Debian DSA 442-1 Critical: Kernel Upgrades for S390 Security Issues
debian
February 19, 2004
Several security related problems have been fixed in the Linux kernel2.4.17 used for the S/390 architecture, mostly by backporting fixesfrom 2.4.18 and incorporating recent securit...
Summary
Several security related problems have been fixed in the Linux kernel
2.4.17 used for the S/390 architecture, mostly by backporting fixes
from 2.4.18 and incorporating recent security fixes. The corrections
are listed below with the identification from the Common
Vulnerabilities and Exposures (CVE) project:
CAN-2002-0429:
The iBCS routines in arch/i386/kernel/traps.c for Linux kernels
2.4.18 and earlier on x86 systems allow local users to kill
arbitrary processes via a a binary compatibility interface (lcall)
CAN-2003-0001:
Multiple ethernet network interface card (NIC) device drivers do
not pad frames with null bytes, which allows remote attackers to
obtain information from previous packets or kernel memory by using
malformed packets, as demonstrated by Etherleak.
CAN-2003-0244:
The route cache implementation in Linux 2.4, and the Netfilter IP
conntrack module, allows remote attackers to cause a denial of
service (CPU consumption) via packets with forged source addresses
...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Package: kernel-patch-2.4.17-s390, kernel-image-2.4.17-s390
CVE ID: CAN-2003-0001 CAN-2003-0244 CAN-2003-0246 CAN-2003-0247 CAN-2003-0248 CAN-2003-0364 CAN-2003-0961 CAN-2003-0985 CAN-2004-0077 CVE-2002-0429
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!