Linux Security
Linux Security
Linux Security

Debian: DSA-1787-1: New Linux 2.6.24 packages fix several vulnerabilities

Date 02 May 2009
Posted By LinuxSecurity Advisories
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems:
Hash: SHA1

- ----------------------------------------------------------------------
Debian Security Advisory DSA-1787-1                This email address is being protected from spambots. You need JavaScript enabled to view it.                           Dann Frazier
May 2, 2009               
- ----------------------------------------------------------------------

Package        : linux-2.6.24
Vulnerability  : denial of service/privilege escalation/information leak
Problem type   : local/remote
Debian-specific: no
CVE Id(s)      : CVE-2008-4307 CVE-2008-5079 CVE-2008-5395 CVE-2008-5700
                 CVE-2008-5701 CVE-2008-5702 CVE-2009-0028 CVE-2009-0029
                 CVE-2009-0031 CVE-2009-0065 CVE-2009-0269 CVE-2009-0322
                 CVE-2009-0675 CVE-2009-0676 CVE-2009-0745 CVE-2009-0834
                 CVE-2009-0859 CVE-2009-1046 CVE-2009-1192 CVE-2009-1242
                 CVE-2009-1265 CVE-2009-1337 CVE-2009-1338 CVE-2009-1439

Several vulnerabilities have been discovered in the Linux kernel that
may lead to a denial of service or privilege escalation. The Common
Vulnerabilities and Exposures project identifies the following


    Bryn M. Reeves reported a denial of service in the NFS filesystem.
    Local users can trigger a kernel BUG() due to a race condition in
    the do_setlk function.


    Hugo Dias reported a DoS condition in the ATM subsystem that can
    be triggered by a local user by calling the svc_listen function
    twice on the same socket and reading /proc/net/atm/*vc.


    Helge Deller discovered a denial of service condition that allows
    local users on PA-RISC systems to crash a system by attempting to
    unwind a stack contiaining userspace addresses.


    Alan Cox discovered a lack of minimum timeouts on SG_IO requests,
    which allows local users of systems using ATA to cause a denial of
    service by forcing drives into PIO mode.

    Vlad Malov reported an issue on 64-bit MIPS systems where a local
    user could cause a system crash by crafing a malicious binary
    which makes o32 syscalls with a number less than 4000.


    Zvonimir Rakamaric reported an off-by-one error in the ib700wdt
    watchdog driver which allows local users to cause a buffer
    underflow by making a specially crafted WDIOC_SETTIMEOUT ioctl


    Chris Evans discovered a situation in which a child process can
    send an arbitrary signal to its parent.


    Christian Borntraeger discovered an issue effecting the alpha,
    mips, powerpc, s390 and sparc64 architectures that allows local
    users to cause a denial of service or potentially gain elevated


    Vegard Nossum discovered a memory leak in the keyctl subsystem
    that allows local users to cause a denial of service by consuming
    all of kernel memory.


    Wei Yongjun discovered a memory overflow in the SCTP
    implementation that can be triggered by remote users, permitting
    remote code execution.

    Duane Griffin provided a fix for an issue in the eCryptfs
    subsystem which allows local users to cause a denial of service
    (fault or memory corruption).


    Pavel Roskin provided a fix for an issue in the dell_rbu driver
    that allows a local user to cause a denial of service (oops) by
    reading 0 byts from a sysfs entry.


    Roel Kluin discovered inverted logic in the skfddi driver that
    permits local, unprivileged users to reset the driver statistics.


    Clement LECIGNE discovered a bug in the sock_getsockopt function
    that may result in leaking sensitive kernel memory.


    Peter Kerwien discovered an issue in the ext4 filesystem that
    allows local users to cause a denial of service (kernel oops)
    during a resize operation.


    Roland McGrath discovered an issue on amd64 kernels that allows
    local users to circumvent system call audit configurations which
    filter based on the syscall numbers or argument details.


    Jiri Olsa discovered that a local user can cause a denial of
    service (system hang) using a SHM_INFO shmctl call on kernels
    compiled with CONFIG_SHMEM disabled. This issue does not affect
    prebuilt Debian kernels.


    Mikulas Patocka reported an issue in the console subsystem that
    allows a local user to cause memory corruption by selecting a
    small number of 3-byte UTF-8 characters.


    Shaohua Li reported an issue in the AGP subsystem they may allow
    local users to read sensitive kernel memory due to a leak of
    uninitialized memory.


    Benjamin Gilbert reported a local denial of service vulnerability
    in the KVM VMX implementation that allows local users to trigger
    an oops.


    Thomas Pollet reported an overflow in the af_rose implementation
    that allows remote attackers to retrieve uninitialized kernel
    memory that may contain sensitive data.


    Oleg Nesterov discovered an issue in the exit_notify function that
    allows local users to send an arbitrary signal to a process by
    running a program that modifies the exit_signal field and then
    uses an exec system call to launch a setuid application.


    Daniel Hokka Zakrisson discovered that a kill(-1) is permitted to
    reach processes outside of the current process namespace.

    Pavan Naregundi reported an issue in the CIFS filesystem code that
    allows remote users to overwrite memory via a long
    nativeFileSystem field in a Tree Connect response during mount.

For the stable distribution (etch), these problems have been fixed in
version 2.6.24-6~etchnhalf.8etch1.

We recommend that you upgrade your linux-2.6.24 packages.

Note: Debian 'etch' includes linux kernel packages based upon both the
2.6.18 and 2.6.24 linux releases.  All known security issues are
carefully tracked against both packages and both packages will receive
security updates until security support for Debian 'etch'
concludes. However, given the high frequency at which low-severity
security issues are discovered in the kernel and the resource
requirements of doing an update, lower severity 2.6.18 and 2.6.24
updates will typically release in a staggered or "leap-frog" fashion.

Upgrade instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian GNU/Linux 4.0 alias etch
- -------------------------------

Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.

Source archives:
    Size/MD5 checksum:  4033829 ff5f9342fbd061dcab316080057bf9ac
    Size/MD5 checksum:     5117 c71acfa6a187429a702d368e5974d082
    Size/MD5 checksum: 59630522 6b8751d1eb8e71498ba74bbd346343af

Architecture independent packages:
    Size/MD5 checksum:    82422 f39c24b3acf13eee80ab07421e120bc7
    Size/MD5 checksum:  4260850 8b0891fa602714572b2ea8be13d4b2eb
    Size/MD5 checksum:    96802 317936645be453126afab54705999059
    Size/MD5 checksum:  1542086 460bc638a040b2674f4da6e30fc975f1
    Size/MD5 checksum: 46865722 b3afc19906294f1990ab97e6c8943285
    Size/MD5 checksum:   917482 dc533207197184a44dcc931372534b0b

alpha architecture (DEC Alpha)
    Size/MD5 checksum:    82038 12269f5ccc3251bed6544c82ace6bab8
    Size/MD5 checksum: 26736698 8714134f74ad24d4a761d9e1b18c84dc
    Size/MD5 checksum:   332080 2632341b6c0d98b6798103d4e03a4980
    Size/MD5 checksum: 26757530 c00a3280cf8bc9d18e52c64202af9e34
    Size/MD5 checksum: 27341904 ee355aab70b9061c511e7152929c150a
    Size/MD5 checksum:   331054 7d30fb320e409180de47bdf7be8430c2
    Size/MD5 checksum:  3454072 01417e58c71bb9515a4011c390be0580
    Size/MD5 checksum:    82010 cff77bfb7491d357acc7d9d50dc0217e
    Size/MD5 checksum:   330926 1b2c38a3628e25cc62b7e555800d48e5

amd64 architecture (AMD x86_64 (AMD64))
    Size/MD5 checksum: 19480638 9f9f06adb37a611ed3f24000859beb03
    Size/MD5 checksum:  3654580 aac989a8eee05d7adaf9731dfdda062f
    Size/MD5 checksum:   344960 4a6f4ac493086ec243734b3b6968a2bd
    Size/MD5 checksum:    82010 f7713fceebf11933dd20c7db1c636df0
    Size/MD5 checksum:    81998 7f2d31a9d80ae34c397d90912dbbb46f

arm architecture (ARM)
    Size/MD5 checksum:   308926 05539199c8e837c4fccc75172a9c82be
    Size/MD5 checksum:    82136 39e67aa9c8617379a54c9f36d0d72572
    Size/MD5 checksum:  3939598 804e621a444954f2045f27a9282ae77a
    Size/MD5 checksum:   306808 3086d994c254c2481c6610729c6ee182
    Size/MD5 checksum:   296510 23d73ccad75398f169ad602db513b908
    Size/MD5 checksum:  9351566 c0326566806f5c7ed8de2342f4de857a
    Size/MD5 checksum: 10775966 6661bd851503d953c4ca43b6f8e85deb
    Size/MD5 checksum: 10768304 daca396e0f5decdfe92a7724069daa50
    Size/MD5 checksum:    82166 8bb034ce3157aeefe7c3c692ebe14df4

hppa architecture (HP PA RISC)
    Size/MD5 checksum:   261644 7c1852bbe840ac3d90c12d452e2681cf
    Size/MD5 checksum:    82016 293d2bba2cb8563e700377ada35f2ba2
    Size/MD5 checksum:   259304 f3db74269efbac5501598e35a462bf20
    Size/MD5 checksum:    82038 bdae604446c924296cd1aac5b9be7e95
    Size/MD5 checksum: 13332816 5d9819ffa069392df46ad94e193cbdf1
    Size/MD5 checksum:   258452 c1a9dde9f1c92b4563126d1937d4eec2
    Size/MD5 checksum: 14385162 6cbd8dc0702e5cb15237d246883dd2c0
    Size/MD5 checksum:   258378 4a864d5f74cd4f1e05362aa00e94236a
    Size/MD5 checksum: 14847618 ab5989ffb84c1780ba7a8d06ac501f67
    Size/MD5 checksum:  3439250 22ebf43e46ee15c1240d6881c2554248
    Size/MD5 checksum: 13845394 731ba27a151e94071c8f64ceb0da9e92

i386 architecture (Intel ia32)
    Size/MD5 checksum:   360908 aef486d9faf9aca0e61ea01e16d0cbc8
    Size/MD5 checksum: 19348860 15a2e2dc1fa2b3b423d3010272f7f3f6
    Size/MD5 checksum:    82124 ee99a97dc91f3c2e205bce0b901904c0
    Size/MD5 checksum:   359834 d80f275632e07acaaa02679eee976bb6
    Size/MD5 checksum:    82160 07df09b3f1af03cd0f20d2b0cf2b679a
    Size/MD5 checksum:   347518 a3530c65c732ef54f207a3551c85ec9f
    Size/MD5 checksum: 19344944 28d8879c242e0698ee8524d006970445
    Size/MD5 checksum:   361402 3bad41e46bd717ebe8d15e0473f130eb
    Size/MD5 checksum: 19589084 a8319258d3194cd59fa263a1b66a5626
    Size/MD5 checksum: 19278254 608362b1503eb3ec838bd01152d7aa93
    Size/MD5 checksum:  3647296 a6ce4748c3fefd49a40ebbfed1e004f9

ia64 architecture (Intel ia64)
    Size/MD5 checksum:   318210 76ad07637a2fac8a32d827c23f893ffa
    Size/MD5 checksum: 32025152 eb4eec0df149a61e18ae22ef8c50eb43
    Size/MD5 checksum:   318482 a155708aa4e74d90e54a4f107221c995
    Size/MD5 checksum:  3567324 0e1d20a7ecbf444ad6aba30cc169963d
    Size/MD5 checksum:    82000 f66623c2c53891b0d92055fb032d0592
    Size/MD5 checksum: 32206190 62738a79d48dffcad324124d2b73f3d4
    Size/MD5 checksum:    82028 6aa864922de84ad84cfff13eb9ce71ee

mips architecture (MIPS (Big Endian))
    Size/MD5 checksum:   308452 f5d33880c20e98b12a9ad5ef53743910
    Size/MD5 checksum:   214502 a39b0ecffd3a215979f8e5bcdcd78bfe
    Size/MD5 checksum: 17166576 38a62721888bbb2f0fc4d7fbdba70c9e
    Size/MD5 checksum:    82062 3aa3ea6a854d046759d5824257e47bf3
    Size/MD5 checksum: 17151594 603b866be5168c042bbef832eb253c9d
    Size/MD5 checksum: 10522386 725913ed966df3029d3f72332af590fd
    Size/MD5 checksum:   225228 e8ad107d20c67c798cdb093ae150592c
    Size/MD5 checksum:   246218 69eee0d55e37c414da07e70b90c190a9
    Size/MD5 checksum: 11957416 9d75b25a0668735d4bfb1fac77788723
    Size/MD5 checksum: 27772372 307325283c10af9dd6dc8cb4f0de39a7
    Size/MD5 checksum:   246310 815dfe8f02f354f03f0d63f8605bedd9
    Size/MD5 checksum: 22150880 d183f2a93f59d18034573fd7febf5e22
    Size/MD5 checksum:  3803446 4448552a0dd930e3d51a800c1d6deb50
    Size/MD5 checksum:    82008 871aace093a3411d3d01dfcc19e57a7a
    Size/MD5 checksum:   309908 ebc141db56c3f149eaf265af89054e03

mipsel architecture (MIPS (Little Endian))
    Size/MD5 checksum:  3803432 926f0974edf97ded8ef4bd4f99847b35
    Size/MD5 checksum:   245716 9a62f6221f1b1e36c8b397e5afcb966a
    Size/MD5 checksum:    82060 401c4c5fb02f54a0deacef21bf630b0e
    Size/MD5 checksum: 26982892 39032aaca4b2a6cecc7091022a42e2b7
    Size/MD5 checksum: 16629962 874a967e72aa10398626267cb2d5ba54
    Size/MD5 checksum: 21732318 7819062b50720a60a098d086978298ea
    Size/MD5 checksum:    82012 06886337047db3ad1df77cc919c4cff6
    Size/MD5 checksum:   246190 ec4b8f66e8a0065d694f990745049e7e
    Size/MD5 checksum: 16566324 d778d8f7f199e49cb087fafaef7eb551
    Size/MD5 checksum: 13316760 aadc4a462ca185163c902551556c92f6
    Size/MD5 checksum:   309226 44e7866afb834db0bf71a9d034d729ba
    Size/MD5 checksum:   308360 e53f7681e10aa6b07d1ea3e3b58622da
    Size/MD5 checksum:   245984 a572ee84ea19bb4bb908e6c20a56ca37

powerpc architecture (PowerPC)
    Size/MD5 checksum: 19194974 99103ae37f6001139ea44dd31f84183f
    Size/MD5 checksum:   320916 0ba37f3d80f38b92b9097ea7e90fb3e7
    Size/MD5 checksum:   320840 0ab836295bc998d5b54f9d54bb2bd23c
    Size/MD5 checksum: 19485870 bbee80ba2e47827a9f8ac2360ccf9e68
    Size/MD5 checksum:  3672412 4ff49fe861ab4f49eec95d425114c349
    Size/MD5 checksum:    82012 03d29f46bdcab8bab20d237a294fc242
    Size/MD5 checksum:   295058 7718f3ba536f4af7252961bbbbab24be
    Size/MD5 checksum: 21169748 db5e60f6e3ba1fcd12a793fd30f75c14
    Size/MD5 checksum: 17459470 60369530c57a669b6c9bcd441f757417
    Size/MD5 checksum:   322436 779ccace55f22bdcf1ccd9212033b58d
    Size/MD5 checksum:    82046 39a3cbedcbc4e13f997b7641394e3ad0

s390 architecture (IBM S/390)
    Size/MD5 checksum:  1501738 7bf06e1f51092c18b512045444fba8e9
    Size/MD5 checksum:   193848 6713da5dfd8696c27718075e6cb3fa03
    Size/MD5 checksum:    82016 1668a7a797859f5d9e0a7af2ba1781b4
    Size/MD5 checksum:  6950110 9f8a8d765c71aaee7e94402626f413a1
    Size/MD5 checksum:    82002 0f37b246336adf27ce4d37776257ff95
    Size/MD5 checksum:  7200396 de8ace94802f259aef088e9384a4ca6b
    Size/MD5 checksum:   194084 ea695f010b1916d50f1bdad2e85dd1f0
    Size/MD5 checksum:  3429706 8a40f944fa6b7c64353d76154bded277

sparc architecture (Sun SPARC/UltraSPARC)
    Size/MD5 checksum:    82152 88b0f93df760ac992f30c1927d0144f7
    Size/MD5 checksum:  3652306 42dda4de967328363df86bee8ba0c53b
    Size/MD5 checksum: 13022916 93538efd19eae1488128df8a3a73b957
    Size/MD5 checksum:   263066 c796e2fd4e51ff6a66d9eec594c81386
    Size/MD5 checksum: 13317632 e50f9515e67c38d66c58f317bf2c9292
    Size/MD5 checksum:   264930 a1d0ba75ee8eded18b4d97327ebd0291
    Size/MD5 checksum:    82128 6c1ebe596b196e25cb0307f78ab1f358

  These changes will probably be included in the oldstable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb stable/updates main
For dpkg-ftp: dists/stable/updates/main
Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it.
Package info: `apt-cache show ' and

LinuxSecurity Poll

How frequently do you patch/update your system?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum 0 answer(s) and maximum 3 answer(s).
[{"id":"179","title":"As soon as patches\/updates are released - I track advisories for my distro(s) diligently","votes":"45","type":"x","order":"1","pct":80.36,"resources":[]},{"id":"180","title":"Every so often, when I think of it","votes":"6","type":"x","order":"2","pct":10.71,"resources":[]},{"id":"181","title":"Hardly ever","votes":"5","type":"x","order":"3","pct":8.93,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350

Please vote first in order to view vote results.



bottom 200

Please enable / Bitte aktiviere JavaScript!
Veuillez activer / Por favor activa el Javascript![ ? ]

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.