10 - DSA-1097

Executive Summary

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

Summary
Title	New Kernel 2.4.27 packages fix several vulnerabilities

Informations
Name	DSA-1097	First vendor Publication	2006-06-14
Vendor	Debian	Last vendor Modification	2006-06-14
Severity (Vendor)	N/A	Revision	1

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score	10	Attack Range	Network
Cvss Impact Score	10	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems:

CVE-2006-0038

"Solar Designer" discovered that arithmetic computations in netfilter's do_replace() function can lead to a buffer overflow and the execution of arbitrary code. However, the operation requires CAP_NET_ADMIN privileges, which is only an issue in virtualization systems or fine grained access control systems.

CVE-2006-0039

"Solar Designer" discovered a race condition in netfilter's do_add_counters() function, which allows information disclosure of kernel memory by exploiting a race condition. Like CVE-2006-0038, it requires CAP_NET_ADMIN privileges.

CVE-2006-0741

Intel EM64T systems were discovered to be susceptible to a local DoS due to an endless recursive fault related to a bad ELF entry address.

CVE-2006-0742

incorrectly declared die_if_kernel() function as "does never return" which could be exploited by a local attacker resulting in a kernel crash.

CVE-2006-1056

AMD64 machines (and other 7th and 8th generation AuthenticAMD processors) were found to be vulnerable to sensitive information leakage, due to how they handle saving and restoring the FOP, FIP, and FDP x87 registers in FXSAVE/FXRSTOR when an exception is pending. This allows a process to determine portions of the state of floating point instructions of other processes.

CVE-2006-1242

Marco Ivaldi discovered that there was an unintended information disclosure allowing remote attackers to bypass protections against Idle Scans (nmap -sI) by abusing the ID field of IP packets and bypassing the zero IP ID in DF packet countermeasure. This was a result of the ip_push_pending_frames function improperly incremented the IP ID field when sending a RST after receiving unsolicited TCP SYN-ACK packets.

CVE-2006-1343

Pavel Kankovsky reported the existance of a potential information leak resulting from the failure to initialize sin.sin_zero in the IPv4 socket code.

CVE-2006-1368

Shaun Tancheff discovered a buffer overflow (boundry condition error) in the USB Gadget RNDIS implementation allowing remote attackers to cause a DoS. While creating a reply message, the driver allocated memory for the reply data, but not for the reply structure. The kernel fails to properly bounds-check user-supplied data before copying it to an insufficiently sized memory buffer. Attackers could crash the system, or possibly execute arbitrary machine code.

CVE-2006-1524

Hugh Dickins discovered an issue in the madvise_remove() function wherein file and mmap restrictions are not followed, allowing local users to bypass IPC permissions and replace portions of readonly tmpfs files with zeroes.

CVE-2006-1525

Alexandra Kossovsky reported a NULL pointer dereference condition in ip_route_input() that can be triggered by a local user by requesting a route for a multicast IP address, resulting in a denial of service (panic).

CVE-2006-1857

Vlad Yasevich reported a data validation issue in the SCTP subsystem that may allow a remote user to overflow a buffer using a badly formatted HB-ACK chunk, resulting in a denial of service.

CVE-2006-1858

Vlad Yasevich reported a bug in the bounds checking code in the SCTP subsystem that may allow a remote attacker to trigger a denial of service attack when rounded parameter lengths are used to calculate parameter lengths instead of the actual values.

CVE-2006-1864

Mark Mosely discovered that chroots residing on an SMB share can be escaped with specially crafted "cd" sequences.

CVE-2006-2271

The "Mu security team" discovered that carefully crafted ECNE chunks can cause a kernel crash by accessing incorrect state stable entries in the SCTP networking subsystem, which allows denial of service.

CVE-2006-2272

The "Mu security team" discovered that fragmented SCTP control chunks can trigger kernel panics, which allows for denial of service attacks.

CVE-2006-2274

It was discovered that SCTP packets with two initial bundled data packets can lead to infinite recursion, which allows for denial of service attacks.

The following matrix explains which kernel version for which architecture fix the problems mentioned above:

Debian 3.1 (sarge) Source 2.4.27-10sarge3 Alpha architecture 2.4.27-10sarge3 ARM architecture 2.4.27-2sarge3 Intel IA-32 architecture 2.4.27-10sarge3 Intel IA-64 architecture 2.4.27-10sarge3 Motorola 680x0 architecture 2.4.27-3sarge3 Big endian MIPS 2.4.27-10.sarge3.040815-1 Little endian MIPS 2.4.27-10.sarge3.040815-1 PowerPC architecture 2.4.27-10sarge3 IBM S/390 architecture 2.4.27-2sarge3 Sun Sparc architecture 2.4.27-9sarge3

The following matrix lists additional packages that were rebuilt for compatibility with or to take advantage of this update:

Debian 3.1 (sarge) fai-kernels 1.9.1sarge2 kernel-image-2.4.27-speakup 2.4.27-1.1sarge2 mindi-kernel 2.4.27-2sarge2 systemimager 3.2.3-6sarge2

We recommend that you upgrade your kernel package immediately and reboot the machine. If you have built a custom kernel from the kernel source package, you will need to rebuild to take advantage of these fixes.

Original Source

Url : http://www.debian.org/security/2006/dsa-1097

CWE : Common Weakness Enumeration

%	Id	Name
25 %	CWE-119	Failure to Constrain Operations within the Bounds of a Memory Buffer
12 %	CWE-399	Resource Management Errors
12 %	CWE-362	Race Condition
12 %	CWE-310	Cryptographic Issues
12 %	CWE-264	Permissions, Privileges, and Access Controls
12 %	CWE-189	Numeric Errors (CWE/SANS Top 25)
12 %	CWE-20	Improper Input Validation

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:10146

Oval ID:	oval:org.mitre.oval:def:10146
Title:	ip_route_input in Linux kernel 2.6 before 2.6.16.8 allows local users to cause a denial of service (panic) via a request for a route for a multicast IP address, which triggers a null dereference.
Description:	ip_route_input in Linux kernel 2.6 before 2.6.16.8 allows local users to cause a denial of service (panic) via a request for a route for a multicast IP address, which triggers a null dereference.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2006-1525	Version:	5
Platform(s):	Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4	Product(s):
Definition Synopsis:
RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-hugemem is earlier than 0:2.6.9-34.0.1.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel-smp-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel is earlier than 0:2.6.9-34.0.1.EL AND kernel-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel-doc is earlier than 0:2.6.9-34.0.1.EL AND kernel-largesmp is earlier than 0:2.6.9-34.0.1.EL AND kernel-smp is earlier than 0:2.6.9-34.0.1.EL

Definition Id: oval:org.mitre.oval:def:10309

Oval ID:	oval:org.mitre.oval:def:10309
Title:	Race condition in the do_add_counters function in netfilter for Linux kernel 2.6.16 allows local users with CAP_NET_ADMIN capabilities to read kernel memory by triggering the race condition in a way that produces a size value that is inconsistent with allocated memory, which leads to a buffer over-read in IPT_ENTRY_ITERATE.
Description:	Race condition in the do_add_counters function in netfilter for Linux kernel 2.6.16 allows local users with CAP_NET_ADMIN capabilities to read kernel memory by triggering the race condition in a way that produces a size value that is inconsistent with allocated memory, which leads to a buffer over-read in IPT_ENTRY_ITERATE.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2006-0039	Version:	5
Platform(s):	Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4	Product(s):
Definition Synopsis:
RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-hugemem is earlier than 0:2.6.9-42.0.3.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-42.0.3.EL AND kernel-smp-devel is earlier than 0:2.6.9-42.0.3.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-42.0.3.EL AND kernel is earlier than 0:2.6.9-42.0.3.EL AND kernel-devel is earlier than 0:2.6.9-42.0.3.EL AND kernel-doc is earlier than 0:2.6.9-42.0.3.EL AND kernel-largesmp is earlier than 0:2.6.9-42.0.3.EL AND kernel-smp is earlier than 0:2.6.9-42.0.3.EL

Definition Id: oval:org.mitre.oval:def:10317

Oval ID:	oval:org.mitre.oval:def:10317
Title:	The ip_push_pending_frames function in Linux 2.4.x and 2.6.x before 2.6.16 increments the IP ID field when sending a RST after receiving unsolicited TCP SYN-ACK packets, which allows remote attackers to conduct an Idle Scan (nmap -sI) attack, which bypasses intended protections against such attacks.
Description:	The ip_push_pending_frames function in Linux 2.4.x and 2.6.x before 2.6.16 increments the IP ID field when sending a RST after receiving unsolicited TCP SYN-ACK packets, which allows remote attackers to conduct an Idle Scan (nmap -sI) attack, which bypasses intended protections against such attacks.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2006-1242	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4	Product(s):
Definition Synopsis:
OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND Configuration section kernel-BOOT is earlier than 0:2.4.21-47.EL AND kernel-unsupported is earlier than 0:2.4.21-47.EL AND kernel-smp-unsupported is earlier than 0:2.4.21-47.EL AND kernel-hugemem-unsupported is earlier than 0:2.4.21-47.EL AND kernel-hugemem is earlier than 0:2.4.21-47.EL AND kernel is earlier than 0:2.4.21-47.EL AND kernel-source is earlier than 0:2.4.21-47.EL AND kernel-doc is earlier than 0:2.4.21-47.EL AND kernel-smp is earlier than 0:2.4.21-47.EL OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-hugemem is earlier than 0:2.6.9-42.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-42.EL AND kernel-smp-devel is earlier than 0:2.6.9-42.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-42.EL AND kernel is earlier than 0:2.6.9-42.EL AND kernel-devel is earlier than 0:2.6.9-42.EL AND kernel-doc is earlier than 0:2.6.9-42.EL AND kernel-largesmp is earlier than 0:2.6.9-42.EL AND kernel-smp is earlier than 0:2.6.9-42.EL

Definition Id: oval:org.mitre.oval:def:10518

Oval ID:	oval:org.mitre.oval:def:10518
Title:	Linux kernel before 2.6.15.5, when running on Intel processors, allows local users to cause a denial of service ("endless recursive fault") via unknown attack vectors related to a "bad elf entry address."
Description:	Linux kernel before 2.6.15.5, when running on Intel processors, allows local users to cause a denial of service ("endless recursive fault") via unknown attack vectors related to a "bad elf entry address."
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2006-0741	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4	Product(s):
Definition Synopsis:
OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND Configuration section kernel-BOOT is earlier than 0:2.4.21-47.EL AND kernel-unsupported is earlier than 0:2.4.21-47.EL AND kernel-smp-unsupported is earlier than 0:2.4.21-47.EL AND kernel-hugemem-unsupported is earlier than 0:2.4.21-47.EL AND kernel-hugemem is earlier than 0:2.4.21-47.EL AND kernel is earlier than 0:2.4.21-47.EL AND kernel-source is earlier than 0:2.4.21-47.EL AND kernel-doc is earlier than 0:2.4.21-47.EL AND kernel-smp is earlier than 0:2.4.21-47.EL OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-hugemem is earlier than 0:2.6.9-34.0.1.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel-smp-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel is earlier than 0:2.6.9-34.0.1.EL AND kernel-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel-doc is earlier than 0:2.6.9-34.0.1.EL AND kernel-largesmp is earlier than 0:2.6.9-34.0.1.EL AND kernel-smp is earlier than 0:2.6.9-34.0.1.EL

Definition Id: oval:org.mitre.oval:def:10622

Oval ID:	oval:org.mitre.oval:def:10622
Title:	Buffer overflow in SCTP in Linux kernel before 2.6.16.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a malformed HB-ACK chunk.
Description:	Buffer overflow in SCTP in Linux kernel before 2.6.16.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a malformed HB-ACK chunk.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2006-1857	Version:	5
Platform(s):	Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4	Product(s):
Definition Synopsis:
RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-hugemem is earlier than 0:2.6.9-42.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-42.EL AND kernel-smp-devel is earlier than 0:2.6.9-42.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-42.EL AND kernel is earlier than 0:2.6.9-42.EL AND kernel-devel is earlier than 0:2.6.9-42.EL AND kernel-doc is earlier than 0:2.6.9-42.EL AND kernel-largesmp is earlier than 0:2.6.9-42.EL AND kernel-smp is earlier than 0:2.6.9-42.EL

Definition Id: oval:org.mitre.oval:def:10742

Oval ID:	oval:org.mitre.oval:def:10742
Title:	The die_if_kernel function in arch/ia64/kernel/unaligned.c in Linux kernel 2.6.x before 2.6.15.6, possibly when compiled with certain versions of gcc, has the "noreturn" attribute set, which allows local users to cause a denial of service by causing user faults on Itanium systems.
Description:	The die_if_kernel function in arch/ia64/kernel/unaligned.c in Linux kernel 2.6.x before 2.6.15.6, possibly when compiled with certain versions of gcc, has the "noreturn" attribute set, which allows local users to cause a denial of service by causing user faults on Itanium systems.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2006-0742	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4	Product(s):
Definition Synopsis:
OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND Configuration section kernel-BOOT is earlier than 0:2.4.21-47.EL AND kernel-unsupported is earlier than 0:2.4.21-47.EL AND kernel-smp-unsupported is earlier than 0:2.4.21-47.EL AND kernel-hugemem-unsupported is earlier than 0:2.4.21-47.EL AND kernel-hugemem is earlier than 0:2.4.21-47.EL AND kernel is earlier than 0:2.4.21-47.EL AND kernel-source is earlier than 0:2.4.21-47.EL AND kernel-doc is earlier than 0:2.4.21-47.EL AND kernel-smp is earlier than 0:2.4.21-47.EL OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-hugemem is earlier than 0:2.6.9-42.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-42.EL AND kernel-smp-devel is earlier than 0:2.6.9-42.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-42.EL AND kernel is earlier than 0:2.6.9-42.EL AND kernel-devel is earlier than 0:2.6.9-42.EL AND kernel-doc is earlier than 0:2.6.9-42.EL AND kernel-largesmp is earlier than 0:2.6.9-42.EL AND kernel-smp is earlier than 0:2.6.9-42.EL

Definition Id: oval:org.mitre.oval:def:10875

Oval ID:	oval:org.mitre.oval:def:10875
Title:	net/ipv4/netfilter/ip_conntrack_core.c in Linux kernel 2.4 and 2.6, and possibly net/ipv4/netfilter/nf_conntrack_l3proto_ipv4.c in 2.6, does not clear sockaddr_in.sin_zero before returning IPv4 socket names from the getsockopt function with SO_ORIGINAL_DST, which allows local users to obtain portions of potentially sensitive memory.
Description:	net/ipv4/netfilter/ip_conntrack_core.c in Linux kernel 2.4 and 2.6, and possibly net/ipv4/netfilter/nf_conntrack_l3proto_ipv4.c in 2.6, does not clear sockaddr_in.sin_zero before returning IPv4 socket names from the getsockopt function with SO_ORIGINAL_DST, which allows local users to obtain portions of potentially sensitive memory.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2006-1343	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4	Product(s):
Definition Synopsis:
OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND Configuration section kernel-BOOT is earlier than 0:2.4.21-47.EL AND kernel-unsupported is earlier than 0:2.4.21-47.EL AND kernel-smp-unsupported is earlier than 0:2.4.21-47.EL AND kernel-hugemem-unsupported is earlier than 0:2.4.21-47.EL AND kernel-hugemem is earlier than 0:2.4.21-47.EL AND kernel is earlier than 0:2.4.21-47.EL AND kernel-source is earlier than 0:2.4.21-47.EL AND kernel-doc is earlier than 0:2.4.21-47.EL AND kernel-smp is earlier than 0:2.4.21-47.EL OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-hugemem is earlier than 0:2.6.9-42.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-42.EL AND kernel-smp-devel is earlier than 0:2.6.9-42.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-42.EL AND kernel is earlier than 0:2.6.9-42.EL AND kernel-devel is earlier than 0:2.6.9-42.EL AND kernel-doc is earlier than 0:2.6.9-42.EL AND kernel-largesmp is earlier than 0:2.6.9-42.EL AND kernel-smp is earlier than 0:2.6.9-42.EL

Definition Id: oval:org.mitre.oval:def:10934

Oval ID:	oval:org.mitre.oval:def:10934
Title:	The ECNE chunk handling in Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (kernel panic) via an unexpected chunk when the session is in CLOSED state.
Description:	The ECNE chunk handling in Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (kernel panic) via an unexpected chunk when the session is in CLOSED state.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2006-2271	Version:	5
Platform(s):	Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4	Product(s):
Definition Synopsis:
RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-hugemem is earlier than 0:2.6.9-34.0.1.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel-smp-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel is earlier than 0:2.6.9-34.0.1.EL AND kernel-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel-doc is earlier than 0:2.6.9-34.0.1.EL AND kernel-largesmp is earlier than 0:2.6.9-34.0.1.EL AND kernel-smp is earlier than 0:2.6.9-34.0.1.EL

Definition Id: oval:org.mitre.oval:def:10945

Oval ID:	oval:org.mitre.oval:def:10945
Title:	Integer overflow in the do_replace function in netfilter for Linux before 2.6.16-rc3, when using "virtualization solutions" such as OpenVZ, allows local users with CAP_NET_ADMIN rights to cause a buffer overflow in the copy_from_user function.
Description:	Integer overflow in the do_replace function in netfilter for Linux before 2.6.16-rc3, when using "virtualization solutions" such as OpenVZ, allows local users with CAP_NET_ADMIN rights to cause a buffer overflow in the copy_from_user function.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2006-0038	Version:	5
Platform(s):	Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4	Product(s):
Definition Synopsis:
RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-hugemem is earlier than 0:2.6.9-42.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-42.EL AND kernel-smp-devel is earlier than 0:2.6.9-42.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-42.EL AND kernel is earlier than 0:2.6.9-42.EL AND kernel-devel is earlier than 0:2.6.9-42.EL AND kernel-doc is earlier than 0:2.6.9-42.EL AND kernel-largesmp is earlier than 0:2.6.9-42.EL AND kernel-smp is earlier than 0:2.6.9-42.EL

Definition Id: oval:org.mitre.oval:def:11243

Oval ID:	oval:org.mitre.oval:def:11243
Title:	Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (kernel panic) via incoming IP fragmented (1) COOKIE_ECHO and (2) HEARTBEAT SCTP control chunks.
Description:	Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (kernel panic) via incoming IP fragmented (1) COOKIE_ECHO and (2) HEARTBEAT SCTP control chunks.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2006-2272	Version:	5
Platform(s):	Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4	Product(s):
Definition Synopsis:
RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-hugemem is earlier than 0:2.6.9-34.0.1.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel-smp-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel is earlier than 0:2.6.9-34.0.1.EL AND kernel-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel-doc is earlier than 0:2.6.9-34.0.1.EL AND kernel-largesmp is earlier than 0:2.6.9-34.0.1.EL AND kernel-smp is earlier than 0:2.6.9-34.0.1.EL

Definition Id: oval:org.mitre.oval:def:11327

Oval ID:	oval:org.mitre.oval:def:11327
Title:	Directory traversal vulnerability in smbfs in Linux 2.6.16 and earlier allows local users to escape chroot restrictions for an SMB-mounted filesystem via "..\\" sequences, a similar vulnerability to CVE-2006-1863.
Description:	Directory traversal vulnerability in smbfs in Linux 2.6.16 and earlier allows local users to escape chroot restrictions for an SMB-mounted filesystem via "..\\" sequences, a similar vulnerability to CVE-2006-1863.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2006-1864	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4	Product(s):
Definition Synopsis:
OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND Configuration section kernel-BOOT is earlier than 0:2.4.21-47.0.1.EL AND kernel-unsupported is earlier than 0:2.4.21-47.0.1.EL AND kernel-smp-unsupported is earlier than 0:2.4.21-47.0.1.EL AND kernel-hugemem-unsupported is earlier than 0:2.4.21-47.0.1.EL AND kernel-hugemem is earlier than 0:2.4.21-47.0.1.EL AND kernel is earlier than 0:2.4.21-47.0.1.EL AND kernel-source is earlier than 0:2.4.21-47.0.1.EL AND kernel-doc is earlier than 0:2.4.21-47.0.1.EL AND kernel-smp is earlier than 0:2.4.21-47.0.1.EL OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-hugemem is earlier than 0:2.6.9-34.0.1.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel-smp-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel is earlier than 0:2.6.9-34.0.1.EL AND kernel-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel-doc is earlier than 0:2.6.9-34.0.1.EL AND kernel-largesmp is earlier than 0:2.6.9-34.0.1.EL AND kernel-smp is earlier than 0:2.6.9-34.0.1.EL

Definition Id: oval:org.mitre.oval:def:9510

Oval ID:	oval:org.mitre.oval:def:9510
Title:	SCTP in Linux kernel before 2.6.16.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a chunk length that is inconsistent with the actual length of provided parameters.
Description:	SCTP in Linux kernel before 2.6.16.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a chunk length that is inconsistent with the actual length of provided parameters.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2006-1858	Version:	5
Platform(s):	Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4	Product(s):
Definition Synopsis:
RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-hugemem is earlier than 0:2.6.9-42.0.2.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-42.0.2.EL AND kernel-smp-devel is earlier than 0:2.6.9-42.0.2.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-42.0.2.EL AND kernel is earlier than 0:2.6.9-42.0.2.EL AND kernel-devel is earlier than 0:2.6.9-42.0.2.EL AND kernel-doc is earlier than 0:2.6.9-42.0.2.EL AND kernel-largesmp is earlier than 0:2.6.9-42.0.2.EL AND kernel-smp is earlier than 0:2.6.9-42.0.2.EL

Definition Id: oval:org.mitre.oval:def:9531

Oval ID:	oval:org.mitre.oval:def:9531
Title:	Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (infinite recursion and crash) via a packet that contains two or more DATA fragments, which causes an skb pointer to refer back to itself when the full message is reassembled, leading to infinite recursion in the sctp_skb_pull function.
Description:	Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (infinite recursion and crash) via a packet that contains two or more DATA fragments, which causes an skb pointer to refer back to itself when the full message is reassembled, leading to infinite recursion in the sctp_skb_pull function.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2006-2274	Version:	5
Platform(s):	Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4	Product(s):
Definition Synopsis:
RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-hugemem is earlier than 0:2.6.9-34.0.1.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel-smp-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel is earlier than 0:2.6.9-34.0.1.EL AND kernel-devel is earlier than 0:2.6.9-34.0.1.EL AND kernel-doc is earlier than 0:2.6.9-34.0.1.EL AND kernel-largesmp is earlier than 0:2.6.9-34.0.1.EL AND kernel-smp is earlier than 0:2.6.9-34.0.1.EL

Definition Id: oval:org.mitre.oval:def:9995

Oval ID:	oval:org.mitre.oval:def:9995
Title:	The Linux kernel before 2.6.16.9 and the FreeBSD kernel, when running on AMD64 and other 7th and 8th generation AuthenticAMD processors, only save/restore the FOP, FIP, and FDP x87 registers in FXSAVE/FXRSTOR when an exception is pending, which allows one process to determine portions of the state of floating point instructions of other processes, which can be leveraged to obtain sensitive information such as cryptographic keys. NOTE: this is the documented behavior of AMD64 processors, but it is inconsistent with Intel processers in a security-relevant fashion that was not addressed by the kernels.
Description:	The Linux kernel before 2.6.16.9 and the FreeBSD kernel, when running on AMD64 and other 7th and 8th generation AuthenticAMD processors, only save/restore the FOP, FIP, and FDP x87 registers in FXSAVE/FXRSTOR when an exception is pending, which allows one process to determine portions of the state of floating point instructions of other processes, which can be leveraged to obtain sensitive information such as cryptographic keys. NOTE: this is the documented behavior of AMD64 processors, but it is inconsistent with Intel processers in a security-relevant fashion that was not addressed by the kernels.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2006-1056	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4	Product(s):
Definition Synopsis:
OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND Configuration section kernel-BOOT is earlier than 0:2.4.21-47.EL AND kernel-unsupported is earlier than 0:2.4.21-47.EL AND kernel-smp-unsupported is earlier than 0:2.4.21-47.EL AND kernel-hugemem-unsupported is earlier than 0:2.4.21-47.EL AND kernel-hugemem is earlier than 0:2.4.21-47.EL AND kernel is earlier than 0:2.4.21-47.EL AND kernel-source is earlier than 0:2.4.21-47.EL AND kernel-doc is earlier than 0:2.4.21-47.EL AND kernel-smp is earlier than 0:2.4.21-47.EL OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-hugemem is earlier than 0:2.6.9-42.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-42.EL AND kernel-smp-devel is earlier than 0:2.6.9-42.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-42.EL AND kernel is earlier than 0:2.6.9-42.EL AND kernel-devel is earlier than 0:2.6.9-42.EL AND kernel-doc is earlier than 0:2.6.9-42.EL AND kernel-largesmp is earlier than 0:2.6.9-42.EL AND kernel-smp is earlier than 0:2.6.9-42.EL

CPE : Common Platform Enumeration

Type	Description	Count
Application	Linux Linux Kernel cpe:2.3:a:linux:linux_kernel::::::::	1
Application	Lksctp cpe:2.3:a:lksctp:lksctp:2.6.6_1.0.1:::::::* cpe:2.3:a:lksctp:lksctp:2.6.3_1.0.0:::::::* cpe:2.3:a:lksctp:lksctp:2.6.2_0.9.0:::::::* cpe:2.3:a:lksctp:lksctp:2.6.16_1.0.6:::::::* cpe:2.3:a:lksctp:lksctp:2.6.15_1.0.5:::::::* cpe:2.3:a:lksctp:lksctp:2.6.14_1.0.4:::::::* cpe:2.3:a:lksctp:lksctp:2.6.13_1.0.3:::::::* cpe:2.3:a:lksctp:lksctp:2.6.10_1.0.2:::::::* cpe:2.3:a:lksctp:lksctp:2.6.0_test4_0.7.3:::::::* cpe:2.3:a:lksctp:lksctp:2.6.0_test1_0.7.2:::::::*	10
Application	Lksctp Stream Control Transmission Protocol cpe:2.3:a:lksctp:stream_control_transmission_protocol:2.6.17:::::::* cpe:2.3:a:lksctp:stream_control_transmission_protocol:2.6.16:::::::* cpe:2.3:a:lksctp:stream_control_transmission_protocol::::::::	3
Os	Freebsd cpe:2.3:o:freebsd:freebsd::::::::	1
Os	Linux Linux Kernel cpe:2.3:o:linux:linux_kernel:2.6.9:::::::* cpe:2.3:o:linux:linux_kernel:2.6.9:2.6.20:::::: cpe:2.3:o:linux:linux_kernel:2.6.9:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.9:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.9:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.9:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::power4::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::amd64_k8::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::686::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::powerpc::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::amd64::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::power3_smp::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::k7::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::amd64_k8_smp::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::686_smp::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::amd64_xeon::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::k7_smp::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::386::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::powerpc_smp::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::power4_smp::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::power3::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.8:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.8:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.8:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.8:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.7:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.7:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.7:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.7:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.6:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.6:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.6:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.6:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.5:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.5:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.5:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.5:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.4:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.4:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.4:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.4:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.3:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.3:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.3:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.3:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.3:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.2.27.13:::::::* cpe:2.3:o:linux:linux_kernel:2.6.2:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.2:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.2:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.2:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.16.9:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.16:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.15:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.14:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.13:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.12:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.11:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.10:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16_rc7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.16:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.16:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.16:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.16:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.16:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.16:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.16:rc7:::::: cpe:2.3:o:linux:linux_kernel:2.6.15.9:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15.8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15.11:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15.10:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.15:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.15:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.15:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.15:rc7:::::: cpe:2.3:o:linux:linux_kernel:2.6.15:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.15:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.15:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.14.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.14.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.14.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.14.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.14.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.14.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.14.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.14:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.14:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.14:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.14:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.14:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.14:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.13.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.13.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.13.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.13.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.13.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.13:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.13:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.13:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.13:rc7:::::: cpe:2.3:o:linux:linux_kernel:2.6.13:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.13:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.13:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.13:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.12.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.12.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.12.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.12.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.12.22:::::::* cpe:2.3:o:linux:linux_kernel:2.6.12.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.12.12:::::::* cpe:2.3:o:linux:linux_kernel:2.6.12.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.12:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.12:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.12:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.12:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.12:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.12:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.12:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.11.9:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.12:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.11:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.10:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11_rc1_bk6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.11:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.11:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.11::x86_64::::: cpe:2.3:o:linux:linux_kernel:2.6.11:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.11:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.11:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.10:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.10:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.10:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.10:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.1:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.1:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.1:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.1:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test2:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test1:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test11:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test6:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test4:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test8:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test10:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test9:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test5:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test7:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test3:::::: cpe:2.3:o:linux:linux_kernel:2.6.0::64-bit_x86::::: cpe:2.3:o:linux:linux_kernel:2.6.0::itanium_ia64_montecito::::: cpe:2.3:o:linux:linux_kernel:2.6_test9_cvs:::::::* cpe:2.3:o:linux:linux_kernel:2.6:::::::* cpe:2.3:o:linux:linux_kernel:2.5.9:::::::* cpe:2.3:o:linux:linux_kernel:2.5.8:::::::* cpe:2.3:o:linux:linux_kernel:2.5.75:::::::* cpe:2.3:o:linux:linux_kernel:2.5.7:::::::* cpe:2.3:o:linux:linux_kernel:2.5.69:::::::* cpe:2.3:o:linux:linux_kernel:2.5.68:::::::* cpe:2.3:o:linux:linux_kernel:2.5.67:::::::* cpe:2.3:o:linux:linux_kernel:2.5.66:::::::* cpe:2.3:o:linux:linux_kernel:2.5.65:::::::* cpe:2.3:o:linux:linux_kernel:2.5.64:::::::* cpe:2.3:o:linux:linux_kernel:2.5.63:::::::* cpe:2.3:o:linux:linux_kernel:2.5.62:::::::* cpe:2.3:o:linux:linux_kernel:2.5.61:::::::* cpe:2.3:o:linux:linux_kernel:2.5.60:::::::* cpe:2.3:o:linux:linux_kernel:2.5.6:::::::* cpe:2.3:o:linux:linux_kernel:2.5.59:::::::* cpe:2.3:o:linux:linux_kernel:2.5.58:::::::* cpe:2.3:o:linux:linux_kernel:2.5.57:::::::* cpe:2.3:o:linux:linux_kernel:2.5.56:::::::* cpe:2.3:o:linux:linux_kernel:2.5.55:::::::* cpe:2.3:o:linux:linux_kernel:2.5.54:::::::* cpe:2.3:o:linux:linux_kernel:2.5.53:::::::* cpe:2.3:o:linux:linux_kernel:2.5.52:::::::* cpe:2.3:o:linux:linux_kernel:2.5.51:::::::* cpe:2.3:o:linux:linux_kernel:2.5.50:::::::* cpe:2.3:o:linux:linux_kernel:2.5.5:::::::* cpe:2.3:o:linux:linux_kernel:2.5.49:::::::* cpe:2.3:o:linux:linux_kernel:2.5.48:::::::* cpe:2.3:o:linux:linux_kernel:2.5.47:::::::* cpe:2.3:o:linux:linux_kernel:2.5.46:::::::* cpe:2.3:o:linux:linux_kernel:2.5.45:::::::* cpe:2.3:o:linux:linux_kernel:2.5.44:::::::* cpe:2.3:o:linux:linux_kernel:2.5.43:::::::* cpe:2.3:o:linux:linux_kernel:2.5.42:::::::* cpe:2.3:o:linux:linux_kernel:2.5.41:::::::* cpe:2.3:o:linux:linux_kernel:2.5.40:::::::* cpe:2.3:o:linux:linux_kernel:2.5.4:::::::* cpe:2.3:o:linux:linux_kernel:2.5.39:::::::* cpe:2.3:o:linux:linux_kernel:2.5.38:::::::* cpe:2.3:o:linux:linux_kernel:2.5.37:::::::* cpe:2.3:o:linux:linux_kernel:2.5.36:::::::* cpe:2.3:o:linux:linux_kernel:2.5.35:::::::* cpe:2.3:o:linux:linux_kernel:2.5.34:::::::* cpe:2.3:o:linux:linux_kernel:2.5.33:::::::* cpe:2.3:o:linux:linux_kernel:2.5.32:::::::* cpe:2.3:o:linux:linux_kernel:2.5.31:::::::* cpe:2.3:o:linux:linux_kernel:2.5.30:::::::* cpe:2.3:o:linux:linux_kernel:2.5.3:::::::* cpe:2.3:o:linux:linux_kernel:2.5.29:::::::* cpe:2.3:o:linux:linux_kernel:2.5.28:::::::* cpe:2.3:o:linux:linux_kernel:2.5.27:::::::* cpe:2.3:o:linux:linux_kernel:2.5.26:::::::* cpe:2.3:o:linux:linux_kernel:2.5.25:::::::* cpe:2.3:o:linux:linux_kernel:2.5.24:::::::* cpe:2.3:o:linux:linux_kernel:2.5.23:::::::* cpe:2.3:o:linux:linux_kernel:2.5.22:::::::* cpe:2.3:o:linux:linux_kernel:2.5.21:::::::* cpe:2.3:o:linux:linux_kernel:2.5.20:::::::* cpe:2.3:o:linux:linux_kernel:2.5.2:::::::* cpe:2.3:o:linux:linux_kernel:2.5.19:::::::* cpe:2.3:o:linux:linux_kernel:2.5.18:::::::* cpe:2.3:o:linux:linux_kernel:2.5.17:::::::* cpe:2.3:o:linux:linux_kernel:2.5.16:::::::* cpe:2.3:o:linux:linux_kernel:2.5.15:::::::* cpe:2.3:o:linux:linux_kernel:2.5.14:::::::* cpe:2.3:o:linux:linux_kernel:2.5.13:::::::* cpe:2.3:o:linux:linux_kernel:2.5.12:::::::* cpe:2.3:o:linux:linux_kernel:2.5.11:::::::* cpe:2.3:o:linux:linux_kernel:2.5.10:::::::* cpe:2.3:o:linux:linux_kernel:2.5.1:::::::* cpe:2.3:o:linux:linux_kernel:2.5.0:::::::* cpe:2.3:o:linux:linux_kernel:2.4.9_pre5:::::::* cpe:2.3:o:linux:linux_kernel:2.4.9:::::::* cpe:2.3:o:linux:linux_kernel:2.4.8:::::::* cpe:2.3:o:linux:linux_kernel:2.4.7:::::::* cpe:2.3:o:linux:linux_kernel:2.4.6:::::::* cpe:2.3:o:linux:linux_kernel:2.4.5:::::::* cpe:2.3:o:linux:linux_kernel:2.4.4:::::::* cpe:2.3:o:linux:linux_kernel:2.4.37.6:::::::* cpe:2.3:o:linux:linux_kernel:2.4.37.5:::::::* cpe:2.3:o:linux:linux_kernel:2.4.37.4:::::::* cpe:2.3:o:linux:linux_kernel:2.4.37.3:::::::* cpe:2.3:o:linux:linux_kernel:2.4.37.2:::::::* cpe:2.3:o:linux:linux_kernel:2.4.37.1:::::::* cpe:2.3:o:linux:linux_kernel:2.4.37:-rc1:::::: cpe:2.3:o:linux:linux_kernel:2.4.37:::::::* cpe:2.3:o:linux:linux_kernel:2.4.36.9:::::::* cpe:2.3:o:linux:linux_kernel:2.4.36.8:::::::* cpe:2.3:o:linux:linux_kernel:2.4.36.7:::::::* cpe:2.3:o:linux:linux_kernel:2.4.36.6:::::::* cpe:2.3:o:linux:linux_kernel:2.4.36.5:::::::* cpe:2.3:o:linux:linux_kernel:2.4.36.4:::::::* cpe:2.3:o:linux:linux_kernel:2.4.36.3:::::::* cpe:2.3:o:linux:linux_kernel:2.4.36.2:::::::* cpe:2.3:o:linux:linux_kernel:2.4.36.1:::::::* cpe:2.3:o:linux:linux_kernel:2.4.36:::::::* cpe:2.3:o:linux:linux_kernel:2.4.35.5:::::::* cpe:2.3:o:linux:linux_kernel:2.4.35.4:::::::* cpe:2.3:o:linux:linux_kernel:2.4.35.3:::::::* cpe:2.3:o:linux:linux_kernel:2.4.35.2:::::::* cpe:2.3:o:linux:linux_kernel:2.4.35.1:::::::* cpe:2.3:o:linux:linux_kernel:2.4.35:::::::* cpe:2.3:o:linux:linux_kernel:2.4.35::x86_64::::: cpe:2.3:o:linux:linux_kernel:2.4.34.6:::::::* cpe:2.3:o:linux:linux_kernel:2.4.34.5:::::::* cpe:2.3:o:linux:linux_kernel:2.4.34.4:::::::* cpe:2.3:o:linux:linux_kernel:2.4.34.3:::::::* cpe:2.3:o:linux:linux_kernel:2.4.34.2:::::::* cpe:2.3:o:linux:linux_kernel:2.4.34.1:::::::* cpe:2.3:o:linux:linux_kernel:2.4.34:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.34:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.4.33.7:::::::* cpe:2.3:o:linux:linux_kernel:2.4.33.5:::::::* cpe:2.3:o:linux:linux_kernel:2.4.33.4:::::::* cpe:2.3:o:linux:linux_kernel:2.4.33.3:::::::* cpe:2.3:o:linux:linux_kernel:2.4.33.2:::::::* cpe:2.3:o:linux:linux_kernel:2.4.33.1:::::::* cpe:2.3:o:linux:linux_kernel:2.4.33:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.33:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.33:p-re1:::::: cpe:2.3:o:linux:linux_kernel:2.4.32:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.32:pre2:::::: cpe:2.3:o:linux:linux_kernel:2.4.32:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.32:-pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.32:-pre2:::::: cpe:2.3:o:linux:linux_kernel:2.4.31:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.31:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.31:-pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.30:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.4.30:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.4.30:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.3:pre3:::::: cpe:2.3:o:linux:linux_kernel:2.4.3:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.29:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.4.29:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.29:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.4.29:-rc2:::::: cpe:2.3:o:linux:linux_kernel:2.4.29:-rc1:::::: cpe:2.3:o:linux:linux_kernel:2.4.28:::::::* cpe:2.3:o:linux:linux_kernel:2.4.27:pre4:::::: cpe:2.3:o:linux:linux_kernel:2.4.27:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.27:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.27:pre2:::::: cpe:2.3:o:linux:linux_kernel:2.4.27:pre5:::::: cpe:2.3:o:linux:linux_kernel:2.4.27:pre3:::::: cpe:2.3:o:linux:linux_kernel:2.4.27::-pre1::::: cpe:2.3:o:linux:linux_kernel:2.4.27::-pre3::::: cpe:2.3:o:linux:linux_kernel:2.4.27::-pre4::::: cpe:2.3:o:linux:linux_kernel:2.4.27::-pre5::::: cpe:2.3:o:linux:linux_kernel:2.4.27::-pre2::::: cpe:2.3:o:linux:linux_kernel:2.4.26:::::::* cpe:2.3:o:linux:linux_kernel:2.4.25:::::::* cpe:2.3:o:linux:linux_kernel:2.4.25::ia64::::: cpe:2.3:o:linux:linux_kernel:2.4.24_ow1:::::::* cpe:2.3:o:linux:linux_kernel:2.4.24:::::::* cpe:2.3:o:linux:linux_kernel:2.4.24::-ow1::::: cpe:2.3:o:linux:linux_kernel:2.4.23_ow2:::::::* cpe:2.3:o:linux:linux_kernel:2.4.23:pre9:::::: cpe:2.3:o:linux:linux_kernel:2.4.23:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.23::-pre9::::: cpe:2.3:o:linux:linux_kernel:2.4.23::-ow2::::: cpe:2.3:o:linux:linux_kernel:2.4.22:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.22:pre10:::::: cpe:2.3:o:linux:linux_kernel:2.4.21:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.21:pre4:::::: cpe:2.3:o:linux:linux_kernel:2.4.21:pre7:::::: cpe:2.3:o:linux:linux_kernel:2.4.21:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.21::-pre1::::: cpe:2.3:o:linux:linux_kernel:2.4.21::-pre4::::: cpe:2.3:o:linux:linux_kernel:2.4.21::-pre7::::: cpe:2.3:o:linux:linux_kernel:2.4.20:::::::* cpe:2.3:o:linux:linux_kernel:2.4.2:::::::* cpe:2.3:o:linux:linux_kernel:2.4.19:pre3:::::: cpe:2.3:o:linux:linux_kernel:2.4.19:pre4:::::: cpe:2.3:o:linux:linux_kernel:2.4.19:pre5:::::: cpe:2.3:o:linux:linux_kernel:2.4.19:pre6:::::: cpe:2.3:o:linux:linux_kernel:2.4.19:pre2:::::: cpe:2.3:o:linux:linux_kernel:2.4.19:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.19:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.19::-pre4::::: cpe:2.3:o:linux:linux_kernel:2.4.19::-pre2::::: cpe:2.3:o:linux:linux_kernel:2.4.19::-pre5::::: cpe:2.3:o:linux:linux_kernel:2.4.19::-pre3::::: cpe:2.3:o:linux:linux_kernel:2.4.19::-pre6::::: cpe:2.3:o:linux:linux_kernel:2.4.19::-pre1::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre5:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre3:::::: cpe:2.3:o:linux:linux_kernel:2.4.18::x86::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre7:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre4:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre8:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre6:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre2:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre9:::::: cpe:2.3:o:linux:linux_kernel:2.4.18::pre-7::::: cpe:2.3:o:linux:linux_kernel:2.4.18::pre-4::::: cpe:2.3:o:linux:linux_kernel:2.4.18::pre-6::::: cpe:2.3:o:linux:linux_kernel:2.4.18::pre-5::::: cpe:2.3:o:linux:linux_kernel:2.4.18::pre-3::::: cpe:2.3:o:linux:linux_kernel:2.4.18::pre-1::::: cpe:2.3:o:linux:linux_kernel:2.4.18::pre-8::::: cpe:2.3:o:linux:linux_kernel:2.4.18::pre-2::::: cpe:2.3:o:linux:linux_kernel:2.4.17:::::::* cpe:2.3:o:linux:linux_kernel:2.4.16:::::::* cpe:2.3:o:linux:linux_kernel:2.4.15:::::::* cpe:2.3:o:linux:linux_kernel:2.4.14:::::::* cpe:2.3:o:linux:linux_kernel:2.4.13:::::::* cpe:2.3:o:linux:linux_kernel:2.4.12:::::::* cpe:2.3:o:linux:linux_kernel:2.4.11:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.11:pre3:::::: cpe:2.3:o:linux:linux_kernel:2.4.10:::::::* cpe:2.3:o:linux:linux_kernel:2.4.1:::::::* cpe:2.3:o:linux:linux_kernel:2.4.0:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test3:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test8:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test10:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test1:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test12:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test2:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test4:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test6:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test7:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test9:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test11:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test5:::::: cpe:2.3:o:linux:linux_kernel:2.3.99:pre6:::::: cpe:2.3:o:linux:linux_kernel:2.3.99:pre3:::::: cpe:2.3:o:linux:linux_kernel:2.3.99:pre4:::::: cpe:2.3:o:linux:linux_kernel:2.3.99:pre5:::::: cpe:2.3:o:linux:linux_kernel:2.3.99:pre2:::::: cpe:2.3:o:linux:linux_kernel:2.3.99:pre9:::::: cpe:2.3:o:linux:linux_kernel:2.3.99:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.3.99:pre7:::::: cpe:2.3:o:linux:linux_kernel:2.3.99:pre8:::::: cpe:2.3:o:linux:linux_kernel:2.3.99:-:::::: cpe:2.3:o:linux:linux_kernel:2.3.9:::::::* cpe:2.3:o:linux:linux_kernel:2.3.8:::::::* cpe:2.3:o:linux:linux_kernel:2.3.7:::::::* cpe:2.3:o:linux:linux_kernel:2.3.6:::::::* cpe:2.3:o:linux:linux_kernel:2.3.51:::::::* cpe:2.3:o:linux:linux_kernel:2.3.50:::::::* cpe:2.3:o:linux:linux_kernel:2.3.5:::::::* cpe:2.3:o:linux:linux_kernel:2.3.49:::::::* cpe:2.3:o:linux:linux_kernel:2.3.48:::::::* cpe:2.3:o:linux:linux_kernel:2.3.47:::::::* cpe:2.3:o:linux:linux_kernel:2.3.46:::::::* cpe:2.3:o:linux:linux_kernel:2.3.45:::::::* cpe:2.3:o:linux:linux_kernel:2.3.44:::::::* cpe:2.3:o:linux:linux_kernel:2.3.43:::::::* cpe:2.3:o:linux:linux_kernel:2.3.42:::::::* cpe:2.3:o:linux:linux_kernel:2.3.41:::::::* cpe:2.3:o:linux:linux_kernel:2.3.40:::::::* cpe:2.3:o:linux:linux_kernel:2.3.4:::::::* cpe:2.3:o:linux:linux_kernel:2.3.39:::::::* cpe:2.3:o:linux:linux_kernel:2.3.38:::::::* cpe:2.3:o:linux:linux_kernel:2.3.37:::::::* cpe:2.3:o:linux:linux_kernel:2.3.36:::::::* cpe:2.3:o:linux:linux_kernel:2.3.35:::::::* cpe:2.3:o:linux:linux_kernel:2.3.34:::::::* cpe:2.3:o:linux:linux_kernel:2.3.33:::::::* cpe:2.3:o:linux:linux_kernel:2.3.32:::::::* cpe:2.3:o:linux:linux_kernel:2.3.31:::::::* cpe:2.3:o:linux:linux_kernel:2.3.30:::::::* cpe:2.3:o:linux:linux_kernel:2.3.3:::::::* cpe:2.3:o:linux:linux_kernel:2.3.29:::::::* cpe:2.3:o:linux:linux_kernel:2.3.28:::::::* cpe:2.3:o:linux:linux_kernel:2.3.27:::::::* cpe:2.3:o:linux:linux_kernel:2.3.26:::::::* cpe:2.3:o:linux:linux_kernel:2.3.25:::::::* cpe:2.3:o:linux:linux_kernel:2.3.24:::::::* cpe:2.3:o:linux:linux_kernel:2.3.23:::::::* cpe:2.3:o:linux:linux_kernel:2.3.22:::::::* cpe:2.3:o:linux:linux_kernel:2.3.21:::::::* cpe:2.3:o:linux:linux_kernel:2.3.20:::::::* cpe:2.3:o:linux:linux_kernel:2.3.2:::::::* cpe:2.3:o:linux:linux_kernel:2.3.19:::::::* cpe:2.3:o:linux:linux_kernel:2.3.18:::::::* cpe:2.3:o:linux:linux_kernel:2.3.17:::::::* cpe:2.3:o:linux:linux_kernel:2.3.16:::::::* cpe:2.3:o:linux:linux_kernel:2.3.15:::::::* cpe:2.3:o:linux:linux_kernel:2.3.14:::::::* cpe:2.3:o:linux:linux_kernel:2.3.13:::::::* cpe:2.3:o:linux:linux_kernel:2.3.12:::::::* cpe:2.3:o:linux:linux_kernel:2.3.11:::::::* cpe:2.3:o:linux:linux_kernel:2.3.10:::::::* cpe:2.3:o:linux:linux_kernel:2.3.1:::::::* cpe:2.3:o:linux:linux_kernel:2.3.0:::::::* cpe:2.3:o:linux:linux_kernel:2.2.9:::::::* cpe:2.3:o:linux:linux_kernel:2.2.8:::::::* cpe:2.3:o:linux:linux_kernel:2.2.7:::::::* cpe:2.3:o:linux:linux_kernel:2.2.6:::::::* cpe:2.3:o:linux:linux_kernel:2.2.5:::::::* cpe:2.3:o:linux:linux_kernel:2.2.4:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.2.4:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.3:::::::* cpe:2.3:o:linux:linux_kernel:2.2.27:pre2:::::: cpe:2.3:o:linux:linux_kernel:2.2.27:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.2.27:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.2.27:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.2.27:::::::* cpe:2.3:o:linux:linux_kernel:2.2.26:::::::* cpe:2.3:o:linux:linux_kernel:2.2.25:::::::* cpe:2.3:o:linux:linux_kernel:2.2.24:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.2.24:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.2.24:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.24:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.2.24:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.2.23:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.23:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.2.23:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.2.22:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.2.22:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.2.22:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.22:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.2.21:pre3:::::: cpe:2.3:o:linux:linux_kernel:2.2.21:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.2.21:pre4:::::: cpe:2.3:o:linux:linux_kernel:2.2.21:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.2.21:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.21:pre2:::::: cpe:2.3:o:linux:linux_kernel:2.2.21:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.2.21:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.2.21:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.2.20:::::::* cpe:2.3:o:linux:linux_kernel:2.2.2:::::::* cpe:2.3:o:linux:linux_kernel:2.2.19:::::::* cpe:2.3:o:linux:linux_kernel:2.2.18:::::::* cpe:2.3:o:linux:linux_kernel:2.2.17:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.17:pre14:::::: cpe:2.3:o:linux:linux_kernel:2.2.16:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.16:pre6:::::: cpe:2.3:o:linux:linux_kernel:2.2.16:pre5:::::: cpe:2.3:o:linux:linux_kernel:2.2.15_pre20:::::::* cpe:2.3:o:linux:linux_kernel:2.2.15:pre16:::::: cpe:2.3:o:linux:linux_kernel:2.2.15:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.14:::::::* cpe:2.3:o:linux:linux_kernel:2.2.13:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.13:pre15:::::: cpe:2.3:o:linux:linux_kernel:2.2.12:::::::* cpe:2.3:o:linux:linux_kernel:2.2.11:::::::* cpe:2.3:o:linux:linux_kernel:2.2.10:::::::* cpe:2.3:o:linux:linux_kernel:2.2.1:::::::* cpe:2.3:o:linux:linux_kernel:2.2.0:::::::* cpe:2.3:o:linux:linux_kernel:2.1.99:::::::* cpe:2.3:o:linux:linux_kernel:2.1.98:::::::* cpe:2.3:o:linux:linux_kernel:2.1.97:::::::* cpe:2.3:o:linux:linux_kernel:2.1.96:::::::* cpe:2.3:o:linux:linux_kernel:2.1.95:::::::* cpe:2.3:o:linux:linux_kernel:2.1.94:::::::* cpe:2.3:o:linux:linux_kernel:2.1.93:::::::* cpe:2.3:o:linux:linux_kernel:2.1.92:::::::* cpe:2.3:o:linux:linux_kernel:2.1.91:::::::* cpe:2.3:o:linux:linux_kernel:2.1.90:::::::* cpe:2.3:o:linux:linux_kernel:2.1.9:::::::* cpe:2.3:o:linux:linux_kernel:2.1.89:::::::* cpe:2.3:o:linux:linux_kernel:2.1.88:::::::* cpe:2.3:o:linux:linux_kernel:2.1.87:::::::* cpe:2.3:o:linux:linux_kernel:2.1.86:::::::* cpe:2.3:o:linux:linux_kernel:2.1.85:::::::* cpe:2.3:o:linux:linux_kernel:2.1.84:::::::* cpe:2.3:o:linux:linux_kernel:2.1.83:::::::* cpe:2.3:o:linux:linux_kernel:2.1.82:::::::* cpe:2.3:o:linux:linux_kernel:2.1.81:::::::* cpe:2.3:o:linux:linux_kernel:2.1.80:::::::* cpe:2.3:o:linux:linux_kernel:2.1.8:::::::* cpe:2.3:o:linux:linux_kernel:2.1.79:::::::* cpe:2.3:o:linux:linux_kernel:2.1.78:::::::* cpe:2.3:o:linux:linux_kernel:2.1.77:::::::* cpe:2.3:o:linux:linux_kernel:2.1.76:::::::* cpe:2.3:o:linux:linux_kernel:2.1.75:::::::* cpe:2.3:o:linux:linux_kernel:2.1.74:::::::* cpe:2.3:o:linux:linux_kernel:2.1.73:::::::* cpe:2.3:o:linux:linux_kernel:2.1.72:::::::* cpe:2.3:o:linux:linux_kernel:2.1.71:::::::* cpe:2.3:o:linux:linux_kernel:2.1.70:::::::* cpe:2.3:o:linux:linux_kernel:2.1.7:::::::* cpe:2.3:o:linux:linux_kernel:2.1.69:::::::* cpe:2.3:o:linux:linux_kernel:2.1.68:::::::* cpe:2.3:o:linux:linux_kernel:2.1.67:::::::* cpe:2.3:o:linux:linux_kernel:2.1.66:::::::* cpe:2.3:o:linux:linux_kernel:2.1.65:::::::* cpe:2.3:o:linux:linux_kernel:2.1.64:::::::* cpe:2.3:o:linux:linux_kernel:2.1.63:::::::* cpe:2.3:o:linux:linux_kernel:2.1.62:::::::* cpe:2.3:o:linux:linux_kernel:2.1.61:::::::* cpe:2.3:o:linux:linux_kernel:2.1.60:::::::* cpe:2.3:o:linux:linux_kernel:2.1.6:::::::* cpe:2.3:o:linux:linux_kernel:2.1.59:::::::* cpe:2.3:o:linux:linux_kernel:2.1.58:::::::* cpe:2.3:o:linux:linux_kernel:2.1.57:::::::* cpe:2.3:o:linux:linux_kernel:2.1.56:::::::* cpe:2.3:o:linux:linux_kernel:2.1.55:::::::* cpe:2.3:o:linux:linux_kernel:2.1.54:::::::* cpe:2.3:o:linux:linux_kernel:2.1.53:::::::* cpe:2.3:o:linux:linux_kernel:2.1.52:::::::* cpe:2.3:o:linux:linux_kernel:2.1.51:::::::* cpe:2.3:o:linux:linux_kernel:2.1.50:::::::* cpe:2.3:o:linux:linux_kernel:2.1.5:::::::* cpe:2.3:o:linux:linux_kernel:2.1.49:::::::* cpe:2.3:o:linux:linux_kernel:2.1.48:::::::* cpe:2.3:o:linux:linux_kernel:2.1.47:::::::* cpe:2.3:o:linux:linux_kernel:2.1.46:::::::* cpe:2.3:o:linux:linux_kernel:2.1.45:::::::* cpe:2.3:o:linux:linux_kernel:2.1.44:::::::* cpe:2.3:o:linux:linux_kernel:2.1.43:::::::* cpe:2.3:o:linux:linux_kernel:2.1.42:::::::* cpe:2.3:o:linux:linux_kernel:2.1.41:::::::* cpe:2.3:o:linux:linux_kernel:2.1.40:::::::* cpe:2.3:o:linux:linux_kernel:2.1.4:::::::* cpe:2.3:o:linux:linux_kernel:2.1.39:::::::* cpe:2.3:o:linux:linux_kernel:2.1.38:::::::* cpe:2.3:o:linux:linux_kernel:2.1.37:::::::* cpe:2.3:o:linux:linux_kernel:2.1.36:::::::* cpe:2.3:o:linux:linux_kernel:2.1.35:::::::* cpe:2.3:o:linux:linux_kernel:2.1.34:::::::* cpe:2.3:o:linux:linux_kernel:2.1.33:::::::* cpe:2.3:o:linux:linux_kernel:2.1.32:::::::* cpe:2.3:o:linux:linux_kernel:2.1.31:::::::* cpe:2.3:o:linux:linux_kernel:2.1.30:::::::* cpe:2.3:o:linux:linux_kernel:2.1.3:::::::* cpe:2.3:o:linux:linux_kernel:2.1.29:::::::* cpe:2.3:o:linux:linux_kernel:2.1.28:::::::* cpe:2.3:o:linux:linux_kernel:2.1.27:::::::* cpe:2.3:o:linux:linux_kernel:2.1.26:::::::* cpe:2.3:o:linux:linux_kernel:2.1.25:::::::* cpe:2.3:o:linux:linux_kernel:2.1.24:::::::* cpe:2.3:o:linux:linux_kernel:2.1.23:::::::* cpe:2.3:o:linux:linux_kernel:2.1.22:::::::* cpe:2.3:o:linux:linux_kernel:2.1.21:::::::* cpe:2.3:o:linux:linux_kernel:2.1.20:::::::* cpe:2.3:o:linux:linux_kernel:2.1.2:::::::* cpe:2.3:o:linux:linux_kernel:2.1.19:::::::* cpe:2.3:o:linux:linux_kernel:2.1.18:::::::* cpe:2.3:o:linux:linux_kernel:2.1.17:::::::* cpe:2.3:o:linux:linux_kernel:2.1.16:::::::* cpe:2.3:o:linux:linux_kernel:2.1.15:::::::* cpe:2.3:o:linux:linux_kernel:2.1.14:::::::* cpe:2.3:o:linux:linux_kernel:2.1.132:::::::* cpe:2.3:o:linux:linux_kernel:2.1.131:::::::* cpe:2.3:o:linux:linux_kernel:2.1.130:::::::* cpe:2.3:o:linux:linux_kernel:2.1.13:::::::* cpe:2.3:o:linux:linux_kernel:2.1.129:::::::* cpe:2.3:o:linux:linux_kernel:2.1.128:::::::* cpe:2.3:o:linux:linux_kernel:2.1.127:::::::* cpe:2.3:o:linux:linux_kernel:2.1.126:::::::* cpe:2.3:o:linux:linux_kernel:2.1.125:::::::* cpe:2.3:o:linux:linux_kernel:2.1.124:::::::* cpe:2.3:o:linux:linux_kernel:2.1.123:::::::* cpe:2.3:o:linux:linux_kernel:2.1.122:::::::* cpe:2.3:o:linux:linux_kernel:2.1.121:::::::* cpe:2.3:o:linux:linux_kernel:2.1.120:::::::* cpe:2.3:o:linux:linux_kernel:2.1.12:::::::* cpe:2.3:o:linux:linux_kernel:2.1.119:::::::* cpe:2.3:o:linux:linux_kernel:2.1.118:::::::* cpe:2.3:o:linux:linux_kernel:2.1.117:::::::* cpe:2.3:o:linux:linux_kernel:2.1.116:::::::* cpe:2.3:o:linux:linux_kernel:2.1.115:::::::* cpe:2.3:o:linux:linux_kernel:2.1.114:::::::* cpe:2.3:o:linux:linux_kernel:2.1.113:::::::* cpe:2.3:o:linux:linux_kernel:2.1.112:::::::* cpe:2.3:o:linux:linux_kernel:2.1.111:::::::* cpe:2.3:o:linux:linux_kernel:2.1.110:::::::* cpe:2.3:o:linux:linux_kernel:2.1.11:::::::* cpe:2.3:o:linux:linux_kernel:2.1.109:::::::* cpe:2.3:o:linux:linux_kernel:2.1.108:::::::* cpe:2.3:o:linux:linux_kernel:2.1.107:::::::* cpe:2.3:o:linux:linux_kernel:2.1.106:::::::* cpe:2.3:o:linux:linux_kernel:2.1.105:::::::* cpe:2.3:o:linux:linux_kernel:2.1.104:::::::* cpe:2.3:o:linux:linux_kernel:2.1.103:::::::* cpe:2.3:o:linux:linux_kernel:2.1.102:::::::* cpe:2.3:o:linux:linux_kernel:2.1.101:::::::* cpe:2.3:o:linux:linux_kernel:2.1.100:::::::* cpe:2.3:o:linux:linux_kernel:2.1.10:::::::* cpe:2.3:o:linux:linux_kernel:2.1.1:::::::* cpe:2.3:o:linux:linux_kernel:2.1.0:::::::* cpe:2.3:o:linux:linux_kernel:2.1:::::::* cpe:2.3:o:linux:linux_kernel:2.0.9.9:::::::* cpe:2.3:o:linux:linux_kernel:2.0.9:::::::* cpe:2.3:o:linux:linux_kernel:2.0.8:::::::* cpe:2.3:o:linux:linux_kernel:2.0.7:::::::* cpe:2.3:o:linux:linux_kernel:2.0.6:::::::* cpe:2.3:o:linux:linux_kernel:2.0.5:::::::* cpe:2.3:o:linux:linux_kernel:2.0.4:::::::* cpe:2.3:o:linux:linux_kernel:2.0.39:::::::* cpe:2.3:o:linux:linux_kernel:2.0.38:::::::* cpe:2.3:o:linux:linux_kernel:2.0.37:::::::* cpe:2.3:o:linux:linux_kernel:2.0.36:::::::* cpe:2.3:o:linux:linux_kernel:2.0.35:::::::* cpe:2.3:o:linux:linux_kernel:2.0.34:::::::* cpe:2.3:o:linux:linux_kernel:2.0.33:::::::* cpe:2.3:o:linux:linux_kernel:2.0.32:::::::* cpe:2.3:o:linux:linux_kernel:2.0.31:::::::* cpe:2.3:o:linux:linux_kernel:2.0.30:::::::* cpe:2.3:o:linux:linux_kernel:2.0.3:::::::* cpe:2.3:o:linux:linux_kernel:2.0.29:::::::* cpe:2.3:o:linux:linux_kernel:2.0.28:::::::* cpe:2.3:o:linux:linux_kernel:2.0.27:::::::* cpe:2.3:o:linux:linux_kernel:2.0.26:::::::* cpe:2.3:o:linux:linux_kernel:2.0.25:::::::* cpe:2.3:o:linux:linux_kernel:2.0.24:::::::* cpe:2.3:o:linux:linux_kernel:2.0.23:::::::* cpe:2.3:o:linux:linux_kernel:2.0.22:::::::* cpe:2.3:o:linux:linux_kernel:2.0.21:::::::* cpe:2.3:o:linux:linux_kernel:2.0.20:::::::* cpe:2.3:o:linux:linux_kernel:2.0.2:::::::* cpe:2.3:o:linux:linux_kernel:2.0.19:::::::* cpe:2.3:o:linux:linux_kernel:2.0.18:::::::* cpe:2.3:o:linux:linux_kernel:2.0.17:::::::* cpe:2.3:o:linux:linux_kernel:2.0.16:::::::* cpe:2.3:o:linux:linux_kernel:2.0.15:::::::* cpe:2.3:o:linux:linux_kernel:2.0.14:::::::* cpe:2.3:o:linux:linux_kernel:2.0.13:::::::* cpe:2.3:o:linux:linux_kernel:2.0.12:::::::* cpe:2.3:o:linux:linux_kernel:2.0.11:::::::* cpe:2.3:o:linux:linux_kernel:2.0.10:::::::* cpe:2.3:o:linux:linux_kernel:2.0.1:::::::* cpe:2.3:o:linux:linux_kernel:2.0.0:::::::* cpe:2.3:o:linux:linux_kernel:2.0:::::::* cpe:2.3:o:linux:linux_kernel:1.3.0:::::::* cpe:2.3:o:linux:linux_kernel:1.2.0:::::::* cpe:2.3:o:linux:linux_kernel:::::::: cpe:2.3:o:linux:linux_kernel:::ia32_64bit:::::* cpe:2.3:o:linux:linux_kernel:::zseries_64bit:::::* cpe:2.3:o:linux:linux_kernel:::x86_64_64-bit:::::* cpe:2.3:o:linux:linux_kernel:::zseries_64-bit:::::* cpe:2.3:o:linux:linux_kernel:::ia32_64-bit:::::* cpe:2.3:o:linux:linux_kernel:::ia64_64bit:::::* cpe:2.3:o:linux:linux_kernel:::power_64-bit:::::* cpe:2.3:o:linux:linux_kernel:::x86_64_64bit:::::* cpe:2.3:o:linux:linux_kernel:::power_64bit:::::* cpe:2.3:o:linux:linux_kernel:::ia64_64-bit:::::* cpe:2.3:o:linux:linux_kernel:::64-bit:::::* cpe:2.3:o:linux:linux_kernel:::~~~~x64~:::::* cpe:2.3:o:linux:linux_kernel:::~~~~x86~:::::* cpe:2.3:o:linux:linux_kernel:::::::x64:* cpe:2.3:o:linux:linux_kernel:::::::x86:* cpe:2.3:o:linux:linux_kernel:-:::::::* cpe:2.3:o:linux:linux_kernel:-:-:~~~~x64~:::::* cpe:2.3:o:linux:linux_kernel:-::~~~~x64~:::::	725

OpenVAS Exploits

Date	Description
2011-08-09	Name : CentOS Update for kernel CESA-2010:0610 centos5 i386 File : nvt/gb_CESA-2010_0610_kernel_centos5_i386.nasl
2010-08-13	Name : RedHat Update for kernel RHSA-2010:0610-01 File : nvt/gb_RHSA-2010_0610-01_kernel.nasl
2009-10-10	Name : SLES9: Security update for Linux kernel File : nvt/sles9p5020521.nasl
2008-09-04	Name : FreeBSD Security Advisory (FreeBSD-SA-06:14.fpu.asc) File : nvt/freebsdsa_fpu.nasl
2008-01-17	Name : Debian Security Advisory DSA 1097-1 (kernel-source-2.4.27) File : nvt/deb_1097_1.nasl
2008-01-17	Name : Debian Security Advisory DSA 1103-1 (kernel-source-2.6.8) File : nvt/deb_1103_1.nasl
2008-01-17	Name : Debian Security Advisory DSA 1184-1 (kernel-source-2.6.8) File : nvt/deb_1184_1.nasl
2008-01-17	Name : Debian Security Advisory DSA 1184-2 (kernel-source-2.6.8) File : nvt/deb_1184_2.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
29841	Linux Kernel net/ipv4/netfilter/ IPv4 Socket Name Return Arbitrary Memory Dis... The Linux kernel contains a flaw that may lead to local memory disclosure. The issue is due to net/ipv4/netfilter/ip_conntrack_core.c, net/ipv4/netfilter/nf_conntrack_l3proto_ipv4.c and net/ipv4/af_inet.c not properly clearing the 'sockaddr_in.sin_zero' struct. The resulting 6 byte leak to userspace occurs when returning IPv4 socket names from getsockopt(), getpeername(), accept() and getsockname() functions. This could allow a local attacker to possibly obtain sensitive information.
25746	Linux Kernel SCTP sctp_skb_pull Malformed Packet Remote DoS The Linux kernel contains a flaw that may allow a remote denial of service. The issue is triggered when a SCTP packet is received that contains at least the first two fragments of a bundled message. The handling of data buffers in the kernel leads to a pointer self reference, which will lead to an infinite recursion resulting in loss of availability for the platform.
25697	Linux Kernel Netfilter do_add_counters() Function Local Memory Disclosure The Linux kernel contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered because of a race condition in the Linux netfilter code. The 'do_add_counters()' function in 'net/ipv4/netfilter/arp_tables.c' and 'net/ipv6/netfilter/arp_tables.c' lacks a check for a parameter that might allow 'IPT_ENTRY_ITERATE()' to read beyond its intended boundaries, potentially accessing sensitive kernel memory and hence resulting in a loss of confidentiality.
25696	Linux Kernel SCTP Chunk Length Calculation Parameter Processing Overflow DoS The Linux kernel contains a flaw that may allow a remote denial of service. The issue is triggered because of a flaw in the bounds checking process of chunk lengths and parameter lengths defined in 'include/net/sctp/sctp.h'. This might lead to attempted access of invalid memory and might result in a kernel crash and hence loss of availability for the platform.
25695	Linux Kernel SCTP HB-ACK Chunk Processing Overflow DoS The Linux kernel contains a flaw that may allow a remote denial of service. The issue is triggered when a crafted HB-ACK chunk packet is sent to the SCTP handling code, which can be found in the '/net/sctp/sm_statefuns.c' file. The kernel then fails to properly validate the length of certain parameters, which might result in access to invalid memory and lead to loss of availability for the platform due to a kernel crash.
25633	Linux Kernel SCTP Fragmented Control Chunk Remote DoS The Linux kernel contains a flaw that may allow a remote denial of service. The issue is present in the Stream Control Transmission Protocol (SCTP) code of the kernel. It is triggered when IP-fragmented SCTP control chunks are received by the kernel. Incorrect handling of these in the 'skb_pull()' function might result in a kernel panic, and therefore in loss of availability for the platform.
25632	Linux Kernel SCTP ECNE Chunk Handling Remote DoS The Linux kernel contains a flaw that may allow a remote denial of service. The issue is triggered because of a flow in the kernel's Stream Control Transmission Protocol (SCTP). When a crafted 'ECNE chunk' SCTP is sent to the system, an incorrect state table entry might be created when the packet is received in closed state. This might result in a kernel panic and hence loss of availability for the platform.
25067	Linux Kernel SMBFS SMB Mount Traversal chroot Restriction Bypass The Linux Kernel contains a flaw that may allow a malicious user to escape a chroot environment. The issue is triggered when a user attempts to change to a working directory outside a chroot environment in a SMBFS file system using a double backslash, e.g. 'cd ..\\'. It is possible that the flaw may allow unauthorised access to file system resources, resulting in a loss of confidentiality and/or integrity.
24807	Linux Kernel x87 Register Information Disclosure The Linux kernel contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered because the Floating Point Units (FPUs) of the affected processor types do not save and restore the FOP, FID and FPD registers when certain instructions are executed. As a result, Linux does not clear these registers either. When a context switch occurs, a user can potentially read these uncleared registers which could disclose floating point information, resulting in a loss of confidentiality.
24746	FreeBSD FPU x87 Register Information Disclosure FreeBSD contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered because the Floating Point Units (FPUs) of the affected processor types do not save and restore the FOP, FID and FPD registers when certain instructions are executed. As a result, FreeBSD does not clear these registers either. When a context switch occurs, a user can potentially read these uncleared registers which could disclose floating point information, resulting in a loss of confidentiality.
24715	Linux Kernel ip_route_input() Multi-cast IP Request Local DoS The Linux Kernel contains a flaw that may allow a local denial of service. The issue is triggered when a route for a multicast IP address is requested, and will result in a kernel panic cause by a NULL pointer dereference, and therefore lead to loss of availability for the platform.
24714	Linux Kernel madvise_remove IPC Permission Bypass The Linux Kernel contains a flaw that may allow a malicious user to bypass IPC permissions. The issue is triggered because a 'madvise_remove' call does not follow file and mmap restrictions. It is possible that the flaw may allow an attacker to bypass IPC permissions and replace portions of readonly TMPFS files with zeroes, resulting in a loss of integrity.
24137	Linux Kernel Crafted Zero IP ID DF Packet Countermeasure Bypass
24071	Linux Kernel IPv4 sockaddr_in.sin_zero Local Information Disclosure
24041	Linux Kernel rndis.c OID_GEN_SUPPORTED_LIST Memory Corruption
24040	Linux Kernel Netfilter do_replace() Function Local Overflow
23660	Linux Kernel die_if_kernel() Function Unspecified Return Issue The Linux kernel contains a flaw that may allow a local denial of service. The issue is triggered because the 'die_if_kernel()' function is labeled with the 'noreturn' attribute. On Intel ia64 systems, this can lead to a kernel panic when user faults are caused, which will result in loss of availability for the platform.
23607	Linux Kernel binfmt_elf.c Malformed elf Entry Address Local DoS The Linux kernel contains a flaw that may allow a local denial of service. The issue is triggered because the code in binfmt_elf.c fails to properly validate the entry address of ELF executables. With a crafted ELF binary, the kernel can be forced to enter an inifite loop, which will result in loss of availability for the platform. Note that the issue is only present on non-AMD x86_64 systems.

Nessus® Vulnerability Scanner

Date	Description
2015-06-12	Name : The remote OracleVM host is missing one or more security updates. File : oraclevm_OVMSA-2015-0068.nasl - Type : ACT_GATHER_INFO
2015-05-20	Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2014-0446-1.nasl - Type : ACT_GATHER_INFO
2014-11-26	Name : The remote OracleVM host is missing one or more security updates. File : oraclevm_OVMSA-2013-0042.nasl - Type : ACT_GATHER_INFO
2014-11-26	Name : The remote OracleVM host is missing one or more security updates. File : oraclevm_OVMSA-2013-0043.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2006-0710.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing a security update. File : oraclelinux_ELSA-2006-0617.nasl - Type : ACT_GATHER_INFO
2007-11-10	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-302-1.nasl - Type : ACT_GATHER_INFO
2007-11-10	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-311-1.nasl - Type : ACT_GATHER_INFO
2007-01-17	Name : The remote Fedora Core host is missing a security update. File : fedora_2006-572.nasl - Type : ACT_GATHER_INFO
2007-01-17	Name : The remote Fedora Core host is missing a security update. File : fedora_2006-573.nasl - Type : ACT_GATHER_INFO
2007-01-17	Name : The remote Fedora Core host is missing a security update. File : fedora_2006-517.nasl - Type : ACT_GATHER_INFO
2006-12-16	Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2006-151.nasl - Type : ACT_GATHER_INFO
2006-10-25	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2006-0710.nasl - Type : ACT_GATHER_INFO
2006-10-20	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2006-0710.nasl - Type : ACT_GATHER_INFO
2006-10-14	Name : The remote Debian host is missing a security-related update. File : debian_DSA-1184.nasl - Type : ACT_GATHER_INFO
2006-10-14	Name : The remote Debian host is missing a security-related update. File : debian_DSA-1103.nasl - Type : ACT_GATHER_INFO
2006-10-14	Name : The remote Debian host is missing a security-related update. File : debian_DSA-1097.nasl - Type : ACT_GATHER_INFO
2006-10-10	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2006-0689.nasl - Type : ACT_GATHER_INFO
2006-10-10	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2006-0689.nasl - Type : ACT_GATHER_INFO
2006-08-30	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2006-0617.nasl - Type : ACT_GATHER_INFO
2006-08-30	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2006-0575.nasl - Type : ACT_GATHER_INFO
2006-08-23	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2006-0617.nasl - Type : ACT_GATHER_INFO
2006-08-14	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2006-0575.nasl - Type : ACT_GATHER_INFO
2006-08-04	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2006-0437.nasl - Type : ACT_GATHER_INFO
2006-07-21	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2006-0437.nasl - Type : ACT_GATHER_INFO
2006-07-18	Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2006-123.nasl - Type : ACT_GATHER_INFO
2006-07-17	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2006-0579.nasl - Type : ACT_GATHER_INFO
2006-07-05	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2006-0493.nasl - Type : ACT_GATHER_INFO
2006-05-24	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2006-0493.nasl - Type : ACT_GATHER_INFO
2006-05-19	Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2006-086.nasl - Type : ACT_GATHER_INFO
2006-05-15	Name : It is possible to crash the remote host by sending it an SCTP packet. File : linux_sctp_unexpect_ecne_chunk_dos.nasl - Type : ACT_KILL_HOST
2006-05-13	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-281-1.nasl - Type : ACT_GATHER_INFO
2006-04-21	Name : The remote Fedora Core host is missing a security update. File : fedora_2006-423.nasl - Type : ACT_GATHER_INFO
2006-04-21	Name : The remote Fedora Core host is missing a security update. File : fedora_2006-421.nasl - Type : ACT_GATHER_INFO
2006-03-23	Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2006-059.nasl - Type : ACT_GATHER_INFO
2006-03-13	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-263-1.nasl - Type : ACT_GATHER_INFO
2006-03-06	Name : The remote Fedora Core host is missing a security update. File : fedora_2006-131.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 11:25:55	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	8
Oval ID(s)	14
CPE ID(s)	740
osvdb(s)	18
Openvas Exploit(s)	8
Nessus® Exploit(s)	37

	Related
10	CVE-2006-1368
9	CVE-2006-1857
7.8	CVE-2006-2272
7.8	CVE-2006-2271
7.8	CVE-2006-1858
6.9	CVE-2006-0038
5	CVE-2006-2274
5	CVE-2006-1242
4.9	CVE-2006-1525
4.7	CVE-2006-0039
4.6	CVE-2006-1864
4.6	CVE-2006-0742
3.6	CVE-2006-1524
2.1	CVE-2006-1343
2.1	CVE-2006-1056
1.2	CVE-2006-0741
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 16 more Alert(s)