Summary
The remote host is missing updates announced in
advisory GLSA 200312-02.
Solution
It is recommended that all Gentoo Linux users upgrade their machines to use the latest stable version of their preferred kernel sources.
# emerge sync
# emerge -pv [your preferred kernel sources]
# emerge [your preferred kernel sources]
# [update the /usr/src/linux symlink]
# [compile and install your new kernel]
# [emerge any necessary kernel module ebuilds]
# [reboot]
http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200312-02 http://bugs.gentoo.org/show_bug.cgi?id=34844
Insight
A flaw in the do_brk() function of the Linux kernel 2.4.22 and earlier can be exploited by local users or malicious services to gain root privileges.
Severity
Classification
-
CVE CVE-2003-0961 -
CVSS Base Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities