Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Debian Local Security Checks >> [DSA1184] DSA-1184-2 kernel-source-2.6.8


Vulnerability Assessment Details

[DSA1184] DSA-1184-2 kernel-source-2.6.8

Vulnerability Assessment Summary
DSA-1184-2 kernel-source-2.6.8

Detailed Explanation for this Vulnerability Assessment

This advisory covers the S/390 components of the recent security
update for the Linux 2.6.8 kernel that were missing due to technical
problems. For reference, please see the text of the original advisory.
Several security related problems have been discovered in the Linux
kernel which may lead to a denial of service or even the execution of
arbitrary code. The Common Vulnerabilities and Exposures project
identifies the following problems:
Toshihiro Iwamoto discovered a memory leak in the handling of
direct I/O writes that permits local users to cause a denial of
service.
A buffer overflow in NFS readlink handling permits a malicious
remote server to cause a denial of service.
Stephen Smalley discovered a bug in the SELinux ptrace handling
that permits local users with ptrace permissions to change the
tracer SID to the SID of another process.
Pavel Kankovsky discovered an information leak in the getsockopt
system call which can be exploited by a local program to leak
potentially sensitive memory to userspace.
Douglas Gilbert reported a bug in the sg driver that permits local
users to cause a denial of service by performing direct I/O
transfers from the sg driver to memory mapped I/O space.
Mattia Belletti noticed that certain debugging code left in the
process management code could be exploited by a local attacker to
cause a denial of service.
Kostik Belousov discovered a missing LSM file_permission check in
the readv and writev functions which might permit attackers to
bypass intended access restrictions.
Patrick McHardy discovered a bug in the SNMP NAT helper that
permits remote attackers to cause a denial of service.
A race condition in the socket buffer handling permits remote
attackers to cause a denial of service.
Diego Calleja Garcia discovered a buffer overflow in the DVD
handling code that could be exploited by a specially crafted DVD
USB storage device to execute arbitrary code.
A bug in the serial USB driver has been discovered that could be
exploited by a custom made USB serial adapter to consume arbitrary
amounts of memory.
James McKenzie discovered a denial of service vulnerability in the
NFS driver. When exporting an ext3 file system over NFS, a remote
attacker could exploit this to trigger a file system panic by
sending a specially crafted UDP packet.
Wei Wang discovered a bug in the SCTP implementation that permits
local users to cause a denial of service and possibly gain root
rights.
Olof Johansson discovered that the kernel does not disable the HID0
bit on PowerPC 970 processors which could be exploited by a local
attacker to cause a denial of service.
A bug in the Universal Disk Format (UDF) filesystem driver could
be exploited by a local user to cause a denial of service.
David Miller reported a problem with the fix for CVE-2006-3745
that permits local users to crash the system via an SCTP
socket with a certain SO_LINGER value.
The following matrix
[...]

Solution : http://www.debian.org/security/2006/dsa-1184
Network Security Threat Level: High

Networks Security ID: 17203, 17830, 18081, 18099, 18101, 18105, 18847

Vulnerability Assessment Copyright: This script is (C) 2007 Michel Arboi

Cables, Connectors


Casio PB-700 Personal Computer Vintage *Parts Or Repair* picture

Casio PB-700 Personal Computer Vintage *Parts Or Repair*

$45.00



Vintage Compaq 141649-004 2 Button PS/2 Gray Mouse M-S34 - FAST SHIPPING - NEW picture

Vintage Compaq 141649-004 2 Button PS/2 Gray Mouse M-S34 - FAST SHIPPING - NEW

$8.99



Lot Of 5 Vintage IDE Hard Drives, Conner Seagate, Quantum, Maxtor *Non Working* picture

Lot Of 5 Vintage IDE Hard Drives, Conner Seagate, Quantum, Maxtor *Non Working*

$27.99



Radio Shack Vintage Pc Circuit Boards picture

Radio Shack Vintage Pc Circuit Boards

$40.00



Casio HW-JS Vintage Word Processor w/ Printer picture

Casio HW-JS Vintage Word Processor w/ Printer

$75.00



RARE NEW RETAIL BOX VINTAGE AST BTC 5140M WINDOWS PS2 KEYBOARD FCC E5XK8M104M10U picture

RARE NEW RETAIL BOX VINTAGE AST BTC 5140M WINDOWS PS2 KEYBOARD FCC E5XK8M104M10U

$29.95



HUGHES COMPUTER CHIP PAPERWEIGHT VINTAGE Personalized picture

HUGHES COMPUTER CHIP PAPERWEIGHT VINTAGE Personalized

$75.00



IBM Lexmark 1995 Model M2 Vintage Keyboard Part No. 73G4616 PS2 connection New picture

IBM Lexmark 1995 Model M2 Vintage Keyboard Part No. 73G4616 PS2 connection New

$55.00



Vintage IBM Aptiva E-5u  Desktop Computer. IBM’s First Sub-$1000 Computer. picture

Vintage IBM Aptiva E-5u Desktop Computer. IBM’s First Sub-$1000 Computer.

$140.00



Vintage Intel Universal Prom Programmer UPP-101 picture

Vintage Intel Universal Prom Programmer UPP-101

$1999.00



Discussions

No Discussions have been posted on this vulnerability.