ID de Prueba:	1.3.6.1.4.1.25623.1.0.122192
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2011-2014)
Resumen:	The remote host is missing an update for the 'kernel-uek, ofa-2.6.32-100.28.11.el5' package(s) announced via the ELSA-2011-2014 advisory.
Descripción:	Summary: The remote host is missing an update for the 'kernel-uek, ofa-2.6.32-100.28.11.el5' package(s) announced via the ELSA-2011-2014 advisory. Vulnerability Insight: [2.6.32-100.28.11.el6] - fs/partitions: Validate map_count in Mac partition tables {CVE-2011-1010} - nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab (v3) {CVE-2011-1090} [2.6.32-100.28.10.el6] - Use cciss for some Smart Array controller for OL5 [orabug 11899706] - CVEs from RHSA-2011-0421 - install_special_mapping skips security_file_mmap check {CVE-2010-4346} - orinoco: fix TKIP countermeasure behaviour {CVE-2010-4648} - net: clear heap allocation for ethtool_get_regs() {CVE-2010-4655} - usb: iowarrior: don't trust report_size for buffer size {CVE-2010-4656} - [media] [v3,media] av7110: check for negative array offset {CVE-2011-0521} - RDMA/cma: Fix crash in request handlers {CVE-2011-0695} - IB/cm: Bump reference count on cm_id before invoking callback {CVE-2011-0695} - gro: reset skb_iif on reuse {CVE-2011-1478} Affected Software/OS: 'kernel-uek, ofa-2.6.32-100.28.11.el5' package(s) on Oracle Linux 5, Oracle Linux 6. Solution: Please install the updated package(s). CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-4346 20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console http://www.securityfocus.com/archive/1/520102/100/0/threaded 42570 http://secunia.com/advisories/42570 45323 http://www.securityfocus.com/bid/45323 46397 http://secunia.com/advisories/46397 MDVSA-2011:029 http://www.mandriva.com/security/advisories?name=MDVSA-2011:029 [linux-kernel] 20101209 [PATCH] install_special_mapping skips security_file_mmap check. https://lkml.org/lkml/2010/12/9/222 [oss-security] 20101209 Re: [taviso@cmpxchg8b.com: [PATCH] install_special_mapping skips security_file_mmap check.] http://openwall.com/lists/oss-security/2010/12/09/13 [oss-security] 20101209 [taviso@cmpxchg8b.com: [PATCH] install_special_mapping skips security_file_mmap check.] http://openwall.com/lists/oss-security/2010/12/09/12 [oss-security] 20101210 Re: Subject: CVE request: kernel: install_special_mapping skips security_file_mmap check http://openwall.com/lists/oss-security/2010/12/10/3 [oss-security] 20101210 Subject: CVE request: kernel: install_special_mapping skips security_file_mmap check http://openwall.com/lists/oss-security/2010/12/10/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=462e635e5b73ba9a4c03913b77138cd57ce4b050 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.37-rc6 http://www.vmware.com/security/advisories/VMSA-2011-0012.html https://bugzilla.redhat.com/show_bug.cgi?id=662189 Common Vulnerability Exposure (CVE) ID: CVE-2010-4648 [oss-security] 20110106 Re: CVE Request: kernel [Re: Security review of 2.6.32.28] http://www.openwall.com/lists/oss-security/2011/01/06/18 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.37 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=0a54917c3fc295cb61f3fb52373c173fd3b69f48 https://bugzilla.redhat.com/show_bug.cgi?id=667907 https://github.com/torvalds/linux/commit/0a54917c3fc295cb61f3fb52373c173fd3b69f48 Common Vulnerability Exposure (CVE) ID: CVE-2010-4655 45972 http://www.securityfocus.com/bid/45972 USN-1146-1 http://www.ubuntu.com/usn/USN-1146-1 [linux-kernel] 20101007 [PATCH] net: clear heap allocations for privileged ethtool actions https://lkml.org/lkml/2010/10/7/297 [oss-security] 20110124 CVE request: linux kernel heap issues http://openwall.com/lists/oss-security/2011/01/24/9 [oss-security] 20110124 Re: CVE request: linux kernel heap issues http://openwall.com/lists/oss-security/2011/01/25/3 [oss-security] 20110125 Re: CVE request: linux kernel heap issues http://openwall.com/lists/oss-security/2011/01/25/4 http://openwall.com/lists/oss-security/2011/01/25/5 [oss-security] 20110128 Re: CVE request: linux kernel heap issues http://openwall.com/lists/oss-security/2011/01/28/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b00916b189d13a615ff05c9242201135992fcda3 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36 https://bugzilla.redhat.com/show_bug.cgi?id=672428 Common Vulnerability Exposure (CVE) ID: CVE-2010-4656 46069 http://www.securityfocus.com/bid/46069 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=3ed780117dbe5acb64280d218f0347f238dafed0 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.37 https://bugzilla.redhat.com/show_bug.cgi?id=672420 Common Vulnerability Exposure (CVE) ID: CVE-2011-0521 1025195 http://www.securitytracker.com/id?1025195 43009 http://secunia.com/advisories/43009 45986 http://www.securityfocus.com/bid/45986 [oss-security] 20110125 Linux kernel av7110 negative array offset http://openwall.com/lists/oss-security/2011/01/24/2 [oss-security] 20110125 Re: Linux kernel av7110 negative array offset http://openwall.com/lists/oss-security/2011/01/25/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=cb26a24ee9706473f31d34cc259f4dcf45cd0644 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.38-rc2 kernel-av7110ca-privilege-escalation(64988) https://exchange.xforce.ibmcloud.com/vulnerabilities/64988 Common Vulnerability Exposure (CVE) ID: CVE-2011-0695 43693 http://secunia.com/advisories/43693 46839 http://www.securityfocus.com/bid/46839 RHSA-2011:0927 http://rhn.redhat.com/errata/RHSA-2011-0927.html [linux-rdma] 20110223 [PATCH 1/2] rdma/cm: Fix crash in request handlers http://www.spinics.net/lists/linux-rdma/msg07447.html [linux-rdma] 20110223 [PATCH 2/2] ib/cm: Bump reference count on cm_id before invoking callback http://www.spinics.net/lists/linux-rdma/msg07448.html [oss-security] 20110311 CVE-2011-0695 kernel: panic in ib_cm:cm_work_handler http://www.openwall.com/lists/oss-security/2011/03/11/1 kernel-infiniband-dos(66056) https://exchange.xforce.ibmcloud.com/vulnerabilities/66056 Common Vulnerability Exposure (CVE) ID: CVE-2011-1010 1025126 http://www.securitytracker.com/id?1025126 20110223 [PRE-SA-2011-01] Multiple Linux kernel vulnerabilities in partition handling code of LDM and MAC partition tables http://www.securityfocus.com/archive/1/516615/100/0/threaded 46492 http://www.securityfocus.com/bid/46492 8115 http://securityreason.com/securityalert/8115 [oss-security] 20110222 CVE request: kernel: fs/partitions: validate map_count in mac partition tables http://openwall.com/lists/oss-security/2011/02/22/3 [oss-security] 20110222 Re: CVE request: kernel: fs/partitions: validate map_count in mac partition tables http://openwall.com/lists/oss-security/2011/02/22/11 http://openwall.com/lists/oss-security/2011/02/22/15 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fa7ea87a057958a8b7926c1a60a3ca6d696328ed http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.37.2 http://www.pre-cert.de/advisories/PRE-SA-2011-01.txt https://bugzilla.redhat.com/show_bug.cgi?id=679282 kernel-map-dos(65643) https://exchange.xforce.ibmcloud.com/vulnerabilities/65643 Common Vulnerability Exposure (CVE) ID: CVE-2011-1090 1025336 http://securitytracker.com/id?1025336 SUSE-SU-2015:0812 http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html [oss-security] 20110307 CVE request - kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab http://openwall.com/lists/oss-security/2011/03/07/2 [oss-security] 20110307 Re: CVE request - kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab http://openwall.com/lists/oss-security/2011/03/07/12 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=e9e3d724e2145f5039b423c290ce2b2c3d8f94bc http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38 https://bugzilla.redhat.com/show_bug.cgi?id=682641 Common Vulnerability Exposure (CVE) ID: CVE-2011-1478 8480 http://securityreason.com/securityalert/8480 [oss-security] 20110328 CVE-2011-1478 kernel: gro: reset dev and skb_iff on skb reuse http://openwall.com/lists/oss-security/2011/03/28/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=66c46d741e2e60f0e8b625b80edb0ab820c46d7a http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6d152e23ad1a7a5b40fef1f42e017d66e6115159 http://mirror.anl.gov/pub/linux/kernel/v2.6/ChangeLog-2.6.38 https://bugzilla.redhat.com/show_bug.cgi?id=691270
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.