Referenced CVEs:
CVE-2008-4307, CVE-2008-6107, CVE-2009-0028, CVE-2009-0031, CVE-2009-0065, CVE-2009-0269, CVE-2009-0322, CVE-2009-0605, CVE-2009-0675, CVE-2009-0676, CVE-2009-0745, CVE-2009-0746, CVE-2009-0747, CVE-2009-0748, CVE-2009-0834, CVE-2009-0835, CVE-2009-0859, CVE-2009-1046
Description:
===========================================================Ubuntu Security Notice USN-751-1 April 07, 2009linux, linux-source-2.6.22 vulnerabilitiesCVE-2008-4307, CVE-2008-6107, CVE-2009-0028, CVE-2009-0031,CVE-2009-0065, CVE-2009-0269, CVE-2009-0322, CVE-2009-0605,CVE-2009-0675, CVE-2009-0676, CVE-2009-0745, CVE-2009-0746,CVE-2009-0747, CVE-2009-0748, CVE-2009-0834, CVE-2009-0835,CVE-2009-0859, CVE-2009-1046===========================================================A security issue affects the following Ubuntu releases:Ubuntu 7.10Ubuntu 8.04 LTSUbuntu 8.10This advisory also applies to the corresponding versions ofKubuntu, Edubuntu, and Xubuntu.The problem can be corrected by upgrading your system to thefollowing package versions:Ubuntu 7.10: linux-image-2.6.22-16-386 2.6.22-16.62 linux-image-2.6.22-16-cell 2.6.22-16.62 linux-image-2.6.22-16-generic 2.6.22-16.62 linux-image-2.6.22-16-hppa32 2.6.22-16.62 linux-image-2.6.22-16-hppa64 2.6.22-16.62 linux-image-2.6.22-16-itanium 2.6.22-16.62 linux-image-2.6.22-16-lpia 2.6.22-16.62 linux-image-2.6.22-16-lpiacompat 2.6.22-16.62 linux-image-2.6.22-16-mckinley 2.6.22-16.62 linux-image-2.6.22-16-powerpc 2.6.22-16.62 linux-image-2.6.22-16-powerpc-smp 2.6.22-16.62 linux-image-2.6.22-16-powerpc64-smp 2.6.22-16.62 linux-image-2.6.22-16-rt 2.6.22-16.62 linux-image-2.6.22-16-server 2.6.22-16.62 linux-image-2.6.22-16-sparc64 2.6.22-16.62 linux-image-2.6.22-16-sparc64-smp 2.6.22-16.62 linux-image-2.6.22-16-ume 2.6.22-16.62 linux-image-2.6.22-16-virtual 2.6.22-16.62 linux-image-2.6.22-16-xen 2.6.22-16.62Ubuntu 8.04 LTS: linux-image-2.6.24-23-386 2.6.24-23.52 linux-image-2.6.24-23-generic 2.6.24-23.52 linux-image-2.6.24-23-hppa32 2.6.24-23.52 linux-image-2.6.24-23-hppa64 2.6.24-23.52 linux-image-2.6.24-23-itanium 2.6.24-23.52 linux-image-2.6.24-23-lpia 2.6.24-23.52 linux-image-2.6.24-23-lpiacompat 2.6.24-23.52 linux-image-2.6.24-23-mckinley 2.6.24-23.52 linux-image-2.6.24-23-openvz 2.6.24-23.52 linux-image-2.6.24-23-powerpc 2.6.24-23.52 linux-image-2.6.24-23-powerpc-smp 2.6.24-23.52 linux-image-2.6.24-23-powerpc64-smp 2.6.24-23.52 linux-image-2.6.24-23-rt 2.6.24-23.52 linux-image-2.6.24-23-server 2.6.24-23.52 linux-image-2.6.24-23-sparc64 2.6.24-23.52 linux-image-2.6.24-23-sparc64-smp 2.6.24-23.52 linux-image-2.6.24-23-virtual 2.6.24-23.52 linux-image-2.6.24-23-xen 2.6.24-23.52Ubuntu 8.10: linux-image-2.6.27-11-generic 2.6.27-11.31 linux-image-2.6.27-11-server 2.6.27-11.31 linux-image-2.6.27-11-virtual 2.6.27-11.31After a standard system upgrade you need to reboot your computer toeffect the necessary changes.Details follow:
NFS did not correctly handle races between fcntl and interrupts. A localattacker on an
NFS mount could consume unlimited kernel memory, leading toa denial of service. Ubuntu 8.10 was not affected. (CVE-2008-4307)Sparc syscalls did not correctly check mmap regions. A local attackercould cause a system panic, leading to a denial of service. Ubuntu 8.10was not affected. (CVE-2008-6107)In certain situations, cloned processes were able to send signals to parentprocesses, crossing privilege boundaries. A local attacker could sendarbitrary signals to parent processes, leading to a denial of service.(CVE-2009-0028)The kernel keyring did not free memory correctly. A local attacker couldconsume unlimited kernel memory, leading to a denial of service.(CVE-2009-0031)The SCTP stack did not correctly validate FORWARD-TSN packets. A remoteattacker could send specially crafted SCTP traffic causing a system crash,leading to a denial of service. (CVE-2009-0065)The eCryptfs filesystem did not correctly handle certain VFS return codes.A local attacker with write-access to an eCryptfs filesystem could cause asystem crash, leading to a denial of service. (CVE-2009-0269)The Dell platform device did not correctly validate user parameters. Alocal attacker could perform specially crafted reads to crash the system,leading to a denial of service. (CVE-2009-0322)The page fault handler could consume stack memory. A local attacker couldexploit this to crash the system or gain root privileges with a Kproberegistered. Only Ubuntu 8.10 was affected. (CVE-2009-0605)Network interfaces statistics for the SysKonnect FDDI driver did not checkcapabilities. A local user could reset statistics, potentially interferingwith packet accounting systems. (CVE-2009-0675)The getsockopt function did not correctly clear certain parameters. A localattacker could read leaked kernel memory, leading to a loss of privacy.(CVE-2009-0676)The ext4 filesystem did not correctly clear group descriptors whenresizing. A local attacker could exploit this to crash the system, leadingto a denial of service. (CVE-2009-0745)The ext4 filesystem did not correctly validate certain fields. A localattacker could mount a malicious ext4 filesystem, causing a systemcrash, leading to a denial of service. (CVE-2009-0746, CVE-2009-0747,CVE-2009-0748)The syscall interface did not correctly validate parameters when crossingthe 64-bit/32-bit boundary. A local attacker could bypass certain syscallrestricts via crafted syscalls. (CVE-2009-0834, CVE-2009-0835)The shared memory subsystem did not correctly handle certain shmctl callswhen CONFIG_SHMEM was disabled. Ubuntu kernels were not vulnerable, sinceCONFIG_SHMEM is enabled by default. (CVE-2009-0859)The virtual consoles did not correctly handle certain UTF-8 sequences. Alocal attacker on the physical console could exploit this to cause a systemcrash, leading to a denial of service. (CVE-2009-1046)
More...
More UNIX and Linux Forum Topics You Might Find Helpful
Powered by 
04-06-2009
Threaded Mode
