Debian 3.1 DSA-1237-1: Kernel Update Fixes DoS Threats and Risks
debian
December 17, 2006
Updated package.
Summary
CVE-2005-4093
Olof Johansson reported a local DoS (Denial of Service) vulnerability
on the PPC970 platform. Unpriveleged users can hang the system by
executing the "attn" instruction, which was not being disabled at boot.
CVE-2006-4538
Kirill Korotaev reported a local DoS (Denial of Service) vulnerability
on the ia64 and sparc architectures. A user could cause the system to
crash by executing a malformed ELF binary due to insufficient verification
of the memory layout.
CVE-2006-4997
ADLab Venustech Info Ltd reported a potential remote DoS (Denial of
Service) vulnerability in the IP over ATM subsystem. A remote system
could cause the system to crash by sending specially crafted packets
that would trigger an attempt to free an already-freed pointer
resulting in a system crash.
CVE-2006-5174
Martin Schwidefsky reported a potential leak of sensitive information
on s390 systems. The copy_from_user function did not clear the ...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!