Objavljena je nadogradnja jezgre operacijskog sustava koja ispravlja višestruke sigurnosne nedostatke od kojih neki napadačima omogućuju pokretanje napada uskraćivanja usluge.
Paket:
Linux kernel 2.6.x
Operacijski sustavi:
CentOS
Kritičnost:
4.9
Problem:
neodgovarajuće rukovanje memorijom, pogreška u programskoj funkciji, pogreška u programskoj komponenti
Iskorištavanje:
udaljeno
Posljedica:
uskraćivanje usluga (DoS)
Rješenje:
programska zakrpa proizvođača
CVE:
CVE-2011-1780, CVE-2011-2525, CVE-2011-2689
Izvorni ID preporuke:
2011:1065
Izvor:
CentOS
Problem:
Neki od ispravljenih propusta javljaju se zbog načina na koji se obrađuje emulacija pojedinih naredbi prilikom izlaska iz virtualnog stroja, pogreške kod poziva funkcije "tc_fill_qdisc()" te nepravilnosti kod dodjele slobodne memorije u podsustavu "Global File System 2".
Posljedica:
Udaljeni napadači mogu iskoristiti spomenute nedostatke za pokretanje DoS napada.
Rješenje:
Svim se korisnicima savjetuje primjena nadogradnje.
CentOS Errata and Security Advisory 2011:1065 Important
Upstream details at : https://rhn.redhat.com/errata/RHSA-2011-1065.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( md5sum Filename )
x86_64:
b97fc8879d43b89030fdbc3835e8cbb9 kernel-2.6.18-274.el5.x86_64.rpm
aa56368276b867e097314b6ae3fdb0b4 kernel-debug-2.6.18-274.el5.x86_64.rpm
b0bc629686132c82887a71ab098f9cee kernel-debug-devel-2.6.18-274.el5.x86_64.rpm
e2a26aaa649ebc66095b9fdf41d8e9df kernel-devel-2.6.18-274.el5.x86_64.rpm
ec638afc74c03a8b963e977b44c8eee8 kernel-doc-2.6.18-274.el5.noarch.rpm
b729eb247c43876b3db1a725e1645fe3 kernel-headers-2.6.18-274.el5.x86_64.rpm
14ef4fcaa45e63f82ef2b9f0138f5dcb kernel-xen-2.6.18-274.el5.x86_64.rpm
a82f44227fe3c6f4f9dab6ff4d6c2a71 kernel-xen-devel-2.6.18-274.el5.x86_64.rpm
Source:
9dd1bc1e1344e83c5d7366389ebb1f93 kernel-2.6.18-274.el5.src.rpm
--
Karanbir Singh
CentOS Project { http://www.centos.org/ }
irc: z00dax, #Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
_______________________________________________
CentOS-announce mailing list
Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
http://lists.centos.org/mailman/listinfo/centos-announce
CentOS Errata and Security Advisory 2011:1212 Important
Upstream details at : https://rhn.redhat.com/errata/RHSA-2011-1212.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( md5sum Filename )
i386:
ab31a955e2c77f7189163d051186f540 kernel-2.6.18-274.3.1.el5.i686.rpm
b0bffe1209db0c2c972056313bbac90b kernel-debug-2.6.18-274.3.1.el5.i686.rpm
7e4a1d818e0ad36fddc8c14818724f9b
kernel-debug-devel-2.6.18-274.3.1.el5.i686.rpm
44e2e7d9ffc2ab317c8699f4052c07dd kernel-devel-2.6.18-274.3.1.el5.i686.rpm
c225c27ee73096df0aa62f850c5da594 kernel-doc-2.6.18-274.3.1.el5.noarch.rpm
23607149b52b6f3ab471bc787a178d2a kernel-headers-2.6.18-274.3.1.el5.i386.rpm
cc19cf3ca64147a2c6fe39054ee39dab kernel-PAE-2.6.18-274.3.1.el5.i686.rpm
9fea508cb0abe49c61587ca0f7a9e98d kernel-PAE-devel-2.6.18-274.3.1.el5.i686.rpm
0903a1665c8b95e3a869aa8477623e48 kernel-xen-2.6.18-274.3.1.el5.i686.rpm
ab9a9d96872060d0f6bf93a3866f002a kernel-xen-devel-2.6.18-274.3.1.el5.i686.rpm
Source:
76b7d8d0e5a223d1348ccdbb015f1368 kernel-2.6.18-274.3.1.el5.src.rpm
--
Karanbir Singh
CentOS Project { http://www.centos.org/ }
irc: z00dax, #Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
_______________________________________________
CentOS-announce mailing list
Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
http://lists.centos.org/mailman/listinfo/centos-announce
CentOS Errata and Security Advisory 2011:1212 Important
Upstream details at : https://rhn.redhat.com/errata/RHSA-2011-1212.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( md5sum Filename )
x86_64:
4c7d95e071c6d5d7dc6b0acffc113550 kernel-2.6.18-274.3.1.el5.x86_64.rpm
be53b80c2fb78280ceaa6fb13ba714a1 kernel-debug-2.6.18-274.3.1.el5.x86_64.rpm
6c598822359c9a8e77ebdb5b9540cb71
kernel-debug-devel-2.6.18-274.3.1.el5.x86_64.rpm
5fb52e22efccf0c2929a514d5d187f22 kernel-devel-2.6.18-274.3.1.el5.x86_64.rpm
c225c27ee73096df0aa62f850c5da594 kernel-doc-2.6.18-274.3.1.el5.noarch.rpm
92689eb0e9cadce48620c9791eb4d765 kernel-headers-2.6.18-274.3.1.el5.x86_64.rpm
b01376d06cce0d63fa4b6fc16732bd8d kernel-xen-2.6.18-274.3.1.el5.x86_64.rpm
723510fd8ca5fad30c0046f756eca7cc
kernel-xen-devel-2.6.18-274.3.1.el5.x86_64.rpm
Source:
76b7d8d0e5a223d1348ccdbb015f1368 kernel-2.6.18-274.3.1.el5.src.rpm
--
Karanbir Singh
CentOS Project { http://www.centos.org/ }
irc: z00dax, #Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
_______________________________________________
CentOS-announce mailing list
Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
http://lists.centos.org/mailman/listinfo/centos-announce
CentOS Errata and Security Advisory 2011:1065 Important
Upstream details at : https://rhn.redhat.com/errata/RHSA-2011-1065.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( md5sum Filename )
i386:
6ba8ef22ee648d40831689fede8adb83 kernel-2.6.18-274.el5.i686.rpm
e374ed60670ceb9c5359a2269a41f08c kernel-debug-2.6.18-274.el5.i686.rpm
bd9ff9a26d81f482a8f546d16c16b962 kernel-debug-devel-2.6.18-274.el5.i686.rpm
cc606d66ed27de75b6e00e9a7a3161a4 kernel-devel-2.6.18-274.el5.i686.rpm
f8111a7194fe903ace25309315862609 kernel-doc-2.6.18-274.el5.noarch.rpm
7ef658a52d611bbad3cc150b4e03a826 kernel-headers-2.6.18-274.el5.i386.rpm
40033466310da80ae9f15e6dfa5737f3 kernel-PAE-2.6.18-274.el5.i686.rpm
e404a7021caa5bd5b7d192f585585101 kernel-PAE-devel-2.6.18-274.el5.i686.rpm
713a4b316c8822db8615125a811cd099 kernel-xen-2.6.18-274.el5.i686.rpm
6c7313d0d6ad967f178f776b7dc182b8 kernel-xen-devel-2.6.18-274.el5.i686.rpm
Source:
9dd1bc1e1344e83c5d7366389ebb1f93 kernel-2.6.18-274.el5.src.rpm
--
Karanbir Singh
CentOS Project { http://www.centos.org/ }
irc: z00dax, #Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
_______________________________________________
CentOS-announce mailing list
Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
http://lists.centos.org/mailman/listinfo/centos-announce
Posljednje sigurnosne preporuke