Amazon Linux AMI : kernel (ALAS-2015-544)
Medium Nessus Plugin ID 84245
SynopsisThe remote Amazon Linux AMI host is missing a security update.
DescriptionA flaw was found in the way seunshare, a utility for running executables under a different security context, used the capng_lock functionality of the libcap-ng library. The subsequent invocation of suid root binaries that relied on the fact that the setuid() system call, among others, also sets the saved set-user-ID when dropping the binaries' process privileges, could allow a local, unprivileged user to potentially escalate their privileges on the system.
SolutionRun 'yum clean all' followed by 'yum update kernel' to update your system. You will need to reboot your system in order for the new kernel to be running.