Mandrake Linux Security Advisory : kernel (MDKSA-2006:124)

Medium Nessus Plugin ID 23875


The remote Mandrake Linux host is missing one or more security updates.


A race condition in the Linux kernel and earlier allows local users to obtain root privileges due to a race condition in the /proc filesystem.

The provided packages are patched to fix these vulnerabilities. All users are encouraged to upgrade to these updated kernels immediately and reboot to effect the fixes.

To update your kernel, please follow the directions located at :


Update the affected packages.

Plugin Details

Severity: Medium

ID: 23875

File Name: mandrake_MDKSA-2006-124.nasl

Version: $Revision: 1.15 $

Type: local

Published: 2006/12/16

Modified: 2015/03/19

Dependencies: 12634

Risk Information

Risk Factor: Medium


Base Score: 6.2

Temporal Score: 5.4

Vector: CVSS2#AV:L/AC:H/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: p-cpe:/a:mandriva:linux:kernel-, p-cpe:/a:mandriva:linux:kernel-BOOT-, p-cpe:/a:mandriva:linux:kernel-i586-up-1GB-, p-cpe:/a:mandriva:linux:kernel-i686-up-4GB-, p-cpe:/a:mandriva:linux:kernel-smp-, p-cpe:/a:mandriva:linux:kernel-source-, p-cpe:/a:mandriva:linux:kernel-source-stripped-, p-cpe:/a:mandriva:linux:kernel-xbox-, p-cpe:/a:mandriva:linux:kernel-xen0-, p-cpe:/a:mandriva:linux:kernel-xenU-, cpe:/o:mandriva:linux:2006

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Mandrake/release, Host/Mandrake/rpm-list

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2006/07/18

Exploitable With


Reference Information

CVE: CVE-2006-3626

BID: 18992

MDKSA: 2006:124