Test ID:	1.3.6.1.4.1.25623.1.0.870671
Category:	Red Hat Local Security Checks
Title:	RedHat Update for kernel RHSA-2011:0329-01
Summary:	The remote host is missing an update for the 'kernel'; package(s) announced via the referenced advisory.
Description:	Summary: The remote host is missing an update for the 'kernel' package(s) announced via the referenced advisory. Vulnerability Insight: The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issue: * A use-after-free flaw was found in the Linux kernel's RPC server sockets implementation. A remote attacker could use this flaw to trigger a denial of service by sending a corrupted packet to a target system. (CVE-2011-0714, Important) Red Hat would like to thank Adam Prince for reporting this issue. Users should upgrade to these updated packages, which contain a backported patch to correct this issue. The system must be rebooted for this update to take effect. Affected Software/OS: kernel on Red Hat Enterprise Linux Desktop (v. 6), Red Hat Enterprise Linux Server (v. 6), Red Hat Enterprise Linux Workstation (v. 6) Solution: Please Install the Updated Packages. CVSS Score: 5.7 CVSS Vector: AV:A/AC:M/Au:N/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-0714 RHSA-2011:0329 https://rhn.redhat.com/errata/RHSA-2011-0329.html [oss-security] 20110308 CVE-2011-0714 kernel: deficiency in handling of invalid data packets in lockd http://openwall.com/lists/oss-security/2011/03/08/17 [oss-security] 20110309 Re: CVE-2011-0714 kernel: deficiency in handling of invalid data packets in lockd http://openwall.com/lists/oss-security/2011/03/09/1 https://bugzilla.redhat.com/show_bug.cgi?id=678144
Copyright	Copyright (C) 2012 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.