oval:org.mitre.oval:def:8381

Definition Id: oval:org.mitre.oval:def:8381

Oval ID:	oval:org.mitre.oval:def:8381
Title:	DSA-1749 linux-2.6 -- denial of service/privilege escalation/sensitive memory leak
Description:	Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems: Christian Borntraeger discovered an issue effecting the alpha, mips, powerpc, s390 and sparc64 architectures that allows local users to cause a denial of service or potentially gain elevated privileges. Vegard Nossum discovered a memory leak in the keyctl subsystem that allows local users to cause a denial of service by consuming all of kernel memory. Wei Yongjun discovered a memory overflow in the SCTP implementation that can be triggered by remote users. Duane Griffin provided a fix for an issue in the eCryptfs subsystem which allows local users to cause a denial of service (fault or memory corruption). Pavel Roskin provided a fix for an issue in the dell_rbu driver that allows a local user to cause a denial of service (oops) by reading 0 bytes from a sysfs entry. Clement LECIGNE discovered a bug in the sock_getsockopt function that may result in leaking sensitive kernel memory. Roel Kluin discovered inverted logic in the skfddi driver that permits local, unprivileged users to reset the driver statistics. Peter Kerwien discovered an issue in the ext4 filesystem that allows local users to cause a denial of service (kernel oops) during a resize operation. Sami Liedes reported an issue in the ext4 filesystem that allows local users to cause a denial of service (kernel oops) when accessing a specially crafted corrupt filesystem. David Maciejak reported an issue in the ext4 filesystem that allows local users to cause a denial of service (kernel oops) when mounting a specially crafted corrupt filesystem. David Maciejak reported an additional issue in the ext4 filesystem that allows local users to cause a denial of service (kernel oops) when mounting a specially crafted corrupt filesystem.
Family:	unix	Class:	patch
Reference(s):	DSA-1749 CVE-2009-0029 CVE-2009-0031 CVE-2009-0065 CVE-2009-0269 CVE-2009-0322 CVE-2009-0676 CVE-2009-0675 CVE-2009-0745 CVE-2009-0746 CVE-2009-0747 CVE-2009-0748	Version:	3
Platform(s):	Debian GNU/Linux 5.0	Product(s):	linux-2.6
Definition Synopsis:
Debian GNU/Linux 5.0 is installed Architecture section Architecture independent section Installed architecture is all AND Packages section linux-patch-debian-2.6.26 is earlier than 2.6.26-13lenny2 AND linux-support-2.6.26-1 is earlier than 2.6.26-13lenny2 AND linux-doc-2.6.26 is earlier than 2.6.26-13lenny2 AND linux-tree-2.6.26 is earlier than 2.6.26-13lenny2 AND linux-source-2.6.26 is earlier than 2.6.26-13lenny2 AND linux-manual-2.6.26 is earlier than 2.6.26-13lenny2 OR Architecture dependent section Installed architecture is s390 AND Packages section linux-headers-2.6.26-1-all is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-vserver-s390x is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-common is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-s390 is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-all-s390 is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-common-vserver is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-vserver-s390x is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-s390x is earlier than 2.6.26-13lenny2 AND linux-libc-dev is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-s390 is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-s390-tape is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-s390x is earlier than 2.6.26-13lenny2 OR Architecture dependent section Installed architecture is amd64 AND Packages section linux-headers-2.6.26-1-vserver-amd64 is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-all is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-all-amd64 is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-vserver-amd64 is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-common is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-openvz-amd64 is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-amd64 is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-openvz-amd64 is earlier than 2.6.26-13lenny2 AND linux-modules-2.6.26-1-xen-amd64 is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-common-vserver is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-xen-amd64 is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-amd64 is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-common-openvz is earlier than 2.6.26-13lenny2 AND linux-libc-dev is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-xen-amd64 is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-common-xen is earlier than 2.6.26-13lenny2 AND xen-linux-system-2.6.26-1-xen-amd64 is earlier than 2.6.26-13lenny2 OR Supported platform section Installed architecture is hppa AND Packages section linux-headers-2.6.26-1-parisc64 is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-all-hppa is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-common is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-parisc is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-all is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-parisc64-smp is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-parisc64 is earlier than 2.6.26-13lenny2 AND linux-image-2.6.26-1-parisc-smp is earlier than 2.6.26-13lenny2 AND linux-libc-dev is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-parisc is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-parisc64-smp is earlier than 2.6.26-13lenny2 AND linux-headers-2.6.26-1-parisc-smp is earlier than 2.6.26-13lenny2

Definition Id: oval:org.mitre.oval:def:6513

Oval ID:	oval:org.mitre.oval:def:6513
Title:	Debian GNU/Linux 5.0 is installed
Description:	Debian GNU/Linux 5.0 (lenny) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:5.0	Version:	7
Platform(s):	Debian GNU/Linux 5.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 5.0 is installed
Referenced By:
oval:org.mitre.oval:def:8381

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0409s

Facebook rss twitter linkedin mail