Scientific Linux Security Update : kernel on SL5.x i386/x86_64
Medium Nessus Plugin ID 65241
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionThis update fixes the following security issues :
- A flaw was found in the way file permission checks for the '/dev/cpu/[x]/msr' files were performed in restricted root environments (for example, when using a capability-based security model). A local user with the ability to write to these files could use this flaw to escalate their privileges to kernel level, for example, by writing to the SYSENTER_EIP_MSR register.
- A race condition was found in the way the Linux kernel's ptrace implementation handled PTRACE_SETREGS requests when the debuggee was woken due to a SIGKILL signal instead of being stopped. A local, unprivileged user could use this flaw to escalate their privileges.
The system must be rebooted for this update to take effect.
SolutionUpdate the affected packages.