This script is Copyright (C) 2012 Tenable Network Security, Inc.
The remote Scientific Linux host is missing one or more security
Double free vulnerability in the Rx server process in OpenAFS 1.4.14,
1.4.12, 1.4.7, and possibly other versions allows remote attackers to
cause a denial of service and execute arbitrary code via unknown
The afs_linux_lock function in afs/LINUX/osi_vnodeops.c in the kernel
module in OpenAFS 1.4.14, 1.4.12, 1.4.7, and possibly other versions
does not properly handle errors, which allows attackers to cause a
denial of service via unknown vectors. (CVE-2011-0431)
This update will also bring all the SL4 and SL5 openafs versions up to
the same version.
See also :
Update the affected packages.
Risk factor :
High / CVSS Base Score : 7.5