Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: Ubuntu Local Security Checks --> Category: infos

USN38-1 : linux-source- vulnerabilities Vulnerability Scan

Vulnerability Scan Summary
linux-source- vulnerabilities

Detailed Explanation for this Vulnerability Test

Synopsis :

These remote packages are missing security patches :
- fglrx-control
- fglrx-driver
- fglrx-driver-dev
- linux-386
- linux-686
- linux-686-smp
- linux-amd64-generic
- linux-amd64-k8
- linux-amd64-k8-smp
- linux-amd64-xeon
- linux-doc
- linux-doc-
- linux-headers-2.6-386
- linux-headers-2.6-686
- linux-headers-2.6-686-smp
- linux-headers-2.6-amd64-generic
- linux-headers-2.6-amd64-k8
- linux-headers-2.6-amd64-k8-smp
- linux-headers-2.6-amd64-xeon
- linux-headers-2.6-k7
- linux-hea

Description :


Vitaly V. Bursov discovered a Denial of Service vulnerability in the "serio"
opening the same tty device twice and doing some particular operations on
it caused a kernel panic and/or a system lockup.

Fixing this vulnerability required a change in the Application Binary
Interface (ABI) of the kernel. This means that third party user installed
modules might not work any more with the new kernel, so this fixed kernel got
a new ABI version number. You have to recompile and reinstall all third party


Paul Starzetz discovered a buffer overflow vulnerability in the "__scm_send"
function which handles the sending of UDP network packets. A wrong validity
check of the cmsghdr structure allowed a local attacker to modify kernel
memory, thus causing an endless loop (Denial of Service) or possibly even
root privilege escalation.


Thomas Hellström discovered a Denial of Service vulnerability in the Direct
Rendering Manager (DRM

Solution :

Upgrade to :
- fglrx-control- (Ubuntu 4.10)
- fglrx-driver- (Ubuntu 4.10)
- fglrx-driver-dev- (Ubuntu 4.10)
- linux-386- (Ubuntu 4.10)
- linux-686- (Ubuntu 4.10)
- linux-686-smp- (Ubuntu 4.10)
- linux-amd64-generic- (Ubuntu 4.10)
- linux-amd64-k8- (Ubuntu 4.10)
- linux-amd64-k8-smp- (Ubuntu 4.10)
- linux-amd64-xeon- (Ubuntu 4.10)
- linux-doc- (Ubuntu 4.10)
- linux-doc- (Ubun

Threat Level: High

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.