Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2011-2014)

This script is Copyright (C) 2013 Tenable Network Security, Inc.


Synopsis :

The remote Oracle Linux host is missing one or more security updates.

Description :

Description of changes:

[2.6.32-100.28.11.el6]
- fs/partitions: Validate map_count in Mac partition tables {CVE-2011-1010}
- nfs4: Ensure that ACL pages sent over NFS were not allocated from
the slab (v3) {CVE-2011-1090}

[2.6.32-100.28.10.el6]
- Use cciss for some Smart Array controller for OL5 [orabug 11899706]
- CVEs from RHSA-2011-0421
- install_special_mapping skips security_file_mmap check {CVE-2010-4346}
- orinoco: fix TKIP countermeasure behaviour {CVE-2010-4648}
- net: clear heap allocation for ethtool_get_regs() {CVE-2010-4655}
- usb: iowarrior: don't trust report_size for buffer size {CVE-2010-4656}
- [media] [v3,media] av7110: check for negative array offset {CVE-2011-0521}
- RDMA/cma: Fix crash in request handlers {CVE-2011-0695}
- IB/cm: Bump reference count on cm_id before invoking callback
{CVE-2011-0695}
- gro: reset skb_iif on reuse {CVE-2011-1478}

See also :

https://oss.oracle.com/pipermail/el-errata/2011-April/002076.html
https://oss.oracle.com/pipermail/el-errata/2011-April/002077.html

Solution :

Update the affected unbreakable enterprise kernel packages.

Risk factor :

Medium / CVSS Base Score : 6.9
(CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C)

Family: Oracle Linux Local Security Checks

Nessus Plugin ID: 68415 ()

Bugtraq ID:

CVE ID: CVE-2010-4346
CVE-2010-4648
CVE-2010-4655
CVE-2010-4656
CVE-2011-0521
CVE-2011-0695
CVE-2011-1010
CVE-2011-1090
CVE-2011-1478