forum.opennet.ru

Составление сообщения

Исходное сообщение

"Компания Oracle представила сервис для проверки необходимост..."
Отправлено Аноним, 03-Апр-13 13:48

[neo@matrix ~]$ uname -r
2.6.32-279.el6.x86_64
[neo@matrix ~]$ (uname -s; uname -m; uname -r; uname -v) | curl https://uptrack.api.ksplice.com/api/1/update-list/ &nbs... -H "Accept: text/text" --data-binary @-
Your kernel needs the following updates:
ext4 filesystem corruption on fallocate.
CVE-2012-2745: Denial-of-service in kernel key management.
CVE-2012-2744: Remote denial-of-service in IPv6 connection tracking.
Unreliable futexes with read-only shared mappings.
CVE-2011-1078: Information leak in Bluetooth SCO link driver.
CVE-2012-2384: Integer overflow in i915 execution buffer.
Livelock due to invalid locking strategy when adding a leap-second.
Heavy system load in futex handling on leap-second insertion.
CVE-2012-2384: Additional fix for integer overflow in i915 execution buffer.
CVE-2012-2390: Memory leak in hugetlbfs mmap() failure.
CVE-2012-2313: Privilege escalation in the dl2k NIC.
CVE-2012-3430: kernel information leak in RDS sockets.
CVE-2012-3552: Denial-of-service in IP options handling.
CVE-2012-3412: Remote denial of service through TCP MSS option in SFC NIC.
Kernel panic in SUNRPC over TCP.
Use-after-free in USB.
Race condition in SUNRPC.
CVE-2012-3400: Buffer overflow in UDF parsing.
CVE-2012-3511: Use-after-free due to race condition in madvise.
CVE-2012-1568: A predictable base address with shared libraries and ASLR.
CVE-2012-2133: Use-after-free in hugetlbfs quota handling.
CVE-2012-5517: NULL pointer dereference in memory hotplug.
CVE-2012-4444: Prohibit reassembling IPv6 fragments when some data overlaps.
CVE-2012-4565: Divide by zero in TCP congestion control Algorithm.
CVE-2012-2100: Divide-by-zero mounting an ext4 filesystem.
CVE-2012-2375: Kernel crash in NFSv4.
CVE-2012-2375: Kernel crash in NFSv4.
CVE-2012-4461: Kernel panic KVM XSAVE support.
CVE-2012-4530: Kernel information leak in binfmt execution.
CVE-2012-4398: Denial-of-service in kernel module loading.
CVE-2013-0310: NULL pointer dereference in CIPSO socket options.
CVE-2013-0311: Privilege escalation in vhost descriptor management.
CVE-2013-0309: Denial-of-service in transparent huge pages.
CVE-2012-4508: Stale data exposure in ext4.
CVE-2012-4542: SCSI command filter does not restrict access to read-only devices.
CVE-2013-0871: Privilege escalation in PTRACE_SETREGS.
CVE-2013-0268: /dev/cpu/*/msr local privilege escalation.
[neo@matrix ~]$
Линукс явно не из категории поставил и забыл.
Oracle,как бы его не ругали,больше полезен,чем вреден.

Исходное сообщение
"Компания Oracle представила сервис для проверки необходимост..." Отправлено Аноним, 03-Апр-13 13:48
[neo@matrix ~]$ uname -r 2.6.32-279.el6.x86_64 [neo@matrix ~]$ (uname -s; uname -m; uname -r; uname -v) \| curl https://uptrack.api.ksplice.com/api/1/update-list/ &nbs... -H "Accept: text/text" --data-binary @- Your kernel needs the following updates: ext4 filesystem corruption on fallocate. CVE-2012-2745: Denial-of-service in kernel key management. CVE-2012-2744: Remote denial-of-service in IPv6 connection tracking. Unreliable futexes with read-only shared mappings. CVE-2011-1078: Information leak in Bluetooth SCO link driver. CVE-2012-2384: Integer overflow in i915 execution buffer. Livelock due to invalid locking strategy when adding a leap-second. Heavy system load in futex handling on leap-second insertion. CVE-2012-2384: Additional fix for integer overflow in i915 execution buffer. CVE-2012-2390: Memory leak in hugetlbfs mmap() failure. CVE-2012-2313: Privilege escalation in the dl2k NIC. CVE-2012-3430: kernel information leak in RDS sockets. CVE-2012-3552: Denial-of-service in IP options handling. CVE-2012-3412: Remote denial of service through TCP MSS option in SFC NIC. Kernel panic in SUNRPC over TCP. Use-after-free in USB. Race condition in SUNRPC. CVE-2012-3400: Buffer overflow in UDF parsing. CVE-2012-3511: Use-after-free due to race condition in madvise. CVE-2012-1568: A predictable base address with shared libraries and ASLR. CVE-2012-2133: Use-after-free in hugetlbfs quota handling. CVE-2012-5517: NULL pointer dereference in memory hotplug. CVE-2012-4444: Prohibit reassembling IPv6 fragments when some data overlaps. CVE-2012-4565: Divide by zero in TCP congestion control Algorithm. CVE-2012-2100: Divide-by-zero mounting an ext4 filesystem. CVE-2012-2375: Kernel crash in NFSv4. CVE-2012-2375: Kernel crash in NFSv4. CVE-2012-4461: Kernel panic KVM XSAVE support. CVE-2012-4530: Kernel information leak in binfmt execution. CVE-2012-4398: Denial-of-service in kernel module loading. CVE-2013-0310: NULL pointer dereference in CIPSO socket options. CVE-2013-0311: Privilege escalation in vhost descriptor management. CVE-2013-0309: Denial-of-service in transparent huge pages. CVE-2012-4508: Stale data exposure in ext4. CVE-2012-4542: SCSI command filter does not restrict access to read-only devices. CVE-2013-0871: Privilege escalation in PTRACE_SETREGS. CVE-2013-0268: /dev/cpu/*/msr local privilege escalation. [neo@matrix ~]$ Линукс явно не из категории поставил и забыл. Oracle,как бы его не ругали,больше полезен,чем вреден.

Ваше сообщение

Имя*:

EMail:

Для отправки ответов на email укажите знак ! перед адресом, например, !user@host.ru (!! - не показывать email).
Более тонкая настройка отправки ответов производится в профиле зарегистрированного участника форума.

Заголовок*:

Сообщение*:

При общении не допускается: неуважительное отношение к собеседнику, хамство, унизительное обращение, ненормативная лексика, переход на личности, агрессивное поведение, обесценивание собеседника, провоцирование флейма голословными и заведомо ложными заявлениями. Не отвечайте на сообщения, явно нарушающие правила - удаляются не только сами нарушения, но и все ответы на них. Лог модерирования.

Партнёры:

Хостинг:

Закладки на сайте
Проследить за страницей

Created 1996-2024 by Maxim Chirkov
Добавить, Поддержать, Вебмастеру