Scientific Linux Security Update : kernel on SL5.x i386/x86_64
High Nessus Plugin ID 60859
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionThis update fixes the following security issue :
- The compat_alloc_user_space() function in the Linux kernel 32/64-bit compatibility layer implementation was missing sanity checks. This function could be abused in other areas of the Linux kernel if its length argument can be controlled from user-space. On 64-bit systems, a local, unprivileged user could use this flaw to escalate their privileges. (CVE-2010-3081, Important)
The system must be rebooted for this update to take effect.
SolutionUpdate the affected packages.