Summary
The remote host is missing updates to the kernel announced in advisory RHSA-2009:1024.
Security Fixes:
* the exit_notify() function in the Linux kernel did not properly reset the exit signal if a process executed a set user ID (setuid) application before exiting. This could allow a local, unprivileged user to elevate their privileges. (CVE-2009-1337, Important)
* the Linux kernel implementation of the Network File System (NFS) did not properly initialize the file name limit in the nfs_server data structure.
This flaw could possibly lead to a denial of service on a client mounting an NFS share. (CVE-2009-1336, Moderate)
For information on additional bug fixes made in this package, please visit the referenced security advisories.
Users should install this update, which resolves these issues and adds these enhancements.
Solution
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date
References
Severity
Classification
-
CVE CVE-2009-1336, CVE-2009-1337 -
CVSS Base Score: 4.9
AV:L/AC:L/Au:N/C:N/I:N/A:C
Related Vulnerabilities