CERT-In Advisory CIAD-2009-03
Multiple Vulnerabilities in Linux Kernel
Original issue date:
January 20, 2009
Severity Rating: High
Systems Affected
- Red Hat Enterprise Linux AS (v. 2.1)
- Red Hat Enterprise Linux ES (v. 2.1)
- Red Hat Enterprise Linux WS (v. 2.1)
- Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor
Overview
Updated kernel packages that fix a number of security issues are now available for Red Hat Enterprise Linux 2.1 running on 32-bit and 64-bit architectures.
Description
Red Hat has issued an update for the kernel. This fixes some vulnerabilities and security issues, which can be exploited by local attackers to cause a Denial of Service (DoS), disclose potentially sensitive information, bypass certain security restrictions, and gain escalated privileges.
Solution
Updated packages are available via Red Hat Network.
http://rhn.redhat.com
Vendor Information
RedHat
http://rhn.redhat.com/errata/RHSA-2008-0787.html
http://rhn.redhat.com/errata/RHSA-2009-0001.html
References
RedHat
http://rhn.redhat.com/errata/RHSA-2008-0787.html
http://rhn.redhat.com/errata/RHSA-2009-0001.html
Secunia
http://secunia.com/advisories/33280/
LWN.net
http://lwn.net/Articles/313431/
CVE Name
CVE-2006-4538
CVE-2006-4814
CVE-2007-2172
CVE-2007-3848
CVE-2007-4308
CVE-2007-6063
CVE-2007-6151
CVE-2007-6206
CVE-2008-0007
CVE-2008-2136
CVE-2008-3275
CVE-2008-3525
CVE-2008-4210
Disclaimer
The information provided herein is on "as is" basis, without warranty of any kind.
Contact Information
Phone: +91-11-24368572
Postal address
Indian Computer Emergency Response Team (CERT-In)
Ministry of Communications and Information Technology
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003
|
