7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
The kernel package is vulnerable to denial of service (DoS). The RHSA-2009:0225 update introduced a rewrite attack flaw in the do_coredump() function. A local attacker able to guess the file name a process is going to dump its core to, prior to the process crashing, could use this flaw to append data to the dumped core file. This issue only affects systems that have “/proc/sys/fs/suid_dumpable” set to 2 (the default value is 0).
kbase.redhat.com/faq/docs/DOC-20536
secunia.com/advisories/23349
support.avaya.com/css/P8/documents/100073666
www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.19.1
www.redhat.com/security/updates/classification/#important
www.securityfocus.com/bid/21591
www.trustix.org/errata/2006/0074/
www.vupen.com/english/advisories/2006/5002
access.redhat.com/errata/RHSA-2010:0046
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10797
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7446
rhn.redhat.com/errata/RHSA-2010-0046.html
rhn.redhat.com/errata/RHSA-2010-0095.html