7.8 - DSA-1928

Executive Summary

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

Summary
Title	New Linux 2.6.24 packages fix several vulnerabilities

Informations
Name	DSA-1928	First vendor Publication	2009-11-05
Vendor	Debian	Last vendor Modification	2009-11-05
Severity (Vendor)	N/A	Revision	1

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:C/I:N/A:N)
Cvss Base Score	7.8	Attack Range	Network
Cvss Impact Score	6.9	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, sensitive memory leak or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems:

CVE-2009-2846

Michael Buesch noticed a typing issue in the eisa-eeprom driver for the hppa architecture. Local users could exploit this issue to gain access to restricted memory.

CVE-2009-2847

Ulrich Drepper noticed an issue in the do_sigalstack routine on 64-bit systems. This issue allows local users to gain access to potentially sensitive memory on the kernel stack.

CVE-2009-2848

Eric Dumazet discovered an issue in the execve path, where the clear_child_tid variable was not being properly cleared. Local users could exploit this issue to cause a denial of service (memory corruption).

CVE-2009-2849

Neil Brown discovered an issue in the sysfs interface to md devices. When md arrays are not active, local users can exploit this vulnerability to cause a denial of service (oops).

CVE-2009-2903

Mark Smith discovered a memory leak in the appletalk implementation. When the appletalk and ipddp modules are loaded, but no ipddp"N" device is found, remote attackers can cause a denial of service by consuming large amounts of system memory.

CVE-2009-2908

Loic Minier discovered an issue in the eCryptfs filesystem. A local user can cause a denial of service (kernel oops) by causing a dentry value to go negative.

CVE-2009-2909

Arjan van de Ven discovered an issue in the AX.25 protocol implementation. A specially crafted call to setsockopt() can result in a denial of service (kernel oops).

CVE-2009-2910

Jan Beulich discovered the existence of a sensitive kernel memory leak. Systems running the 'amd64' kernel do not properly sanitize registers for 32-bit processes.

CVE-2009-3001

Jiri Slaby fixed a sensitive memory leak issue in the ANSI/IEEE 802.2 LLC implementation. This is not exploitable in the Debian lenny kernel as root privileges are required to exploit this issue.

CVE-2009-3002

Eric Dumazet fixed several sensitive memory leaks in the IrDA, X.25 PLP (Rose), NET/ROM, Acorn Econet/AUN, and Controller Area Network (CAN) implementations. Local users can exploit these issues to gain access to kernel memory.

CVE-2009-3228

Eric Dumazet reported an instance of uninitialized kernel memory in the network packet scheduler. Local users may be able to exploit this issue to read the contents of sensitive kernel memory. CVE-2009-3238

Linus Torvalds provided a change to the get_random_int() function to increase its randomness.

CVE-2009-3286

Eric Paris discovered an issue with the NFSv4 server implementation. When an O_EXCL create fails, files may be left with corrupted permissions, possibly granting unintentional privileges to other local users.

CVE-2009-3547

Earl Chew discovered a NULL pointer dereference issue in the pipe_rdwr_open function which can be used by local users to gain elevated privileges.

CVE-2009-3612

Jiri Pirko discovered a typo in the initialization of a structure in the netlink subsystem that may allow local users to gain access to sensitive kernel memory.

CVE-2009-3613

Alistair Strachan reported an issue in the r8169 driver. Remote users can cause a denial of service (IOMMU space exhaustion and system crash) by transmitting a large amount of jumbo frames.

CVE-2009-3620

Ben Hutchings discovered an issue in the DRM manager for ATI Rage 128 graphics adapters. Local users may be able to exploit this vulnerability to cause a denial of service (NULL pointer dereference).

CVE-2009-3621

Tomoki Sekiyama discovered a deadlock condition in the UNIX domain socket implementation. Local users can exploit this vulnerability to cause a denial of service (system hang).

For the oldstable distribution (etch), this problem has been fixed in version 2.6.24-6~etchnhalf.9etch1.

We recommend that you upgrade your linux-2.6.24 packages.

Note: Debian 'etch' includes linux kernel packages based upon both the 2.6.18 and 2.6.24 linux releases. All known security issues are carefully tracked against both packages and both packages will receive security updates until security support for Debian 'etch' concludes. However, given the high frequency at which low-severity security issues are discovered in the kernel and the resource requirements of doing an update, lower severity 2.6.18 and 2.6.24 updates will typically release in a staggered or "leap-frog" fashion.

Original Source

Url : http://www.debian.org/security/2009/dsa-1928

CAPEC : Common Attack Pattern Enumeration & Classification

Id	Name
CAPEC-59	Session Credential Falsification through Prediction
CAPEC-112	Brute Force
CAPEC-281	Analytic Attacks

CWE : Common Weakness Enumeration

%	Id	Name
25 %	CWE-200	Information Exposure
12 %	CWE-476	NULL Pointer Dereference
12 %	CWE-264	Permissions, Privileges, and Access Controls
6 %	CWE-772	Missing Release of Resource after Effective Lifetime
6 %	CWE-672	Operation on a Resource after Expiration or Release
6 %	CWE-400	Uncontrolled Resource Consumption ('Resource Exhaustion')
6 %	CWE-399	Resource Management Errors
6 %	CWE-362	Race Condition
6 %	CWE-338	Use of Cryptographically Weak PRNG
6 %	CWE-269	Improper Privilege Management
6 %	CWE-189	Numeric Errors (CWE/SANS Top 25)

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:10209

Oval ID:	oval:org.mitre.oval:def:10209
Title:	The swiotlb functionality in the r8169 driver in drivers/net/r8169.c in the Linux kernel before 2.6.27.22 allows remote attackers to cause a denial of service (IOMMU space exhaustion and system crash) by using jumbo frames for a large amount of network traffic, as demonstrated by a flood ping.
Description:	The swiotlb functionality in the r8169 driver in drivers/net/r8169.c in the Linux kernel before 2.6.27.22 allows remote attackers to cause a denial of service (IOMMU space exhaustion and system crash) by using jumbo frames for a large amount of network traffic, as demonstrated by a flood ping.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3613	Version:	5
Platform(s):	Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-xenU is earlier than 0:2.6.9-89.0.18.EL AND kernel-hugemem is earlier than 0:2.6.9-89.0.18.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-89.0.18.EL AND kernel-xenU-devel is earlier than 0:2.6.9-89.0.18.EL AND kernel-smp-devel is earlier than 0:2.6.9-89.0.18.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-89.0.18.EL AND kernel is earlier than 0:2.6.9-89.0.18.EL AND kernel-devel is earlier than 0:2.6.9-89.0.18.EL AND kernel-doc is earlier than 0:2.6.9-89.0.18.EL AND kernel-largesmp is earlier than 0:2.6.9-89.0.18.EL AND kernel-smp is earlier than 0:2.6.9-89.0.18.EL OR OS Section: RHEL5, CentOS5, Oracle Linux 5 RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section kernel-kdump is earlier than 0:2.6.18-164.6.1.el5 AND kernel-debug is earlier than 0:2.6.18-164.6.1.el5 AND kernel-xen is earlier than 0:2.6.18-164.6.1.el5 AND kernel-headers is earlier than 0:2.6.18-164.6.1.el5 AND kernel-kdump-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-xen-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-PAE is earlier than 0:2.6.18-164.6.1.el5 AND kernel-debug-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-doc is earlier than 0:2.6.18-164.6.1.el5

Definition Id: oval:org.mitre.oval:def:10216

Oval ID:	oval:org.mitre.oval:def:10216
Title:	The d_delete function in fs/ecryptfs/inode.c in eCryptfs in the Linux kernel 2.6.31 allows local users to cause a denial of service (kernel OOPS) and possibly execute arbitrary code via unspecified vectors that cause a "negative dentry" and trigger a NULL pointer dereference, as demonstrated via a Mutt temporary directory in an eCryptfs mount.
Description:	The d_delete function in fs/ecryptfs/inode.c in eCryptfs in the Linux kernel 2.6.31 allows local users to cause a denial of service (kernel OOPS) and possibly execute arbitrary code via unspecified vectors that cause a "negative dentry" and trigger a NULL pointer dereference, as demonstrated via a Mutt temporary directory in an eCryptfs mount.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-2908	Version:	5
Platform(s):	Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section kernel-kdump is earlier than 0:2.6.18-164.6.1.el5 AND kernel-debug is earlier than 0:2.6.18-164.6.1.el5 AND kernel-xen is earlier than 0:2.6.18-164.6.1.el5 AND kernel-headers is earlier than 0:2.6.18-164.6.1.el5 AND kernel-kdump-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-xen-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-PAE is earlier than 0:2.6.18-164.6.1.el5 AND kernel-debug-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-doc is earlier than 0:2.6.18-164.6.1.el5

Definition Id: oval:org.mitre.oval:def:10395

Oval ID:	oval:org.mitre.oval:def:10395
Title:	The tcf_fill_node function in net/sched/cls_api.c in the netlink subsystem in the Linux kernel 2.6.x before 2.6.32-rc5, and 2.4.37.6 and earlier, does not initialize a certain tcm__pad2 structure member, which might allow local users to obtain sensitive information from kernel memory via unspecified vectors. NOTE: this issue exists because of an incomplete fix for CVE-2005-4881.
Description:	The tcf_fill_node function in net/sched/cls_api.c in the netlink subsystem in the Linux kernel 2.6.x before 2.6.32-rc5, and 2.4.37.6 and earlier, does not initialize a certain tcm__pad2 structure member, which might allow local users to obtain sensitive information from kernel memory via unspecified vectors. NOTE: this issue exists because of an incomplete fix for CVE-2005-4881.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3612	Version:	5
Platform(s):	Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-xenU is earlier than 0:2.6.9-89.0.15.EL AND kernel-hugemem is earlier than 0:2.6.9-89.0.15.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-89.0.15.EL AND kernel-xenU-devel is earlier than 0:2.6.9-89.0.15.EL AND kernel-smp-devel is earlier than 0:2.6.9-89.0.15.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-89.0.15.EL AND kernel is earlier than 0:2.6.9-89.0.15.EL AND kernel-devel is earlier than 0:2.6.9-89.0.15.EL AND kernel-doc is earlier than 0:2.6.9-89.0.15.EL AND kernel-largesmp is earlier than 0:2.6.9-89.0.15.EL AND kernel-smp is earlier than 0:2.6.9-89.0.15.EL OR OS Section: RHEL5, CentOS5, Oracle Linux 5 RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section kernel-kdump is earlier than 0:2.6.18-164.9.1.el5 AND kernel-debug is earlier than 0:2.6.18-164.9.1.el5 AND kernel-xen is earlier than 0:2.6.18-164.9.1.el5 AND kernel-headers is earlier than 0:2.6.18-164.9.1.el5 AND kernel-kdump-devel is earlier than 0:2.6.18-164.9.1.el5 AND kernel-xen-devel is earlier than 0:2.6.18-164.9.1.el5 AND kernel is earlier than 0:2.6.18-164.9.1.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-164.9.1.el5 AND kernel-devel is earlier than 0:2.6.18-164.9.1.el5 AND kernel-PAE is earlier than 0:2.6.18-164.9.1.el5 AND kernel-debug-devel is earlier than 0:2.6.18-164.9.1.el5 AND kernel-doc is earlier than 0:2.6.18-164.9.1.el5

Definition Id: oval:org.mitre.oval:def:10396

Oval ID:	oval:org.mitre.oval:def:10396
Title:	The md driver (drivers/md/md.c) in the Linux kernel before 2.6.30.2 might allow local users to cause a denial of service (NULL pointer dereference) via vectors related to "suspend_* sysfs attributes" and the (1) suspend_lo_store or (2) suspend_hi_store functions. NOTE: this is only a vulnerability when sysfs is writable by an attacker.
Description:	The md driver (drivers/md/md.c) in the Linux kernel before 2.6.30.2 might allow local users to cause a denial of service (NULL pointer dereference) via vectors related to "suspend_* sysfs attributes" and the (1) suspend_lo_store or (2) suspend_hi_store functions. NOTE: this is only a vulnerability when sysfs is writable by an attacker.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-2849	Version:	5
Platform(s):	Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section kernel-kdump is earlier than 0:2.6.18-164.2.1.el5 AND kernel-debug is earlier than 0:2.6.18-164.2.1.el5 AND kernel-xen is earlier than 0:2.6.18-164.2.1.el5 AND kernel-headers is earlier than 0:2.6.18-164.2.1.el5 AND kernel-kdump-devel is earlier than 0:2.6.18-164.2.1.el5 AND kernel-xen-devel is earlier than 0:2.6.18-164.2.1.el5 AND kernel is earlier than 0:2.6.18-164.2.1.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-164.2.1.el5 AND kernel-devel is earlier than 0:2.6.18-164.2.1.el5 AND kernel-PAE is earlier than 0:2.6.18-164.2.1.el5 AND kernel-debug-devel is earlier than 0:2.6.18-164.2.1.el5 AND kernel-doc is earlier than 0:2.6.18-164.2.1.el5

Definition Id: oval:org.mitre.oval:def:10637

Oval ID:	oval:org.mitre.oval:def:10637
Title:	The do_sigaltstack function in kernel/signal.c in Linux kernel 2.4 through 2.4.37 and 2.6 before 2.6.31-rc5, when running on 64-bit systems, does not clear certain padding bytes from a structure, which allows local users to obtain sensitive information from the kernel stack via the sigaltstack function.
Description:	The do_sigaltstack function in kernel/signal.c in Linux kernel 2.4 through 2.4.37 and 2.6 before 2.6.31-rc5, when running on 64-bit systems, does not clear certain padding bytes from a structure, which allows local users to obtain sensitive information from the kernel stack via the sigaltstack function.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-2847	Version:	5
Platform(s):	Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-xenU is earlier than 0:2.6.9-89.0.11.EL AND kernel-hugemem is earlier than 0:2.6.9-89.0.11.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-89.0.11.EL AND kernel-xenU-devel is earlier than 0:2.6.9-89.0.11.EL AND kernel-smp-devel is earlier than 0:2.6.9-89.0.11.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-89.0.11.EL AND kernel is earlier than 0:2.6.9-89.0.11.EL AND kernel-devel is earlier than 0:2.6.9-89.0.11.EL AND kernel-doc is earlier than 0:2.6.9-89.0.11.EL AND kernel-largesmp is earlier than 0:2.6.9-89.0.11.EL AND kernel-smp is earlier than 0:2.6.9-89.0.11.EL OR OS Section: RHEL5, CentOS5, Oracle Linux 5 RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section kernel-kdump is earlier than 0:2.6.18-164.el5 AND kernel-debug is earlier than 0:2.6.18-164.el5 AND kernel-xen is earlier than 0:2.6.18-164.el5 AND kernel-headers is earlier than 0:2.6.18-164.el5 AND kernel-kdump-devel is earlier than 0:2.6.18-164.el5 AND kernel-xen-devel is earlier than 0:2.6.18-164.el5 AND kernel is earlier than 0:2.6.18-164.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-164.el5 AND kernel-devel is earlier than 0:2.6.18-164.el5 AND kernel-PAE is earlier than 0:2.6.18-164.el5 AND kernel-debug-devel is earlier than 0:2.6.18-164.el5 AND kernel-doc is earlier than 0:2.6.18-164.el5

Definition Id: oval:org.mitre.oval:def:10823

Oval ID:	oval:org.mitre.oval:def:10823
Title:	arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.31.4 on the x86_64 platform does not clear certain kernel registers before a return to user mode, which allows local users to read register values from an earlier process by switching an ia32 process to 64-bit mode.
Description:	arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.31.4 on the x86_64 platform does not clear certain kernel registers before a return to user mode, which allows local users to read register values from an earlier process by switching an ia32 process to 64-bit mode.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-2910	Version:	5
Platform(s):	Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-xenU is earlier than 0:2.6.9-89.0.18.EL AND kernel-hugemem is earlier than 0:2.6.9-89.0.18.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-89.0.18.EL AND kernel-xenU-devel is earlier than 0:2.6.9-89.0.18.EL AND kernel-smp-devel is earlier than 0:2.6.9-89.0.18.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-89.0.18.EL AND kernel is earlier than 0:2.6.9-89.0.18.EL AND kernel-devel is earlier than 0:2.6.9-89.0.18.EL AND kernel-doc is earlier than 0:2.6.9-89.0.18.EL AND kernel-largesmp is earlier than 0:2.6.9-89.0.18.EL AND kernel-smp is earlier than 0:2.6.9-89.0.18.EL OR OS Section: RHEL5, CentOS5, Oracle Linux 5 RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section kernel-kdump is earlier than 0:2.6.18-164.11.1.el5 AND kernel-debug is earlier than 0:2.6.18-164.11.1.el5 AND kernel-xen is earlier than 0:2.6.18-164.11.1.el5 AND kernel-headers is earlier than 0:2.6.18-164.11.1.el5 AND kernel-kdump-devel is earlier than 0:2.6.18-164.11.1.el5 AND kernel-xen-devel is earlier than 0:2.6.18-164.11.1.el5 AND kernel is earlier than 0:2.6.18-164.11.1.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-164.11.1.el5 AND kernel-devel is earlier than 0:2.6.18-164.11.1.el5 AND kernel-PAE is earlier than 0:2.6.18-164.11.1.el5 AND kernel-debug-devel is earlier than 0:2.6.18-164.11.1.el5 AND kernel-doc is earlier than 0:2.6.18-164.11.1.el5

Definition Id: oval:org.mitre.oval:def:11168

Oval ID:	oval:org.mitre.oval:def:11168
Title:	The get_random_int function in drivers/char/random.c in the Linux kernel before 2.6.30 produces insufficiently random numbers, which allows attackers to predict the return value, and possibly defeat protection mechanisms based on randomization, via vectors that leverage the function's tendency to "return the same value over and over again for long stretches of time."
Description:	The get_random_int function in drivers/char/random.c in the Linux kernel before 2.6.30 produces insufficiently random numbers, which allows attackers to predict the return value, and possibly defeat protection mechanisms based on randomization, via vectors that leverage the function's tendency to "return the same value over and over again for long stretches of time."
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3238	Version:	5
Platform(s):	Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-xenU is earlier than 0:2.6.9-89.0.11.EL AND kernel-hugemem is earlier than 0:2.6.9-89.0.11.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-89.0.11.EL AND kernel-xenU-devel is earlier than 0:2.6.9-89.0.11.EL AND kernel-smp-devel is earlier than 0:2.6.9-89.0.11.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-89.0.11.EL AND kernel is earlier than 0:2.6.9-89.0.11.EL AND kernel-devel is earlier than 0:2.6.9-89.0.11.EL AND kernel-doc is earlier than 0:2.6.9-89.0.11.EL AND kernel-largesmp is earlier than 0:2.6.9-89.0.11.EL AND kernel-smp is earlier than 0:2.6.9-89.0.11.EL OR OS Section: RHEL5, CentOS5, Oracle Linux 5 RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section kernel-kdump is earlier than 0:2.6.18-128.1.14.el5 AND kernel-debug is earlier than 0:2.6.18-128.1.14.el5 AND kernel-xen is earlier than 0:2.6.18-128.1.14.el5 AND kernel-headers is earlier than 0:2.6.18-128.1.14.el5 AND kernel-kdump-devel is earlier than 0:2.6.18-128.1.14.el5 AND kernel-xen-devel is earlier than 0:2.6.18-128.1.14.el5 AND kernel is earlier than 0:2.6.18-128.1.14.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-128.1.14.el5 AND kernel-devel is earlier than 0:2.6.18-128.1.14.el5 AND kernel-PAE is earlier than 0:2.6.18-128.1.14.el5 AND kernel-debug-devel is earlier than 0:2.6.18-128.1.14.el5 AND kernel-doc is earlier than 0:2.6.18-128.1.14.el5

Definition Id: oval:org.mitre.oval:def:11412

Oval ID:	oval:org.mitre.oval:def:11412
Title:	Service Console update for COS kernel
Description:	The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current->clear_child_tid pointer, which allows local users to cause a denial of service (memory corruption) or possibly gain privileges via a clone system call with CLONE_CHILD_SETTID or CLONE_CHILD_CLEARTID enabled, which is not properly handled during thread creation and exit.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-2848	Version:	3
Platform(s):	VMWare ESX Server 3.5	Product(s):
Definition Synopsis:
VMware ESX Server 3.5.0 is installed AND Patch ESX350-201006401-SG is not installed

Definition Id: oval:org.mitre.oval:def:11513

Oval ID:	oval:org.mitre.oval:def:11513
Title:	Service Console update for COS kernel
Description:	Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting to open an anonymous pipe via a /proc/*/fd/ pathname.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3547	Version:	3
Platform(s):	VMWare ESX Server 3.5	Product(s):
Definition Synopsis:
VMware ESX Server 3.5.0 is installed AND Patch ESX350-201006401-SG is not installed

Definition Id: oval:org.mitre.oval:def:11611

Oval ID:	oval:org.mitre.oval:def:11611
Title:	The Linux kernel before 2.6.31-rc7 does not initialize certain data structures within getname functions, which allows local users to read the contents of some kernel memory locations by calling getsockname on (1) an AF_APPLETALK socket, related to the atalk_getname function in net/appletalk/ddp.c; (2) an AF_IRDA socket, related to the irda_getname function in net/irda/af_irda.c; (3) an AF_ECONET socket, related to the econet_getname function in net/econet/af_econet.c; (4) an AF_NETROM socket, related to the nr_getname function in net/netrom/af_netrom.c; (5) an AF_ROSE socket, related to the rose_getname function in net/rose/af_rose.c; or (6) a raw CAN socket, related to the raw_getname function in net/can/raw.c.
Description:	The Linux kernel before 2.6.31-rc7 does not initialize certain data structures within getname functions, which allows local users to read the contents of some kernel memory locations by calling getsockname on (1) an AF_APPLETALK socket, related to the atalk_getname function in net/appletalk/ddp.c; (2) an AF_IRDA socket, related to the irda_getname function in net/irda/af_irda.c; (3) an AF_ECONET socket, related to the econet_getname function in net/econet/af_econet.c; (4) an AF_NETROM socket, related to the nr_getname function in net/netrom/af_netrom.c; (5) an AF_ROSE socket, related to the rose_getname function in net/rose/af_rose.c; or (6) a raw CAN socket, related to the raw_getname function in net/can/raw.c.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3002	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3	Product(s):
Definition Synopsis:
RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND Configuration section kernel-BOOT is earlier than 0:2.4.21-63.EL AND kernel-unsupported is earlier than 0:2.4.21-63.EL AND kernel-smp-unsupported is earlier than 0:2.4.21-63.EL AND kernel-hugemem-unsupported is earlier than 0:2.4.21-63.EL AND kernel-hugemem is earlier than 0:2.4.21-63.EL AND kernel is earlier than 0:2.4.21-63.EL AND kernel-source is earlier than 0:2.4.21-63.EL AND kernel-doc is earlier than 0:2.4.21-63.EL AND kernel-smp is earlier than 0:2.4.21-63.EL

Definition Id: oval:org.mitre.oval:def:11741

Oval ID:	oval:org.mitre.oval:def:11741
Title:	Service Console update for COS kernel
Description:	The Linux kernel before 2.6.31-rc7 does not initialize certain data structures within getname functions, which allows local users to read the contents of some kernel memory locations by calling getsockname on (1) an AF_APPLETALK socket, related to the atalk_getname function in net/appletalk/ddp.c; (2) an AF_IRDA socket, related to the irda_getname function in net/irda/af_irda.c; (3) an AF_ECONET socket, related to the econet_getname function in net/econet/af_econet.c; (4) an AF_NETROM socket, related to the nr_getname function in net/netrom/af_netrom.c; (5) an AF_ROSE socket, related to the rose_getname function in net/rose/af_rose.c; or (6) a raw CAN socket, related to the raw_getname function in net/can/raw.c.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3002	Version:	3
Platform(s):	VMWare ESX Server 3.5	Product(s):
Definition Synopsis:
VMware ESX Server 3.5.0 is installed AND Patch ESX350-201006401-SG is not installed

Definition Id: oval:org.mitre.oval:def:13351

Oval ID:	oval:org.mitre.oval:def:13351
Title:	DSA-1928-1 linux-2.6.24 -- privilege escalation/denial of service/sensitive memory leak
Description:	Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, sensitive memory leak or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-2846 Michael Buesch noticed a typing issue in the eisa-eeprom driver for the hppa architecture. Local users could exploit this issue to gain access to restricted memory. CVE-2009-2847 Ulrich Drepper noticed an issue in the do_sigalstack routine on 64-bit systems. This issue allows local users to gain access to potentially sensitive memory on the kernel stack. CVE-2009-2848 Eric Dumazet discovered an issue in the execve path, where the clear_child_tid variable was not being properly cleared. Local users could exploit this issue to cause a denial of service. CVE-2009-2849 Neil Brown discovered an issue in the sysfs interface to md devices. When md arrays are not active, local users can exploit this vulnerability to cause a denial of service. CVE-2009-2903 Mark Smith discovered a memory leak in the appletalk implementation. When the appletalk and ipddp modules are loaded, but no ipddp"N" device is found, remote attackers can cause a denial of service by consuming large amounts of system memory. CVE-2009-2908 Loic Minier discovered an issue in the eCryptfs filesystem. A local user can cause a denial of service by causing a dentry value to go negative. CVE-2009-2909 Arjan van de Ven discovered an issue in the AX.25 protocol implementation. A specially crafted call to setsockopt can result in a denial of service. CVE-2009-2910 Jan Beulich discovered the existence of a sensitive kernel memory leak. Systems running the "amd64" kernel do not properly sanitise registers for 32-bit processes. CVE-2009-3001 Jiri Slaby fixed a sensitive memory leak issue in the ANSI/IEEE 802.2 LLC implementation. This is not exploitable in the Debian lenny kernel as root privileges are required to exploit this issue. CVE-2009-3002 Eric Dumazet fixed several sensitive memory leaks in the IrDA, X.25 PLP, NET/ROM, Acorn Econet/AUN, and Controller Area Network implementations. Local users can exploit these issues to gain access to kernel memory. CVE-2009-3228 Eric Dumazet reported an instance of uninitialised kernel memory in the network packet scheduler. Local users may be able to exploit this issue to read the contents of sensitive kernel memory. CVE-2009-3238 Linus Torvalds provided a change to the get_random_int function to increase its randomness. CVE-2009-3286 Eric Paris discovered an issue with the NFSv4 server implementation. When an O_EXCL create fails, files may be left with corrupted permissions, possibly granting unintentional privileges to other local users. CVE-2009-3547 Earl Chew discovered a NULL pointer dereference issue in the pipe_rdwr_open function which can be used by local users to gain elevated privileges. CVE-2009-3612 Jiri Pirko discovered a typo in the initialisation of a structure in the netlink subsystem that may allow local users to gain access to sensitive kernel memory. CVE-2009-3613 Alistair Strachan reported an issue in the r8169 driver. Remote users can cause a denial of service by transmitting a large amount of jumbo frames. CVE-2009-3620 Ben Hutchings discovered an issue in the DRM manager for ATI Rage 128 graphics adapters. Local users may be able to exploit this vulnerability to cause a denial of service. CVE-2009-3621 Tomoki Sekiyama discovered a deadlock condition in the UNIX domain socket implementation. Local users can exploit this vulnerability to cause a denial of service. For the oldstable distribution, this problem has been fixed in version 2.6.24-6~etchnhalf.9etch1. We recommend that you upgrade your linux-2.6.24 packages. Note: Debian "etch" includes linux kernel packages based upon both the 2.6.18 and 2.6.24 linux releases. All known security issues are carefully tracked against both packages and both packages will receive security updates until security support for Debian "etch" concludes. However, given the high frequency at which low-severity security issues are discovered in the kernel and the resource requirements of doing an update, lower severity 2.6.18 and 2.6.24 updates will typically release in a staggered or "leap-frog" fashion.
Family:	unix	Class:	patch
Reference(s):	DSA-1928-1 CVE-2009-2846 CVE-2009-2847 CVE-2009-2848 CVE-2009-2849 CVE-2009-2903 CVE-2009-2908 CVE-2009-2909 CVE-2009-2910 CVE-2009-3001 CVE-2009-3002 CVE-2009-3228 CVE-2009-3238 CVE-2009-3286 CVE-2009-3547 CVE-2009-3612 CVE-2009-3613 CVE-2009-3620 CVE-2009-3621	Version:	5
Platform(s):	Debian GNU/Linux 4.0	Product(s):	linux-2.6.24
Definition Synopsis:
Debian GNU/Linux 4.0 is installed. Architecture section Architecture independent section Installed architecture is all AND Packages section linux-doc-2.6.24 DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-tree-2.6.24 DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-source-2.6.24 DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-patch-debian-2.6.24 DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-support-2.6.24-etchnhalf.1 DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-manual-2.6.24 DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is i386 AND Packages section linux-headers-2.6.24-etchnhalf.1-amd64 DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-headers-2.6.24-etchnhalf.1-common DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-image-2.6.24-etchnhalf.1-amd64 DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-headers-2.6.24-etchnhalf.1-all DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 OR Architecture depended section Installed architecture is amd64 AND linux-headers-2.6.24-etchnhalf.1-all-amd64 DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 OR Supported platform section Installed architecture is hppa AND Packages section linux-image-2.6.24-etchnhalf.1-parisc64 DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-image-2.6.24-etchnhalf.1-parisc-smp DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-headers-2.6.24-etchnhalf.1-parisc-smp DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-headers-2.6.24-etchnhalf.1-parisc64 DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-image-2.6.24-etchnhalf.1-parisc DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-headers-2.6.24-etchnhalf.1-all-hppa DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-image-2.6.24-etchnhalf.1-parisc64-smp DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-headers-2.6.24-etchnhalf.1-parisc64-smp DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-headers-2.6.24-etchnhalf.1-all DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-headers-2.6.24-etchnhalf.1-common DPKG is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-headers-2.6.24-etchnhalf.1-parisc DPKG is earlier than 2.6.24-6~etchnhalf.9etch1

Definition Id: oval:org.mitre.oval:def:13505

Oval ID:	oval:org.mitre.oval:def:13505
Title:	DSA-1872-1 linux-2.6 -- denial of service/privilege escalation/information leak
Description:	CVE-2009-2698 Herbert Xu discovered an issue in the way UDP tracks corking status that could allow local users to cause a denial of service. Tavis Ormandy and Julien Tinnes discovered that this issue could also be used by local users to gain elevated privileges. CVE-2009-2846 Michael Buesch noticed a typing issue in the eisa-eeprom driver for the hppa architecture. Local users could exploit this issue to gain access to restricted memory. CVE-2009-2847 Ulrich Drepper noticed an issue in the do_sigalstack routine on 64-bit systems. This issue allows local users to gain access to potentially sensitive memory on the kernel stack. CVE-2009-2848 Eric Dumazet discovered an issue in the execve path, where the clear_child_tid variable was not being properly cleared. Local users could exploit this issue to cause a denial of service. CVE-2009-2849 Neil Brown discovered an issue in the sysfs interface to md devices. When md arrays are not active, local users can exploit this vulnerability to cause a denial of service. For the oldstable distribution, this problem has been fixed in version 2.6.18.dfsg.1-24etch4. We recommend that you upgrade your linux-2.6, fai-kernels, and user-mode-linux packages. Note: Debian carefully tracks all known security issues across every linux kernel package in all releases under active security support. However, given the high frequency at which low-severity security issues are discovered in the kernel and the resource requirements of doing an update, updates for lower priority issues will normally not be released for all kernels at the same time. Rather, they will be released in a staggered or "leap-frog" fashion. The following matrix lists additional source packages that were rebuilt for compatability with or to take advantage of this update: Debian 4.0 fai-kernels 1.17+etch.24etch4 user-mode-linux 2.6.18-1um-2etch.24etch4
Family:	unix	Class:	patch
Reference(s):	DSA-1872-1 CVE-2009-2698 CVE-2009-2846 CVE-2009-2847 CVE-2009-2848 CVE-2009-2849	Version:	7
Platform(s):	Debian GNU/Linux 4.0	Product(s):	linux-2.6
Definition Synopsis:
Debian GNU/Linux 4.0 is installed. Architecture section Architecture independent section Installed architecture is all AND Packages section linux-support-2.6.18-6 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-patch-debian-2.6.18 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-source-2.6.18 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-manual-2.6.18 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-doc-2.6.18 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-tree-2.6.18 DPKG is earlier than 2.6.18.dfsg.1-24etch4 OR Architecture depended section Installed architecture is s390 AND Packages section linux-headers-2.6.18-6-vserver-s390x DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-all DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-s390-tape DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-s390x DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-vserver-s390x DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-s390 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-vserver DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-all-s390 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-s390x DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-s390 DPKG is earlier than 2.6.18.dfsg.1-24etch4 OR Architecture depended section Installed architecture is amd64 AND Packages section linux-image-2.6.18-6-xen-amd64 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND fai-kernels DPKG is earlier than 1.17+etch.24etch4 AND linux-headers-2.6.18-6-all DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND xen-linux-system-2.6.18-6-xen-amd64 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-amd64 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-modules-2.6.18-6-xen-vserver-amd64 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-xen-vserver-amd64 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-xen-amd64 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND xen-linux-system-2.6.18-6-xen-vserver-amd64 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-amd64 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-xen DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-xen-vserver-amd64 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-vserver DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-vserver-amd64 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-all-amd64 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-modules-2.6.18-6-xen-amd64 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-xen-vserver DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-vserver-amd64 DPKG is earlier than 2.6.18.dfsg.1-24etch4 OR Supported platform section Installed architecture is hppa AND Packages section linux-headers-2.6.18-6-parisc64 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-all DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-parisc DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-parisc DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-parisc-smp DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-parisc64-smp DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-parisc64 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6 DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-parisc64-smp DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-all-hppa DPKG is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-parisc-smp DPKG is earlier than 2.6.18.dfsg.1-24etch4

Definition Id: oval:org.mitre.oval:def:13588

Oval ID:	oval:org.mitre.oval:def:13588
Title:	DSA-1915-1 linux-2.6 -- privilege escalation/denial of service/sensitive memory leak
Description:	Notice: Debian 5.0.4, the next point release of Debian "lenny", will include a new default value for the mmap_min_addr tunable. This change will add an additional safeguard against a class of security vulnerabilities known as "NULL pointer dereference" vulnerabilities, but it will need to be overridden when using certain applications. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-2695 Eric Paris provided several fixes to increase the protection provided by the mmap_min_addr tunable against NULL pointer dereference vulnerabilities. CVE-2009-2903 Mark Smith discovered a memory leak in the appletalk implementation. When the appletalk and ipddp modules are loaded, but no ipddp"N" device is found, remote attackers can cause a denial of service by consuming large amounts of system memory. CVE-2009-2908 Loic Minier discovered an issue in the eCryptfs filesystem. A local user can cause a denial of service by causing a dentry value to go negative. CVE-2009-2909 Arjan van de Ven discovered an issue in the AX.25 protocol implementation. A specially crafted call to setsockopt can result in a denial of service. CVE-2009-2910 Jan Beulich discovered the existence of a sensitive kernel memory leak. Systems running the "amd64" kernel do not properly sanitise registers for 32-bit processes. CVE-2009-3001 Jiri Slaby fixed a sensitive memory leak issue in the ANSI/IEEE 802.2 LLC implementation. This is not exploitable in the Debian lenny kernel as root privileges are required to exploit this issue. CVE-2009-3002 Eric Dumazet fixed several sensitive memory leaks in the IrDA, X.25 PLP, NET/ROM, Acorn Econet/AUN, and Controller Area Network implementations. Local users can exploit these issues to gain access to kernel memory. CVE-2009-3286 Eric Paris discovered an issue with the NFSv4 server implementation. When an O_EXCL create fails, files may be left with corrupted permissions, possibly granting unintentional privileges to other local users. CVE-2009-3290 Jan Kiszka noticed that the kvm_emulate_hypercall function in KVM does not prevent access to MMU hypercalls from ring 0, which allows local guest OS users to cause a denial of service and read or write guest kernel memory. CVE-2009-3613 Alistair Strachan reported an issue in the r8169 driver. Remote users can cause a denial of service by transmitting a large amount of jumbo frames. For the stable distribution, this problem has been fixed in version 2.6.26-19lenny1. For the oldstable distribution, these problems, where applicable, will be fixed in updates to linux-2.6 and linux-2.6.24. We recommend that you upgrade your linux-2.6 and user-mode-linux packages. Note: Debian carefully tracks all known security issues across every linux kernel package in all releases under active security support. However, given the high frequency at which low-severity security issues are discovered in the kernel and the resource requirements of doing an update, updates for lower priority issues will normally not be released for all kernels at the same time. Rather, they will be released in a staggered or "leap-frog" fashion. The following matrix lists additional source packages that were rebuilt for compatibility with or to take advantage of this update: Debian 5.0 user-mode-linux 2.6.26-1um-2+19lenny1
Family:	unix	Class:	patch
Reference(s):	DSA-1915-1 CVE-2009-2695 CVE-2009-2903 CVE-2009-2908 CVE-2009-2909 CVE-2009-2910 CVE-2009-3001 CVE-2009-3002 CVE-2009-3286 CVE-2009-3290 CVE-2009-3613	Version:	5
Platform(s):	Debian GNU/Linux 5.0	Product(s):	linux-2.6
Definition Synopsis:
Debian GNU/Linux 5.0 is installed Architecture section Architecture independent section Installed architecture is all AND Packages section linux-doc-2.6.26 DPKG is earlier than 2.6.26-19lenny1 AND linux-tree-2.6.26 DPKG is earlier than 2.6.26-19lenny1 AND linux-patch-debian-2.6.26 DPKG is earlier than 2.6.26-19lenny1 AND linux-source-2.6.26 DPKG is earlier than 2.6.26-19lenny1 AND linux-manual-2.6.26 DPKG is earlier than 2.6.26-19lenny1 AND linux-support-2.6.26-2 DPKG is earlier than 2.6.26-19lenny1 OR Architecture depended section Installed architecture is s390 AND Packages section linux-headers-2.6.26-2-all DPKG is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-vserver-s390x DPKG is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-s390 DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-s390 DPKG is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-s390-tape DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-all-s390 DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-common-vserver DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-vserver-s390x DPKG is earlier than 2.6.26-19lenny1 AND linux-libc-dev DPKG is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-s390x DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-common DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-s390x DPKG is earlier than 2.6.26-19lenny1 OR Architecture depended section Installed architecture is amd64 AND Packages section xen-linux-system-2.6.26-2-xen-amd64 DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-all DPKG is earlier than 2.6.26-19lenny1 AND linux-modules-2.6.26-2-xen-amd64 DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-openvz-amd64 DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-common-vserver DPKG is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-openvz-amd64 DPKG is earlier than 2.6.26-19lenny1 AND linux-libc-dev DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-common-openvz DPKG is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-vserver-amd64 DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-all-amd64 DPKG is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-xen-amd64 DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-common-xen DPKG is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-amd64 DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-xen-amd64 DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-amd64 DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-common DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-vserver-amd64 DPKG is earlier than 2.6.26-19lenny1 OR Supported platform section Installed architecture is hppa AND Packages section linux-headers-2.6.26-2-all DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-parisc DPKG is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-parisc64 DPKG is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-parisc DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-parisc-smp DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-all-hppa DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-parisc64 DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-parisc64-smp DPKG is earlier than 2.6.26-19lenny1 AND linux-libc-dev DPKG is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-parisc64-smp DPKG is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-common DPKG is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-parisc-smp DPKG is earlier than 2.6.26-19lenny1

Definition Id: oval:org.mitre.oval:def:13735

Oval ID:	oval:org.mitre.oval:def:13735
Title:	DSA-1929-1 linux-2.6 -- privilege escalation/denial of service/sensitive memory leak
Description:	Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, sensitive memory leak or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-1883 Solar Designer discovered a missing capability check in the z90crypt driver or s390 systems. This vulnerability may allow a local user to gain elevated privileges. CVE-2009-2909 Arjan van de Ven discovered an issue in the AX.25 protocol implementation. A specially crafted call to setsockopt can result in a denial of service. CVE-2009-3001 Jiri Slaby fixed a sensitive memory leak issue in the ANSI/IEEE 802.2 LLC implementation. This is not exploitable in the Debian lenny kernel as root privileges are required to exploit this issue. CVE-2009-3002 Eric Dumazet fixed several sensitive memory leaks in the IrDA, X.25 PLP, NET/ROM, Acorn Econet/AUN, and Controller Area Network implementations. Local users can exploit these issues to gain access to kernel memory. CVE-2009-3228 Eric Dumazet reported an instance of uninitialised kernel memory in the network packet scheduler. Local users may be able to exploit this issue to read the contents of sensitive kernel memory. CVE-2009-3238 Linus Torvalds provided a change to the get_random_int function to increase its randomness. CVE-2009-3286 Eric Paris discovered an issue with the NFSv4 server implementation. When an O_EXCL create fails, files may be left with corrupted permissions, possibly granting unintentional privileges to other local users. CVE-2009-3547 Earl Chew discovered a NULL pointer dereference issue in the pipe_rdwr_open function which can be used by local users to gain elevated privileges. CVE-2009-3612 Jiri Pirko discovered a typo in the initialisation of a structure in the netlink subsystem that may allow local users to gain access to sensitive kernel memory. CVE-2009-3621 Tomoki Sekiyama discovered a deadlock condition in the UNIX domain socket implementation. Local users can exploit this vulnerability to cause a denial of service. For the oldstable distribution, this problem has been fixed in version 2.6.18.dfsg.1-26etch1. We recommend that you upgrade your linux-2.6, fai-kernels, and user-mode-linux packages. Note: Debian "etch" includes linux kernel packages based upon both the 2.6.18 and 2.6.24 linux releases. All known security issues are carefully tracked against both packages and both packages will receive security updates until security support for Debian "etch" concludes. However, given the high frequency at which low-severity security issues are discovered in the kernel and the resource requirements of doing an update, lower severity 2.6.18 and 2.6.24 updates will typically release in a staggered or "leap-frog" fashion. The following matrix lists additional source packages that were rebuilt for compatibility with or to take advantage of this update: Debian 4.0 fai-kernels 1.17+etch.26etch1 user-mode-linux 2.6.18-1um-2etch.26etch1
Family:	unix	Class:	patch
Reference(s):	DSA-1929-1 CVE-2009-1883 CVE-2009-2909 CVE-2009-3001 CVE-2009-3002 CVE-2009-3228 CVE-2009-3238 CVE-2009-3286 CVE-2009-3547 CVE-2009-3612 CVE-2009-3621	Version:	5
Platform(s):	Debian GNU/Linux 4.0	Product(s):	linux-2.6
Definition Synopsis:
Debian GNU/Linux 4.0 is installed. Architecture section Architecture independent section Installed architecture is all AND Packages section linux-support-2.6.18-6 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-patch-debian-2.6.18 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-source-2.6.18 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-tree-2.6.18 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-doc-2.6.18 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-manual-2.6.18 DPKG is earlier than 2.6.18.dfsg.1-26etch1 OR Architecture depended section Installed architecture is s390 AND Packages section linux-headers-2.6.18-6-all DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-vserver-s390x DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-s390 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-image-2.6.18-6-s390-tape DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-image-2.6.18-6-s390x DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-image-2.6.18-6-vserver-s390x DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-image-2.6.18-6-s390 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-vserver DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-all-s390 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-s390x DPKG is earlier than 2.6.18.dfsg.1-26etch1 OR Architecture depended section Installed architecture is amd64 AND Packages section linux-image-2.6.18-6-xen-amd64 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-all DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND xen-linux-system-2.6.18-6-xen-amd64 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-image-2.6.18-6-amd64 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-image-2.6.18-6-vserver-amd64 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-image-2.6.18-6-xen-vserver-amd64 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-xen-amd64 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND xen-linux-system-2.6.18-6-xen-vserver-amd64 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-amd64 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-xen DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-xen-vserver-amd64 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-vserver DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-vserver-amd64 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-all-amd64 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-modules-2.6.18-6-xen-amd64 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-xen-vserver DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-modules-2.6.18-6-xen-vserver-amd64 DPKG is earlier than 2.6.18.dfsg.1-26etch1 OR Supported platform section Installed architecture is powerpc AND Packages section linux-headers-2.6.18-6-powerpc64 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-image-2.6.18-6-prep DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-all DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-image-2.6.18-6-powerpc-smp DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-image-2.6.18-6-powerpc DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-all-powerpc DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-powerpc DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-powerpc-smp DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-vserver DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-image-2.6.18-6-powerpc-miboot DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-image-2.6.18-6-powerpc64 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-powerpc-miboot DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-image-2.6.18-6-vserver-powerpc64 DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-vserver-powerpc DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-prep DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-image-2.6.18-6-vserver-powerpc DPKG is earlier than 2.6.18.dfsg.1-26etch1 AND linux-headers-2.6.18-6-vserver-powerpc64 DPKG is earlier than 2.6.18.dfsg.1-26etch1

Definition Id: oval:org.mitre.oval:def:21973

Oval ID:	oval:org.mitre.oval:def:21973
Title:	ELSA-2009:1243: Oracle Linux 5.x.4 kernel security and bug fix update (Important)
Description:	The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current->clear_child_tid pointer, which allows local users to cause a denial of service (memory corruption) or possibly gain privileges via a clone system call with CLONE_CHILD_SETTID or CLONE_CHILD_CLEARTID enabled, which is not properly handled during thread creation and exit.
Family:	unix	Class:	patch
Reference(s):	ELSA-2009:1243-03 CVE-2009-0745 CVE-2009-0746 CVE-2009-0747 CVE-2009-0748 CVE-2009-2847 CVE-2009-2848	Version:	29
Platform(s):	Oracle Linux 5	Product(s):	kernel
Definition Synopsis:
Oracle Linux 5.x rpm test kernel-headers is earlier than 0:2.6.18-164.el5 AND kernel is earlier than 0:2.6.18-164.el5 AND kernel-doc is earlier than 0:2.6.18-164.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-164.el5 AND kernel-devel is earlier than 0:2.6.18-164.el5 AND kernel-debug is earlier than 0:2.6.18-164.el5 AND kernel-kdump is earlier than 0:2.6.18-164.el5 AND kernel-xen-devel is earlier than 0:2.6.18-164.el5 AND kernel-debug-devel is earlier than 0:2.6.18-164.el5 AND kernel-PAE is earlier than 0:2.6.18-164.el5 AND kernel-kdump-devel is earlier than 0:2.6.18-164.el5 AND kernel-xen is earlier than 0:2.6.18-164.el5

Definition Id: oval:org.mitre.oval:def:22334

Oval ID:	oval:org.mitre.oval:def:22334
Title:	ELSA-2009:1106: kernel security and bug fix update (Important)
Description:	The get_random_int function in drivers/char/random.c in the Linux kernel before 2.6.30 produces insufficiently random numbers, which allows attackers to predict the return value, and possibly defeat protection mechanisms based on randomization, via vectors that leverage the function's tendency to "return the same value over and over again for long stretches of time."
Family:	unix	Class:	patch
Reference(s):	ELSA-2009:1106-01 CVE-2009-1072 CVE-2009-1192 CVE-2009-1439 CVE-2009-1630 CVE-2009-1633 CVE-2009-1758 CVE-2009-3238	Version:	33
Platform(s):	Oracle Linux 5	Product(s):	kernel
Definition Synopsis:
Oracle Linux 5.x rpm test kernel-headers is earlier than 0:2.6.18-128.1.14.el5 AND kernel is earlier than 0:2.6.18-128.1.14.el5 AND kernel-doc is earlier than 0:2.6.18-128.1.14.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-128.1.14.el5 AND kernel-devel is earlier than 0:2.6.18-128.1.14.el5 AND kernel-debug is earlier than 0:2.6.18-128.1.14.el5 AND kernel-kdump is earlier than 0:2.6.18-128.1.14.el5 AND kernel-xen-devel is earlier than 0:2.6.18-128.1.14.el5 AND kernel-debug-devel is earlier than 0:2.6.18-128.1.14.el5 AND kernel-PAE is earlier than 0:2.6.18-128.1.14.el5 AND kernel-kdump-devel is earlier than 0:2.6.18-128.1.14.el5 AND kernel-xen is earlier than 0:2.6.18-128.1.14.el5

Definition Id: oval:org.mitre.oval:def:22733

Oval ID:	oval:org.mitre.oval:def:22733
Title:	ELSA-2009:1455: kernel security and bug fix update (Moderate)
Description:	The md driver (drivers/md/md.c) in the Linux kernel before 2.6.30.2 might allow local users to cause a denial of service (NULL pointer dereference) via vectors related to "suspend_* sysfs attributes" and the (1) suspend_lo_store or (2) suspend_hi_store functions. NOTE: this is only a vulnerability when sysfs is writable by an attacker.
Family:	unix	Class:	patch
Reference(s):	ELSA-2009:1455-03 CVE-2009-2849	Version:	6
Platform(s):	Oracle Linux 5	Product(s):	kernel
Definition Synopsis:
Oracle Linux 5.x rpm test kernel-headers is earlier than 0:2.6.18-164.2.1.el5 AND kernel is earlier than 0:2.6.18-164.2.1.el5 AND kernel-doc is earlier than 0:2.6.18-164.2.1.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-164.2.1.el5 AND kernel-devel is earlier than 0:2.6.18-164.2.1.el5 AND kernel-debug is earlier than 0:2.6.18-164.2.1.el5 AND kernel-kdump is earlier than 0:2.6.18-164.2.1.el5 AND kernel-xen-devel is earlier than 0:2.6.18-164.2.1.el5 AND kernel-debug-devel is earlier than 0:2.6.18-164.2.1.el5 AND kernel-PAE is earlier than 0:2.6.18-164.2.1.el5 AND kernel-kdump-devel is earlier than 0:2.6.18-164.2.1.el5 AND kernel-xen is earlier than 0:2.6.18-164.2.1.el5

Definition Id: oval:org.mitre.oval:def:22999

Oval ID:	oval:org.mitre.oval:def:22999
Title:	ELSA-2009:1548: kernel security and bug fix update (Important)
Description:	The swiotlb functionality in the r8169 driver in drivers/net/r8169.c in the Linux kernel before 2.6.27.22 allows remote attackers to cause a denial of service (IOMMU space exhaustion and system crash) by using jumbo frames for a large amount of network traffic, as demonstrated by a flood ping.
Family:	unix	Class:	patch
Reference(s):	ELSA-2009:1548-01 CVE-2009-2695 CVE-2009-2908 CVE-2009-3228 CVE-2009-3286 CVE-2009-3547 CVE-2009-3613	Version:	29
Platform(s):	Oracle Linux 5	Product(s):	kernel
Definition Synopsis:
Oracle Linux 5.x rpm test kernel-headers is earlier than 0:2.6.18-164.6.1.el5 AND kernel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-doc is earlier than 0:2.6.18-164.6.1.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-debug is earlier than 0:2.6.18-164.6.1.el5 AND kernel-kdump is earlier than 0:2.6.18-164.6.1.el5 AND kernel-xen-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-debug-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-PAE is earlier than 0:2.6.18-164.6.1.el5 AND kernel-kdump-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-xen is earlier than 0:2.6.18-164.6.1.el5

Definition Id: oval:org.mitre.oval:def:28617

Oval ID:	oval:org.mitre.oval:def:28617
Title:	RHSA-2009:1106 -- kernel security and bug fix update (Important)
Description:	Updated kernel packages that fix several security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux operating system.
Family:	unix	Class:	patch
Reference(s):	RHSA-2009:1106 CESA-2009:1106-CentOS 5 CVE-2009-1072 CVE-2009-1192 CVE-2009-1439 CVE-2009-1630 CVE-2009-1633 CVE-2009-1758 CVE-2009-3238	Version:	3
Platform(s):	Red Hat Enterprise Linux 5 CentOS Linux 5	Product(s):	kernel
Definition Synopsis:
Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 AND The operating system installed on the system is CentOS Linux 5.x Packages match section kernel is earlier than 0:2.6.18-128.1.14.el5 AND kernel-PAE is earlier than 0:2.6.18-128.1.14.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-128.1.14.el5 AND kernel-debug is earlier than 0:2.6.18-128.1.14.el5 AND kernel-debug-devel is earlier than 0:2.6.18-128.1.14.el5 AND kernel-devel is earlier than 0:2.6.18-128.1.14.el5 AND kernel-doc is earlier than 0:2.6.18-128.1.14.el5 AND kernel-headers is earlier than 0:2.6.18-128.1.14.el5 AND kernel-xen is earlier than 0:2.6.18-128.1.14.el5 AND kernel-xen-devel is earlier than 0:2.6.18-128.1.14.el5

Definition Id: oval:org.mitre.oval:def:29153

Oval ID:	oval:org.mitre.oval:def:29153
Title:	RHSA-2009:1243 -- Red Hat Enterprise Linux 5.4 kernel security and bug fix update (Important)
Description:	Updated kernel packages that fix security issues, address several hundred bugs and add numerous enhancements are now available as part of the ongoing support and maintenance of Red Hat Enterprise Linux version 5. This is the fourth regular update. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux operating system.
Family:	unix	Class:	patch
Reference(s):	RHSA-2009:1243 CESA-2009:1243-CentOS 5 CVE-2009-0745 CVE-2009-0746 CVE-2009-0747 CVE-2009-0748 CVE-2009-2847 CVE-2009-2848	Version:	3
Platform(s):	Red Hat Enterprise Linux 5 CentOS Linux 5	Product(s):	kernel
Definition Synopsis:
Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 AND The operating system installed on the system is CentOS Linux 5.x Packages match section kernel is earlier than 0:2.6.18-164.el5 AND kernel-PAE is earlier than 0:2.6.18-164.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-164.el5 AND kernel-debug is earlier than 0:2.6.18-164.el5 AND kernel-debug-devel is earlier than 0:2.6.18-164.el5 AND kernel-devel is earlier than 0:2.6.18-164.el5 AND kernel-doc is earlier than 0:2.6.18-164.el5 AND kernel-headers is earlier than 0:2.6.18-164.el5 AND kernel-xen is earlier than 0:2.6.18-164.el5 AND kernel-xen-devel is earlier than 0:2.6.18-164.el5

Definition Id: oval:org.mitre.oval:def:29269

Oval ID:	oval:org.mitre.oval:def:29269
Title:	RHSA-2009:1548 -- kernel security and bug fix update (Important)
Description:	Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux operating system.
Family:	unix	Class:	patch
Reference(s):	RHSA-2009:1548 CESA-2009:1548-CentOS 5 CVE-2009-2695 CVE-2009-2908 CVE-2009-3228 CVE-2009-3286 CVE-2009-3547 CVE-2009-3613	Version:	3
Platform(s):	Red Hat Enterprise Linux 5 CentOS Linux 5	Product(s):	kernel
Definition Synopsis:
Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 AND The operating system installed on the system is CentOS Linux 5.x Packages match section kernel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-PAE is earlier than 0:2.6.18-164.6.1.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-debug is earlier than 0:2.6.18-164.6.1.el5 AND kernel-debug-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-doc is earlier than 0:2.6.18-164.6.1.el5 AND kernel-headers is earlier than 0:2.6.18-164.6.1.el5 AND kernel-xen is earlier than 0:2.6.18-164.6.1.el5 AND kernel-xen-devel is earlier than 0:2.6.18-164.6.1.el5

Definition Id: oval:org.mitre.oval:def:6757

Oval ID:	oval:org.mitre.oval:def:6757
Title:	Linux Kernel 2.4 and 2.6 Multiple Local Information Disclosure Vulnerabilities
Description:	The tc_fill_tclass function in net/sched/sch_api.c in the tc subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x before 2.6.31-rc9 does not initialize certain (1) tcm__pad1 and (2) tcm__pad2 structure members, which might allow local users to obtain sensitive information from kernel memory via unspecified vectors.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3228	Version:	5
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
VMware ESX Server 4.0 is installed AND Patch ESX400-201005401-SG is not installed

Definition Id: oval:org.mitre.oval:def:6763

Oval ID:	oval:org.mitre.oval:def:6763
Title:	Linux Kernel r128 Driver CCE Initialization NULL Pointer Dereference Denial of Service Vulnerability
Description:	The ATI Rage 128 (aka r128) driver in the Linux kernel before 2.6.31-git11 does not properly verify Concurrent Command Engine (CCE) state initialization, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly gain privileges via unspecified ioctl calls.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3620	Version:	5
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
VMware ESX Server 4.0 is installed AND Patch ESX400-201005401-SG is not installed

Definition Id: oval:org.mitre.oval:def:6895

Oval ID:	oval:org.mitre.oval:def:6895
Title:	Linux Kernel 'unix_stream_connect()' Local Denial of Service Vulnerability
Description:	net/unix/af_unix.c in the Linux kernel 2.6.31.4 and earlier allows local users to cause a denial of service (system hang) by creating an abstract-namespace AF_UNIX listening socket, performing a shutdown operation on this socket, and then performing a series of connect operations to this socket.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3621	Version:	5
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
VMware ESX Server 4.0 is installed AND Patch ESX400-201005401-SG is not installed

Definition Id: oval:org.mitre.oval:def:6992

Oval ID:	oval:org.mitre.oval:def:6992
Title:	Linux Kernel eCryptfs Lower Dentry Null Pointer Dereference Local Denial of Service Vulnerability
Description:	The d_delete function in fs/ecryptfs/inode.c in eCryptfs in the Linux kernel 2.6.31 allows local users to cause a denial of service (kernel OOPS) and possibly execute arbitrary code via unspecified vectors that cause a "negative dentry" and trigger a NULL pointer dereference, as demonstrated via a Mutt temporary directory in an eCryptfs mount.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-2908	Version:	5
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
VMware ESX Server 4.0 is installed AND Patch ESX400-201005401-SG is not installed

Definition Id: oval:org.mitre.oval:def:7359

Oval ID:	oval:org.mitre.oval:def:7359
Title:	Linux Kernel 64-bit Kernel Register Memory Leak Local Information Disclosure Vulnerability
Description:	arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.31.4 on the x86_64 platform does not clear certain kernel registers before a return to user mode, which allows local users to read register values from an earlier process by switching an ia32 process to 64-bit mode.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-2910	Version:	5
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
VMware ESX Server 4.0 is installed AND Patch ESX400-201005401-SG is not installed

Definition Id: oval:org.mitre.oval:def:7377

Oval ID:	oval:org.mitre.oval:def:7377
Title:	Linux Kernel '/drivers/net/r8169.c' Out-of-IOMMU Error Local Denial of Service Vulnerability
Description:	The swiotlb functionality in the r8169 driver in drivers/net/r8169.c in the Linux kernel before 2.6.27.22 allows remote attackers to cause a denial of service (IOMMU space exhaustion and system crash) by using jumbo frames for a large amount of network traffic, as demonstrated by a flood ping.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3613	Version:	5
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
VMware ESX Server 4.0 is installed AND Patch ESX400-201005401-SG is not installed

Definition Id: oval:org.mitre.oval:def:7527

Oval ID:	oval:org.mitre.oval:def:7527
Title:	Linux kernel 'O_EXCL' NFSv4 Privilege Escalation Vulnerability
Description:	NFSv4 in the Linux kernel 2.6.18, and possibly other versions, does not properly clean up an inode when an O_EXCL create fails, which causes files to be created with insecure settings such as setuid bits, and possibly allows local users to gain privileges, related to the execution of the do_open_permission function even when a create fails.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3286	Version:	5
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
VMware ESX Server 4.0 is installed AND Patch ESX400-201005401-SG is not installed

Definition Id: oval:org.mitre.oval:def:7557

Oval ID:	oval:org.mitre.oval:def:7557
Title:	Linux Kernel 2.4 and 2.6 Local Information Disclosure Vulnerability
Description:	The tcf_fill_node function in net/sched/cls_api.c in the netlink subsystem in the Linux kernel 2.6.x before 2.6.32-rc5, and 2.4.37.6 and earlier, does not initialize a certain tcm__pad2 structure member, which might allow local users to obtain sensitive information from kernel memory via unspecified vectors. NOTE: this issue exists because of an incomplete fix for CVE-2005-4881.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3612	Version:	5
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
VMware ESX Server 4.0 is installed AND Patch ESX400-201005401-SG is not installed

Definition Id: oval:org.mitre.oval:def:7608

Oval ID:	oval:org.mitre.oval:def:7608
Title:	Linux Kernel 'pipe.c' Local Privilege Escalation Vulnerability
Description:	Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting to open an anonymous pipe via a /proc/*/fd/ pathname.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3547	Version:	5
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
VMware ESX Server 4.0 is installed AND Patch ESX400-201005401-SG is not installed

Definition Id: oval:org.mitre.oval:def:7639

Oval ID:	oval:org.mitre.oval:def:7639
Title:	DSA-1915 linux-2.6 -- privilege escalation/denial of service/sensitive memory leak
Description:	Notice: Debian 5.0.4, the next point release of Debian "lenny", will include a new default value for the mmap_min_addr tunable. This change will add an additional safeguard against a class of security vulnerabilities known as "NULL pointer dereference" vulnerabilities, but it will need to be overridden when using certain applications. Additional information about this change, including instructions for making this change locally in advance of 5.0.4 (recommended), can be found at: http://wiki.debian.org/mmap_min_addr. Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, sensitive memory leak or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems: Eric Paris provided several fixes to increase the protection provided by the mmap_min_addr tunable against NULL pointer dereference vulnerabilities. Mark Smith discovered a memory leak in the appletalk implementation. When the appletalk and ipddp modules are loaded, but no ipddp "N" device is found, remote attackers can cause a denial of service by consuming large amounts of system memory. Loic Minier discovered an issue in the eCryptfs filesystem. A local user can cause a denial of service (kernel oops) by causing a dentry value to go negative. Arjan van de Ven discovered an issue in the AX.25 protocol implementation. A specially crafted call to setsockopt() can result in a denial of service (kernel oops). Jan Beulich discovered the existence of a sensitive kernel memory leak. Systems running the "amd64" kernel do not properly sanitise registers for 32-bit processes. Jiri Slaby fixed a sensitive memory leak issue in the ANSI/IEEE 802.2 LLC implementation. This is not exploitable in the Debian lenny kernel as root privileges are required to exploit this issue. Eric Dumazet fixed several sensitive memory leaks in the IrDA, X.25 PLP (Rose), NET/ROM, Acorn Econet/AUN, and Controller Area Network (CAN) implementations. Local users can exploit these issues to gain access to kernel memory. Eric Paris discovered an issue with the NFSv4 server implementation. When an O_EXCL create fails, files may be left with corrupted permissions, possibly granting unintentional privileges to other local users. Jan Kiszka noticed that the kvm_emulate_hypercall function in KVM does not prevent access to MMU hypercalls from ring 0, which allows local guest OS users to cause a denial of service (guest kernel crash) and read or write guest kernel memory. Alistair Strachan reported an issue in the r8169 driver. Remote users can cause a denial of service (IOMMU space exhaustion and system crash) by transmitting a large amount of jumbo frames.
Family:	unix	Class:	patch
Reference(s):	DSA-1915 CVE-2009-2695 CVE-2009-2903 CVE-2009-2908 CVE-2009-2909 CVE-2009-2910 CVE-2009-3001 CVE-2009-3002 CVE-2009-3286 CVE-2009-3290 CVE-2009-3613	Version:	3
Platform(s):	Debian GNU/Linux 5.0	Product(s):	linux-2.6
Definition Synopsis:
Debian GNU/Linux 5.0 is installed Architecture section Architecture independent section Installed architecture is all AND Packages section linux-patch-debian-2.6.26 is earlier than 2.6.26-19lenny1 AND linux-support-2.6.26-2 is earlier than 2.6.26-19lenny1 AND linux-doc-2.6.26 is earlier than 2.6.26-19lenny1 AND linux-tree-2.6.26 is earlier than 2.6.26-19lenny1 AND linux-source-2.6.26 is earlier than 2.6.26-19lenny1 AND linux-manual-2.6.26 is earlier than 2.6.26-19lenny1 OR Architecture dependent section Installed architecture is s390 AND Packages section linux-headers-2.6.26-2-all is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-vserver-s390x is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-s390 is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-common-vserver is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-s390-tape is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-all-s390 is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-s390 is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-vserver-s390x is earlier than 2.6.26-19lenny1 AND linux-libc-dev is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-s390x is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-common is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-s390x is earlier than 2.6.26-19lenny1 OR Architecture dependent section Installed architecture is amd64 AND Packages section xen-linux-system-2.6.26-2-xen-amd64 is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-all is earlier than 2.6.26-19lenny1 AND linux-modules-2.6.26-2-xen-amd64 is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-openvz-amd64 is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-common-vserver is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-openvz-amd64 is earlier than 2.6.26-19lenny1 AND linux-libc-dev is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-common-openvz is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-vserver-amd64 is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-all-amd64 is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-xen-amd64 is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-common-xen is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-amd64 is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-xen-amd64 is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-amd64 is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-common is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-vserver-amd64 is earlier than 2.6.26-19lenny1 OR Supported platform section Installed architecture is hppa AND Packages section linux-headers-2.6.26-2-all is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-parisc is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-parisc64 is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-parisc is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-common is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-all-hppa is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-parisc-smp is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-parisc64-smp is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-parisc64 is earlier than 2.6.26-19lenny1 AND linux-libc-dev is earlier than 2.6.26-19lenny1 AND linux-image-2.6.26-2-parisc64-smp is earlier than 2.6.26-19lenny1 AND linux-headers-2.6.26-2-parisc-smp is earlier than 2.6.26-19lenny1

Definition Id: oval:org.mitre.oval:def:7937

Oval ID:	oval:org.mitre.oval:def:7937
Title:	DSA-1928 linux-2.6.24 -- privilege escalation/denial of service/sensitive memory leak
Description:	Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, sensitive memory leak or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems: Michael Buesch noticed a typing issue in the eisa-eeprom driver for the hppa architecture. Local users could exploit this issue to gain access to restricted memory. Ulrich Drepper noticed an issue in the do_sigalstack routine on 64-bit systems. This issue allows local users to gain access to potentially sensitive memory on the kernel stack. Eric Dumazet discovered an issue in the execve path, where the clear_child_tid variable was not being properly cleared. Local users could exploit this issue to cause a denial of service (memory corruption). Neil Brown discovered an issue in the sysfs interface to md devices. When md arrays are not active, local users can exploit this vulnerability to cause a denial of service (oops). Mark Smith discovered a memory leak in the appletalk implementation. When the appletalk and ipddp modules are loaded, but no ipddp"N" device is found, remote attackers can cause a denial of service by consuming large amounts of system memory. Loic Minier discovered an issue in the eCryptfs filesystem. A local user can cause a denial of service (kernel oops) by causing a dentry value to go negative. Arjan van de Ven discovered an issue in the AX.25 protocol implementation. A specially crafted call to setsockopt() can result in a denial of service (kernel oops). Jan Beulich discovered the existence of a sensitive kernel memory leak. Systems running the "amd64" kernel do not properly sanitise registers for 32-bit processes. Jiri Slaby fixed a sensitive memory leak issue in the ANSI/IEEE 802.2 LLC implementation. This is not exploitable in the Debian lenny kernel as root privileges are required to exploit this issue. Eric Dumazet fixed several sensitive memory leaks in the IrDA, X.25 PLP (Rose), NET/ROM, Acorn Econet/AUN, and Controller Area Network (CAN) implementations. Local users can exploit these issues to gain access to kernel memory. Eric Dumazet reported an instance of uninitialised kernel memory in the network packet scheduler. Local users may be able to exploit this issue to read the contents of sensitive kernel memory. CVE-2009-3238 Linus Torvalds provided a change to the get_random_int() function to increase its randomness. Eric Paris discovered an issue with the NFSv4 server implementation. When an O_EXCL create fails, files may be left with corrupted permissions, possibly granting unintentional privileges to other local users. Earl Chew discovered a NULL pointer dereference issue in the pipe_rdwr_open function which can be used by local users to gain elevated privileges. Jiri Pirko discovered a typo in the initialisation of a structure in the netlink subsystem that may allow local users to gain access to sensitive kernel memory. Alistair Strachan reported an issue in the r8169 driver. Remote users can cause a denial of service (IOMMU space exhaustion and system crash) by transmitting a large amount of jumbo frames. Ben Hutchings discovered an issue in the DRM manager for ATI Rage 128 graphics adapters. Local users may be able to exploit this vulnerability to cause a denial of service (NULL pointer dereference). Tomoki Sekiyama discovered a deadlock condition in the UNIX domain socket implementation. Local users can exploit this vulnerability to cause a denial of service (system hang).
Family:	unix	Class:	patch
Reference(s):	DSA-1928 CVE-2009-2846 CVE-2009-2847 CVE-2009-2848 CVE-2009-2849 CVE-2009-2903 CVE-2009-2908 CVE-2009-2909 CVE-2009-2910 CVE-2009-3001 CVE-2009-3002 CVE-2009-3228 CVE-2009-3238 CVE-2009-3286 CVE-2009-3547 CVE-2009-3612 CVE-2009-3613 CVE-2009-3620 CVE-2009-3621	Version:	3
Platform(s):	Debian GNU/Linux 4.0	Product(s):	linux-2.6.24
Definition Synopsis:
Debian GNU/Linux 4.0 is installed. Architecture section Architecture independent section Installed architecture is all AND Packages section linux-patch-debian-2.6.24 is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-support-2.6.24-etchnhalf.1 is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-doc-2.6.24 is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-tree-2.6.24 is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-source-2.6.24 is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-manual-2.6.24 is earlier than 2.6.24-6~etchnhalf.9etch1 OR Architecture dependent section Supported architectures section Installed architecture is amd64 AND Installed architecture is i386 AND Packages section linux-headers-2.6.24-etchnhalf.1-amd64 is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-headers-2.6.24-etchnhalf.1-common is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-image-2.6.24-etchnhalf.1-amd64 is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-headers-2.6.24-etchnhalf.1-all is earlier than 2.6.24-6~etchnhalf.9etch1 OR Architecture dependent section Installed architecture is amd64 AND linux-headers-2.6.24-etchnhalf.1-all-amd64 is earlier than 2.6.24-6~etchnhalf.9etch1 OR Supported platform section Installed architecture is hppa AND Packages section linux-image-2.6.24-etchnhalf.1-parisc64 is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-image-2.6.24-etchnhalf.1-parisc-smp is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-headers-2.6.24-etchnhalf.1-parisc-smp is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-headers-2.6.24-etchnhalf.1-parisc is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-image-2.6.24-etchnhalf.1-parisc is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-headers-2.6.24-etchnhalf.1-all-hppa is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-image-2.6.24-etchnhalf.1-parisc64-smp is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-headers-2.6.24-etchnhalf.1-parisc64-smp is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-headers-2.6.24-etchnhalf.1-all is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-headers-2.6.24-etchnhalf.1-common is earlier than 2.6.24-6~etchnhalf.9etch1 AND linux-headers-2.6.24-etchnhalf.1-parisc64 is earlier than 2.6.24-6~etchnhalf.9etch1

Definition Id: oval:org.mitre.oval:def:8168

Oval ID:	oval:org.mitre.oval:def:8168
Title:	DSA-1872 linux-2.6 -- denial of service/privilege escalation/information leak
Description:	Several vulnerabilities have been discovered in the Linux kernel that may lead to denial of service, privilege escalation or a leak of sensitive memory. The Common Vulnerabilities and Exposures project identifies the following problems: Herbert Xu discovered an issue in the way UDP tracks corking status that could allow local users to cause a denial of service (system crash). Tavis Ormandy and Julien Tinnes discovered that this issue could also be used by local users to gain elevated privileges. Michael Buesch noticed a typing issue in the eisa-eeprom driver for the hppa architecture. Local users could exploit this issue to gain access to restricted memory. Ulrich Drepper noticed an issue in the do_sigalstack routine on 64-bit systems. This issue allows local users to gain access to potentially sensitive memory on the kernel stack. Eric Dumazet discovered an issue in the execve path, where the clear_child_tid variable was not being properly cleared. Local users could exploit this issue to cause a denial of service (memory corruption). Neil Brown discovered an issue in the sysfs interface to md devices. When md arrays are not active, local users can exploit this vulnerability to cause a denial of service (oops).
Family:	unix	Class:	patch
Reference(s):	DSA-1872 CVE-2009-2698 CVE-2009-2846 CVE-2009-2847 CVE-2009-2848 CVE-2009-2849	Version:	5
Platform(s):	Debian GNU/Linux 4.0	Product(s):	linux-2.6
Definition Synopsis:
Debian GNU/Linux 4.0 is installed. Architecture section Architecture independent section Installed architecture is all AND Packages section linux-support-2.6.18-6 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-patch-debian-2.6.18 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-source-2.6.18 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-manual-2.6.18 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-tree-2.6.18 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-doc-2.6.18 is earlier than 2.6.18.dfsg.1-24etch4 OR Architecture dependent section Installed architecture is s390 AND Packages section linux-headers-2.6.18-6-vserver-s390x is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-s390-tape is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-all is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-s390x is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-vserver-s390x is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-s390 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-vserver is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-all-s390 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-s390x is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-s390 is earlier than 2.6.18.dfsg.1-24etch4 OR Architecture dependent section Installed architecture is amd64 AND Packages section linux-image-2.6.18-6-xen-amd64 is earlier than 2.6.18.dfsg.1-24etch4 AND fai-kernels is earlier than 1.17+etch.24etch4 AND linux-headers-2.6.18-6-all is earlier than 2.6.18.dfsg.1-24etch4 AND xen-linux-system-2.6.18-6-xen-amd64 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-amd64 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-modules-2.6.18-6-xen-vserver-amd64 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-xen-vserver-amd64 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-xen-amd64 is earlier than 2.6.18.dfsg.1-24etch4 AND xen-linux-system-2.6.18-6-xen-vserver-amd64 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-amd64 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-xen is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-xen-vserver-amd64 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-vserver is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-vserver-amd64 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-all-amd64 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-modules-2.6.18-6-xen-amd64 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-xen-vserver is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-vserver-amd64 is earlier than 2.6.18.dfsg.1-24etch4 OR Supported platform section Installed architecture is hppa AND Packages section linux-headers-2.6.18-6-all is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-parisc64 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-parisc is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-all-hppa is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-parisc64-smp is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6-parisc-smp is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-parisc64-smp is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-parisc64 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-headers-2.6.18-6 is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-parisc is earlier than 2.6.18.dfsg.1-24etch4 AND linux-image-2.6.18-6-parisc-smp is earlier than 2.6.18.dfsg.1-24etch4

Definition Id: oval:org.mitre.oval:def:8405

Oval ID:	oval:org.mitre.oval:def:8405
Title:	VMware kernel do_sigaltstack function vulnerability
Description:	The do_sigaltstack function in kernel/signal.c in Linux kernel 2.4 through 2.4.37 and 2.6 before 2.6.31-rc5, when running on 64-bit systems, does not clear certain padding bytes from a structure, which allows local users to obtain sensitive information from the kernel stack via the sigaltstack function.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-2847	Version:	4
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
VMware ESX Server 4.0 is installed AND Patch ESX400-200911201-UG is not installed

Definition Id: oval:org.mitre.oval:def:8598

Oval ID:	oval:org.mitre.oval:def:8598
Title:	VMware kernel execve function vulnerability
Description:	The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current->clear_child_tid pointer, which allows local users to cause a denial of service (memory corruption) or possibly gain privileges via a clone system call with CLONE_CHILD_SETTID or CLONE_CHILD_CLEARTID enabled, which is not properly handled during thread creation and exit.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-2848	Version:	4
Platform(s):	VMWare ESX Server 4.0	Product(s):
Definition Synopsis:
VMware ESX Server 4.0 is installed AND Patch ESX400-200911201-UG is not installed

Definition Id: oval:org.mitre.oval:def:9327

Oval ID:	oval:org.mitre.oval:def:9327
Title:	Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting to open an anonymous pipe via a /proc/*/fd/ pathname.
Description:	Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting to open an anonymous pipe via a /proc/*/fd/ pathname.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3547	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND Configuration section kernel-BOOT is earlier than 0:2.4.21-63.EL AND kernel-unsupported is earlier than 0:2.4.21-63.EL AND kernel-smp-unsupported is earlier than 0:2.4.21-63.EL AND kernel-hugemem-unsupported is earlier than 0:2.4.21-63.EL AND kernel-hugemem is earlier than 0:2.4.21-63.EL AND kernel is earlier than 0:2.4.21-63.EL AND kernel-source is earlier than 0:2.4.21-63.EL AND kernel-doc is earlier than 0:2.4.21-63.EL AND kernel-smp is earlier than 0:2.4.21-63.EL OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-xenU is earlier than 0:2.6.9-89.0.16.EL AND kernel-hugemem is earlier than 0:2.6.9-89.0.16.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-89.0.16.EL AND kernel-xenU-devel is earlier than 0:2.6.9-89.0.16.EL AND kernel-smp-devel is earlier than 0:2.6.9-89.0.16.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-89.0.16.EL AND kernel is earlier than 0:2.6.9-89.0.16.EL AND kernel-devel is earlier than 0:2.6.9-89.0.16.EL AND kernel-doc is earlier than 0:2.6.9-89.0.16.EL AND kernel-largesmp is earlier than 0:2.6.9-89.0.16.EL AND kernel-smp is earlier than 0:2.6.9-89.0.16.EL OR OS Section: RHEL5, CentOS5, Oracle Linux 5 RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section kernel-kdump is earlier than 0:2.6.18-164.6.1.el5 AND kernel-debug is earlier than 0:2.6.18-164.6.1.el5 AND kernel-xen is earlier than 0:2.6.18-164.6.1.el5 AND kernel-headers is earlier than 0:2.6.18-164.6.1.el5 AND kernel-kdump-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-xen-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-PAE is earlier than 0:2.6.18-164.6.1.el5 AND kernel-debug-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-doc is earlier than 0:2.6.18-164.6.1.el5

Definition Id: oval:org.mitre.oval:def:9409

Oval ID:	oval:org.mitre.oval:def:9409
Title:	The tc_fill_tclass function in net/sched/sch_api.c in the tc subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x before 2.6.31-rc9 does not initialize certain (1) tcm__pad1 and (2) tcm__pad2 structure members, which might allow local users to obtain sensitive information from kernel memory via unspecified vectors.
Description:	The tc_fill_tclass function in net/sched/sch_api.c in the tc subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x before 2.6.31-rc9 does not initialize certain (1) tcm__pad1 and (2) tcm__pad2 structure members, which might allow local users to obtain sensitive information from kernel memory via unspecified vectors.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3228	Version:	5
Platform(s):	Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-xenU is earlier than 0:2.6.9-89.0.15.EL AND kernel-hugemem is earlier than 0:2.6.9-89.0.15.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-89.0.15.EL AND kernel-xenU-devel is earlier than 0:2.6.9-89.0.15.EL AND kernel-smp-devel is earlier than 0:2.6.9-89.0.15.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-89.0.15.EL AND kernel is earlier than 0:2.6.9-89.0.15.EL AND kernel-devel is earlier than 0:2.6.9-89.0.15.EL AND kernel-doc is earlier than 0:2.6.9-89.0.15.EL AND kernel-largesmp is earlier than 0:2.6.9-89.0.15.EL AND kernel-smp is earlier than 0:2.6.9-89.0.15.EL OR OS Section: RHEL5, CentOS5, Oracle Linux 5 RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section kernel-kdump is earlier than 0:2.6.18-164.6.1.el5 AND kernel-debug is earlier than 0:2.6.18-164.6.1.el5 AND kernel-xen is earlier than 0:2.6.18-164.6.1.el5 AND kernel-headers is earlier than 0:2.6.18-164.6.1.el5 AND kernel-kdump-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-xen-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-PAE is earlier than 0:2.6.18-164.6.1.el5 AND kernel-debug-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-doc is earlier than 0:2.6.18-164.6.1.el5

Definition Id: oval:org.mitre.oval:def:9757

Oval ID:	oval:org.mitre.oval:def:9757
Title:	NFSv4 in the Linux kernel 2.6.18, and possibly other versions, does not properly clean up an inode when an O_EXCL create fails, which causes files to be created with insecure settings such as setuid bits, and possibly allows local users to gain privileges, related to the execution of the do_open_permission function even when a create fails.
Description:	NFSv4 in the Linux kernel 2.6.18, and possibly other versions, does not properly clean up an inode when an O_EXCL create fails, which causes files to be created with insecure settings such as setuid bits, and possibly allows local users to gain privileges, related to the execution of the do_open_permission function even when a create fails.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3286	Version:	5
Platform(s):	Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section kernel-kdump is earlier than 0:2.6.18-164.6.1.el5 AND kernel-debug is earlier than 0:2.6.18-164.6.1.el5 AND kernel-xen is earlier than 0:2.6.18-164.6.1.el5 AND kernel-headers is earlier than 0:2.6.18-164.6.1.el5 AND kernel-kdump-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-xen-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-PAE is earlier than 0:2.6.18-164.6.1.el5 AND kernel-debug-devel is earlier than 0:2.6.18-164.6.1.el5 AND kernel-doc is earlier than 0:2.6.18-164.6.1.el5

Definition Id: oval:org.mitre.oval:def:9766

Oval ID:	oval:org.mitre.oval:def:9766
Title:	The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current-clear_child_tid pointer, which allows local users to cause a denial of service (memory corruption) or possibly gain privileges via a clone system call with CLONE_CHILD_SETTID or CLONE_CHILD_CLEARTID enabled, which is not properly handled during thread creation and exit.
Description:	The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current->clear_child_tid pointer, which allows local users to cause a denial of service (memory corruption) or possibly gain privileges via a clone system call with CLONE_CHILD_SETTID or CLONE_CHILD_CLEARTID enabled, which is not properly handled during thread creation and exit.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-2848	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND Configuration section kernel-BOOT is earlier than 0:2.4.21-63.EL AND kernel-unsupported is earlier than 0:2.4.21-63.EL AND kernel-smp-unsupported is earlier than 0:2.4.21-63.EL AND kernel-hugemem-unsupported is earlier than 0:2.4.21-63.EL AND kernel-hugemem is earlier than 0:2.4.21-63.EL AND kernel is earlier than 0:2.4.21-63.EL AND kernel-source is earlier than 0:2.4.21-63.EL AND kernel-doc is earlier than 0:2.4.21-63.EL AND kernel-smp is earlier than 0:2.4.21-63.EL OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-xenU is earlier than 0:2.6.9-89.0.11.EL AND kernel-hugemem is earlier than 0:2.6.9-89.0.11.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-89.0.11.EL AND kernel-xenU-devel is earlier than 0:2.6.9-89.0.11.EL AND kernel-smp-devel is earlier than 0:2.6.9-89.0.11.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-89.0.11.EL AND kernel is earlier than 0:2.6.9-89.0.11.EL AND kernel-devel is earlier than 0:2.6.9-89.0.11.EL AND kernel-doc is earlier than 0:2.6.9-89.0.11.EL AND kernel-largesmp is earlier than 0:2.6.9-89.0.11.EL AND kernel-smp is earlier than 0:2.6.9-89.0.11.EL OR OS Section: RHEL5, CentOS5, Oracle Linux 5 RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section kernel-kdump is earlier than 0:2.6.18-164.el5 AND kernel-debug is earlier than 0:2.6.18-164.el5 AND kernel-xen is earlier than 0:2.6.18-164.el5 AND kernel-headers is earlier than 0:2.6.18-164.el5 AND kernel-kdump-devel is earlier than 0:2.6.18-164.el5 AND kernel-xen-devel is earlier than 0:2.6.18-164.el5 AND kernel is earlier than 0:2.6.18-164.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-164.el5 AND kernel-devel is earlier than 0:2.6.18-164.el5 AND kernel-PAE is earlier than 0:2.6.18-164.el5 AND kernel-debug-devel is earlier than 0:2.6.18-164.el5 AND kernel-doc is earlier than 0:2.6.18-164.el5

Definition Id: oval:org.mitre.oval:def:9891

Oval ID:	oval:org.mitre.oval:def:9891
Title:	The ATI Rage 128 (aka r128) driver in the Linux kernel before 2.6.31-git11 does not properly verify Concurrent Command Engine (CCE) state initialization, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly gain privileges via unspecified ioctl calls.
Description:	The ATI Rage 128 (aka r128) driver in the Linux kernel before 2.6.31-git11 does not properly verify Concurrent Command Engine (CCE) state initialization, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly gain privileges via unspecified ioctl calls.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3620	Version:	5
Platform(s):	Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-xenU is earlier than 0:2.6.9-89.0.18.EL AND kernel-hugemem is earlier than 0:2.6.9-89.0.18.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-89.0.18.EL AND kernel-xenU-devel is earlier than 0:2.6.9-89.0.18.EL AND kernel-smp-devel is earlier than 0:2.6.9-89.0.18.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-89.0.18.EL AND kernel is earlier than 0:2.6.9-89.0.18.EL AND kernel-devel is earlier than 0:2.6.9-89.0.18.EL AND kernel-doc is earlier than 0:2.6.9-89.0.18.EL AND kernel-largesmp is earlier than 0:2.6.9-89.0.18.EL AND kernel-smp is earlier than 0:2.6.9-89.0.18.EL OR OS Section: RHEL5, CentOS5, Oracle Linux 5 RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section kernel-kdump is earlier than 0:2.6.18-164.9.1.el5 AND kernel-debug is earlier than 0:2.6.18-164.9.1.el5 AND kernel-xen is earlier than 0:2.6.18-164.9.1.el5 AND kernel-headers is earlier than 0:2.6.18-164.9.1.el5 AND kernel-kdump-devel is earlier than 0:2.6.18-164.9.1.el5 AND kernel-xen-devel is earlier than 0:2.6.18-164.9.1.el5 AND kernel is earlier than 0:2.6.18-164.9.1.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-164.9.1.el5 AND kernel-devel is earlier than 0:2.6.18-164.9.1.el5 AND kernel-PAE is earlier than 0:2.6.18-164.9.1.el5 AND kernel-debug-devel is earlier than 0:2.6.18-164.9.1.el5 AND kernel-doc is earlier than 0:2.6.18-164.9.1.el5

Definition Id: oval:org.mitre.oval:def:9921

Oval ID:	oval:org.mitre.oval:def:9921
Title:	net/unix/af_unix.c in the Linux kernel 2.6.31.4 and earlier allows local users to cause a denial of service (system hang) by creating an abstract-namespace AF_UNIX listening socket, performing a shutdown operation on this socket, and then performing a series of connect operations to this socket.
Description:	net/unix/af_unix.c in the Linux kernel 2.6.31.4 and earlier allows local users to cause a denial of service (system hang) by creating an abstract-namespace AF_UNIX listening socket, performing a shutdown operation on this socket, and then performing a series of connect operations to this socket.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3621	Version:	5
Platform(s):	Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-xenU is earlier than 0:2.6.9-89.0.18.EL AND kernel-hugemem is earlier than 0:2.6.9-89.0.18.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-89.0.18.EL AND kernel-xenU-devel is earlier than 0:2.6.9-89.0.18.EL AND kernel-smp-devel is earlier than 0:2.6.9-89.0.18.EL AND kernel-largesmp-devel is earlier than 0:2.6.9-89.0.18.EL AND kernel is earlier than 0:2.6.9-89.0.18.EL AND kernel-devel is earlier than 0:2.6.9-89.0.18.EL AND kernel-doc is earlier than 0:2.6.9-89.0.18.EL AND kernel-largesmp is earlier than 0:2.6.9-89.0.18.EL AND kernel-smp is earlier than 0:2.6.9-89.0.18.EL OR OS Section: RHEL5, CentOS5, Oracle Linux 5 RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section kernel-kdump is earlier than 0:2.6.18-164.9.1.el5 AND kernel-debug is earlier than 0:2.6.18-164.9.1.el5 AND kernel-xen is earlier than 0:2.6.18-164.9.1.el5 AND kernel-headers is earlier than 0:2.6.18-164.9.1.el5 AND kernel-kdump-devel is earlier than 0:2.6.18-164.9.1.el5 AND kernel-xen-devel is earlier than 0:2.6.18-164.9.1.el5 AND kernel is earlier than 0:2.6.18-164.9.1.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-164.9.1.el5 AND kernel-devel is earlier than 0:2.6.18-164.9.1.el5 AND kernel-PAE is earlier than 0:2.6.18-164.9.1.el5 AND kernel-debug-devel is earlier than 0:2.6.18-164.9.1.el5 AND kernel-doc is earlier than 0:2.6.18-164.9.1.el5

CPE : Common Platform Enumeration

Type	Description	Count
Application	Linux Kernel cpe:2.3:a:linux:kernel:2.6.25.15:::::::* cpe:2.3:a:linux:kernel:2.6.24.7:::::::*	2
Application	Linux Linux Kernel cpe:2.3:a:linux:linux_kernel::::::::	1
Application	Redhat Mrg Realtime cpe:2.3:a:redhat:mrg_realtime:1.0:::::::*	1
Application	Redhat Virtualization cpe:2.3:a:redhat:virtualization:5:::::::*	1
Application	Suse Linux Enterprise Debuginfo cpe:2.3:a:suse:linux_enterprise_debuginfo:10:sp2:::::: cpe:2.3:a:suse:linux_enterprise_debuginfo:10:sp3::::::	2
Application	Vmware Vma cpe:2.3:a:vmware:vma:4.0:::::::*	1
Os	Canonical Ubuntu Linux cpe:2.3:o:canonical:ubuntu_linux:9.10:::::::* cpe:2.3:o:canonical:ubuntu_linux:9.04:::::::* cpe:2.3:o:canonical:ubuntu_linux:8.10:::::::* cpe:2.3:o:canonical:ubuntu_linux:8.04:::::::* cpe:2.3:o:canonical:ubuntu_linux:8.04::::-::: cpe:2.3:o:canonical:ubuntu_linux:8.04::::lts::: cpe:2.3:o:canonical:ubuntu_linux:6.06:::::::* cpe:2.3:o:canonical:ubuntu_linux:6.06::::lts:::	8
Os	Fedoraproject Fedora cpe:2.3:o:fedoraproject:fedora:11:::::::* cpe:2.3:o:fedoraproject:fedora:10:::::::*	2
Os	Linux Linux Kernel cpe:2.3:o:linux:linux_kernel:2.6.9:::::::* cpe:2.3:o:linux:linux_kernel:2.6.9:2.6.20:::::: cpe:2.3:o:linux:linux_kernel:2.6.9:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.9:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.9:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.9:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::power4::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::amd64_k8::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::686::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::powerpc::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::amd64::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::power3_smp::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::k7::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::amd64_k8_smp::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::686_smp::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::amd64_xeon::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::k7_smp::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::386::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::powerpc_smp::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::power4_smp::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1.5::power3::::: cpe:2.3:o:linux:linux_kernel:2.6.8.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.8:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.8:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.8:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.8:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.7:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.7:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.7:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.7:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.6:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.6:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.6:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.6:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.5:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.5:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.5:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.5:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.4:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.4:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.4:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.4:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.32:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.32:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.32:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.32:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.32:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.32:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.31.9:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31.8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31.14:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31.13:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31.12:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31.11:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31.10:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31-rc9:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31-rc8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31-rc7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31-rc6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31-rc5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31-rc4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31-rc3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31-rc2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31-rc10:::::::* cpe:2.3:o:linux:linux_kernel:2.6.31:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.31:rc7:::::: cpe:2.3:o:linux:linux_kernel:2.6.31:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.31:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.31:rc8:::::: cpe:2.3:o:linux:linux_kernel:2.6.31:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.31:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.31:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.31:rc9:::::: cpe:2.3:o:linux:linux_kernel:2.6.31:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.30.y:::::::* cpe:2.3:o:linux:linux_kernel:2.6.30.9:::::::* cpe:2.3:o:linux:linux_kernel:2.6.30.8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.30.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.30.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.30.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.30.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.30.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.30.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.30.10:::::::* cpe:2.3:o:linux:linux_kernel:2.6.30.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.30:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.30:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.30:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.30:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.30:rc7-git6:::::: cpe:2.3:o:linux:linux_kernel:2.6.30:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.30:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.30:rc4:x86_32:::::* cpe:2.3:o:linux:linux_kernel:2.6.30:rc7:::::: cpe:2.3:o:linux:linux_kernel:2.6.30:rc8:::::: cpe:2.3:o:linux:linux_kernel:2.6.30:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.3:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.3:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.3:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.3:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.3:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.29.rc2-git1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.29.rc2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.29.rc1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.29.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.29.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.29.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.29.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.29.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.29.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.29:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.29:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.29:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.29:rc2_git7:::::: cpe:2.3:o:linux:linux_kernel:2.6.29:git1:::::: cpe:2.3:o:linux:linux_kernel:2.6.29:rc8-kk:::::: cpe:2.3:o:linux:linux_kernel:2.6.29:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.29:rc8:::::: cpe:2.3:o:linux:linux_kernel:2.6.29:rc7:::::: cpe:2.3:o:linux:linux_kernel:2.6.29:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.29:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.29:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.28.9:::::::* cpe:2.3:o:linux:linux_kernel:2.6.28.8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.28.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.28.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.28.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.28.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.28.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.28.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.28.10:::::::* cpe:2.3:o:linux:linux_kernel:2.6.28.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.28:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.28:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.28:rc7:::::: cpe:2.3:o:linux:linux_kernel:2.6.28:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.28:git7:::::: cpe:2.3:o:linux:linux_kernel:2.6.28:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.28:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.28:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.28:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.28:rc9:::::: cpe:2.3:o:linux:linux_kernel:2.6.28:rc8:::::: cpe:2.3:o:linux:linux_kernel:2.6.27.9:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.62:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.61:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.60:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.59:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.58:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.57:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.56:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.55:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.54:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.53:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.52:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.51:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.50:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.49:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.48:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.47:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.46:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.45:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.44:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.43:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.42:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.41:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.40:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.39:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.38:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.37:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.36:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.35:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.34:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.33:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.32:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.31:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.30:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.29:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.28:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.27:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.26:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.25:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.24:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.23:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.22:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.21:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.20:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.19:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.18:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.17:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.16:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.15:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.14:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.13:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.12:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.11:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.10:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.27:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.27:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.27:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.27:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.27:rc9:::::: cpe:2.3:o:linux:linux_kernel:2.6.27:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.27:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.27:rc7:::::: cpe:2.3:o:linux:linux_kernel:2.6.27:rc8:::::: cpe:2.3:o:linux:linux_kernel:2.6.27:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.26.8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.26.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.26.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.26.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.26.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.26.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.26.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.26.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.26:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.26:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.26:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.26:rc8:::::: cpe:2.3:o:linux:linux_kernel:2.6.26:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.26:rc7:::::: cpe:2.3:o:linux:linux_kernel:2.6.26:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.26:rc9:::::: cpe:2.3:o:linux:linux_kernel:2.6.26:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.26:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.25.9::x86_64::::: cpe:2.3:o:linux:linux_kernel:2.6.25.9:::::::* cpe:2.3:o:linux:linux_kernel:2.6.25.8::x86_64::::: cpe:2.3:o:linux:linux_kernel:2.6.25.8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.25.7::x86_64::::: cpe:2.3:o:linux:linux_kernel:2.6.25.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.25.6::x86_64::::: cpe:2.3:o:linux:linux_kernel:2.6.25.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.25.5::x86_64::::: cpe:2.3:o:linux:linux_kernel:2.6.25.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.25.4::x86_64::::: cpe:2.3:o:linux:linux_kernel:2.6.25.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.25.3::x86_64::::: cpe:2.3:o:linux:linux_kernel:2.6.25.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.25.20:::::::* cpe:2.3:o:linux:linux_kernel:2.6.25.20:-:%7E%7E%7E%7Ex86%7E:::::* cpe:2.3:o:linux:linux_kernel:2.6.25.20:-:~~~~x86~:::::* cpe:2.3:o:linux:linux_kernel:2.6.25.2::x86_64::::: cpe:2.3:o:linux:linux_kernel:2.6.25.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.25.19:::::::* cpe:2.3:o:linux:linux_kernel:2.6.25.18:::::::* cpe:2.3:o:linux:linux_kernel:2.6.25.17:::::::* cpe:2.3:o:linux:linux_kernel:2.6.25.16:::::::* cpe:2.3:o:linux:linux_kernel:2.6.25.15:::::::* cpe:2.3:o:linux:linux_kernel:2.6.25.14:::::::* cpe:2.3:o:linux:linux_kernel:2.6.25.13:::::::* cpe:2.3:o:linux:linux_kernel:2.6.25.12::x86_64::::: cpe:2.3:o:linux:linux_kernel:2.6.25.12:::::::* cpe:2.3:o:linux:linux_kernel:2.6.25.11::x86_64::::: cpe:2.3:o:linux:linux_kernel:2.6.25.11:::::::* cpe:2.3:o:linux:linux_kernel:2.6.25.10::x86_64::::: cpe:2.3:o:linux:linux_kernel:2.6.25.10:::::::* cpe:2.3:o:linux:linux_kernel:2.6.25.1::x86_64::::: cpe:2.3:o:linux:linux_kernel:2.6.25.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.25::x86_64::::: cpe:2.3:o:linux:linux_kernel:2.6.25:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.25:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.25:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.25:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.25:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.25:rc9:::::: cpe:2.3:o:linux:linux_kernel:2.6.25:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.25:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.25:rc7:::::: cpe:2.3:o:linux:linux_kernel:2.6.25:rc8:::::: cpe:2.3:o:linux:linux_kernel:2.6.24.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.24.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.24.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.24.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.24.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.24.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.24.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.24_rc5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.24_rc4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.24_rc1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.24:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.24:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.24:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.24:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.24:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.24:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.24:rc7:::::: cpe:2.3:o:linux:linux_kernel:2.6.24:rc8:::::: cpe:2.3:o:linux:linux_kernel:2.6.24:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.23.9:::::::* cpe:2.3:o:linux:linux_kernel:2.6.23.8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.23.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.23.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.23.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.23.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.23.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.23.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.23.17:::::::* cpe:2.3:o:linux:linux_kernel:2.6.23.16:::::::* cpe:2.3:o:linux:linux_kernel:2.6.23.15:::::::* cpe:2.3:o:linux:linux_kernel:2.6.23.14:::::::* cpe:2.3:o:linux:linux_kernel:2.6.23.13:::::::* cpe:2.3:o:linux:linux_kernel:2.6.23.12:::::::* cpe:2.3:o:linux:linux_kernel:2.6.23.11:::::::* cpe:2.3:o:linux:linux_kernel:2.6.23.10:::::::* cpe:2.3:o:linux:linux_kernel:2.6.23.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.23_rc1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.23:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.23:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.23:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.23:rc8:::::: cpe:2.3:o:linux:linux_kernel:2.6.23:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.23:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.23:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.23:rc9:::::: cpe:2.3:o:linux:linux_kernel:2.6.23:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.23:rc7:::::: cpe:2.3:o:linux:linux_kernel:2.6.22.9:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.6::x86_64::::: cpe:2.3:o:linux:linux_kernel:2.6.22.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.22:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.21:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.20:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.19:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.18:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.17:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.16:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.15:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.14:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.13:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.12:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.11:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.10:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22_rc7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22_rc1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.22:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.22:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.22:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.22:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.22:rc7:::::: cpe:2.3:o:linux:linux_kernel:2.6.22:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.22:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.22:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.21.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.21.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.21.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.21.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.21.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.21.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.21.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.21:git1:::::: cpe:2.3:o:linux:linux_kernel:2.6.21:git4:::::: cpe:2.3:o:linux:linux_kernel:2.6.21:git5:::::: cpe:2.3:o:linux:linux_kernel:2.6.21:git6:::::: cpe:2.3:o:linux:linux_kernel:2.6.21:git3:::::: cpe:2.3:o:linux:linux_kernel:2.6.21:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.21:git7:::::: cpe:2.3:o:linux:linux_kernel:2.6.21:git2:::::: cpe:2.3:o:linux:linux_kernel:2.6.21:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.21:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.21:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.21:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.21:rc7:::::: cpe:2.3:o:linux:linux_kernel:2.6.21:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.21:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.20.9:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20.8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20.21:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20.20:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20.19:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20.18:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20.17:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20.16:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20.15:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20.14:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20.13:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20.12:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20.11:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20.10:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.20:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.20:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.20:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.20:rc7:::::: cpe:2.3:o:linux:linux_kernel:2.6.20:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.20:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.20:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.20:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.2.27.13:::::::* cpe:2.3:o:linux:linux_kernel:2.6.2:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.2:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.2:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.2:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.19.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.19.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.19.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.19.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.19.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.19.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.19.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.19:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.19:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.19:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.19:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.19:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.19:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.19:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.18.8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.18.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.18.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.18.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.18.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.18.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.18.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.18.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.18.0:::::::* cpe:2.3:o:linux:linux_kernel:2.6.18:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.18:rc7:::::: cpe:2.3:o:linux:linux_kernel:2.6.18:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.18:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.18:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.18:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.18:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.18:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.18::x86_32::::: cpe:2.3:o:linux:linux_kernel:2.6.17.9:::::::* cpe:2.3:o:linux:linux_kernel:2.6.17.8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.17.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.17.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.17.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.17.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.17.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.17.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.17.14:::::::* cpe:2.3:o:linux:linux_kernel:2.6.17.13:::::::* cpe:2.3:o:linux:linux_kernel:2.6.17.12:::::::* cpe:2.3:o:linux:linux_kernel:2.6.17.11:::::::* cpe:2.3:o:linux:linux_kernel:2.6.17.10:::::::* cpe:2.3:o:linux:linux_kernel:2.6.17.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.17:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.17:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.17:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.17:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.17:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.17:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.17:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.16.9:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.62:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.61:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.60:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.59:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.58:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.57:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.56:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.55:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.54:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.53:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.52:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.51:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.50:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.49:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.48:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.47:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.46:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.45:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.44:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.43:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.42:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.41:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.40:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.39:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.38:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.37:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.36:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.35:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.34:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.33:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.32:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.31:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.31:-rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.16.31:-rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.16.31:-rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.16.31:-rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.16.31:-rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.16.30:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.29:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.28:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.27:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.26:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.25:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.24:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.23:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.22:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.21:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.20:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.19:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.18:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.17:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.16:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.15:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.14:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.13:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.12:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.11:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.10:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16_rc7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.16:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.16:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.16:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.16:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.16:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.16:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.16:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.16:rc7:::::: cpe:2.3:o:linux:linux_kernel:2.6.15.9:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15.8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15.11:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15.10:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.15:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.15:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.15:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.15:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.15:rc7:::::: cpe:2.3:o:linux:linux_kernel:2.6.15:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.15:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.15:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.14.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.14.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.14.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.14.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.14.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.14.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.14.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.14:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.14:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.14:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.14:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.14:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.14:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.13.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.13.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.13.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.13.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.13.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.13:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.13:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.13:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.13:rc7:::::: cpe:2.3:o:linux:linux_kernel:2.6.13:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.13:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.13:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.13:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.12.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.12.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.12.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.12.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.12.22:::::::* cpe:2.3:o:linux:linux_kernel:2.6.12.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.12.12:::::::* cpe:2.3:o:linux:linux_kernel:2.6.12.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.12:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.12:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.12:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.12:rc6:::::: cpe:2.3:o:linux:linux_kernel:2.6.12:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.12:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.12:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.11.9:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.7:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.5:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.4:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.3:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.2:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.12:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.11:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.10:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11.1:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11_rc1_bk6:::::::* cpe:2.3:o:linux:linux_kernel:2.6.11:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.11:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.6.11:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.11::x86_64::::: cpe:2.3:o:linux:linux_kernel:2.6.11:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.11:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.11:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.10:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.10:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.10:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.10:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.1:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.1:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.1:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.1:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test2:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test1:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test11:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test6:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test4:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test8:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test10:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test9:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test5:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test7:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test3:::::: cpe:2.3:o:linux:linux_kernel:2.6.0::64-bit_x86::::: cpe:2.3:o:linux:linux_kernel:2.6.0::itanium_ia64_montecito::::: cpe:2.3:o:linux:linux_kernel:2.6_test9_cvs:::::::* cpe:2.3:o:linux:linux_kernel:2.6:::::::* cpe:2.3:o:linux:linux_kernel:2.5.9:::::::* cpe:2.3:o:linux:linux_kernel:2.5.8:::::::* cpe:2.3:o:linux:linux_kernel:2.5.75:::::::* cpe:2.3:o:linux:linux_kernel:2.5.7:::::::* cpe:2.3:o:linux:linux_kernel:2.5.69:::::::* cpe:2.3:o:linux:linux_kernel:2.5.68:::::::* cpe:2.3:o:linux:linux_kernel:2.5.67:::::::* cpe:2.3:o:linux:linux_kernel:2.5.66:::::::* cpe:2.3:o:linux:linux_kernel:2.5.65:::::::* cpe:2.3:o:linux:linux_kernel:2.5.64:::::::* cpe:2.3:o:linux:linux_kernel:2.5.63:::::::* cpe:2.3:o:linux:linux_kernel:2.5.62:::::::* cpe:2.3:o:linux:linux_kernel:2.5.61:::::::* cpe:2.3:o:linux:linux_kernel:2.5.60:::::::* cpe:2.3:o:linux:linux_kernel:2.5.6:::::::* cpe:2.3:o:linux:linux_kernel:2.5.59:::::::* cpe:2.3:o:linux:linux_kernel:2.5.58:::::::* cpe:2.3:o:linux:linux_kernel:2.5.57:::::::* cpe:2.3:o:linux:linux_kernel:2.5.56:::::::* cpe:2.3:o:linux:linux_kernel:2.5.55:::::::* cpe:2.3:o:linux:linux_kernel:2.5.54:::::::* cpe:2.3:o:linux:linux_kernel:2.5.53:::::::* cpe:2.3:o:linux:linux_kernel:2.5.52:::::::* cpe:2.3:o:linux:linux_kernel:2.5.51:::::::* cpe:2.3:o:linux:linux_kernel:2.5.50:::::::* cpe:2.3:o:linux:linux_kernel:2.5.5:::::::* cpe:2.3:o:linux:linux_kernel:2.5.49:::::::* cpe:2.3:o:linux:linux_kernel:2.5.48:::::::* cpe:2.3:o:linux:linux_kernel:2.5.47:::::::* cpe:2.3:o:linux:linux_kernel:2.5.46:::::::* cpe:2.3:o:linux:linux_kernel:2.5.45:::::::* cpe:2.3:o:linux:linux_kernel:2.5.44:::::::* cpe:2.3:o:linux:linux_kernel:2.5.43:::::::* cpe:2.3:o:linux:linux_kernel:2.5.42:::::::* cpe:2.3:o:linux:linux_kernel:2.5.41:::::::* cpe:2.3:o:linux:linux_kernel:2.5.40:::::::* cpe:2.3:o:linux:linux_kernel:2.5.4:::::::* cpe:2.3:o:linux:linux_kernel:2.5.39:::::::* cpe:2.3:o:linux:linux_kernel:2.5.38:::::::* cpe:2.3:o:linux:linux_kernel:2.5.37:::::::* cpe:2.3:o:linux:linux_kernel:2.5.36:::::::* cpe:2.3:o:linux:linux_kernel:2.5.35:::::::* cpe:2.3:o:linux:linux_kernel:2.5.34:::::::* cpe:2.3:o:linux:linux_kernel:2.5.33:::::::* cpe:2.3:o:linux:linux_kernel:2.5.32:::::::* cpe:2.3:o:linux:linux_kernel:2.5.31:::::::* cpe:2.3:o:linux:linux_kernel:2.5.30:::::::* cpe:2.3:o:linux:linux_kernel:2.5.3:::::::* cpe:2.3:o:linux:linux_kernel:2.5.29:::::::* cpe:2.3:o:linux:linux_kernel:2.5.28:::::::* cpe:2.3:o:linux:linux_kernel:2.5.27:::::::* cpe:2.3:o:linux:linux_kernel:2.5.26:::::::* cpe:2.3:o:linux:linux_kernel:2.5.25:::::::* cpe:2.3:o:linux:linux_kernel:2.5.24:::::::* cpe:2.3:o:linux:linux_kernel:2.5.23:::::::* cpe:2.3:o:linux:linux_kernel:2.5.22:::::::* cpe:2.3:o:linux:linux_kernel:2.5.21:::::::* cpe:2.3:o:linux:linux_kernel:2.5.20:::::::* cpe:2.3:o:linux:linux_kernel:2.5.2:::::::* cpe:2.3:o:linux:linux_kernel:2.5.19:::::::* cpe:2.3:o:linux:linux_kernel:2.5.18:::::::* cpe:2.3:o:linux:linux_kernel:2.5.17:::::::* cpe:2.3:o:linux:linux_kernel:2.5.16:::::::* cpe:2.3:o:linux:linux_kernel:2.5.15:::::::* cpe:2.3:o:linux:linux_kernel:2.5.14:::::::* cpe:2.3:o:linux:linux_kernel:2.5.13:::::::* cpe:2.3:o:linux:linux_kernel:2.5.12:::::::* cpe:2.3:o:linux:linux_kernel:2.5.11:::::::* cpe:2.3:o:linux:linux_kernel:2.5.10:::::::* cpe:2.3:o:linux:linux_kernel:2.5.1:::::::* cpe:2.3:o:linux:linux_kernel:2.5.0:::::::* cpe:2.3:o:linux:linux_kernel:2.4.9_pre5:::::::* cpe:2.3:o:linux:linux_kernel:2.4.9:::::::* cpe:2.3:o:linux:linux_kernel:2.4.8:::::::* cpe:2.3:o:linux:linux_kernel:2.4.7:::::::* cpe:2.3:o:linux:linux_kernel:2.4.6:::::::* cpe:2.3:o:linux:linux_kernel:2.4.5:::::::* cpe:2.3:o:linux:linux_kernel:2.4.4:::::::* cpe:2.3:o:linux:linux_kernel:2.4.37.6:::::::* cpe:2.3:o:linux:linux_kernel:2.4.37.5:::::::* cpe:2.3:o:linux:linux_kernel:2.4.37.4:::::::* cpe:2.3:o:linux:linux_kernel:2.4.37.3:::::::* cpe:2.3:o:linux:linux_kernel:2.4.37.2:::::::* cpe:2.3:o:linux:linux_kernel:2.4.37.1:::::::* cpe:2.3:o:linux:linux_kernel:2.4.37:-rc1:::::: cpe:2.3:o:linux:linux_kernel:2.4.37:::::::* cpe:2.3:o:linux:linux_kernel:2.4.36.9:::::::* cpe:2.3:o:linux:linux_kernel:2.4.36.8:::::::* cpe:2.3:o:linux:linux_kernel:2.4.36.7:::::::* cpe:2.3:o:linux:linux_kernel:2.4.36.6:::::::* cpe:2.3:o:linux:linux_kernel:2.4.36.5:::::::* cpe:2.3:o:linux:linux_kernel:2.4.36.4:::::::* cpe:2.3:o:linux:linux_kernel:2.4.36.3:::::::* cpe:2.3:o:linux:linux_kernel:2.4.36.2:::::::* cpe:2.3:o:linux:linux_kernel:2.4.36.1:::::::* cpe:2.3:o:linux:linux_kernel:2.4.36:::::::* cpe:2.3:o:linux:linux_kernel:2.4.35.5:::::::* cpe:2.3:o:linux:linux_kernel:2.4.35.4:::::::* cpe:2.3:o:linux:linux_kernel:2.4.35.3:::::::* cpe:2.3:o:linux:linux_kernel:2.4.35.2:::::::* cpe:2.3:o:linux:linux_kernel:2.4.35.1:::::::* cpe:2.3:o:linux:linux_kernel:2.4.35:::::::* cpe:2.3:o:linux:linux_kernel:2.4.35::x86_64::::: cpe:2.3:o:linux:linux_kernel:2.4.34.6:::::::* cpe:2.3:o:linux:linux_kernel:2.4.34.5:::::::* cpe:2.3:o:linux:linux_kernel:2.4.34.4:::::::* cpe:2.3:o:linux:linux_kernel:2.4.34.3:::::::* cpe:2.3:o:linux:linux_kernel:2.4.34.2:::::::* cpe:2.3:o:linux:linux_kernel:2.4.34.1:::::::* cpe:2.3:o:linux:linux_kernel:2.4.34:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.34:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.4.33.7:::::::* cpe:2.3:o:linux:linux_kernel:2.4.33.5:::::::* cpe:2.3:o:linux:linux_kernel:2.4.33.4:::::::* cpe:2.3:o:linux:linux_kernel:2.4.33.3:::::::* cpe:2.3:o:linux:linux_kernel:2.4.33.2:::::::* cpe:2.3:o:linux:linux_kernel:2.4.33.1:::::::* cpe:2.3:o:linux:linux_kernel:2.4.33:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.33:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.33:p-re1:::::: cpe:2.3:o:linux:linux_kernel:2.4.32:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.32:pre2:::::: cpe:2.3:o:linux:linux_kernel:2.4.32:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.32:-pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.32:-pre2:::::: cpe:2.3:o:linux:linux_kernel:2.4.31:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.31:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.31:-pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.30:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.4.30:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.4.30:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.3:pre3:::::: cpe:2.3:o:linux:linux_kernel:2.4.3:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.29:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.4.29:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.29:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.4.29:-rc2:::::: cpe:2.3:o:linux:linux_kernel:2.4.29:-rc1:::::: cpe:2.3:o:linux:linux_kernel:2.4.28:::::::* cpe:2.3:o:linux:linux_kernel:2.4.27:pre4:::::: cpe:2.3:o:linux:linux_kernel:2.4.27:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.27:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.27:pre2:::::: cpe:2.3:o:linux:linux_kernel:2.4.27:pre5:::::: cpe:2.3:o:linux:linux_kernel:2.4.27:pre3:::::: cpe:2.3:o:linux:linux_kernel:2.4.27::-pre1::::: cpe:2.3:o:linux:linux_kernel:2.4.27::-pre3::::: cpe:2.3:o:linux:linux_kernel:2.4.27::-pre4::::: cpe:2.3:o:linux:linux_kernel:2.4.27::-pre5::::: cpe:2.3:o:linux:linux_kernel:2.4.27::-pre2::::: cpe:2.3:o:linux:linux_kernel:2.4.26:::::::* cpe:2.3:o:linux:linux_kernel:2.4.25:::::::* cpe:2.3:o:linux:linux_kernel:2.4.25::ia64::::: cpe:2.3:o:linux:linux_kernel:2.4.24_ow1:::::::* cpe:2.3:o:linux:linux_kernel:2.4.24:::::::* cpe:2.3:o:linux:linux_kernel:2.4.24::-ow1::::: cpe:2.3:o:linux:linux_kernel:2.4.23_ow2:::::::* cpe:2.3:o:linux:linux_kernel:2.4.23:pre9:::::: cpe:2.3:o:linux:linux_kernel:2.4.23:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.23::-pre9::::: cpe:2.3:o:linux:linux_kernel:2.4.23::-ow2::::: cpe:2.3:o:linux:linux_kernel:2.4.22:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.22:pre10:::::: cpe:2.3:o:linux:linux_kernel:2.4.21:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.21:pre4:::::: cpe:2.3:o:linux:linux_kernel:2.4.21:pre7:::::: cpe:2.3:o:linux:linux_kernel:2.4.21:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.21::-pre1::::: cpe:2.3:o:linux:linux_kernel:2.4.21::-pre4::::: cpe:2.3:o:linux:linux_kernel:2.4.21::-pre7::::: cpe:2.3:o:linux:linux_kernel:2.4.20:::::::* cpe:2.3:o:linux:linux_kernel:2.4.2:::::::* cpe:2.3:o:linux:linux_kernel:2.4.19:pre3:::::: cpe:2.3:o:linux:linux_kernel:2.4.19:pre4:::::: cpe:2.3:o:linux:linux_kernel:2.4.19:pre5:::::: cpe:2.3:o:linux:linux_kernel:2.4.19:pre6:::::: cpe:2.3:o:linux:linux_kernel:2.4.19:pre2:::::: cpe:2.3:o:linux:linux_kernel:2.4.19:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.19:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.19::-pre4::::: cpe:2.3:o:linux:linux_kernel:2.4.19::-pre2::::: cpe:2.3:o:linux:linux_kernel:2.4.19::-pre5::::: cpe:2.3:o:linux:linux_kernel:2.4.19::-pre3::::: cpe:2.3:o:linux:linux_kernel:2.4.19::-pre6::::: cpe:2.3:o:linux:linux_kernel:2.4.19::-pre1::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre5:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre3:::::: cpe:2.3:o:linux:linux_kernel:2.4.18::x86::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre7:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre4:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre8:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre6:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre2:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre9:::::: cpe:2.3:o:linux:linux_kernel:2.4.18::pre-7::::: cpe:2.3:o:linux:linux_kernel:2.4.18::pre-4::::: cpe:2.3:o:linux:linux_kernel:2.4.18::pre-6::::: cpe:2.3:o:linux:linux_kernel:2.4.18::pre-5::::: cpe:2.3:o:linux:linux_kernel:2.4.18::pre-3::::: cpe:2.3:o:linux:linux_kernel:2.4.18::pre-1::::: cpe:2.3:o:linux:linux_kernel:2.4.18::pre-8::::: cpe:2.3:o:linux:linux_kernel:2.4.18::pre-2::::: cpe:2.3:o:linux:linux_kernel:2.4.17:::::::* cpe:2.3:o:linux:linux_kernel:2.4.16:::::::* cpe:2.3:o:linux:linux_kernel:2.4.15:::::::* cpe:2.3:o:linux:linux_kernel:2.4.14:::::::* cpe:2.3:o:linux:linux_kernel:2.4.13:::::::* cpe:2.3:o:linux:linux_kernel:2.4.12:::::::* cpe:2.3:o:linux:linux_kernel:2.4.11:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.11:pre3:::::: cpe:2.3:o:linux:linux_kernel:2.4.10:::::::* cpe:2.3:o:linux:linux_kernel:2.4.1:::::::* cpe:2.3:o:linux:linux_kernel:2.4.0:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test3:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test8:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test10:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test1:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test12:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test2:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test4:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test6:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test7:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test9:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test11:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test5:::::: cpe:2.3:o:linux:linux_kernel:2.3.99:pre6:::::: cpe:2.3:o:linux:linux_kernel:2.3.99:pre3:::::: cpe:2.3:o:linux:linux_kernel:2.3.99:pre4:::::: cpe:2.3:o:linux:linux_kernel:2.3.99:pre5:::::: cpe:2.3:o:linux:linux_kernel:2.3.99:pre2:::::: cpe:2.3:o:linux:linux_kernel:2.3.99:pre9:::::: cpe:2.3:o:linux:linux_kernel:2.3.99:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.3.99:pre7:::::: cpe:2.3:o:linux:linux_kernel:2.3.99:pre8:::::: cpe:2.3:o:linux:linux_kernel:2.3.99:-:::::: cpe:2.3:o:linux:linux_kernel:2.3.9:::::::* cpe:2.3:o:linux:linux_kernel:2.3.8:::::::* cpe:2.3:o:linux:linux_kernel:2.3.7:::::::* cpe:2.3:o:linux:linux_kernel:2.3.6:::::::* cpe:2.3:o:linux:linux_kernel:2.3.51:::::::* cpe:2.3:o:linux:linux_kernel:2.3.50:::::::* cpe:2.3:o:linux:linux_kernel:2.3.5:::::::* cpe:2.3:o:linux:linux_kernel:2.3.49:::::::* cpe:2.3:o:linux:linux_kernel:2.3.48:::::::* cpe:2.3:o:linux:linux_kernel:2.3.47:::::::* cpe:2.3:o:linux:linux_kernel:2.3.46:::::::* cpe:2.3:o:linux:linux_kernel:2.3.45:::::::* cpe:2.3:o:linux:linux_kernel:2.3.44:::::::* cpe:2.3:o:linux:linux_kernel:2.3.43:::::::* cpe:2.3:o:linux:linux_kernel:2.3.42:::::::* cpe:2.3:o:linux:linux_kernel:2.3.41:::::::* cpe:2.3:o:linux:linux_kernel:2.3.40:::::::* cpe:2.3:o:linux:linux_kernel:2.3.4:::::::* cpe:2.3:o:linux:linux_kernel:2.3.39:::::::* cpe:2.3:o:linux:linux_kernel:2.3.38:::::::* cpe:2.3:o:linux:linux_kernel:2.3.37:::::::* cpe:2.3:o:linux:linux_kernel:2.3.36:::::::* cpe:2.3:o:linux:linux_kernel:2.3.35:::::::* cpe:2.3:o:linux:linux_kernel:2.3.34:::::::* cpe:2.3:o:linux:linux_kernel:2.3.33:::::::* cpe:2.3:o:linux:linux_kernel:2.3.32:::::::* cpe:2.3:o:linux:linux_kernel:2.3.31:::::::* cpe:2.3:o:linux:linux_kernel:2.3.30:::::::* cpe:2.3:o:linux:linux_kernel:2.3.3:::::::* cpe:2.3:o:linux:linux_kernel:2.3.29:::::::* cpe:2.3:o:linux:linux_kernel:2.3.28:::::::* cpe:2.3:o:linux:linux_kernel:2.3.27:::::::* cpe:2.3:o:linux:linux_kernel:2.3.26:::::::* cpe:2.3:o:linux:linux_kernel:2.3.25:::::::* cpe:2.3:o:linux:linux_kernel:2.3.24:::::::* cpe:2.3:o:linux:linux_kernel:2.3.23:::::::* cpe:2.3:o:linux:linux_kernel:2.3.22:::::::* cpe:2.3:o:linux:linux_kernel:2.3.21:::::::* cpe:2.3:o:linux:linux_kernel:2.3.20:::::::* cpe:2.3:o:linux:linux_kernel:2.3.2:::::::* cpe:2.3:o:linux:linux_kernel:2.3.19:::::::* cpe:2.3:o:linux:linux_kernel:2.3.18:::::::* cpe:2.3:o:linux:linux_kernel:2.3.17:::::::* cpe:2.3:o:linux:linux_kernel:2.3.16:::::::* cpe:2.3:o:linux:linux_kernel:2.3.15:::::::* cpe:2.3:o:linux:linux_kernel:2.3.14:::::::* cpe:2.3:o:linux:linux_kernel:2.3.13:::::::* cpe:2.3:o:linux:linux_kernel:2.3.12:::::::* cpe:2.3:o:linux:linux_kernel:2.3.11:::::::* cpe:2.3:o:linux:linux_kernel:2.3.10:::::::* cpe:2.3:o:linux:linux_kernel:2.3.1:::::::* cpe:2.3:o:linux:linux_kernel:2.3.0:::::::* cpe:2.3:o:linux:linux_kernel:2.2.9:::::::* cpe:2.3:o:linux:linux_kernel:2.2.8:::::::* cpe:2.3:o:linux:linux_kernel:2.2.7:::::::* cpe:2.3:o:linux:linux_kernel:2.2.6:::::::* cpe:2.3:o:linux:linux_kernel:2.2.5:::::::* cpe:2.3:o:linux:linux_kernel:2.2.4:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.2.4:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.3:::::::* cpe:2.3:o:linux:linux_kernel:2.2.27:pre2:::::: cpe:2.3:o:linux:linux_kernel:2.2.27:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.2.27:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.2.27:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.2.27:::::::* cpe:2.3:o:linux:linux_kernel:2.2.26:::::::* cpe:2.3:o:linux:linux_kernel:2.2.25:::::::* cpe:2.3:o:linux:linux_kernel:2.2.24:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.2.24:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.2.24:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.24:rc5:::::: cpe:2.3:o:linux:linux_kernel:2.2.24:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.2.23:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.23:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.2.23:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.2.22:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.2.22:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.2.22:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.22:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.2.21:pre3:::::: cpe:2.3:o:linux:linux_kernel:2.2.21:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.2.21:pre4:::::: cpe:2.3:o:linux:linux_kernel:2.2.21:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.2.21:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.21:pre2:::::: cpe:2.3:o:linux:linux_kernel:2.2.21:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.2.21:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.2.21:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.2.20:::::::* cpe:2.3:o:linux:linux_kernel:2.2.2:::::::* cpe:2.3:o:linux:linux_kernel:2.2.19:::::::* cpe:2.3:o:linux:linux_kernel:2.2.18:::::::* cpe:2.3:o:linux:linux_kernel:2.2.17:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.17:pre14:::::: cpe:2.3:o:linux:linux_kernel:2.2.16:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.16:pre6:::::: cpe:2.3:o:linux:linux_kernel:2.2.16:pre5:::::: cpe:2.3:o:linux:linux_kernel:2.2.15_pre20:::::::* cpe:2.3:o:linux:linux_kernel:2.2.15:pre16:::::: cpe:2.3:o:linux:linux_kernel:2.2.15:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.14:::::::* cpe:2.3:o:linux:linux_kernel:2.2.13:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.13:pre15:::::: cpe:2.3:o:linux:linux_kernel:2.2.12:::::::* cpe:2.3:o:linux:linux_kernel:2.2.11:::::::* cpe:2.3:o:linux:linux_kernel:2.2.10:::::::* cpe:2.3:o:linux:linux_kernel:2.2.1:::::::* cpe:2.3:o:linux:linux_kernel:2.2.0:::::::* cpe:2.3:o:linux:linux_kernel:2.1.99:::::::* cpe:2.3:o:linux:linux_kernel:2.1.98:::::::* cpe:2.3:o:linux:linux_kernel:2.1.97:::::::* cpe:2.3:o:linux:linux_kernel:2.1.96:::::::* cpe:2.3:o:linux:linux_kernel:2.1.95:::::::* cpe:2.3:o:linux:linux_kernel:2.1.94:::::::* cpe:2.3:o:linux:linux_kernel:2.1.93:::::::* cpe:2.3:o:linux:linux_kernel:2.1.92:::::::* cpe:2.3:o:linux:linux_kernel:2.1.91:::::::* cpe:2.3:o:linux:linux_kernel:2.1.90:::::::* cpe:2.3:o:linux:linux_kernel:2.1.9:::::::* cpe:2.3:o:linux:linux_kernel:2.1.89:::::::* cpe:2.3:o:linux:linux_kernel:2.1.88:::::::* cpe:2.3:o:linux:linux_kernel:2.1.87:::::::* cpe:2.3:o:linux:linux_kernel:2.1.86:::::::* cpe:2.3:o:linux:linux_kernel:2.1.85:::::::* cpe:2.3:o:linux:linux_kernel:2.1.84:::::::* cpe:2.3:o:linux:linux_kernel:2.1.83:::::::* cpe:2.3:o:linux:linux_kernel:2.1.82:::::::* cpe:2.3:o:linux:linux_kernel:2.1.81:::::::* cpe:2.3:o:linux:linux_kernel:2.1.80:::::::* cpe:2.3:o:linux:linux_kernel:2.1.8:::::::* cpe:2.3:o:linux:linux_kernel:2.1.79:::::::* cpe:2.3:o:linux:linux_kernel:2.1.78:::::::* cpe:2.3:o:linux:linux_kernel:2.1.77:::::::* cpe:2.3:o:linux:linux_kernel:2.1.76:::::::* cpe:2.3:o:linux:linux_kernel:2.1.75:::::::* cpe:2.3:o:linux:linux_kernel:2.1.74:::::::* cpe:2.3:o:linux:linux_kernel:2.1.73:::::::* cpe:2.3:o:linux:linux_kernel:2.1.72:::::::* cpe:2.3:o:linux:linux_kernel:2.1.71:::::::* cpe:2.3:o:linux:linux_kernel:2.1.70:::::::* cpe:2.3:o:linux:linux_kernel:2.1.7:::::::* cpe:2.3:o:linux:linux_kernel:2.1.69:::::::* cpe:2.3:o:linux:linux_kernel:2.1.68:::::::* cpe:2.3:o:linux:linux_kernel:2.1.67:::::::* cpe:2.3:o:linux:linux_kernel:2.1.66:::::::* cpe:2.3:o:linux:linux_kernel:2.1.65:::::::* cpe:2.3:o:linux:linux_kernel:2.1.64:::::::* cpe:2.3:o:linux:linux_kernel:2.1.63:::::::* cpe:2.3:o:linux:linux_kernel:2.1.62:::::::* cpe:2.3:o:linux:linux_kernel:2.1.61:::::::* cpe:2.3:o:linux:linux_kernel:2.1.60:::::::* cpe:2.3:o:linux:linux_kernel:2.1.6:::::::* cpe:2.3:o:linux:linux_kernel:2.1.59:::::::* cpe:2.3:o:linux:linux_kernel:2.1.58:::::::* cpe:2.3:o:linux:linux_kernel:2.1.57:::::::* cpe:2.3:o:linux:linux_kernel:2.1.56:::::::* cpe:2.3:o:linux:linux_kernel:2.1.55:::::::* cpe:2.3:o:linux:linux_kernel:2.1.54:::::::* cpe:2.3:o:linux:linux_kernel:2.1.53:::::::* cpe:2.3:o:linux:linux_kernel:2.1.52:::::::* cpe:2.3:o:linux:linux_kernel:2.1.51:::::::* cpe:2.3:o:linux:linux_kernel:2.1.50:::::::* cpe:2.3:o:linux:linux_kernel:2.1.5:::::::* cpe:2.3:o:linux:linux_kernel:2.1.49:::::::* cpe:2.3:o:linux:linux_kernel:2.1.48:::::::* cpe:2.3:o:linux:linux_kernel:2.1.47:::::::* cpe:2.3:o:linux:linux_kernel:2.1.46:::::::* cpe:2.3:o:linux:linux_kernel:2.1.45:::::::* cpe:2.3:o:linux:linux_kernel:2.1.44:::::::* cpe:2.3:o:linux:linux_kernel:2.1.43:::::::* cpe:2.3:o:linux:linux_kernel:2.1.42:::::::* cpe:2.3:o:linux:linux_kernel:2.1.41:::::::* cpe:2.3:o:linux:linux_kernel:2.1.40:::::::* cpe:2.3:o:linux:linux_kernel:2.1.4:::::::* cpe:2.3:o:linux:linux_kernel:2.1.39:::::::* cpe:2.3:o:linux:linux_kernel:2.1.38:::::::* cpe:2.3:o:linux:linux_kernel:2.1.37:::::::* cpe:2.3:o:linux:linux_kernel:2.1.36:::::::* cpe:2.3:o:linux:linux_kernel:2.1.35:::::::* cpe:2.3:o:linux:linux_kernel:2.1.34:::::::* cpe:2.3:o:linux:linux_kernel:2.1.33:::::::* cpe:2.3:o:linux:linux_kernel:2.1.32:::::::* cpe:2.3:o:linux:linux_kernel:2.1.31:::::::* cpe:2.3:o:linux:linux_kernel:2.1.30:::::::* cpe:2.3:o:linux:linux_kernel:2.1.3:::::::* cpe:2.3:o:linux:linux_kernel:2.1.29:::::::* cpe:2.3:o:linux:linux_kernel:2.1.28:::::::* cpe:2.3:o:linux:linux_kernel:2.1.27:::::::* cpe:2.3:o:linux:linux_kernel:2.1.26:::::::* cpe:2.3:o:linux:linux_kernel:2.1.25:::::::* cpe:2.3:o:linux:linux_kernel:2.1.24:::::::* cpe:2.3:o:linux:linux_kernel:2.1.23:::::::* cpe:2.3:o:linux:linux_kernel:2.1.22:::::::* cpe:2.3:o:linux:linux_kernel:2.1.21:::::::* cpe:2.3:o:linux:linux_kernel:2.1.20:::::::* cpe:2.3:o:linux:linux_kernel:2.1.2:::::::* cpe:2.3:o:linux:linux_kernel:2.1.19:::::::* cpe:2.3:o:linux:linux_kernel:2.1.18:::::::* cpe:2.3:o:linux:linux_kernel:2.1.17:::::::* cpe:2.3:o:linux:linux_kernel:2.1.16:::::::* cpe:2.3:o:linux:linux_kernel:2.1.15:::::::* cpe:2.3:o:linux:linux_kernel:2.1.14:::::::* cpe:2.3:o:linux:linux_kernel:2.1.132:::::::* cpe:2.3:o:linux:linux_kernel:2.1.131:::::::* cpe:2.3:o:linux:linux_kernel:2.1.130:::::::* cpe:2.3:o:linux:linux_kernel:2.1.13:::::::* cpe:2.3:o:linux:linux_kernel:2.1.129:::::::* cpe:2.3:o:linux:linux_kernel:2.1.128:::::::* cpe:2.3:o:linux:linux_kernel:2.1.127:::::::* cpe:2.3:o:linux:linux_kernel:2.1.126:::::::* cpe:2.3:o:linux:linux_kernel:2.1.125:::::::* cpe:2.3:o:linux:linux_kernel:2.1.124:::::::* cpe:2.3:o:linux:linux_kernel:2.1.123:::::::* cpe:2.3:o:linux:linux_kernel:2.1.122:::::::* cpe:2.3:o:linux:linux_kernel:2.1.121:::::::* cpe:2.3:o:linux:linux_kernel:2.1.120:::::::* cpe:2.3:o:linux:linux_kernel:2.1.12:::::::* cpe:2.3:o:linux:linux_kernel:2.1.119:::::::* cpe:2.3:o:linux:linux_kernel:2.1.118:::::::* cpe:2.3:o:linux:linux_kernel:2.1.117:::::::* cpe:2.3:o:linux:linux_kernel:2.1.116:::::::* cpe:2.3:o:linux:linux_kernel:2.1.115:::::::* cpe:2.3:o:linux:linux_kernel:2.1.114:::::::* cpe:2.3:o:linux:linux_kernel:2.1.113:::::::* cpe:2.3:o:linux:linux_kernel:2.1.112:::::::* cpe:2.3:o:linux:linux_kernel:2.1.111:::::::* cpe:2.3:o:linux:linux_kernel:2.1.110:::::::* cpe:2.3:o:linux:linux_kernel:2.1.11:::::::* cpe:2.3:o:linux:linux_kernel:2.1.109:::::::* cpe:2.3:o:linux:linux_kernel:2.1.108:::::::* cpe:2.3:o:linux:linux_kernel:2.1.107:::::::* cpe:2.3:o:linux:linux_kernel:2.1.106:::::::* cpe:2.3:o:linux:linux_kernel:2.1.105:::::::* cpe:2.3:o:linux:linux_kernel:2.1.104:::::::* cpe:2.3:o:linux:linux_kernel:2.1.103:::::::* cpe:2.3:o:linux:linux_kernel:2.1.102:::::::* cpe:2.3:o:linux:linux_kernel:2.1.101:::::::* cpe:2.3:o:linux:linux_kernel:2.1.100:::::::* cpe:2.3:o:linux:linux_kernel:2.1.10:::::::* cpe:2.3:o:linux:linux_kernel:2.1.1:::::::* cpe:2.3:o:linux:linux_kernel:2.1.0:::::::* cpe:2.3:o:linux:linux_kernel:2.1:::::::* cpe:2.3:o:linux:linux_kernel:2.0.9.9:::::::* cpe:2.3:o:linux:linux_kernel:2.0.9:::::::* cpe:2.3:o:linux:linux_kernel:2.0.8:::::::* cpe:2.3:o:linux:linux_kernel:2.0.7:::::::* cpe:2.3:o:linux:linux_kernel:2.0.6:::::::* cpe:2.3:o:linux:linux_kernel:2.0.5:::::::* cpe:2.3:o:linux:linux_kernel:2.0.4:::::::* cpe:2.3:o:linux:linux_kernel:2.0.39:::::::* cpe:2.3:o:linux:linux_kernel:2.0.38:::::::* cpe:2.3:o:linux:linux_kernel:2.0.37:::::::* cpe:2.3:o:linux:linux_kernel:2.0.36:::::::* cpe:2.3:o:linux:linux_kernel:2.0.35:::::::* cpe:2.3:o:linux:linux_kernel:2.0.34:::::::* cpe:2.3:o:linux:linux_kernel:2.0.33:::::::* cpe:2.3:o:linux:linux_kernel:2.0.32:::::::* cpe:2.3:o:linux:linux_kernel:2.0.31:::::::* cpe:2.3:o:linux:linux_kernel:2.0.30:::::::* cpe:2.3:o:linux:linux_kernel:2.0.3:::::::* cpe:2.3:o:linux:linux_kernel:2.0.29:::::::* cpe:2.3:o:linux:linux_kernel:2.0.28:::::::* cpe:2.3:o:linux:linux_kernel:2.0.27:::::::* cpe:2.3:o:linux:linux_kernel:2.0.26:::::::* cpe:2.3:o:linux:linux_kernel:2.0.25:::::::* cpe:2.3:o:linux:linux_kernel:2.0.24:::::::* cpe:2.3:o:linux:linux_kernel:2.0.23:::::::* cpe:2.3:o:linux:linux_kernel:2.0.22:::::::* cpe:2.3:o:linux:linux_kernel:2.0.21:::::::* cpe:2.3:o:linux:linux_kernel:2.0.20:::::::* cpe:2.3:o:linux:linux_kernel:2.0.2:::::::* cpe:2.3:o:linux:linux_kernel:2.0.19:::::::* cpe:2.3:o:linux:linux_kernel:2.0.18:::::::* cpe:2.3:o:linux:linux_kernel:2.0.17:::::::* cpe:2.3:o:linux:linux_kernel:2.0.16:::::::* cpe:2.3:o:linux:linux_kernel:2.0.15:::::::* cpe:2.3:o:linux:linux_kernel:2.0.14:::::::* cpe:2.3:o:linux:linux_kernel:2.0.13:::::::* cpe:2.3:o:linux:linux_kernel:2.0.12:::::::* cpe:2.3:o:linux:linux_kernel:2.0.11:::::::* cpe:2.3:o:linux:linux_kernel:2.0.10:::::::* cpe:2.3:o:linux:linux_kernel:2.0.1:::::::* cpe:2.3:o:linux:linux_kernel:2.0.0:::::::* cpe:2.3:o:linux:linux_kernel:2.0:::::::* cpe:2.3:o:linux:linux_kernel:1.3.0:::::::* cpe:2.3:o:linux:linux_kernel:1.2.0:::::::* cpe:2.3:o:linux:linux_kernel:::::::: cpe:2.3:o:linux:linux_kernel:::ia32_64bit:::::* cpe:2.3:o:linux:linux_kernel:::zseries_64bit:::::* cpe:2.3:o:linux:linux_kernel:::x86_64_64-bit:::::* cpe:2.3:o:linux:linux_kernel:::zseries_64-bit:::::* cpe:2.3:o:linux:linux_kernel:::ia32_64-bit:::::* cpe:2.3:o:linux:linux_kernel:::ia64_64bit:::::* cpe:2.3:o:linux:linux_kernel:::power_64-bit:::::* cpe:2.3:o:linux:linux_kernel:::x86_64_64bit:::::* cpe:2.3:o:linux:linux_kernel:::power_64bit:::::* cpe:2.3:o:linux:linux_kernel:::ia64_64-bit:::::* cpe:2.3:o:linux:linux_kernel:::64-bit:::::* cpe:2.3:o:linux:linux_kernel:::~~~~x64~:::::* cpe:2.3:o:linux:linux_kernel:::~~~~x86~:::::* cpe:2.3:o:linux:linux_kernel:::::::x64:* cpe:2.3:o:linux:linux_kernel:::::::x86:* cpe:2.3:o:linux:linux_kernel:-:::::::* cpe:2.3:o:linux:linux_kernel:-:-:~~~~x64~:::::* cpe:2.3:o:linux:linux_kernel:-::~~~~x64~:::::	1198
Os	Novell Linux Desktop cpe:2.3:o:novell:linux_desktop:9:::::::*	1
Os	Opensuse cpe:2.3:o:opensuse:opensuse:11.2:::::::* cpe:2.3:o:opensuse:opensuse:11.0:::::::*	2
Os	Redhat Enterprise Linux Desktop cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:::::::* cpe:2.3:o:redhat:enterprise_linux_desktop:4.0:::::::* cpe:2.3:o:redhat:enterprise_linux_desktop:3.0:::::::*	3
Os	Redhat Enterprise Linux Eus cpe:2.3:o:redhat:enterprise_linux_eus:5.4:::::::* cpe:2.3:o:redhat:enterprise_linux_eus:4.8:::::::*	2
Os	Redhat Enterprise Linux Server cpe:2.3:o:redhat:enterprise_linux_server:5.0:::::::* cpe:2.3:o:redhat:enterprise_linux_server:4.0:::::::* cpe:2.3:o:redhat:enterprise_linux_server:3.0:::::::*	3
Os	Redhat Enterprise Linux Workstation cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:::::::* cpe:2.3:o:redhat:enterprise_linux_workstation:4.0:::::::* cpe:2.3:o:redhat:enterprise_linux_workstation:3.0:::::::*	3
Os	Suse Linux Enterprise Desktop cpe:2.3:o:suse:linux_enterprise_desktop:10:sp2:::::: cpe:2.3:o:suse:linux_enterprise_desktop:10:sp3::::::	2
Os	Suse Linux Enterprise Server cpe:2.3:o:suse:linux_enterprise_server:10:sp2:::::: cpe:2.3:o:suse:linux_enterprise_server:10:sp2:::-:::* cpe:2.3:o:suse:linux_enterprise_server:10:sp3:::-:::* cpe:2.3:o:suse:linux_enterprise_server:10:sp3:::::: cpe:2.3:o:suse:linux_enterprise_server:9:::::::* cpe:2.3:o:suse:linux_enterprise_server:8:::::::*	6
Os	Suse Linux Enterprise Software Development Kit cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp2:::::: cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp3::::::	2
Os	Suse Suse Linux Enterprise Desktop cpe:2.3:o:suse:suse_linux_enterprise_desktop:10:sp2:::::: cpe:2.3:o:suse:suse_linux_enterprise_desktop:10:sp3::::::	2
Os	Suse Suse Linux Enterprise Server cpe:2.3:o:suse:suse_linux_enterprise_server:10:sp2:::::: cpe:2.3:o:suse:suse_linux_enterprise_server:10:sp3::::::	2
Os	Vmware Esx cpe:2.3:o:vmware:esx:4.0:::::::*	1

ExploitDB Exploits

id	Description
2009-08-31	Linux Kernel < 2.6.31-rc7 AF_IRDA 29-Byte Stack Disclosure Exploit

OpenVAS Exploits

Date	Description
2012-04-16	Name : VMSA-2010-0009: ESXi utilities and ESX Service Console third party updates File : nvt/gb_VMSA-2010-0009.nasl
2011-08-09	Name : CentOS Update for kernel CESA-2009:1455 centos5 i386 File : nvt/gb_CESA-2009_1455_kernel_centos5_i386.nasl
2011-08-09	Name : CentOS Update for kernel CESA-2009:1438 centos4 i386 File : nvt/gb_CESA-2009_1438_kernel_centos4_i386.nasl
2011-08-09	Name : CentOS Update for kernel CESA-2009:1243 centos5 i386 File : nvt/gb_CESA-2009_1243_kernel_centos5_i386.nasl
2011-08-09	Name : CentOS Update for kernel CESA-2009:1522 centos4 i386 File : nvt/gb_CESA-2009_1522_kernel_centos4_i386.nasl
2011-08-09	Name : CentOS Update for kernel CESA-2009:1541 centos4 i386 File : nvt/gb_CESA-2009_1541_kernel_centos4_i386.nasl
2011-08-09	Name : CentOS Update for kernel CESA-2009:1548 centos5 i386 File : nvt/gb_CESA-2009_1548_kernel_centos5_i386.nasl
2011-08-09	Name : CentOS Update for kernel CESA-2009:1550 centos3 i386 File : nvt/gb_CESA-2009_1550_kernel_centos3_i386.nasl
2011-08-09	Name : CentOS Update for kernel CESA-2009:1670 centos5 i386 File : nvt/gb_CESA-2009_1670_kernel_centos5_i386.nasl
2011-08-09	Name : CentOS Update for kernel CESA-2009:1671 centos4 i386 File : nvt/gb_CESA-2009_1671_kernel_centos4_i386.nasl
2011-08-09	Name : CentOS Update for kernel CESA-2010:0046 centos5 i386 File : nvt/gb_CESA-2010_0046_kernel_centos5_i386.nasl
2010-10-19	Name : Mandriva Update for kernel MDVSA-2010:198 (kernel) File : nvt/gb_mandriva_MDVSA_2010_198.nasl
2010-09-27	Name : Mandriva Update for kernel MDVSA-2010:188 (kernel) File : nvt/gb_mandriva_MDVSA_2010_188.nasl
2010-05-04	Name : Mandriva Update for kernel MDVSA-2010:088 (kernel) File : nvt/gb_mandriva_MDVSA_2010_088.nasl
2010-03-12	Name : Mandriva Update for rsnapshot MDVA-2010:088 (rsnapshot) File : nvt/gb_mandriva_MDVA_2010_088.nasl
2010-03-02	Name : Fedora Update for kernel FEDORA-2010-1500 File : nvt/gb_fedora_2010_1500_kernel_fc11.nasl
2010-03-02	Name : Fedora Update for kernel FEDORA-2010-0919 File : nvt/gb_fedora_2010_0919_kernel_fc11.nasl
2010-03-02	Name : Fedora Update for kernel FEDORA-2010-1804 File : nvt/gb_fedora_2010_1804_kernel_fc11.nasl
2010-02-19	Name : SuSE Update for kernel SUSE-SA:2010:012 File : nvt/gb_suse_2010_012.nasl
2010-01-20	Name : RedHat Update for kernel RHSA-2010:0046-01 File : nvt/gb_RHSA-2010_0046-01_kernel.nasl
2010-01-15	Name : SuSE Update for kernel SUSE-SA:2010:001 File : nvt/gb_suse_2010_001.nasl
2009-12-30	Name : RedHat Security Advisory RHSA-2009:1670 File : nvt/RHSA_2009_1670.nasl
2009-12-30	Name : RedHat Security Advisory RHSA-2009:1671 File : nvt/RHSA_2009_1671.nasl
2009-12-30	Name : Fedora Core 11 FEDORA-2009-13694 (kernel) File : nvt/fcore_2009_13694.nasl
2009-12-30	Name : CentOS Security Advisory CESA-2009:1670 (kernel) File : nvt/ovcesa2009_1670.nasl
2009-12-30	Name : CentOS Security Advisory CESA-2009:1671 (kernel) File : nvt/ovcesa2009_1671.nasl
2009-12-14	Name : Fedora Core 10 FEDORA-2009-13098 (kernel) File : nvt/fcore_2009_13098.nasl
2009-12-10	Name : SuSE Security Advisory SUSE-SA:2009:060 (kernel) File : nvt/suse_sa_2009_060.nasl
2009-12-10	Name : Fedora Core 11 FEDORA-2009-12786 (kernel) File : nvt/fcore_2009_12786.nasl
2009-12-03	Name : SLES11: Security update for Linux kernel File : nvt/sles11_ext4dev-kmp-def4.nasl
2009-11-23	Name : Mandriva Security Advisory MDVSA-2009:301 (kernel) File : nvt/mdksa_2009_301.nasl
2009-11-17	Name : SLES10: Security update for Linux kernel File : nvt/sles10_kernel9.nasl
2009-11-17	Name : SLES9: Security update for Linux kernel File : nvt/sles9p5062456.nasl
2009-11-11	Name : CentOS Security Advisory CESA-2009:1550 (kernel) File : nvt/ovcesa2009_1550.nasl
2009-11-11	Name : CentOS Security Advisory CESA-2009:1548 (kernel) File : nvt/ovcesa2009_1548.nasl
2009-11-11	Name : CentOS Security Advisory CESA-2009:1541 (kernel) File : nvt/ovcesa2009_1541.nasl
2009-11-11	Name : CentOS Security Advisory CESA-2009:1455 (kernel) File : nvt/ovcesa2009_1455.nasl
2009-11-11	Name : SLES11: Security update for Linux kernel File : nvt/sles11_ext4dev-kmp-def3.nasl
2009-11-11	Name : Mandriva Security Advisory MDVSA-2009:289 (kernel) File : nvt/mdksa_2009_289.nasl
2009-11-11	Name : RedHat Security Advisory RHSA-2009:1540 File : nvt/RHSA_2009_1540.nasl
2009-11-11	Name : RedHat Security Advisory RHSA-2009:1541 File : nvt/RHSA_2009_1541.nasl
2009-11-11	Name : RedHat Security Advisory RHSA-2009:1548 File : nvt/RHSA_2009_1548.nasl
2009-11-11	Name : RedHat Security Advisory RHSA-2009:1550 File : nvt/RHSA_2009_1550.nasl
2009-11-11	Name : Debian Security Advisory DSA 1927-1 (linux-2.6) File : nvt/deb_1927_1.nasl
2009-11-11	Name : Debian Security Advisory DSA 1928-1 (linux-2.6.24) File : nvt/deb_1928_1.nasl
2009-11-11	Name : Debian Security Advisory DSA 1929-1 (linux-2.6) File : nvt/deb_1929_1.nasl
2009-11-11	Name : SuSE Security Advisory SUSE-SA:2009:051 (kernel) File : nvt/suse_sa_2009_051.nasl
2009-11-11	Name : Fedora Core 11 FEDORA-2009-10639 (kernel) File : nvt/fcore_2009_10639.nasl
2009-11-11	Name : Fedora Core 11 FEDORA-2009-11032 (kernel) File : nvt/fcore_2009_11032.nasl
2009-11-11	Name : Fedora Core 10 FEDORA-2009-11038 (kernel) File : nvt/fcore_2009_11038.nasl
2009-10-27	Name : Debian Security Advisory DSA 1915-1 (linux-2.6) File : nvt/deb_1915_1.nasl
2009-10-27	Name : RedHat Security Advisory RHSA-2009:1522 File : nvt/RHSA_2009_1522.nasl
2009-10-27	Name : CentOS Security Advisory CESA-2009:1522 (kernel) File : nvt/ovcesa2009_1522.nasl
2009-10-19	Name : Fedora Core 10 FEDORA-2009-10525 (kernel) File : nvt/fcore_2009_10525.nasl
2009-10-06	Name : RedHat Security Advisory RHSA-2009:1455 File : nvt/RHSA_2009_1455.nasl
2009-10-06	Name : Fedora Core 10 FEDORA-2009-10165 (kernel) File : nvt/fcore_2009_10165.nasl
2009-09-21	Name : CentOS Security Advisory CESA-2009:1438 (kernel) File : nvt/ovcesa2009_1438.nasl
2009-09-21	Name : CentOS Security Advisory CESA-2009:1243 (kernel) File : nvt/ovcesa2009_1243.nasl
2009-09-15	Name : RedHat Security Advisory RHSA-2009:1438 File : nvt/RHSA_2009_1438.nasl
2009-09-09	Name : RedHat Security Advisory RHSA-2009:1243 File : nvt/RHSA_2009_1243.nasl
2009-09-09	Name : RedHat Security Advisory RHSA-2009:1239 File : nvt/RHSA_2009_1239.nasl
2009-09-02	Name : Fedora Core 11 FEDORA-2009-9044 (kernel) File : nvt/fcore_2009_9044.nasl
2009-09-02	Name : Debian Security Advisory DSA 1872-1 (linux-2.6) File : nvt/deb_1872_1.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
59654	Linux Kernel fs/pipe.c Multiple Function Locking Error NULL Dereference Local... Linux Kernel 2.6.x contains a flaw that may allow a local denial of service or privilege escalation. The issue is triggered within the "pipe_rdwr_open()", "pipe_write_open()", and "pipe_read_open()" functions in "fs/pipe.c". This can be exploited to cause a NULL pointer deference by performing certain pipe operations.
59222	Linux Kernel Netlink Subsystem net/sched/cls_api.c tcf_fill_node Function Loc...
59211	Linux Kernel ATI Rage 128 Driver CCE NULL Dereference Local Privilege Escalation
59210	Linux Kernel net/unix/af_unix.c AF_UNIX Socket Reconnect Local DoS
59082	Linux Kernel on x86_64 arch/x86/ia32/ia32entry.S 64-bit Mode ia32 Process Loc...
59081	Linux Kernel ax25 Subsystem net/ax25/af_ax25.c ax25_setsockopt Function Local...
59070	Linux Kernel tc Subsystem net/sched/sch_api.c tc_fill_tclass Function Local M...
59068	Linux Kernel drivers/net/r8169.c r8169 Driver swiotlb Functionality Jumbo Fra... Linux Kernel Driver r8169 contains a flaw that may allow a remote denial of service. The issue is triggered when an error in the 'swiotlb' functionality in the r8169 driver in drivers/net/r8169.c in the Linux kernel occurs and will allow remote and local attackers to cause a denial or service attack that results in IOMMU space exhaustion and system crash by using jumbo frames for a large amount of network traffic, and will result in loss of availability for the platform.
58880	Linux Kernel eCryptfs fs/ecryptfs/inode.c d_delete Function NULL Dereference ...
58323	Linux Kernel NFSv4 o_EXCL inode Creation Failure Local Privilege Escalation
58234	Linux Kernel drivers/char/random.c get_random_int Function RNG Weakness
58102	Linux Kernel AppleTalk-IP Datagram Memory Exhaustion Remote DoS Linux Kernel contains a flaw that may allow a remote denial of service. The issue is triggered due to a memory leak when processing specially crafted AppleTalk-IP datagram packets, and will result in loss of availability for the platform.
57821	Linux Kernel net/sched/sch_api.c tc_fill_tclass() Function Kernel Memory Disc...
57428	Linux Kernel proto_ops .getname Function Arbitrary Kernel Memory Disclosure
57427	Linux Kernel af_llc.c getsockname() Function Kernel Stack Fragment Disclosure
57264	Linux Kernel execve Function current->clear_child_tid Pointer Handling Loc...
57210	Linux Kernel drivers/parisc/eisa_eeprom.c eisa_eeprom_read Function Local Mem...
57209	Linux Kernel drivers/md/md.c Multiple Function NULL Dereference Local DoS
57208	Linux Kernel 64-bit kernel/signal.c do_sigaltstack() Function Arbitrary Local...

Information Assurance Vulnerability Management (IAVM)

Date	Description
2010-01-28	IAVM : 2010-A-0015 - Multiple Vulnerabilities in Red Hat Linux Kernel Severity : Category I - VMSKEY : V0022631

Nessus® Vulnerability Scanner

Date	Description
2016-03-08	Name : The remote VMware ESX / ESXi host is missing a security-related patch. File : vmware_VMSA-2010-0009_remote.nasl - Type : ACT_GATHER_INFO
2016-03-08	Name : The remote VMware ESX host is missing a security-related patch. File : vmware_VMSA-2010-0004_remote.nasl - Type : ACT_GATHER_INFO
2016-03-03	Name : The remote host is missing a security-related patch. File : vmware_VMSA-2009-0016_remote.nasl - Type : ACT_GATHER_INFO
2014-11-26	Name : The remote OracleVM host is missing one or more security updates. File : oraclevm_OVMSA-2013-0039.nasl - Type : ACT_GATHER_INFO
2014-11-26	Name : The remote OracleVM host is missing one or more security updates. File : oraclevm_OVMSA-2009-0033.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2009-1106.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2009-1438.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2009-1455.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2009-1522.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2009-1541.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2009-1548.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2009-1550.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2009-1670.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2009-1671.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2010-0046.nasl - Type : ACT_GATHER_INFO
2013-06-29	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2009-1550.nasl - Type : ACT_GATHER_INFO
2013-06-29	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2009-1548.nasl - Type : ACT_GATHER_INFO
2013-06-29	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2009-1541.nasl - Type : ACT_GATHER_INFO
2013-03-06	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20091103_kernel_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1466.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1587.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1588.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1672.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20091022_kernel_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20091103_kernel_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20091103_kernel_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20091215_kernel_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20091215_kernel_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-05-17	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-6641.nasl - Type : ACT_GATHER_INFO
2012-05-17	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-6697.nasl - Type : ACT_GATHER_INFO
2012-05-17	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-6730.nasl - Type : ACT_GATHER_INFO
2012-05-17	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-6636.nasl - Type : ACT_GATHER_INFO
2010-10-11	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-6637.nasl - Type : ACT_GATHER_INFO
2010-10-11	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-6694.nasl - Type : ACT_GATHER_INFO
2010-10-08	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-198.nasl - Type : ACT_GATHER_INFO
2010-09-24	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-188.nasl - Type : ACT_GATHER_INFO
2010-07-30	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-088.nasl - Type : ACT_GATHER_INFO
2010-07-30	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2009-329.nasl - Type : ACT_GATHER_INFO
2010-06-28	Name : The remote VMware ESX host is missing a security-related patch. File : vmware_VMSA-2010-0010.nasl - Type : ACT_GATHER_INFO
2010-06-01	Name : The remote VMware ESXi / ESX host is missing one or more security-related pat... File : vmware_VMSA-2010-0009.nasl - Type : ACT_GATHER_INFO
2010-03-05	Name : The remote VMware ESX host is missing one or more security-related patches. File : vmware_VMSA-2010-0004.nasl - Type : ACT_GATHER_INFO
2010-02-24	Name : The remote Debian host is missing a security-related update. File : debian_DSA-1927.nasl - Type : ACT_GATHER_INFO
2010-02-24	Name : The remote Debian host is missing a security-related update. File : debian_DSA-1928.nasl - Type : ACT_GATHER_INFO
2010-02-24	Name : The remote Debian host is missing a security-related update. File : debian_DSA-1915.nasl - Type : ACT_GATHER_INFO
2010-02-24	Name : The remote Debian host is missing a security-related update. File : debian_DSA-1929.nasl - Type : ACT_GATHER_INFO
2010-02-24	Name : The remote Debian host is missing a security-related update. File : debian_DSA-1872.nasl - Type : ACT_GATHER_INFO
2010-02-18	Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12578.nasl - Type : ACT_GATHER_INFO
2010-02-16	Name : The remote openSUSE host is missing a security update. File : suse_11_0_kernel-100203.nasl - Type : ACT_GATHER_INFO
2010-01-21	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2010-0046.nasl - Type : ACT_GATHER_INFO
2010-01-20	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0046.nasl - Type : ACT_GATHER_INFO
2010-01-06	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2009-1243.nasl - Type : ACT_GATHER_INFO
2010-01-06	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2009-1106.nasl - Type : ACT_GATHER_INFO
2010-01-06	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2009-1438.nasl - Type : ACT_GATHER_INFO
2010-01-06	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2009-1455.nasl - Type : ACT_GATHER_INFO
2010-01-06	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2009-1670.nasl - Type : ACT_GATHER_INFO
2010-01-05	Name : The remote openSUSE host is missing a security update. File : suse_11_2_kernel-091218.nasl - Type : ACT_GATHER_INFO
2009-12-23	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-6726.nasl - Type : ACT_GATHER_INFO
2009-12-21	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2009-1671.nasl - Type : ACT_GATHER_INFO
2009-12-16	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1670.nasl - Type : ACT_GATHER_INFO
2009-12-16	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1671.nasl - Type : ACT_GATHER_INFO
2009-12-07	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-864-1.nasl - Type : ACT_GATHER_INFO
2009-12-03	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_kernel-091123.nasl - Type : ACT_GATHER_INFO
2009-12-01	Name : The remote openSUSE host is missing a security update. File : suse_11_1_kernel-091123.nasl - Type : ACT_GATHER_INFO
2009-11-23	Name : The remote VMware ESXi / ESX host is missing one or more security-related pat... File : vmware_VMSA-2009-0016.nasl - Type : ACT_GATHER_INFO
2009-11-16	Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12541.nasl - Type : ACT_GATHER_INFO
2009-11-11	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-6632.nasl - Type : ACT_GATHER_INFO
2009-11-06	Name : The remote Fedora host is missing a security update. File : fedora_2009-11038.nasl - Type : ACT_GATHER_INFO
2009-11-06	Name : The remote Fedora host is missing a security update. File : fedora_2009-11032.nasl - Type : ACT_GATHER_INFO
2009-11-04	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1548.nasl - Type : ACT_GATHER_INFO
2009-11-04	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1550.nasl - Type : ACT_GATHER_INFO
2009-11-04	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1541.nasl - Type : ACT_GATHER_INFO
2009-11-03	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_kernel-091015.nasl - Type : ACT_GATHER_INFO
2009-11-02	Name : The remote openSUSE host is missing a security update. File : suse_11_1_kernel-091016.nasl - Type : ACT_GATHER_INFO
2009-10-28	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2009-289.nasl - Type : ACT_GATHER_INFO
2009-10-28	Name : The remote Fedora host is missing a security update. File : fedora_2009-10639.nasl - Type : ACT_GATHER_INFO
2009-10-27	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2009-1522.nasl - Type : ACT_GATHER_INFO
2009-10-23	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1522.nasl - Type : ACT_GATHER_INFO
2009-10-22	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-852-1.nasl - Type : ACT_GATHER_INFO
2009-10-16	Name : The remote Fedora host is missing a security update. File : fedora_2009-10525.nasl - Type : ACT_GATHER_INFO
2009-10-05	Name : The remote Fedora host is missing a security update. File : fedora_2009-10165.nasl - Type : ACT_GATHER_INFO
2009-09-30	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1455.nasl - Type : ACT_GATHER_INFO
2009-09-16	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1438.nasl - Type : ACT_GATHER_INFO
2009-09-02	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1243.nasl - Type : ACT_GATHER_INFO
2009-08-27	Name : The remote Fedora host is missing a security update. File : fedora_2009-9044.nasl - Type : ACT_GATHER_INFO
2009-06-17	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1106.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2016-08-18 01:05:05	Multiple Updates
2016-08-05 12:07:37	Multiple Updates
2016-06-28 20:08:06	Multiple Updates
2016-04-26 21:40:59	Multiple Updates
2014-02-17 11:28:59	Multiple Updates
2013-05-11 00:43:35	Multiple Updates
2013-01-23 13:23:12	Multiple Updates

Global Informations

Type	Count
Capec ID(s)	3
CWE ID(s)	17
Oval ID(s)	42
CPE ID(s)	1245
osvdb(s)	19
ExploitDB Exploit(s)	1
Openvas Exploit(s)	63
IAVM(s)	1
Nessus® Exploit(s)	85

	Related
7.8	CVE-2009-3620
7.8	CVE-2009-3613
7.8	CVE-2009-2846
7.1	CVE-2009-2903
7	CVE-2009-3547
5.9	CVE-2009-2848
5.5	CVE-2009-3621
5.5	CVE-2009-3238
4.9	CVE-2009-3002
4.9	CVE-2009-3001
4.9	CVE-2009-2909
4.9	CVE-2009-2908
4.9	CVE-2009-2847
4.7	CVE-2009-2849
4.6	CVE-2009-3286
2.1	CVE-2009-3612
2.1	CVE-2009-3228
2.1	CVE-2009-2910
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 18 more Alert(s)