Nexpose Vulnerability Database
SUSE-SA:2005:029: several kernel security problems
Severity |
CVSS |
Published |
Added |
Modified |
|---|---|---|---|---|
| Severe (7) | 2.1 (AV:L/AC:L/Au:N/C:N/I:N/A:P) | Jun 9, 2005 | Nov 8, 2005 | Sep 2, 2010 |
Description:
The Linux kernel is the core component of the Linux system.
This update fixes various security as well as non-security problems discovered since the last round of kernel updates.
Not all kernels are affected by all the problems, each of the problems has an affected note attached to it.
The CAN-YYYY-NNNN IDs are Mitre CVE Candidate IDs, please see http://www.mitre.org for more information.
The following security problems have been fixed:
- when creating directories on ext2 filesystems the kernel did not zero initialize the memory allocated. Therefore potentially sensitive information could be exposed to users (CAN-2005-0400).
All SUSE Linux based products are affected.
- local users can crash the kernel via a crafted ELF library or executable, which causes a free of an invalid pointer (CAN-2005-0749).
All SUSE Linux based products are affected.
- local users could gain root access via a bluetooth socket (CAN-2005-0750).
The fix for this problem was missing in SUSE Linux 9.3 only.
- local users could gain root access by causing a core dump of specially crafted ELF executables (CAN-2005-1263).
The problem is believed to be not exploitable on any SUSE Linux based product. The patch is included nevertheless.
- on the x86-64 platform various bugs allowed local users to crash the kernel or CPU (CAN-2005-0756, CAN-2005-1762, CAN-2005-1764, CAN-2005-1765)
All SUSE Linux based products on the x86-64 architecture are affected.
- an overflow in the x86-64 ptrace code allowed local users to write a few bytes into kernel memory pages they normally shouldn't have access to (CAN-2005-1763).
SLES 9 and SUSE Linux 9.1-9.3 on the x86-64 architecture are affected.
- insufficient checks in the 32bit DRM ioctl functions could allow unprivileged local users to gain root access.
SLES 9 and SUSE Linux 9.1-9.3 on the x86-64 architecture are affected.
References:
- BID: http://www.securityfocus.com/bid/12911
- BID: http://www.securityfocus.com/bid/12932
- BID: http://www.securityfocus.com/bid/13891
- BID: http://www.securityfocus.com/bid/13903
- BID: http://www.securityfocus.com/bid/13904
- CVE: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-0400
- CVE: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-0749
- CVE: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-0750
- CVE: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-0756
- CVE: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-1263
- CVE: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-1762
- CVE: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-1763
- CVE: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-1764
- CVE: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-1765
- DEBIAN: http://www.debian.org/security/DSA-/DSA-921
- DEBIAN: http://www.debian.org/security/DSA-/DSA-922
- MANDRAKE: http://www.mandriva.com/security/advisories?name=MDKSA-2005:220
- OVAL: http://oval.mitre.org/oval/definitions/data/OVAL1122.html
- REDHAT: http://rhn.redhat.com/errata/RHSA-2005-283.html
- REDHAT: http://rhn.redhat.com/errata/RHSA-2005-284.html
- REDHAT: http://rhn.redhat.com/errata/RHSA-2005-293.html
- REDHAT: http://rhn.redhat.com/errata/RHSA-2005-366.html
- REDHAT: http://rhn.redhat.com/errata/RHSA-2005-472.html
- REDHAT: http://rhn.redhat.com/errata/RHSA-2005-514.html
- REDHAT: http://rhn.redhat.com/errata/RHSA-2005-529.html
- REDHAT: http://rhn.redhat.com/errata/RHSA-2005-551.html
- REDHAT: http://rhn.redhat.com/errata/RHSA-2005-663.html
- REDHAT: http://rhn.redhat.com/errata/RHSA-2006-0190.html
- REDHAT: http://rhn.redhat.com/errata/RHSA-2006-0191.html
- SECUNIA: http://secunia.com/advisories/14713/
- SECUNIA: http://secunia.com/advisories/15786/
- SECUNIA: http://secunia.com/advisories/17002/
- SECUNIA: http://secunia.com/advisories/17073/
- SECUNIA: http://secunia.com/advisories/18056/
- SECUNIA: http://secunia.com/advisories/18059/
- SECUNIA: http://secunia.com/advisories/18684/
- SECUNIA: http://secunia.com/advisories/19185/
- SECUNIA: http://secunia.com/advisories/19607/
- SGI: ftp://patches.sgi.com/support/free/security/advisories/20060402-01-U
- SUSE: http://www.novell.com/linux/security/advisories.html
- URL: http://arkoon.net/advisories/ext2-make-empty-leak.txt
- URL: http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.11.6
- URL: http://lists.grok.org.uk/pipermail/full-disclosure/2005-March/032913.html
- URL: http://marc.theaimsgroup.com/?l=bugtraq&m=111204562102633&w=2
- URL: http://marc.theaimsgroup.com/?l=bugtraq&m=111238412403118&w=2
- URL: http://marc.theaimsgroup.com/?l=bugtraq&m=111238764720696&w=2
- URL: http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1122
- URL: http://www.frsirt.com/english/advisories/2005/0524
- URL: http://www.frsirt.com/english/advisories/2005/1878
- URL: http://www.isec.pl/vulnerabilities/isec-0023-coredump.txt
- URL: http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=637716a3825e186555361574aa1fa3c0ebf8018b
- URL: http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=637716a3825e186555361574aa1fa3c0ebf8018b
- URL: http://www.novell.com/linux/security/advisories/2005_29_kernel.html
- URL: http://www.securityfocus.com/archive/1/397966
- URL: http://www.securityfocus.com/archive/1/archive/1/427980/100/0/threaded
- URL: http://www.securityfocus.com/archive/1/archive/1/428028/100/0/threaded
- URL: http://www.securityfocus.com/archive/1/archive/1/428058/100/0/threaded
- URL: http://www.ubuntulinux.org/support/documentation/usn/usn-103-1
- URL: http://www.ubuntulinux.org/support/documentation/usn/usn-137-1
- URL: http://www.ubuntulinux.org/support/documentation/usn/usn-143-1
- URL: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=152532
- XF: http://xforce.iss.net/xforce/xfdb/19844
- XF: http://xforce.iss.net/xforce/xfdb/19866
- XF: http://xforce.iss.net/xforce/xfdb/19867
- XF: http://xforce.iss.net/xforce/xfdb/43324
Solution:
- Upgrade k_athlon
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/8.2/rpm/i586/k_athlon-2.4.20-136.i586.rpm
- Upgrade k_deflt
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/8.2/rpm/i586/k_deflt-2.4.20-136.i586.rpm
- Upgrade k_psmp
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/8.2/rpm/i586/k_psmp-2.4.20-136.i586.rpm
- Upgrade k_smp
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/8.2/rpm/i586/k_smp-2.4.20-136.i586.rpm
- Upgrade kernel-source
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/8.2/rpm/i586/kernel-source-2.4.20.SuSE-136.i586.rpm
- Upgrade Intel-536ep
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/Intel-536ep-4.62-27.i586.rpm
- Upgrade Intel-v92ham
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/Intel-v92ham-4.53-27.i586.rpm
- Upgrade k_athlon
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/k_athlon-2.4.21-303.i586.rpm
- Upgrade k_deflt
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/k_deflt-2.4.21-303.i586.rpm
- Upgrade k_smp
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/k_smp-2.4.21-303.i586.rpm
- Upgrade k_smp4G
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/k_smp4G-2.4.21-303.i586.rpm
- Upgrade k_um
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/k_um-2.4.21-303.i586.rpm
- Upgrade kernel-source
Download and apply the upgrade from: http://www.novell.com/linux/security/advisories/2008_31_kernel.html
- Upgrade ltmodem
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/ltmodem-8.26a-216.i586.rpm
- Upgrade k_deflt
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/k_deflt-2.4.21-303.x86_64.rpm
- Upgrade k_smp
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/k_smp-2.4.21-303.x86_64.rpm
- Upgrade kernel-source
Download and apply the upgrade from: http://www.novell.com/linux/security/advisories/2008_31_kernel.html
- Upgrade kernel-docs
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/noarch/kernel-docs-2.6.5-7.276.noarch.rpm
- Upgrade kernel-bigsmp
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-bigsmp-2.6.5-7.276.i586.rpm
- Upgrade kernel-default
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-default-2.6.5-7.276.i586.rpm
- Upgrade kernel-smp
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-smp-2.6.5-7.276.i586.rpm
- Upgrade kernel-source
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-source-2.6.5-7.276.i586.rpm
- Upgrade kernel-syms
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-syms-2.6.5-7.276.i586.rpm
- Upgrade ltmodem
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/ltmodem-2.6.2-38.24.i586.rpm
- Upgrade kernel-default
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-default-2.6.5-7.276.x86_64.rpm
- Upgrade kernel-smp
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-smp-2.6.5-7.276.x86_64.rpm
- Upgrade kernel-source
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-source-2.6.5-7.276.x86_64.rpm
- Upgrade kernel-syms
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-syms-2.6.5-7.276.x86_64.rpm
- Upgrade kernel-docs
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/noarch/kernel-docs-2.6.8-24.25.noarch.rpm
- Upgrade Intel-536ep
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/Intel-536ep-4.69-5.17.i586.rpm
- Upgrade kernel-bigsmp
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-bigsmp-2.6.8-24.25.i586.rpm
- Upgrade kernel-bigsmp-nongpl
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-bigsmp-nongpl-2.6.8-24.25.i586.rpm
- Upgrade kernel-default
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-default-2.6.8-24.25.i586.rpm
- Upgrade kernel-default-nongpl
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-default-nongpl-2.6.8-24.25.i586.rpm
- Upgrade kernel-smp
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-smp-2.6.8-24.25.i586.rpm
- Upgrade kernel-smp-nongpl
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-smp-nongpl-2.6.8-24.25.i586.rpm
- Upgrade kernel-source
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-source-2.6.8-24.25.i586.rpm
- Upgrade kernel-syms
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-syms-2.6.8-24.25.i586.rpm
- Upgrade kernel-um
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-um-2.6.8-24.25.i586.rpm
- Upgrade kernel-um-nongpl
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-um-nongpl-2.6.8-24.25.i586.rpm
- Upgrade ltmodem
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/ltmodem-8.31a8-6.17.i586.rpm
- Upgrade um-host-install-initrd
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/um-host-install-initrd-1.0-48.16.i586.rpm
- Upgrade um-host-kernel
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/um-host-kernel-2.6.8-24.25.i586.rpm
- Upgrade kernel-default
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kernel-default-2.6.8-24.25.x86_64.rpm
- Upgrade kernel-default-nongpl
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kernel-default-nongpl-2.6.8-24.25.x86_64.rpm
- Upgrade kernel-smp
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kernel-smp-2.6.8-24.25.x86_64.rpm
- Upgrade kernel-smp-nongpl
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kernel-smp-nongpl-2.6.8-24.25.x86_64.rpm
- Upgrade kernel-source
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kernel-source-2.6.8-24.25.x86_64.rpm
- Upgrade kernel-syms
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kernel-syms-2.6.8-24.25.x86_64.rpm
- Upgrade kernel-docs
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/noarch/kernel-docs-2.6.11.4-21.17.noarch.rpm
- Upgrade Intel-536ep
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/Intel-536ep-4.69-10.10.i586.rpm
- Upgrade dprobes
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/dprobes-3.6.5-8.3.i586.rpm
- Upgrade kernel-bigsmp
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-bigsmp-2.6.11.4-21.17.i586.rpm
- Upgrade kernel-bigsmp-nongpl
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-bigsmp-nongpl-2.6.11.4-21.17.i586.rpm
- Upgrade kernel-default
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-default-2.6.11.4-21.17.i586.rpm
- Upgrade kernel-default-nongpl
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-default-nongpl-2.6.11.4-21.17.i586.rpm
- Upgrade kernel-smp
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-smp-2.6.11.4-21.17.i586.rpm
- Upgrade kernel-smp-nongpl
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-smp-nongpl-2.6.11.4-21.17.i586.rpm
- Upgrade kernel-source
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-source-2.6.11.4-21.17.i586.rpm
- Upgrade kernel-syms
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-syms-2.6.11.4-21.17.i586.rpm
- Upgrade kernel-um
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-um-2.6.11.4-21.17.i586.rpm
- Upgrade kernel-um-nongpl
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-um-nongpl-2.6.11.4-21.17.i586.rpm
- Upgrade kernel-xen
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-xen-2.6.11.4-21.17.i586.rpm
- Upgrade kernel-xen-nongpl
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-xen-nongpl-2.6.11.4-21.17.i586.rpm
- Upgrade ltmodem
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/ltmodem-8.31a10-7.10.i586.rpm
- Upgrade um-host-install-initrd
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/um-host-install-initrd-1.0-50.11.i586.rpm
- Upgrade um-host-kernel
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/um-host-kernel-2.6.11.4-21.17.i586.rpm
- Upgrade kernel-default
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kernel-default-2.6.11.4-21.17.x86_64.rpm
- Upgrade kernel-default-nongpl
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kernel-default-nongpl-2.6.11.4-21.17.x86_64.rpm
- Upgrade kernel-smp
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kernel-smp-2.6.11.4-21.17.x86_64.rpm
- Upgrade kernel-smp-nongpl
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kernel-smp-nongpl-2.6.11.4-21.17.x86_64.rpm
- Upgrade kernel-source
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kernel-source-2.6.11.4-21.17.x86_64.rpm
- Upgrade kernel-syms
Download and apply the upgrade from: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kernel-syms-2.6.11.4-21.17.x86_64.rpm
Information on these pages is summary information extracted from the Nexpose Vulnerabilty Assessment system. Full details are provided within the Nexpose product for licensed users.
