|
|
Vulnerability Assessment & Network Security Forums |
|||||||||
|
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> Gentoo Local Security Checks >> [GLSA-200407-02] Linux Kernel: Multiple vulnerabilities Vulnerability Assessment Details
|
[GLSA-200407-02] Linux Kernel: Multiple vulnerabilities |
||
|
Linux Kernel: Multiple vulnerabilities Detailed Explanation for this Vulnerability Assessment The remote host is affected by the vulnerability described in GLSA-200407-02 (Linux Kernel: Multiple vulnerabilities) Impact Arbitrary code with normal non-super-user rights may be able to exploit any of these vulnerabilities gaining kernel level access to memory structures and hardware devices. This may be used for further exploitation of the system, to leak sensitive data or to cause a Denial of Service on the affected kernel. Workaround Although users may not be affected by certain vulnerabilities, all kernels are affected by the CVE-2004-0394, CVE-2004-0427 and CVE-2004-0554 issues which have no workaround. As a result, all users are urged to upgrade their kernels to patched versions. Solution: Users are encouraged to upgrade to the latest available sources for their system: # emerge sync # emerge -pv your-favorite-sources # emerge your-favorite-sources # # Follow usual procedure for compiling and installing a kernel. # # If you use genkernel, run genkernel as you would do normally. Network Security Threat Level: High Networks Security ID: Vulnerability Assessment Copyright: (C) 2005 Michel Arboi |
||
|
Telephone Systems, Telecom |
|
||
|
No Discussions have been posted on this vulnerability. |