Fedora 8 : kernel-2.6.23.14-115.fc8 (2008-0984)

high Nessus Plugin ID 30233

Synopsis

The remote Fedora host is missing a security update.

Description

Update to Linux kernel 2.6.23.14:
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.23.10 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.23.11 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.23.12 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.23.13 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.23.14 CVE-2008-0001: VFS in the Linux kernel before 2.6.22.16, and 2.6.23.x before 2.6.23.14, performs tests of access mode by using the flag variable instead of the acc_mode variable, which might allow local users to bypass intended permissions and remove directories. Plus:
Major wireless driver updates. Restored the /proc/slabinfo file.
Radeon R500 2D DRM support. Enable the USB IO-Warrior driver.
Additional bug fixes for the listed Bugzilla entries.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Solution

Update the affected kernel package.

See Also

http://www.nessus.org/u?bf0646b1

http://www.nessus.org/u?888bf611

http://www.nessus.org/u?2ec08d29

http://www.nessus.org/u?26e33d2b

http://www.nessus.org/u?0a699c2c

https://bugzilla.redhat.com/show_bug.cgi?id=394981

https://bugzilla.redhat.com/show_bug.cgi?id=396041

https://bugzilla.redhat.com/show_bug.cgi?id=417141

https://bugzilla.redhat.com/show_bug.cgi?id=419661

http://www.nessus.org/u?5fba6a82

Plugin Details

Severity: High

ID: 30233

File Name: fedora_2008-0984.nasl

Version: 1.15

Type: local

Agent: unix

Published: 2/11/2008

Updated: 1/11/2021

Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:kernel, cpe:/o:fedoraproject:fedora:8

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Patch Publication Date: 2/5/2008

Reference Information

FEDORA: 2008-0984