ID de Prueba:	1.3.6.1.4.1.25623.1.0.54315
Categoría:	Trustix Local Security Checks
Título:	Trustix Security Advisory TSLSA-2004-0041 (kernel)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory TSLSA-2004-0041. From the kernel changelog: Here is a list of the most important security issues fixed by this release: CVE-2004-0495 (Al Viro sparse fixes) CVE-2004-0497 (users could modify group ID of arbitrary files on the system) CVE-2004-0535 (e1000 minor info leak) CVE-2004-0685 (backported Conectiva usb sparse fixes) CVE-2004-0415 (file offset pointer handling race) CVE-2004-0565 (information leak ia64) Solution: Update your system with the packages as indicated in the referenced security advisory. https://secure1.securityspace.com/smysecure/catid.html?in=TSLSA-2004-0041 Risk factor : High CVSS Score: 7.2
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0495 BugTraq ID: 10566 http://www.securityfocus.com/bid/10566 Conectiva Linux advisory: CLA-2004:845 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000845 Conectiva Linux advisory: CLA-2004:846 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000846 http://lwn.net/Articles/91155/ http://security.gentoo.org/glsa/glsa-200407-02.xml http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:066 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10155 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2961 http://www.redhat.com/support/errata/RHSA-2004-255.html http://www.redhat.com/support/errata/RHSA-2004-260.html SuSE Security Announcement: SUSE-SA:2004:020 (Google Search) http://www.novell.com/linux/security/advisories/2004_20_kernel.html XForce ISS Database: linux-drivers-gain-privileges(16449) https://exchange.xforce.ibmcloud.com/vulnerabilities/16449 Common Vulnerability Exposure (CVE) ID: CVE-2004-0497 Conectiva Linux advisory: CLA-2004:852 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000852 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9867 http://www.redhat.com/support/errata/RHSA-2004-354.html http://www.redhat.com/support/errata/RHSA-2004-360.html XForce ISS Database: linux-fchown-groupid-modify(16599) https://exchange.xforce.ibmcloud.com/vulnerabilities/16599 Common Vulnerability Exposure (CVE) ID: CVE-2004-0535 BugTraq ID: 10352 http://www.securityfocus.com/bid/10352 http://www.mandriva.com/security/advisories?name=MDKSA-2004:062 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11136 http://www.redhat.com/support/errata/RHSA-2004-413.html http://www.redhat.com/support/errata/RHSA-2004-418.html SGI Security Advisory: 20040804-01-U ftp://patches.sgi.com/support/free/security/advisories/20040804-01-U.asc XForce ISS Database: linux-e1000-bo(16159) https://exchange.xforce.ibmcloud.com/vulnerabilities/16159 Common Vulnerability Exposure (CVE) ID: CVE-2004-0685 BugTraq ID: 10892 http://www.securityfocus.com/bid/10892 CERT/CC vulnerability note: VU#981134 http://www.kb.cert.org/vuls/id/981134 Debian Security Information: DSA-1067 (Google Search) http://www.debian.org/security/2006/dsa-1067 Debian Security Information: DSA-1069 (Google Search) http://www.debian.org/security/2006/dsa-1069 Debian Security Information: DSA-1070 (Google Search) http://www.debian.org/security/2006/dsa-1070 Debian Security Information: DSA-1082 (Google Search) http://www.debian.org/security/2006/dsa-1082 https://bugzilla.fedora.us/show_bug.cgi?id=2336 http://www.gentoo.org/security/en/glsa/glsa-200408-24.xml http://www.securityspace.com/smysecure/catid.html?id=14580 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10665 http://www.redhat.com/support/errata/RHSA-2004-504.html http://www.redhat.com/support/errata/RHSA-2004-505.html http://secunia.com/advisories/20162 http://secunia.com/advisories/20163 http://secunia.com/advisories/20202 http://secunia.com/advisories/20338 http://www.trustix.net/errata/2004/0041/ XForce ISS Database: linux-usb-gain-privileges(16931) https://exchange.xforce.ibmcloud.com/vulnerabilities/16931 Common Vulnerability Exposure (CVE) ID: CVE-2004-0415 Conectiva Linux advisory: CLA-2004:879 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000879 http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:087 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9965 XForce ISS Database: linux-pointer-info-disclosure(16877) https://exchange.xforce.ibmcloud.com/vulnerabilities/16877 Common Vulnerability Exposure (CVE) ID: CVE-2004-0565 BugTraq ID: 10687 http://www.securityfocus.com/bid/10687 http://www.mandriva.com/security/advisories?name=MDKSA-2004:066 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=124734 http://archives.neohapsis.com/archives/linux/owl/2004-q2/0038.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10714 XForce ISS Database: linux-ia64-info-disclosure(16644) https://exchange.xforce.ibmcloud.com/vulnerabilities/16644
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.