9 matches found
Linux Kernel IP_ROUTE_INPUT本地拒绝服务漏洞
Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的IPROUTEINPUT模块实现上存在漏洞,如果路由请求了多播IP地址的话,则Linux Kernel的iprouteinput函数中存在空指针引用,可能导致拒绝服务。 Linux kernel 2.6.16.8 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: Linux linux-2.6.16.8.tar.bz2 http://kernel.org/pub/linux/kernel/v2.6/linux-2.6.16.8.tar.bz2...
Mandrake Linux Security Advisory : kernel (MDKSA-2006:086)
A number of vulnerabilities were discovered and corrected in the Linux 2.6 kernel : Prior to Linux kernel 2.6.16.5, the kernel does not properly handle uncanonical return addresses on Intel EM64T CPUs which causes the kernel exception handler to run on the user stack with the wrong GS...
Ubuntu 5.04 / 5.10 : linux-source-2.6.10, linux-source-2.6.12 vulnerabilities (USN-281-1)
The sysmbind function did not properly verify the validity of the 'maxnod' argument. A local user could exploit this to trigger a buffer overflow, which caused a kernel crash. CVE-2006-0557 The SELinux module did not correctly handle the tracer SID when a process was already being traced. A local...
Multiple Linux kernel security vulnerabilities
sysmbind buffer overflow, SELinux module DoS, /sys filesystem DoS, amd64 debugging race conditions DoS, getsockopt kernel memory content leak, iprouteinput DoS...
Fedora Core 4 : kernel-2.6.16-1.2096_FC4 (2006-423)
This update includes a number of security issues that have been fixed upstream over the last week or so. i386/x86-64: Fix x87 information leak between processes CVE-2006-1056 iprouteinput panic fix CVE-2006-1525 fix MADVREMOVE vulnerability CVE-2006-1524 shmat: stop mprotect from giving write...
Fedora Core 5 : kernel-2.6.16-1.2096_FC5 (2006-421)
This update includes a number of security issues that have been fixed upstream over the last week or so. i386/x86-64: Fix x87 information leak between processes CVE-2006-1056 iprouteinput panic fix CVE-2006-1525 fix MADVREMOVE vulnerability CVE-2006-1524 shmat: stop mprotect from giving write...
CVE-2006-1525
iprouteinput in Linux kernel 2.6 before 2.6.16.8 allows local users to cause a denial of service panic via a request for a route for a multicast IP address, which triggers a null dereference...
ChangeLog-2.6.16.8
commit aa48603d1ba772d0a2b28ab73098be2119878eba Author: Greg Kroah-Hartman [email protected] Date: Tue Apr 18 14:32:07 2006 -0700 Linux 2.6.16.8 commit a0b277b4fdcbc24c26af7c5d019e9448a51c79cf Author: Stephen Hemminger [email protected] Date: Mon Apr 17 17:27:11 2006 -0700 PATCH iprouteinput panic...
Multiple Linux kernel vulnerabilities
Floating-point unit registers information leak, shared memory section elevated access. iprouteinput multiplcast DoS...