Gentoo Security Advisory GLSA 200408-24 (Kernel) Network Vulnerability

Summary

The remote host is missing updates announced in advisory GLSA 200408-24.

Solution

Users are encouraged to upgrade to the latest available sources for their system: # emerge sync # emerge -pv your-favorite-sources # emerge your-favorite-sources # # Follow usual procedure for compiling and installing a kernel. # # If you use genkernel, run genkernel as you would normally. http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200408-24 http://bugs.gentoo.org/show_bug.cgi?id=59378 http://bugs.gentoo.org/show_bug.cgi?id=59905 http://bugs.gentoo.org/show_bug.cgi?id=59769

Insight

Multiple information leaks have been found in the Linux kernel, allowing an attacker to obtain sensitive data which may be used for further exploitation of the system.

Severity

Classification

CVE CVE-2004-0415, CVE-2004-0685

CVSS	Base Score: 4.6 AV:L/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Gentoo Security Advisory GLSA 200501-16 (Konqueror, kde, kdelibs)
Gentoo Security Advisory GLSA 200406-15 (Usermin)
Gentoo Security Advisory GLSA 200404-06 ()
Gentoo Security Advisory GLSA 200406-08 (Squirrelmail)
Gentoo Security Advisory GLSA 200502-12 (Webmin)

Take action and discover your vulnerabilities