Linux Kernel raw Device ioctl_by_bdev() Function Kernel Memory Corruption

2005-05-16T05:12:43
ID OSVDB:16609
Type osvdb
Reporter alert7(alert7@xfocus.org)
Modified 2005-05-16T05:12:43

Description

Vulnerability Description

The Linux Kernel contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when input to the raw Device ioctl_by_bdev() function is not validated correctly. This flaw may lead to execution of arbitrary code with kernel level privileges and a loss of Integrity.

Solution Description

Upgrade to version 2.6.11.10 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

The Linux Kernel contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when input to the raw Device ioctl_by_bdev() function is not validated correctly. This flaw may lead to execution of arbitrary code with kernel level privileges and a loss of Integrity.

References:

Vendor Specific News/Changelog Entry: http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.11.10 Vendor Specific News/Changelog Entry: http://openvirtuozzo.org/communication/kernel-022stab032.1-released Vendor Specific Advisory URL Security Tracker: 1013980 Secunia Advisory ID:15887 Secunia Advisory ID:15460 Secunia Advisory ID:15392 Secunia Advisory ID:15480 Related OSVDB ID: 16608 Other Advisory URL: http://www.ubuntulinux.org/support/documentation/usn/usn-131-1 Other Advisory URL: http://frontal1.mandriva.com/security/advisories?name=MDKSA-2005:110 Mail List Post: http://archives.neohapsis.com/archives/vulnwatch/2005-q2/0045.html Mail List Post: http://archives.neohapsis.com/archives/vulnwatch/2005-q2/0046.html CVE-2005-1264