Oval Definition:oval:org.mitre.oval:def:20888
Revision Date:2014-02-17Version:108
Title:RHSA-2013:0747: kernel security and bug fix update (Moderate)
Description:The xfrm_state_netlink function in net/xfrm/xfrm_user.c in the Linux kernel before 3.5.7 does not properly handle error conditions in dump_one_state function calls, which allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) by leveraging the CAP_NET_ADMIN capability.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CESA-2013:0747
CVE-2012-6537
CVE-2012-6542
CVE-2012-6546
CVE-2012-6547
CVE-2013-0216
CVE-2013-0231
CVE-2013-1826
RHSA-2013:0747-00
Platform(s):CentOS Linux 5
Red Hat Enterprise Linux 5
Product(s):kernel
Definition Synopsis
  • Redhat 5 or Centos 5 release
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • OR The operating system installed on the system is CentOS Linux 5.x
  • AND Packages section
  • kernel-xen is earlier than 0:2.6.18-348.4.1.el5
  • OR kernel-debug is earlier than 0:2.6.18-348.4.1.el5
  • OR kernel is earlier than 0:2.6.18-348.4.1.el5
  • OR kernel-devel is earlier than 0:2.6.18-348.4.1.el5
  • OR kernel-PAE-devel is earlier than 0:2.6.18-348.4.1.el5
  • OR kernel-PAE is earlier than 0:2.6.18-348.4.1.el5
  • OR kernel-kdump-devel is earlier than 0:2.6.18-348.4.1.el5
  • OR kernel-xen-devel is earlier than 0:2.6.18-348.4.1.el5
  • OR kernel-headers is earlier than 0:2.6.18-348.4.1.el5
  • OR kernel-doc is earlier than 0:2.6.18-348.4.1.el5
  • OR kernel-kdump is earlier than 0:2.6.18-348.4.1.el5
  • OR kernel-debug-devel is earlier than 0:2.6.18-348.4.1.el5
    • BACK