10 matches found
SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 6113)
This Linux kernel update for SUSE Linux Enterprise 10 Service Pack 2 fixes various bugs and several security issues. The following security issues were fixed: CVE-2009-0675: The skfpioctl function in drivers/net/skfp/skfddi.c in the Linux kernel permits SKFPCLRSTATS requests only when the...
SLES10: Security update for Linux kernel
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: kernel-bigsmp kernel-debug kernel-default kernel-kdump kernel-smp kernel-source kernel-syms kernel-vmi kernel-vmipae kernel-xen kernel-xenpae More details ma...
SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 6109)
This Linux kernel update for SUSE Linux Enterprise 10 Service Pack 2 fixes various bugs and several security issues. The following security issues were fixed: CVE-2009-0675: The skfpioctl function in drivers/net/skfp/skfddi.c in the Linux kernel permits SKFPCLRSTATS requests only when the...
[SECURITY] [DSA 1794-1] New Linux 2.6.18 packages fix several vulnerabilities
---------------------------------------------------------------------- Debian Security Advisory DSA-1794-1 [email protected] http://www.debian.org/security/ dann frazier May 6, 2009 http://www.debian.org/security/faq - ----------------------------------------------------------------------...
RedHat Security Advisory RHSA-2009:0326
The remote host is missing updates to the kernel announced in advisory RHSA-2009:0326. Security fixes: memory leaks were found on some error paths in the icmpsend function in the Linux kernel. This could, potentially, cause the network connectivity to cease. CVE-2009-0778, Important Chris Evans...
CentOS Security Advisory CESA-2009:0326 (kernel)
The remote host is missing updates to kernel announced in advisory CESA-2009:0326. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-on...
Debian: Security Advisory (DSA-1749-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Linux Kernel SysKonnect FDDI驱动非授权重置统计漏洞
CVECAN ID: CVE-2009-0675 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的drivers/net/skfp/skfddi.c文件中的skfpioctl函数中存在错误的逻辑,本地用户在缺少CAPNETADMIN权限而不是拥有这个权限的时候才可以执行SKFPCLRSTATS请求,因此无需授权便可以重置驱动统计。 Linux kernel 2.6.x 厂商补丁: Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
CVE-2009-0675
The skfpioctl function in drivers/net/skfp/skfddi.c in the Linux kernel before 2.6.28.6 permits SKFPCLRSTATS requests only when the CAPNETADMIN capability is absent, instead of when this capability is present, which allows local users to reset the driver statistics, related to an "inverted logic"...
CVE-2009-0675
CVE-2009-0675 affects the Linux kernel up to version 2.6.28.6, where the skfp_ioctl function in drivers/net/skfp/skfddi.c incorrectly allows SKFP_CLR_STATS requests when CAP_NET_ADMIN is absent rather than present, enabling local users to reset driver statistics (inverted logic). The vulnerabilit...