Soluções para vulnerabilidades
 |
exames adicionados nos últimos 7 dias |
| O Exame Periódico de Vulnerabilidade do WatchMouse verifica a vulnerabilidade abaixo. Para ver as soluções para vulneralidades adicionadas mais recentemente que são examinadas pelo WatchMouse, acesse a visão geral das Soluções para vulnerabilidades |
| Categoria: Ubuntu Local Security Checks | Fator de risco: High | Adicionado: 2 Jul 2009 |
| Synopsis: These remote packages are missing security patches : - linux-doc-2.6.15 - linux-doc-2.6.24 - linux-doc-2.6.27 - linux-doc-2.6.28 - linux-headers-2.6.15-54 - linux-headers-2.6.15-54-386 - linux-headers-2.6.15-54-686 - linux-headers-2.6.15-54-amd64-generic - linux-headers-2.6.15-54-amd64-k8 - linux-headers-2.6.15-54-amd64-server - linux-headers-2.6.15-54-amd64-xeon - linux-headers-2.6.15-54-k7 - linux-headers-2.6.15-54-powerpc - linux-headers-2.6.15-54-powerpc-smp - linux-headers-2.6.15-54-powe [...] Description: Igor Zhbanov discovered that NFS clients were able to create device nodes even when root_squash was enabled. An authenticated remote attacker could create device nodes with open permissions, leading to a loss of privacy or escalation of privileges. Only Ubuntu 8.10 and 9.04 were affected. (CVE-2009-1072) Dan Carpenter discovered that SELinux did not correctly handle certain network checks when running with compat_net=1. A local attacker could exploit this to bypass network checks. Default Ubuntu installations do not enable SELinux, and only Ubuntu 8.10 and 9.04 were affected. (CVE-2009-1184) Shaohua Li discovered that memory was not correctly initialized in the AGP subsystem. A local attacker could potentially read kernel memory, leading to a loss of privacy. (CVE-2009-1192) Benjamin Gilbert discovered that the VMX implementation of KVM did not correctly handle certain registers. An attacker in a guest VM could exploit this to cause a host system crash, leading to a denial of service. This only affe [...] Solution: Upgrade to : - linux-doc-2.6.15-2.6.15-54.77 (Ubuntu 6.06) - linux-doc-2.6.24-2.6.24-24.55 (Ubuntu 8.04) - linux-doc-2.6.27-2.6.27-14.35 (Ubuntu 8.10) - linux-doc-2.6.28-2.6.28-13.45 (Ubuntu 9.04) - linux-headers-2.6.15-54-2.6.15-54.77 (Ubuntu 6.06) - linux-headers-2.6.15-54-386-2.6.15-54.77 (Ubuntu 6.06) - linux-headers-2.6.15-54-686-2.6.15-54.77 (Ubuntu 6.06) - linux-headers-2.6.15-54-amd64-generic-2.6.15-54.77 (Ubuntu 6.06) - linux-headers-2.6.15-54-amd64-k8-2.6.15-54.77 (Ubuntu 6.06) - linux-headers-2 [...] Risk factor: High / CVSS Base Score : 7.8 (CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C) |
||
