|
Family: Gentoo Local Security Checks --> Category: infos
[GLSA-200407-02] Linux Kernel: Multiple vulnerabilities Vulnerability Scan
Vulnerability Scan Summary Linux Kernel: Multiple vulnerabilities
Detailed Explanation for this Vulnerability Test
The remote host is affected by the vulnerability described in GLSA-200407-02
(Linux Kernel: Multiple vulnerabilities)
Impact
Arbitrary code with normal non-super-user rights may be able to exploit
any of these vulnerabilities
gaining kernel level access to memory
structures and hardware devices. This may be used for further exploitation
of the system, to leak sensitive data or to cause a Denial of Service on
the affected kernel.
Workaround
Although users may not be affected by certain vulnerabilities, all kernels
are affected by the CVE-2004-0394, CVE-2004-0427 and CVE-2004-0554 issues
which have no workaround. As a result, all users are urged to upgrade their
kernels to patched versions.
Solution:
Users are encouraged to upgrade to the latest available sources for their
system:
# emerge sync
# emerge -pv your-favorite-sources
# emerge your-favorite-sources
# # Follow usual procedure for compiling and installing a kernel.
# # If you use genkernel, run genkernel as you would do normally.
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|