Lucene search
RedHatRHSA-2010:0792HistoryOct 25, 2010 - 12:00 a.m.
(RHSA-2010:0792) Important: kernel security update
2010-10-2500:00:00
access.redhat.com
22
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
37.3%
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
This update fixes the following security issue:
- The rds_page_copy_user() function in the Linux kernel Reliable Datagram
Sockets (RDS) protocol implementation was missing sanity checks. A local,
unprivileged user could use this flaw to escalate their privileges.
(CVE-2010-3904, Important)
Red Hat would like to thank Dan Rosenberg of Virtual Security Research for
reporting this issue.
Users should upgrade to these updated packages, which contain a backported
patch to correct this issue. The system must be rebooted for this update to
take effect.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 5 | i686 | kernel-pae-devel | < 2.6.18-194.17.4.el5 | kernel-PAE-devel-2.6.18-194.17.4.el5.i686.rpm |
| RedHat | 5 | ia64 | kernel-xen | < 2.6.18-194.17.4.el5 | kernel-xen-2.6.18-194.17.4.el5.ia64.rpm |
| RedHat | 5 | ia64 | kernel-headers | < 2.6.18-194.17.4.el5 | kernel-headers-2.6.18-194.17.4.el5.ia64.rpm |
| RedHat | 5 | x86_64 | kernel-debug | < 2.6.18-194.17.4.el5 | kernel-debug-2.6.18-194.17.4.el5.x86_64.rpm |
| RedHat | 5 | i386 | kernel-headers | < 2.6.18-194.17.4.el5 | kernel-headers-2.6.18-194.17.4.el5.i386.rpm |
| RedHat | 5 | i686 | kernel-debug | < 2.6.18-194.17.4.el5 | kernel-debug-2.6.18-194.17.4.el5.i686.rpm |
| RedHat | 5 | x86_64 | kernel | < 2.6.18-194.17.4.el5 | kernel-2.6.18-194.17.4.el5.x86_64.rpm |
| RedHat | 5 | ia64 | kernel-xen-devel | < 2.6.18-194.17.4.el5 | kernel-xen-devel-2.6.18-194.17.4.el5.ia64.rpm |
| RedHat | 5 | ia64 | kernel-debug-devel | < 2.6.18-194.17.4.el5 | kernel-debug-devel-2.6.18-194.17.4.el5.ia64.rpm |
| RedHat | 5 | x86_64 | kernel-devel | < 2.6.18-194.17.4.el5 | kernel-devel-2.6.18-194.17.4.el5.x86_64.rpm |
Related
prion
prion
Design/Logic Flaw
2010-12-06 20:13:00
altlinux
altlinux
openvas
openvas
RedHat Update for kernel RHSA-2010:0792-01
2010-11-04 00:00:00
Oracle: Security Advisory (ELSA-2010-2010)
2015-10-06 00:00:00
CentOS Update for kernel CESA-2010:0792 centos5 i386
2011-08-09 00:00:00
securityvulns
securityvulns
Linux kernel RDS protocol privilege escalation
2010-10-24 00:00:00
VSR Advisories: Linux RDS Protocol Local Privilege Escalation
2010-10-24 00:00:00
zdt
zdt
Linux 2.6.30 < 2.6.36-rc8 - Reliable Datagram Sockets (RDS) Privilege Escalation Exploit
2018-05-21 00:00:00
Reliable Datagram Sockets (RDS) Privilege Escalation Exploit
2018-05-19 00:00:00
nessus
nessus
CentOS 5 : kernel (CESA-2010:0792)
2010-11-24 00:00:00
RHEL 5 : kernel (RHSA-2010:0792)
2010-10-26 00:00:00
Scientific Linux Security Update : kernel on SL5.x i386/x86_64
2012-08-01 00:00:00
metasploit
metasploit
Reliable Datagram Sockets (RDS) rds_page_copy_user Privilege Escalation
2019-12-18 20:05:19
Reliable Datagram Sockets (RDS) Privilege Escalation
2018-05-03 12:51:21
cve
cve
CVE-2010-3904
2010-12-06 20:13:00
centos
centos
kernel security update
2010-10-26 06:38:54
oraclelinux
oraclelinux
kernel security update
2010-10-22 00:00:00
kernel security update
2010-10-27 00:00:00
Oracle Linux 5 Unbreakable Enterprise kernel security fix update
2010-10-22 00:00:00
seebug
seebug
Linux Kernel <= 2.6.36-rc8 - RDS Protocol Local Privilege Escalation
2014-07-01 00:00:00
Linux RDS Protocol Local Privilege Escalation
2010-10-26 00:00:00
Linux Kernel RDS协议本地权限提升漏洞
2010-10-26 00:00:00
canvas
canvas
Immunity Canvas: LINUX_RDS
2010-12-06 20:13:00
cert
cert
Linux kernel RDS protocol vulnerability
2010-10-25 00:00:00
packetstorm
packetstorm
Reliable Datagram Sockets (RDS) Privilege Escalation
2018-05-19 00:00:00
vReliable Datagram Sockets (RDS) rds_page_copy_user Privilege Escalation
2019-12-23 00:00:00
ubuntucve
ubuntucve
CVE-2010-3904
2010-10-19 00:00:00
attackerkb
attackerkb
CVE-2010-3904
2010-12-06 00:00:00
exploitpack
exploitpack
Linux Kernel 2.6.36-rc8 - RDS Protocol Local Privilege Escalation
2010-10-19 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:50:15
cisa_kev
cisa_kev
Linux Kernel Improper Input Validation Vulnerability
2023-05-12 00:00:00
exploitdb
exploitdb
suse
suse
local privilege escalation in kernel
2010-10-28 16:14:32
local privilege escalation in kernel
2010-11-11 15:47:32
remote denial of service, local privilege in kernel-rt
2011-02-07 11:58:56
thn
thn
Two Linux vulnerabilities to get root access
2010-10-30 07:21:00
Warning: Samsung Devices Under Attack! New Security Flaw Exposed
2023-05-20 04:15:00
fedora
fedora
[SECURITY] Fedora 14 Update: kernel-2.6.35.6-48.fc14
2010-10-28 06:10:03
[SECURITY] Fedora 14 Update: kernel-2.6.35.9-64.fc14
2010-12-05 00:42:46
[SECURITY] Fedora 14 Update: kernel-2.6.35.13-92.fc14
2011-06-11 04:22:38
redhat
redhat
(RHSA-2010:0842) Important: kernel security and bug fix update
2010-11-10 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2010-10-19 00:00:00
Linux kernel (OMAP4) vulnerabilities
2011-04-20 00:00:00
Linux kernel vulnerabilities
2011-02-25 00:00:00
vmware
vmware
VMware ESXi and ESX updates to third party libraries and ESX Service Console
2011-10-12 00:00:00
VMware ESX third party updates for Service Console packages glibc and dhcp
2011-10-12 00:00:00
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
37.3%
Related for RHSA-2010:0792