Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Gentoo Local Security Checks >> [GLSA-200407-02] Linux Kernel: Multiple vulnerabilities


Vulnerability Assessment Details

[GLSA-200407-02] Linux Kernel: Multiple vulnerabilities

Vulnerability Assessment Summary
Linux Kernel: Multiple vulnerabilities

Detailed Explanation for this Vulnerability Assessment
The remote host is affected by the vulnerability described in GLSA-200407-02
(Linux Kernel: Multiple vulnerabilities)

Impact

Arbitrary code with normal non-super-user rights may be able to exploit
any of these vulnerabilities
gaining kernel level access to memory
structures and hardware devices. This may be used for further exploitation
of the system, to leak sensitive data or to cause a Denial of Service on
the affected kernel.

Workaround

Although users may not be affected by certain vulnerabilities, all kernels
are affected by the CVE-2004-0394, CVE-2004-0427 and CVE-2004-0554 issues
which have no workaround. As a result, all users are urged to upgrade their
kernels to patched versions.



Solution:
Users are encouraged to upgrade to the latest available sources for their
system:
# emerge sync
# emerge -pv your-favorite-sources
# emerge your-favorite-sources
# # Follow usual procedure for compiling and installing a kernel.
# # If you use genkernel, run genkernel as you would do normally.


Network Security Threat Level: High


Networks Security ID:

Vulnerability Assessment Copyright: (C) 2005 Michel Arboi

Cables, Connectors

Mellanox 40G QSFP+ to 4x10G SFP+ 3M Splitter Cable MCP7904-X003A
$65.95
Mellanox 40G QSFP+ to 4x10G SFP+ 3M Splitter Cable MCP7904-X003A pictureSF329-9021-R7.4A Solarflare Dual Port 10GbE SFP+ PCIe NIC w/ High Profile
$33.99
SF329-9021-R7.4A Solarflare Dual Port 10GbE SFP+ PCIe NIC w/ High Profile pictureHP Ethernet 10GB 2-PORT 560SFP+ Adapter 669279-001 665241-001
$40.0
HP Ethernet 10GB 2-PORT 560SFP+ Adapter 669279-001 665241-001 pictureNEW IN BOX GENUINE Cisco SFP-10G-AOC7M 10GBASE, LOT OF 5
$260.0
NEW IN BOX GENUINE Cisco SFP-10G-AOC7M 10GBASE, LOT OF 5 picture


Discussions

No Discussions have been posted on this vulnerability.