What is the severity of RHSA-2008:0129?

RHSA-2008:0129 is classified as an important security vulnerability due to issues that allow unprivileged users to gain root access.

How do I fix RHSA-2008:0129?

To fix RHSA-2008:0129, update the kernel package to version 2.6.18-53.1.13.el5.

What is the flaw associated with RHSA-2008:0129?

The flaw in RHSA-2008:0129 involves the vmsplice function, which can be exploited to escalate privileges.

Who is affected by RHSA-2008:0129?

All users running the affected versions of the Linux kernel in Red Hat Enterprise Linux 5 are at risk from RHSA-2008:0129.

Is there an exploit available for RHSA-2008:0129?

Yes, there is a public exploit available for the vulnerability described in RHSA-2008:0129.

Vulnerability/
RHSA-2008:0129

12/2/2008

RHSA-2008:0129: Important: kernel security update

First published: Tue Feb 12 2008(Updated: )

The kernel packages contain the Linux kernel, the core of any Linux operating system. A flaw was found in vmsplice. An unprivileged local user could use this flaw to gain root privileges. (CVE-2008-0600) Red Hat is aware that a public exploit for this issue is available. This issue did not affect the Linux kernels distributed with Red Hat Enterprise Linux 2.1, 3, or 4. Red Hat Enterprise Linux 5 users are advised to upgrade to these updated packages, which contain a backported patch to resolve this issue.

Affected Software	Affected Version	How to fix
redhat/kernel	<2.6.18-53.1.13.el5	2.6.18-53.1.13.el5
redhat/kernel	<2.6.18-53.1.13.el5	2.6.18-53.1.13.el5
redhat/kernel-debug	<2.6.18-53.1.13.el5	2.6.18-53.1.13.el5
redhat/kernel-debug-devel	<2.6.18-53.1.13.el5	2.6.18-53.1.13.el5
redhat/kernel-devel	<2.6.18-53.1.13.el5	2.6.18-53.1.13.el5
redhat/kernel-doc	<2.6.18-53.1.13.el5	2.6.18-53.1.13.el5
redhat/kernel-headers	<2.6.18-53.1.13.el5	2.6.18-53.1.13.el5
redhat/kernel-xen	<2.6.18-53.1.13.el5	2.6.18-53.1.13.el5
redhat/kernel-xen-devel	<2.6.18-53.1.13.el5	2.6.18-53.1.13.el5
redhat/kernel-debug	<2.6.18-53.1.13.el5	2.6.18-53.1.13.el5
redhat/kernel-debug-devel	<2.6.18-53.1.13.el5	2.6.18-53.1.13.el5
redhat/kernel-devel	<2.6.18-53.1.13.el5	2.6.18-53.1.13.el5
redhat/kernel-headers	<2.6.18-53.1.13.el5	2.6.18-53.1.13.el5
redhat/kernel-xen	<2.6.18-53.1.13.el5	2.6.18-53.1.13.el5
redhat/kernel-xen-devel	<2.6.18-53.1.13.el5	2.6.18-53.1.13.el5
redhat/kernel-kdump	<2.6.18-53.1.13.el5	2.6.18-53.1.13.el5
redhat/kernel-kdump-devel	<2.6.18-53.1.13.el5	2.6.18-53.1.13.el5

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of RHSA-2008:0129?
RHSA-2008:0129 is classified as an important security vulnerability due to issues that allow unprivileged users to gain root access.
How do I fix RHSA-2008:0129?
To fix RHSA-2008:0129, update the kernel package to version 2.6.18-53.1.13.el5.
What is the flaw associated with RHSA-2008:0129?
The flaw in RHSA-2008:0129 involves the vmsplice function, which can be exploited to escalate privileges.
Who is affected by RHSA-2008:0129?
All users running the affected versions of the Linux kernel in Red Hat Enterprise Linux 5 are at risk from RHSA-2008:0129.
Is there an exploit available for RHSA-2008:0129?
Yes, there is a public exploit available for the vulnerability described in RHSA-2008:0129.

agent/severity
agent/type
agent/softwarecombine
agent/first-publish-date
agent/last-modified-date
collector/redhat-errata
source/Red Hat
anchor-id/RHSA-2008:0129
agent/software-canonical-lookup
agent/title
agent/references
agent/remedy
agent/description
agent/event
agent/trending
agent/tags
agent/source
package-manager/redhat