Slackware current : kernel (SSA:2009-342-01)

This script is Copyright (C) 2011-2013 Tenable Network Security, Inc.


Synopsis :

The remote Slackware host is missing a security update.

Description :

New Linux kernel packages are available for Slackware 13.0 and
-current to address a security issue. A kernel bug discovered by David
Ford may allow remote attackers to crash the kernel by sending an
oversized IP packet. While the impact on ordinary servers is still
unclear (the problem was noticed while running openvasd), we are
issuing these kernel packages as a preemptive measure.

See also :

http://lkml.org/lkml/2009/11/25/104
http://www.nessus.org/u?4ca18c3b

Solution :

Update the affected packages.

Risk factor :

High / CVSS Base Score : 7.8
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)

Family: Slackware Local Security Checks

Nessus Plugin ID: 54875 ()

Bugtraq ID:

CVE ID: CVE-2009-1298