U radu jezgre operacijskog sustava Fedora 14 otklonjene su višestruke ranjivosti koje su napadači mogli iskoristiti za DoS (eng. Denial of Service) napad.
| Paket: | Linux kernel 2.6.x |
| Operacijski sustavi: | Fedora 14 |
| Problem: | neodgovarajuća provjera ulaznih podataka, neodgovarajuće rukovanje memorijom, pogreška u programskoj komponenti |
| Iskorištavanje: | udaljeno |
| Posljedica: | uskraćivanje usluga (DoS) |
| Rješenje: | programska zakrpa proizvođača |
| CVE: | CVE-2011-2497, CVE-2011-2517, CVE-2011-2183 |
| Izvorni ID preporuke: | FEDORA-2011-9130 |
| Izvor: | Fedora |
| Problem: | |
| Ranjivosti se očituju u načinu na koji jezgra upravlja memorijom u l2cap konfiguracijskom zahtjevu, provjerama SSID zapisa te nepravilnim upravljanjem prekidom rada ksmd procesa. |
|
| Posljedica: | |
| Ranjivosti je moguće iskoristiti za izvođenje napada uskraćivanja usluge. |
|
| Rješenje: | |
| Preporučuje se primjena izdane nadogradnje. |
|
Izvorni tekst preporuke
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2011-9130
2011-07-08 17:18:34
--------------------------------------------------------------------------------
Name : kernel
Product : Fedora 15
Version : 2.6.38.8
Release : 35.fc15
URL : http://www.kernel.org/
Summary : The Linux kernel
Description :
The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system. The kernel handles the basic functions
of the operating system: memory allocation, process allocation, device
input and output, etc.
--------------------------------------------------------------------------------
Update Information:
Fixes some bugs that were caused by upstream stable kernel updates, including a
longstanding bug causing oopses when removing USB storage devices and optical
media.
Fixes stalls on machines with the latest Intel graphics hardware
(Sandybridge.)
Also fixes some important security issues.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jul 6 2011 Chuck Ebbert <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> 2.6.38.8-35
- Revert SCSI/block patches from 2.6.38.6 that caused more problems
than they fixed; drop band-aid patch attempting to fix the fix.
- CVE-2011-2497: kernel: bluetooth: buffer overflow in l2cap config request
- CVE-2011-2517: kernel: nl80211: missing check for valid SSID size in scan
operations
* Mon Jun 27 2011 Dave Jones <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- Disable CONFIG_CRYPTO_MANAGER_DISABLE_TESTS, as this also disables FIPS (rhbz
716942)
* Sat Jun 25 2011 Chuck Ebbert <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- Intel IOMMU fixes from 2.6.39.2
- drm-i915-apply-hwstam-workaround-for-bsd-ring-on-sandybridge.patch:
Another fix for Sandybridge stalls
* Fri Jun 24 2011 Chuck Ebbert <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- Minor cleanup: use upstream patch to export block_{get,put}_queue
- block-blkdev_get-should-access-bd_disk-only-after.patch:
fix potential oops introduced in 2.6.38.8
- ahci-add-another-pci-id-for-marvell.patch (rhbz#705960)
- CVE-2011-2183: ksm: race between ksmd and exiting task
- Revert 2.6.38.8 patch that broke magicmouse (rhbz#714381)
- Fix drive detection failure on mvsas (rhbz#705019)
- Fix oopses in the CFQ disk scheduler (rhbz#577968)
- Support Wacom touchscreen 00e6 in Thinkpad x220 (rhbz#708307)
* Thu Jun 23 2011 Dave Airlie <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> 2.6.38.8-34
- drm-i915-snb-irq-stalls-fix.patch: fix Sandybridge IRQ stalls
* Thu Jun 23 2011 Dave Airlie <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- drm-radeon-update3.patch: more radeon fixes backport
* Tue Jun 21 2011 Dave Jones <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- HID: ntrig don't dereference unclaimed hidinput (rhbz#714827)
* Mon Jun 20 2011 Kyle McMartin <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> 2.6.38.8-33
- [sgruszka@] iwlwifi: fix general 11n instability (rhbz#648732)
* Wed Jun 15 2011 Kyle McMartin <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- crypto: aesni-intel - Merge with fpu.ko (rhbz#589390)
* Thu Jun 9 2011 Kyle McMartin <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> 2.6.38.8-32
- ath5k-disable-fast-channel-switching-by-default.patch (rhbz#709122)
(korgbz#34992) [a99168ee in wireless-next]
* Tue Jun 7 2011 Dave Jones <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- [SCSI] Fix oops caused by queue refcounting failure.
* Sat Jun 4 2011 Chuck Ebbert <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> 2.6.38.8-31
- Linux 2.6.38.8
- Revert radeon patches we already have:
drm/radeon/kms: add wait idle ioctl for eg->cayman
drm/radeon/evergreen/btc/fusion: setup hdp to invalidate and flush when
asked
- Drop individual patches we have:
ips-use-interruptible-waits-in-ips-monitor.patch
drm-vblank-events-fix-hangs.patch
mm-vmscan-correct-use-of-pgdat_balanced-in-sleeping_prematurely.patch
mm-vmscan-correctly-check-if-reclaimer-should-schedule-during-shrink_slab.patch
- Drop x86-amd-arat-bug-on-sempron-workaround.patch; the proper fix is in
2.6.38.8
* Sun May 29 2011 Dave Airlie <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- fix oops on pageflipping sometimes (#680651)
* Fri May 27 2011 Ben Skeggs <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> 2.6.38.7-30
- nouveau: minor fixes for various issues from upstream
- nv40 modesetting fix (rhbz#708235)
- nv50+ support for LVDS panels using SPWG spec (blank/corrupt screen fixes)
- nva3+ pm clock get/set fixes
* Wed May 25 2011 Dave Airlie <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- drm-radeon-update2.patch: more radeon updates + cayman accel support
* Tue May 24 2011 Kyle McMartin <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- hid-multitouch: add support for elo touchsystems panels (requested
by hadess, backported from hid-next)
- bluetooth: add support for more ath3k devices (Ditto.)
* Mon May 23 2011 Chuck Ebbert <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> 2.6.38.7-29
- Linux 2.6.38.7
- Eliminate hangs when using frequent high-order allocations
* Fri May 20 2011 Chuck Ebbert <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> 2.6.38.7-28.rc1
- Linux 2.6.38.7-rc1
- Fix up context in utrace-ptrace.patch
- Revert radeon patches already in our radeon update:
drm-radeon-kms-fix-gart-setup-on-fusion-parts-v2-backport.patch
- Drop merged patches:
iwlwifi-add-_ack_plpc_check-module-parameters.patch
- Fix stalls on AMD Sempron notebooks (#704059)
* Fri May 13 2011 Kyle McMartin <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> 2.6.38.6-27
- [fabbione@] Fix a deadlock when using hp_sw with an HP san.
(7a1e9d82 upstream)
* Wed May 11 2011 Chuck Ebbert <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- Fix Intel IPS driver so it doesn't run continuously (#703511)
* Tue May 10 2011 Kyle McMartin <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- [sgruszka@] iwlwifi: add {ack,plpc}_check module parameters (#666646)
* Tue May 10 2011 Chuck Ebbert <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- Linux 2.6.38.6 (no functional changes from 2.6.38.6-26.rc1)
- Drop merged patches:
can-add-missing-socket-check-in-can_raw_release.patch
scsi-fix-oops-in-scsi_run_queue.patch
vm-skip-the-stack-guard-page-lookup-in-get_user_pages-only-for-mlock.patch
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #716805 - CVE-2011-2497 kernel: bluetooth: buffer overflow in l2cap
config request
https://bugzilla.redhat.com/show_bug.cgi?id=716805
[ 2 ] Bug #718152 - CVE-2011-2517 kernel: nl80211: missing check for valid
SSID size in scan operations
https://bugzilla.redhat.com/show_bug.cgi?id=718152
[ 3 ] Bug #710338 - kernel: ksm: race between ksmd and exiting task
https://bugzilla.redhat.com/show_bug.cgi?id=710338
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update kernel' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Posljednje sigurnosne preporuke