Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> Debian Local Security Checks >> [DSA1183] DSA-1183-1 kernel-source-2.4.27

Vulnerability Assessment Details

[DSA1183] DSA-1183-1 kernel-source-2.4.27
Vulnerability Assessment Summary
DSA-1183-1 kernel-source-2.4.27

Detailed Explanation for this Vulnerability Assessment

Several security related problems have been discovered in the Linux
kernel which may lead to a denial of service or even the execution of
arbitrary code. The Common Vulnerabilities and Exposures project
identifies the following problems:
A buffer overflow in NFS readlink handling permits a malicious
remote server to cause a denial of service.
Diego Calleja Garcia discovered a buffer overflow in the DVD
handling code that could be exploited by a specially crafted DVD
USB storage device to execute arbitrary code.
A bug in the SCSI driver permits a local user to cause a denial of
service.
Patrick McHardy discovered a bug in the SNMP NAT helper that
permits remote attackers to cause a denial of service.
A race condition in the socket buffer handling permits remote
attackers to cause a denial of service.
Wei Wang discovered a bug in the SCTP implementation that permits
local users to cause a denial of service and possibly gain root
rights.
David Miller reported a problem with the fix for CVE-2006-3745
that permits local users to crash the system via an SCTP
socket with a certain SO_LINGER value.
The following matrix explains which kernel version for which
architecture fixes the problem mentioned above:
For the unstable distribution (sid) these problems won't be fixed
anymore in the 2.4 kernel series.
We recommend that you upgrade your kernel package and reboot the
machine. If you have built a custom kernel from the kernel source
package, you will need to rebuild to take advantage of these fixes.


Solution : http://www.debian.org/security/2006/dsa-1183
Network Security Threat Level: High

Networks Security ID: 18081, 18101, 18847, 19666, 20087

Vulnerability Assessment Copyright: This script is (C) 2006 Michel Arboi
Cables, Connectors


Intel Xeon E3-1270 v6 3.80GHz 4 Cores SR326 LGA1151 CPU Processor picture

Intel Xeon E3-1270 v6 3.80GHz 4 Cores SR326 LGA1151 CPU Processor

$46.00


Intel Core i9-12900KF - 12th Gen Alder Lake 16-Core (8P+8E) 3.2GHz LGA CPU picture

Intel Core i9-12900KF - 12th Gen Alder Lake 16-Core (8P+8E) 3.2GHz LGA CPU

$262.99


AMD Ryzen 7 3800X Processor 3.9GHz, 8 Cores, Socket AM4 picture

AMD Ryzen 7 3800X Processor 3.9GHz, 8 Cores, Socket AM4

$119.95


AMD Ryzen 9 7900X3D Gaming Processor - 12 Core And 24 Threads - 5.60 GHz Max Boo picture

AMD Ryzen 9 7900X3D Gaming Processor - 12 Core And 24 Threads - 5.60 GHz Max Boo

$349.99


Intel i5-9500 3.00GHz 6-Core 9MB CPU Processor LGA1151 SRF4B picture

Intel i5-9500 3.00GHz 6-Core 9MB CPU Processor LGA1151 SRF4B

$58.00


AMD Ryzen 5 4500 6-Core 3.6GHz Socket AM4 65W CPU Desktop Processor picture

AMD Ryzen 5 4500 6-Core 3.6GHz Socket AM4 65W CPU Desktop Processor

$77.77


Intel Core i7-7700 Kaby Lake Quad-Core 3.6 GHz Processor LGA 1151 picture

Intel Core i7-7700 Kaby Lake Quad-Core 3.6 GHz Processor LGA 1151

$77.99


Intel Core i7-7700 3.60GHz Quad-Core CPU picture

Intel Core i7-7700 3.60GHz Quad-Core CPU

$41.66


Intel Xeon Gold 6146 3.2GHz 12 Core FCLGA3647 Server Processor picture

Intel Xeon Gold 6146 3.2GHz 12 Core FCLGA3647 Server Processor

$174.98


Intel Xeon E5-2673 v4 20-Core 2.30GHz 50MB 9.60GT/s 135W Processor SR2KE picture

Intel Xeon E5-2673 v4 20-Core 2.30GHz 50MB 9.60GT/s 135W Processor SR2KE

$78.99


Discussions

No Discussions have been posted on this vulnerability.