Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> Mandrake Local Security Checks >> MDKSA-2004:015: kernel

Vulnerability Assessment Details

MDKSA-2004:015: kernel
Vulnerability Assessment Summary
Check for the version of the kernel package

Detailed Explanation for this Vulnerability Assessment

The remote host is missing the patch for the advisory MDKSA-2004:015 (kernel).


Paul Staretz discovered a flaw in return value checking in the mremap() function
in the Linux kernel, versions 2.4.24 and previous that could permit a local user
to obtain root rights.
A vulnerability was found in the R128 DRI driver by Alan Cox. This could permit
local privilege escalation.
A flaw in the ncp_lookup() function in the ncpfs code (which is used to mount
NetWare volumes or print to NetWare printers) was found by Arjen van de Ven that
could permit local privilege escalation.
The Vicam USB driver in Linux kernel versions prior to 2.4.25 does not use the
copy_from_user function to access userspace, which crosses security boundaries.
This problem does not affect the Mandrake Linux 9.2 kernel.
Additionally, a ptrace hole that only affects the amd64/x86_64 platform has been
corrected.
The provided packages are patched to fix these vulnerabilities. All users are
encouraged to upgrade to these updated kernels.
To update your kernel, please follow the directions located at:
http://www.mandrakesecure.net/en/kernelupdate.php


Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2004:015
Network Security Threat Level: High

Networks Security ID: 9570, 9691

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security
Cables, Connectors


Dell Intel X710-DA2 2x 10Gb SFP+ PCIe Adapter FH Y5M7N picture

Dell Intel X710-DA2 2x 10Gb SFP+ PCIe Adapter FH Y5M7N

$89.99


A-Tech 8GB DDR3 1600 PC3-12800 Laptop SODIMM 204-Pin Memory RAM PC3L DDR3L 1x 8G picture

A-Tech 8GB DDR3 1600 PC3-12800 Laptop SODIMM 204-Pin Memory RAM PC3L DDR3L 1x 8G

$13.99


Team T-FORCE VULCAN Z 16GB (2 x 8GB) 288-Pin PC RAM DDR4 3200 (PC4 25600) XMP picture

Team T-FORCE VULCAN Z 16GB (2 x 8GB) 288-Pin PC RAM DDR4 3200 (PC4 25600) XMP

$34.99


HyperX FURY DDR3 8GB 16GB 32GB 1600 MHz PC3-12800 Desktop RAM Memory DIMM 240pin picture

HyperX FURY DDR3 8GB 16GB 32GB 1600 MHz PC3-12800 Desktop RAM Memory DIMM 240pin

$12.90


Crucial DDR3L 16GB 1600 2x 8GB PC3-12800 Laptop SODIMM Memory RAM PC3 16G DDR3 picture

Crucial DDR3L 16GB 1600 2x 8GB PC3-12800 Laptop SODIMM Memory RAM PC3 16G DDR3

$21.50


Team T-FORCE VULCAN Z 32GB (2 x 16GB) PC RAM DDR4 3200 (PC4 25600) Memory picture

Team T-FORCE VULCAN Z 32GB (2 x 16GB) PC RAM DDR4 3200 (PC4 25600) Memory

$47.59


[ BULK LOT OF 50 ] Desktop RAM 4GB DDR3 PC3 Micron, SAMSUNG, HYNIX picture

[ BULK LOT OF 50 ] Desktop RAM 4GB DDR3 PC3 Micron, SAMSUNG, HYNIX

$62.99


Crucial 16GB (2x 8GB) Kit DDR3L 1600MHz PC3-12800 UDIMM Desktop 240-Pin CL11 RAM picture

Crucial 16GB (2x 8GB) Kit DDR3L 1600MHz PC3-12800 UDIMM Desktop 240-Pin CL11 RAM

$22.85


Lot of 50 - 4GB PC3 DDR3 Mixed Speeds Laptop RAM Mix Brand TESTED picture

Lot of 50 - 4GB PC3 DDR3 Mixed Speeds Laptop RAM Mix Brand TESTED

$79.99


HyperX FURY DDR4 8GB 16GB 32GB 3200MHz PC4-25600 Desktop RAM Memory DIMM 288pins picture

HyperX FURY DDR4 8GB 16GB 32GB 3200MHz PC4-25600 Desktop RAM Memory DIMM 288pins

$72.93


Discussions

No Discussions have been posted on this vulnerability.