7.2 - RHSA-2005:472

Executive Summary

Summary
Title	kernel security update

Informations
Name	RHSA-2005:472	First vendor Publication	2005-05-25
Vendor	RedHat	Last vendor Modification	2005-05-25
Severity (Vendor)	Important	Revision	01

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score	7.2	Attack Range	Local
Cvss Impact Score	10	Attack Complexity	Low
Cvss Expoit Score	3.9	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Problem Description:

Updated kernel packages that fix several security issues in the Red Hat Enterprise Linux 3 kernel are now available.

This security advisory has been rated as having important security impact by the Red Hat Security Response Team.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Desktop version 3 - i386, x86_64 Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64

3. Problem description:

The Linux kernel handles the basic functions of the operating system.

These new kernel packages contain fixes for the three security issues described below as well as an important fix for a problem that could lead to data corruption on x86-architecture SMP systems with greater than 4GB of memory through heavy usage of multi-threaded applications.

A flaw between execve() syscall handling and core dumping of ELF-format executables allowed local unprivileged users to cause a denial of service (system crash) or possibly gain privileges. The Common Vulnerabilities and Exposures project has assigned the name CAN-2005-1263 to this issue.

A flaw in shared memory locking allowed local unprivileged users to lock and unlock regions of shared memory segments they did not own (CAN-2005-0176).

A flaw in the locking of SysV IPC shared memory regions allowed local unprivileged users to bypass their RLIMIT_MEMLOCK resource limit (CAN-2004-0491).

Note: The kernel-unsupported package contains various drivers and modules that are unsupported and therefore might contain security problems that have not been addressed.

All Red Hat Enterprise Linux 3 users are advised to upgrade their kernels to the packages associated with their machine architectures and configurations as listed in this erratum.

Please also consult the RHEL3 Update 5 advisory RHSA-2005:294 for the complete list of features added and bugs fixed in U5, which was released only a week prior to this security update.

4. Solution:

Before applying this update, make sure that all previously released errata relevant to your system have been applied. Use Red Hat Network to download and update your packages. To launch the Red Hat Update Agent, use the following command:

up2date

For information on how to install packages manually, refer to the following Web page for the System Administration or Customization guide specific to your system:

http://www.redhat.com/docs/manuals/enterprise/

5. Bug IDs fixed (http://bugzilla.redhat.com/):

126411 - CAN-2004-0491 mlock accounting issue 141394 - Memory corruption with kernel 2.4.21-27.EL 141905 - kernel 2.4.21-25.ELsmp panic (kscand) 142802 - CAN-2005-0176 unlock someone elses ipc memory 149087 - Kernel panic regression in 2.4.21-27.0.2.ELsmp 157451 - CAN-2005-1263 Linux kernel ELF core dump crash vulnerability

Original Source

Url : https://rhn.redhat.com/errata/RHSA-2005-472.html

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:10672

Oval ID:	oval:org.mitre.oval:def:10672
Title:	The linux-2.4.21-mlock.patch in Red Hat Enterprise Linux 3 does not properly maintain the mlock page count when one process unlocks pages that belong to another process, which allows local users to mlock more memory than specified by the rlimit.
Description:	The linux-2.4.21-mlock.patch in Red Hat Enterprise Linux 3 does not properly maintain the mlock page count when one process unlocks pages that belong to another process, which allows local users to mlock more memory than specified by the rlimit.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2004-0491	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3	Product(s):
Definition Synopsis:
RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND Configuration section kernel-BOOT is earlier than 0:2.4.21-32.0.1.EL AND kernel-unsupported is earlier than 0:2.4.21-32.0.1.EL AND kernel-smp-unsupported is earlier than 0:2.4.21-32.0.1.EL AND kernel-hugemem-unsupported is earlier than 0:2.4.21-32.0.1.EL AND kernel-hugemem is earlier than 0:2.4.21-32.0.1.EL AND kernel is earlier than 0:2.4.21-32.0.1.EL AND kernel-source is earlier than 0:2.4.21-32.0.1.EL AND kernel-doc is earlier than 0:2.4.21-32.0.1.EL AND kernel-smp is earlier than 0:2.4.21-32.0.1.EL

Definition Id: oval:org.mitre.oval:def:10909

Oval ID:	oval:org.mitre.oval:def:10909
Title:	The elf_core_dump function in binfmt_elf.c for Linux kernel 2.x.x to 2.2.27-rc2, 2.4.x to 2.4.31-pre1, and 2.6.x to 2.6.12-rc4 allows local users to execute arbitrary code via an ELF binary that, in certain conditions involving the create_elf_tables function, causes a negative length argument to pass a signed integer comparison, leading to a buffer overflow.
Description:	The elf_core_dump function in binfmt_elf.c for Linux kernel 2.x.x to 2.2.27-rc2, 2.4.x to 2.4.31-pre1, and 2.6.x to 2.6.12-rc4 allows local users to execute arbitrary code via an ELF binary that, in certain conditions involving the create_elf_tables function, causes a negative length argument to pass a signed integer comparison, leading to a buffer overflow.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2005-1263	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3	Product(s):
Definition Synopsis:
RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND Configuration section kernel-BOOT is earlier than 0:2.4.21-32.0.1.EL AND kernel-unsupported is earlier than 0:2.4.21-32.0.1.EL AND kernel-smp-unsupported is earlier than 0:2.4.21-32.0.1.EL AND kernel-hugemem-unsupported is earlier than 0:2.4.21-32.0.1.EL AND kernel-hugemem is earlier than 0:2.4.21-32.0.1.EL AND kernel is earlier than 0:2.4.21-32.0.1.EL AND kernel-source is earlier than 0:2.4.21-32.0.1.EL AND kernel-doc is earlier than 0:2.4.21-32.0.1.EL AND kernel-smp is earlier than 0:2.4.21-32.0.1.EL

Definition Id: oval:org.mitre.oval:def:1117

Oval ID:	oval:org.mitre.oval:def:1117
Title:	mlock Memory Page Tracking Vulnerability
Description:	The linux-2.4.21-mlock.patch in Red Hat Enterprise Linux 3 does not properly maintain the mlock page count when one process unlocks pages that belong to another process, which allows local users to mlock more memory than specified by the rlimit.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2004-0491	Version:	1
Platform(s):	Red Hat Enterprise Linux 3	Product(s):	Linux kernel
Definition Synopsis:
Red Hat Enterprise 3 is installed AND kernel, kernel-smp or kernel-hugemem RPM earlier than 0:2.4.21-32.0.1.EL kernel RPM earlier than 0:2.4.21-32.0.1.EL AND kernel-hugemem RPM earlier than 0:2.4.21-32.0.1.EL AND kernel-smp RPM earlier than 0:2.4.21-32.0.1.EL

Definition Id: oval:org.mitre.oval:def:1122

Oval ID:	oval:org.mitre.oval:def:1122
Title:	Linux Kernel elf_core_dump() Buffer Overflow
Description:	The elf_core_dump function in binfmt_elf.c for Linux kernel 2.x.x to 2.2.27-rc2, 2.4.x to 2.4.31-pre1, and 2.6.x to 2.6.12-rc4 allows local users to execute arbitrary code via an ELF binary that, in certain conditions involving the create_elf_tables function, causes a negative length argument to pass a signed integer comparison, leading to a buffer overflow.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2005-1263	Version:	1
Platform(s):	Red Hat Enterprise Linux 3	Product(s):	Linux kernel
Definition Synopsis:
Red Hat Enterprise 3 is installed AND kernel, kernel-smp or kernel-hugemem RPM earlier than 0:2.4.21-32.0.1.EL kernel RPM earlier than 0:2.4.21-32.0.1.EL AND kernel-hugemem RPM earlier than 0:2.4.21-32.0.1.EL AND kernel-smp RPM earlier than 0:2.4.21-32.0.1.EL

Definition Id: oval:org.mitre.oval:def:1225

Oval ID:	oval:org.mitre.oval:def:1225
Title:	Linux Kernel shmctl() Memory Swap Vulnerability
Description:	The shmctl function in Linux 2.6.9 and earlier allows local users to unlock the memory of other processes, which could cause sensitive memory to be swapped to disk, which could allow it to be read by other users once it has been released.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2005-0176	Version:	1
Platform(s):	Red Hat Enterprise Linux 3	Product(s):	Linux kernel
Definition Synopsis:
Red Hat Enterprise 3 is installed AND kernel, kernel-smp or kernel-hugemem RPM earlier than 0:2.4.21-32.0.1.EL kernel RPM earlier than 0:2.4.21-32.0.1.EL AND kernel-hugemem RPM earlier than 0:2.4.21-32.0.1.EL AND kernel-smp RPM earlier than 0:2.4.21-32.0.1.EL

Definition Id: oval:org.mitre.oval:def:8778

Oval ID:	oval:org.mitre.oval:def:8778
Title:	The shmctl function in Linux 2.6.9 and earlier allows local users to unlock the memory of other processes, which could cause sensitive memory to be swapped to disk, which could allow it to be read by other users once it has been released.
Description:	The shmctl function in Linux 2.6.9 and earlier allows local users to unlock the memory of other processes, which could cause sensitive memory to be swapped to disk, which could allow it to be read by other users once it has been released.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2005-0176	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4	Product(s):
Definition Synopsis:
OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND Configuration section kernel-BOOT is earlier than 0:2.4.21-32.0.1.EL AND kernel-unsupported is earlier than 0:2.4.21-32.0.1.EL AND kernel-smp-unsupported is earlier than 0:2.4.21-32.0.1.EL AND kernel-hugemem-unsupported is earlier than 0:2.4.21-32.0.1.EL AND kernel-hugemem is earlier than 0:2.4.21-32.0.1.EL AND kernel is earlier than 0:2.4.21-32.0.1.EL AND kernel-source is earlier than 0:2.4.21-32.0.1.EL AND kernel-doc is earlier than 0:2.4.21-32.0.1.EL AND kernel-smp is earlier than 0:2.4.21-32.0.1.EL OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section kernel-smp-devel is earlier than 0:2.6.9-5.0.3.EL AND kernel-hugemem is earlier than 0:2.6.9-5.0.3.EL AND kernel-devel is earlier than 0:2.6.9-5.0.3.EL AND kernel is earlier than 0:2.6.9-5.0.3.EL AND kernel-hugemem-devel is earlier than 0:2.6.9-5.0.3.EL AND kernel-doc is earlier than 0:2.6.9-5.0.3.EL AND kernel-smp is earlier than 0:2.6.9-5.0.3.EL

CPE : Common Platform Enumeration

Type	Description	Count
Os	Linux Linux Kernel cpe:2.3:o:linux:linux_kernel:2.6.9:2.6.20:::::: cpe:2.3:o:linux:linux_kernel:2.6.8:::::::* cpe:2.3:o:linux:linux_kernel:2.6.8:rc3:::::: cpe:2.3:o:linux:linux_kernel:2.6.8:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.8:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.7:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.7:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.6:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.6:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.5:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.4:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.3:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.2:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.12:rc4:::::: cpe:2.3:o:linux:linux_kernel:2.6.11:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.10:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.10:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.1:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.1:rc1:::::: cpe:2.3:o:linux:linux_kernel:2.6.1:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:-:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test2:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test1:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test11:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test6:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test4:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test8:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test10:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test9:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test5:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test7:::::: cpe:2.3:o:linux:linux_kernel:2.6.0:test3:::::: cpe:2.3:o:linux:linux_kernel:2.6_test9_cvs:::::::* cpe:2.3:o:linux:linux_kernel:2.4.9:::::::* cpe:2.3:o:linux:linux_kernel:2.4.8:::::::* cpe:2.3:o:linux:linux_kernel:2.4.7:::::::* cpe:2.3:o:linux:linux_kernel:2.4.6:::::::* cpe:2.3:o:linux:linux_kernel:2.4.5:::::::* cpe:2.3:o:linux:linux_kernel:2.4.4:::::::* cpe:2.3:o:linux:linux_kernel:2.4.31:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.30:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.3:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.29:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.4.28:::::::* cpe:2.3:o:linux:linux_kernel:2.4.27:pre4:::::: cpe:2.3:o:linux:linux_kernel:2.4.27:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.27:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.27:pre2:::::: cpe:2.3:o:linux:linux_kernel:2.4.27:pre5:::::: cpe:2.3:o:linux:linux_kernel:2.4.27:pre3:::::: cpe:2.3:o:linux:linux_kernel:2.4.26:::::::* cpe:2.3:o:linux:linux_kernel:2.4.25:::::::* cpe:2.3:o:linux:linux_kernel:2.4.24_ow1:::::::* cpe:2.3:o:linux:linux_kernel:2.4.24:::::::* cpe:2.3:o:linux:linux_kernel:2.4.23_ow2:::::::* cpe:2.3:o:linux:linux_kernel:2.4.23:pre9:::::: cpe:2.3:o:linux:linux_kernel:2.4.23:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.22:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.21:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.21:pre4:::::: cpe:2.3:o:linux:linux_kernel:2.4.21:pre7:::::: cpe:2.3:o:linux:linux_kernel:2.4.21:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.20:::::::* cpe:2.3:o:linux:linux_kernel:2.4.2:::::::* cpe:2.3:o:linux:linux_kernel:2.4.19:pre3:::::: cpe:2.3:o:linux:linux_kernel:2.4.19:pre4:::::: cpe:2.3:o:linux:linux_kernel:2.4.19:pre5:::::: cpe:2.3:o:linux:linux_kernel:2.4.19:pre6:::::: cpe:2.3:o:linux:linux_kernel:2.4.19:pre2:::::: cpe:2.3:o:linux:linux_kernel:2.4.19:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.19:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre1:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre5:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre3:::::: cpe:2.3:o:linux:linux_kernel:2.4.18::x86::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre7:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre4:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre8:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre6:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.18:pre2:::::: cpe:2.3:o:linux:linux_kernel:2.4.17:::::::* cpe:2.3:o:linux:linux_kernel:2.4.16:::::::* cpe:2.3:o:linux:linux_kernel:2.4.15:::::::* cpe:2.3:o:linux:linux_kernel:2.4.14:::::::* cpe:2.3:o:linux:linux_kernel:2.4.13:::::::* cpe:2.3:o:linux:linux_kernel:2.4.12:::::::* cpe:2.3:o:linux:linux_kernel:2.4.11:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.10:::::::* cpe:2.3:o:linux:linux_kernel:2.4.1:::::::* cpe:2.3:o:linux:linux_kernel:2.4.0:-:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test3:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test8:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test10:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test1:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test12:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test2:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test4:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test6:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test7:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test9:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test11:::::: cpe:2.3:o:linux:linux_kernel:2.4.0:test5:::::: cpe:2.3:o:linux:linux_kernel:2.2.9:::::::* cpe:2.3:o:linux:linux_kernel:2.2.8:::::::* cpe:2.3:o:linux:linux_kernel:2.2.7:::::::* cpe:2.3:o:linux:linux_kernel:2.2.6:::::::* cpe:2.3:o:linux:linux_kernel:2.2.5:::::::* cpe:2.3:o:linux:linux_kernel:2.2.4:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.3:::::::* cpe:2.3:o:linux:linux_kernel:2.2.27:rc2:::::: cpe:2.3:o:linux:linux_kernel:2.2.24:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.23:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.22:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.21:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.20:::::::* cpe:2.3:o:linux:linux_kernel:2.2.2:::::::* cpe:2.3:o:linux:linux_kernel:2.2.19:::::::* cpe:2.3:o:linux:linux_kernel:2.2.18:::::::* cpe:2.3:o:linux:linux_kernel:2.2.17:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.16:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.15:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.14:::::::* cpe:2.3:o:linux:linux_kernel:2.2.13:-:::::: cpe:2.3:o:linux:linux_kernel:2.2.12:::::::* cpe:2.3:o:linux:linux_kernel:2.2.11:::::::* cpe:2.3:o:linux:linux_kernel:2.2.10:::::::* cpe:2.3:o:linux:linux_kernel:2.2.1:::::::* cpe:2.3:o:linux:linux_kernel:2.2.0:::::::*	129
Os	Redhat Enterprise Linux cpe:2.3:o:redhat:enterprise_linux:3.0:::::::*	1

OpenVAS Exploits

Date	Description
2009-10-10	Name : SLES9: Security update for kernel File : nvt/sles9p5009598.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
16424	Linux Kernel ELF Core Dump Privilege Escalation
13932	Multiple Linux linux-2.4.21-mlock.patch mlock Memory Disclosure
13847	Linux Kernel shmctl() Function Arbitrary Locked Memory Access

Nessus® Vulnerability Scanner

Date	Description
2006-07-03	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2005-472.nasl - Type : ACT_GATHER_INFO
2006-01-15	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-131-1.nasl - Type : ACT_GATHER_INFO
2006-01-15	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-82-1.nasl - Type : ACT_GATHER_INFO
2005-08-30	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2005-529.nasl - Type : ACT_GATHER_INFO
2005-07-01	Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2005-110.nasl - Type : ACT_GATHER_INFO
2005-07-01	Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2005-111.nasl - Type : ACT_GATHER_INFO
2005-06-10	Name : The remote host is missing a vendor-supplied security patch File : suse_SA_2005_029.nasl - Type : ACT_GATHER_INFO
2005-05-28	Name : The remote Fedora Core host is missing a security update. File : fedora_2005-392.nasl - Type : ACT_GATHER_INFO
2005-05-28	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2005-472.nasl - Type : ACT_GATHER_INFO
2005-02-22	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2005-092.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 11:49:24	Multiple Updates
2013-05-11 12:23:05	Multiple Updates

Global Informations

Type	Count
Oval ID(s)	6
CPE ID(s)	130
osvdb(s)	3
Openvas Exploit(s)	1
Nessus® Exploit(s)	10

	Related
7.2	CVE-2005-1263
6.4	RHSA-2005:663
5	CVE-2005-0176
2.1	RHSA-2005:294
2.1	CVE-2004-0491
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 5 more Alert(s)

7.2 - RHSA-2005:472

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

OVAL Definitions

CPE : Common Platform Enumeration

OpenVAS Exploits

Open Source Vulnerability Database (OSVDB)

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU