https://oss.oracle.com/pipermail/el-errata/2014-August/004375.html
https://oss.oracle.com/pipermail/el-errata/2014-August/004376.html
Severity: High
ID: 77355
File Name: oraclelinux_ELSA-2014-3070.nasl
Version: 1.20
Type: local
Agent: unix
Family: Oracle Linux Local Security Checks
Published: 2014/08/23
Updated: 2019/09/30
Dependencies: 12634, 122878
Risk Factor: High
Base Score: 7.2
Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C
CPE: p-cpe:/a:oracle:linux:dtrace-modules-3.8.13-44.el6uek, p-cpe:/a:oracle:linux:dtrace-modules-3.8.13-44.el7uek, p-cpe:/a:oracle:linux:kernel-uek, p-cpe:/a:oracle:linux:kernel-uek-debug, p-cpe:/a:oracle:linux:kernel-uek-debug-devel, p-cpe:/a:oracle:linux:kernel-uek-devel, p-cpe:/a:oracle:linux:kernel-uek-doc, p-cpe:/a:oracle:linux:kernel-uek-firmware, cpe:/o:oracle:linux:6, cpe:/o:oracle:linux:7
Required KB Items: Host/local_checks_enabled, Host/OracleLinux, Host/RedHat/release, Host/RedHat/rpm-list
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 2014/08/22
Vulnerability Publication Date: 2013/11/04
CANVAS (CANVAS)
Core Impact
Metasploit (Android "Towelroot" Futex Requeue Kernel Exploit)
CVE: CVE-2013-2930, CVE-2013-4348, CVE-2013-4579, CVE-2014-0181, CVE-2014-1690, CVE-2014-1737, CVE-2014-1738, CVE-2014-3144, CVE-2014-3145, CVE-2014-3153, CVE-2014-4667, CVE-2014-4699, CVE-2014-4943