ID de Prueba:	1.3.6.1.4.1.25623.1.0.54310
Categoría:	Trustix Local Security Checks
Título:	Trustix Security Advisory TSLSA-2005-0011 (kernel)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory TSLSA-2005-0011. Mathieu Lafon didcovered an information leak in the ext2 mkdir() function where random kernel memory is written to disk. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2005-0400 to this issue. Herbert Xu discovered a potential DOS in load_elf_library. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2005-0749 to this issue. Ilja van Sprundel discovered an exploitable integer overflow in af_bluetooth which could lead to priviliege escalation. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2005-0750 to this issue. Solution: Update your system with the packages as indicated in the referenced security advisory. https://secure1.securityspace.com/smysecure/catid.html?in=TSLSA-2005-0011 Risk factor : High CVSS Score: 7.2
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2005-0400 12932 http://www.securityfocus.com/bid/12932 14713 http://secunia.com/advisories/14713/ 17002 http://secunia.com/advisories/17002 18684 http://secunia.com/advisories/18684 20050401 Information leak in the Linux kernel ext2 implementation http://marc.info/?l=bugtraq&m=111238764720696&w=2 ADV-2005-1878 http://www.vupen.com/english/advisories/2005/1878 FLSA:152532 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=152532 RHSA-2005:366 http://www.redhat.com/support/errata/RHSA-2005-366.html RHSA-2005:663 http://www.redhat.com/support/errata/RHSA-2005-663.html RHSA-2006:0190 http://www.redhat.com/support/errata/RHSA-2006-0190.html RHSA-2006:0191 http://www.redhat.com/support/errata/RHSA-2006-0191.html USN-103-1 https://usn.ubuntu.com/103-1/ http://arkoon.net/advisories/ext2-make-empty-leak.txt http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.11.6 kernel-ext2-information-disclosure(19866) https://exchange.xforce.ibmcloud.com/vulnerabilities/19866 oval:org.mitre.oval:def:10336 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10336 Common Vulnerability Exposure (CVE) ID: CVE-2005-0749 12935 http://www.securityfocus.com/bid/12935 19607 http://secunia.com/advisories/19607 20060402-01-U ftp://patches.sgi.com/support/free/security/advisories/20060402-01-U RHSA-2005:293 http://www.redhat.com/support/errata/RHSA-2005-293.html RHSA-2005:529 http://www.redhat.com/support/errata/RHSA-2005-529.html RHSA-2005:551 http://www.redhat.com/support/errata/RHSA-2005-551.html kernel-loadelflibrary-dos(19867) https://exchange.xforce.ibmcloud.com/vulnerabilities/19867 oval:org.mitre.oval:def:10640 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10640 Common Vulnerability Exposure (CVE) ID: CVE-2005-0750 12911 http://www.securityfocus.com/bid/12911 20050327 local root security bug in linux >= 2.4.6 <= 2.4.30-rc1 and 2.6.x.y <= 2.6.11.5 http://lists.grok.org.uk/pipermail/full-disclosure/2005-March/032913.html http://marc.info/?l=bugtraq&m=111204562102633&w=2 RHSA-2005:283 http://www.redhat.com/support/errata/RHSA-2005-283.html RHSA-2005:284 http://www.redhat.com/support/errata/RHSA-2005-284.html kernel-bluezsockcreate-integer-underflow(19844) https://exchange.xforce.ibmcloud.com/vulnerabilities/19844 oval:org.mitre.oval:def:11719 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11719
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.