Vulnerability Assessment & Network Security Forums
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.
Vulnerability Assessment Details
Linux Kernel: Multiple vulnerabilities
Detailed Explanation for this Vulnerability Assessment
The remote host is affected by the vulnerability described in GLSA-200407-02
(Linux Kernel: Multiple vulnerabilities)
Arbitrary code with normal non-super-user rights may be able to exploit
any of these vulnerabilities
gaining kernel level access to memory
structures and hardware devices. This may be used for further exploitation
of the system, to leak sensitive data or to cause a Denial of Service on
the affected kernel.
Although users may not be affected by certain vulnerabilities, all kernels
are affected by the CVE-2004-0394, CVE-2004-0427 and CVE-2004-0554 issues
which have no workaround. As a result, all users are urged to upgrade their
kernels to patched versions.
Users are encouraged to upgrade to the latest available sources for their
# emerge sync
# emerge -pv your-favorite-sources
# emerge your-favorite-sources
# # Follow usual procedure for compiling and installing a kernel.
# # If you use genkernel, run genkernel as you would do normally.
Network Security Threat Level: High
Networks Security ID:
Vulnerability Assessment Copyright: (C) 2005 Michel Arboi
| Vintage Digital Equipment Corporation PDP-8/E 12 BIT MINICOMPUTER
|Vintage DEC Digital RT101 Keyboard computer PS2 Wired
|Vintage DEC Digital SCSI ULTRA320 68-pin PCI card (includes 50pin cable)
|Vintage CD-ROM Drive AppleCD 600i Model CR-504-K 50Pins SCSI Dec1995 With Origin
No Discussions have been posted on this vulnerability.