Detections
Analytics

MiracleLinux 3 : kernel-2.6.18-53.11AXS3 (AXSA:2008-150:05)

high Nessus Plugin ID 284402

Synopsis

The remote MiracleLinux host is missing one or more security updates.

Description

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2008-150:05 advisory.

 The kernel package contains the Linux kernel (vmlinuz), the core of any Linux operating system. The kernel handles the basic functions of the operating system: memory allocation, process allocation, device input and output, etc.
 - [cpufreq] : coordinate to keep abi compatibility with rhel51 (Patch104214) [Bug 4145]
 - revert : CVE-2007-4571 : Convert snd-page-alloc proc file to use seq_file for alsa (Patch200105) [Bug 4145]
 - [sky2] : Disable checksum on Yukon2-XL to prevent an annoying error message caused by the chip glitch (Patch102620) [Bug 4898]
 - [x86_64] replace : extend MCE banks support for Dunnington, Nehalem (Patch108110 -> Patch108111) [Bug 4793]
 - [scsi] replace : megaraid_sas: wait for cmd_status to change (Patch103130) [Bug 4543]
 - [nfs] sunrpc: fix hang due to eventd deadlock (Patch108090) [Bug 4703]
 - [nfs] sunrpc: fix a race in rpciod_down (Patch108091) [Bug 4703]
 - [x86_64] Switching to vsyscall64 causes oops (Jeff Burke) (Patch108100) [Bug 4740]
 - [x86_64] Remove 6 bank limitation in 64 bit MCE reporting code (Patch108110) [Bug 4457]
 - [scsi] megaraid_sas: wait for cmd_status to change (Patch103130) [Bug 4543]
 - [scsi] megaraid_sas: many illegal interrupts appear (Patch103131) [Bug 4779]
 - [cpufreq] Add check for dmi_data in powernow_k8 driver (Patch104211 Patch104213) [Bug 4604]
 - [MAZE] Update MAZE to replace Patch file (Patch300002) [Bug 4774]
 - [cpufreq] revert: Hot fix about cpufreq (Patch104211) [Bug 4604]
 - [cxgb3] revert: Merge cxgb3 driver version 1.0.129a. Although TOE can work with CONFIG_TCP_OFFLOAD, we disable by default. (Patch103090) [Bug 4145]
 - [net] ipv6: Drop packets for loopback address from outside of the box (Patch108086) [Bug 4546]
 - [scsi] lpfc: Update version from 8.1.10.9 to 8.2.0.22 with bug fix (Patch102100 - Patch102104) [Bug 4462]
 - [cpufreq] Hot fix about cpufreq (Patch104200 - Patch104211) [Bug 3958]
 - [cpufreq] Hot fix about cpufreq (Patch104212) [Bug 4531]
 - [x86] Correct cpu cache info for Intel Tolapai (Patch108084) [Bug 4475]
 - [x86] Support ICH10 (Patch108085) [Bug 4527]
 - [misc] Fix a deadlock about smp_send_stop when panic (Patch200100) [Bug 4205]
 - [misc] Fix a deadlock on on_each_cpu (Patch200101) [Bug 4345]
 - [x86] report_lost_ticks fix up (Patch100120) [Bug 4161]
 - [e1000e] Revert 7.6.15.5-NAPI and update to 0.2.9.5 (Patch103113 Patch103114) [Bug 4247]
 - [net] (IPV6) Accept routing header only when hdr->segments_left is zero (Patch108080) [Bug 4377]
 - [net] (IPV6) Fix BUG of ndisc_send_redirect() backport from 2.6.20 (Patch108081) [Bug 4379]
 - [net] (IPV6) Fix ICMPv6 redirect handling with target multicast address backport from 2.6.23 (Patch108082) [Bug 4379]
 - [net] (IPV6) Defer IPv6 device initialization until a valid qdisc is specified (Patch108083) [Bug 4380]
 - [ioat] Update ioat device ids (Patch108032) [Bug 4289]
 - CVE-2007-4571 : Convert snd-page-alloc proc file to use seq_file for alsa [Patch200105]
 - CVE-2007-4997 : off-by-two integer underflow for ieee80211 [Patch200106]
 - CVE-2007-5494 : missing dput in do_lookup error leaks dentries for fs [Patch200107]
 - [fs] sysfs: store inode nrs in s_ino (Eric Sandeen ) [245777] {CVE-2007-3104} [Patch200108]
 - Delete [Patch103007], which been instead by [Patch200108]
 - [fs] sysfs: fix condition check in sysfs_drop_dentry() (Eric Sandeen ) [245777] {CVE-2007-3104} [Patch200109]
 - [fs] sysfs: fix race condition around sd->s_dentry (Eric Sandeen ) [245777] {CVE-2007-3104} [Patch200110]
 - [fs] core dump file ownership (Don Howard ) [396991] {CVE-2007-6206} [Patch200111]
 - [fs] corruption by unprivileged user in directories (Vitaly Mayatskikh ) [428796] {CVE-2008-0001} [Patch200112]
 - CVE-2008-0600 : kernel vmsplice_to_pipe flaw [Patch200115]
 - CVE-2006-6921 : Denial of service with wedged processes [Patch200116]
 - CVE-2007-6063 : fix possible isdn_net buffer overflows [Patch200118]
 - CVE-2007-6694 : fix possible strncmp NULL pointer usage [Patch200119]
 - CVE-2007-5938 : fix NULL dereference in iwl driver [Patch200120]
 - [KAHO] Delete Debug option (Patch300004) [Bug 4290]
 - [KAHO] Fix the invalid state change (Patch300004) [Bug 4291]
 - [KAHO] Fix the deadlock in consecutive memory allocation (Patch300004) [Bug 4292]
 - [KAHO] Fix typo in error message (Patch300004) [Bug 4293]
 - [MAZE] Update MAZE to replace Patch file (Patch300002) [Bug 4309]
 - [e1000e] Fix network link down when repeating to reboot (Patch103112) [Bug 4184]
 - [MAZE] Update MAZE to replace Patch file (Patch300002) [Bug 4181]
 - [E7221] Add E7221 pci ids to kernel (Patch108040) [Bug 3909]
 - [IA64] forbid ptrace changes psr.ri to 3 (Patch108050) [Bug 3576]
 - [igb] Backport patch for 2.6.18 (Patch103081) [Bug 4129]
 - [stex] Update patch of 3.06.0205.00 (Patch102060) [Bug 3858]
 - [ocfs2] Update version number to 1.2.8 (Patch103100) [Bug 4073]
 - [e1000e] Fix unknown symbol e1000_intr_msi (Patch103110) [Bug 4105]
 - [e1000e] Fix ethtool gets a wrong driver name (Patch103111) [Bug 4144]
 - [IOAPIC] Fix IOAPIC uniqe ID checking (Patch108060) [Bug 4057]
 - [cxgb3] Merge cxgb3 driver version 1.0.129a. Although TOE can work with CONFIG_TCP_OFFLOAD, we disable by default. (Patch103090) [Bug 3928]
 - [x86 oprofile] Add support for the latest Intel processors to Oprofile [Patch108001 Bug 3948]
 - [ixgbe] Add support ixgbe-1.3.16.1 [Patch103071 Patch103072 Bug 3950]
 - [dca] Add a new module dca which depend by ioat && ixgbe [Patch103070]
 - [igb] Update igb driver to version 1.2.22 (Patch103080) [Bug 3954]
 - [ioat] Update ioat driver to version 1.9 and support unisys (Patch108030, Patch108030) [Bug 3956]
 - [ACPICA] Fix acpi-cpufreq boot crash due to _PSD return-by-reference [Patch108000 Bug 3957]
 - [e1000e] Update e1000e to v7.6.15 with replace Patch files (Patch103042, Patch103043, Patch103044, Patch103045, Patch103047, Patch103048, Patch103049) [Bug 4055]
 - [comptemp] Add support coretemp driver for hwmon using a snapshot of torvalds/linux-2.6.git (Patch108010) [Bug 4071]
 - [it87] Add IT8716F/IT8718F/IT8726F support (Patch108020) [Bug 4072]
 - [ocfs2] Update ocfs2 driver to version 1.2.8-2 (Patch103051) [Bug 4073]
 - [PCI IDS] Update pci_ids HT1000 [Patch104001 ~ Patch104002] MCP67/73/77 [Patch104003 ~ Patch104006] VIA VT8237S [Patch104007] INTEL TOLAPAI [Patch104008 ~ Patch104009] BCM82XX [Patch104010 ~ Patch104014]
 - [KAHO] Add KAHO runtime binary patch function (Patch300001, bug#4019)
 - [MAZE] Add MAZE Monitoring function (Patch300002, bug#4025)
 - [SCTP] Upgrade of based codes to 2.6.21 of stock kernel and bug fix for AXS3SP1 (Patch300003, bug#4027)
 - Build Base Kernel For Asianux
 - Merge patches from AX20 SP2
 - [Patches 100100 100101 100200 100201 102030 102031 102040 102050 103000
 - 103002 103060]
 - Merge patches from AXS3
 - [Patches 100102 100104 100105 100110 100111 100112 100114 100115 100300
 - 102011 102012 102014 102015 102020 102021 102022 102023 102024 102051
 - 102052 102500 102501 102600 102601 103004 103005 103006 103007 103010
 - 103011 103012 103013 103014 103015 103018 103019 103020 103021 103022
 - 103023 103031 103032 103034 103039 103040 103041 103042 103043 103044
 - 103045 103046 103047 103048 103049 103050 103052 103053 103056 103057
 - 103059 103061 103062 200000 200001 200002 200003 200004 200005 200006
 - 200007 200011]
 - [GFS2] handle multiple demote requests
 - [scsi] megaraid_sas: kabi fix for /proc entries
 - [sound] allow creation of null parent devices
 - [net] iwlwifi: avoid BUG_ON in tx cmd queue processing
 - [GFS2] Get super block a different way
 - [GFS2] dlm: schedule during recovery loops
 - Revert: [pata] IDE (siimage) panics when DRAC4 reset
 - Revert: [net] bonding: convert timers to workqueues
 - [pata] enable IDE (siimage) DRAC4
 - [GFS2] gfs2_writepage(s) workaround
 - [scsi] aacraid: Missing ioctl() permission checks {CVE-2007-4308}
 - [GFS2] Solve journaling/{release|invalidate}page issues
 - [x86_64] syscall vulnerability CVE-2007-4573}
 - [GFS2] Fix i_cache stale entry
 - [GFS2] deadlock running revolver load with lock_nolock

Tenable has extracted the preceding description block directly from the MiracleLinux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Update the affected packages.

See Also

https://tsn.miraclelinux.com/en/node/247

Plugin Details

Severity: High

ID: 284402

File Name: miracle_linux_AXSA-2008-150.nasl

Version: 1.1

Type: local

Published: 1/14/2026

Updated: 1/14/2026

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: High

Score: 8.9

Vendor

Vendor Severity: High

CVSS v2

Risk Factor: High

Base Score: 7.2

Temporal Score: 6.3

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2008-0600

CVSS v3

Risk Factor: High

Base Score: 7.8

Temporal Score: 7.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:miracle:linux:kernel-devel, p-cpe:/a:miracle:linux:kernel, p-cpe:/a:miracle:linux:kernel-headers, cpe:/o:miracle:linux:3, p-cpe:/a:miracle:linux:kernel-pae, p-cpe:/a:miracle:linux:kernel-xen, p-cpe:/a:miracle:linux:kernel-pae-devel, p-cpe:/a:miracle:linux:kernel-xen-devel

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/MiracleLinux/release, Host/MiracleLinux/rpm-list

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 9/28/2008

Vulnerability Publication Date: 1/12/2007

Exploitable With

CANVAS (CANVAS)

Core Impact

Reference Information

CVE: CVE-2006-6921, CVE-2007-3104, CVE-2007-4308, CVE-2007-4571, CVE-2007-4573, CVE-2007-4997, CVE-2007-5494, CVE-2007-5938, CVE-2007-6063, CVE-2007-6206, CVE-2007-6694, CVE-2008-0001, CVE-2008-0600