oval:org.mitre.oval:def:13503

Definition Id: oval:org.mitre.oval:def:13503

Oval ID:	oval:org.mitre.oval:def:13503
Title:	DSA-1749-1 linux-2.6 -- denial of service/privilege escalation/sensitive memory leak
Description:	Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-0029 Christian Borntraeger discovered an issue effecting the alpha, mips, powerpc, s390 and sparc64 architectures that allows local users to cause a denial of service or potentially gain elevated privileges. CVE-2009-0031 Vegard Nossum discovered a memory leak in the keyctl subsystem that allows local users to cause a denial of service by consuming all of kernel memory. CVE-2009-0065 Wei Yongjun discovered a memory overflow in the SCTP implementation that can be triggered by remote users. CVE-2009-0269 Duane Griffin provided a fix for an issue in the eCryptfs subsystem which allows local users to cause a denial of service. CVE-2009-0322 Pavel Roskin provided a fix for an issue in the dell_rbu driver that allows a local user to cause a denial of service by reading 0 byts from a sysfs entry. CVE-2009-0676 Clement LECIGNE discovered a bug in the sock_getsockopt function that may result in leaking sensitive kernel memory. CVE-2009-0675 Roel Kluin discovered inverted logic in the skfddi driver that permits local, unprivileged users to reset the driver statistics. CVE-2009-0745 Peter Kerwien discovered an issue in the ext4 filesystem that allows local users to cause a denial of service during a resize operation. CVE-2009-0746 Sami Liedes reported an issue in the ext4 filesystem that allows local users to cause a denial of service when accessing a specially crafted corrupt filesystem. CVE-2009-0747 David Maciejak reported an issue in the ext4 filesystem that allows local users to cause a denial of service when mounting a specially crafted corrupt filesystem. CVE-2009-0748 David Maciejak reported an additional issue in the ext4 filesystem that allows local users to cause a denial of service when mounting a specially crafted corrupt filesystem. For the stable distribution, these problems have been fixed in version 2.6.26-13lenny2. For the oldstable distribution, these problems, where applicable, will be fixed in future updates to linux-2.6 and linux-2.6.24. We recommend that you upgrade your linux-2.6 packages.
Family:	unix	Class:	patch
Reference(s):	DSA-1749-1 CVE-2009-0029 CVE-2009-0031 CVE-2009-0065 CVE-2009-0269 CVE-2009-0322 CVE-2009-0676 CVE-2009-0675 CVE-2009-0745 CVE-2009-0746 CVE-2009-0747 CVE-2009-0748	Version:	5
Platform(s):	Debian GNU/Linux 5.0	Product(s):	linux-2.6
Definition Synopsis:
Debian GNU/Linux 5.0 is installed Architecture section Architecture independent section Installed architecture is all AND Packages section linux-doc-2.6.26 DPKG is earlier than 2.6.26-13lenny2 AND linux-tree-2.6.26 DPKG is earlier than 2.6.26-13lenny2 AND linux-patch-debian-2.6.26 DPKG is earlier than 2.6.26-13lenny2 AND linux-source-2.6.26 DPKG is earlier than 2.6.26-13lenny2 AND linux-support-2.6.26-1 DPKG is earlier than 2.6.26-13lenny2 AND linux-manual-2.6.26 DPKG is earlier than 2.6.26-13lenny2 OR Architecture depended section Installed architecture is s390 AND Packages section linux-headers-2.6.26-1-all DPKG is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-vserver-s390x DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-common DPKG is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-s390 DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-all-s390 DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-common-vserver DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-vserver-s390x DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-s390x DPKG is earlier than 2.6.26-13lenny2 AND linux-libc-dev DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-s390 DPKG is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-s390-tape DPKG is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-s390x DPKG is earlier than 2.6.26-13lenny2 OR Architecture depended section Installed architecture is amd64 AND Packages section linux-headers-2.6.26-1-vserver-amd64 DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-all DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-all-amd64 DPKG is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-vserver-amd64 DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-common DPKG is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-openvz-amd64 DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-amd64 DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-openvz-amd64 DPKG is earlier than 2.6.26-13lenny2 AND linux-modules-2.6.26-1-xen-amd64 DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-common-vserver DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-xen-amd64 DPKG is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-amd64 DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-common-openvz DPKG is earlier than 2.6.26-13lenny2 AND linux-libc-dev DPKG is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-xen-amd64 DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-common-xen DPKG is earlier than 2.6.26-13lenny2 AND xen-linux-system-2.6.26-1-xen-amd64 DPKG is earlier than 2.6.26-13lenny2 OR Supported platform section Installed architecture is hppa AND Packages section linux-headers-2.6.26-1-parisc64 DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-all-hppa DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-common DPKG is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-parisc DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-all DPKG is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-parisc64-smp DPKG is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-parisc64 DPKG is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-parisc-smp DPKG is earlier than 2.6.26-13lenny2 AND linux-libc-dev DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-parisc DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-parisc64-smp DPKG is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-parisc-smp DPKG is earlier than 2.6.26-13lenny2

Definition Id: oval:org.mitre.oval:def:6513

Oval ID:	oval:org.mitre.oval:def:6513
Title:	Debian GNU/Linux 5.0 is installed
Description:	Debian GNU/Linux 5.0 (lenny) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:5.0	Version:	7
Platform(s):	Debian GNU/Linux 5.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 5.0 is installed
Referenced By:
oval:org.mitre.oval:def:13503

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0465s

Facebook rss twitter linkedin mail