Mandriva Linux Security Advisory : kernel (MDVSA-2008:109)

This script is Copyright (C) 2009-2013 Tenable Network Security, Inc.


Synopsis :

The remote Mandriva Linux host is missing one or more security
updates.

Description :

A vulnerability was discovered and corrected in the Linux 2.6 kernel :

The bdx_ioctl_priv function in the tehuti driver (tehuti.c) in Linux
kernel 2.6.x before 2.6.25.1 does not properly check certain
information related to register size, which has unspecified impact and
local attack vectors, probably related to reading or writing kernel
memory. (CVE-2008-1675)

Additionaly, some fixes were made, related to: iwlwifi (small bug
interacting with drakconnect interface detection), brightness handling
on EeePc, uvcvideo on Thinkpad X300, sound for TOSHIBA Satellite Pro
A200 and A210, RealTek 8169 ethernet, unionfs, and more.

To update your kernel, please follow the directions located at :

http://www.mandriva.com/en/security/kernelupdate

Solution :

Update the affected packages.

Risk factor :

High / CVSS Base Score : 7.2
(CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C)

Family: Mandriva Local Security Checks

Nessus Plugin ID: 36342 (mandriva_MDVSA-2008-109.nasl)

Bugtraq ID:

CVE ID: CVE-2008-1675

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now