Debian 5.0: DSA-1809-1 High: Linux Kernel Denial Of Service Risk
debian
June 2, 2009
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, or privilege escalation
Summary
Several vulnerabilities have been discovered in the Linux kernel that
may lead to a denial of service, or privilege escalation. The Common
Vulnerabilities and Exposures project identifies the following
problems:
CVE-2009-1630
Frank Filz discovered that local users may be able to execute
files without execute permission when accessed via an nfs4 mount.
CVE-2009-1633
Jeff Layton and Suresh Jayaraman fixed several buffer overflows in
the CIFS filesystem which allow remote servers to cause memory
corruption.
CVE-2009-1758
Jan Beulich discovered an issue in Xen where local guest users may
cause a denial of service (oops).
This update also fixes a regression introduced by the fix for
CVE-2009-1184 in 2.6.26-15lenny3. This prevents a boot time panic on
systems with SELinux enabled.
For the stable distribution (lenny), these problems have been fixed in
version 2.6.26-15lenny3.
For the oldstable distribution (etch), these problems, where
applicable, will be fixed in future updates to...
PREVIOUS 
NEXT Package: linux-2.6
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!