Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:CentOS Local Security Checks
Title:CentOS Update for kernel CESA-2018:1319 centos6
Summary:Check the version of kernel
Check the version of kernel

Vulnerability Insight:
The kernel packages contain the Linux kernel, the core of any Linux
operating system.

Security Fix(es):

* hw: cpu: speculative execution permission faults handling (CVE-2017-5754)

* Kernel: error in exception handling leads to DoS (CVE-2018-8897)

* kernel: nfsd: Incorrect handling of long RPC replies (CVE-2017-7645)

* kernel: Use-after-free vulnerability in DCCP socket (CVE-2017-8824)

* kernel: v4l2: disabled memory access protection mechanism allowing
privilege escalation (CVE-2017-13166)

* kernel: netfilter: use-after-free in tcpmss_mangle_packet function in
net/netfilter/xt_TCPMSS.c (CVE-2017-18017)

* kernel: Stack information leak in the EFS element (CVE-2017-1000410)

For more details about the security issue(s), including the impact, a CVSS
score, and other related information, refer to the CVE page(s) listed in
the References section.

Red Hat would like to thank Google Project Zero for reporting
CVE-2017-5754 Nick Peterson (Everdox Tech LLC) and Andy Lutomirski for
reporting CVE-2018-8897 Mohamed Ghannam for reporting CVE-2017-8824 and
Armis Labs for reporting CVE-2017-1000410.

Bug Fix(es):

These updated kernel packages include also numerous bug fixes. Space
precludes documenting all of these bug fixes in this advisory. See the bug
fix descriptions in the referenced Knowledge Article.

Affected Software/OS:
kernel on CentOS 6

Please install the updated packages.

CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2017-7645
BugTraq ID: 97950
Debian Security Information: DSA-3886 (Google Search)
RedHat Security Advisories: RHSA-2017:1615
RedHat Security Advisories: RHSA-2017:1616
RedHat Security Advisories: RHSA-2017:1647
RedHat Security Advisories: RHSA-2018:1319
Common Vulnerability Exposure (CVE) ID: CVE-2017-8824
BugTraq ID: 102056
Debian Security Information: DSA-4073 (Google Search)
Debian Security Information: DSA-4082 (Google Search)
RedHat Security Advisories: RHSA-2018:0399
RedHat Security Advisories: RHSA-2018:0676
RedHat Security Advisories: RHSA-2018:1062
RedHat Security Advisories: RHSA-2018:1130
RedHat Security Advisories: RHSA-2018:1170
RedHat Security Advisories: RHSA-2018:1216
RedHat Security Advisories: RHSA-2018:3822
SuSE Security Announcement: SUSE-SU-2018:0011 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2018-8897
BugTraq ID: 104071
CERT/CC vulnerability note: VU#631579
Debian Security Information: DSA-4196 (Google Search)
Debian Security Information: DSA-4201 (Google Search)
RedHat Security Advisories: RHSA-2018:1318
RedHat Security Advisories: RHSA-2018:1345
RedHat Security Advisories: RHSA-2018:1346
RedHat Security Advisories: RHSA-2018:1347
RedHat Security Advisories: RHSA-2018:1348
RedHat Security Advisories: RHSA-2018:1349
RedHat Security Advisories: RHSA-2018:1350
RedHat Security Advisories: RHSA-2018:1351
RedHat Security Advisories: RHSA-2018:1352
RedHat Security Advisories: RHSA-2018:1353
RedHat Security Advisories: RHSA-2018:1354
RedHat Security Advisories: RHSA-2018:1355
RedHat Security Advisories: RHSA-2018:1524
Common Vulnerability Exposure (CVE) ID: CVE-2017-5754
BugTraq ID: 102378
BugTraq ID: 106128
CERT/CC vulnerability note: VU#180049
CERT/CC vulnerability note: VU#584653
Cisco Security Advisory: 20180104 CPU Side-Channel Information Disclosure Vulnerabilities
Debian Security Information: DSA-4078 (Google Search)
Debian Security Information: DSA-4120 (Google Search)
FreeBSD Security Advisory: FreeBSD-SA-18:03
RedHat Security Advisories: RHSA-2018:0292
SuSE Security Announcement: SUSE-SU-2018:0010 (Google Search)
SuSE Security Announcement: SUSE-SU-2018:0012 (Google Search)
SuSE Security Announcement: openSUSE-SU-2018:0022 (Google Search)
SuSE Security Announcement: openSUSE-SU-2018:0023 (Google Search)
CopyrightCopyright (C) 2018 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2021 E-Soft Inc. All rights reserved.