oval:org.mitre.oval:def:22799

Definition Id: oval:org.mitre.oval:def:22799

Oval ID:	oval:org.mitre.oval:def:22799
Title:	ELSA-2010:0178: Oracle Linux 5.x.5 kernel security and bug fix update (Important)
Description:	Use-after-free vulnerability in net/ipv4/tcp_input.c in the Linux kernel 2.6 before 2.6.20, when IPV6_RECVPKTINFO is set on a listening socket, allows remote attackers to cause a denial of service (kernel panic) via a SYN packet while the socket is in a listening (TCP_LISTEN) state, which is not properly handled and causes the skb structure to be freed.
Family:	unix	Class:	patch
Reference(s):	ELSA-2010:0178-04 CVE-2009-4027 CVE-2009-4307 CVE-2010-0727 CVE-2010-1188	Version:	21
Platform(s):	Oracle Linux 5	Product(s):	kernel
Definition Synopsis:
Oracle Linux 5.x rpm test kernel-headers is earlier than 0:2.6.18-194.el5 AND kernel is earlier than 0:2.6.18-194.el5 AND kernel-doc is earlier than 0:2.6.18-194.el5 AND kernel-PAE-devel is earlier than 0:2.6.18-194.el5 AND kernel-devel is earlier than 0:2.6.18-194.el5 AND kernel-debug is earlier than 0:2.6.18-194.el5 AND kernel-kdump is earlier than 0:2.6.18-194.el5 AND kernel-xen-devel is earlier than 0:2.6.18-194.el5 AND kernel-debug-devel is earlier than 0:2.6.18-194.el5 AND kernel-PAE is earlier than 0:2.6.18-194.el5 AND kernel-kdump-devel is earlier than 0:2.6.18-194.el5 AND kernel-xen is earlier than 0:2.6.18-194.el5

Definition Id: oval:org.mitre.oval:def:15459

Oval ID:	oval:org.mitre.oval:def:15459
Title:	Oracle Linux 5.x
Description:	The operating system installed on the system is Oracle Linux 5.x
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:oracle:linux:5	Version:	7
Platform(s):	Oracle Linux 5	Product(s):
Definition Synopsis:
the installed operating system is part of the Unix family AND Oracle Linux 5.x is installed
Referenced By:
oval:org.mitre.oval:def:22799