Vendor Status Note JVNCIAC-P-188

Red Hat Linux カーネルの複数の脆弱性

Red Hat Linux カーネルには、複数の脆弱性があります。

ローカルユーザが root 権限を取得する可能性があります。

ベンダ	リンク	更新日
Red Hat	Red Hat Security Advisory RHSA-2005:366 Important: kernel security update

1. ISS X-Force Database: linux-kernel-ntfs-dos(19232)
   Linux kernel NTFS denial of service
2. ISS X-Force Database: kernel-netfilter-iptable-bypass(19365)
   Linux Kernel netfilter/iptables module security bypass
3. ISS X-Force Database: linux-kernel-ppp-dos(19710)
   Linux Kernel PPP server denial of service
4. ISS X-Force Database: kernel-ext2-information-disclosure(19866)
   Linux Kernel ext2 information disclosure
5. ISS X-Force Database: linux-ip-packet-dos(17800)
   Linux kernel IP packet denial of service
6. ISS X-Force Database: linux-proc-bo(19326)
   Linux Kernel locks_read_proc function buffer overflow
7. ISS X-Force Database: linux-driverscharntty-kernel-memory(19327)
   Linux Kernel drivers/char/n_tty.c kernel memory disclosure
8. ISS X-Force Database: linux-atmgetaddr(19329)
   Linux Kernel adm_get_addr function vulnerability
9. ISS X-Force Database: kernel-sysepollwait-bo(19701)
   Linux Kernel 'sys_epoll_wait' function integer overflow
10. ISS X-Force Database: kernel-loadelflibrary-dos(19867)
    Linux Kernel load_elf_library denial of service
11. ISS X-Force Database: kernel-bluezsockcreate-integer-underflow(19844)
    Linux Kernel bluez_sock_create function integer underflow
12. ISS X-Force Database: Linux-radeon-gain-privileges(19324)
    Linux Kernel radeon driver allows elevated privileges
13. ISS X-Force Database: kernel-iso9660-filesystem(19741)
    Linux Kernel ISO9660 filesystem
14. ISS X-Force Database: kernel-sysfswritefile-integer-overflow(20076)
    Linux Kernel sysfs_write_file function integer overflow