Secunia Security Advisory - Red Hat has issued an update for the kernel. This fixes some security issues and vulnerabilities, which can be exploited by malicious, local users to disclose system information. manipulate certain data, cause a DoS (Denial of Service), and potentially gain escalated privileges, and by malicious people to cause a DoS.
9503daca2321b53287aea383738a77c23a9c3bde65cb6f01783d8a0b0550122e----------------------------------------------------------------------
Secunia integrated with Microsoft WSUS
http://secunia.com/blog/71/
----------------------------------------------------------------------
TITLE:
Red Hat update for kernel
SECUNIA ADVISORY ID:
SA38226
VERIFY ADVISORY:
http://secunia.com/advisories/38226/
DESCRIPTION:
Red Hat has issued an update for the kernel. This fixes some security
issues and vulnerabilities, which can be exploited by malicious, local
users to disclose system information. manipulate certain data, cause a
DoS (Denial of Service), and potentially gain escalated privileges,
and by malicious people to cause a DoS.
For more information:
SA23349
SA32320
SA35705
SA36927
SA37435
SA37590
SA38199
1) The qla2xxx driver for QLogic Fibre Channel PCI/PCIe host adapters
sets world-writable permissions for the "/sys/class/scsi_host/[a
qla2xxx host]/vport_create" and "/sys/class/scsi_host/[a qla2xxx
host]/vport_delete" files, which can be exploited to change certain
SCSI attributes.
Note: This only affects systems using the qla2xxx driver with NPIV
capable hardware.
SOLUTION:
Updated packages are available via Red Hat Network.
http://rhn.redhat.com
ORIGINAL ADVISORY:
RHSA-2010-0046:
https://rhn.redhat.com/errata/RHSA-2010-0046.html
OTHER REFERENCES:
SA23349:
http://secunia.com/advisories/23349/
SA32320:
http://secunia.com/advisories/32320/
SA35705:
http://secunia.com/advisories/35705/
SA36927:
http://secunia.com/advisories/36927/
SA37435:
http://secunia.com/advisories/37435/
SA37590:
http://secunia.com/advisories/37590/
SA38199:
http://secunia.com/advisories/38199/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/advisories/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed