This script is Copyright (C) 2017 Tenable Network Security, Inc.
The remote Scientific Linux host is missing one or more security
Security Fix(es) :
- A use-after-free flaw was found in the way the Linux
kernel's Datagram Congestion Control Protocol (DCCP)
implementation freed SKB (socket buffer) resources for a
DCCP_PKT_REQUEST packet when the IPV6_RECVPKTINFO option
is set on the socket. A local, unprivileged user could
use this flaw to alter the kernel memory, allowing them
to escalate their privileges on the system.
See also :
Update the affected packages.
Risk factor :
High / CVSS Base Score : 7.2
Public Exploit Available : true