This script is Copyright (C) 2012 Tenable Network Security, Inc.
The remote Scientific Linux host is missing one or more security
This update fixes the following security issues :
- A buffer overflow flaw was found in the
load_mixer_volumes() function in the Linux kernel's Open
Sound System (OSS) sound driver. On 64-bit PowerPC
systems, a local, unprivileged user could use this flaw
to cause a denial of service or escalate their
privileges. (CVE-2010-4527, Important)
- A missing boundary check was found in the dvb_ca_ioctl()
function in the Linux kernel's av7110 module. On systems
that use old DVB cards that require the av7110 module, a
local, unprivileged user could use this flaw to cause a
denial of service or escalate their privileges.
- A missing initialization flaw was found in the
ethtool_get_regs() function in the Linux kernel's
ethtool IOCTL handler. A local user who has the
CAP_NET_ADMIN capability could use this flaw to cause an
information leak. (CVE-2010-4655, Low)
These updated kernel packages also fix hundreds of bugs and add
The system must be rebooted for this update to take effect.
See also :
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 6.9
Family: Scientific Linux Local Security Checks
Nessus Plugin ID: 60959 ()
CVE ID: CVE-2010-4527CVE-2010-4655CVE-2011-0521
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.