|
Family: Gentoo Local Security Checks --> Category: infos
[GLSA-200404-10] iproute local Denial of Service vulnerability Vulnerability Scan
Vulnerability Scan Summary iproute local Denial of Service vulnerability
Detailed Explanation for this Vulnerability Test
The remote host is affected by the vulnerability described in GLSA-200404-10
(iproute local Denial of Service vulnerability)
It has been reported that iproute can accept spoofed messages on the kernel
netlink interface from local users. This could lead to a local Denial of
Service condition.
Impact
Local users could cause a Denial of Service.
Workaround
A workaround is not currently known for this issue. All users are advised
to upgrade to the latest version of the affected package.
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0856
Solution:
All iproute users should upgrade to version 20010824-r5 or later:
# emerge sync
# emerge -pv ">=sys-apps/iproute-20010824-r5"
# emerge ">=sys-apps/iproute-20010824-r5"
Threat Level: Low
Click HERE for more information and discussions on this network vulnerability scan.
|