6.18-8.1.10.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-PAE", "packageFilename": "kernel-PAE-2.6.18-8.1.10.el5.i686.rpm", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-8.1.10.el5.i386.rpm", "arch": "i386", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.18-8.1.10.el5.noarch.rpm", "arch": "noarch", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-8.1.10.el5.src.rpm", "arch": "src", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-8.1.10.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-8.1.10.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-8.1.10.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-8.1.10.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-8.1.10.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-kdump-devel", "packageFilename": "kernel-kdump-devel-2.6.18-8.1.10.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-8.1.10.el5.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-8.1.10.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-kdump", "packageFilename": "kernel-kdump-2.6.18-8.1.10.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-8.1.10.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-8.1.10.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-8.1.10.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-8.1.10.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-8.1.10.el5.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel", "packageFilename": "kernel-2.6.18-8.1.10.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-8.1.10.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-8.1.10.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-8.1.10.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-8.1.10.el5.ia64.rpm", "arch": "ia64", "operator": "lt"}], "description": "The Linux kernel handles the basic functions of the operating system.\r\n\r\nThese new kernel packages contain fixes for the following security issues:\r\n\r\n* a flaw in the DRM driver for Intel graphics cards that allowed a local\r\nuser to access any part of the main memory. To access the DRM functionality\r\na user must have access to the X server which is granted through the\r\ngraphical login. This also only affected systems with an Intel 965 or later\r\ngraphic chipset. (CVE-2007-3851, Important)\r\n\r\n* a flaw in the VFAT compat ioctl handling on 64-bit systems that allowed a\r\nlocal user to corrupt a kernel_dirent struct and cause a denial of service\r\n(system crash). (CVE-2007-2878, Important)\r\n\r\n* a flaw in the connection tracking support for SCTP that allowed a remote\r\nuser to cause a denial of service by dereferencing a NULL pointer.\r\n(CVE-2007-2876, Important)\r\n\r\n* flaw in the CIFS filesystem which could cause the umask values of a\r\nprocess to not be honored. This affected CIFS filesystems where the Unix\r\nextensions are supported. (CVE-2007-3740, Important)\r\n\r\n* a flaw in the stack expansion when using the hugetlb kernel on PowerPC\r\nsystems that allowed a local user to cause a denial of service.\r\n(CVE-2007-3739, Moderate)\r\n\r\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to cause a\r\ndenial of service or potential remote access. Exploitation would require\r\nthe attacker to be able to send arbitrary frames over the ISDN network to\r\nthe victim's machine. (CVE-2007-1217, Moderate)\r\n\r\n* a flaw in the cpuset support that allowed a local user to obtain\r\nsensitive information from kernel memory. To exploit this the cpuset\r\nfilesystem would have to already be mounted. (CVE-2007-2875, Moderate)\r\n\r\n* a flaw in the CIFS handling of the mount option \"sec=\" that didn't enable\r\nintegrity checking and didn't produce any error message. (CVE-2007-3843,\r\nLow)\r\n\r\nRed Hat Enterprise Linux 5 users are advised to upgrade to these packages,\r\nwhich contain backported patches to correct these issues.", "reporter": "RedHat", "published": "2007-09-13T04:00:00", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "type": "redhat", "title": "(RHSA-2007:0705) Important: kernel security update", "bulletinFamily": "unix", "cvelist": ["CVE-2007-1217", "CVE-2007-2875", "CVE-2007-2876", "CVE-2007-2878", "CVE-2007-3739", "CVE-2007-3740", "CVE-2007-3843", "CVE-2007-3851"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T11:50:51", "id": "RHSA-2007:0705", "href": "https://access.redhat.com/errata/RHSA-2007:0705", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-09-09T07:19:47", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "enchantments_done": [], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "i686", "packageFilename": "kernel-xen-2.6.18-8.1.6.el5.i686.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "i686", "packageFilename": "kernel-PAE-2.6.18-8.1.6.el5.i686.rpm", "packageName": "kernel-PAE", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "i386", "packageFilename": "kernel-headers-2.6.18-8.1.6.el5.i386.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "i686", "packageFilename": "kernel-2.6.18-8.1.6.el5.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "noarch", "packageFilename": "kernel-doc-2.6.18-8.1.6.el5.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "src", "packageFilename": "kernel-2.6.18-8.1.6.el5.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "x86_64", "packageFilename": "kernel-headers-2.6.18-8.1.6.el5.x86_64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "x86_64", "packageFilename": "kernel-2.6.18-8.1.6.el5.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "x86_64", "packageFilename": "kernel-xen-2.6.18-8.1.6.el5.x86_64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "ppc64", "packageFilename": "kernel-2.6.18-8.1.6.el5.ppc64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "ppc64", "packageFilename": "kernel-devel-2.6.18-8.1.6.el5.ppc64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "ppc64", "packageFilename": "kernel-kdump-devel-2.6.18-8.1.6.el5.ppc64.rpm", "packageName": "kernel-kdump-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "ppc64", "packageFilename": "kernel-kdump-2.6.18-8.1.6.el5.ppc64.rpm", "packageName": "kernel-kdump", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "ppc", "packageFilename": "kernel-headers-2.6.18-8.1.6.el5.ppc.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "ppc64", "packageFilename": "kernel-headers-2.6.18-8.1.6.el5.ppc64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "s390x", "packageFilename": "kernel-headers-2.6.18-8.1.6.el5.s390x.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "s390x", "packageFilename": "kernel-2.6.18-8.1.6.el5.s390x.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "s390x", "packageFilename": "kernel-devel-2.6.18-8.1.6.el5.s390x.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "i686", "packageFilename": "kernel-PAE-devel-2.6.18-8.1.6.el5.i686.rpm", "packageName": "kernel-PAE-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "i686", "packageFilename": "kernel-devel-2.6.18-8.1.6.el5.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "i686", "packageFilename": "kernel-xen-devel-2.6.18-8.1.6.el5.i686.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.18-8.1.6.el5.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "x86_64", "packageFilename": "kernel-xen-devel-2.6.18-8.1.6.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "ia64", "packageFilename": "kernel-headers-2.6.18-8.1.6.el5.ia64.rpm", "packageName": "kernel-headers", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "ia64", "packageFilename": "kernel-xen-devel-2.6.18-8.1.6.el5.ia64.rpm", "packageName": "kernel-xen-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "ia64", "packageFilename": "kernel-devel-2.6.18-8.1.6.el5.ia64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "ia64", "packageFilename": "kernel-xen-2.6.18-8.1.6.el5.ia64.rpm", "packageName": "kernel-xen", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "ia64", "packageFilename": "kernel-2.6.18-8.1.6.el5.ia64.rpm", "packageName": "kernel", "operator": "lt"}], "description": "The Linux kernel handles the basic functions of the operating system.\r\n\r\nThese new kernel packages contain fixes for the following security issues:\r\n\r\n* a flaw in the mount handling routine for 64-bit systems that allowed a\r\nlocal user to cause denial of service (CVE-2006-7203, Important).\r\n\r\n* a flaw in the PPP over Ethernet implementation that allowed a remote user\r\nto cause a denial of service (CVE-2007-2525, Important).\r\n\r\n* a flaw in the Bluetooth subsystem that allowed a local user to trigger an\r\ninformation leak (CVE-2007-1353, Low).\r\n\r\n* a bug in the random number generator that prevented the manual seeding of\r\nthe entropy pool (CVE-2007-2453, Low).\r\n\r\nIn addition to the security issues described above, fixes for the following\r\nhave been included:\r\n\r\n* a race condition between ext3_link/unlink that could create an orphan\r\ninode list corruption.\r\n\r\n* a bug in the e1000 driver that could lead to a watchdog timeout panic.\r\n\r\nRed Hat Enterprise Linux 5 users are advised to upgrade to these packages,\r\nwhich contain backported patches to correct these issues.", "reporter": "RedHat", "published": "2007-06-14T04:00:00", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "type": "redhat", "title": "(RHSA-2007:0376) Important: kernel security and bug fix update", "bulletinFamily": "unix", "cvelist": ["CVE-2006-7203", "CVE-2007-1353", "CVE-2007-2453", "CVE-2007-2525"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T11:56:07", "id": "RHSA-2007:0376", "href": "https://access.redhat.com/errata/RHSA-2007:0376", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-09-09T07:20:35", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "enchantments_done": [], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "i686", "packageFilename": "kernel-hugemem-2.6.9-55.0.2.EL.i686.rpm", "packageName": "kernel-hugemem", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "i686", "packageFilename": "kernel-hugemem-devel-2.6.9-55.0.2.EL.i686.rpm", "packageName": "kernel-hugemem-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "noarch", "packageFilename": "kernel-doc-2.6.9-55.0.2.EL.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "ia64", "packageFilename": "kernel-2.6.9-55.0.2.EL.ia64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "i686", "packageFilename": "kernel-2.6.9-55.0.2.EL.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "x86_64", "packageFilename": "kernel-smp-devel-2.6.9-55.0.2.EL.x86_64.rpm", "packageName": "kernel-smp-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "i686", "packageFilename": "kernel-smp-devel-2.6.9-55.0.2.EL.i686.rpm", "packageName": "kernel-smp-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "x86_64", "packageFilename": "kernel-smp-2.6.9-55.0.2.EL.x86_64.rpm", "packageName": "kernel-smp", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "x86_64", "packageFilename": "kernel-largesmp-devel-2.6.9-55.0.2.EL.x86_64.rpm", "packageName": "kernel-largesmp-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "s390", "packageFilename": "kernel-2.6.9-55.0.2.EL.s390.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "x86_64", "packageFilename": "kernel-xenU-2.6.9-55.0.2.EL.x86_64.rpm", "packageName": "kernel-xenU", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "x86_64", "packageFilename": "kernel-xenU-devel-2.6.9-55.0.2.EL.x86_64.rpm", "packageName": "kernel-xenU-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "i686", "packageFilename": "kernel-smp-2.6.9-55.0.2.EL.i686.rpm", "packageName": "kernel-smp", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "i686", "packageFilename": "kernel-xenU-2.6.9-55.0.2.EL.i686.rpm", "packageName": "kernel-xenU", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "s390x", "packageFilename": "kernel-2.6.9-55.0.2.EL.s390x.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "i686", "packageFilename": "kernel-xenU-devel-2.6.9-55.0.2.EL.i686.rpm", "packageName": "kernel-xenU-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "s390x", "packageFilename": "kernel-devel-2.6.9-55.0.2.EL.s390x.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "ia64", "packageFilename": "kernel-devel-2.6.9-55.0.2.EL.ia64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "i686", "packageFilename": "kernel-devel-2.6.9-55.0.2.EL.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.9-55.0.2.EL.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "ia64", "packageFilename": "kernel-largesmp-devel-2.6.9-55.0.2.EL.ia64.rpm", "packageName": "kernel-largesmp-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "ia64", "packageFilename": "kernel-largesmp-2.6.9-55.0.2.EL.ia64.rpm", "packageName": "kernel-largesmp", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "ppc64", "packageFilename": "kernel-largesmp-devel-2.6.9-55.0.2.EL.ppc64.rpm", "packageName": "kernel-largesmp-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "x86_64", "packageFilename": "kernel-2.6.9-55.0.2.EL.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "x86_64", "packageFilename": "kernel-largesmp-2.6.9-55.0.2.EL.x86_64.rpm", "packageName": "kernel-largesmp", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "ppc64", "packageFilename": "kernel-2.6.9-55.0.2.EL.ppc64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "ppc64", "packageFilename": "kernel-largesmp-2.6.9-55.0.2.EL.ppc64.rpm", "packageName": "kernel-largesmp", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "ppc64iseries", "packageFilename": "kernel-2.6.9-55.0.2.EL.ppc64iseries.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "ppc64", "packageFilename": "kernel-devel-2.6.9-55.0.2.EL.ppc64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "ppc64iseries", "packageFilename": "kernel-devel-2.6.9-55.0.2.EL.ppc64iseries.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "s390", "packageFilename": "kernel-devel-2.6.9-55.0.2.EL.s390.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.6.9-55.0.2.EL", "arch": "src", "packageFilename": "kernel-2.6.9-55.0.2.EL.src.rpm", "packageName": "kernel", "operator": "lt"}], "description": "The Linux kernel handles the basic functions of the operating system.\r\n\r\nThese new kernel packages contain fixes for the security issues described\r\nbelow:\r\n\r\n* a flaw in the connection tracking support for SCTP that allowed a remote\r\nuser to cause a denial of service by dereferencing a NULL pointer.\r\n(CVE-2007-2876, Important)\r\n\r\n* a flaw in the mount handling routine for 64-bit systems that allowed a\r\nlocal user to cause denial of service (crash). (CVE-2006-7203, Important)\r\n\r\n* a flaw in the IPv4 forwarding base that allowed a local user to cause an\r\nout-of-bounds access. (CVE-2007-2172, Important)\r\n\r\n* a flaw in the PPP over Ethernet implementation that allowed a local user\r\nto cause a denial of service (memory consumption) by creating a socket\r\nusing connect and then releasing it before the PPPIOCGCHAN ioctl has been\r\ncalled. (CVE-2007-2525, Important)\r\n\r\n* a flaw in the fput ioctl handling of 32-bit applications running on\r\n64-bit platforms that allowed a local user to cause a denial of service\r\n(panic). (CVE-2007-0773, Important)\r\n\r\n* a flaw in the NFS locking daemon that allowed a local user to cause\r\ndenial of service (deadlock). (CVE-2006-5158, Moderate)\r\n\r\n* a flaw in the sysfs_readdir function that allowed a local user to cause a\r\ndenial of service by dereferencing a NULL pointer. (CVE-2007-3104, Moderate)\r\n\r\n* a flaw in the core-dump handling that allowed a local user to create core\r\ndumps from unreadable binaries via PT_INTERP. (CVE-2007-0958, Low) \r\n\r\n* a flaw in the Bluetooth subsystem that allowed a local user to trigger an\r\ninformation leak. (CVE-2007-1353, Low)\r\n\r\nIn addition, the following bugs were addressed:\r\n\r\n* the NFS could recurse on the same spinlock. Also, NFS, under certain\r\nconditions, did not completely clean up Posix locks on a file close,\r\nleading to mount failures.\r\n\r\n* the 32bit compatibility didn't return to userspace correct values for the\r\nrt_sigtimedwait system call.\r\n\r\n* the count for unused inodes could be incorrect at times, resulting in\r\ndirty data not being written to disk in a timely manner.\r\n\r\n* the cciss driver had an incorrect disk size calculation (off-by-one\r\nerror) which prevented disk dumps.\r\n\r\nRed Hat would like to thank Ilja van Sprundel and the OpenVZ Linux kernel\r\nteam for reporting issues fixed in this erratum.\r\n\r\nAll Red Hat Enterprise Linux 4 users are advised to upgrade their kernels\r\nto the packages associated with their machine architectures and\r\nconfigurations as listed in this erratum.", "reporter": "RedHat", "published": "2007-06-25T04:00:00", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "type": "redhat", "title": "(RHSA-2007:0488) Important: kernel security update", "bulletinFamily": "unix", "cvelist": ["CVE-2006-5158", "CVE-2006-7203", "CVE-2007-0773", "CVE-2007-0958", "CVE-2007-1353", "CVE-2007-2172", "CVE-2007-2525", "CVE-2007-2876", "CVE-2007-3104"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T12:09:02", "id": "RHSA-2007:0488", "href": "https://access.redhat.com/errata/RHSA-2007:0488", "cvss": {"score": 6.1, "vector": "AV:ADJACENT_NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "centos": [{"lastseen": "2017-10-12T14:46:08", "references": ["https://rhn.redhat.com/errata/RHSA-2007-0671.html", "http://pasi.pirhonen.eu/", "http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xBEFA581B"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-2.4.21-51.EL.src.rpm", "packageName": "kernel", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-2.4.21-51.EL.src.rpm", "packageName": "kernel", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-2.4.21-51.EL.s390.rpm", "packageName": "kernel", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-2.4.21-51.EL.i686.rpm", "packageName": "kernel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-2.4.21-51.EL.x86_64.rpm", "packageName": "kernel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-source-2.4.21-51.EL.x86_64.rpm", "packageName": "kernel-source", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-doc-2.4.21-51.EL.ia64.rpm", "packageName": "kernel-doc", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-smp-unsupported-2.4.21-51.EL.athlon.rpm", "packageName": "kernel-smp-unsupported", "arch": "athlon", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-smp-unsupported-2.4.21-51.EL.x86_64.rpm", "packageName": "kernel-smp-unsupported", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-unsupported-2.4.21-51.EL.i686.rpm", "packageName": "kernel-unsupported", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-2.4.21-51.EL.athlon.rpm", "packageName": "kernel", "arch": "athlon", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-unsupported-2.4.21-51.EL.s390x.rpm", "packageName": "kernel-unsupported", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-2.4.21-51.EL.ia32e.rpm", "packageName": "kernel", "arch": "ia32e", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-smp-2.4.21-51.EL.x86_64.rpm", "packageName": "kernel-smp", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-doc-2.4.21-51.EL.s390.rpm", "packageName": "kernel-doc", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-smp-2.4.21-51.EL.i686.rpm", "packageName": "kernel-smp", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-unsupported-2.4.21-51.EL.ia32e.rpm", "packageName": "kernel-unsupported", "arch": "ia32e", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-doc-2.4.21-51.EL.i386.rpm", "packageName": "kernel-doc", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-BOOT-2.4.21-51.EL.i386.rpm", "packageName": "kernel-BOOT", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-unsupported-2.4.21-51.EL.x86_64.rpm", "packageName": "kernel-unsupported", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-2.4.21-51.EL.i586.rpm", "packageName": "kernel", "arch": "i586", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-smp-2.4.21-51.EL.athlon.rpm", "packageName": "kernel-smp", "arch": "athlon", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-unsupported-2.4.21-51.EL.ia64.rpm", "packageName": "kernel-unsupported", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-source-2.4.21-51.EL.ia64.rpm", "packageName": "kernel-source", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-hugemem-2.4.21-51.EL.i686.rpm", "packageName": "kernel-hugemem", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-unsupported-2.4.21-51.EL.s390.rpm", "packageName": "kernel-unsupported", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-source-2.4.21-51.EL.s390.rpm", "packageName": "kernel-source", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-doc-2.4.21-51.EL.s390x.rpm", "packageName": "kernel-doc", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-unsupported-2.4.21-51.EL.i586.rpm", "packageName": "kernel-unsupported", "arch": "i586", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-source-2.4.21-51.EL.s390x.rpm", "packageName": "kernel-source", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-source-2.4.21-51.EL.i386.rpm", "packageName": "kernel-source", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-hugemem-unsupported-2.4.21-51.EL.i686.rpm", "packageName": "kernel-hugemem-unsupported", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-2.4.21-51.EL.ia64.rpm", "packageName": "kernel", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-doc-2.4.21-51.EL.x86_64.rpm", "packageName": "kernel-doc", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-smp-unsupported-2.4.21-51.EL.i686.rpm", "packageName": "kernel-smp-unsupported", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-unsupported-2.4.21-51.EL.athlon.rpm", "packageName": "kernel-unsupported", "arch": "athlon", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "2.4.21-51.EL", "packageFilename": "kernel-2.4.21-51.EL.s390x.rpm", "packageName": "kernel", "arch": "s390x", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2007:0671\n\n\nThe Linux kernel handles the basic functions of the operating system.\r\n\r\nThese new kernel packages contain fixes for the security issues described\r\nbelow:\r\n\r\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to cause a\r\ndenial of service or potential privilege escalation. (CVE-2007-1217, Moderate)\r\n\r\n* a flaw in the Bluetooth subsystem that allowed a local user to trigger an\r\ninformation leak. (CVE-2007-1353, Low) \r\n\r\nIn addition to the security issues described above, fixes for the following\r\nhave been included:\r\n\r\n* a race condition in the e1000 network driver that could cause ESB2\r\nsystems to be started without the RX unit being turned on. \r\n\r\n* a related e1000 bug on ESB2 systems that could cause rlogin to fail.\r\n\r\nRed Hat would like to thank Ilja van Sprundel for reporting an issue fixed\r\nin this erratum. \r\n\r\nNote: The kernel-unsupported package contains various drivers and modules\r\nthat are unsupported and therefore might contain security problems that\r\nhave not been addressed.\r\n\r\nAll Red Hat Enterprise Linux 3 users are advised to upgrade their kernels\r\nto the packages associated with their machine architecture and\r\nconfigurations as listed in this erratum.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2007-August/014145.html\nhttp://lists.centos.org/pipermail/centos-announce/2007-August/014146.html\nhttp://lists.centos.org/pipermail/centos-announce/2007-August/014147.html\nhttp://lists.centos.org/pipermail/centos-announce/2007-August/014148.html\n\n**Affected packages:**\nkernel\nkernel-BOOT\nkernel-doc\nkernel-hugemem\nkernel-hugemem-unsupported\nkernel-smp\nkernel-smp-unsupported\nkernel-source\nkernel-unsupported\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2007-0671.html", "edition": 2, "reporter": "CentOS Project", "published": "2007-08-16T22:01:30", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "kernel security update", "type": "centos", "bulletinFamily": "unix", "cvelist": ["CVE-2007-1353", "CVE-2007-1217"], "modified": "2007-08-20T12:25:39", "href": "http://lists.centos.org/pipermail/centos-announce/2007-August/014145.html", "id": "CESA-2007:0671", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-10-12T14:45:16", "references": ["http://pasi.pirhonen.eu/", "https://rhn.redhat.com/errata/RHSA-2007-0774.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "i686", "packageName": "kernel-xenU-devel", "packageFilename": "kernel-xenU-devel-2.6.9-55.0.6.EL.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "i586", "packageName": "kernel-smp-devel", "packageFilename": "kernel-smp-devel-2.6.9-55.0.6.EL.i586.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "x86_64", "packageName": "kernel", "packageFilename": "kernel-2.6.9-55.0.6.EL.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "ia64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.9-55.0.6.EL.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "i686", "packageName": "kernel-smp", "packageFilename": "kernel-smp-2.6.9-55.0.6.EL.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "i686", "packageName": "kernel-hugemem", "packageFilename": "kernel-hugemem-2.6.9-55.0.6.EL.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "x86_64", "packageName": "kernel-largesmp-devel", "packageFilename": "kernel-largesmp-devel-2.6.9-55.0.6.EL.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.9-55.0.6.EL.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.9-55.0.6.EL.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "i686", "packageName": "kernel-xenU", "packageFilename": "kernel-xenU-2.6.9-55.0.6.EL.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "i686", "packageName": "kernel-hugemem-devel", "packageFilename": "kernel-hugemem-devel-2.6.9-55.0.6.EL.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "any", "packageName": "kernel", "packageFilename": "kernel-2.6.9-55.0.6.EL.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "any", "packageName": "kernel", "packageFilename": "kernel-2.6.9-55.0.6.EL.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "i686", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.9-55.0.6.EL.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "i686", "packageName": "kernel-smp-devel", "packageFilename": "kernel-smp-devel-2.6.9-55.0.6.EL.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "i586", "packageName": "kernel-smp", "packageFilename": "kernel-smp-2.6.9-55.0.6.EL.i586.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "x86_64", "packageName": "kernel-xenU", "packageFilename": "kernel-xenU-2.6.9-55.0.6.EL.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "x86_64", "packageName": "kernel-smp-devel", "packageFilename": "kernel-smp-devel-2.6.9-55.0.6.EL.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "i586", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.9-55.0.6.EL.i586.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "x86_64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.9-55.0.6.EL.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "i686", "packageName": "kernel", "packageFilename": "kernel-2.6.9-55.0.6.EL.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "s390", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.9-55.0.6.EL.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "s390x", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.9-55.0.6.EL.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "ia64", "packageName": "kernel-largesmp", "packageFilename": "kernel-largesmp-2.6.9-55.0.6.EL.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "ia64", "packageName": "kernel-largesmp-devel", "packageFilename": "kernel-largesmp-devel-2.6.9-55.0.6.EL.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "x86_64", "packageName": "kernel-xenU-devel", "packageFilename": "kernel-xenU-devel-2.6.9-55.0.6.EL.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "x86_64", "packageName": "kernel-smp", "packageFilename": "kernel-smp-2.6.9-55.0.6.EL.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "ia64", "packageName": "kernel", "packageFilename": "kernel-2.6.9-55.0.6.EL.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "x86_64", "packageName": "kernel-largesmp", "packageFilename": "kernel-largesmp-2.6.9-55.0.6.EL.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "i586", "packageName": "kernel", "packageFilename": "kernel-2.6.9-55.0.6.EL.i586.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "s390x", "packageName": "kernel", "packageFilename": "kernel-2.6.9-55.0.6.EL.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.EL", "arch": "s390", "packageName": "kernel", "packageFilename": "kernel-2.6.9-55.0.6.EL.s390.rpm", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2007:0774\n\n\nThe Linux kernel handles the basic functions of the operating system.\r\n\r\nThese new kernel packages contain fixes for the security issues described\r\nbelow:\r\n\r\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to cause a\r\ndenial of service or potential remote access. Exploitation would require\r\nthe attacker to be able to send arbitrary frames over the ISDN network to\r\nthe victim's machine. (CVE-2007-1217, Moderate) \r\n\r\n* a flaw in the perfmon subsystem on ia64 platforms that allowed a local\r\nuser to cause a denial of service. (CVE-2006-0558, Moderate)\r\n\r\nIn addition, the following bugs were addressed:\r\n\r\n* a panic after reloading of the LSI Fusion driver.\r\n\r\n* a vm performance problem was corrected by balancing inactive page lists.\r\n\r\n* added a nodirplus option to address NFSv3 performance issues with large\r\ndirectories.\r\n\r\n* changed the personality handling to disallow personality changes of\r\nsetuid and setgid binaries. This ensures they keep any randomization and\r\nExec-shield protection.\r\n\r\nAll Red Hat Enterprise Linux 4 users are advised to upgrade their kernels\r\nto the packages associated with their machine architectures and\r\nconfigurations as listed in this erratum.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2007-September/014184.html\nhttp://lists.centos.org/pipermail/centos-announce/2007-September/014185.html\nhttp://lists.centos.org/pipermail/centos-announce/2007-September/014188.html\nhttp://lists.centos.org/pipermail/centos-announce/2007-September/014189.html\n\n**Affected packages:**\nkernel\nkernel-devel\nkernel-doc\nkernel-hugemem\nkernel-hugemem-devel\nkernel-largesmp\nkernel-largesmp-devel\nkernel-smp\nkernel-smp-devel\nkernel-xenU\nkernel-xenU-devel\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2007-0774.html", "edition": 2, "reporter": "CentOS Project", "published": "2007-09-07T08:36:09", "title": "kernel security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-0558", "CVE-2007-1217"], "modified": "2007-09-08T01:24:39", "href": "http://lists.centos.org/pipermail/centos-announce/2007-September/014184.html", "id": "CESA-2007:0774", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-01-25T11:02:45", "references": ["https://rhn.redhat.com/errata/rh21as-errata.html", "http://www.ict.swin.edu.au/staff/jnewbigin"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "2", "packageVersion": "2.4.9-e.72", "packageFilename": "kernel-source-2.4.9-e.72.i386.rpm", "packageName": "kernel-source", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "2.4.9-e.72", "packageFilename": "kernel-smp-2.4.9-e.72.i686.rpm", "packageName": "kernel-smp", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "2.4.9-e.72", "packageFilename": "kernel-debug-2.4.9-e.72.i686.rpm", "packageName": "kernel-debug", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "2.4.9-e.72", "packageFilename": "kernel-summit-2.4.9-e.72.i686.rpm", "packageName": "kernel-summit", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "2.4.9-e.72", "packageFilename": "kernel-headers-2.4.9-e.72.i386.rpm", "packageName": "kernel-headers", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "2.4.9-e.72", "packageFilename": "kernel-2.4.9-e.72.i686.rpm", "packageName": "kernel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "2.4.9-e.72", "packageFilename": "kernel-smp-2.4.9-e.72.athlon.rpm", "packageName": "kernel-smp", "arch": "athlon", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "2.4.9-e.72", "packageFilename": "kernel-enterprise-2.4.9-e.72.i686.rpm", "packageName": "kernel-enterprise", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "2.4.9-e.72", "packageFilename": "kernel-BOOT-2.4.9-e.72.i386.rpm", "packageName": "kernel-BOOT", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "2.4.9-e.72", "packageFilename": "kernel-doc-2.4.9-e.72.i386.rpm", "packageName": "kernel-doc", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "2.4.9-e.72", "packageFilename": "kernel-2.4.9-e.72.athlon.rpm", "packageName": "kernel", "arch": "athlon", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2007:0672-01\n\n\nThe Linux kernel handles the basic functions of the operating system.\r\n\r\nThese new kernel packages contain fixes for the security issues described\r\nbelow:\r\n\r\n* a flaw in IPv6 flow label handling that allowed a local user to cause a\r\ndenial of service (crash). (CVE-2007-1592, Important)\r\n\r\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to cause a\r\ndenial of service or potential privilege escalation. (CVE-2007-1217, Moderate)\r\n\r\n* a flaw in the Bluetooth subsystem that allowed a local user to trigger an\r\ninformation leak. (CVE-2007-1353, Low)\r\n\r\n* various flaws in the supported filesystems that allowed a local\r\nprivileged user to cause a denial of service. (CVE-2006-6054, CVE-2006-6058,\r\nLow)\r\n\r\nRed Hat would like to thank Ilja van Sprundel for reporting an issue fixed\r\nin this erratum.\r\n\r\nAll Red Hat Enterprise Linux 2.1 users are advised to upgrade their kernels\r\nto these updated packages, which contain backported fixes to correct these\r\nissues.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2007-August/014139.html\n\n**Affected packages:**\nkernel\nkernel-BOOT\nkernel-debug\nkernel-doc\nkernel-enterprise\nkernel-headers\nkernel-smp\nkernel-source\nkernel-summit\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/rh21as-errata.html", "edition": 3, "reporter": "CentOS Project", "published": "2007-08-09T04:54:35", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "kernel security update", "type": "centos", "bulletinFamily": "unix", "cvelist": ["CVE-2006-6054", "CVE-2007-1353", "CVE-2007-1592", "CVE-2006-6058", "CVE-2007-1217"], "modified": "2007-08-09T04:54:35", "href": "http://lists.centos.org/pipermail/centos-announce/2007-August/014139.html", "id": "CESA-2007:0672-01", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-10-03T18:25:44", "references": ["https://rhn.redhat.com/errata/RHSA-2007-0705.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageFilename": "kernel-xen-2.6.18-8.1.10.el5.i686.rpm", "packageName": "kernel-xen", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageFilename": "kernel-devel-2.6.18-8.1.10.el5.i686.rpm", "packageName": "kernel-devel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageFilename": "kernel-PAE-devel-2.6.18-8.1.10.el5.i686.rpm", "packageName": "kernel-PAE-devel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageFilename": "kernel-xen-devel-2.6.18-8.1.10.el5.i686.rpm", "packageName": "kernel-xen-devel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageFilename": "kernel-xen-devel-2.6.18-8.1.10.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageFilename": "kernel-doc-2.6.18-8.1.10.el5.noarch.rpm", "packageName": "kernel-doc", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageFilename": "kernel-doc-2.6.18-8.1.10.el5.noarch.rpm", "packageName": "kernel-doc", "arch": "noarch", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageFilename": "kernel-headers-2.6.18-8.1.10.el5.x86_64.rpm", "packageName": "kernel-headers", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageFilename": "kernel-headers-2.6.18-8.1.10.el5.i386.rpm", "packageName": "kernel-headers", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageFilename": "kernel-2.6.18-8.1.10.el5.x86_64.rpm", "packageName": "kernel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageFilename": "kernel-2.6.18-8.1.10.el5.i686.rpm", "packageName": "kernel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageFilename": "kernel-2.6.18-8.1.10.el5.src.rpm", "packageName": "kernel", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageFilename": "kernel-2.6.18-8.1.10.el5.src.rpm", "packageName": "kernel", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageFilename": "kernel-devel-2.6.18-8.1.10.el5.x86_64.rpm", "packageName": "kernel-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageFilename": "kernel-xen-2.6.18-8.1.10.el5.x86_64.rpm", "packageName": "kernel-xen", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.el5", "packageFilename": "kernel-PAE-2.6.18-8.1.10.el5.i686.rpm", "packageName": "kernel-PAE", "arch": "i686", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2007:0705\n\n\nThe Linux kernel handles the basic functions of the operating system.\r\n\r\nThese new kernel packages contain fixes for the following security issues:\r\n\r\n* a flaw in the DRM driver for Intel graphics cards that allowed a local\r\nuser to access any part of the main memory. To access the DRM functionality\r\na user must have access to the X server which is granted through the\r\ngraphical login. This also only affected systems with an Intel 965 or later\r\ngraphic chipset. (CVE-2007-3851, Important)\r\n\r\n* a flaw in the VFAT compat ioctl handling on 64-bit systems that allowed a\r\nlocal user to corrupt a kernel_dirent struct and cause a denial of service\r\n(system crash). (CVE-2007-2878, Important)\r\n\r\n* a flaw in the connection tracking support for SCTP that allowed a remote\r\nuser to cause a denial of service by dereferencing a NULL pointer.\r\n(CVE-2007-2876, Important)\r\n\r\n* flaw in the CIFS filesystem which could cause the umask values of a\r\nprocess to not be honored. This affected CIFS filesystems where the Unix\r\nextensions are supported. (CVE-2007-3740, Important)\r\n\r\n* a flaw in the stack expansion when using the hugetlb kernel on PowerPC\r\nsystems that allowed a local user to cause a denial of service.\r\n(CVE-2007-3739, Moderate)\r\n\r\n* a flaw in the ISDN CAPI subsystem that allowed a remote user to cause a\r\ndenial of service or potential remote access. Exploitation would require\r\nthe attacker to be able to send arbitrary frames over the ISDN network to\r\nthe victim's machine. (CVE-2007-1217, Moderate)\r\n\r\n* a flaw in the cpuset support that allowed a local user to obtain\r\nsensitive information from kernel memory. To exploit this the cpuset\r\nfilesystem would have to already be mounted. (CVE-2007-2875, Moderate)\r\n\r\n* a flaw in the CIFS handling of the mount option \"sec=\" that didn't enable\r\nintegrity checking and didn't produce any error message. (CVE-2007-3843,\r\nLow)\r\n\r\nRed Hat Enterprise Linux 5 users are advised to upgrade to these packages,\r\nwhich contain backported patches to correct these issues.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2007-September/014196.html\nhttp://lists.centos.org/pipermail/centos-announce/2007-September/014197.html\n\n**Affected packages:**\nkernel\nkernel-PAE\nkernel-PAE-devel\nkernel-devel\nkernel-doc\nkernel-headers\nkernel-xen\nkernel-xen-devel\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2007-0705.html", "edition": 1, "reporter": "CentOS Project", "published": "2007-09-14T00:58:44", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "kernel security update", "type": "centos", "bulletinFamily": "unix", "cvelist": ["CVE-2007-2876", "CVE-2007-3739", "CVE-2007-3851", "CVE-2007-3843", "CVE-2007-2875", "CVE-2007-3740", "CVE-2007-2878", "CVE-2007-1217"], "modified": "2007-09-14T00:58:45", "href": "http://lists.centos.org/pipermail/centos-announce/2007-September/014197.html", "id": "CESA-2007:0705", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-10-03T18:24:50", "references": ["https://rhn.redhat.com/errata/RHSA-2007-0376.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "i686", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-8.1.6.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "i686", "packageName": "kernel", "packageFilename": "kernel-2.6.18-8.1.6.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "i686", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-8.1.6.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "x86_64", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-8.1.6.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "x86_64", "packageName": "kernel", "packageFilename": "kernel-2.6.18-8.1.6.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "x86_64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.18-8.1.6.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "x86_64", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-8.1.6.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "i686", "packageName": "kernel-xen", "packageFilename": "kernel-xen-2.6.18-8.1.6.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "i686", "packageName": "kernel-PAE", "packageFilename": "kernel-PAE-2.6.18-8.1.6.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "i686", "packageName": "kernel-PAE-devel", "packageFilename": "kernel-PAE-devel-2.6.18-8.1.6.el5.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "i386", "packageName": "kernel-headers", "packageFilename": "kernel-headers-2.6.18-8.1.6.el5.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.18-8.1.6.el5.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.18-8.1.6.el5.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "x86_64", "packageName": "kernel-xen-devel", "packageFilename": "kernel-xen-devel-2.6.18-8.1.6.el5.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "any", "packageName": "kernel", "packageFilename": "kernel-2.6.18-8.1.6.el5.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.el5", "arch": "any", "packageName": "kernel", "packageFilename": "kernel-2.6.18-8.1.6.el5.src.rpm", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2007:0376\n\n\nThe Linux kernel handles the basic functions of the operating system.\r\n\r\nThese new kernel packages contain fixes for the following security issues:\r\n\r\n* a flaw in the mount handling routine for 64-bit systems that allowed a\r\nlocal user to cause denial of service (CVE-2006-7203, Important).\r\n\r\n* a flaw in the PPP over Ethernet implementation that allowed a remote user\r\nto cause a denial of service (CVE-2007-2525, Important).\r\n\r\n* a flaw in the Bluetooth subsystem that allowed a local user to trigger an\r\ninformation leak (CVE-2007-1353, Low).\r\n\r\n* a bug in the random number generator that prevented the manual seeding of\r\nthe entropy pool (CVE-2007-2453, Low).\r\n\r\nIn addition to the security issues described above, fixes for the following\r\nhave been included:\r\n\r\n* a race condition between ext3_link/unlink that could create an orphan\r\ninode list corruption.\r\n\r\n* a bug in the e1000 driver that could lead to a watchdog timeout panic.\r\n\r\nRed Hat Enterprise Linux 5 users are advised to upgrade to these packages,\r\nwhich contain backported patches to correct these issues.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2007-June/013939.html\nhttp://lists.centos.org/pipermail/centos-announce/2007-June/013940.html\n\n**Affected packages:**\nkernel\nkernel-PAE\nkernel-PAE-devel\nkernel-devel\nkernel-doc\nkernel-headers\nkernel-xen\nkernel-xen-devel\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2007-0376.html", "edition": 1, "reporter": "CentOS Project", "published": "2007-06-15T23:44:48", "title": "kernel security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2007-1353", "CVE-2006-7203", "CVE-2007-2453", "CVE-2007-2525"], "modified": "2007-06-15T23:44:49", "href": "http://lists.centos.org/pipermail/centos-announce/2007-June/013940.html", "id": "CESA-2007:0376", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-10-12T14:45:16", "references": ["http://pasi.pirhonen.eu/", "https://rhn.redhat.com/errata/RHSA-2007-0488.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "i686", "packageName": "kernel-xenU", "packageFilename": "kernel-xenU-2.6.9-55.0.2.EL.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "x86_64", "packageName": "kernel-largesmp", "packageFilename": "kernel-largesmp-2.6.9-55.0.2.EL.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "ia64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.9-55.0.2.EL.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "i686", "packageName": "kernel-xenU-devel", "packageFilename": "kernel-xenU-devel-2.6.9-55.0.2.EL.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "x86_64", "packageName": "kernel", "packageFilename": "kernel-2.6.9-55.0.2.EL.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "i586", "packageName": "kernel-smp", "packageFilename": "kernel-smp-2.6.9-55.0.2.EL.i586.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "ia64", "packageName": "kernel-largesmp", "packageFilename": "kernel-largesmp-2.6.9-55.0.2.EL.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "i586", "packageName": "kernel-smp-devel", "packageFilename": "kernel-smp-devel-2.6.9-55.0.2.EL.i586.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "x86_64", "packageName": "kernel-smp", "packageFilename": "kernel-smp-2.6.9-55.0.2.EL.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "any", "packageName": "kernel", "packageFilename": "kernel-2.6.9-55.0.2.EL.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "any", "packageName": "kernel", "packageFilename": "kernel-2.6.9-55.0.2.EL.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "i686", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.9-55.0.2.EL.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "s390", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.9-55.0.2.EL.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "x86_64", "packageName": "kernel-largesmp-devel", "packageFilename": "kernel-largesmp-devel-2.6.9-55.0.2.EL.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "i586", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.9-55.0.2.EL.i586.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "x86_64", "packageName": "kernel-xenU", "packageFilename": "kernel-xenU-2.6.9-55.0.2.EL.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "x86_64", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.9-55.0.2.EL.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "ia64", "packageName": "kernel-largesmp-devel", "packageFilename": "kernel-largesmp-devel-2.6.9-55.0.2.EL.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.9-55.0.2.EL.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "noarch", "packageName": "kernel-doc", "packageFilename": "kernel-doc-2.6.9-55.0.2.EL.noarch.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "i686", "packageName": "kernel-smp", "packageFilename": "kernel-smp-2.6.9-55.0.2.EL.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "i686", "packageName": "kernel-smp-devel", "packageFilename": "kernel-smp-devel-2.6.9-55.0.2.EL.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "s390", "packageName": "kernel", "packageFilename": "kernel-2.6.9-55.0.2.EL.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "x86_64", "packageName": "kernel-smp-devel", "packageFilename": "kernel-smp-devel-2.6.9-55.0.2.EL.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "i686", "packageName": "kernel-hugemem-devel", "packageFilename": "kernel-hugemem-devel-2.6.9-55.0.2.EL.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "i686", "packageName": "kernel", "packageFilename": "kernel-2.6.9-55.0.2.EL.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "s390x", "packageName": "kernel", "packageFilename": "kernel-2.6.9-55.0.2.EL.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "s390x", "packageName": "kernel-devel", "packageFilename": "kernel-devel-2.6.9-55.0.2.EL.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "i686", "packageName": "kernel-hugemem", "packageFilename": "kernel-hugemem-2.6.9-55.0.2.EL.i686.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "i586", "packageName": "kernel", "packageFilename": "kernel-2.6.9-55.0.2.EL.i586.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "x86_64", "packageName": "kernel-xenU-devel", "packageFilename": "kernel-xenU-devel-2.6.9-55.0.2.EL.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.EL", "arch": "ia64", "packageName": "kernel", "packageFilename": "kernel-2.6.9-55.0.2.EL.ia64.rpm", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2007:0488\n\n\nThe Linux kernel handles the basic functions of the operating system.\r\n\r\nThese new kernel packages contain fixes for the security issues described\r\nbelow:\r\n\r\n* a flaw in the connection tracking support for SCTP that allowed a remote\r\nuser to cause a denial of service by dereferencing a NULL pointer.\r\n(CVE-2007-2876, Important)\r\n\r\n* a flaw in the mount handling routine for 64-bit systems that allowed a\r\nlocal user to cause denial of service (crash). (CVE-2006-7203, Important)\r\n\r\n* a flaw in the IPv4 forwarding base that allowed a local user to cause an\r\nout-of-bounds access. (CVE-2007-2172, Important)\r\n\r\n* a flaw in the PPP over Ethernet implementation that allowed a local user\r\nto cause a denial of service (memory consumption) by creating a socket\r\nusing connect and then releasing it before the PPPIOCGCHAN ioctl has been\r\ncalled. (CVE-2007-2525, Important)\r\n\r\n* a flaw in the fput ioctl handling of 32-bit applications running on\r\n64-bit platforms that allowed a local user to cause a denial of service\r\n(panic). (CVE-2007-0773, Important)\r\n\r\n* a flaw in the NFS locking daemon that allowed a local user to cause\r\ndenial of service (deadlock). (CVE-2006-5158, Moderate)\r\n\r\n* a flaw in the sysfs_readdir function that allowed a local user to cause a\r\ndenial of service by dereferencing a NULL pointer. (CVE-2007-3104, Moderate)\r\n\r\n* a flaw in the core-dump handling that allowed a local user to create core\r\ndumps from unreadable binaries via PT_INTERP. (CVE-2007-0958, Low) \r\n\r\n* a flaw in the Bluetooth subsystem that allowed a local user to trigger an\r\ninformation leak. (CVE-2007-1353, Low)\r\n\r\nIn addition, the following bugs were addressed:\r\n\r\n* the NFS could recurse on the same spinlock. Also, NFS, under certain\r\nconditions, did not completely clean up Posix locks on a file close,\r\nleading to mount failures.\r\n\r\n* the 32bit compatibility didn't return to userspace correct values for the\r\nrt_sigtimedwait system call.\r\n\r\n* the count for unused inodes could be incorrect at times, resulting in\r\ndirty data not being written to disk in a timely manner.\r\n\r\n* the cciss driver had an incorrect disk size calculation (off-by-one\r\nerror) which prevented disk dumps.\r\n\r\nRed Hat would like to thank Ilja van Sprundel and the OpenVZ Linux kernel\r\nteam for reporting issues fixed in this erratum.\r\n\r\nAll Red Hat Enterprise Linux 4 users are advised to upgrade their kernels\r\nto the packages associated with their machine architectures and\r\nconfigurations as listed in this erratum.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2007-June/013980.html\nhttp://lists.centos.org/pipermail/centos-announce/2007-June/013981.html\nhttp://lists.centos.org/pipermail/centos-announce/2007-June/014010.html\nhttp://lists.centos.org/pipermail/centos-announce/2007-June/014013.html\n\n**Affected packages:**\nkernel\nkernel-devel\nkernel-doc\nkernel-hugemem\nkernel-hugemem-devel\nkernel-largesmp\nkernel-largesmp-devel\nkernel-smp\nkernel-smp-devel\nkernel-xenU\nkernel-xenU-devel\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2007-0488.html", "edition": 2, "reporter": "CentOS Project", "published": "2007-06-26T23:50:36", "title": "kernel security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "bulletinFamily": "unix", "cvelist": ["CVE-2007-2172", "CVE-2007-2876", "CVE-2007-0773", "CVE-2007-3104", "CVE-2006-5158", "CVE-2007-1353", "CVE-2006-7203", "CVE-2007-0958", "CVE-2007-2525"], "modified": "2007-06-30T09:50:42", "href": "http://lists.centos.org/pipermail/centos-announce/2007-June/013980.html", "id": "CESA-2007:0488", "cvss": {"score": 6.1, "vector": "AV:ADJACENT_NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "oraclelinux": [{"lastseen": "2016-09-04T11:16:53", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.2.5-6", "arch": "x86_64", "packageFilename": "ocfs2-2.6.9-55.0.6.0.1.ELsmp-1.2.5-6.x86_64.rpm", "packageName": "ocfs2-2.6.9-55.0.6.0.1.ELsmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.2.5-6", "arch": "x86_64", "packageFilename": "ocfs2-2.6.9-55.0.6.0.1.ELlargesmp-1.2.5-6.x86_64.rpm", "packageName": "ocfs2-2.6.9-55.0.6.0.1.ELlargesmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.0.1.EL", "arch": "i686", "packageFilename": "kernel-smp-2.6.9-55.0.6.0.1.EL.i686.rpm", "packageName": "kernel-smp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.0.1.EL", "arch": "x86_64", "packageFilename": "kernel-smp-2.6.9-55.0.6.0.1.EL.x86_64.rpm", "packageName": "kernel-smp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.0.1.EL", "arch": "i686", "packageFilename": "kernel-xenU-2.6.9-55.0.6.0.1.EL.i686.rpm", "packageName": "kernel-xenU", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.0.1.EL", "arch": "i686", "packageFilename": "kernel-devel-2.6.9-55.0.6.0.1.EL.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.0.1.EL", "arch": "i686", "packageFilename": "kernel-2.6.9-55.0.6.0.1.EL.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.0.1.EL", "arch": "x86_64", "packageFilename": "kernel-smp-devel-2.6.9-55.0.6.0.1.EL.x86_64.rpm", "packageName": "kernel-smp-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.2.5-6", "arch": "i686", "packageFilename": "ocfs2-2.6.9-55.0.6.0.1.ELhugemem-1.2.5-6.i686.rpm", "packageName": "ocfs2-2.6.9-55.0.6.0.1.ELhugemem", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.3-2", "arch": "i686", "packageFilename": "oracleasm-2.6.9-55.0.6.0.1.ELhugemem-2.0.3-2.i686.rpm", "packageName": "oracleasm-2.6.9-55.0.6.0.1.ELhugemem", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.2.5-6", "arch": "i686", "packageFilename": "ocfs2-2.6.9-55.0.6.0.1.EL-1.2.5-6.i686.rpm", "packageName": "ocfs2-2.6.9-55.0.6.0.1.EL", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.0.1.EL", "arch": "noarch", "packageFilename": "kernel-doc-2.6.9-55.0.6.0.1.EL.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.0.1.EL", "arch": "noarch", "packageFilename": "kernel-doc-2.6.9-55.0.6.0.1.EL.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.0.1.EL", "arch": "i686", "packageFilename": "kernel-hugemem-devel-2.6.9-55.0.6.0.1.EL.i686.rpm", "packageName": "kernel-hugemem-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.3-2", "arch": "src", "packageFilename": "oracleasm-2.6.9-55.0.6.0.1.EL-2.0.3-2.src.rpm", "packageName": "oracleasm-2.6.9-55.0.6.0.1.EL", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.3-2", "arch": "src", "packageFilename": "oracleasm-2.6.9-55.0.6.0.1.EL-2.0.3-2.src.rpm", "packageName": "oracleasm-2.6.9-55.0.6.0.1.EL", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.3-2", "arch": "i686", "packageFilename": "oracleasm-2.6.9-55.0.6.0.1.ELsmp-2.0.3-2.i686.rpm", "packageName": "oracleasm-2.6.9-55.0.6.0.1.ELsmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.0.1.EL", "arch": "i686", "packageFilename": "kernel-smp-devel-2.6.9-55.0.6.0.1.EL.i686.rpm", "packageName": "kernel-smp-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.0.1.EL", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.9-55.0.6.0.1.EL.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.3-2", "arch": "i686", "packageFilename": "oracleasm-2.6.9-55.0.6.0.1.EL-2.0.3-2.i686.rpm", "packageName": "oracleasm-2.6.9-55.0.6.0.1.EL", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.3-2", "arch": "x86_64", "packageFilename": "oracleasm-2.6.9-55.0.6.0.1.ELsmp-2.0.3-2.x86_64.rpm", "packageName": "oracleasm-2.6.9-55.0.6.0.1.ELsmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.3-2", "arch": "x86_64", "packageFilename": "oracleasm-2.6.9-55.0.6.0.1.EL-2.0.3-2.x86_64.rpm", "packageName": "oracleasm-2.6.9-55.0.6.0.1.EL", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.2.5-6", "arch": "x86_64", "packageFilename": "ocfs2-2.6.9-55.0.6.0.1.EL-1.2.5-6.x86_64.rpm", "packageName": "ocfs2-2.6.9-55.0.6.0.1.EL", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.0.1.EL", "arch": "x86_64", "packageFilename": "kernel-xenU-devel-2.6.9-55.0.6.0.1.EL.x86_64.rpm", "packageName": "kernel-xenU-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.2.5-6", "arch": "src", "packageFilename": "ocfs2-2.6.9-55.0.6.0.1.EL-1.2.5-6.src.rpm", "packageName": "ocfs2-2.6.9-55.0.6.0.1.EL", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.2.5-6", "arch": "src", "packageFilename": "ocfs2-2.6.9-55.0.6.0.1.EL-1.2.5-6.src.rpm", "packageName": "ocfs2-2.6.9-55.0.6.0.1.EL", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.0.1.EL", "arch": "x86_64", "packageFilename": "kernel-2.6.9-55.0.6.0.1.EL.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.0.1.EL", "arch": "x86_64", "packageFilename": "kernel-xenU-2.6.9-55.0.6.0.1.EL.x86_64.rpm", "packageName": "kernel-xenU", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.0.1.EL", "arch": "i686", "packageFilename": "kernel-xenU-devel-2.6.9-55.0.6.0.1.EL.i686.rpm", "packageName": "kernel-xenU-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.3-2", "arch": "x86_64", "packageFilename": "oracleasm-2.6.9-55.0.6.0.1.ELlargesmp-2.0.3-2.x86_64.rpm", "packageName": "oracleasm-2.6.9-55.0.6.0.1.ELlargesmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.0.1.EL", "arch": "src", "packageFilename": "kernel-2.6.9-55.0.6.0.1.EL.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.0.1.EL", "arch": "src", "packageFilename": "kernel-2.6.9-55.0.6.0.1.EL.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.2.5-6", "arch": "i686", "packageFilename": "ocfs2-2.6.9-55.0.6.0.1.ELsmp-1.2.5-6.i686.rpm", "packageName": "ocfs2-2.6.9-55.0.6.0.1.ELsmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.6.0.1.EL", "arch": "i686", "packageFilename": "kernel-hugemem-2.6.9-55.0.6.0.1.EL.i686.rpm", "packageName": "kernel-hugemem", "operator": "lt"}], "description": " [2.6.9-55.0.6.0.1]\n - fix entropy flag in bnx2 driver to generate entropy pool (John \n Sobecki) [orabug 5931647]\n - fix for nfs open call taking longer issue (Chuck Lever) orabug 5580407 \n bz [219412]\n - fix enomem due to larger mtu size page alloc (Zach Brown) orabug 5486128\n - fix per_cpu() api bug_on with rds (Zach Brown) orabug 5760648\n - limit nr_requests in cfq io scheduler ( Jens Axboe) bz 234278 orabug \n 5899829\n \n [2.6.9-55.0.6]\n -revert: autofs4 fix for race between mount and expire [248126]\n \n [2.6.9-55.0.4]\n -revert: add missing audit_notify_watch() to removexattr\n -autofs4: fix race between mount and expire (Ian Kent) [248126]\n \n [2.6.9-55.0.3]\n -Fix panic following reload of LSI Fusion driver (Chip Coldwell) [227451]\n -Fix buffer overflow in capi debug functions (Anton Arapov) [243257] \n {CVE-2007-1217}\n -add missing audit_notify_watch() to removexattr (Alexander Viro) [248126]\n -fix VM hangs by balancing inactive lists and setting better values for \n dirty limits (Larry Woodman) [248141]\n -nfs: add nordirplus option (Jeff Layton) [249848]\n -ia64: fix vmalloc perfmon crash (Luming Yu) [250199] {CVE-2006-0558}\n -fix stack randomization across suid/sgid exec (Ernie Petrides) [250200] ", "edition": 1, "reporter": "Oracle", "published": "2007-09-05T00:00:00", "title": "Moderate: kernel security and bugfix update ", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "oraclelinux", "bulletinFamily": "unix", "cvelist": ["CVE-2006-0558", "CVE-2007-1217"], "modified": "2007-09-05T00:00:00", "id": "ELSA-2007-0774", "href": "http://linux.oracle.com/errata/ELSA-2007-0774.html", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T11:16:21", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.0.1.el5", "packageFilename": "kernel-xen-devel-2.6.18-8.1.10.0.1.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.4-1.el5", "packageFilename": "oracleasm-2.6.18-8.1.10.0.1.el5xen-2.0.4-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-8.1.10.0.1.el5xen", "arch": "x86_64", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.0.1.el5", "packageFilename": "kernel-headers-2.6.18-8.1.10.0.1.el5.x86_64.rpm", "packageName": "kernel-headers", "arch": "x86_64", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.4-1.el5", "packageFilename": "oracleasm-2.6.18-8.1.10.0.1.el5-2.0.4-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-8.1.10.0.1.el5", "arch": "src", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.4-1.el5", "packageFilename": "oracleasm-2.6.18-8.1.10.0.1.el5-2.0.4-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-8.1.10.0.1.el5", "arch": "src", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.0.1.el5", "packageFilename": "kernel-xen-2.6.18-8.1.10.0.1.el5.i686.rpm", "packageName": "kernel-xen", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.0.1.el5", "packageFilename": "kernel-2.6.18-8.1.10.0.1.el5.src.rpm", "packageName": "kernel", "arch": "src", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.0.1.el5", "packageFilename": "kernel-2.6.18-8.1.10.0.1.el5.src.rpm", "packageName": "kernel", "arch": "src", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.0.1.el5", "packageFilename": "kernel-2.6.18-8.1.10.0.1.el5.x86_64.rpm", "packageName": "kernel", "arch": "x86_64", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.4-1.el5", "packageFilename": "oracleasm-2.6.18-8.1.10.0.1.el5PAE-2.0.4-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-8.1.10.0.1.el5PAE", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.0.1.el5", "packageFilename": "kernel-headers-2.6.18-8.1.10.0.1.el5.i386.rpm", "packageName": "kernel-headers", "arch": "i386", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.0.1.el5", "packageFilename": "kernel-PAE-devel-2.6.18-8.1.10.0.1.el5.i686.rpm", "packageName": "kernel-PAE-devel", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.0.1.el5", "packageFilename": "kernel-devel-2.6.18-8.1.10.0.1.el5.x86_64.rpm", "packageName": "kernel-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.0.1.el5", "packageFilename": "kernel-2.6.18-8.1.10.0.1.el5.i686.rpm", "packageName": "kernel", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.0.1.el5", "packageFilename": "kernel-xen-2.6.18-8.1.10.0.1.el5.x86_64.rpm", "packageName": "kernel-xen", "arch": "x86_64", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.2.6-6.el5", "packageFilename": "ocfs2-2.6.18-8.1.10.0.1.el5xen-1.2.6-6.el5.i686.rpm", "packageName": "ocfs2-2.6.18-8.1.10.0.1.el5xen", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.2.6-6.el5", "packageFilename": "ocfs2-2.6.18-8.1.10.0.1.el5xen-1.2.6-6.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-8.1.10.0.1.el5xen", "arch": "x86_64", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.4-1.el5", "packageFilename": "oracleasm-2.6.18-8.1.10.0.1.el5-2.0.4-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-8.1.10.0.1.el5", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.2.6-6.el5", "packageFilename": "ocfs2-2.6.18-8.1.10.0.1.el5-1.2.6-6.el5.i686.rpm", "packageName": "ocfs2-2.6.18-8.1.10.0.1.el5", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.0.1.el5", "packageFilename": "kernel-xen-devel-2.6.18-8.1.10.0.1.el5.i686.rpm", "packageName": "kernel-xen-devel", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.4-1.el5", "packageFilename": "oracleasm-2.6.18-8.1.10.0.1.el5xen-2.0.4-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-8.1.10.0.1.el5xen", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.0.1.el5", "packageFilename": "kernel-devel-2.6.18-8.1.10.0.1.el5.i686.rpm", "packageName": "kernel-devel", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.2.6-6.el5", "packageFilename": "ocfs2-2.6.18-8.1.10.0.1.el5PAE-1.2.6-6.el5.i686.rpm", "packageName": "ocfs2-2.6.18-8.1.10.0.1.el5PAE", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.2.6-6.el5", "packageFilename": "ocfs2-2.6.18-8.1.10.0.1.el5-1.2.6-6.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-8.1.10.0.1.el5", "arch": "x86_64", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.4-1.el5", "packageFilename": "oracleasm-2.6.18-8.1.10.0.1.el5-2.0.4-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-8.1.10.0.1.el5", "arch": "x86_64", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.0.1.el5", "packageFilename": "kernel-PAE-2.6.18-8.1.10.0.1.el5.i686.rpm", "packageName": "kernel-PAE", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.0.1.el5", "packageFilename": "kernel-doc-2.6.18-8.1.10.0.1.el5.noarch.rpm", "packageName": "kernel-doc", "arch": "noarch", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.10.0.1.el5", "packageFilename": "kernel-doc-2.6.18-8.1.10.0.1.el5.noarch.rpm", "packageName": "kernel-doc", "arch": "noarch", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.2.6-6.el5", "packageFilename": "ocfs2-2.6.18-8.1.10.0.1.el5-1.2.6-6.el5.src.rpm", "packageName": "ocfs2-2.6.18-8.1.10.0.1.el5", "arch": "src", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.2.6-6.el5", "packageFilename": "ocfs2-2.6.18-8.1.10.0.1.el5-1.2.6-6.el5.src.rpm", "packageName": "ocfs2-2.6.18-8.1.10.0.1.el5", "arch": "src", "operator": "lt"}], "description": " [2.6.18-8.1.10.0.1.el5]\n - Fix bonding primary=ethX (Bert Barbe) [IT 101532] [ORA 5136660]\n - Add entropy module option to e1000/bnx2 (John Sobecki) [ORA 6045759]\n \n [2.6.18-8.1.10.el5]\n - [mm] Prevent the stack growth into hugetlb reserved regions (Konrad \n Rzeszutek) [253313] {CVE-2007-3739}\n \n [2.6.18-8.1.9.el5]\n - [misc] cpuset information leak (Prarit Bhargava ) [245773] {CVE-2007-2875}\n - [net] ip_conntrack_sctp: fix remotely triggerable panic (Don Howard ) \n [245774] {CVE-2007-2876}\n - [misc] Overflow in CAPI subsystem (Anton Arapov ) [232260] {CVE-2007-1217}\n - [CIFS] fix signing sec= mount options (Jeff Layton ) [253315] \n {CVE-2007-3843}\n - [CIFS] respect umask when unix extensions are enabled (Jeff Layton ) \n [253314] {CVE-2007-3740}\n - [misc] i915_dma: fix batch buffer security bit for i965 chipsets \n (Aristeu Rozanski ) [252305] {CVE-2007-3851}\n - [fs] - Move msdos compat ioctl to msdos dir (Eric Sandeen ) [253317]\n - [fs] - fix VFAT compat ioctls on 64-bit systems (Eric Sandeen ) \n [253317] {CVE-2007-2878} ", "edition": 1, "reporter": "Oracle", "published": "2007-09-14T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "Important: kernel security update ", "type": "oraclelinux", "bulletinFamily": "unix", "cvelist": ["CVE-2007-2876", "CVE-2007-3739", "CVE-2007-3851", "CVE-2007-3843", "CVE-2007-2875", "CVE-2007-3740", "CVE-2007-2878", "CVE-2007-1217"], "modified": "2007-09-14T00:00:00", "id": "ELSA-2007-0705", "href": "http://linux.oracle.com/errata/ELSA-2007-0705.html", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T11:16:27", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.2.6-1.el5", "packageFilename": "ocfs2-2.6.18-8.1.6.0.1.el5-1.2.6-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-8.1.6.0.1.el5", "arch": "src", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.2.6-1.el5", "packageFilename": "ocfs2-2.6.18-8.1.6.0.1.el5-1.2.6-1.el5.src.rpm", "packageName": "ocfs2-2.6.18-8.1.6.0.1.el5", "arch": "src", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.0.1.el5", "packageFilename": "kernel-xen-devel-2.6.18-8.1.6.0.1.el5.x86_64.rpm", "packageName": "kernel-xen-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.4-1.el5", "packageFilename": "oracleasm-2.6.18-8.1.6.0.1.el5PAE-2.0.4-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-8.1.6.0.1.el5PAE", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.4-1.el5", "packageFilename": "oracleasm-2.6.18-8.1.6.0.1.el5-2.0.4-1.el5.i386.rpm", "packageName": "oracleasm-2.6.18-8.1.6.0.1.el5", "arch": "i386", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.0.1.el5", "packageFilename": "kernel-devel-2.6.18-8.1.6.0.1.el5.x86_64.rpm", "packageName": "kernel-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.2.6-1.el5", "packageFilename": "ocfs2-2.6.18-8.1.6.0.1.el5xen-1.2.6-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-8.1.6.0.1.el5xen", "arch": "x86_64", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.0.1.el5", "packageFilename": "kernel-xen-2.6.18-8.1.6.0.1.el5.x86_64.rpm", "packageName": "kernel-xen", "arch": "x86_64", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.0.1.el5", "packageFilename": "kernel-headers-2.6.18-8.1.6.0.1.el5.i386.rpm", "packageName": "kernel-headers", "arch": "i386", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.0.1.el5", "packageFilename": "kernel-PAE-devel-2.6.18-8.1.6.0.1.el5.i686.rpm", "packageName": "kernel-PAE-devel", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.0.1.el5", "packageFilename": "kernel-2.6.18-8.1.6.0.1.el5.src.rpm", "packageName": "kernel", "arch": "src", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.0.1.el5", "packageFilename": "kernel-2.6.18-8.1.6.0.1.el5.src.rpm", "packageName": "kernel", "arch": "src", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.2.6-1.el5", "packageFilename": "ocfs2-2.6.18-8.1.6.0.1.el5PAE-1.2.6-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-8.1.6.0.1.el5PAE", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.0.1.el5", "packageFilename": "kernel-doc-2.6.18-8.1.6.0.1.el5.noarch.rpm", "packageName": "kernel-doc", "arch": "noarch", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.0.1.el5", "packageFilename": "kernel-doc-2.6.18-8.1.6.0.1.el5.noarch.rpm", "packageName": "kernel-doc", "arch": "noarch", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.0.1.el5", "packageFilename": "kernel-xen-devel-2.6.18-8.1.6.0.1.el5.i686.rpm", "packageName": "kernel-xen-devel", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.0.1.el5", "packageFilename": "kernel-PAE-2.6.18-8.1.6.0.1.el5.i686.rpm", "packageName": "kernel-PAE", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.2.6-1.el5", "packageFilename": "ocfs2-2.6.18-8.1.6.0.1.el5-1.2.6-1.el5.i386.rpm", "packageName": "ocfs2-2.6.18-8.1.6.0.1.el5", "arch": "i386", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.0.1.el5", "packageFilename": "kernel-2.6.18-8.1.6.0.1.el5.x86_64.rpm", "packageName": "kernel", "arch": "x86_64", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.0.1.el5", "packageFilename": "kernel-devel-2.6.18-8.1.6.0.1.el5.i686.rpm", "packageName": "kernel-devel", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.0.1.el5", "packageFilename": "kernel-headers-2.6.18-8.1.6.0.1.el5.x86_64.rpm", "packageName": "kernel-headers", "arch": "x86_64", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.4-1.el5", "packageFilename": "oracleasm-2.6.18-8.1.6.0.1.el5-2.0.4-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-8.1.6.0.1.el5", "arch": "x86_64", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.4-1.el5", "packageFilename": "oracleasm-2.6.18-8.1.6.0.1.el5xen-2.0.4-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-8.1.6.0.1.el5xen", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.0.1.el5", "packageFilename": "kernel-2.6.18-8.1.6.0.1.el5.i686.rpm", "packageName": "kernel", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.2.6-1.el5", "packageFilename": "ocfs2-2.6.18-8.1.6.0.1.el5xen-1.2.6-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-8.1.6.0.1.el5xen", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.4-1.el5", "packageFilename": "oracleasm-2.6.18-8.1.6.0.1.el5xen-2.0.4-1.el5.x86_64.rpm", "packageName": "oracleasm-2.6.18-8.1.6.0.1.el5xen", "arch": "x86_64", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.4-1.el5", "packageFilename": "oracleasm-2.6.18-8.1.6.0.1.el5-2.0.4-1.el5.i686.rpm", "packageName": "oracleasm-2.6.18-8.1.6.0.1.el5", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.2.6-1.el5", "packageFilename": "ocfs2-2.6.18-8.1.6.0.1.el5-1.2.6-1.el5.x86_64.rpm", "packageName": "ocfs2-2.6.18-8.1.6.0.1.el5", "arch": "x86_64", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.6.18-8.1.6.0.1.el5", "packageFilename": "kernel-xen-2.6.18-8.1.6.0.1.el5.i686.rpm", "packageName": "kernel-xen", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "1.2.6-1.el5", "packageFilename": "ocfs2-2.6.18-8.1.6.0.1.el5-1.2.6-1.el5.i686.rpm", "packageName": "ocfs2-2.6.18-8.1.6.0.1.el5", "arch": "i686", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.4-1.el5", "packageFilename": "oracleasm-2.6.18-8.1.6.0.1.el5-2.0.4-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-8.1.6.0.1.el5", "arch": "src", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.4-1.el5", "packageFilename": "oracleasm-2.6.18-8.1.6.0.1.el5-2.0.4-1.el5.src.rpm", "packageName": "oracleasm-2.6.18-8.1.6.0.1.el5", "arch": "src", "operator": "lt"}], "description": " [2.6.18-8.1.6.0.1.el5]\n -Fix bonding primary=ethX so it picks correct network (Bert Barbe) [IT \n 101532] [ORA 5136660]\n -Add entropy module option to e1000 (John Sobecki) [ORA 6045759]\n -Add entropy module option to bnx2 (John Sobecki) [ORA 6045759]\n \n [2.6.18.8-1.6.el5]\n - [bluetooth] close information leaks in setsockopt (Marcel Holtmann ) \n [241862]{CVE-2007-1353}\n - [net] fix memory leak in PPPoE (Neil Horman ) [241863] {CVE-2007-2525}\n - [random] fix seeding of dev/random (Aristeu Rozanski ) [241888]\n \n [2.6.18-8.1.5.el5]\n - [fs] prevent oops in compat_sys_mount (Jeff Layton ) [240456] \n {CVE-2006-7203}\n - [e1000] fix watchdog timeout panics (Andy Gospodarek ) [238048]\n - [ext3] return ENOENT from ext3_link when racing with unlink (Eric \n Sandeen ) [239787] ", "edition": 1, "reporter": "Oracle", "published": "2007-06-26T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "Important: kernel security and bug fix update ", "type": "oraclelinux", "bulletinFamily": "unix", "cvelist": ["CVE-2007-1353", "CVE-2006-7203", "CVE-2007-2453", "CVE-2007-2525"], "modified": "2007-06-26T00:00:00", "id": "ELSA-2007-0376", "href": "http://linux.oracle.com/errata/ELSA-2007-0376.html", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T11:15:55", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.3-2", "arch": "i686", "packageFilename": "oracleasm-2.6.9-55.0.2.0.1.ELsmp-2.0.3-2.i686.rpm", "packageName": "oracleasm-2.6.9-55.0.2.0.1.ELsmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.3-2", "arch": "x86_64", "packageFilename": "oracleasm-2.6.9-55.0.2.0.1.EL-2.0.3-2.x86_64.rpm", "packageName": "oracleasm-2.6.9-55.0.2.0.1.EL", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.0.1.EL", "arch": "x86_64", "packageFilename": "kernel-2.6.9-55.0.2.0.1.EL.x86_64.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.0.1.EL", "arch": "noarch", "packageFilename": "kernel-doc-2.6.9-55.0.2.0.1.EL.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.0.1.EL", "arch": "noarch", "packageFilename": "kernel-doc-2.6.9-55.0.2.0.1.EL.noarch.rpm", "packageName": "kernel-doc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.0.1.EL", "arch": "i686", "packageFilename": "kernel-hugemem-2.6.9-55.0.2.0.1.EL.i686.rpm", "packageName": "kernel-hugemem", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.2.5-1", "arch": "i686", "packageFilename": "ocfs2-2.6.9-55.0.2.0.1.ELhugemem-1.2.5-1.i686.rpm", "packageName": "ocfs2-2.6.9-55.0.2.0.1.ELhugemem", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.0.1.EL", "arch": "x86_64", "packageFilename": "kernel-devel-2.6.9-55.0.2.0.1.EL.x86_64.rpm", "packageName": "kernel-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.3-2", "arch": "i686", "packageFilename": "oracleasm-2.6.9-55.0.2.0.1.ELhugemem-2.0.3-2.i686.rpm", "packageName": "oracleasm-2.6.9-55.0.2.0.1.ELhugemem", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.0.1.EL", "arch": "src", "packageFilename": "kernel-2.6.9-55.0.2.0.1.EL.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.0.1.EL", "arch": "src", "packageFilename": "kernel-2.6.9-55.0.2.0.1.EL.src.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.0.1.EL", "arch": "i686", "packageFilename": "kernel-2.6.9-55.0.2.0.1.EL.i686.rpm", "packageName": "kernel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.0.1.EL", "arch": "i686", "packageFilename": "kernel-hugemem-devel-2.6.9-55.0.2.0.1.EL.i686.rpm", "packageName": "kernel-hugemem-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.2.5-1", "arch": "x86_64", "packageFilename": "ocfs2-2.6.9-55.0.2.0.1.ELlargesmp-1.2.5-1.x86_64.rpm", "packageName": "ocfs2-2.6.9-55.0.2.0.1.ELlargesmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.3-2", "arch": "x86_64", "packageFilename": "oracleasm-2.6.9-55.0.2.0.1.ELsmp-2.0.3-2.x86_64.rpm", "packageName": "oracleasm-2.6.9-55.0.2.0.1.ELsmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.2.5-1", "arch": "x86_64", "packageFilename": "ocfs2-2.6.9-55.0.2.0.1.EL-1.2.5-1.x86_64.rpm", "packageName": "ocfs2-2.6.9-55.0.2.0.1.EL", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.3-2", "arch": "i686", "packageFilename": "oracleasm-2.6.9-55.0.2.0.1.EL-2.0.3-2.i686.rpm", "packageName": "oracleasm-2.6.9-55.0.2.0.1.EL", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.2.5-1", "arch": "i686", "packageFilename": "ocfs2-2.6.9-55.0.2.0.1.ELsmp-1.2.5-1.i686.rpm", "packageName": "ocfs2-2.6.9-55.0.2.0.1.ELsmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.2.5-1", "arch": "src", "packageFilename": "ocfs2-2.6.9-55.0.2.0.1.EL-1.2.5-1.src.rpm", "packageName": "ocfs2-2.6.9-55.0.2.0.1.EL", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.2.5-1", "arch": "src", "packageFilename": "ocfs2-2.6.9-55.0.2.0.1.EL-1.2.5-1.src.rpm", "packageName": "ocfs2-2.6.9-55.0.2.0.1.EL", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.2.5-1", "arch": "i686", "packageFilename": "ocfs2-2.6.9-55.0.2.0.1.EL-1.2.5-1.i686.rpm", "packageName": "ocfs2-2.6.9-55.0.2.0.1.EL", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.3-2", "arch": "src", "packageFilename": "oracleasm-2.6.9-55.0.2.0.1.EL-2.0.3-2.src.rpm", "packageName": "oracleasm-2.6.9-55.0.2.0.1.EL", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.3-2", "arch": "src", "packageFilename": "oracleasm-2.6.9-55.0.2.0.1.EL-2.0.3-2.src.rpm", "packageName": "oracleasm-2.6.9-55.0.2.0.1.EL", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.3-2", "arch": "x86_64", "packageFilename": "oracleasm-2.6.9-55.0.2.0.1.ELlargesmp-2.0.3-2.x86_64.rpm", "packageName": "oracleasm-2.6.9-55.0.2.0.1.ELlargesmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.2.5-1", "arch": "x86_64", "packageFilename": "ocfs2-2.6.9-55.0.2.0.1.ELsmp-1.2.5-1.x86_64.rpm", "packageName": "ocfs2-2.6.9-55.0.2.0.1.ELsmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.6.9-55.0.2.0.1.EL", "arch": "i686", "packageFilename": "kernel-devel-2.6.9-55.0.2.0.1.EL.i686.rpm", "packageName": "kernel-devel", "operator": "lt"}], "description": " [2.6.9-55.0.2.0.1]\n - fix entropy flag in bnx2 driver to generate entropy pool (John \n Sobecki) [orabug 5931647]\n - fix for nfs open call taking longer issue (Chuck Lever) orabug 5580407 \n bz [219412]\n - fix enomem due to larger mtu size page alloc (Zach Brown) orabug 5486128\n - fix per_cpu() api bug_on with rds (Zach Brown) orabug 5760648\n - limit nr_requests in cfq io scheduler ( Jens Axboe) bz 234278 orabug \n 5899829\n \n [2.6.9-55.0.2]\n -cciss: fix size calculation in diskdump (Bryn Reeves) [243902]\n \n [2.6.9-55.0.1]\n -fix kernel spinlock panic in nfs/inode.c (Peter Staubach) [240855]\n -fix core-dumping unreadable binaries via PT_INTERP (Eric Sandeen) \n [243256] {CVE-2007-0958}\n -nlm: when reclaiming locks, skip non-posix locks (Jeff Layton) [243251] \n {CVE-2006-5158}\n -add missing fput() in a 32-bit ioctl on 64-bit x86 systems (Jeff Burke) \n [243252] {CVE-2007-0773}\n -prevent oops in compat_sys_mount with NULL data pointer (Jeff Layton) \n [243263] {CVE-2006-7203}\n -fix 32bit-compat rt_sigtimedwait (Guy Streeter) [240458]\n -nfs: fix repeated NFS mount failures lead to kernel panic (Peter \n Staubach) [240851]\n -safely store sysfs inode nrs in the sysfs dirent (Eric Sandeen) [242558]\n -protect sysfs ->s_dentry w/ locking (Eric Sandeen) [242558]\n -fix nr_unused accounting (Eric Sandeen) [241784]\n -fix bluetooth setsockopt() information leaks (Don Howard) [243259] \n {CVE-2007-1353}\n -fix DoS in PPPOE (Neil Horman) [243262] {CVE-2007-2525}\n -fix out of bounds fib_probs access vulnerability (Neil Horman) [243261] \n {CVE-2007-2172}\n -ip_conntrack_sctp: fix remotely triggerable NULL ptr dereference (Don \n Howard) [243746] {CVE-2007-2876 ", "edition": 1, "reporter": "Oracle", "published": "2007-06-26T00:00:00", "title": "Important: kernel security update ", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "oraclelinux", "bulletinFamily": "unix", "cvelist": ["CVE-2007-2172", "CVE-2007-2876", "CVE-2007-0773", "CVE-2007-3104", "CVE-2006-5158", "CVE-2007-1353", "CVE-2006-7203", "CVE-2007-0958", "CVE-2007-2525"], "modified": "2007-06-26T00:00:00", "id": "ELSA-2007-0488", "href": "http://linux.oracle.com/errata/ELSA-2007-0488.html", "cvss": {"score": 6.1, "vector": "AV:ADJACENT_NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "ubuntu": [{"lastseen": "2018-03-29T18:18:55", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2007-2453", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-1353", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-2451"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "7.04", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.20-16-sparc64-smp - 2.6.20-16.29", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "7.04", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.20-16-mckinley - 2.6.20-16.29", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "7.04", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.20-16-lowlatency - 2.6.20-16.29", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "7.04", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.20-16-generic - 2.6.20-16.29", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "7.04", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.20-16-powerpc64-smp - 2.6.20-16.29", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "7.04", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.20-16-hppa32 - 2.6.20-16.29", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "7.04", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.20-16-386 - 2.6.20-16.29", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "7.04", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.20-16-powerpc - 2.6.20-16.29", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "7.04", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.20-16-powerpc-smp - 2.6.20-16.29", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "7.04", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.20-16-hppa64 - 2.6.20-16.29", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "7.04", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.20-16-server - 2.6.20-16.29", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "7.04", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.20-16-sparc64 - 2.6.20-16.29", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "7.04", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.20-16-server-bigiron - 2.6.20-16.29", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "7.04", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.20-16-itanium - 2.6.20-16.29", "packageFilename": "UNKNOWN", "operator": "lt"}], "description": "USN-464-1 fixed several vulnerabilities in the Linux kernel. Some additional code changes were accidentally included in the Feisty update which caused trouble for some people who were not using UUID-based filesystem mounts. These changes have been reverted. We apologize for the inconvenience. For more information see: <https://launchpad.net/bugs/117314> <https://wiki.ubuntu.com/UsingUUID>\n\nIlja van Sprundel discovered that Bluetooth setsockopt calls could leak kernel memory contents via an uninitialized stack buffer. A local attacker could exploit this flaw to view sensitive kernel information. (CVE-2007-1353)\n\nThe GEODE-AES driver did not correctly initialize its encryption key. Any data encrypted using this type of device would be easily compromised. (CVE-2007-2451)\n\nThe random number generator was hashing a subset of the available entropy, leading to slightly less random numbers. Additionally, systems without an entropy source would be seeded with the same inputs at boot time, leading to a repeatable series of random numbers. (CVE-2007-2453)", "edition": 1, "reporter": "Ubuntu", "published": "2007-06-08T00:00:00", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2007-1353", "CVE-2007-2453", "CVE-2007-2451"], "modified": "2007-06-08T00:00:00", "href": "https://usn.ubuntu.com/470-1/", "id": "USN-470-1", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-03-29T18:20:50", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2007-1861", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-2525", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-2876", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-1000", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-2453", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-2878", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-2875", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-1353", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-2242", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-0005", "https://people.canonical.com/~ubuntu-security/cve/CVE-2006-7203"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "6.10", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.17-12-server-bigiron - 2.6.17.1-12.39", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.10", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.17-12-sparc64-smp - 2.6.17.1-12.39", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.10", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.17-12-powerpc - 2.6.17.1-12.39", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.10", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.17-12-server - 2.6.17.1-12.39", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.10", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.17-12-386 - 2.6.17.1-12.39", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.10", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.17-12-powerpc-smp - 2.6.17.1-12.39", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.10", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.17-12-powerpc64-smp - 2.6.17.1-12.39", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.10", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.17-12-sparc64 - 2.6.17.1-12.39", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.10", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.17-12-generic - 2.6.17.1-12.39", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.10", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.17-12-itanium - 2.6.17.1-12.39", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.10", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.17-12-mckinley - 2.6.17.1-12.39", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.10", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.17-12-hppa64 - 2.6.17.1-12.39", "packageFilename": "UNKNOWN", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.10", "packageVersion": "any", "arch": "noarch", "packageName": "linux-image-2.6.17-12-hppa32 - 2.6.17.1-12.39", "packageFilename": "UNKNOWN", "operator": "lt"}], "description": "The compat_sys_mount function allowed local users to cause a denial of service when mounting a smbfs filesystem in compatibility mode. (CVE-2006-7203)\n\nThe Omnikey CardMan 4040 driver (cm4040_cs) did not limit the size of buffers passed to read() and write(). A local attacker could exploit this to execute arbitrary code with kernel privileges. (CVE-2007-0005)\n\nDue to a variable handling flaw in the ipv6_getsockopt_sticky() function a local attacker could exploit the getsockopt() calls to read arbitrary kernel memory. This could disclose sensitive data. (CVE-2007-1000)\n\nIlja van Sprundel discovered that Bluetooth setsockopt calls could leak kernel memory contents via an uninitialized stack buffer. A local attacker could exploit this flaw to view sensitive kernel information. (CVE-2007-1353)\n\nA flaw was discovered in the handling of netlink messages. Local attackers could cause infinite recursion leading to a denial of service. (CVE-2007-1861)\n\nA flaw was discovered in the IPv6 stack\u2019s handling of type 0 route headers. By sending a specially crafted IPv6 packet, a remote attacker could cause a denial of service between two IPv6 hosts. (CVE-2007-2242)\n\nThe random number generator was hashing a subset of the available entropy, leading to slightly less random numbers. Additionally, systems without an entropy source would be seeded with the same inputs at boot time, leading to a repeatable series of random numbers. (CVE-2007-2453)\n\nA flaw was discovered in the PPP over Ethernet implementation. Local attackers could manipulate ioctls and cause kernel memory consumption leading to a denial of service. (CVE-2007-2525)\n\nAn integer underflow was discovered in the cpuset filesystem. If mounted, local attackers could obtain kernel memory using large file offsets while reading the tasks file. This could disclose sensitive data. (CVE-2007-2875)\n\nVilmos Nebehaj discovered that the SCTP netfilter code did not correctly validate certain states. A remote attacker could send a specially crafted packet causing a denial of service. (CVE-2007-2876)\n\nLuca Tettamanti discovered a flaw in the VFAT compat ioctls on 64-bit systems. A local attacker could corrupt a kernel_dirent struct and cause a denial of service. (CVE-2007-2878)", "edition": 1, "reporter": "Ubuntu", "published": "2007-07-18T00:00:00", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2007-2876", "CVE-2007-1353", "CVE-2006-7203", "CVE-2007-2242", "CVE-2007-2453", "CVE-2007-2875", "CVE-2007-0005", "CVE-2007-1861", "CVE-2007-1000", "CVE-2007-2878", "CVE-2007-2525"], "modified": "2007-07-18T00:00:00", "href": "https://usn.ubuntu.com/486-1/", "id": "USN-486-1", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-03-29T18:18:01", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2007-1861", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-2525", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-2876", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-1000", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-3380", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-3513", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-2453", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-2878", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-2875", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-1353", "https://people.canonical.com/~ubuntu-security/cve/CVE-2006-4623", "https://people.canonical.com/~ubuntu-security/cve/CVE-2007-0005", "https://people.canonical.com/~ubuntu-security/cve/CVE-2006-7203"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-28-powerpc64-smp - 2.6.15-28.57", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-28-k7 - 2.6.15-28.57", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-28-powerpc - 2.6.15-28.57", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-28-mckinley - 2.6.15-28.57", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-28-amd64-k8 - 2.6.15-28.57", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-28-powerpc-smp - 2.6.15-28.57", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-28-mckinley-smp - 2.6.15-28.57", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-28-amd64-generic - 2.6.15-28.57", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-28-386 - 2.6.15-28.57", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-28-server - 2.6.15-28.57", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-28-server-bigiron - 2.6.15-28.57", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-28-sparc64 - 2.6.15-28.57", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-28-sparc64-smp - 2.6.15-28.57", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-28-686 - 2.6.15-28.57", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-28-amd64-server - 2.6.15-28.57", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "linux-image-2.6.15-28-amd64-xeon - 2.6.15-28.57", "operator": "lt"}], "description": "A flaw was discovered in dvb ULE decapsulation. A remote attacker could send a specially crafted message and cause a denial of service. (CVE-2006-4623)\n\nThe compat_sys_mount function allowed local users to cause a denial of service when mounting a smbfs filesystem in compatibility mode. (CVE-2006-7203)\n\nThe Omnikey CardMan 4040 driver (cm4040_cs) did not limit the size of buffers passed to read() and write(). A local attacker could exploit this to execute arbitrary code with kernel privileges. (CVE-2007-0005)\n\nDue to an variable handling flaw in the ipv6_getsockopt_sticky() function a local attacker could exploit the getsockopt() calls to read arbitrary kernel memory. This could disclose sensitive data. (CVE-2007-1000)\n\nIlja van Sprundel discovered that Bluetooth setsockopt calls could leak kernel memory contents via an uninitialized stack buffer. A local attacker could exploit this flaw to view sensitive kernel information. (CVE-2007-1353)\n\nA flaw was discovered in the handling of netlink messages. Local attackers could cause infinite recursion leading to a denial of service. (CVE-2007-1861)\n\nThe random number generator was hashing a subset of the available entropy, leading to slightly less random numbers. Additionally, systems without an entropy source would be seeded with the same inputs at boot time, leading to a repeatable series of random numbers. (CVE-2007-2453)\n\nA flaw was discovered in the PPP over Ethernet implementation. Local attackers could manipulate ioctls and cause kernel memory consumption leading to a denial of service. (CVE-2007-2525)\n\nAn integer underflow was discovered in the cpuset filesystem. If mounted, local attackers could obtain kernel memory using large file offsets while reading the tasks file. This could disclose sensitive data. (CVE-2007-2875)\n\nVilmos Nebehaj discovered that the SCTP netfilter code did not correctly validate certain states. A remote attacker could send a specially crafted packet causing a denial of service. (CVE-2007-2876)\n\nLuca Tettamanti discovered a flaw in the VFAT compat ioctls on 64-bit systems. A local attacker could corrupt a kernel_dirent struct and cause a denial of service. (CVE-2007-2878)\n\nA flaw was discovered in the cluster manager. A remote attacker could connect to the DLM port and block further DLM operations. (CVE-2007-3380)\n\nA flaw was discovered in the usblcd driver. A local attacker could cause large amounts of kernel memory consumption, leading to a denial of service. (CVE-2007-3513)", "edition": 1, "reporter": "Ubuntu", "published": "2007-07-19T00:00:00", "type": "ubuntu", "title": "Linux kernel vulnerabilities", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2007-2876", "CVE-2007-1353", "CVE-2006-7203", "CVE-2007-3380", "CVE-2007-3513", "CVE-2007-2453", "CVE-2007-2875", "CVE-2007-0005", "CVE-2006-4623", "CVE-2007-1861", "CVE-2007-1000", "CVE-2007-2878", "CVE-2007-2525"], "modified": "2007-07-19T00:00:00", "href": "https://usn.ubuntu.com/489-1/", "id": "USN-489-1", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "debian": [{"lastseen": "2016-09-02T18:32:28", "references": [], "affectedPackage": [{"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-alpha-legacy_2.6.18.dfsg.1-13etch1_alpha.deb", "arch": "alpha", "packageName": "linux-image-2.6.18-5-alpha-legacy", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-vserver-amd64_2.6.18.dfsg.1-13etch1_amd64.deb", "arch": "x86-64", "packageName": "linux-image-2.6.18-5-vserver-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-sb1-bcm91250a_2.6.18.dfsg.1-13etch1_mipsel.deb", "arch": "mipsel", "packageName": "linux-image-2.6.18-5-sb1-bcm91250a", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-powerpc-smp_2.6.18.dfsg.1-13etch1_powerpc.deb", "arch": "ppc", "packageName": "linux-headers-2.6.18-5-powerpc-smp", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-amd64_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-image-2.6.18-5-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-s3c2410_2.6.18.dfsg.1-13etch1_arm.deb", "arch": "arm", "packageName": "linux-image-2.6.18-5-s3c2410", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5_2.6.18.dfsg.1-13etch1_mips.deb", "arch": "mips", "packageName": "linux-headers-2.6.18-5", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-itanium_2.6.18.dfsg.1-13etch1_ia64.deb", "arch": "ia64", "packageName": "linux-image-2.6.18-5-itanium", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-xen_2.6.18.dfsg.1-13etch1_amd64.deb", "arch": "x86-64", "packageName": "linux-headers-2.6.18-5-xen", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-sb1a-bcm91480b_2.6.18.dfsg.1-13etch1_mipsel.deb", "arch": "mipsel", "packageName": "linux-image-2.6.18-5-sb1a-bcm91480b", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-s390-tape_2.6.18.dfsg.1-13etch1_s390.deb", "arch": "s390x", "packageName": "linux-image-2.6.18-5-s390-tape", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-parisc64_2.6.18.dfsg.1-13etch1_hppa.deb", "arch": "hppa", "packageName": "linux-image-2.6.18-5-parisc64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-powerpc_2.6.18.dfsg.1-13etch1_powerpc.deb", "arch": "ppc", "packageName": "linux-headers-2.6.18-5-powerpc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "xen-linux-system-2.6.18-5-xen-686_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "xen-linux-system-2.6.18-5-xen-686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-vserver-686_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-headers-2.6.18-5-vserver-686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-k7_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-headers-2.6.18-5-k7", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-modules-2.6.18-5-xen-vserver-686_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-modules-2.6.18-5-xen-vserver-686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-686-bigmem_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-headers-2.6.18-5-686-bigmem", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-footbridge_2.6.18.dfsg.1-13etch1_arm.deb", "arch": "arm", "packageName": "linux-image-2.6.18-5-footbridge", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all_2.6.18.dfsg.1-13etch1_ia64.deb", "arch": "ia64", "packageName": "linux-headers-2.6.18-5-all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5_2.6.18.dfsg.1-13etch1_mipsel.deb", "arch": "mipsel", "packageName": "linux-headers-2.6.18-5", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-qemu_2.6.18.dfsg.1-13etch1_mipsel.deb", "arch": "mipsel", "packageName": "linux-headers-2.6.18-5-qemu", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-xen-vserver-amd64_2.6.18.dfsg.1-13etch1_amd64.deb", "arch": "x86-64", "packageName": "linux-image-2.6.18-5-xen-vserver-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-vserver-powerpc64_2.6.18.dfsg.1-13etch1_powerpc.deb", "arch": "ppc", "packageName": "linux-image-2.6.18-5-vserver-powerpc64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-2.6_2.6.18.dfsg.1-13etch1.dsc", "arch": "src", "packageName": "linux-2.6", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-r4k-ip22_2.6.18.dfsg.1-13etch1_mips.deb", "arch": "mips", "packageName": "linux-image-2.6.18-5-r4k-ip22", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-vserver_2.6.18.dfsg.1-13etch1_sparc.deb", "arch": "sparc", "packageName": "linux-headers-2.6.18-5-vserver", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-sb1-bcm91250a_2.6.18.dfsg.1-13etch1_mips.deb", "arch": "mips", "packageName": "linux-image-2.6.18-5-sb1-bcm91250a", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-486_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-headers-2.6.18-5-486", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-rpc_2.6.18.dfsg.1-13etch1_arm.deb", "arch": "arm", "packageName": "linux-headers-2.6.18-5-rpc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all-ia64_2.6.18.dfsg.1-13etch1_ia64.deb", "arch": "ia64", "packageName": "linux-headers-2.6.18-5-all-ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-k7_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-image-2.6.18-5-k7", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-parisc64_2.6.18.dfsg.1-13etch1_hppa.deb", "arch": "hppa", "packageName": "linux-headers-2.6.18-5-parisc64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-parisc-smp_2.6.18.dfsg.1-13etch1_hppa.deb", "arch": "hppa", "packageName": "linux-headers-2.6.18-5-parisc-smp", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "xen-linux-system-2.6.18-5-xen-vserver-686_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "xen-linux-system-2.6.18-5-xen-vserver-686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-vserver-powerpc_2.6.18.dfsg.1-13etch1_powerpc.deb", "arch": "ppc", "packageName": "linux-headers-2.6.18-5-vserver-powerpc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-xen-vserver-amd64_2.6.18.dfsg.1-13etch1_amd64.deb", "arch": "x86-64", "packageName": "linux-headers-2.6.18-5-xen-vserver-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all_2.6.18.dfsg.1-13etch1_powerpc.deb", "arch": "ppc", "packageName": "linux-headers-2.6.18-5-all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-r5k-ip32_2.6.18.dfsg.1-13etch1_mips.deb", "arch": "mips", "packageName": "linux-image-2.6.18-5-r5k-ip32", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-modules-2.6.18-5-xen-686_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-modules-2.6.18-5-xen-686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-powerpc64_2.6.18.dfsg.1-13etch1_powerpc.deb", "arch": "ppc", "packageName": "linux-headers-2.6.18-5-powerpc64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all_2.6.18.dfsg.1-13etch1_amd64.deb", "arch": "x86-64", "packageName": "linux-headers-2.6.18-5-all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5_2.6.18.dfsg.1-13etch1_hppa.deb", "arch": "hppa", "packageName": "linux-headers-2.6.18-5", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-source-2.6.18_2.6.18.dfsg.1-13etch1_all.deb", "arch": "all", "packageName": "linux-source-2.6.18", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-r3k-kn02_2.6.18.dfsg.1-13etch1_mipsel.deb", "arch": "mipsel", "packageName": "linux-headers-2.6.18-5-r3k-kn02", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-xen-686_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-image-2.6.18-5-xen-686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-xen-686_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-headers-2.6.18-5-xen-686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-sparc32_2.6.18.dfsg.1-13etch1_sparc.deb", "arch": "sparc", "packageName": "linux-image-2.6.18-5-sparc32", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-powerpc-miboot_2.6.18.dfsg.1-13etch1_powerpc.deb", "arch": "ppc", "packageName": "linux-image-2.6.18-5-powerpc-miboot", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-xen-vserver-686_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-image-2.6.18-5-xen-vserver-686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-manual-2.6.18_2.6.18.dfsg.1-13etch1_all.deb", "arch": "all", "packageName": "linux-manual-2.6.18", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-doc-2.6.18_2.6.18.dfsg.1-13etch1_all.deb", "arch": "all", "packageName": "linux-doc-2.6.18", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-sparc64_2.6.18.dfsg.1-13etch1_sparc.deb", "arch": "sparc", "packageName": "linux-image-2.6.18-5-sparc64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-parisc64-smp_2.6.18.dfsg.1-13etch1_hppa.deb", "arch": "hppa", "packageName": "linux-image-2.6.18-5-parisc64-smp", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-r5k-cobalt_2.6.18.dfsg.1-13etch1_mipsel.deb", "arch": "mipsel", "packageName": "linux-image-2.6.18-5-r5k-cobalt", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5_2.6.18.dfsg.1-13etch1_alpha.deb", "arch": "alpha", "packageName": "linux-headers-2.6.18-5", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-s3c2410_2.6.18.dfsg.1-13etch1_arm.deb", "arch": "arm", "packageName": "linux-headers-2.6.18-5-s3c2410", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-xen-amd64_2.6.18.dfsg.1-13etch1_amd64.deb", "arch": "x86-64", "packageName": "linux-headers-2.6.18-5-xen-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-modules-2.6.18-5-xen-vserver-amd64_2.6.18.dfsg.1-13etch1_amd64.deb", "arch": "x86-64", "packageName": "linux-modules-2.6.18-5-xen-vserver-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all-alpha_2.6.18.dfsg.1-13etch1_alpha.deb", "arch": "alpha", "packageName": "linux-headers-2.6.18-5-all-alpha", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-vserver-s390x_2.6.18.dfsg.1-13etch1_s390.deb", "arch": "s390x", "packageName": "linux-image-2.6.18-5-vserver-s390x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-vserver-alpha_2.6.18.dfsg.1-13etch1_alpha.deb", "arch": "alpha", "packageName": "linux-headers-2.6.18-5-vserver-alpha", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-mckinley_2.6.18.dfsg.1-13etch1_ia64.deb", "arch": "ia64", "packageName": "linux-headers-2.6.18-5-mckinley", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-vserver_2.6.18.dfsg.1-13etch1_alpha.deb", "arch": "alpha", "packageName": "linux-headers-2.6.18-5-vserver", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all_2.6.18.dfsg.1-13etch1_mipsel.deb", "arch": "mipsel", "packageName": "linux-headers-2.6.18-5-all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-sparc64_2.6.18.dfsg.1-13etch1_sparc.deb", "arch": "sparc", "packageName": "linux-headers-2.6.18-5-sparc64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-486_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-image-2.6.18-5-486", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-qemu_2.6.18.dfsg.1-13etch1_mips.deb", "arch": "mips", "packageName": "linux-image-2.6.18-5-qemu", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-mckinley_2.6.18.dfsg.1-13etch1_ia64.deb", "arch": "ia64", "packageName": "linux-image-2.6.18-5-mckinley", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5_2.6.18.dfsg.1-13etch1_powerpc.deb", "arch": "ppc", "packageName": "linux-headers-2.6.18-5", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-vserver-alpha_2.6.18.dfsg.1-13etch1_alpha.deb", "arch": "alpha", "packageName": "linux-image-2.6.18-5-vserver-alpha", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1.diff", "packageFilename": "linux-2.6_2.6.18.dfsg.1-13etch1.diff.gz", "arch": "src", "packageName": "linux-2.6", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-sb1a-bcm91480b_2.6.18.dfsg.1-13etch1_mips.deb", "arch": "mips", "packageName": "linux-image-2.6.18-5-sb1a-bcm91480b", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-parisc_2.6.18.dfsg.1-13etch1_hppa.deb", "arch": "hppa", "packageName": "linux-headers-2.6.18-5-parisc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all_2.6.18.dfsg.1-13etch1_arm.deb", "arch": "arm", "packageName": "linux-headers-2.6.18-5-all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-modules-2.6.18-5-xen-amd64_2.6.18.dfsg.1-13etch1_amd64.deb", "arch": "x86-64", "packageName": "linux-modules-2.6.18-5-xen-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-itanium_2.6.18.dfsg.1-13etch1_ia64.deb", "arch": "ia64", "packageName": "linux-headers-2.6.18-5-itanium", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5_2.6.18.dfsg.1-13etch1_s390.deb", "arch": "s390x", "packageName": "linux-headers-2.6.18-5", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-sb1a-bcm91480b_2.6.18.dfsg.1-13etch1_mipsel.deb", "arch": "mipsel", "packageName": "linux-headers-2.6.18-5-sb1a-bcm91480b", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-vserver-amd64_2.6.18.dfsg.1-13etch1_amd64.deb", "arch": "x86-64", "packageName": "linux-headers-2.6.18-5-vserver-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-headers-2.6.18-5", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all-mipsel_2.6.18.dfsg.1-13etch1_mipsel.deb", "arch": "mipsel", "packageName": "linux-headers-2.6.18-5-all-mipsel", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-vserver_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-headers-2.6.18-5-vserver", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-vserver-sparc64_2.6.18.dfsg.1-13etch1_sparc.deb", "arch": "sparc", "packageName": "linux-image-2.6.18-5-vserver-sparc64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-vserver-powerpc_2.6.18.dfsg.1-13etch1_powerpc.deb", "arch": "ppc", "packageName": "linux-image-2.6.18-5-vserver-powerpc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1.orig", "packageFilename": "linux-2.6_2.6.18.dfsg.1.orig.tar.gz", "arch": "src", "packageName": "linux-2.6", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-rpc_2.6.18.dfsg.1-13etch1_arm.deb", "arch": "arm", "packageName": "linux-image-2.6.18-5-rpc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all_2.6.18.dfsg.1-13etch1_alpha.deb", "arch": "alpha", "packageName": "linux-headers-2.6.18-5-all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-alpha-generic_2.6.18.dfsg.1-13etch1_alpha.deb", "arch": "alpha", "packageName": "linux-headers-2.6.18-5-alpha-generic", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-ixp4xx_2.6.18.dfsg.1-13etch1_arm.deb", "arch": "arm", "packageName": "linux-headers-2.6.18-5-ixp4xx", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-s390x_2.6.18.dfsg.1-13etch1_s390.deb", "arch": "s390x", "packageName": "linux-image-2.6.18-5-s390x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-xen-vserver_2.6.18.dfsg.1-13etch1_amd64.deb", "arch": "x86-64", "packageName": "linux-headers-2.6.18-5-xen-vserver", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-xen-amd64_2.6.18.dfsg.1-13etch1_amd64.deb", "arch": "x86-64", "packageName": "linux-image-2.6.18-5-xen-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5_2.6.18.dfsg.1-13etch1_sparc.deb", "arch": "sparc", "packageName": "linux-headers-2.6.18-5", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-iop32x_2.6.18.dfsg.1-13etch1_arm.deb", "arch": "arm", "packageName": "linux-headers-2.6.18-5-iop32x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-prep_2.6.18.dfsg.1-13etch1_powerpc.deb", "arch": "ppc", "packageName": "linux-headers-2.6.18-5-prep", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-686_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-headers-2.6.18-5-686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-amd64_2.6.18.dfsg.1-13etch1_amd64.deb", "arch": "x86-64", "packageName": "linux-headers-2.6.18-5-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-qemu_2.6.18.dfsg.1-13etch1_mips.deb", "arch": "mips", "packageName": "linux-headers-2.6.18-5-qemu", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-s390_2.6.18.dfsg.1-13etch1_s390.deb", "arch": "s390x", "packageName": "linux-image-2.6.18-5-s390", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-xen_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-headers-2.6.18-5-xen", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all-sparc_2.6.18.dfsg.1-13etch1_sparc.deb", "arch": "sparc", "packageName": "linux-headers-2.6.18-5-all-sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-vserver-k7_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-headers-2.6.18-5-vserver-k7", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-tree-2.6.18_2.6.18.dfsg.1-13etch1_all.deb", "arch": "all", "packageName": "linux-tree-2.6.18", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-s390_2.6.18.dfsg.1-13etch1_s390.deb", "arch": "s390x", "packageName": "linux-headers-2.6.18-5-s390", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-amd64_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-headers-2.6.18-5-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-xen-vserver-686_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-headers-2.6.18-5-xen-vserver-686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-s390x_2.6.18.dfsg.1-13etch1_s390.deb", "arch": "s390x", "packageName": "linux-headers-2.6.18-5-s390x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-686-bigmem_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-image-2.6.18-5-686-bigmem", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "xen-linux-system-2.6.18-5-xen-vserver-amd64_2.6.18.dfsg.1-13etch1_amd64.deb", "arch": "x86-64", "packageName": "xen-linux-system-2.6.18-5-xen-vserver-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-vserver_2.6.18.dfsg.1-13etch1_s390.deb", "arch": "s390x", "packageName": "linux-headers-2.6.18-5-vserver", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-vserver-k7_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-image-2.6.18-5-vserver-k7", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all_2.6.18.dfsg.1-13etch1_sparc.deb", "arch": "sparc", "packageName": "linux-headers-2.6.18-5-all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-parisc-smp_2.6.18.dfsg.1-13etch1_hppa.deb", "arch": "hppa", "packageName": "linux-image-2.6.18-5-parisc-smp", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-sparc64-smp_2.6.18.dfsg.1-13etch1_sparc.deb", "arch": "sparc", "packageName": "linux-headers-2.6.18-5-sparc64-smp", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-vserver-sparc64_2.6.18.dfsg.1-13etch1_sparc.deb", "arch": "sparc", "packageName": "linux-headers-2.6.18-5-vserver-sparc64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-vserver_2.6.18.dfsg.1-13etch1_powerpc.deb", "arch": "ppc", "packageName": "linux-headers-2.6.18-5-vserver", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all-powerpc_2.6.18.dfsg.1-13etch1_powerpc.deb", "arch": "ppc", "packageName": "linux-headers-2.6.18-5-all-powerpc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-ixp4xx_2.6.18.dfsg.1-13etch1_arm.deb", "arch": "arm", "packageName": "linux-image-2.6.18-5-ixp4xx", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-r4k-kn04_2.6.18.dfsg.1-13etch1_mipsel.deb", "arch": "mipsel", "packageName": "linux-image-2.6.18-5-r4k-kn04", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-alpha-generic_2.6.18.dfsg.1-13etch1_alpha.deb", "arch": "alpha", "packageName": "linux-image-2.6.18-5-alpha-generic", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5_2.6.18.dfsg.1-13etch1_arm.deb", "arch": "arm", "packageName": "linux-headers-2.6.18-5", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-r3k-kn02_2.6.18.dfsg.1-13etch1_mipsel.deb", "arch": "mipsel", "packageName": "linux-image-2.6.18-5-r3k-kn02", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-headers-2.6.18-5-all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-qemu_2.6.18.dfsg.1-13etch1_mipsel.deb", "arch": "mipsel", "packageName": "linux-image-2.6.18-5-qemu", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-powerpc-miboot_2.6.18.dfsg.1-13etch1_powerpc.deb", "arch": "ppc", "packageName": "linux-headers-2.6.18-5-powerpc-miboot", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-sparc32_2.6.18.dfsg.1-13etch1_sparc.deb", "arch": "sparc", "packageName": "linux-headers-2.6.18-5-sparc32", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-r5k-cobalt_2.6.18.dfsg.1-13etch1_mipsel.deb", "arch": "mipsel", "packageName": "linux-headers-2.6.18-5-r5k-cobalt", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-powerpc_2.6.18.dfsg.1-13etch1_powerpc.deb", "arch": "ppc", "packageName": "linux-image-2.6.18-5-powerpc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-alpha-smp_2.6.18.dfsg.1-13etch1_alpha.deb", "arch": "alpha", "packageName": "linux-headers-2.6.18-5-alpha-smp", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all_2.6.18.dfsg.1-13etch1_mips.deb", "arch": "mips", "packageName": "linux-headers-2.6.18-5-all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-parisc_2.6.18.dfsg.1-13etch1_hppa.deb", "arch": "hppa", "packageName": "linux-image-2.6.18-5-parisc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all-arm_2.6.18.dfsg.1-13etch1_arm.deb", "arch": "arm", "packageName": "linux-headers-2.6.18-5-all-arm", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-sb1a-bcm91480b_2.6.18.dfsg.1-13etch1_mips.deb", "arch": "mips", "packageName": "linux-headers-2.6.18-5-sb1a-bcm91480b", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all_2.6.18.dfsg.1-13etch1_s390.deb", "arch": "s390x", "packageName": "linux-headers-2.6.18-5-all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-support-2.6.18-5_2.6.18.dfsg.1-13etch1_all.deb", "arch": "all", "packageName": "linux-support-2.6.18-5", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-sb1-bcm91250a_2.6.18.dfsg.1-13etch1_mips.deb", "arch": "mips", "packageName": "linux-headers-2.6.18-5-sb1-bcm91250a", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-sb1-bcm91250a_2.6.18.dfsg.1-13etch1_mipsel.deb", "arch": "mipsel", "packageName": "linux-headers-2.6.18-5-sb1-bcm91250a", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "xen-linux-system-2.6.18-5-xen-amd64_2.6.18.dfsg.1-13etch1_amd64.deb", "arch": "x86-64", "packageName": "xen-linux-system-2.6.18-5-xen-amd64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-vserver-s390x_2.6.18.dfsg.1-13etch1_s390.deb", "arch": "s390x", "packageName": "linux-headers-2.6.18-5-vserver-s390x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-prep_2.6.18.dfsg.1-13etch1_powerpc.deb", "arch": "ppc", "packageName": "linux-image-2.6.18-5-prep", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-sparc64-smp_2.6.18.dfsg.1-13etch1_sparc.deb", "arch": "sparc", "packageName": "linux-image-2.6.18-5-sparc64-smp", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all-s390_2.6.18.dfsg.1-13etch1_s390.deb", "arch": "s390x", "packageName": "linux-headers-2.6.18-5-all-s390", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-r4k-ip22_2.6.18.dfsg.1-13etch1_mips.deb", "arch": "mips", "packageName": "linux-headers-2.6.18-5-r4k-ip22", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-r5k-ip32_2.6.18.dfsg.1-13etch1_mips.deb", "arch": "mips", "packageName": "linux-headers-2.6.18-5-r5k-ip32", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-footbridge_2.6.18.dfsg.1-13etch1_arm.deb", "arch": "arm", "packageName": "linux-headers-2.6.18-5-footbridge", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all-hppa_2.6.18.dfsg.1-13etch1_hppa.deb", "arch": "hppa", "packageName": "linux-headers-2.6.18-5-all-hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-vserver-686_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-image-2.6.18-5-vserver-686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-powerpc64_2.6.18.dfsg.1-13etch1_powerpc.deb", "arch": "ppc", "packageName": "linux-image-2.6.18-5-powerpc64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all_2.6.18.dfsg.1-13etch1_hppa.deb", "arch": "hppa", "packageName": "linux-headers-2.6.18-5-all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all-mips_2.6.18.dfsg.1-13etch1_mips.deb", "arch": "mips", "packageName": "linux-headers-2.6.18-5-all-mips", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-alpha-legacy_2.6.18.dfsg.1-13etch1_alpha.deb", "arch": "alpha", "packageName": "linux-headers-2.6.18-5-alpha-legacy", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-vserver_2.6.18.dfsg.1-13etch1_amd64.deb", "arch": "x86-64", "packageName": "linux-headers-2.6.18-5-vserver", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-vserver-powerpc64_2.6.18.dfsg.1-13etch1_powerpc.deb", "arch": "ppc", "packageName": "linux-headers-2.6.18-5-vserver-powerpc64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-patch-debian-2.6.18_2.6.18.dfsg.1-13etch1_all.deb", "arch": "all", "packageName": "linux-patch-debian-2.6.18", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5_2.6.18.dfsg.1-13etch1_ia64.deb", "arch": "ia64", "packageName": "linux-headers-2.6.18-5", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-parisc64-smp_2.6.18.dfsg.1-13etch1_hppa.deb", "arch": "hppa", "packageName": "linux-headers-2.6.18-5-parisc64-smp", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-alpha-smp_2.6.18.dfsg.1-13etch1_alpha.deb", "arch": "alpha", "packageName": "linux-image-2.6.18-5-alpha-smp", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5_2.6.18.dfsg.1-13etch1_amd64.deb", "arch": "x86-64", "packageName": "linux-headers-2.6.18-5", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-iop32x_2.6.18.dfsg.1-13etch1_arm.deb", "arch": "arm", "packageName": "linux-image-2.6.18-5-iop32x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-xen-vserver_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-headers-2.6.18-5-xen-vserver", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all-i386_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-headers-2.6.18-5-all-i386", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-powerpc-smp_2.6.18.dfsg.1-13etch1_powerpc.deb", "arch": "ppc", "packageName": "linux-image-2.6.18-5-powerpc-smp", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-r4k-kn04_2.6.18.dfsg.1-13etch1_mipsel.deb", "arch": "mipsel", "packageName": "linux-headers-2.6.18-5-r4k-kn04", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-image-2.6.18-5-686_2.6.18.dfsg.1-13etch1_i386.deb", "arch": "i686", "packageName": "linux-image-2.6.18-5-686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "4", "packageVersion": "2.6.18.dfsg.1-13etch1", "packageFilename": "linux-headers-2.6.18-5-all-amd64_2.6.18.dfsg.1-13etch1_amd64.deb", "arch": "x86-64", "packageName": "linux-headers-2.6.18-5-all-amd64", "operator": "lt"}], "edition": 1, "description": "Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems:\n\n * [CVE-2007-1353](<https://security-tracker.debian.org/tracker/CVE-2007-1353>)\n\nIlja van Sprundel discovered that kernel memory could be leaked via the Bluetooth setsockopt call due to an uninitialized stack buffer. This could be used by local attackers to read the contents of sensitive kernel memory.\n\n * [CVE-2007-2172](<https://security-tracker.debian.org/tracker/CVE-2007-2172>)\n\nThomas Graf reported a typo in the DECnet protocol handler that could be used by a local attacker to overrun an array via crafted packets, potentially resulting in a Denial of Service (system crash). A similar issue exists in the IPV4 protocol handler and will be fixed in a subsequent update.\n\n * [CVE-2007-2453](<https://security-tracker.debian.org/tracker/CVE-2007-2453>)\n\nA couple of issues with random number generation were discovered. Slightly less random numbers resulted from hashing a subset of the available entropy. Zero-entropy systems were seeded with the same inputs at boot time, resulting in repeatable series of random numbers.\n\n * [CVE-2007-2525](<https://security-tracker.debian.org/tracker/CVE-2007-2525>)\n\nFlorian Zumbiehl discovered a memory leak in the PPPOE subsystem caused by releasing a socket before PPPIOCGCHAN is called upon it. This could be used by a local user to DoS a system by consuming all available memory.\n\n * [CVE-2007-2876](<https://security-tracker.debian.org/tracker/CVE-2007-2876>)\n\nVilmos Nebehaj discovered a NULL pointer dereference condition in the netfilter subsystem. This allows remote systems which communicate using the SCTP protocol to crash a system by creating a connection with an unknown chunk type.\n\n * [CVE-2007-3513](<https://security-tracker.debian.org/tracker/CVE-2007-3513>)\n\nOliver Neukum reported an issue in the usblcd driver which, by not limiting the size of write buffers, permits local users with write access to trigger a DoS by consuming all available memory.\n\n * [CVE-2007-3642](<https://security-tracker.debian.org/tracker/CVE-2007-3642>)\n\nZhongling Wen reported an issue in nf_conntrack_h323 where the lack of range checking may lead to NULL pointer dereferences. Remote attackers could exploit this to create a DoS condition (system crash).\n\n * [CVE-2007-3848](<https://security-tracker.debian.org/tracker/CVE-2007-3848>)\n\nWojciech Purczynski discovered that pdeath_signal was not being reset properly under certain conditions which may allow local users to gain privileges by sending arbitrary signals to suid binaries.\n\n * [CVE-2007-3851](<https://security-tracker.debian.org/tracker/CVE-2007-3851>)\n\nDave Airlie reported that Intel 965 and above chipsets have relocated their batch buffer security bits. Local X server users may exploit this to write user data to arbitrary physical memory addresses.\n\nThese problems have been fixed in the stable distribution in version 2.6.18.dfsg.1-13etch1.\n\nThe following matrix lists additional packages that were rebuilt for compatibility with or to take advantage of this update:\n\n| Debian 4.0 (etch) \n---|--- \nfai-kernels | 1.17+etch4 \nuser-mode-linux | 2.6.18-1um-2etch3 \n \nWe recommend that you upgrade your kernel package immediately and reboot the machine. If you have built a custom kernel from the kernel source package, you will need to rebuild to take advantage of these fixes.", "reporter": "Debian", "published": "2007-08-15T00:00:00", "type": "debian", "title": "linux-2.6 -- several vulnerabilities", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2007-2172", "CVE-2007-2876", "CVE-2007-3848", "CVE-2007-1353", "CVE-2007-3851", "CVE-2007-3513", "CVE-2007-2453", "CVE-2007-3642", "CVE-2007-2525"], "modified": "2007-08-15T00:00:00", "id": "DSA-1356", "href": "http://www.debian.org/security/dsa-1356", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-02T18:21:34", "references": [], "affectedPackage": [{"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-15sarge1", "packageFilename": "kernel-headers-2.6-mckinley-smp_2.6.8-15sarge1_ia64.deb", "packageName": "kernel-headers-2.6-mckinley-smp", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-13-amd64-generic_2.6.8-17sarge1_amd64.deb", "packageName": "kernel-headers-2.6.8-13-amd64-generic", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-15sarge1", "packageFilename": "kernel-headers-2.6.8-4-mckinley-smp_2.6.8-15sarge1_ia64.deb", "packageName": "kernel-headers-2.6.8-4-mckinley-smp", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-alpha_2.6.8-17sarge1.tar.gz", "packageName": "kernel-image-2.6.8-alpha", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-7sarge1", "packageFilename": "kernel-headers-2.6.8-4-32_2.6.8-7sarge1_hppa.deb", "packageName": "kernel-headers-2.6.8-4-32", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-13sarge1", "packageFilename": "kernel-image-2.6.8-4-power4-smp_2.6.8-13sarge1_powerpc.deb", "packageName": "kernel-image-2.6.8-4-power4-smp", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-5sarge1", "packageFilename": "kernel-image-2.6.8-m68k_2.6.8-5sarge1.dsc", "packageName": "kernel-image-2.6.8-m68k", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-5sarge1", "packageFilename": "kernel-image-2.6.8-mac_2.6.8-5sarge1_m68k.deb", "packageName": "kernel-image-2.6.8-mac", "arch": "m68k", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-6sarge1", "packageFilename": "kernel-image-2.6.8-s390_2.6.8-6sarge1.tar.gz", "packageName": "kernel-image-2.6.8-s390", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-15sarge1", "packageFilename": "kernel-image-2.6.8-ia64_2.6.8-15sarge1.dsc", "packageName": "kernel-image-2.6.8-ia64", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-7sarge1", "packageFilename": "kernel-image-2.6.8-hppa_2.6.8-7sarge1.dsc", "packageName": "kernel-image-2.6.8-hppa", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-4-686-smp_2.6.8-17sarge1_i386.deb", "packageName": "kernel-image-2.6.8-4-686-smp", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-13-em64t-p4_2.6.8-17sarge1_amd64.deb", "packageName": "kernel-headers-2.6.8-13-em64t-p4", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-13-amd64-generic_2.6.8-17sarge1_amd64.deb", "packageName": "kernel-image-2.6.8-13-amd64-generic", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-6sarge1", "packageFilename": "kernel-image-2.6.8-4-s390-tape_2.6.8-6sarge1_s390.deb", "packageName": "kernel-image-2.6.8-4-s390-tape", "arch": "s390x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-15sarge1", "packageFilename": "kernel-headers-2.6.8-4-itanium-smp_2.6.8-15sarge1_ia64.deb", "packageName": "kernel-headers-2.6.8-4-itanium-smp", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-7sarge1", "packageFilename": "kernel-image-2.6.8-4-64_2.6.8-7sarge1_hppa.deb", "packageName": "kernel-image-2.6.8-4-64", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-13sarge1", "packageFilename": "kernel-build-2.6.8-4-powerpc_2.6.8-13sarge1_powerpc.deb", "packageName": "kernel-build-2.6.8-4-powerpc", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-6sarge1", "packageFilename": "kernel-image-2.6.8-s390_2.6.8-6sarge1.dsc", "packageName": "kernel-image-2.6.8-s390", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-13sarge1", "packageFilename": "kernel-image-2.6.8-4-power4_2.6.8-13sarge1_powerpc.deb", "packageName": "kernel-image-2.6.8-4-power4", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-16sarge1", "packageFilename": "kernel-headers-2.6.8-4-sparc64-smp_2.6.8-16sarge1_sparc.deb", "packageName": "kernel-headers-2.6.8-4-sparc64-smp", "arch": "sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-16sarge1", "packageFilename": "kernel-image-2.6.8-sparc_2.6.8-16sarge1.dsc", "packageName": "kernel-image-2.6.8-sparc", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-13_2.6.8-17sarge1_i386.deb", "packageName": "kernel-headers-2.6.8-13", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-7sarge1", "packageFilename": "kernel-image-2.6.8-4-64-smp_2.6.8-7sarge1_hppa.deb", "packageName": "kernel-image-2.6.8-4-64-smp", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-13sarge1", "packageFilename": "kernel-image-2.6.8-4-power3_2.6.8-13sarge1_powerpc.deb", "packageName": "kernel-image-2.6.8-4-power3", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-13-amd64-k8_2.6.8-17sarge1_amd64.deb", "packageName": "kernel-image-2.6.8-13-amd64-k8", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-5sarge1", "packageFilename": "kernel-image-2.6.8-sun3_2.6.8-5sarge1_m68k.deb", "packageName": "kernel-image-2.6.8-sun3", "arch": "m68k", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-6sarge1", "packageFilename": "kernel-headers-2.6.8-4_2.6.8-6sarge1_s390.deb", "packageName": "kernel-headers-2.6.8-4", "arch": "s390x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-15sarge1", "packageFilename": "kernel-image-2.6.8-4-itanium-smp_2.6.8-15sarge1_ia64.deb", "packageName": "kernel-image-2.6.8-4-itanium-smp", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-13-amd64-generic_2.6.8-17sarge1_i386.deb", "packageName": "kernel-image-2.6.8-13-amd64-generic", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-tree-2.6.8_2.6.8-17sarge1_all.deb", "packageName": "kernel-tree-2.6.8", "arch": "all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-13-amd64-k8-smp_2.6.8-17sarge1_amd64.deb", "packageName": "kernel-headers-2.6.8-13-amd64-k8-smp", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-13sarge1", "packageFilename": "kernel-image-2.6.8-4-powerpc_2.6.8-13sarge1_powerpc.deb", "packageName": "kernel-image-2.6.8-4-powerpc", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-4-686_2.6.8-17sarge1_i386.deb", "packageName": "kernel-headers-2.6.8-4-686", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-13_2.6.8-17sarge1_amd64.deb", "packageName": "kernel-headers-2.6.8-13", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-source-2.6.8_2.6.8-17sarge1.dsc", "packageName": "kernel-source-2.6.8", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-7sarge1", "packageFilename": "kernel-headers-2.6.8-4-32-smp_2.6.8-7sarge1_hppa.deb", "packageName": "kernel-headers-2.6.8-4-32-smp", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-13sarge1", "packageFilename": "kernel-image-2.6.8-4-power3-smp_2.6.8-13sarge1_powerpc.deb", "packageName": "kernel-image-2.6.8-4-power3-smp", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-7sarge1", "packageFilename": "kernel-headers-2.6.8-4-64-smp_2.6.8-7sarge1_hppa.deb", "packageName": "kernel-headers-2.6.8-4-64-smp", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-4-generic_2.6.8-17sarge1_alpha.deb", "packageName": "kernel-headers-2.6.8-4-generic", "arch": "alpha", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-7sarge1", "packageFilename": "kernel-headers-2.6.8-4-64_2.6.8-7sarge1_hppa.deb", "packageName": "kernel-headers-2.6.8-4-64", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-15sarge1", "packageFilename": "kernel-headers-2.6.8-4-itanium_2.6.8-15sarge1_ia64.deb", "packageName": "kernel-headers-2.6.8-4-itanium", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-7sarge1", "packageFilename": "kernel-headers-2.6.8-4_2.6.8-7sarge1_hppa.deb", "packageName": "kernel-headers-2.6.8-4", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-4-386_2.6.8-17sarge1_i386.deb", "packageName": "kernel-headers-2.6.8-4-386", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-13sarge1", "packageFilename": "kernel-build-2.6.8-4-power3_2.6.8-13sarge1_powerpc.deb", "packageName": "kernel-build-2.6.8-4-power3", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-16sarge1", "packageFilename": "kernel-image-2.6.8-4-sparc32_2.6.8-16sarge1_sparc.deb", "packageName": "kernel-image-2.6.8-4-sparc32", "arch": "sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-4_2.6.8-17sarge1_i386.deb", "packageName": "kernel-headers-2.6.8-4", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-5sarge1", "packageFilename": "kernel-image-2.6.8-q40_2.6.8-5sarge1_m68k.deb", "packageName": "kernel-image-2.6.8-q40", "arch": "m68k", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-13-amd64-generic_2.6.8-17sarge1_i386.deb", "packageName": "kernel-headers-2.6.8-13-amd64-generic", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-16sarge1", "packageFilename": "kernel-image-2.6.8-4-sparc64-smp_2.6.8-16sarge1_sparc.deb", "packageName": "kernel-image-2.6.8-4-sparc64-smp", "arch": "sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-16sarge1", "packageFilename": "kernel-build-2.6.8-4_2.6.8-16sarge1_sparc.deb", "packageName": "kernel-build-2.6.8-4", "arch": "sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-15sarge1", "packageFilename": "kernel-headers-2.6.8-4-mckinley_2.6.8-15sarge1_ia64.deb", "packageName": "kernel-headers-2.6.8-4-mckinley", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-13sarge1", "packageFilename": "kernel-headers-2.6.8-4_2.6.8-13sarge1_powerpc.deb", "packageName": "kernel-headers-2.6.8-4", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-4-686-smp_2.6.8-17sarge1_i386.deb", "packageName": "kernel-headers-2.6.8-4-686-smp", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-6sarge1", "packageFilename": "kernel-patch-2.6.8-s390_2.6.8-6sarge1_all.deb", "packageName": "kernel-patch-2.6.8-s390", "arch": "all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-13sarge1", "packageFilename": "kernel-build-2.6.8-4-powerpc-smp_2.6.8-13sarge1_powerpc.deb", "packageName": "kernel-build-2.6.8-4-powerpc-smp", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-alpha_2.6.8-17sarge1.dsc", "packageName": "kernel-image-2.6.8-alpha", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-15sarge1", "packageFilename": "kernel-headers-2.6.8-4_2.6.8-15sarge1_ia64.deb", "packageName": "kernel-headers-2.6.8-4", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-5sarge1", "packageFilename": "kernel-image-2.6.8-mvme147_2.6.8-5sarge1_m68k.deb", "packageName": "kernel-image-2.6.8-mvme147", "arch": "m68k", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-4-k7-smp_2.6.8-17sarge1_i386.deb", "packageName": "kernel-image-2.6.8-4-k7-smp", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-16sarge1", "packageFilename": "kernel-image-2.6.8-sparc_2.6.8-16sarge1.tar.gz", "packageName": "kernel-image-2.6.8-sparc", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.9.1sarge8", "packageFilename": "fai-kernels_1.9.1sarge8_i386.deb", "packageName": "fai-kernels", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-7sarge1", "packageFilename": "kernel-image-2.6.8-4-32_2.6.8-7sarge1_hppa.deb", "packageName": "kernel-image-2.6.8-4-32", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-source-2.6.8_2.6.8-17sarge1_all.deb", "packageName": "kernel-source-2.6.8", "arch": "all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-4-386_2.6.8-17sarge1_i386.deb", "packageName": "kernel-image-2.6.8-4-386", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-13-em64t-p4_2.6.8-17sarge1_i386.deb", "packageName": "kernel-image-2.6.8-13-em64t-p4", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-13-em64t-p4-smp_2.6.8-17sarge1_amd64.deb", "packageName": "kernel-headers-2.6.8-13-em64t-p4-smp", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-15sarge1", "packageFilename": "kernel-image-2.6-itanium_2.6.8-15sarge1_ia64.deb", "packageName": "kernel-image-2.6-itanium", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-13-amd64-k8_2.6.8-17sarge1_i386.deb", "packageName": "kernel-image-2.6.8-13-amd64-k8", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-13-em64t-p4-smp_2.6.8-17sarge1_i386.deb", "packageName": "kernel-image-2.6.8-13-em64t-p4-smp", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-16sarge1", "packageFilename": "kernel-image-2.6.8-4-sparc64_2.6.8-16sarge1_sparc.deb", "packageName": "kernel-image-2.6.8-4-sparc64", "arch": "sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-4-smp_2.6.8-17sarge1_alpha.deb", "packageName": "kernel-headers-2.6.8-4-smp", "arch": "alpha", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-4-k7_2.6.8-17sarge1_i386.deb", "packageName": "kernel-headers-2.6.8-4-k7", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-15sarge1", "packageFilename": "kernel-headers-2.6-itanium-smp_2.6.8-15sarge1_ia64.deb", "packageName": "kernel-headers-2.6-itanium-smp", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-15sarge1", "packageFilename": "kernel-headers-2.6-itanium_2.6.8-15sarge1_ia64.deb", "packageName": "kernel-headers-2.6-itanium", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-13-amd64-k8-smp_2.6.8-17sarge1_i386.deb", "packageName": "kernel-headers-2.6.8-13-amd64-k8-smp", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-13-em64t-p4_2.6.8-17sarge1_amd64.deb", "packageName": "kernel-image-2.6.8-13-em64t-p4", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-7sarge1", "packageFilename": "kernel-image-2.6.8-hppa_2.6.8-7sarge1.tar.gz", "packageName": "kernel-image-2.6.8-hppa", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-13sarge1", "packageFilename": "kernel-image-2.6.8-4-powerpc-smp_2.6.8-13sarge1_powerpc.deb", "packageName": "kernel-image-2.6.8-4-powerpc-smp", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-5sarge1", "packageFilename": "kernel-image-2.6.8-atari_2.6.8-5sarge1_m68k.deb", "packageName": "kernel-image-2.6.8-atari", "arch": "m68k", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-amd64_2.6.8-17sarge1.tar.gz", "packageName": "kernel-image-2.6.8-amd64", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1.diff", "packageFilename": "kernel-source-2.6.8_2.6.8-17sarge1.diff.gz", "packageName": "kernel-source-2.6.8", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-4-generic_2.6.8-17sarge1_alpha.deb", "packageName": "kernel-image-2.6.8-4-generic", "arch": "alpha", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-15sarge1", "packageFilename": "kernel-image-2.6-mckinley_2.6.8-15sarge1_ia64.deb", "packageName": "kernel-image-2.6-mckinley", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-16sarge1", "packageFilename": "kernel-headers-2.6.8-4-sparc32_2.6.8-16sarge1_sparc.deb", "packageName": "kernel-headers-2.6.8-4-sparc32", "arch": "sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-patch-debian-2.6.8_2.6.8-17sarge1_all.deb", "packageName": "kernel-patch-debian-2.6.8", "arch": "all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-4-686_2.6.8-17sarge1_i386.deb", "packageName": "kernel-image-2.6.8-4-686", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-13sarge1", "packageFilename": "kernel-patch-powerpc-2.6.8_2.6.8-13sarge1.tar.gz", "packageName": "kernel-patch-powerpc-2.6.8", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-amd64_2.6.8-17sarge1.dsc", "packageName": "kernel-image-2.6.8-amd64", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-13sarge1", "packageFilename": "kernel-build-2.6.8-4-power4-smp_2.6.8-13sarge1_powerpc.deb", "packageName": "kernel-build-2.6.8-4-power4-smp", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-15sarge1", "packageFilename": "kernel-image-2.6.8-4-mckinley_2.6.8-15sarge1_ia64.deb", "packageName": "kernel-image-2.6.8-4-mckinley", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-16sarge1", "packageFilename": "kernel-headers-2.6.8-4_2.6.8-16sarge1_sparc.deb", "packageName": "kernel-headers-2.6.8-4", "arch": "sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-4-smp_2.6.8-17sarge1_alpha.deb", "packageName": "kernel-image-2.6.8-4-smp", "arch": "alpha", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-13-em64t-p4_2.6.8-17sarge1_i386.deb", "packageName": "kernel-headers-2.6.8-13-em64t-p4", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-15sarge1", "packageFilename": "kernel-image-2.6.8-4-itanium_2.6.8-15sarge1_ia64.deb", "packageName": "kernel-image-2.6.8-4-itanium", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-13sarge1", "packageFilename": "kernel-patch-powerpc-2.6.8_2.6.8-13sarge1.dsc", "packageName": "kernel-patch-powerpc-2.6.8", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.9.1sarge8", "packageFilename": "fai-kernels_1.9.1sarge8.tar.gz", "packageName": "fai-kernels", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-13sarge1", "packageFilename": "kernel-build-2.6.8-4-power4_2.6.8-13sarge1_powerpc.deb", "packageName": "kernel-build-2.6.8-4-power4", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-i386_2.6.8-17sarge1.dsc", "packageName": "kernel-image-2.6.8-i386", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-6sarge1", "packageFilename": "kernel-image-2.6.8-4-s390_2.6.8-6sarge1_s390.deb", "packageName": "kernel-image-2.6.8-4-s390", "arch": "s390x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-16sarge1", "packageFilename": "kernel-headers-2.6.8-4-sparc64_2.6.8-16sarge1_sparc.deb", "packageName": "kernel-headers-2.6.8-4-sparc64", "arch": "sparc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-13sarge1", "packageFilename": "kernel-build-2.6.8-4-power3-smp_2.6.8-13sarge1_powerpc.deb", "packageName": "kernel-build-2.6.8-4-power3-smp", "arch": "ppc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-15sarge1", "packageFilename": "kernel-image-2.6.8-ia64_2.6.8-15sarge1.tar.gz", "packageName": "kernel-image-2.6.8-ia64", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-7sarge1", "packageFilename": "kernel-image-2.6.8-4-32-smp_2.6.8-7sarge1_hppa.deb", "packageName": "kernel-image-2.6.8-4-32-smp", "arch": "hppa", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-6sarge1", "packageFilename": "kernel-image-2.6.8-4-s390x_2.6.8-6sarge1_s390.deb", "packageName": "kernel-image-2.6.8-4-s390x", "arch": "s390x", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-13-amd64-k8_2.6.8-17sarge1_amd64.deb", "packageName": "kernel-headers-2.6.8-13-amd64-k8", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-13-amd64-k8-smp_2.6.8-17sarge1_i386.deb", "packageName": "kernel-image-2.6.8-13-amd64-k8-smp", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-5sarge1", "packageFilename": "kernel-image-2.6.8-m68k_2.6.8-5sarge1.tar.gz", "packageName": "kernel-image-2.6.8-m68k", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-13-em64t-p4-smp_2.6.8-17sarge1_amd64.deb", "packageName": "kernel-image-2.6.8-13-em64t-p4-smp", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-4_2.6.8-17sarge1_alpha.deb", "packageName": "kernel-headers-2.6.8-4", "arch": "alpha", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-5sarge1", "packageFilename": "kernel-image-2.6.8-mvme16x_2.6.8-5sarge1_m68k.deb", "packageName": "kernel-image-2.6.8-mvme16x", "arch": "m68k", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-i386_2.6.8-17sarge1.tar.gz", "packageName": "kernel-image-2.6.8-i386", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8.orig", "packageFilename": "kernel-source-2.6.8_2.6.8.orig.tar.gz", "packageName": "kernel-source-2.6.8", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-5sarge1", "packageFilename": "kernel-image-2.6.8-amiga_2.6.8-5sarge1_m68k.deb", "packageName": "kernel-image-2.6.8-amiga", "arch": "m68k", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-15sarge1", "packageFilename": "kernel-image-2.6-mckinley-smp_2.6.8-15sarge1_ia64.deb", "packageName": "kernel-image-2.6-mckinley-smp", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-15sarge1", "packageFilename": "kernel-headers-2.6-mckinley_2.6.8-15sarge1_ia64.deb", "packageName": "kernel-headers-2.6-mckinley", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-doc-2.6.8_2.6.8-17sarge1_all.deb", "packageName": "kernel-doc-2.6.8", "arch": "all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-13-amd64-k8_2.6.8-17sarge1_i386.deb", "packageName": "kernel-headers-2.6.8-13-amd64-k8", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-15sarge1", "packageFilename": "kernel-image-2.6.8-4-mckinley-smp_2.6.8-15sarge1_ia64.deb", "packageName": "kernel-image-2.6.8-4-mckinley-smp", "arch": "ia64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-5sarge1", "packageFilename": "kernel-image-2.6.8-bvme6000_2.6.8-5sarge1_m68k.deb", "packageName": "kernel-image-2.6.8-bvme6000", "arch": "m68k", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-4-k7-smp_2.6.8-17sarge1_i386.deb", "packageName": "kernel-headers-2.6.8-4-k7-smp", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-headers-2.6.8-13-em64t-p4-smp_2.6.8-17sarge1_i386.deb", "packageName": "kernel-headers-2.6.8-13-em64t-p4-smp", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-5sarge1", "packageFilename": "kernel-image-2.6.8-hp_2.6.8-5sarge1_m68k.deb", "packageName": "kernel-image-2.6.8-hp", "arch": "m68k", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.9.1sarge8", "packageFilename": "fai-kernels_1.9.1sarge8.dsc", "packageName": "fai-kernels", "arch": "src", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-4-k7_2.6.8-17sarge1_i386.deb", "packageName": "kernel-image-2.6.8-4-k7", "arch": "i686", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-17sarge1", "packageFilename": "kernel-image-2.6.8-13-amd64-k8-smp_2.6.8-17sarge1_amd64.deb", "packageName": "kernel-image-2.6.8-13-amd64-k8-smp", "arch": "x86-64", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.6.8-15sarge1", "packageFilename": "kernel-image-2.6-itanium-smp_2.6.8-15sarge1_ia64.deb", "packageName": "kernel-image-2.6-itanium-smp", "arch": "ia64", "operator": "lt"}], "edition": 1, "description": "Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems:\n\n * [CVE-2006-5823](<https://security-tracker.debian.org/tracker/CVE-2006-5823>)\n\nLMH reported a potential local DoS which could be exploited by a malicious user with the privileges to mount and read a corrupted cramfs filesystem.\n\n * [CVE-2006-6054](<https://security-tracker.debian.org/tracker/CVE-2006-6054>)\n\nLMH reported a potential local DoS which could be exploited by a malicious user with the privileges to mount and read a corrupted ext2 filesystem.\n\n * [CVE-2006-6058](<https://security-tracker.debian.org/tracker/CVE-2006-6058>)\n\nLMH reported an issue in the minix filesystem that allows local users with mount privileges to create a DoS (printk flood) by mounting a specially crafted corrupt filesystem.\n\n * [CVE-2006-7203](<https://security-tracker.debian.org/tracker/CVE-2006-7203>)\n\nOpenVZ Linux kernel team reported an issue in the smbfs filesystem which can be exploited by local users to cause a DoS (oops) during mount.\n\n * [CVE-2007-1353](<https://security-tracker.debian.org/tracker/CVE-2007-1353>)\n\nIlja van Sprundel discovered that kernel memory could be leaked via the Bluetooth setsockopt call due to an uninitialized stack buffer. This could be used by local attackers to read the contents of sensitive kernel memory.\n\n * [CVE-2007-2172](<https://security-tracker.debian.org/tracker/CVE-2007-2172>)\n\nThomas Graf reported a typo in the DECnet protocol handler that could be used by a local attacker to overrun an array via crafted packets, potentially resulting in a Denial of Service (system crash). A similar issue exists in the IPV4 protocol handler and will be fixed in a subsequent update.\n\n * [CVE-2007-2525](<https://security-tracker.debian.org/tracker/CVE-2007-2525>)\n\nFlorian Zumbiehl discovered a memory leak in the PPPOE subsystem caused by releasing a socket before PPPIOCGCHAN is called upon it. This could be used by a local user to DoS a system by consuming all available memory.\n\n * [CVE-2007-3105](<https://security-tracker.debian.org/tracker/CVE-2007-3105>)\n\nThe PaX Team discovered a potential buffer overflow in the random number generator which may permit local users to cause a denial of service or gain additional privileges. This issue is not believed to effect default Debian installations where only root has sufficient privileges to exploit it.\n\n * [CVE-2007-3739](<https://security-tracker.debian.org/tracker/CVE-2007-3739>)\n\nAdam Litke reported a potential local denial of service (oops) on powerpc platforms resulting from unchecked VMA expansion into address space reserved for hugetlb pages.\n\n * [CVE-2007-3740](<https://security-tracker.debian.org/tracker/CVE-2007-3740>)\n\nSteve French reported that CIFS filesystems with CAP_UNIX enabled were not honoring a process' umask which may lead to unintentionally relaxed permissions.\n\n * [CVE-2007-3848](<https://security-tracker.debian.org/tracker/CVE-2007-3848>)\n\nWojciech Purczynski discovered that pdeath_signal was not being reset properly under certain conditions which may allow local users to gain privileges by sending arbitrary signals to suid binaries.\n\n * [CVE-2007-4133](<https://security-tracker.debian.org/tracker/CVE-2007-4133>)\n\nHugh Dickins discovered a potential local DoS (panic) in hugetlbfs. A misconversion of hugetlb_vmtruncate_list to prio_tree may allow local users to trigger a BUG_ON() call in exit_mmap.\n\n * [CVE-2007-4308](<https://security-tracker.debian.org/tracker/CVE-2007-4308>)\n\nAlan Cox reported an issue in the aacraid driver that allows unprivileged local users to make ioctl calls which should be restricted to admin privileges.\n\n * [CVE-2007-4573](<https://security-tracker.debian.org/tracker/CVE-2007-4573>)\n\nWojciech Purczynski discovered a vulnerability that can be exploited by a local user to obtain superuser privileges on x86_64 systems. This resulted from improper clearing of the high bits of registers during ia32 system call emulation. This vulnerability is relevant to the Debian amd64 port as well as users of the i386 port who run the amd64 linux-image flavour.\n\n * [CVE-2007-5093](<https://security-tracker.debian.org/tracker/CVE-2007-5093>)\n\nAlex Smith discovered an issue with the pwc driver for certain webcam devices. If the device is removed while a userspace application has it open, the driver will wait for userspace to close the device, resulting in a blocked USB subsystem. This issue is of low security impact as it requires the attacker to either have physical access to the system or to convince a user with local access to remove the device on their behalf.\n\n * [CVE-2007-6063](<https://security-tracker.debian.org/tracker/CVE-2007-6063>)\n\nVenustech AD-LAB discovered a a buffer overflow in the isdn ioctl handling, exploitable by a local user.\n\n * [CVE-2007-6151](<https://security-tracker.debian.org/tracker/CVE-2007-6151>)\n\nADLAB discovered a possible memory overrun in the ISDN subsystem that may permit a local user to overwrite kernel memory by issuing ioctls with unterminated data.\n\n * [CVE-2007-6206](<https://security-tracker.debian.org/tracker/CVE-2007-6206>)\n\nBlake Frantz discovered that when a core file owned by a non-root user exists, and a root-owned process dumps core over it, the core file retains its original ownership. This could be used by a local user to gain access to sensitive information.\n\n * [CVE-2007-6694](<https://security-tracker.debian.org/tracker/CVE-2007-6694>)\n\nCyrill Gorcunov reported a NULL pointer dereference in code specific to the CHRP PowerPC platforms. Local users could exploit this issue to achieve a Denial of Service (DoS).\n\n * [CVE-2008-0007](<https://security-tracker.debian.org/tracker/CVE-2008-0007>)\n\nNick Piggin of SuSE discovered a number of issues in subsystems which register a fault handler for memory mapped areas. This issue can be exploited by local users to achieve a Denial of Service (DoS) and possibly execute arbitrary code.\n\nThe following matrix lists additional packages that were rebuilt for compatibility with or to take advantage of this update:\n\n| Debian 3.1 (sarge) \n---|--- \nkernel-image-2.6.8-alpha | 2.6.8-17sarge1 \nkernel-image-2.6.8-amd64 | 2.6.8-17sarge1 \nkernel-image-2.6.8-hppa | 2.6.8-7sarge1 \nkernel-image-2.6.8-i386 | 2.6.8-17sarge1 \nkernel-image-2.6.8-ia64 | 2.6.8-15sarge1 \nkernel-image-2.6.8-m68k | 2.6.8-5sarge1 \nkernel-image-2.6.8-s390 | 2.6.8-6sarge1 \nkernel-image-2.6.8-sparc | 2.6.8-16sarge1 \nkernel-patch-powerpc-2.6.8 | 2.6.8-13sarge1 \nfai-kernels | 1.9.1sarge8 \n \nWe recommend that you upgrade your kernel package immediately and reboot the machine. If you have built a custom kernel from the kernel source package, you will need to rebuild to take advantage of these fixes.", "reporter": "Debian", "published": "2008-02-22T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "title": "kernel-source-2.6.8 -- several vulnerabilities", "type": "debian", "bulletinFamily": "unix", "cvelist": ["CVE-2007-4573", "CVE-2007-2172", "CVE-2006-6054", "CVE-2007-3848", "CVE-2007-3739", "CVE-2007-1353", "CVE-2006-7203", "CVE-2007-4133", "CVE-2007-3105", "CVE-2007-6151", "CVE-2007-5093", "CVE-2007-4308", "CVE-2008-0007", "CVE-2007-6206", "CVE-2007-3740", "CVE-2006-5823", "CVE-2007-6694", "CVE-2006-6058", "CVE-2007-2525", "CVE-2007-6063"], "modified": "2008-02-22T00:00:00", "id": "DSA-1504", "href": "http://www.debian.org/security/dsa-1504", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2016-09-02T18:30:06", "references": [], "affectedPackage": [{"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "kernel-image-2.4.27-r4k-ip22", "arch": "mips", "packageFilename": "kernel-image-2.4.27-r4k-ip22_2.4.27-10.sarge4.040815-3_mips.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge4", "packageName": "lm-sensors-2.4.27-4-k6", "arch": "i686", "packageFilename": "lm-sensors-2.4.27-4-k6_2.9.1-1sarge4_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-build-2.4.27-apus", "arch": "ppc", "packageFilename": "kernel-build-2.4.27-apus_2.4.27-10sarge6_powerpc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-source-2.4.27", "arch": "src", "packageFilename": "kernel-source-2.4.27_2.4.27-10sarge6.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "0.3.7-1sarge3", "packageName": "hostap-modules-2.6.8-4-k7-smp", "arch": "i686", "packageFilename": "hostap-modules-2.6.8-4-k7-smp_0.3.7-1sarge3_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-9sarge6", "packageName": "kernel-image-2.4.27-4-sparc64", "arch": "sparc", "packageFilename": "kernel-image-2.4.27-4-sparc64_2.4.27-9sarge6_sparc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-headers-2.4.27-4-386", "arch": "i686", "packageFilename": "kernel-headers-2.4.27-4-386_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "42sarge3", "packageName": "kernel-headers-2.4-sparc64", "arch": "sparc", "packageFilename": "kernel-headers-2.4-sparc64_42sarge3_sparc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge3", "packageName": "kernel-headers-2.4-generic", "arch": "alpha", "packageFilename": "kernel-headers-2.4-generic_101sarge3_alpha.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge4", "packageName": "lm-sensors-source", "arch": "all", "packageFilename": "lm-sensors-source_2.9.1-1sarge4_all.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-patch-debian-2.4.27", "arch": "all", "packageFilename": "kernel-patch-debian-2.4.27_2.4.27-10sarge6_all.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-4-386", "arch": "i686", "packageFilename": "kernel-image-2.4.27-4-386_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-ia64", "arch": "src", "packageFilename": "kernel-image-2.4.27-ia64_2.4.27-10sarge6.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-9sarge6", "packageName": "kernel-image-2.4.27-4-sparc32-smp", "arch": "sparc", "packageFilename": "kernel-image-2.4.27-4-sparc32-smp_2.4.27-9sarge6_sparc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "kernel-image-2.4.27-r3k-kn02", "arch": "mipsel", "packageFilename": "kernel-image-2.4.27-r3k-kn02_2.4.27-10.sarge4.040815-3_mipsel.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-tree-2.4.27", "arch": "all", "packageFilename": "kernel-tree-2.4.27_2.4.27-10sarge6_all.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-2sarge6", "packageName": "kernel-image-2.4.27-s390", "arch": "src", "packageFilename": "kernel-image-2.4.27-s390_2.4.27-2sarge6.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-headers-2.4.27-4-686-smp", "arch": "i686", "packageFilename": "kernel-headers-2.4.27-4-686-smp_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "mips-tools", "arch": "hppa", "packageFilename": "mips-tools_2.4.27-10.sarge4.040815-3_hppa.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4-mckinley-smp", "arch": "ia64", "packageFilename": "kernel-image-2.4-mckinley-smp_2.4.27-10sarge6_ia64.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge2", "packageName": "i2c-2.4.27-4-386", "arch": "i686", "packageFilename": "i2c-2.4.27-4-386_2.9.1-1sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-2sarge6", "packageName": "kernel-headers-2.4.27", "arch": "arm", "packageFilename": "kernel-headers-2.4.27_2.4.27-2sarge6_arm.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "0.3.7-1sarge3", "packageName": "hostap-modules-2.6.8-4-686-smp", "arch": "i686", "packageFilename": "hostap-modules-2.6.8-4-686-smp_0.3.7-1sarge3_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-2sarge6", "packageName": "kernel-image-2.4.27-riscpc", "arch": "arm", "packageFilename": "kernel-image-2.4.27-riscpc_2.4.27-2sarge6_arm.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "3.2.3-6sarge5", "packageName": "systemimager-server", "arch": "all", "packageFilename": "systemimager-server_3.2.3-6sarge5_all.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-build-2.4.27-4", "arch": "ia64", "packageFilename": "kernel-build-2.4.27-4_2.4.27-10sarge6_ia64.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-2sarge6", "packageName": "kernel-image-2.4.27-riscstation", "arch": "arm", "packageFilename": "kernel-image-2.4.27-riscstation_2.4.27-2sarge6_arm.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "3.2.3-6sarge5", "packageName": "systemimager-common", "arch": "all", "packageFilename": "systemimager-common_3.2.3-6sarge5_all.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "0.3.7-1sarge3", "packageName": "hostap-modules-2.4.27-4-586tsc", "arch": "i686", "packageFilename": "hostap-modules-2.4.27-4-586tsc_0.3.7-1sarge3_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "3.2.3-6sarge5", "packageName": "systemimager-boot-i386-standard", "arch": "all", "packageFilename": "systemimager-boot-i386-standard_3.2.3-6sarge5_all.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-4-686", "arch": "i686", "packageFilename": "kernel-image-2.4.27-4-686_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge4", "packageName": "lm-sensors-2.4.27-4-386", "arch": "i686", "packageFilename": "lm-sensors-2.4.27-4-386_2.9.1-1sarge4_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-latest-2.4-i386", "arch": "src", "packageFilename": "kernel-latest-2.4-i386_101sarge2.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-headers-2.4-k6", "arch": "i686", "packageFilename": "kernel-headers-2.4-k6_101sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "mips-tools", "arch": "alpha", "packageFilename": "mips-tools_2.4.27-10.sarge4.040815-3_alpha.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge2", "packageName": "i2c-2.4.27-4-k7", "arch": "i686", "packageFilename": "i2c-2.4.27-4-k7_2.9.1-1sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4-itanium-smp", "arch": "ia64", "packageFilename": "kernel-image-2.4-itanium-smp_2.4.27-10sarge6_ia64.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-pcmcia-modules-2.4-k6", "arch": "i686", "packageFilename": "kernel-pcmcia-modules-2.4-k6_101sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-pcmcia-modules-2.4.27-4-k6", "arch": "i686", "packageFilename": "kernel-pcmcia-modules-2.4.27-4-k6_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge3", "packageName": "kernel-latest-2.4-alpha", "arch": "src", "packageFilename": "kernel-latest-2.4-alpha_101sarge3.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-2sarge5", "packageName": "mindi-kernel", "arch": "src", "packageFilename": "mindi-kernel_2.4.27-2sarge5.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-powerpc-small", "arch": "ppc", "packageFilename": "kernel-image-2.4.27-powerpc-small_2.4.27-10sarge6_powerpc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-1sarge2", "packageName": "kernel-latest-2.4-s390", "arch": "src", "packageFilename": "kernel-latest-2.4-s390_2.4.27-1sarge2.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-2sarge5.diff", "packageName": "mindi-kernel", "arch": "src", "packageFilename": "mindi-kernel_2.4.27-2sarge5.diff.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "kernel-image-2.4.27-r4k-kn04", "arch": "mipsel", "packageFilename": "kernel-image-2.4.27-r4k-kn04_2.4.27-10.sarge4.040815-3_mipsel.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "mips-tools", "arch": "m68k", "packageFilename": "mips-tools_2.4.27-10.sarge4.040815-3_m68k.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-1.1sarge5", "packageName": "kernel-headers-2.4.27-speakup", "arch": "i686", "packageFilename": "kernel-headers-2.4.27-speakup_2.4.27-1.1sarge5_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge4", "packageName": "kernel-patch-2.4-lm-sensors", "arch": "all", "packageFilename": "kernel-patch-2.4-lm-sensors_2.9.1-1sarge4_all.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "42sarge3", "packageName": "kernel-latest-2.4-sparc", "arch": "src", "packageFilename": "kernel-latest-2.4-sparc_42sarge3.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-9sarge6", "packageName": "kernel-image-2.4.27-sparc", "arch": "src", "packageFilename": "kernel-image-2.4.27-sparc_2.4.27-9sarge6.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "mips-tools", "arch": "x86-64", "packageFilename": "mips-tools_2.4.27-10.sarge4.040815-3_amd64.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-3sarge6", "packageName": "kernel-image-2.4.27-amiga", "arch": "m68k", "packageFilename": "kernel-image-2.4.27-amiga_2.4.27-3sarge6_m68k.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge2", "packageName": "i2c-2.4.27-4-k7-smp", "arch": "i686", "packageFilename": "i2c-2.4.27-4-k7-smp_2.9.1-1sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "3.2.5+2sarge2", "packageName": "pcmcia-modules-2.4.27-4-686-smp", "arch": "i686", "packageFilename": "pcmcia-modules-2.4.27-4-686-smp_3.2.5+2sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-2sarge6", "packageName": "kernel-image-2.4.27-netwinder", "arch": "arm", "packageFilename": "kernel-image-2.4.27-netwinder_2.4.27-2sarge6_arm.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-3sarge6", "packageName": "kernel-image-2.4.27-mvme147", "arch": "m68k", "packageFilename": "kernel-image-2.4.27-mvme147_2.4.27-3sarge6_m68k.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "kernel-patch-2.4.27-mips", "arch": "src", "packageFilename": "kernel-patch-2.4.27-mips_2.4.27-10.sarge4.040815-3.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-patch-2.4.27-nubus", "arch": "ppc", "packageFilename": "kernel-patch-2.4.27-nubus_2.4.27-10sarge6_powerpc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-1.1sarge5", "packageName": "kernel-image-speakup-i386", "arch": "src", "packageFilename": "kernel-image-speakup-i386_2.4.27-1.1sarge5.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-pcmcia-modules-2.4.27-4-586tsc", "arch": "i686", "packageFilename": "kernel-pcmcia-modules-2.4.27-4-586tsc_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge3", "packageName": "kernel-latest-2.4-alpha", "arch": "src", "packageFilename": "kernel-latest-2.4-alpha_101sarge3.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge2", "packageName": "i2c-2.4.27-4-686", "arch": "i686", "packageFilename": "i2c-2.4.27-4-686_2.9.1-1sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge4", "packageName": "sensord", "arch": "i686", "packageFilename": "sensord_2.9.1-1sarge4_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-3sarge6", "packageName": "kernel-image-2.4.27-q40", "arch": "m68k", "packageFilename": "kernel-image-2.4.27-q40_2.4.27-3sarge6_m68k.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "0.3.7-1sarge3", "packageName": "hostap-modules-2.4.27-4-686-smp", "arch": "i686", "packageFilename": "hostap-modules-2.4.27-4-686-smp_0.3.7-1sarge3_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge2", "packageName": "i2c-2.4.27-4-686-smp", "arch": "i686", "packageFilename": "i2c-2.4.27-4-686-smp_2.9.1-1sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-2sarge6", "packageName": "kernel-image-2.4.27-arm", "arch": "src", "packageFilename": "kernel-image-2.4.27-arm_2.4.27-2sarge6.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge2", "packageName": "i2c-2.4.27-4-k6", "arch": "i686", "packageFilename": "i2c-2.4.27-4-k6_2.9.1-1sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "kernel-patch-2.4.27-mips", "arch": "src", "packageFilename": "kernel-patch-2.4.27-mips_2.4.27-10.sarge4.040815-3.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-4-mckinley", "arch": "ia64", "packageFilename": "kernel-image-2.4.27-4-mckinley_2.4.27-10sarge6_ia64.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "kernel-image-2.4.27-r5k-lasat", "arch": "mipsel", "packageFilename": "kernel-image-2.4.27-r5k-lasat_2.4.27-10.sarge4.040815-3_mipsel.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-headers-2.4.27-4-mckinley-smp", "arch": "ia64", "packageFilename": "kernel-headers-2.4.27-4-mckinley-smp_2.4.27-10sarge6_ia64.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "3.2.5+2sarge2", "packageName": "pcmcia-modules-2.4.27-i386", "arch": "src", "packageFilename": "pcmcia-modules-2.4.27-i386_3.2.5+2sarge2.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "3.2.5+2sarge2", "packageName": "pcmcia-modules-2.4.27-4-386", "arch": "i686", "packageFilename": "pcmcia-modules-2.4.27-4-386_3.2.5+2sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "mips-tools", "arch": "arm", "packageFilename": "mips-tools_2.4.27-10.sarge4.040815-3_arm.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge2", "packageName": "i2c", "arch": "src", "packageFilename": "i2c_2.9.1-1sarge2.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-3sarge6", "packageName": "kernel-image-2.4.27-m68k", "arch": "src", "packageFilename": "kernel-image-2.4.27-m68k_2.4.27-3sarge6.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-headers-2.4-k7-smp", "arch": "i686", "packageFilename": "kernel-headers-2.4-k7-smp_101sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "mips-tools", "arch": "ia64", "packageFilename": "mips-tools_2.4.27-10.sarge4.040815-3_ia64.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "kernel-image-2.4.27-xxs1500", "arch": "mipsel", "packageFilename": "kernel-image-2.4.27-xxs1500_2.4.27-10.sarge4.040815-3_mipsel.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-patch-powerpc-2.4.27", "arch": "src", "packageFilename": "kernel-patch-powerpc-2.4.27_2.4.27-10sarge6.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-4-mckinley-smp", "arch": "ia64", "packageFilename": "kernel-image-2.4.27-4-mckinley-smp_2.4.27-10sarge6_ia64.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-patch-powerpc-2.4.27", "arch": "src", "packageFilename": "kernel-patch-powerpc-2.4.27_2.4.27-10sarge6.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-3sarge6", "packageName": "kernel-image-2.4.27-atari", "arch": "m68k", "packageFilename": "kernel-image-2.4.27-atari_2.4.27-3sarge6_m68k.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-headers-2.4.27-4-generic", "arch": "alpha", "packageFilename": "kernel-headers-2.4.27-4-generic_2.4.27-10sarge6_alpha.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "3.2.5+2sarge2", "packageName": "pcmcia-modules-2.4.27-i386", "arch": "src", "packageFilename": "pcmcia-modules-2.4.27-i386_3.2.5+2sarge2.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-headers-2.4.27-4-mckinley", "arch": "ia64", "packageFilename": "kernel-headers-2.4.27-4-mckinley_2.4.27-10sarge6_ia64.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "42sarge3", "packageName": "kernel-image-2.4-sparc64", "arch": "sparc", "packageFilename": "kernel-image-2.4-sparc64_42sarge3_sparc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-pcmcia-modules-2.4-386", "arch": "i686", "packageFilename": "kernel-pcmcia-modules-2.4-386_101sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-headers-2.4-686-smp", "arch": "i686", "packageFilename": "kernel-headers-2.4-686-smp_101sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-source-2.4.27", "arch": "all", "packageFilename": "kernel-source-2.4.27_2.4.27-10sarge6_all.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4-mckinley", "arch": "ia64", "packageFilename": "kernel-image-2.4-mckinley_2.4.27-10sarge6_ia64.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-3sarge6", "packageName": "kernel-image-2.4.27-bvme6000", "arch": "m68k", "packageFilename": "kernel-image-2.4.27-bvme6000_2.4.27-3sarge6_m68k.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-1sarge2", "packageName": "kernel-image-2.4-s390x", "arch": "s390x", "packageFilename": "kernel-image-2.4-s390x_2.4.27-1sarge2_s390.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "0.3.7-1sarge3", "packageName": "hostap-modules-2.4.27-4-686", "arch": "i686", "packageFilename": "hostap-modules-2.4.27-4-686_0.3.7-1sarge3_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge2", "packageName": "kernel-patch-2.4-i2c", "arch": "all", "packageFilename": "kernel-patch-2.4-i2c_2.9.1-1sarge2_all.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1.orig", "packageName": "lm-sensors", "arch": "src", "packageFilename": "lm-sensors_2.9.1.orig.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-build-2.4.27-4", "arch": "i686", "packageFilename": "kernel-build-2.4.27-4_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-pcmcia-modules-2.4-586tsc", "arch": "i686", "packageFilename": "kernel-pcmcia-modules-2.4-586tsc_101sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge4", "packageName": "lm-sensors", "arch": "i686", "packageFilename": "lm-sensors_2.9.1-1sarge4_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge4", "packageName": "lm-sensors-2.4.27-4-k7-smp", "arch": "i686", "packageFilename": "lm-sensors-2.4.27-4-k7-smp_2.9.1-1sarge4_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-headers-2.4-586tsc", "arch": "i686", "packageFilename": "kernel-headers-2.4-586tsc_101sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-2sarge6", "packageName": "kernel-image-2.4.27-bast", "arch": "arm", "packageFilename": "kernel-image-2.4.27-bast_2.4.27-2sarge6_arm.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-headers-2.4.27-powerpc", "arch": "ppc", "packageFilename": "kernel-headers-2.4.27-powerpc_2.4.27-10sarge6_powerpc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-4-k6", "arch": "i686", "packageFilename": "kernel-image-2.4.27-4-k6_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-4-smp", "arch": "alpha", "packageFilename": "kernel-image-2.4.27-4-smp_2.4.27-10sarge6_alpha.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-2sarge5", "packageName": "mindi-kernel", "arch": "i686", "packageFilename": "mindi-kernel_2.4.27-2sarge5_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-pcmcia-modules-2.4.27-4-k7-smp", "arch": "i686", "packageFilename": "kernel-pcmcia-modules-2.4.27-4-k7-smp_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "kernel-headers-2.4.27", "arch": "mips", "packageFilename": "kernel-headers-2.4.27_2.4.27-10.sarge4.040815-3_mips.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-headers-2.4.27-apus", "arch": "ppc", "packageFilename": "kernel-headers-2.4.27-apus_2.4.27-10sarge6_powerpc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-9sarge6", "packageName": "kernel-image-2.4.27-4-sparc64-smp", "arch": "sparc", "packageFilename": "kernel-image-2.4.27-4-sparc64-smp_2.4.27-9sarge6_sparc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-headers-2.4-k7", "arch": "i686", "packageFilename": "kernel-headers-2.4-k7_101sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-image-2.4-386", "arch": "i686", "packageFilename": "kernel-image-2.4-386_101sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "0.3.7-1sarge3", "packageName": "hostap-modules-i386", "arch": "src", "packageFilename": "hostap-modules-i386_0.3.7-1sarge3.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-headers-2.4-686", "arch": "i686", "packageFilename": "kernel-headers-2.4-686_101sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-1sarge2", "packageName": "kernel-latest-2.4-s390", "arch": "src", "packageFilename": "kernel-latest-2.4-s390_2.4.27-1sarge2.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-2sarge6", "packageName": "kernel-headers-2.4.27-4", "arch": "s390x", "packageFilename": "kernel-headers-2.4.27-4_2.4.27-2sarge6_s390.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-3sarge6", "packageName": "kernel-image-2.4.27-mvme16x", "arch": "m68k", "packageFilename": "kernel-image-2.4.27-mvme16x_2.4.27-3sarge6_m68k.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-headers-2.4.27-4-k7", "arch": "i686", "packageFilename": "kernel-headers-2.4.27-4-k7_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "0.3.7-1sarge3", "packageName": "hostap-modules-2.4.27-4-386", "arch": "i686", "packageFilename": "hostap-modules-2.4.27-4-386_0.3.7-1sarge3_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "42sarge3", "packageName": "kernel-latest-2.4-sparc", "arch": "src", "packageFilename": "kernel-latest-2.4-sparc_42sarge3.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-image-2.4-k7-smp", "arch": "i686", "packageFilename": "kernel-image-2.4-k7-smp_101sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-headers-2.4.27-4", "arch": "alpha", "packageFilename": "kernel-headers-2.4.27-4_2.4.27-10sarge6_alpha.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "0.3.7-1sarge3", "packageName": "hostap-modules-2.6.8-4-k7", "arch": "i686", "packageFilename": "hostap-modules-2.6.8-4-k7_0.3.7-1sarge3_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-alpha", "arch": "src", "packageFilename": "kernel-image-2.4.27-alpha_2.4.27-10sarge6.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "3.2.5+2sarge2", "packageName": "pcmcia-modules-2.4.27-4-k6", "arch": "i686", "packageFilename": "pcmcia-modules-2.4.27-4-k6_3.2.5+2sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "kernel-image-2.4.27-r5k-cobalt", "arch": "mipsel", "packageFilename": "kernel-image-2.4.27-r5k-cobalt_2.4.27-10.sarge4.040815-3_mipsel.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "kernel-image-2.4.27-r5k-ip22", "arch": "mips", "packageFilename": "kernel-image-2.4.27-r5k-ip22_2.4.27-10.sarge4.040815-3_mips.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-2sarge6", "packageName": "kernel-image-2.4.27-arm", "arch": "src", "packageFilename": "kernel-image-2.4.27-arm_2.4.27-2sarge6.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge3", "packageName": "kernel-image-2.4-smp", "arch": "alpha", "packageFilename": "kernel-image-2.4-smp_101sarge3_alpha.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "3.2.3-6sarge5", "packageName": "systemimager-doc", "arch": "all", "packageFilename": "systemimager-doc_3.2.3-6sarge5_all.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "42sarge3", "packageName": "kernel-headers-2.4-sparc64-smp", "arch": "sparc", "packageFilename": "kernel-headers-2.4-sparc64-smp_42sarge3_sparc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "mips-tools", "arch": "mipsel", "packageFilename": "mips-tools_2.4.27-10.sarge4.040815-3_mipsel.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-9sarge6", "packageName": "kernel-headers-2.4.27-4", "arch": "sparc", "packageFilename": "kernel-headers-2.4.27-4_2.4.27-9sarge6_sparc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge2", "packageName": "i2c-source", "arch": "all", "packageFilename": "i2c-source_2.9.1-1sarge2_all.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-2sarge6", "packageName": "kernel-image-2.4.27-4-s390", "arch": "s390x", "packageFilename": "kernel-image-2.4.27-4-s390_2.4.27-2sarge6_s390.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge3", "packageName": "kernel-image-2.4-generic", "arch": "alpha", "packageFilename": "kernel-image-2.4-generic_101sarge3_alpha.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-1.1sarge5", "packageName": "kernel-image-2.4.27-speakup", "arch": "i686", "packageFilename": "kernel-image-2.4.27-speakup_2.4.27-1.1sarge5_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge4", "packageName": "lm-sensors-2.4.27-4-586tsc", "arch": "i686", "packageFilename": "lm-sensors-2.4.27-4-586tsc_2.9.1-1sarge4_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "42sarge3", "packageName": "kernel-image-2.4-sparc64-smp", "arch": "sparc", "packageFilename": "kernel-image-2.4-sparc64-smp_42sarge3_sparc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-build-2.4.27-powerpc-smp", "arch": "ppc", "packageFilename": "kernel-build-2.4.27-powerpc-smp_2.4.27-10sarge6_powerpc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-image-2.4-k7", "arch": "i686", "packageFilename": "kernel-image-2.4-k7_101sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-headers-2.4.27-4", "arch": "ia64", "packageFilename": "kernel-headers-2.4.27-4_2.4.27-10sarge6_ia64.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1.orig", "packageName": "i2c", "arch": "src", "packageFilename": "i2c_2.9.1.orig.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "mips-tools", "arch": "ppc", "packageFilename": "mips-tools_2.4.27-10.sarge4.040815-3_powerpc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-headers-2.4.27-4-itanium", "arch": "ia64", "packageFilename": "kernel-headers-2.4.27-4-itanium_2.4.27-10sarge6_ia64.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-9sarge6", "packageName": "kernel-build-2.4.27-4", "arch": "sparc", "packageFilename": "kernel-build-2.4.27-4_2.4.27-9sarge6_sparc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-3sarge6", "packageName": "kernel-image-2.4.27-m68k", "arch": "src", "packageFilename": "kernel-image-2.4.27-m68k_2.4.27-3sarge6.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-nubus", "arch": "ppc", "packageFilename": "kernel-image-2.4.27-nubus_2.4.27-10sarge6_powerpc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "mips-tools", "arch": "i686", "packageFilename": "mips-tools_2.4.27-10.sarge4.040815-3_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "3.2.5+2sarge2", "packageName": "pcmcia-modules-2.4.27-4-k7", "arch": "i686", "packageFilename": "pcmcia-modules-2.4.27-4-k7_3.2.5+2sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-1.1sarge5", "packageName": "kernel-doc-2.4.27-speakup", "arch": "all", "packageFilename": "kernel-doc-2.4.27-speakup_2.4.27-1.1sarge5_all.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-patch-2.4.27-powerpc", "arch": "ppc", "packageFilename": "kernel-patch-2.4.27-powerpc_2.4.27-10sarge6_powerpc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-headers-2.4.27-4-itanium-smp", "arch": "ia64", "packageFilename": "kernel-headers-2.4.27-4-itanium-smp_2.4.27-10sarge6_ia64.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-9sarge6", "packageName": "kernel-image-2.4.27-sparc", "arch": "src", "packageFilename": "kernel-image-2.4.27-sparc_2.4.27-9sarge6.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-ia64", "arch": "src", "packageFilename": "kernel-image-2.4.27-ia64_2.4.27-10sarge6.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "0.3.7-1sarge3", "packageName": "hostap-modules-2.6.8-4-386", "arch": "i686", "packageFilename": "hostap-modules-2.6.8-4-386_0.3.7-1sarge3_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-headers-2.4.27-4-k6", "arch": "i686", "packageFilename": "kernel-headers-2.4.27-4-k6_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "3.2.5+2sarge2", "packageName": "pcmcia-modules-2.4.27-4-686", "arch": "i686", "packageFilename": "pcmcia-modules-2.4.27-4-686_3.2.5+2sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-headers-2.4.27-nubus", "arch": "ppc", "packageFilename": "kernel-headers-2.4.27-nubus_2.4.27-10sarge6_powerpc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "0.3.7-1sarge3", "packageName": "hostap-modules-2.4.27-4-k7", "arch": "i686", "packageFilename": "hostap-modules-2.4.27-4-k7_0.3.7-1sarge3_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "mips-tools", "arch": "sparc", "packageFilename": "mips-tools_2.4.27-10.sarge4.040815-3_sparc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "42sarge3", "packageName": "kernel-headers-2.4-sparc32", "arch": "sparc", "packageFilename": "kernel-headers-2.4-sparc32_42sarge3_sparc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-9sarge6", "packageName": "kernel-headers-2.4.27-4-sparc64-smp", "arch": "sparc", "packageFilename": "kernel-headers-2.4.27-4-sparc64-smp_2.4.27-9sarge6_sparc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge4", "packageName": "libsensors3", "arch": "i686", "packageFilename": "libsensors3_2.9.1-1sarge4_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-2sarge6", "packageName": "kernel-image-2.4.27-s390", "arch": "src", "packageFilename": "kernel-image-2.4.27-s390_2.4.27-2sarge6.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "0.3.7-1sarge3", "packageName": "hostap-modules-2.6.8-4-686", "arch": "i686", "packageFilename": "hostap-modules-2.6.8-4-686_0.3.7-1sarge3_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-latest-2.4-i386", "arch": "src", "packageFilename": "kernel-latest-2.4-i386_101sarge2.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-pcmcia-modules-2.4-k7", "arch": "i686", "packageFilename": "kernel-pcmcia-modules-2.4-k7_101sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-image-2.4-686-smp", "arch": "i686", "packageFilename": "kernel-image-2.4-686-smp_101sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "mips-tools", "arch": "s390x", "packageFilename": "mips-tools_2.4.27-10.sarge4.040815-3_s390.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-4-itanium", "arch": "ia64", "packageFilename": "kernel-image-2.4.27-4-itanium_2.4.27-10sarge6_ia64.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "3.2.3-6sarge5", "packageName": "systemimager-server-flamethrowerd", "arch": "all", "packageFilename": "systemimager-server-flamethrowerd_3.2.3-6sarge5_all.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "kernel-image-2.4.27-sb1-swarm-bn", "arch": "mipsel", "packageFilename": "kernel-image-2.4.27-sb1-swarm-bn_2.4.27-10.sarge4.040815-3_mipsel.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "3.2.3-6sarge5", "packageName": "systemimager-boot-ia64-standard", "arch": "all", "packageFilename": "systemimager-boot-ia64-standard_3.2.3-6sarge5_all.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-2sarge6", "packageName": "kernel-build-2.4.27", "arch": "arm", "packageFilename": "kernel-build-2.4.27_2.4.27-2sarge6_arm.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "0.3.7-1sarge3", "packageName": "hostap-modules-2.4.27-4-k7-smp", "arch": "i686", "packageFilename": "hostap-modules-2.4.27-4-k7-smp_0.3.7-1sarge3_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-headers-2.4.27-4-k7-smp", "arch": "i686", "packageFilename": "kernel-headers-2.4.27-4-k7-smp_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "3.2.3-6sarge5", "packageName": "systemimager", "arch": "src", "packageFilename": "systemimager_3.2.3-6sarge5.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-pcmcia-modules-2.4.27-4-686-smp", "arch": "i686", "packageFilename": "kernel-pcmcia-modules-2.4.27-4-686-smp_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-1sarge2", "packageName": "kernel-headers-2.4-s390", "arch": "s390x", "packageFilename": "kernel-headers-2.4-s390_2.4.27-1sarge2_s390.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27.orig", "packageName": "mindi-kernel", "arch": "src", "packageFilename": "mindi-kernel_2.4.27.orig.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge2", "packageName": "i2c-2.4.27-4-586tsc", "arch": "i686", "packageFilename": "i2c-2.4.27-4-586tsc_2.9.1-1sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-pcmcia-modules-2.4.27-4-k7", "arch": "i686", "packageFilename": "kernel-pcmcia-modules-2.4.27-4-k7_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "42sarge3", "packageName": "kernel-image-2.4-sparc32", "arch": "sparc", "packageFilename": "kernel-image-2.4-sparc32_42sarge3_sparc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-build-2.4.27-powerpc", "arch": "ppc", "packageFilename": "kernel-build-2.4.27-powerpc_2.4.27-10sarge6_powerpc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-i386", "arch": "src", "packageFilename": "kernel-image-2.4.27-i386_2.4.27-10sarge6.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-powerpc", "arch": "ppc", "packageFilename": "kernel-image-2.4.27-powerpc_2.4.27-10sarge6_powerpc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "0.3.7-1sarge3", "packageName": "hostap-modules-2.4.27-4-k6", "arch": "i686", "packageFilename": "hostap-modules-2.4.27-4-k6_0.3.7-1sarge3_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-1.1sarge5", "packageName": "kernel-image-speakup-i386", "arch": "src", "packageFilename": "kernel-image-speakup-i386_2.4.27-1.1sarge5.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-patch-2.4.27-apus", "arch": "ppc", "packageFilename": "kernel-patch-2.4.27-apus_2.4.27-10sarge6_powerpc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-9sarge6", "packageName": "kernel-headers-2.4.27-4-sparc32-smp", "arch": "sparc", "packageFilename": "kernel-headers-2.4.27-4-sparc32-smp_2.4.27-9sarge6_sparc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "3.2.3-6sarge5", "packageName": "systemimager", "arch": "src", "packageFilename": "systemimager_3.2.3-6sarge5.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6.diff", "packageName": "kernel-source-2.4.27", "arch": "src", "packageFilename": "kernel-source-2.4.27_2.4.27-10sarge6.diff.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-headers-2.4.27-4-686", "arch": "i686", "packageFilename": "kernel-headers-2.4.27-4-686_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge4", "packageName": "lm-sensors-2.4.27-4-686", "arch": "i686", "packageFilename": "lm-sensors-2.4.27-4-686_2.9.1-1sarge4_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-image-2.4-686", "arch": "i686", "packageFilename": "kernel-image-2.4-686_101sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "42sarge3", "packageName": "kernel-headers-2.4-sparc32-smp", "arch": "sparc", "packageFilename": "kernel-headers-2.4-sparc32-smp_42sarge3_sparc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-doc-2.4.27", "arch": "all", "packageFilename": "kernel-doc-2.4.27_2.4.27-10sarge6_all.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4-itanium", "arch": "ia64", "packageFilename": "kernel-image-2.4-itanium_2.4.27-10sarge6_ia64.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "3.2.5+2sarge2", "packageName": "pcmcia-modules-2.4.27-4-k7-smp", "arch": "i686", "packageFilename": "pcmcia-modules-2.4.27-4-k7-smp_3.2.5+2sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge4", "packageName": "lm-sensors-2.4.27-4-k7", "arch": "i686", "packageFilename": "lm-sensors-2.4.27-4-k7_2.9.1-1sarge4_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-2sarge6", "packageName": "kernel-image-2.4.27-4-s390-tape", "arch": "s390x", "packageFilename": "kernel-image-2.4.27-4-s390-tape_2.4.27-2sarge6_s390.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "0.3.7-1sarge3", "packageName": "hostap-modules-i386", "arch": "src", "packageFilename": "hostap-modules-i386_0.3.7-1sarge3.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "42sarge3", "packageName": "kernel-image-2.4-sparc32-smp", "arch": "sparc", "packageFilename": "kernel-image-2.4-sparc32-smp_42sarge3_sparc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-build-2.4.27-nubus", "arch": "ppc", "packageFilename": "kernel-build-2.4.27-nubus_2.4.27-10sarge6_powerpc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge4", "packageName": "libsensors-dev", "arch": "i686", "packageFilename": "libsensors-dev_2.9.1-1sarge4_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "kernel-headers-2.4.27", "arch": "mipsel", "packageFilename": "kernel-headers-2.4.27_2.4.27-10.sarge4.040815-3_mipsel.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-pcmcia-modules-2.4.27-4-386", "arch": "i686", "packageFilename": "kernel-pcmcia-modules-2.4.27-4-386_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-apus", "arch": "ppc", "packageFilename": "kernel-image-2.4.27-apus_2.4.27-10sarge6_powerpc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "mips-tools", "arch": "mips", "packageFilename": "mips-tools_2.4.27-10.sarge4.040815-3_mips.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-4-itanium-smp", "arch": "ia64", "packageFilename": "kernel-image-2.4.27-4-itanium-smp_2.4.27-10sarge6_ia64.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-4-586tsc", "arch": "i686", "packageFilename": "kernel-image-2.4.27-4-586tsc_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-4-k7", "arch": "i686", "packageFilename": "kernel-image-2.4.27-4-k7_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-pcmcia-modules-2.4-k7-smp", "arch": "i686", "packageFilename": "kernel-pcmcia-modules-2.4-k7-smp_101sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-pcmcia-modules-2.4.27-4-686", "arch": "i686", "packageFilename": "kernel-pcmcia-modules-2.4.27-4-686_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge2.diff", "packageName": "i2c", "arch": "src", "packageFilename": "i2c_2.9.1-1sarge2.diff.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-powerpc-smp", "arch": "ppc", "packageFilename": "kernel-image-2.4.27-powerpc-smp_2.4.27-10sarge6_powerpc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-pcmcia-modules-2.4-686", "arch": "i686", "packageFilename": "kernel-pcmcia-modules-2.4-686_101sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge3", "packageName": "kernel-headers-2.4-smp", "arch": "alpha", "packageFilename": "kernel-headers-2.4-smp_101sarge3_alpha.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-3sarge6", "packageName": "kernel-image-2.4.27-mac", "arch": "m68k", "packageFilename": "kernel-image-2.4.27-mac_2.4.27-3sarge6_m68k.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-build-2.4.27-powerpc-small", "arch": "ppc", "packageFilename": "kernel-build-2.4.27-powerpc-small_2.4.27-10sarge6_powerpc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge4.diff", "packageName": "lm-sensors", "arch": "src", "packageFilename": "lm-sensors_2.9.1-1sarge4.diff.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-1sarge2", "packageName": "kernel-image-2.4-s390", "arch": "s390x", "packageFilename": "kernel-image-2.4-s390_2.4.27-1sarge2_s390.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-4-generic", "arch": "alpha", "packageFilename": "kernel-image-2.4.27-4-generic_2.4.27-10sarge6_alpha.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-2sarge6", "packageName": "kernel-image-2.4.27-lart", "arch": "arm", "packageFilename": "kernel-image-2.4.27-lart_2.4.27-2sarge6_arm.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-4-686-smp", "arch": "i686", "packageFilename": "kernel-image-2.4.27-4-686-smp_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27.orig", "packageName": "kernel-source-2.4.27", "arch": "src", "packageFilename": "kernel-source-2.4.27_2.4.27.orig.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-9sarge6", "packageName": "kernel-headers-2.4.27-4-sparc32", "arch": "sparc", "packageFilename": "kernel-headers-2.4.27-4-sparc32_2.4.27-9sarge6_sparc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge4", "packageName": "lm-sensors", "arch": "src", "packageFilename": "lm-sensors_2.9.1-1sarge4.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10.sarge4.040815-3", "packageName": "kernel-image-2.4.27-sb1-swarm-bn", "arch": "mips", "packageFilename": "kernel-image-2.4.27-sb1-swarm-bn_2.4.27-10.sarge4.040815-3_mips.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "3.2.3-6sarge5", "packageName": "systemimager-client", "arch": "all", "packageFilename": "systemimager-client_3.2.3-6sarge5_all.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-alpha", "arch": "src", "packageFilename": "kernel-image-2.4.27-alpha_2.4.27-10sarge6.dsc", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-9sarge6", "packageName": "kernel-headers-2.4.27-4-sparc64", "arch": "sparc", "packageFilename": "kernel-headers-2.4.27-4-sparc64_2.4.27-9sarge6_sparc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-headers-2.4.27-4", "arch": "i686", "packageFilename": "kernel-headers-2.4.27-4_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "3.2.5+2sarge2", "packageName": "pcmcia-modules-2.4.27-4-586tsc", "arch": "i686", "packageFilename": "pcmcia-modules-2.4.27-4-586tsc_3.2.5+2sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-pcmcia-modules-2.4-686-smp", "arch": "i686", "packageFilename": "kernel-pcmcia-modules-2.4-686-smp_101sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-image-2.4-k6", "arch": "i686", "packageFilename": "kernel-image-2.4-k6_101sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-i386", "arch": "src", "packageFilename": "kernel-image-2.4.27-i386_2.4.27-10sarge6.tar.gz", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.9.1-1sarge4", "packageName": "lm-sensors-2.4.27-4-686-smp", "arch": "i686", "packageFilename": "lm-sensors-2.4.27-4-686-smp_2.9.1-1sarge4_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-9sarge6", "packageName": "kernel-image-2.4.27-4-sparc32", "arch": "sparc", "packageFilename": "kernel-image-2.4.27-4-sparc32_2.4.27-9sarge6_sparc.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-headers-2.4.27-4-586tsc", "arch": "i686", "packageFilename": "kernel-headers-2.4.27-4-586tsc_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-headers-2.4.27-4-smp", "arch": "alpha", "packageFilename": "kernel-headers-2.4.27-4-smp_2.4.27-10sarge6_alpha.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-2sarge6", "packageName": "kernel-image-2.4.27-4-s390x", "arch": "s390x", "packageFilename": "kernel-image-2.4.27-4-s390x_2.4.27-2sarge6_s390.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-image-2.4-586tsc", "arch": "i686", "packageFilename": "kernel-image-2.4-586tsc_101sarge2_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-image-2.4.27-4-k7-smp", "arch": "i686", "packageFilename": "kernel-image-2.4.27-4-k7-smp_2.4.27-10sarge6_i386.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "2.4.27-10sarge6", "packageName": "kernel-build-2.4.27-4", "arch": "alpha", "packageFilename": "kernel-build-2.4.27-4_2.4.27-10sarge6_alpha.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "101sarge2", "packageName": "kernel-headers-2.4-386", "arch": "i686", "packageFilename": "kernel-headers-2.4-386_101sarge2_i386.deb", "operator": "lt"}], "edition": 1, "description": "Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems:\n\n * [CVE-2004-2731](<https://security-tracker.debian.org/tracker/CVE-2004-2731>)\n\ninfamous41md reported multiple integer overflows in the Sbus PROM driver that would allow for a DoS (Denial of Service) attack by a local user, and possibly the execution of arbitrary code.\n\n * [CVE-2006-4814](<https://security-tracker.debian.org/tracker/CVE-2006-4814>)\n\nDoug Chapman discovered a potential local DoS (deadlock) in the mincore function caused by improper lock handling.\n\n * [CVE-2006-5753](<https://security-tracker.debian.org/tracker/CVE-2006-5753>)\n\nEric Sandeen provided a fix for a local memory corruption vulnerability resulting from a misinterpretation of return values when operating on inodes which have been marked bad.\n\n * [CVE-2006-5823](<https://security-tracker.debian.org/tracker/CVE-2006-5823>)\n\nLMH reported a potential local DoS which could be exploited by a malicious user with the privileges to mount and read a corrupted cramfs filesystem.\n\n * [CVE-2006-6053](<https://security-tracker.debian.org/tracker/CVE-2006-6053>)\n\nLMH reported a potential local DoS which could be exploited by a malicious user with the privileges to mount and read a corrupted ext3 filesystem.\n\n * [CVE-2006-6054](<https://security-tracker.debian.org/tracker/CVE-2006-6054>)\n\nLMH reported a potential local DoS which could be exploited by a malicious user with the privileges to mount and read a corrupted ext2 filesystem.\n\n * [CVE-2006-6106](<https://security-tracker.debian.org/tracker/CVE-2006-6106>)\n\nMarcel Holtman discovered multiple buffer overflows in the Bluetooth subsystem which can be used to trigger a remote DoS (crash) and potentially execute arbitrary code.\n\n * [CVE-2007-1353](<https://security-tracker.debian.org/tracker/CVE-2007-1353>)\n\nIlja van Sprundel discovered that kernel memory could be leaked via the Bluetooth setsockopt call due to an uninitialized stack buffer. This could be used by local attackers to read the contents of sensitive kernel memory.\n\n * [CVE-2007-1592](<https://security-tracker.debian.org/tracker/CVE-2007-1592>)\n\nMasayuki Nakagawa discovered that flow labels were inadvertently being shared between listening sockets and child sockets. This defect can be exploited by local users to cause a DoS (Oops).\n\n * [CVE-2007-2172](<https://security-tracker.debian.org/tracker/CVE-2007-2172>)\n\nThomas Graf reported a typo in the DECnet protocol handler that could be used by a local attacker to overrun an array via crafted packets, potentially resulting in a Denial of Service (system crash). A similar issue exists in the IPV4 protocol handler and will be fixed in a subsequent update.\n\n * [CVE-2007-2525](<https://security-tracker.debian.org/tracker/CVE-2007-2525>)\n\nFlorian Zumbiehl discovered a memory leak in the PPPOE subsystem caused by releasing a socket before PPPIOCGCHAN is called upon it. This could be used by a local user to DoS a system by consuming all available memory.\n\n * [CVE-2007-3848](<https://security-tracker.debian.org/tracker/CVE-2007-3848>)\n\nWojciech Purczynski discovered that pdeath_signal was not being reset properly under certain conditions which may allow local users to gain privileges by sending arbitrary signals to suid binaries.\n\n * [CVE-2007-4308](<https://security-tracker.debian.org/tracker/CVE-2007-4308>)\n\nAlan Cox reported an issue in the aacraid driver that allows unprivileged local users to make ioctl calls which should be restricted to admin privileges.\n\n * [CVE-2007-4311](<https://security-tracker.debian.org/tracker/CVE-2007-4311>)\n\nPaX team discovered an issue in the random driver where a defect in the reseeding code leads to a reduction in entropy.\n\n * [CVE-2007-5093](<https://security-tracker.debian.org/tracker/CVE-2007-5093>)\n\nAlex Smith discovered an issue with the pwc driver for certain webcam devices. If the device is removed while a userspace application has it open, the driver will wait for userspace to close the device, resulting in a blocked USB subsystem. This issue is of low security impact as it requires the attacker to either have physical access to the system or to convince a user with local access to remove the device on their behalf.\n\n * [CVE-2007-6063](<https://security-tracker.debian.org/tracker/CVE-2007-6063>)\n\nVenustech AD-LAB discovered a a buffer overflow in the isdn ioctl handling, exploitable by a local user.\n\n * [CVE-2007-6151](<https://security-tracker.debian.org/tracker/CVE-2007-6151>)\n\nADLAB discovered a possible memory overrun in the ISDN subsystem that may permit a local user to overwrite kernel memory by issuing ioctls with unterminated data.\n\n * [CVE-2007-6206](<https://security-tracker.debian.org/tracker/CVE-2007-6206>)\n\nBlake Frantz discovered that when a core file owned by a non-root user exists, and a root-owned process dumps core over it, the core file retains its original ownership. This could be used by a local user to gain access to sensitive information.\n\n * [CVE-2007-6694](<https://security-tracker.debian.org/tracker/CVE-2007-6694>)\n\nCyrill Gorcunov reported a NULL pointer dereference in code specific to the CHRP PowerPC platforms. Local users could exploit this issue to achieve a Denial of Service (DoS).\n\n * [CVE-2008-0007](<https://security-tracker.debian.org/tracker/CVE-2008-0007>)\n\nNick Piggin of SuSE discovered a number of issues in subsystems which register a fault handler for memory mapped areas. This issue can be exploited by local users to achieve a Denial of Service (DoS) and possibly execute arbitrary code.\n\nThe following matrix lists additional packages that were rebuilt for compatibility with or to take advantage of this update:\n\n| Debian 3.1 (sarge) \n---|--- \nalsa-modules-i386 | 1.0.8+2sarge2 \nkernel-image-2.4.27-arm | 2.4.27-2sarge6 \nkernel-image-2.4.27-m68k | 2.4.27-3sarge6 \nkernel-image-speakup-i386 | 2.4.27-1.1sarge5 \nkernel-image-2.4.27-alpha | 2.4.27-10sarge6 \nkernel-image-2.4.27-s390 | 2.4.27-2sarge6 \nkernel-image-2.4.27-sparc | 2.4.27-9sarge6 \nkernel-image-2.4.27-i386 | 2.4.27-10sarge6 \nkernel-image-2.4.27-ia64 | 2.4.27-10sarge6 \nkernel-patch-2.4.27-mips | 2.4.27-10.sarge4.040815-3 \nkernel-patch-powerpc-2.4.27| 2.4.27-10sarge6 \nkernel-latest-2.4-alpha | 101sarge3 \nkernel-latest-2.4-i386 | 101sarge2 \nkernel-latest-2.4-s390 | 2.4.27-1sarge2 \nkernel-latest-2.4-sparc | 42sarge3 \ni2c | 1:2.9.1-1sarge2 \nlm-sensors | 1:2.9.1-1sarge4 \nmindi-kernel | 2.4.27-2sarge5 \npcmcia-modules-2.4.27-i386 | 3.2.5+2sarge2 \nhostap-modules-i386 | 1:0.3.7-1sarge3 \nsystemimager | 3.2.3-6sarge5 \n \nWe recommend that you upgrade your kernel package immediately and reboot the machine. If you have built a custom kernel from the kernel source package, you will need to rebuild to take advantage of these fixes.", "reporter": "Debian", "published": "2008-02-22T00:00:00", "title": "kernel-source-2.4.27 -- several vulnerabilities", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "type": "debian", "bulletinFamily": "unix", "cvelist": ["CVE-2007-2172", "CVE-2006-6054", "CVE-2007-3848", "CVE-2007-4311", "CVE-2007-1353", "CVE-2006-4814", "CVE-2007-6151", "CVE-2004-2731", "CVE-2006-6106", "CVE-2007-5093", "CVE-2007-4308", "CVE-2008-0007", "CVE-2007-1592", "CVE-2006-6053", "CVE-2007-6206", "CVE-2006-5753", "CVE-2006-5823", "CVE-2007-6694", "CVE-2007-2525", "CVE-2007-6063"], "modified": "2008-02-22T00:00:00", "href": "http://www.debian.org/security/dsa-1503", "id": "DSA-1503", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "suse": [{"lastseen": "2016-09-04T11:50:35", "references": [], "affectedPackage": [{"OS": "Novell Open Enterprise Server (OES)", "OSVersion": "any", "packageVersion": "2.6.5-7.286", "arch": "i586", "packageFilename": "kernel-default-2.6.5-7.286.i586.rpm", "packageName": "kernel-default", "operator": "lt"}, {"OS": "Novell Open Enterprise Server (OES)", "OSVersion": "any", "packageVersion": "2.6.5-7.286", "arch": "i586", "packageFilename": "kernel-source-2.6.5-7.286.i586.rpm", "packageName": "kernel-source", "operator": "lt"}, {"OS": "Novell Open Enterprise Server (OES)", "OSVersion": "any", "packageVersion": "2.6.5-7.286", "arch": "i586", "packageFilename": "kernel-debug-2.6.5-7.286.i586.rpm", "packageName": "kernel-debug", "operator": "lt"}, {"OS": "Novell Open Enterprise Server (OES)", "OSVersion": "any", "packageVersion": "2.6.5-7.286", "arch": "i586", "packageFilename": "kernel-um-2.6.5-7.286.i586.rpm", "packageName": "kernel-um", "operator": "lt"}, {"OS": "Novell Open Enterprise Server (OES)", "OSVersion": "any", "packageVersion": "1.0-48.22", "arch": "i586", "packageFilename": "um-host-install-initrd-1.0-48.22.i586.rpm", "packageName": "um-host-install-initrd", "operator": "lt"}, {"OS": "Novell Open Enterprise Server (OES)", "OSVersion": "any", "packageVersion": "2.6.5-7.286", "arch": "i586", "packageFilename": "kernel-bigsmp-2.6.5-7.286.i586.rpm", "packageName": "kernel-bigsmp", "operator": "lt"}, {"OS": "Novell Open Enterprise Server (OES)", "OSVersion": "any", "packageVersion": "2.6.5-7.286", "arch": "i586", "packageFilename": "kernel-syms-2.6.5-7.286.i586.rpm", "packageName": "kernel-syms", "operator": "lt"}, {"OS": "Novell Open Enterprise Server (OES)", "OSVersion": "any", "packageVersion": "2.6.5-7.286", "arch": "i586", "packageFilename": "um-host-kernel-2.6.5-7.286.i586.rpm", "packageName": "um-host-kernel", "operator": "lt"}, {"OS": "Novell Open Enterprise Server (OES)", "OSVersion": "any", "packageVersion": "2.6.5-7.286", "arch": "i586", "packageFilename": "kernel-smp-2.6.5-7.286.i586.rpm", "packageName": "kernel-smp", "operator": "lt"}], "description": "This kernel update fixes the following security problems in our SUSE Linux Enterprise Server 9, Novell Linux Desktop 9 and Open Enterprise Server kernels.\n#### Solution\nThere is no known workaround, please install the update packages.", "edition": 1, "reporter": "Suse", "published": "2007-06-14T16:33:34", "title": "remote denial of service in kernel", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "suse", "bulletinFamily": "unix", "cvelist": ["CVE-2006-6535", "CVE-2007-1353", "CVE-2006-7203", "CVE-2006-6106", "CVE-2006-5754", "CVE-2007-1592", "CVE-2006-5871", "CVE-2006-5753", "CVE-2007-1357", "CVE-2006-2936", "CVE-2006-5749"], "modified": "2007-06-14T16:33:34", "id": "SUSE-SA:2007:035", "href": "http://lists.opensuse.org/opensuse-security-announce/2007-06/msg00004.html", "cvss": {"score": 9.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:COMPLETE/A:COMPLETE/"}}]}}
