LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

(Nearly) full tickless operation in 3.10

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

kernel: multiple vulnerabilities

Package(s):kernel, linux, linux-source-2.6.22 CVE #(s):CVE-2008-4307 CVE-2008-6107 CVE-2009-0605 CVE-2009-0834 CVE-2009-0835 CVE-2009-0859
Created:April 7, 2009 Updated:February 3, 2010
Description: From the Ubuntu advisory:

NFS did not correctly handle races between fcntl and interrupts. A local attacker on an NFS mount could consume unlimited kernel memory, leading to a denial of service. Ubuntu 8.10 was not affected. (CVE-2008-4307)

Sparc syscalls did not correctly check mmap regions. A local attacker could cause a system panic, leading to a denial of service. Ubuntu 8.10 was not affected. (CVE-2008-6107)

The page fault handler could consume stack memory. A local attacker could exploit this to crash the system or gain root privileges with a Kprobe registered. Only Ubuntu 8.10 was affected. (CVE-2009-0605)

The syscall interface did not correctly validate parameters when crossing the 64-bit/32-bit boundary. A local attacker could bypass certain syscall restricts via crafted syscalls. (CVE-2009-0834, CVE-2009-0835)

The shared memory subsystem did not correctly handle certain shmctl calls when CONFIG_SHMEM was disabled. Ubuntu kernels were not vulnerable, since CONFIG_SHMEM is enabled by default. (CVE-2009-0859)

Alerts:
Red Hat RHSA-2010:0079-01 2010-02-02
SuSE SUSE-SA:2009:033 2009-06-16
SuSE SUSE-SA:2009:031 2009-06-09
SuSE SUSE-SA:2009:030 2009-06-08
SuSE SUSE-SA:2009:028 2009-05-20
Mandriva MDVSA-2009:118 2009-05-19
Debian DSA-1800-1 2009-05-15
rPath rPSA-2009-0084-1 2009-05-15
CentOS CESA-2009:0473 2009-05-07
Red Hat RHSA-2009:0473-01 2009-05-07
Debian DSA-1794-1 2009-05-06
Debian DSA-1787-1 2009-05-02
CentOS CESA-2009:0459 2009-05-01
Red Hat RHSA-2009:0459-01 2009-04-30
Red Hat RHSA-2009:0451-02 2009-04-29
SuSE SUSE-SA:2009:021 2009-04-16
Ubuntu USN-752-1 2009-04-07
Ubuntu USN-751-1 2009-04-07
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds