Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2012-2008)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.123934

Categoría: Oracle Linux Local Security Checks

Título: Oracle: Security Advisory (ELSA-2012-2008)

Resumen: The remote host is missing an update for the 'kernel-uek' package(s) announced via the ELSA-2012-2008 advisory.

Descripción: Summary:
The remote host is missing an update for the 'kernel-uek' package(s) announced via the ELSA-2012-2008 advisory.

Vulnerability Insight:
[2.6.39-100.6.1]
- regset: Return -EFAULT, not -EIO, on host-side memory fault (H. Peter Anvin)
{CVE-2012-1097}
- regset: Prevent null pointer reference on readonly regsets (H. Peter Anvin)
{CVE-2012-1097}
- cifs: fix dentry refcount leak when opening a FIFO on lookup (Jeff Layton)
{CVE-2012-1090}

Affected Software/OS:
'kernel-uek' package(s) on Oracle Linux 5, Oracle Linux 6.

Solution:
Please install the updated package(s).

CVSS Score:
7.2

CVSS Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2012-1090
48842
http://secunia.com/advisories/48842
48964
http://secunia.com/advisories/48964
RHSA-2012:0481
http://rhn.redhat.com/errata/RHSA-2012-0481.html
RHSA-2012:0531
http://rhn.redhat.com/errata/RHSA-2012-0531.html
SUSE-SU-2012:0554
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00021.html
SUSE-SU-2012:0616
http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00013.html
[oss-security] 20120228 Re: CVE request -- kernel: cifs: dentry refcount leak when opening a FIFO on lookup leads to panic on unmount
http://www.openwall.com/lists/oss-security/2012/02/28/4
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.10
https://bugzilla.redhat.com/show_bug.cgi?id=798293
https://github.com/torvalds/linux/commit/88d7d4e4a439f32acc56a6d860e415ee71d3df08
Common Vulnerability Exposure (CVE) ID: CVE-2012-1097
48898
http://secunia.com/advisories/48898
[oss-security] 20120305 CVE-2012-1097 kernel: regset: Prevent null pointer reference on readonly regsets
http://www.openwall.com/lists/oss-security/2012/03/05/1
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c8e252586f8d5de906385d8cf6385fee289a825e
https://bugzilla.redhat.com/show_bug.cgi?id=799209
https://github.com/torvalds/linux/commit/c8e252586f8d5de906385d8cf6385fee289a825e

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.123934
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2012-2008)
Resumen:	The remote host is missing an update for the 'kernel-uek' package(s) announced via the ELSA-2012-2008 advisory.
Descripción:	Summary: The remote host is missing an update for the 'kernel-uek' package(s) announced via the ELSA-2012-2008 advisory. Vulnerability Insight: [2.6.39-100.6.1] - regset: Return -EFAULT, not -EIO, on host-side memory fault (H. Peter Anvin) {CVE-2012-1097} - regset: Prevent null pointer reference on readonly regsets (H. Peter Anvin) {CVE-2012-1097} - cifs: fix dentry refcount leak when opening a FIFO on lookup (Jeff Layton) {CVE-2012-1090} Affected Software/OS: 'kernel-uek' package(s) on Oracle Linux 5, Oracle Linux 6. Solution: Please install the updated package(s). CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-1090 48842 http://secunia.com/advisories/48842 48964 http://secunia.com/advisories/48964 RHSA-2012:0481 http://rhn.redhat.com/errata/RHSA-2012-0481.html RHSA-2012:0531 http://rhn.redhat.com/errata/RHSA-2012-0531.html SUSE-SU-2012:0554 http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00021.html SUSE-SU-2012:0616 http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00013.html [oss-security] 20120228 Re: CVE request -- kernel: cifs: dentry refcount leak when opening a FIFO on lookup leads to panic on unmount http://www.openwall.com/lists/oss-security/2012/02/28/4 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.10 https://bugzilla.redhat.com/show_bug.cgi?id=798293 https://github.com/torvalds/linux/commit/88d7d4e4a439f32acc56a6d860e415ee71d3df08 Common Vulnerability Exposure (CVE) ID: CVE-2012-1097 48898 http://secunia.com/advisories/48898 [oss-security] 20120305 CVE-2012-1097 kernel: regset: Prevent null pointer reference on readonly regsets http://www.openwall.com/lists/oss-security/2012/03/05/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c8e252586f8d5de906385d8cf6385fee289a825e https://bugzilla.redhat.com/show_bug.cgi?id=799209 https://github.com/torvalds/linux/commit/c8e252586f8d5de906385d8cf6385fee289a825e
Copyright	Copyright (C) 2015 Greenbone AG