Lucene search

HistoryMay 02, 2009 - 6:34 p.m.

[SECURITY] [DSA 1787-1] New Linux 2.6.24 packages fix several vulnerabilities


10 High


Access Vector


Access Complexity




Confidentiality Impact


Integrity Impact


Availability Impact



Debian Security Advisory DSA-1787-1 [email protected] Dann Frazier
May 2, 2009

Package : linux-2.6.24
Vulnerability : denial of service/privilege escalation/information leak
Problem type : local/remote
Debian-specific: no
CVE Id(s) : CVE-2008-4307 CVE-2008-5079 CVE-2008-5395 CVE-2008-5700
CVE-2008-5701 CVE-2008-5702 CVE-2009-0028 CVE-2009-0029
CVE-2009-0031 CVE-2009-0065 CVE-2009-0269 CVE-2009-0322
CVE-2009-0675 CVE-2009-0676 CVE-2009-0745 CVE-2009-0834
CVE-2009-0859 CVE-2009-1046 CVE-2009-1192 CVE-2009-1242
CVE-2009-1265 CVE-2009-1337 CVE-2009-1338 CVE-2009-1439

Several vulnerabilities have been discovered in the Linux kernel that
may lead to a denial of service or privilege escalation. The Common
Vulnerabilities and Exposures project identifies the following


Bryn M. Reeves reported a denial of service in the NFS filesystem.
Local users can trigger a kernel BUG() due to a race condition in
the do_setlk function.


Hugo Dias reported a DoS condition in the ATM subsystem that can
be triggered by a local user by calling the svc_listen function
twice on the same socket and reading /proc/net/atm/*vc.


Helge Deller discovered a denial of service condition that allows
local users on PA-RISC systems to crash a system by attempting to
unwind a stack contiaining userspace addresses.


Alan Cox discovered a lack of minimum timeouts on SG_IO requests,
which allows local users of systems using ATA to cause a denial of
service by forcing drives into PIO mode.


Vlad Malov reported an issue on 64-bit MIPS systems where a local
user could cause a system crash by crafing a malicious binary
which makes o32 syscalls with a number less than 4000.


Zvonimir Rakamaric reported an off-by-one error in the ib700wdt
watchdog driver which allows local users to cause a buffer
underflow by making a specially crafted WDIOC_SETTIMEOUT ioctl


Chris Evans discovered a situation in which a child process can
send an arbitrary signal to its parent.


Christian Borntraeger discovered an issue effecting the alpha,
mips, powerpc, s390 and sparc64 architectures that allows local
users to cause a denial of service or potentially gain elevated


Vegard Nossum discovered a memory leak in the keyctl subsystem
that allows local users to cause a denial of service by consuming
all of kernel memory.


Wei Yongjun discovered a memory overflow in the SCTP
implementation that can be triggered by remote users, permitting
remote code execution.


Duane Griffin provided a fix for an issue in the eCryptfs
subsystem which allows local users to cause a denial of service
(fault or memory corruption).


Pavel Roskin provided a fix for an issue in the dell_rbu driver
that allows a local user to cause a denial of service (oops) by
reading 0 byts from a sysfs entry.


Roel Kluin discovered inverted logic in the skfddi driver that
permits local, unprivileged users to reset the driver statistics.


Clement LECIGNE discovered a bug in the sock_getsockopt function
that may result in leaking sensitive kernel memory.


Peter Kerwien discovered an issue in the ext4 filesystem that
allows local users to cause a denial of service (kernel oops)
during a resize operation.


Roland McGrath discovered an issue on amd64 kernels that allows
local users to circumvent system call audit configurations which
filter based on the syscall numbers or argument details.


Jiri Olsa discovered that a local user can cause a denial of
service (system hang) using a SHM_INFO shmctl call on kernels
compiled with CONFIG_SHMEM disabled. This issue does not affect
prebuilt Debian kernels.


Mikulas Patocka reported an issue in the console subsystem that
allows a local user to cause memory corruption by selecting a
small number of 3-byte UTF-8 characters.


Shaohua Li reported an issue in the AGP subsystem they may allow
local users to read sensitive kernel memory due to a leak of
uninitialized memory.


Benjamin Gilbert reported a local denial of service vulnerability
in the KVM VMX implementation that allows local users to trigger
an oops.


Thomas Pollet reported an overflow in the af_rose implementation
that allows remote attackers to retrieve uninitialized kernel
memory that may contain sensitive data.


Oleg Nesterov discovered an issue in the exit_notify function that
allows local users to send an arbitrary signal to a process by
running a program that modifies the exit_signal field and then
uses an exec system call to launch a setuid application.


Daniel Hokka Zakrisson discovered that a kill(-1) is permitted to
reach processes outside of the current process namespace.


Pavan Naregundi reported an issue in the CIFS filesystem code that
allows remote users to overwrite memory via a long
nativeFileSystem field in a Tree Connect response during mount.

For the stable distribution (etch), these problems have been fixed in
version 2.6.24-6~etchnhalf.8etch1.

We recommend that you upgrade your linux-2.6.24 packages.

Note: Debian 'etch' includes linux kernel packages based upon both the
2.6.18 and 2.6.24 linux releases. All known security issues are
carefully tracked against both packages and both packages will receive
security updates until security support for Debian 'etch'
concludes. However, given the high frequency at which low-severity
security issues are discovered in the kernel and the resource
requirements of doing an update, lower severity 2.6.18 and 2.6.24
updates will typically release in a staggered or "leap-frog" fashion.

Upgrade instructions

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian GNU/Linux 4.0 alias etch

Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.

Source archives:
Size/MD5 checksum: 4033829 ff5f9342fbd061dcab316080057bf9ac
Size/MD5 checksum: 5117 c71acfa6a187429a702d368e5974d082
Size/MD5 checksum: 59630522 6b8751d1eb8e71498ba74bbd346343af

Architecture independent packages:
Size/MD5 checksum: 82422 f39c24b3acf13eee80ab07421e120bc7
Size/MD5 checksum: 4260850 8b0891fa602714572b2ea8be13d4b2eb
Size/MD5 checksum: 96802 317936645be453126afab54705999059
Size/MD5 checksum: 1542086 460bc638a040b2674f4da6e30fc975f1
Size/MD5 checksum: 46865722 b3afc19906294f1990ab97e6c8943285
Size/MD5 checksum: 917482 dc533207197184a44dcc931372534b0b

alpha architecture (DEC Alpha)
Size/MD5 checksum: 82038 12269f5ccc3251bed6544c82ace6bab8
Size/MD5 checksum: 26736698 8714134f74ad24d4a761d9e1b18c84dc
Size/MD5 checksum: 332080 2632341b6c0d98b6798103d4e03a4980
Size/MD5 checksum: 26757530 c00a3280cf8bc9d18e52c64202af9e34
Size/MD5 checksum: 27341904 ee355aab70b9061c511e7152929c150a
Size/MD5 checksum: 331054 7d30fb320e409180de47bdf7be8430c2
Size/MD5 checksum: 3454072 01417e58c71bb9515a4011c390be0580
Size/MD5 checksum: 82010 cff77bfb7491d357acc7d9d50dc0217e
Size/MD5 checksum: 330926 1b2c38a3628e25cc62b7e555800d48e5

amd64 architecture (AMD x86_64 (AMD64))
Size/MD5 checksum: 19480638 9f9f06adb37a611ed3f24000859beb03
Size/MD5 checksum: 3654580 aac989a8eee05d7adaf9731dfdda062f
Size/MD5 checksum: 344960 4a6f4ac493086ec243734b3b6968a2bd
Size/MD5 checksum: 82010 f7713fceebf11933dd20c7db1c636df0
Size/MD5 checksum: 81998 7f2d31a9d80ae34c397d90912dbbb46f

arm architecture (ARM)
Size/MD5 checksum: 308926 05539199c8e837c4fccc75172a9c82be
Size/MD5 checksum: 82136 39e67aa9c8617379a54c9f36d0d72572
Size/MD5 checksum: 3939598 804e621a444954f2045f27a9282ae77a
Size/MD5 checksum: 306808 3086d994c254c2481c6610729c6ee182
Size/MD5 checksum: 296510 23d73ccad75398f169ad602db513b908
Size/MD5 checksum: 9351566 c0326566806f5c7ed8de2342f4de857a
Size/MD5 checksum: 10775966 6661bd851503d953c4ca43b6f8e85deb
Size/MD5 checksum: 10768304 daca396e0f5decdfe92a7724069daa50
Size/MD5 checksum: 82166 8bb034ce3157aeefe7c3c692ebe14df4

hppa architecture (HP PA RISC)
Size/MD5 checksum: 261644 7c1852bbe840ac3d90c12d452e2681cf
Size/MD5 checksum: 82016 293d2bba2cb8563e700377ada35f2ba2
Size/MD5 checksum: 259304 f3db74269efbac5501598e35a462bf20
Size/MD5 checksum: 82038 bdae604446c924296cd1aac5b9be7e95
Size/MD5 checksum: 13332816 5d9819ffa069392df46ad94e193cbdf1
Size/MD5 checksum: 258452 c1a9dde9f1c92b4563126d1937d4eec2
Size/MD5 checksum: 14385162 6cbd8dc0702e5cb15237d246883dd2c0
Size/MD5 checksum: 258378 4a864d5f74cd4f1e05362aa00e94236a
Size/MD5 checksum: 14847618 ab5989ffb84c1780ba7a8d06ac501f67
Size/MD5 checksum: 3439250 22ebf43e46ee15c1240d6881c2554248
Size/MD5 checksum: 13845394 731ba27a151e94071c8f64ceb0da9e92

i386 architecture (Intel ia32)
Size/MD5 checksum: 360908 aef486d9faf9aca0e61ea01e16d0cbc8
Size/MD5 checksum: 19348860 15a2e2dc1fa2b3b423d3010272f7f3f6
Size/MD5 checksum: 82124 ee99a97dc91f3c2e205bce0b901904c0
Size/MD5 checksum: 359834 d80f275632e07acaaa02679eee976bb6
Size/MD5 checksum: 82160 07df09b3f1af03cd0f20d2b0cf2b679a
Size/MD5 checksum: 347518 a3530c65c732ef54f207a3551c85ec9f
Size/MD5 checksum: 19344944 28d8879c242e0698ee8524d006970445
Size/MD5 checksum: 361402 3bad41e46bd717ebe8d15e0473f130eb
Size/MD5 checksum: 19589084 a8319258d3194cd59fa263a1b66a5626
Size/MD5 checksum: 19278254 608362b1503eb3ec838bd01152d7aa93
Size/MD5 checksum: 3647296 a6ce4748c3fefd49a40ebbfed1e004f9

ia64 architecture (Intel ia64)
Size/MD5 checksum: 318210 76ad07637a2fac8a32d827c23f893ffa
Size/MD5 checksum: 32025152 eb4eec0df149a61e18ae22ef8c50eb43
Size/MD5 checksum: 318482 a155708aa4e74d90e54a4f107221c995
Size/MD5 checksum: 3567324 0e1d20a7ecbf444ad6aba30cc169963d
Size/MD5 checksum: 82000 f66623c2c53891b0d92055fb032d0592
Size/MD5 checksum: 32206190 62738a79d48dffcad324124d2b73f3d4
Size/MD5 checksum: 82028 6aa864922de84ad84cfff13eb9ce71ee

mips architecture (MIPS (Big Endian))
Size/MD5 checksum: 308452 f5d33880c20e98b12a9ad5ef53743910
Size/MD5 checksum: 214502 a39b0ecffd3a215979f8e5bcdcd78bfe
Size/MD5 checksum: 17166576 38a62721888bbb2f0fc4d7fbdba70c9e
Size/MD5 checksum: 82062 3aa3ea6a854d046759d5824257e47bf3
Size/MD5 checksum: 17151594 603b866be5168c042bbef832eb253c9d
Size/MD5 checksum: 10522386 725913ed966df3029d3f72332af590fd
Size/MD5 checksum: 225228 e8ad107d20c67c798cdb093ae150592c
Size/MD5 checksum: 246218 69eee0d55e37c414da07e70b90c190a9
Size/MD5 checksum: 11957416 9d75b25a0668735d4bfb1fac77788723
Size/MD5 checksum: 27772372 307325283c10af9dd6dc8cb4f0de39a7
Size/MD5 checksum: 246310 815dfe8f02f354f03f0d63f8605bedd9
Size/MD5 checksum: 22150880 d183f2a93f59d18034573fd7febf5e22
Size/MD5 checksum: 3803446 4448552a0dd930e3d51a800c1d6deb50
Size/MD5 checksum: 82008 871aace093a3411d3d01dfcc19e57a7a
Size/MD5 checksum: 309908 ebc141db56c3f149eaf265af89054e03

mipsel architecture (MIPS (Little Endian))
Size/MD5 checksum: 3803432 926f0974edf97ded8ef4bd4f99847b35
Size/MD5 checksum: 245716 9a62f6221f1b1e36c8b397e5afcb966a
Size/MD5 checksum: 82060 401c4c5fb02f54a0deacef21bf630b0e
Size/MD5 checksum: 26982892 39032aaca4b2a6cecc7091022a42e2b7
Size/MD5 checksum: 16629962 874a967e72aa10398626267cb2d5ba54
Size/MD5 checksum: 21732318 7819062b50720a60a098d086978298ea
Size/MD5 checksum: 82012 06886337047db3ad1df77cc919c4cff6
Size/MD5 checksum: 246190 ec4b8f66e8a0065d694f990745049e7e
Size/MD5 checksum: 16566324 d778d8f7f199e49cb087fafaef7eb551
Size/MD5 checksum: 13316760 aadc4a462ca185163c902551556c92f6
Size/MD5 checksum: 309226 44e7866afb834db0bf71a9d034d729ba
Size/MD5 checksum: 308360 e53f7681e10aa6b07d1ea3e3b58622da
Size/MD5 checksum: 245984 a572ee84ea19bb4bb908e6c20a56ca37

powerpc architecture (PowerPC)
Size/MD5 checksum: 19194974 99103ae37f6001139ea44dd31f84183f
Size/MD5 checksum: 320916 0ba37f3d80f38b92b9097ea7e90fb3e7
Size/MD5 checksum: 320840 0ab836295bc998d5b54f9d54bb2bd23c
Size/MD5 checksum: 19485870 bbee80ba2e47827a9f8ac2360ccf9e68
Size/MD5 checksum: 3672412 4ff49fe861ab4f49eec95d425114c349
Size/MD5 checksum: 82012 03d29f46bdcab8bab20d237a294fc242
Size/MD5 checksum: 295058 7718f3ba536f4af7252961bbbbab24be
Size/MD5 checksum: 21169748 db5e60f6e3ba1fcd12a793fd30f75c14
Size/MD5 checksum: 17459470 60369530c57a669b6c9bcd441f757417
Size/MD5 checksum: 322436 779ccace55f22bdcf1ccd9212033b58d
Size/MD5 checksum: 82046 39a3cbedcbc4e13f997b7641394e3ad0

s390 architecture (IBM S/390)
Size/MD5 checksum: 1501738 7bf06e1f51092c18b512045444fba8e9
Size/MD5 checksum: 193848 6713da5dfd8696c27718075e6cb3fa03
Size/MD5 checksum: 82016 1668a7a797859f5d9e0a7af2ba1781b4
Size/MD5 checksum: 6950110 9f8a8d765c71aaee7e94402626f413a1
Size/MD5 checksum: 82002 0f37b246336adf27ce4d37776257ff95
Size/MD5 checksum: 7200396 de8ace94802f259aef088e9384a4ca6b
Size/MD5 checksum: 194084 ea695f010b1916d50f1bdad2e85dd1f0
Size/MD5 checksum: 3429706 8a40f944fa6b7c64353d76154bded277

sparc architecture (Sun SPARC/UltraSPARC)
Size/MD5 checksum: 82152 88b0f93df760ac992f30c1927d0144f7
Size/MD5 checksum: 3652306 42dda4de967328363df86bee8ba0c53b
Size/MD5 checksum: 13022916 93538efd19eae1488128df8a3a73b957
Size/MD5 checksum: 263066 c796e2fd4e51ff6a66d9eec594c81386
Size/MD5 checksum: 13317632 e50f9515e67c38d66c58f317bf2c9292
Size/MD5 checksum: 264930 a1d0ba75ee8eded18b4d97327ebd0291
Size/MD5 checksum: 82128 6c1ebe596b196e25cb0307f78ab1f358

These changes will probably be included in the oldstable distribution on
its next update.

For apt-get: deb stable/updates main
For dpkg-ftp: dists/stable/updates/main
Mailing list: [email protected]
Package info: `apt-cache show <pkg>' and;pkg&gt;

Debian4alllinux-headers-2.6.24-etchnhalf.1-parisc-smp< 2.6.24-6~etchnhalf.8etch1linux-headers-2.6.24-etchnhalf.1-parisc-smp_2.6.24-6~etchnhalf.8etch1_all.deb
Debian4alllinux-headers-2.6.24-etchnhalf.1-486< 2.6.24-6~etchnhalf.8etch1linux-headers-2.6.24-etchnhalf.1-486_2.6.24-6~etchnhalf.8etch1_all.deb
Debian4alllinux-headers-2.6.24-etchnhalf.1-686-bigmem< 2.6.24-6~etchnhalf.8etch1linux-headers-2.6.24-etchnhalf.1-686-bigmem_2.6.24-6~etchnhalf.8etch1_all.deb
Debian4alllinux-headers-2.6.24-etchnhalf.1-all-mips< 2.6.24-6~etchnhalf.8etch1linux-headers-2.6.24-etchnhalf.1-all-mips_2.6.24-6~etchnhalf.8etch1_all.deb
Debian4alllinux-image-2.6.24-etchnhalf.1-alpha-smp< 2.6.24-6~etchnhalf.8etch1linux-image-2.6.24-etchnhalf.1-alpha-smp_2.6.24-6~etchnhalf.8etch1_all.deb
Debian4alllinux-headers-2.6.24-etchnhalf.1-mac< 2.6.24-6~etchnhalf.8etch1linux-headers-2.6.24-etchnhalf.1-mac_2.6.24-6~etchnhalf.8etch1_all.deb
Debian4alllinux-headers-2.6.24-etchnhalf.1-all-mipsel< 2.6.24-6~etchnhalf.8etch1linux-headers-2.6.24-etchnhalf.1-all-mipsel_2.6.24-6~etchnhalf.8etch1_all.deb
Debian4alllinux-image-2.6.24-etchnhalf.1-amiga< 2.6.24-6~etchnhalf.8etch1linux-image-2.6.24-etchnhalf.1-amiga_2.6.24-6~etchnhalf.8etch1_all.deb
Debian4alllinux-headers-2.6.24-etchnhalf.1-5kc-malta< 2.6.24-6~etchnhalf.8etch1linux-headers-2.6.24-etchnhalf.1-5kc-malta_2.6.24-6~etchnhalf.8etch1_all.deb
Debian4alllinux-headers-2.6.24-etchnhalf.1-itanium< 2.6.24-6~etchnhalf.8etch1linux-headers-2.6.24-etchnhalf.1-itanium_2.6.24-6~etchnhalf.8etch1_all.deb
Rows per page:
1-10 of 991

10 High


Access Vector


Access Complexity




Confidentiality Impact


Integrity Impact


Availability Impact