Rapid7 Vulnerability & Exploit Database

CESA-2008:0089: kernel security and bug fix update

Free InsightVM Trial No credit card necessary
Watch Demo See how it all works
Back to Search

CESA-2008:0089: kernel security and bug fix update



The kernel packages contain the Linux kernel, the core of any Linuxoperating system.These new kernel packages fix the following security issues:A flaw was found in the virtual filesystem (VFS). An unprivileged localuser could truncate directories to which they had write permission; thiscould render the contents of the directory inaccessible. (CVE-2008-0001,Important)A flaw was found in the Xen PAL emulation on Intel 64 platforms. A guestHardware-assisted virtual machine (HVM) could read the arbitrary physicalmemory of the host system, which could make information available tounauthorized users. (CVE-2007-6416, Important)A flaw was found in the way core dump files were created. If a local usercan get a root-owned process to dump a core file into a directory, whichthe user has write access to, they could gain read access to that corefile, potentially containing sensitive information. (CVE-2007-6206, Moderate)A buffer overflow flaw was found in the CIFS virtual file system. Aremote,authenticated user could issue a request that could lead to a denialof service. (CVE-2007-5904, Moderate)A flaw was found in the "sysfs_readdir" function. A local user could createa race condition which would cause a denial of service (kernel oops).(CVE-2007-3104, Moderate)As well, these updated packages fix the following bugs:Red Hat Enterprise Linux 5 users are advised to upgrade to these updatedpackages, which contain backported patches to resolve these issues.


  • centos-upgrade-kernel
  • centos-upgrade-kernel-debug
  • centos-upgrade-kernel-debug-devel
  • centos-upgrade-kernel-devel
  • centos-upgrade-kernel-doc
  • centos-upgrade-kernel-headers
  • centos-upgrade-kernel-kdump
  • centos-upgrade-kernel-kdump-devel
  • centos-upgrade-kernel-pae
  • centos-upgrade-kernel-pae-devel
  • centos-upgrade-kernel-xen
  • centos-upgrade-kernel-xen-devel

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center