Fedora 10 : udev-127-5.fc10 (2009-3711)

This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.


Synopsis :

The remote Fedora host is missing a security update.

Description :

udev provides a user-space API and implements a dynamic device
directory, providing only the devices present on the system. udev
replaces devfs in order to provide greater hot plug functionality.
Netlink is a datagram oriented service, used to transfer information
between kernel modules and user-space processes. It was discovered
that udev did not properly check the origin of Netlink messages. A
local attacker could use this flaw to gain root privileges via a
crafted Netlink message sent to udev, causing it to create a world-
writable block device file for an existing system block device (for
example, the root file system). (CVE-2009-1185) An integer overflow
flaw, potentially leading to heap-based buffer overflow was found in
one of the utilities providing functionality of the udev device
information interface. An attacker could use this flaw to cause a
denial of service, or possibly, to execute arbitrary code by providing
a specially crafted arguments as input to this utility.
(CVE-2009-1186) Thanks to Sebastian Krahmer of the SUSE Security Team
for responsibly reporting this flaw. Users of udev are advised to
upgrade to these updated packages, which contain a backported patch to
correct this issue. After installing the update, the udevd daemon will
be restarted automatically.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

See also :

https://bugzilla.redhat.com/show_bug.cgi?id=495051
https://bugzilla.redhat.com/show_bug.cgi?id=495052
http://www.nessus.org/u?25580fdb

Solution :

Update the affected udev package.

Risk factor :

High / CVSS Base Score : 7.2
(CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 5.6
(CVSS2#E:POC/RL:OF/RC:C)
Public Exploit Available : true

Family: Fedora Local Security Checks

Nessus Plugin ID: 36703 (fedora_2009-3711.nasl)

Bugtraq ID: 34536
34539

CVE ID: CVE-2009-1185
CVE-2009-1186

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now