This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.
The remote Amazon Linux AMI host is missing a security update.
The epoll implementation in the Linux kernel 220.127.116.11 and earlier does
not properly traverse a tree of epoll file descriptors, which allows
local users to cause a denial of service (CPU consumption) via a
crafted application that makes epoll_create and epoll_ctl system
Buffer overflow in the xfs_readlink function in fs/xfs/xfs_vnodeops.c
in XFS in the Linux kernel 2.6, when CONFIG_XFS_DEBUG is disabled,
allows local users to cause a denial of service (memory corruption and
crash) and possibly execute arbitrary code via an XFS image containing
a symbolic link with a long pathname.
crypto/ghash-generic.c in the Linux kernel before 3.1 allows local
users to cause a denial of service (NULL pointer dereference and OOPS)
or possibly have unspecified other impact by triggering a failed or
missing ghash_setkey function call, followed by a (1) ghash_update
function call or (2) ghash_final function call, as demonstrated by a
write operation on an AF_ALG socket.
See also :
Run 'yum update kernel' to update your system. You will need to reboot
your system in order for the new kernel to be running.
Risk factor :
Medium / CVSS Base Score : 6.9
Family: Amazon Linux Local Security Checks
Nessus Plugin ID: 69581 ()
CVE ID: CVE-2011-1083CVE-2011-4077CVE-2011-4081
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.