Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-440-1:2B280
HistoryFeb 18, 2004 - 2:04 p.m.

[SECURITY] [DSA 440-1] New Linux 2.4.17 packages fix several local root exploits (powerpc/apus)

2004-02-1814:04:22
lists.debian.org
9

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

JSON

Debian Security Advisory DSA 440-1 [email protected]
http://www.debian.org/security/ Martin Schulze
February 18th, 2004 http://www.debian.org/security/faq

Package : kernel-source-2.4.17, kernel-patch-2.4.17-apus
Vulnerability : several vulnerabilities
Problem-Type : local
Debian-specific: no
CVE ID : CAN-2003-0961 CAN-2003-0985 CAN-2004-0077

Several local root exploits have been discovered recently in the Linux
kernel. This security advisory updates the PowerPC/Apus kernel for
Debian GNU/Linux. The Common Vulnerabilities and Exposures project
identifies the following problems that are fixed with this update:

CAN-2003-0961:

An integer overflow in brk() system call (do_brk() function) for
Linux allows a local attacker to gain root privileges. Fixed
upstream in Linux 2.4.23.

CAN-2003-0985:

Paul Starzetz discovered a flaw in bounds checking in mremap() in
the Linux kernel (present in version 2.4.x and 2.6.x) which may
allow a local attacker to gain root privileges. Version 2.2 is not
affected by this bug. Fixed upstream in Linux 2.4.24.

CAN-2004-0077:

Paul Starzetz and Wojciech Purczynski of isec.pl discovered a
critical security vulnerability in the memory management code of
Linux inside the mremap(2) system call. Due to missing function
return value check of internal functions a local attacker can gain
root privileges. Fixed upstream in Linux 2.4.25 and 2.6.3.

For the stable distribution (woody) these problems have been fixed in
version 2.4.17-4 of powerpc/apus images.

Other architectures will probably mentioned in a separate advisory or
are not affected (m68k).

For the unstable distribution (sid) this problem will be fixed soon.

We recommend that you upgrade your Linux kernel packages immediately.

Upgrade Instructions

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian GNU/Linux 3.0 alias woody

Source archives:

http://security.debian.org/pool/updates/main/k/kernel-source-2.4.17/kernel-source-2.4.17_2.4.17-1woody2.dsc
  Size/MD5 checksum:      690 f4f41d8b5ce68462139eadff5e340b2f
http://security.debian.org/pool/updates/main/k/kernel-source-2.4.17/kernel-source-2.4.17_2.4.17-1woody2.diff.gz
  Size/MD5 checksum:    38791 17b8f97671d0f1be7c595123bcf0c86c
http://security.debian.org/pool/updates/main/k/kernel-source-2.4.17/kernel-source-2.4.17_2.4.17.orig.tar.gz
  Size/MD5 checksum: 29445154 d5de2a4dc49e32c37e557ef856d5d132

http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-apus/kernel-patch-2.4.17-apus_2.4.17-4.dsc
  Size/MD5 checksum:      667 beff21e365dba9487c3d1009e6bb8ce7
http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-apus/kernel-patch-2.4.17-apus_2.4.17-4.tar.gz
  Size/MD5 checksum:   489649 3feef2fdda2cb1385e12fb18b33c3787

Architecture independent components:

http://security.debian.org/pool/updates/main/k/kernel-source-2.4.17/kernel-doc-2.4.17_2.4.17-1woody2_all.deb
  Size/MD5 checksum:  1719904 4299b7aeebc01ede7eb5a2f2f5ba0b45
http://security.debian.org/pool/updates/main/k/kernel-source-2.4.17/kernel-source-2.4.17_2.4.17-1woody2_all.deb
  Size/MD5 checksum: 23878388 15202df8a94f2aa17f09382f520021fc

PowerPC architecture:

http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-apus/kernel-headers-2.4.17-apus_2.4.17-4_powerpc.deb
  Size/MD5 checksum:  3365696 0f03db43dd1c83a6c02cbd474ae54685
http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-apus/kernel-image-2.4.17-apus_2.4.17-4_powerpc.deb
  Size/MD5 checksum:  2210948 1f12b255f6644f144e3426fa5865b27e
http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-apus/kernel-image-apus_2.4.17-4_powerpc.deb
  Size/MD5 checksum:     4078 6a495ea4088b900129c60dd769f7da8d
http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-apus/kernel-patch-2.4.17-apus_2.4.17-4_powerpc.deb
  Size/MD5 checksum:   490346 41eebb692f46cfcb118818048de6d6ad

These files will probably be moved into the stable distribution on
its next revision.

For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: [email protected]
Package info: `apt-cache show <pkg>' and http://packages.debian.org/&lt;pkg&gt;

OSVersionArchitecturePackageVersionFilename
Debian3allkernel-image-2.4.18-1-alpha< 2.4.18-14kernel-image-2.4.18-1-alpha_2.4.18-14_all.deb
Debian3allkernel-patch-2.4.17-mips< 2.4.17-0.020226.2.woody5kernel-patch-2.4.17-mips_2.4.17-0.020226.2.woody5_all.deb
Debian3alphakernel-image-2.2.22-nautilus< 2.2.22-2kernel-image-2.2.22-nautilus_2.2.22-2_alpha.deb
Debian3allkernel-image-2.4.18-1-i386< 2.4.18-12.2kernel-image-2.4.18-1-i386_2.4.18-12.2_all.deb
Debian3powerpckernel-image-2.2.10-apus< 2.2.10-13woody1kernel-image-2.2.10-apus_2.2.10-13woody1_powerpc.deb
Debian3allkernel-image-2.2.20-atari< 2.2.20-3kernel-image-2.2.20-atari_2.2.20-3_all.deb
Debian3allkernel-patch-2.4.18-powerpc< 2.4.18-1woody3kernel-patch-2.4.18-powerpc_2.4.18-1woody3_all.deb
Debian3m68kkernel-image-2.2.20-mvme147< 2.2.20-3kernel-image-2.2.20-mvme147_2.2.20-3_m68k.deb
Debian3i386kernel-headers-2.2.20-idepci< 2.2.20-5woody5kernel-headers-2.2.20-idepci_2.2.20-5woody5_i386.deb
Debian3powerpckernel-headers-2.2.20< 2.2.20-3woody1kernel-headers-2.2.20_2.2.20-3woody1_powerpc.deb
Rows per page:
1-10 of 771

Related

openvas 57
osv 20
debian 40
nessus 37
ubuntucve 3
cve 4
cvelist 3
slackware 5
cert 3
securityvulns 6
redhat 8
exploitpack 1
suse 4
packetstorm 2
gentoo 1
exploitdb 1
openvas
openvas
Debian Security Advisory DSA 475-1 (kernel-image-2.4.17-hppa)
2008-01-17 00:00:00
Debian Security Advisory DSA 440-1 (kernel-source-2.4.17, kernel-patch-2.4.17-apus)
2008-01-17 00:00:00
Debian Security Advisory DSA 450-1 (kernel-source-2.4.19, kernel-patch-2.4.19-mips)
2008-01-17 00:00:00
osv
osv
linux-kernel-2.4.17-powerpc-apus - several vulnerabilities
2004-02-18 00:00:00
linux-kernel-2.4.17-hppa - several vulnerabilities
2004-04-01 00:00:00
linux-kernel-2.4.16-arm - several vulnerabilities
2004-02-18 00:00:00
debian
debian
[SECURITY] [DSA 470-1] New Linux 2.4.17 packages fix several local root exploits (hppa)
2004-04-01 00:00:00
[SECURITY] [DSA 450-1] New Linux 2.4.19 packages fix several local root exploits (mips)
2004-02-27 00:00:00
[SECURITY] [DSA 475-1] New Linux 2.4.18 packages fix several local root exploits (hppa)
2004-04-05 08:32:46
nessus
nessus
Debian DSA-475-1 : linux-kernel-2.4.18-hppa - several vulnerabilities
2004-09-29 00:00:00
Debian DSA-470-1 : linux-kernel-2.4.17-hppa - several vulnerabilities
2004-09-29 00:00:00
Debian DSA-450-1 : linux-kernel-2.4.19-mips - several vulnerabilities
2004-09-29 00:00:00
ubuntucve
ubuntucve
CVE-2004-0077
2004-03-03 00:00:00
CVE-2003-0961
2003-12-15 00:00:00
CVE-2003-0985
2004-01-20 00:00:00
cve
cve
CVE-2004-0077
2004-03-03 05:00:00
CVE-2003-0985
2004-01-20 05:00:00
CVE-2003-0961
2003-12-15 05:00:00
cvelist
cvelist
CVE-2004-0077
2004-09-01 04:00:00
CVE-2003-0985
2004-09-01 04:00:00
CVE-2003-0961
2003-12-02 05:00:00
slackware
slackware
Kernel security update
2004-02-18 04:37:55
minor advisory typo
2003-12-02 11:21:22
Kernel security update
2003-12-02 10:05:30
cert
cert
Linux kernel mremap(2) system call does not properly check return value from do_munmap() function
2004-03-10 00:00:00
Linux kernel do_brk() function contains integer overflow
2003-12-02 00:00:00
Linux kernel do_mremap() call creates virtual memory area of 0 bytes in length
2004-03-09 00:00:00
securityvulns
securityvulns
[Full-Disclosure] [SECURITY] [DSA-403-1] userland can access Linux kernel memory
2003-12-02 00:00:00
[Full-Disclosure] [iSEC] Linux kernel do_brk&#40;&#41; lacks argument bound checking
2003-12-02 00:00:00
[Full-Disclosure] Linux kernel mremap vulnerability
2004-01-05 00:00:00
redhat
redhat
(RHSA-2003:389) kernel security update
2003-12-01 00:00:00
(RHSA-2003:419) kernel security update
2004-01-05 00:00:00
(RHSA-2003:416) kernel security update
2004-01-07 00:00:00
exploitpack
exploitpack
Linux Kernel 2.2.252.4.242.6.2 - mremap() Validator
2004-02-18 00:00:00
suse
suse
local system compromise in Linux Kernel
2004-01-05 19:31:04
local system compromise in Linux Kernel (x86_64, AMD64)
2004-01-15 15:10:36
local privilege escalation in Linux Kernel
2004-02-18 22:19:53
packetstorm
packetstorm
isec-0014-mremap-unmap.v2.txt
2004-03-02 00:00:00
_BSSADV-0000.txt
2003-12-01 00:00:00
gentoo
gentoo
Linux kernel do_mremap local privilege escalation vulnerability
2004-03-05 00:00:00
exploitdb
exploitdb
Linux Kernel 2.2.25/2.4.24/2.6.2 - &#039;mremap()&#039; Validator
2004-02-18 00:00:00

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

JSON
Related for DEBIAN:DSA-440-1:2B280
openvas57osv20debian40nessus37ubuntucve3cve4cvelist3slackware5cert3securityvulns6redhat8exploitpack1suse4packetstorm2gentoo1exploitdb1