Fedora 7 : kernel-18.104.22.168-64.fc7 (2008-0958)
High Nessus Plugin ID 30113
SynopsisThe remote Fedora host is missing a security update.
DescriptionUpdate to Linux kernel 22.214.171.124:
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-126.96.36.199 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-188.8.131.52 CVE-2008-0001: VFS in the Linux kernel before 184.108.40.206, and 2.6.23.x before 220.127.116.11, performs tests of access mode by using the flag variable instead of the acc_mode variable, which might allow local users to bypass intended permissions and remove directories. Plus:
Major wireless driver updates. Restored the /proc/slabinfo file.
Additional bug fixes for the listed Bugzilla entries.
Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
SolutionUpdate the affected kernel package.