Family: Red Hat Local Security Checks --> Category: infos
RHSA-2005-583: dump Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the dump packages
Detailed Explanation for this Vulnerability Test
Updated dump packages that address two security issues are now available
for Red Hat Enterprise Linux 2.1.
This update has been rated as having low security impact by the Red Hat
Security Response Team.
Dump examines files in a file system, acertains which ones need to be
backed up, and copies those files to a specified disk, tape, or other
A flaw was found with dump file locking. A malicious local user could
manipulate the file lock in such a way as to prevent dump from running.
The Common Vulnerabilities and Exposures project (cve.mitre.org) assigned
the name CVE-2002-1914 to this issue.
Users of dump should upgrade to these erratum packages, which contain a
patch to resolve this issue.
Solution : http://rhn.redhat.com/errata/RHSA-2005-583.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.