Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 554
Alerts This Week
Warning Icon 1 554

Debian DSA 442-1 Critical: Kernel Upgrades for S390 Security Issues

debian
Calendar Grey February 19, 2004
Debian Logo
Debian Security Advisory DSA 442-1 This email address is being protected from spambots. You need Jav
Several security related problems have been fixed in the Linux kernel2.4.17 used for the S/390 architecture, mostly by backporting fixesfrom 2.4.18 and incorporating recent securit...

Summary

Several security related problems have been fixed in the Linux kernel
2.4.17 used for the S/390 architecture, mostly by backporting fixes
from 2.4.18 and incorporating recent security fixes. The corrections
are listed below with the identification from the Common
Vulnerabilities and Exposures (CVE) project:

CAN-2002-0429:

The iBCS routines in arch/i386/kernel/traps.c for Linux kernels
2.4.18 and earlier on x86 systems allow local users to kill
arbitrary processes via a a binary compatibility interface (lcall)

CAN-2003-0001:

Multiple ethernet network interface card (NIC) device drivers do
not pad frames with null bytes, which allows remote attackers to
obtain information from previous packets or kernel memory by using
malformed packets, as demonstrated by Etherleak.

CAN-2003-0244:

The route cache implementation in Linux 2.4, and the Netfilter IP
conntrack module, allows remote attackers to cause a denial of
service (CPU consumption) via packets with forged source addresses
...

Read the Full Advisory

Severity
critical
Lowest
Low
Medium
High
Critical

Package: kernel-patch-2.4.17-s390, kernel-image-2.4.17-s390
CVE ID: CAN-2003-0001 CAN-2003-0244 CAN-2003-0246 CAN-2003-0247 CAN-2003-0248 CAN-2003-0364 CAN-2003-0961 CAN-2003-0985 CAN-2004-0077 CVE-2002-0429

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.