Ispravljen je sigurnosni nedostatak uočen u radu programskog paketa SystemTap, za operacijske sustave Fedora 15 i 16. Napadačima omogućuje izvođenje DoS (eng. Denial of Service) napada.
| Paket: | systemtap 1.x |
| Operacijski sustavi: | Fedora 15, Fedora 16 |
| Problem: | pogreška u programskoj komponenti |
| Iskorištavanje: | lokalno/udaljeno |
| Posljedica: | uskraćivanje usluga (DoS) |
| Rješenje: | programska zakrpa proizvođača |
| CVE: | CVE-2012-0875 |
| Izvorni ID preporuke: | FEDORA-2012-2213 |
| Izvor: | Fedora |
| Problem: | |
| Nedostatak je posljedica neodgovarajuće obrade zlonamjernih DWARF podataka. |
|
| Posljedica: | |
| Napadač ga može iskoristiti za stvaranje tzv. "kernel panic" stanja, što je oblik DoS napada. |
|
| Rješenje: | |
| Korisnici se potiču na instalaciju nadogradnje. |
|
Izvorni tekst preporuke
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-2213
2012-02-23 01:56:22
--------------------------------------------------------------------------------
Name : systemtap
Product : Fedora 16
Version : 1.7
Release : 2.fc16
URL : http://sourceware.org/systemtap/
Summary : Programmable system-wide instrumentation system
Description :
SystemTap is an instrumentation system for systems running Linux.
Developers can write instrumentation scripts to collect data on
the operation of the system. The base systemtap package contains/requires
the components needed to locally develop and execute systemtap scripts.
--------------------------------------------------------------------------------
Update Information:
This respin fixes the CVE-2012-0875 vulnerability.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 22 2012 Frank Ch. Eigler <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 1.7-2
- CVE-2012-0875 (kernel panic when processing malformed DWARF unwind data)
* Wed Feb 1 2012 Frank Ch. Eigler <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 1.7-1
- Upstream release.
- Reorganize subpackages, new -client and -devel for subset installations.
* Sat Jan 14 2012 Mark Wielaard <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 1.6-4
- Fixes for gcc-4.7 based on upstream commits e14c86 and 47caa9.
* Sat Jan 14 2012 Fedora Release Engineering <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> -
1.6-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Tue Dec 6 2011 Adam Jackson <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 1.6-2
- Rebuild for new libpng
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #796329 - CVE-2012-0875 systemtap: kernel panic when processing
malformed DWARF unwind data [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=796329
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update systemtap' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
https://admin.fedoraproject.org/mailman/listinfo/package-announce
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-2218
2012-02-23 01:56:35
--------------------------------------------------------------------------------
Name : systemtap
Product : Fedora 15
Version : 1.7
Release : 2.fc15
URL : http://sourceware.org/systemtap/
Summary : Programmable system-wide instrumentation system
Description :
SystemTap is an instrumentation system for systems running Linux.
Developers can write instrumentation scripts to collect data on
the operation of the system. The base systemtap package contains/requires
the components needed to locally develop and execute systemtap scripts.
--------------------------------------------------------------------------------
Update Information:
This respin fixes the CVE-2012-0875 vulnerability.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 22 2012 Frank Ch. Eigler <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 1.7-2
- CVE-2012-0875 (kernel panic when processing malformed DWARF unwind data)
* Wed Feb 1 2012 Frank Ch. Eigler <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 1.7-1
- Upstream release.
- Reorganize subpackages, new -client and -devel for subset installations.
* Sat Jan 14 2012 Mark Wielaard <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 1.6-4
- Fixes for gcc-4.7 based on upstream commits e14c86 and 47caa9.
* Sat Jan 14 2012 Fedora Release Engineering <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> -
1.6-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Tue Dec 6 2011 Adam Jackson <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 1.6-2
- Rebuild for new libpng
* Mon Jul 25 2011 Stan Cox <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 1.6-1
- Upstream release.
* Mon Jul 25 2011 Frank Ch. Eigler <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 1.5-8
- CVE-2011-2502, CVE-2011-2503
* Fri Jul 15 2011 William Cohen <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 1.5-7
- Fix sdt.h to avoid warning on arm arches.
* Mon Jul 11 2011 William Cohen <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 1.5-6
- there is no crash available on arm arches
* Fri Jun 10 2011 Stan Cox <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 1.5-4
- PR 12899
* Fri Jun 10 2011 Stan Cox <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 1.5-3
- Don't massage dtrace -o FILENAME arg
* Thu Jun 2 2011 Stan Cox <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 1.5-2
- Add explicit 'Requires python' dependency
* Mon May 23 2011 Stan Cox <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 1.5-1
- Upstream release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #796329 - CVE-2012-0875 systemtap: kernel panic when processing
malformed DWARF unwind data [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=796329
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update systemtap' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Posljednje sigurnosne preporuke