Scientific Linux Security Update : kernel on SL4.x i386/x86_64

High Nessus Plugin ID 60461


The remote Scientific Linux host is missing one or more security updates.


These updated packages fix the following bugs :

- the GNU libc stub resolver is a minimal resolver that works with Domain Name System (DNS) servers to satisfy requests from applications for names. The GNU libc stub resolver did not specify a source UDP port, and therefore used predictable port numbers. This could have make DNS spoofing attacks easier.

The Linux kernel has been updated to implement random UDP source ports where none are specified by an application. This allows applications, such as those using the GNU libc stub resolver, to use random UDP source ports, helping to make DNS spoofing attacks harder.

- A set of patches detailed as 'sys_times: Fix system unresponsiveness during many concurrent invocation of sys_times()' and 'Minor code cleanup to sys_times() call' introduced regression which caused a kernel panic under high load. These patches were reverted in the current release.

- A process could hang in an uninterruptible state while accessing application data files due to race condition in asynchronous direct I/O system calls.

- USB devices would not be detected on a PowerEdge R805 system. USB devices are now able to be detected on the aforementioned system with this update.

Further, these updated packages add the following enhancement :

- Added HDMI support for AMD ATI chipsets RS780, RV610, RV620, RV630, RV635, RV670 and RV770.


Update the affected packages.

See Also

Plugin Details

Severity: High

ID: 60461

File Name: sl_20080806_kernel_on_SL4_x.nasl

Version: $Revision: 1.1 $

Type: local

Agent: unix

Published: 2012/08/01

Modified: 2012/08/01

Dependencies: 12634

Risk Information

Risk Factor: High

Vulnerability Information

CPE: x-cpe:/o:fermilab:scientific_linux

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/RedHat/release, Host/RedHat/rpm-list

Patch Publication Date: 2008/08/06