Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> Red Hat Local Security Checks >> RHSA-2002-227: kernel

Vulnerability Assessment Details

RHSA-2002-227: kernel
Vulnerability Assessment Summary
Check for the version of the kernel packages

Detailed Explanation for this Vulnerability Assessment


This kernel update for Red Hat Linux Advanced Server 2.1 addresses some
security issues and provides minor bug fixes.

The Linux kernel handles the basic functions of the operating system. A
number of vulnerabilities were found in the Red Hat Linux Advanced Server
kernel. These vulnerabilities could permit a local user to obtain elevated
(root) rights.

The vulnerabilities existed in a number of drivers, including
stradis, rio500, se401, apm, usbserial, and usbvideo.

Additionally, a number of bugs have been fixed, and some small feature
enhancements have been added.

- Failed READA requests could be interpreted as I/O errors under high
load on SMP
this has been fixed.

- In rare cases, TLB entries could be corrupted on SMP Pentium IV
systems
this potential for corruption has been fixed. Third-party modules
will need to be recompiled to take advantage of these fixes.

- The latest tg3 driver fixes have been included
the tg3 driver
now supports more hardware.

- A mechanism is provided to specify the location of core files and to
set the name pattern to include the UID, program, hostname, and PID of
the process that caused the core dump.

A number of SCSI fixes have also been included:

- Configure sparse LUNs in the qla2200 driver
- Clean up erroneous accounting data as seen by /proc/partitions and iostat
- Allow up to 128 scsi disks
- Do not start logical units that require manual intervention, avoiding
unnecessary startup delays
- Improve SCSI layer throughput by properly clustering DMA requests

All users of Red Hat Linux Advanced Server are advised to upgrade to the
errata packages.




Solution : http://rhn.redhat.com/errata/RHSA-2002-227.html
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security
Cables, Connectors


IXIA XR100 VOIP PROBE picture

IXIA XR100 VOIP PROBE

$199.99


VoIP IP Phone SIP WAN FV6020 Fanvil Gigabit Office Support IAX IAX2 picture

VoIP IP Phone SIP WAN FV6020 Fanvil Gigabit Office Support IAX IAX2

$35.56


Grandstream GS-HT802 2 Port Analog Telephone Adapter VoIP Phone & Device, Black picture

Grandstream GS-HT802 2 Port Analog Telephone Adapter VoIP Phone & Device, Black

$32.00


Yealink SIP-T41P PoE Ultra Elegant VoIP Phone picture

Yealink SIP-T41P PoE Ultra Elegant VoIP Phone

$29.95


Cisco CP-7945G VOIP Phone With Stand & Handset Business IP Phone 7945 picture

Cisco CP-7945G VOIP Phone With Stand & Handset Business IP Phone 7945

$3.00


New Cisco 7945G IP VoIP Gigabit GIGE Telephone Phone CP-7945G - picture

New Cisco 7945G IP VoIP Gigabit GIGE Telephone Phone CP-7945G -

$24.95


Cisco CP-8845-K9 5 Line IP Video Phone - Charcoal picture

Cisco CP-8845-K9 5 Line IP Video Phone - Charcoal

$25.00


Yealink T54W IP Phone, 16 VoIP Accounts. 4.3-Inch Color Display - Black picture

Yealink T54W IP Phone, 16 VoIP Accounts. 4.3-Inch Color Display - Black

$99.99


Cisco 8841 CP-8841-K9 VoIP Business IP Phone (Charcoal) picture

Cisco 8841 CP-8841-K9 VoIP Business IP Phone (Charcoal)

$49.00


CISCO CP-8821 Wireless IP VoIP Phone - Gray - NO BATTERIES picture

CISCO CP-8821 Wireless IP VoIP Phone - Gray - NO BATTERIES

$80.00


Discussions

No Discussions have been posted on this vulnerability.