Fedora 9 : kernel-2.6.27.12-78.2.8.fc9 (2009-0816)

This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.


Synopsis :

The remote Fedora host is missing a security update.

Description :

Update to kernel 2.6.27.12:
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.10
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.11
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.12
Includes security fixes: CVE-2009-0029 Linux Kernel insecure 64 bit
system call argument passing CVE-2009-0065 kernel: sctp: memory
overflow when FWD-TSN chunk is received with bad stream ID Also fixes
bug 478299, reported against Fedora 10: AVC denials on kernel
2.6.27.9-159.fc10.x86_64 Reverts ALSA driver to the version that is
upstream in kernel 2.6.27. This should fix lack of audio on headphone
outputs for some notebooks.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

See also :

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.10
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.11
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.12
https://bugzilla.redhat.com/show_bug.cgi?id=480861
https://bugzilla.redhat.com/show_bug.cgi?id=480864
http://www.nessus.org/u?07d70a9e

Solution :

Update the affected kernel package.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.7
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: Fedora Local Security Checks

Nessus Plugin ID: 35464 (fedora_2009-0816.nasl)

Bugtraq ID: 33113

CVE ID: CVE-2009-0029
CVE-2009-0065

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now