[kernel-sec-discuss] r1155 - dsa-texts
dannf at alioth.debian.org
dannf at alioth.debian.org
Tue Apr 29 15:44:39 UTC 2008
Author: dannf
Date: 2008-04-29 15:44:37 +0000 (Tue, 29 Apr 2008)
New Revision: 1155
Added:
dsa-texts/2.6.18.dfsg.1-18etch3
Log:
new text
Copied: dsa-texts/2.6.18.dfsg.1-18etch3 (from rev 1154, dsa-texts/2.6.18.dfsg.1-18etch1)
===================================================================
--- dsa-texts/2.6.18.dfsg.1-18etch3 (rev 0)
+++ dsa-texts/2.6.18.dfsg.1-18etch3 2008-04-29 15:44:37 UTC (rev 1155)
@@ -0,0 +1,90 @@
+----------------------------------------------------------------------
+Debian Security Advisory DSA-15XX-1 security at debian.org
+http://www.debian.org/security/ dann frazier
+April 29, 2008 http://www.debian.org/security/faq
+----------------------------------------------------------------------
+
+Package : linux-2.6
+Vulnerability : several vulnerabilities
+Problem type : local
+Debian-specific: no
+CVE Id(s) : CVE-2007-6694 CVE-2008-0007 CVE-2008-1294 CVE-2008-1375
+
+Several local vulnerabilities have been discovered in the Linux kernel
+that may lead to a denial of service or the execution of arbitrary
+code. The Common Vulnerabilities and Exposures project identifies the
+following problems:
+
+CVE-2007-6694
+
+ Cyrill Gorcunov reported a NULL pointer dereference in code specific
+ to the CHRP PowerPC platforms. Local users could exploit this issue
+ to achieve a Denial of Service (DoS).
+
+CVE-2008-0007
+
+ Nick Piggin of SuSE discovered a number of issues in subsystems which
+ register a fault handler for memory mapped areas. This issue can be
+ exploited by local users to achieve a Denial of Service (DoS) and possibly
+ execute arbitrary code.
+
+CVE-2008-1294
+
+ David Peer discovered that users could escape administrator imposed cpu
+ time limitations (RLIMIT_CPU) by setting a limit of 0.
+
+CVE-2008-1375
+
+ Alexander Viro discovered a race condition in the directory notification
+ subsystem that may allow local users to cause a Denial of Service (oops)
+ condition.
+
+For the stable distribution (etch), this problem has been fixed in version
+2.6.18.dfsg.1-18etch3.
+
+The unstable (sid) and testing distributions will be fixed soon.
+
+We recommend that you upgrade your linux-2.6, fai-kernels, and
+user-mode-linux packages.
+
+Upgrade instructions
+--------------------
+
+wget url
+ will fetch the file for you
+dpkg -i file.deb
+ will install the referenced file.
+
+If you are using the apt-get package manager, use the line for
+sources.list as given below:
+
+apt-get update
+ will update the internal database
+apt-get upgrade
+ will install corrected packages
+
+The following matrix lists additional source packages that were rebuilt for
+compatability with or to take advantage of this update:
+
+ Debian 4.0 (etch)
+ fai-kernels 1.17+etch.18etch3
+ user-mode-linux 2.6.18-1um-2etch.18etch3
+
+You may use an automated update by adding the resources from the
+footer to the proper configuration.
+
+Debian GNU/Linux 4.0 alias etch
+-------------------------------
+
+Stable updates are available for alpha, amd64, arm, hppa, i386, ia64,
+mips, mipsel, powerpc, sparc and s390.
+
+
+ These files will probably be moved into the stable distribution on
+ its next update.
+
+---------------------------------------------------------------------------------
+For apt-get: deb http://security.debian.org/ stable/updates main
+For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
+Mailing list: debian-security-announce at lists.debian.org
+Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
\ No newline at end of file
More information about the kernel-sec-discuss
mailing list