JVN Info.

Id
5120  
Name
JVNDB-2016-005893  
Title
Linux Kernel の lib/assoc_array.c の assoc_array_insert_into_terminal_node 関数におけるカーネルメモリから重要な情報を取得される脆弱性  
Summary
Linux Kernel の lib/assoc_array.c の assoc_array_insert_into_terminal_node 関数は、slot が leaf であるかどうかをチェックしないため、カーネルメモリから重要な情報を取得される、またはサービス運用妨害 (不正なポインタデリファレンスおよび境界外読み取り) 状態にされる脆弱性が存在します。  
Nvdinfo
CVE-2016-7914  
Cvssv2
7.1  
Jvnurl
http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-005893.html  
Published Date
2016-05-04  
Registered Date
2016-11-17  
Last Updated Date
2016-11-17  

Actions

Related Nessuslogs

Id Log ID Jvninfo Id Plugin ID CVE CVSS Risk Host Protocol Port Name Synopsis Description Solution See Also Plugin Output Actions
51332 H28_MUN_DWEB_Q4_172_16_240_seg.csv 5120 89116 CVE-2008-5342 10 Critical 172.16.240.115 tcp 443 VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2009-0014) (remote check) The remote host is missing a security-related patch. The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities, in the following components : - ISC DHCP dhclient - Integrated Services Digital Network (ISDN) subsystem - Java Runtime Environment (JRE) - Java SE Development Kit (JDK) - Java SE Web Start - Linux kernel - Linux kernel 32-bit and 64-bit emulation - Linux kernel Simple Internet Transition INET6 - Linux kernel tty - Linux kernel virtual file system (VFS) - Red Hat dhcpd init script for DHCP - SBNI WAN driver Apply the appropriate patch according to the vendor advisory that pertains to ESX / ESXi version 3.5 / 4.0. https://www.vmware.com/security/advisories/VMSA-2009-0014 ESX version : ESX 4.0 Installed build : 208167 Fixed build : 219382
56913 H28_DWEB_NW_Scan_Q1_172_16_240_Seg_20160518_hepxqa.csv 5120 89116 CVE-2008-5342 10 Critical 172.16.240.115 tcp 443 VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2009-0014) (remote check) The remote host is missing a security-related patch. The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities, in the following components : - ISC DHCP dhclient - Integrated Services Digital Network (ISDN) subsystem - Java Runtime Environment (JRE) - Java SE Development Kit (JDK) - Java SE Web Start - Linux kernel - Linux kernel 32-bit and 64-bit emulation - Linux kernel Simple Internet Transition INET6 - Linux kernel tty - Linux kernel virtual file system (VFS) - Red Hat dhcpd init script for DHCP - SBNI WAN driver Apply the appropriate patch according to the vendor advisory that pertains to ESX / ESXi version 3.5 / 4.0. https://www.vmware.com/security/advisories/VMSA-2009-0014 ESX version : ESX 4.0 Installed build : 208167 Fixed build : 219382