|
Vulnerability Assessment & Network Security Forums |
|||||||||
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> SuSE Local Security Checks >> SuSE-SA:2004:001: Linux Kernel Vulnerability Assessment Details
|
SuSE-SA:2004:001: Linux Kernel |
||
Check for the version of the Linux Kernel package Detailed Explanation for this Vulnerability Assessment The remote host is missing the patch for the advisory SuSE-SA:2004:001 (Linux Kernel). The do_mremap() function of the Linux Kernel is used to manage (move, resize) Virtual Memory Areas (VMAs). By exploiting an incorrect bounds check in do_mremap() during the remapping of memory it is possible to create a VMA with the size of 0. In normal operation do_mremap() leaves a memory hole of one page and creates an additional VMA of two pages. In case of exploitation no hole is created but the new VMA has a 0 bytes length. The Linux Kernel's memory management is corrupted from this point and can be abused by local users to gain root rights. There is no temporary workaround for this bug. Please note that on 8.1, the kernel-source package may not be installable through rpm, because of a bug in RPM (update of the kernel source RPM may take 30 minutes or more, or fail entirely). Owing to this problem, the kernel source is not available as a regular YOU update. However, recognizing our obligation to publish the source along with the binary packages, we are making the source available as a compressed tar archive, downloadable from the normal FTP locations Solution : http://www.suse.de/security/2004_01_linux_kernel.html Network Security Threat Level: High Networks Security ID: Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security |
||
Cables, Connectors |
$199.99
Grandstream GS-HT802 2 Port Analog Telephone Adapter VoIP Phone & Device, Black
$32.00
VoIP IP Phone SIP WAN FV6020 Fanvil Gigabit Office Support IAX IAX2
$35.56
Yealink SIP-T41P PoE Ultra Elegant VoIP Phone
$29.95
Cisco CP-7945G VOIP Phone With Stand & Handset Business IP Phone 7945
$3.00
NEW Cisco CP-7942G VoIP IP Programmable Office Phone
$19.99
New Cisco 7945G IP VoIP Gigabit GIGE Telephone Phone CP-7945G -
$24.95
Cisco CP-8845-K9 5 Line IP Video Phone - Charcoal
$25.00
Cisco 8841 CP-8841-K9 VoIP Business IP Phone (Charcoal)
$49.00
LOT OF 10 Cisco CP-7841-K9 VoIP 4-Line Business Phone w/ Stand Handset Cord
$69.99
|
||
No Discussions have been posted on this vulnerability. |