Fedora 10 : kernel-2.6.27.12-170.2.5.fc10 (2009-0923)

This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.


Synopsis :

The remote Fedora host is missing a security update.

Description :

Update to kernel 2.6.27.12:
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.10
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.11
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.12
Includes security fixes: CVE-2009-0029 Linux Kernel insecure 64 bit
system call argument passing CVE-2009-0065 kernel: sctp: memory
overflow when FWD-TSN chunk is received with bad stream ID Reverts
ALSA driver to the version that is upstream in kernel 2.6.27. This
should be the last 2.6.27 kernel update for Fedora 10. A 2.6.28 update
kernel is being tested.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

See also :

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.10
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.11
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.12
https://bugzilla.redhat.com/show_bug.cgi?id=477954
https://bugzilla.redhat.com/show_bug.cgi?id=478299
https://bugzilla.redhat.com/show_bug.cgi?id=480862
https://bugzilla.redhat.com/show_bug.cgi?id=480866
http://www.nessus.org/u?6a393669

Solution :

Update the affected kernel package.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)

Family: Fedora Local Security Checks

Nessus Plugin ID: 38129 (fedora_2009-0923.nasl)

Bugtraq ID:

CVE ID: CVE-2009-0029
CVE-2009-0065

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now