Fedora Core 6 : kernel-2.6.22.4-45.fc6 (2007-679)

This script is Copyright (C) 2007-2015 Tenable Network Security, Inc.


Synopsis :

The remote Fedora Core host is missing a security update.

Description :

Update to linux 2.6.22.3 and 2.6.22.4:
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.3
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.4

CVE-2007-3848: Linux kernel 2.4.35 and other versions allows local
users to send arbitrary signals to a child process that is running at
higher privileges by causing a setuid-root parent process to die,
which delivers an attacker-controlled parent process death signal
(PR_SET_PDEATHSIG).

Update to 2.6.22.5-rc1. Highlights: ACPI fixes. Fix wrong temperature
reports with some sensor chips. Four sky2 ethernet driver fixes. Fix
detection of an AMD chip bug. Revert serial driver patch that broke
port detection.

Plus: Additional sky2 fix for some motherboards.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

See also :

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.3
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.4
http://www.nessus.org/u?2d652a4c

Solution :

Update the affected packages.

Risk factor :

High

Family: Fedora Local Security Checks

Nessus Plugin ID: 25976 (fedora_2007-679.nasl)

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now