Oval Definition:oval:org.mitre.oval:def:21705
Revision Date:2014-05-26Version:13
Title:ELSA-2007:0936: kernel security update (Important)
Description:The IA32 system call emulation functionality in Linux kernel 2.4.x and 2.6.x before 2.6.22.7, when running on the x86_64 architecture, does not zero extend the eax register after the 32bit entry path to ptrace is used, which might allow local users to gain privileges by triggering an out-of-bounds access to the system call table using the %RAX register.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2007-4573
ELSA-2007:0936-01
Platform(s):Oracle Linux 5
Product(s):kernel
Definition Synopsis
  • Oracle Linux 5.x
  • AND rpm test
  • kernel-headers is earlier than 0:2.6.18-8.1.14.el5
  • OR kernel is earlier than 0:2.6.18-8.1.14.el5
  • OR kernel-doc is earlier than 0:2.6.18-8.1.14.el5
  • OR kernel-PAE-devel is earlier than 0:2.6.18-8.1.14.el5
  • OR kernel-devel is earlier than 0:2.6.18-8.1.14.el5
  • OR kernel-kdump is earlier than 0:2.6.18-8.1.14.el5
  • OR kernel-xen-devel is earlier than 0:2.6.18-8.1.14.el5
  • OR kernel-PAE is earlier than 0:2.6.18-8.1.14.el5
  • OR kernel-kdump-devel is earlier than 0:2.6.18-8.1.14.el5
  • OR kernel-xen is earlier than 0:2.6.18-8.1.14.el5
    • BACK