This script is Copyright (C) 2013 Tenable Network Security, Inc.
The remote Amazon Linux AMI host is missing a security update.
The cap_bprm_set_creds function in security/commoncap.c in the Linux
kernel before 3.3.3 does not properly handle the use of file system
capabilities (aka fcaps) for implementing a privileged executable
file, which allows local users to bypass intended personality
restrictions via a crafted application, as demonstrated by an attack
that uses a parent process to disable ASLR. (CVE-2012-2123)
kernel: unfiltered netdev rio_ioctl access by users (CVE-2012-2313)
kernel: jbd2: unmapped buffer with _Unwritten or _Delay flags set can
lead to DoS (CVE-2011-4086)
See also :
Run 'yum update kernel' to update your system. You will need to reboot
your system for the new kernel to be loaded.
Risk factor :
High / CVSS Base Score : 7.2