Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: Mandrake Local Security Checks --> Category: infos

MDKSA-2006:040: kernel Vulnerability Scan

Vulnerability Scan Summary
Check for the version of the kernel package

Detailed Explanation for this Vulnerability Test

The remote host is missing the patch for the advisory MDKSA-2006:040 (kernel).

A number of vulnerabilities were discovered and corrected in the Linux 2.6
kernel: The udp_v6_get_port function in udp.c, when running IPv6, allows local
users to cause a Denial of Service (infinite loop and crash) (CVE-2005-2973).
The mq_open system call in certain situations can decrement a counter twice as
a result of multiple calls to the mntput function when the dentry_open function
call fails, allowing a local user to cause a DoS (panic) via unspecified attack
vectors (CVE-2005-3356). The procfs code allows attackers to read sensitive
kernel memory via unspecified vectors in which a signed value is added to an
unsigned value (CVE-2005-4605). A buffer overflow in sysctl allows local users
to cause a DoS and possibly execute arbitrary code via a long string, which
causes sysctl to write a zero byte outside the buffer (CVE-2005-4618). A buffer
overflow in the CA-driver for TwinHan DST Frontend/Card allows local users to
cause a DoS (crash) and possibly execute arbitrary code by reading more than
eight bytes into an eight byte long array (CVE-2005-4639). dm-crypt does not
clear a structure before it is freed, which leads to a memory disclosure that
could allow local users to obtain sensitive information about a cryptographic
key (CVE-2006-0095). Remote attackers can cause a DoS via unknown attack
vectors related to an 'extra dst release when ip_options_echo fails' in icmp.c
(CVE-2006-0454). In addition to these security fixes, other fixes have been
included such as: - support for mptsas - fix for IPv6 with sis190 - a problem
with the time progressing twice as fast - a fix for Audigy 2 ZS Video Editor
sample rates - a fix for a supermount crash when accessing a supermount-ed CD/
DVD drive - a fix for improperly unloading sbp2 module The provided packages
are patched to fix these vulnerabilities. All users are encouraged to upgrade
to these updated kernels. To update your kernel, please follow the directions
located at:

Solution :
Threat Level: High

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.