Vulnerability Assessment & Network Security Forums
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.
Vulnerability Assessment Details
Check for the version of the kernel package
Detailed Explanation for this Vulnerability Assessment
The remote host is missing the patch for the advisory MDKSA-2004:037 (kernel).
A vulnerability was found in the framebuffer driver of the 2.6 kernel. This is
due to incorrect use of the fb_copy_cmap function. (CVE-2004-0229)
A vulnerability has been found in the Linux kernel in the ip_setsockopt()
function code. There is an exploitable integer overflow inside the code handling
the MCAST_MSFILTER socket option in the IP_MSFILTER_SIZE macro calculation. This
issue is present in both 2.4 (2.4.25) and 2.6 kernels. (CVE-2004-0424)
There is a minor issue with the static buffer in 2.4 kernel's panic() function.
Although it's a possibly buffer overflow, it most like not exploitable due to
the nature of panic(). (CVE-2004-0394)
In do_fork(), if an error occurs after the mm_struct for the child has been
allocated, it is never freed. The exit_mm() meant to free it increments the
mm_count and this count is never decremented. (For a running process that is
exitting, schedule() takes care this
however, the child process being cleaned
up is not running.) In the CLONE_VM case, the parent's mm_struct will get an
extra mm_count and so it will never be freed. This issue is present in both 2.4
and 2.6 kernels. (CVE-2004-0427)
The provided packages are patched to fix these vulnerabilities. All users are
encouraged to upgrade to these updated kernels.
To update your kernel, please follow the directions located at:
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2004:037
Network Security Threat Level: High
Networks Security ID: 10211, 10221, 10233
Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security
|Dell PowerEdge R510 2x X5570 2.93GHz Quad Core 32GB 12x 3TB 7.2K SAS PERC H700
|Super Micro SYS6028R-WTRT Customized 2U Rackmount Servers
|Dell PowerEdge R710 2x X5690 3.46GHz 6 Core 16GB 6x 600GB 15K SAS PERC 6/i
|Dell PowerEdge R710 2x L5640 2.26GHz 6 Core 48GB 6x 2TB 7.2K SATA PERC 6/i
No Discussions have been posted on this vulnerability.