Oval Definition:	oval:org.mitre.oval:def:22451
Revision Date: 2014-05-26 Version: 13 Title: ELSA-2008:0129: kernel security update (Important) Description: The vmsplice_to_pipe function in Linux kernel 2.6.17 through 2.6.24.1 does not validate a certain userspace pointer before dereference, which allows local users to gain root privileges via crafted arguments in a vmsplice system call, a different vulnerability than CVE-2008-0009 and CVE-2008-0010. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2008-0600 ELSA-2008:0129-01 Platform(s): Oracle Linux 5 Product(s): kernel Definition Synopsis Oracle Linux 5.x AND rpm test kernel-headers is earlier than 0:2.6.18-53.1.13.el5 OR kernel is earlier than 0:2.6.18-53.1.13.el5 OR kernel-doc is earlier than 0:2.6.18-53.1.13.el5 OR kernel-PAE-devel is earlier than 0:2.6.18-53.1.13.el5 OR kernel-devel is earlier than 0:2.6.18-53.1.13.el5 OR kernel-debug is earlier than 0:2.6.18-53.1.13.el5 OR kernel-kdump is earlier than 0:2.6.18-53.1.13.el5 OR kernel-xen-devel is earlier than 0:2.6.18-53.1.13.el5 OR kernel-debug-devel is earlier than 0:2.6.18-53.1.13.el5 OR kernel-PAE is earlier than 0:2.6.18-53.1.13.el5 OR kernel-kdump-devel is earlier than 0:2.6.18-53.1.13.el5 OR kernel-xen is earlier than 0:2.6.18-53.1.13.el5
BACK