oval:org.mitre.oval:def:23930

Definition Id: oval:org.mitre.oval:def:23930

Oval ID:	oval:org.mitre.oval:def:23930
Title:	ELSA-2013:1173: kernel security and bug fix update (Important)
Description:	The key_notify_policy_flush function in net/key/af_key.c in the Linux kernel before 3.9 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel heap memory by reading a broadcast message from the notify_policy interface of an IPSec key_socket.
Family:	unix	Class:	patch
Reference(s):	ELSA-2013:1173-00 CVE-2012-6544 CVE-2013-2146 CVE-2013-2206 CVE-2013-2224 CVE-2013-2232 CVE-2013-2237	Version:	29
Platform(s):	Oracle Linux 6	Product(s):	kernel
Definition Synopsis:
Oracle Linux 6.x rpm test kernel-debug-devel is earlier than 0:2.6.32-358.18.1.el6 AND kernel-kdump is earlier than 0:2.6.32-358.18.1.el6 AND kernel-devel is earlier than 0:2.6.32-358.18.1.el6 AND python-perf is earlier than 0:2.6.32-358.18.1.el6 AND perf is earlier than 0:2.6.32-358.18.1.el6 AND kernel-doc is earlier than 0:2.6.32-358.18.1.el6 AND kernel-bootwrapper is earlier than 0:2.6.32-358.18.1.el6 AND kernel-kdump-devel is earlier than 0:2.6.32-358.18.1.el6 AND kernel-debug is earlier than 0:2.6.32-358.18.1.el6 AND kernel is earlier than 0:2.6.32-358.18.1.el6 AND kernel-firmware is earlier than 0:2.6.32-358.18.1.el6 AND kernel-headers is earlier than 0:2.6.32-358.18.1.el6

Definition Id: oval:org.mitre.oval:def:16594

Oval ID:	oval:org.mitre.oval:def:16594
Title:	Oracle Linux 6.x
Description:	The operating system installed on the system is Oracle Linux 6.x
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:oracle:linux:6	Version:	5
Platform(s):	Oracle Linux 6	Product(s):
Definition Synopsis:
the installed operating system is part of the Unix family AND Oracle Linux 6.x is installed
Referenced By:
oval:org.mitre.oval:def:23930