Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2012-2047)

This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.

Synopsis :

The remote Oracle Linux host is missing one or more security updates.

Description :

Description of changes:

- mm/hotplug: correctly add new zone to all other nodes' zone lists
(Jiang Liu)
[Orabug: 16020976 Bug-db: 14798] {CVE-2012-5517}
- Divide by zero in TCP congestion control Algorithm. (Jesper Dangaard
[Orabug: 16020656 Bug-db: 14798] {CVE-2012-4565}
- Fix length of buffer copied in __nfs4_get_acl_uncached (Sachin Prabhu)
db: 14798] {CVE-2012-2375}
- Avoid reading past buffer when calling GETACL (Sachin Prabhu) [Bug-db:
- Avoid beyond bounds copy while caching ACL (Sachin Prabhu) [Bug-db: 14798]

See also :

Solution :

Update the affected unbreakable enterprise kernel packages.

Risk factor :

Medium / CVSS Base Score : 4.7
CVSS Temporal Score : 4.1
Public Exploit Available : true

Family: Oracle Linux Local Security Checks

Nessus Plugin ID: 68689 ()

Bugtraq ID: 53615

CVE ID: CVE-2012-2375