Debian: Linux 2.6.18 fix several vulnerabilities DSA-1286-1
May 2, 2007
Several local and remote vulnerabilities have been discovered in the Linux
kernel that may lead to a denial of service or the execution of arbitrary
code
Summary
Severity
- --------------------------------------------------------------------------Debian Security Advisory DSA 1286-1 security@debian.org
http://www.debian.org/security/ Dann Frazier
May 2nd, 2007 http://www.debian.org/security/faq
- --------------------------------------------------------------------------Package : linux-2.6
Vulnerability : several
Problem-Type : local/remote
Debian-specific: no
CVE ID : CVE-2007-0005 CVE-2007-0958 CVE-2007-1357 CVE-2007-1592
Several local and remote vulnerabilities have been discovered in the Linux
kernel that may lead to a denial of service or the execution of arbitrary
code. The Common Vulnerabilities and Exposures project identifies the
following problems:
CVE-2007-0005
Daniel Roethlisberger discovered two buffer overflows in the cm4040
driver for the Omnikey CardMan 4040 device. A local user or malicious
device could exploit this to execute arbitrary code in kernel space.
CVE-2007-0958
Santosh Eraniose reported a vulnerability that allows local users to read
otherwise unreadable files by triggering a core dump while using PT_INTERP.
This is related to CVE-2004-1073.
CVE-2007-1357
Jean Delvare reported a vulnerability in the appletalk subsystem.
Systems with the appletalk module loaded can be triggered to crash
by other systems on the local network via a malformed frame.
CVE-2007-1592
Masayuki Nakagawa discovered that flow labels were inadvertently
being shared between listening sockets and child sockets. This defect
can be exploited by local users to cause a DoS (Oops).
This problem has been fixed in the stable distribution in version
2.6.18.dfsg.1-12etch1.
The following matrix lists additional packages that were rebuilt for
compatibility with or to take advantage of this update:
Debian 4.0 (etch)
fai-kernels 1.17etch1
user-mode-linux 2.6.18-1um-2etch1
We recommend that you upgrade your kernel package immediately and reboot
the machine. If you have built a custom kernel from the kernel source
package, you will need to rebuild to take advantage of these fixes.
Updated packages for the mips and mipsel architectures are not yet available.
They will be provided later.
Upgrade Instructions
- --------------------wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 4.0 alias etch
- --------------------------------
Source archives:
Size/MD5 checksum: 5672 ac529ba78f040ff42c65c5fdbb04852c
Size/MD5 checksum: 5323912 5869979391ab0ccc891707888be243b3
Size/MD5 checksum: 52225460 6a1ab0948d6b5b453ea0fce0fcc29060
Size/MD5 checksum: 713 c63bdcb967491d8af364b338f22ecb67
Size/MD5 checksum: 49181 ddbe8092d35f31f230f8fe8f4c70fcf9
Size/MD5 checksum: 865 2acf6514b90f220855703712887bfd42
Size/MD5 checksum: 12685 c5da30ad76557c4cc62a9551e6bba41e
Size/MD5 checksum: 14435 4d10c30313e11a24621f7218c31f3582
Architecture independent components:
Size/MD5 checksum: 3585528 40ada0027fff7fa333827b8aaad0250d
Size/MD5 checksum: 1079530 487c4f3f8972fe2401ac6c8c09ecdbd7
Size/MD5 checksum: 1441798 93ee1d7bd1a3a80ff4330ba46685c7e4
Size/MD5 checksum: 41418588 194954d07b44b3ead15cfb2ba4fe4fda
Size/MD5 checksum: 3777366 8b9f030709315e2cce08af5fb0a88d57
Size/MD5 checksum: 49852 d44f67a762e70fc6470fcc6e1136955c
Alpha architecture:
Size/MD5 checksum: 3022958 b0c89115cbbce67084917b34c6efe72a
Size/MD5 checksum: 49538 bf0d39bece473b527d0817c82c7514db
Size/MD5 checksum: 49574 bdc5cc51bf62af94e503338bdcee9da0
Size/MD5 checksum: 262454 96172657e3fd51573ef55aa314c5b426
Size/MD5 checksum: 262930 2d6aff949a4f32c8a71123e11e1b9a1c
Size/MD5 checksum: 261898 134bb0f8b106f830154925ad1b13ced1
Size/MD5 checksum: 3046846 735636a2afd32b91b990669f24a5950d
Size/MD5 checksum: 263038 b1413f45aa69387864a21da80ee6fcc6
Size/MD5 checksum: 23487660 1c79a4fc1c6464810a3c76b47861302d
Size/MD5 checksum: 23465966 24431e7c19a53c7aef305558a023108e
Size/MD5 checksum: 23845788 89ce2f93971ee8736560dcf27b17ca3b
Size/MD5 checksum: 23538146 5e80f3de7f18e89a5133c0a2f2dd29bb
AMD64 architecture:
Size/MD5 checksum: 3163250 866ed22e02d5d9e8b81125e00405ea50
Size/MD5 checksum: 49426 66456be926258dfd966c71a851f2a3b6
Size/MD5 checksum: 49446 5fd0e6181841059b4ed84446817424c2
Size/MD5 checksum: 268906 d995e88a0d3be06e903a440417f2dcf4
Size/MD5 checksum: 3186536 8dd830ab69c1902c876febb4161575ca
Size/MD5 checksum: 270362 0dd66ead60b4f3428e7508ef72734617
Size/MD5 checksum: 3329716 79a8f354af6a5d7f311c3c5e77868d45
Size/MD5 checksum: 269874 2fbc18fae32159a7e00bdbe073172b84
Size/MD5 checksum: 3352444 1c71c03dcbc0db3dca84c6890f65da8d
Size/MD5 checksum: 271354 de354d7108f372279ba0b9107bb64e85
Size/MD5 checksum: 16800368 54b74bc3ba1204317c68bdf7a0d017e1
Size/MD5 checksum: 16839212 6a0c38881deb77cbc85053b521e6be8e
Size/MD5 checksum: 1647320 a71b5197a1f7c89c223e23e5be235166
Size/MD5 checksum: 1678642 eef15782f80dcb3b5e73dfc0b10eed34
Size/MD5 checksum: 15238730 21deb8e4e28b4d5aafff118f5942c2c1
Size/MD5 checksum: 15256278 4e20c921f1e24e553e4f6c5d31d65aed
Size/MD5 checksum: 49402 9b56bbe59c79c31e8eae9936f81ef9b5
Size/MD5 checksum: 49414 79734baefef06f24dce85ae41d4fe454
Size/MD5 checksum: 5939950 c3e0707a57c86f25d611c48293d13242
ARM architecture:
Size/MD5 checksum: 3405222 ddc6530bff0cb286bdd59a6a0bd949ee
Size/MD5 checksum: 49538 f40c59bb462c241523a47483ecd86479
Size/MD5 checksum: 49592 6196ee5863a741e999c843b2020e75f7
Size/MD5 checksum: 229058 93e3da9ca0ae2d14728c0453e783e027
Size/MD5 checksum: 229342 93224d6226a675d22d8927f011cfd137
Size/MD5 checksum: 234760 7b7f782ffb64c14295a728c4f925368e
Size/MD5 checksum: 193924 2ef15cdce582705a3ed709371664554b
Size/MD5 checksum: 198386 9f0a6fd616b423ff2334072c5acbf387
Size/MD5 checksum: 7553190 633965c06cd6de0f19ea6207f9afe14a
Size/MD5 checksum: 7910216 f00d1da66867b1f6cc4dbcfaf0e23f34
Size/MD5 checksum: 8850160 327e5f21b5a74b1dc1b2d914a9dc3fc4
Size/MD5 checksum: 4577026 b9195f812eb3245df08f13861202b08b
Size/MD5 checksum: 5000284 e26fa189f9bf01becde134f207cbec8c
HP Precision architecture:
Size/MD5 checksum: 2962754 10b81ff5b8e66e855ff751358fa9f257
Size/MD5 checksum: 49426 5cc887d951e7b19eaaad4d0568e6a226
Size/MD5 checksum: 49448 f7035c8773f403d3926e512f3fdada21
Size/MD5 checksum: 187738 1b61383c470679131bf1974075ae0e53
Size/MD5 checksum: 188430 9b44222f8593641a13586b1102a58615
Size/MD5 checksum: 188124 b4f49f69c835869ddeffebfc2fb17f88
Size/MD5 checksum: 188890 441154c968f4a2ff94aeb3eceeeda007
Size/MD5 checksum: 10494952 e4966f15baa80529d229fddab45b5b74
Size/MD5 checksum: 10938520 8ee17a60c7c99462797408fb42452925
Size/MD5 checksum: 11341244 03e00066782370f355020a538b7d2a0b
Size/MD5 checksum: 11748042 c09b4fc400f588c7a2dd19b95ef4ffb6
Intel IA-32 architecture:
Size/MD5 checksum: 3163260 9d3abfd3e001a3c9e65434841e5785be
Size/MD5 checksum: 278744 c6544d9af47befcb2381b0671f7d63aa
Size/MD5 checksum: 275324 8a8487464f280b31a56eb997637f529c
Size/MD5 checksum: 275436 7ba19a9cf504b3b943e772d970757980
Size/MD5 checksum: 49422 977bbcee6de9e1202409adc51e6a2399
Size/MD5 checksum: 49472 ad8d6447672a90b1257c052b2bcff5ff
Size/MD5 checksum: 268242 0d1eeadc1c8c645aaeaec3da6b8bd498
Size/MD5 checksum: 275542 09fb3e1f411e6a6fdda1bedbba51c347
Size/MD5 checksum: 3049570 585f9abdc18c9aeb91627f03020749ce
Size/MD5 checksum: 273772 4a387f04a3481175434bf54758a15e82
Size/MD5 checksum: 274990 81effb2215b5794a56a9a910ac6b0b5b
Size/MD5 checksum: 3143892 178e47dde7773221df0158afd81c56a7
Size/MD5 checksum: 269084 280e9de789372f02023abc2b0b53399f
Size/MD5 checksum: 3166078 9858cb847018734c4ebf7d1884ae28f1
Size/MD5 checksum: 269888 a7fd6dd510127788bbc22b38b00abe60
Size/MD5 checksum: 16173314 ffd3f4d9c32c6bc94ddf6a393f350c6b
Size/MD5 checksum: 16320194 17797ca00113329cf06276c6f04fe73a
Size/MD5 checksum: 16389156 a1d0d9bff450ff4568e750b719e109db
Size/MD5 checksum: 16816760 8bc4affd2f56d12550f705159ac04603
Size/MD5 checksum: 16451984 15064d65c1234008e0462c54d0ca732e
Size/MD5 checksum: 16359404 4cbc7f492f9a3cf3f9ae45ede1327d5b
Size/MD5 checksum: 16490490 7ca385e820bb4bc862fbe0e4833cfcd5
Size/MD5 checksum: 1295608 cc412203aa4843d2c26725bdc0464280
Size/MD5 checksum: 1323646 3741d7d392751c8b11c97af608d76e44
Size/MD5 checksum: 14259380 09f5d2bf3c5b75eca79875100484d68b
Size/MD5 checksum: 14273494 88b93f71cf11bb180be0fd35d6930f24
Size/MD5 checksum: 49406 fecd3202a49e42f26f684ac295374103
Size/MD5 checksum: 49412 fa9820ef0885338105e0b224484180e7
Size/MD5 checksum: 5489202 be7c88f4fdb66560b72cfd31f0fd79e3
Size/MD5 checksum: 25577288 6d62c2fba9b2204c1cad61f346b82ffa
Intel IA-64 architecture:
Size/MD5 checksum: 3077188 5590c53a9a5c3a747d979155a21e3967
Size/MD5 checksum: 49420 d8fc3772a08d922ec86c8eed8b75231e
Size/MD5 checksum: 49440 8c18297a2943609d01ab74f8fc79db7b
Size/MD5 checksum: 250348 0015221166a7968986e75a0fe8d387be
Size/MD5 checksum: 250656 dfdf6f8d9a491db4c430bc3f4cf29522
Size/MD5 checksum: 28019512 4404c40f0eea4bb3f939edab8e7abed6
Size/MD5 checksum: 28183222 01e83e0c9024e1ba331f9c9c0d2adc21
PowerPC architecture:
Size/MD5 checksum: 3387496 5689c138e5ec69ccc0e6bb5f7c4a72da
Size/MD5 checksum: 49428 5f429c4ee2d12b9c5368c2caab1b628b
Size/MD5 checksum: 49480 7dabebe21d9d08ddf532a0672956dea0
Size/MD5 checksum: 247214 2061ef0a5fa60858a80efe9af1d08e34
Size/MD5 checksum: 223606 971fa83d29143e65d4d96654e2cd2bc2
Size/MD5 checksum: 248154 7410cd444ec17c9a87144f221faea934
Size/MD5 checksum: 248458 5e8036c1180edf70ba8aeeab964711cb
Size/MD5 checksum: 242086 b8d63e4c6525d91cca5a23fe4d80d11f
Size/MD5 checksum: 3409696 4de97823576e3856807befa70e426ad1
Size/MD5 checksum: 247840 685a9fe6f4b9d3a2e6154f218993805b
Size/MD5 checksum: 248934 07bb5a1530cf75e4e9da8800e7759a65
Size/MD5 checksum: 16626148 555dc9161d6b48e80f9e119fcf946edc
Size/MD5 checksum: 15152686 e230176a542ba05d0512d60509c8a844
Size/MD5 checksum: 16964010 68f05b68ba0d52a1b3e303c0aa83f091
Size/MD5 checksum: 18294218 0a05edb388358e142cd6be87ce39355e
Size/MD5 checksum: 16398020 005a077c59747c7b2649ea8745636808
Size/MD5 checksum: 17008544 3e09295e6b315b9c7d48e704ef718858
Size/MD5 checksum: 18345030 ad7aa1d6cfcd393cba09ec58b22c6910
Size/MD5 checksum: 3351630 88e875257c176ef65c33678d23867da0
IBM S/390 architecture:
Size/MD5 checksum: 2938280 6c2337e391c7f32cf0f6cf515335f806
Size/MD5 checksum: 49414 e8400678f526870de38c968d51b7a9df
Size/MD5 checksum: 49438 141cc55579195a548175a40b73bdd929
Size/MD5 checksum: 138710 6fa5db914b01adb83514798159c55409
Size/MD5 checksum: 139034 9b5cafd890680fcf041e32a5d7fa98d6
Size/MD5 checksum: 2961260 52a7f8f8d0991dead548e58a62f51013
Size/MD5 checksum: 139808 2ea64866d6d0101608f883767ac88c29
Size/MD5 checksum: 5401472 cf5573d7e8c962c8edf73f97a6d73f2a
Size/MD5 checksum: 1434724 9c940527eb77c544b6a1c6833662238e
Size/MD5 checksum: 5616952 17304f92dd83fc2da1c3e0ad464eb064
Size/MD5 checksum: 5664302 6f6365fad6674fa714df749c59cfed27
Sun Sparc architecture:
Size/MD5 checksum: 3163136 951b7e9cab13780a8362b1f616195b91
Size/MD5 checksum: 49422 5624dc39385e84ec708a97e4788c1470
Size/MD5 checksum: 49452 bec4bec232b44fc04accb10016b7a81f
Size/MD5 checksum: 160696 57e0538e5c0e53b834a7872ed2a13e98
Size/MD5 checksum: 190458 9c91125ef18a1ed007a4dd62713b00bb
Size/MD5 checksum: 190842 dee19c4a2510c0eafbe4e910ca50a193
Size/MD5 checksum: 3185646 9ac3f9b074f3df644927101c64fb99a6
Size/MD5 checksum: 191402 e185e2940bf40ff06e9cd4028151ba49
Size/MD5 checksum: 6335250 12b87a9c989fd71a3ef75d430e7edca1
Size/MD5 checksum: 10286592 234a50a2d5d8a6fb2a21bec4adec075e
Size/MD5 checksum: 10546852 038234c0f7069293c7428538c0175959
Size/MD5 checksum: 10590860 adf3b6ae6a3bc44540b939d05bea1bfc
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------For apt-get: deb http://security.debian.org/ etch/updates main
For dpkg-ftp: dists/etch/updates/main
Mailing list: debian-security-announce@lists.debian.org
