Vulnerability Assessment & Network Security Forums
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.
Vulnerability Assessment Details
Linux Kernel: Multiple vulnerabilities
Detailed Explanation for this Vulnerability Assessment
The remote host is affected by the vulnerability described in GLSA-200407-02
(Linux Kernel: Multiple vulnerabilities)
Arbitrary code with normal non-super-user rights may be able to exploit
any of these vulnerabilities
gaining kernel level access to memory
structures and hardware devices. This may be used for further exploitation
of the system, to leak sensitive data or to cause a Denial of Service on
the affected kernel.
Although users may not be affected by certain vulnerabilities, all kernels
are affected by the CVE-2004-0394, CVE-2004-0427 and CVE-2004-0554 issues
which have no workaround. As a result, all users are urged to upgrade their
kernels to patched versions.
Users are encouraged to upgrade to the latest available sources for their
# emerge sync
# emerge -pv your-favorite-sources
# emerge your-favorite-sources
# # Follow usual procedure for compiling and installing a kernel.
# # If you use genkernel, run genkernel as you would do normally.
Network Security Threat Level: High
Networks Security ID:
Vulnerability Assessment Copyright: (C) 2005 Michel Arboi
|Mellanox 40G QSFP+ to 4x10G SFP+ 3M Splitter Cable MCP7904-X003A
|SF329-9021-R7.4A Solarflare Dual Port 10GbE SFP+ PCIe NIC w/ High Profile
|HP Ethernet 10GB 2-PORT 560SFP+ Adapter 669279-001 665241-001
|NEW IN BOX GENUINE Cisco SFP-10G-AOC7M 10GBASE, LOT OF 5
No Discussions have been posted on this vulnerability.