The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-0007 advisory.

    - [kvm] x86: zero kvm_vcpu_events->interrupt.pad (Marcelo Tosatti) [665471 665409] {CVE-2010-4525}

    email_6.RHSA-2011-0007 178L, 11970C written
    - [netdrv] igb: only use vlan_gro_receive if vlans are registered (Stefan Assmann) [652804 660192]     {CVE-2010-4263}
    - [kernel] posix-cpu-timers: workaround to suppress the problems with mt exec (Oleg Nesterov) [656267     656268] {CVE-2010-4248}
    - [fs] bio: take care not overflow page count when mapping/copying user data (Danny Feng) [652530 652531]     {CVE-2010-4162}
    - [net] can-bcm: fix minor heap overflow (Danny Feng) [651846 651847] {CVE-2010-3874}
    - [net] filter: make sure filters dont read uninitialized memory (Jiri Pirko) [651704 651705]     {CVE-2010-4158}
    - [net] inet_diag: Make sure we actually run the same bytecode we audited (Jiri Pirko) [651268 651269]     {CVE-2010-3880}
    - [v4l] ivtvfb: prevent reading uninitialized stack memory (Mauro Carvalho Chehab) [648832 648833]     {CVE-2010-4079}
    - [drm] via/ioctl.c: prevent reading uninitialized stack memory (Dave Airlie) [648718 648719]     {CVE-2010-4082}
    - [char] nozomi: clear data before returning to userspace on TIOCGICOUNT (Mauro Carvalho Chehab) [648705     648706] {CVE-2010-4077}
    - [serial] clean data before filling it on TIOCGICOUNT (Mauro Carvalho Chehab) [648702 648703]     {CVE-2010-4075}
    - [net] af_unix: limit unix_tot_inflight (Neil Horman) [656761 656762] {CVE-2010-4249}
    - [block] check for proper length of iov entries in blk_rq_map_user_iov() (Danny Feng) [652958 652959]     {CVE-2010-4163}
    - [net] Limit sendto()/recvfrom()/iovec total length to INT_MAX (Jiri Pirko) [651894 651895]     {CVE-2010-4160}
    - [net] bluetooth: Fix missing NULL check (Jarod Wilson) [655667 655668] {CVE-2010-4242}
    - [kernel] ipc: initialize structure memory to zero for compat functions (Danny Feng) [648694 648695]     {CVE-2010-4073}
    - [kernel] shm: fix information leak to userland (Danny Feng) [648688 648689] {CVE-2010-4072}
    - [fs] xfs: prevent reading uninitialized stack memory (Dave Chinner) [630808 630809] {CVE-2010-3078}
    - [net] fix rds_iovec page count overflow (Jiri Pirko) [647423 647424] {CVE-2010-3865}
    - [usb] serial/mos*: prevent reading uninitialized stack memory (Don Zickus) [648697 648698]     {CVE-2010-4074}
    - [kernel] ecryptfs_uid_hash() buffer overflow (Jerome Marchand) [626320 611388] {CVE-2010-2492}
    - [sound] seq/oss - Fix double-free at error path of snd_seq_oss_open() (Jaroslav Kysela) [630554 630555]     {CVE-2010-3080}
    - [netdrv] prevent reading uninitialized memory in hso driver (Thomas Graf) [633143 633144]     {CVE-2010-3298}
    - [fs] aio: check for multiplication overflow in do_io_submit (Jeff Moyer) [629450 629451] {CVE-2010-3067}
    - [net] fix info leak from kernel in ethtool operation (Neil Horman) [646727 646728] {CVE-2010-3861}
    - [net] packet: fix information leak to userland (Jiri Pirko) [649899 649900] {CVE-2010-3876}
    - [net] clean up info leak in act_police (Neil Horman) [636393 636394] {CVE-2010-3477}
    - [net] Fix priv escalation in rds protocol (Neil Horman) [642899 642900] {CVE-2010-3904}
    - [v4l] Remove compat code for VIDIOCSMICROCODE (Mauro Carvalho Chehab) [642472 642473] {CVE-2010-2963}
    - [kernel] tracing: do not allow llseek to set_ftrace_filter (Jiri Olsa) [631625 631626] {CVE-2010-3079}
    - [drm] fix ioctls infoleak (Danny Feng) [626319 621437] {CVE-2010-2803}
    - [netdrv] wireless extensions: fix kernel heap content leak (John Linville) [628437 628438]     {CVE-2010-2955}
    - [netdrv] niu: buffer overflow for ETHTOOL_GRXCLSRLALL (Danny Feng) [632071 632072] {CVE-2010-3084}
    - [virt] KVM: Fix fs/gs reload oops with invalid ldt (Avi Kivity) [639884 639885] {CVE-2010-3698}
    - [drm] i915: prevent arbitrary kernel memory write (Jerome Marchand) [637690 637691] {CVE-2010-2962}
    - [kernel] prevent heap corruption in snd_ctl_new() (Jerome Marchand) [638485 638486] {CVE-2010-3442}
    - [block] Fix pktcdvd ioctl dev_minor range check (Jerome Marchand) [638088 638089] {CVE-2010-3437}
    - [net] sctp: Fix out-of-bounds reading in sctp_asoc_get_hmac() (Jiri Pirko) [640461 640462]     {CVE-2010-3705}
    - [net] sctp: Do not reset the packet during sctp_packet_config() (Jiri Pirko) [637681 637682]     {CVE-2010-3432}
    - [misc] make compat_alloc_user_space() incorporate the access_ok() (Xiaotian Feng) [634465 634466]     {CVE-2010-3081}
    - [x86] kernel: fix IA32 System Call Entry Point Vulnerability (Xiaotian Feng) [634451 634452]     {CVE-2010-3301}

Tenable has extracted the preceding description block directly from the Oracle Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

Oracle Linux 6 : kernel (ELSA-2011-0007)

high Nessus Plugin ID 68177

Version 1.21