Debian 3.0: DSA 336-2 Moderate Kernel Threats and Updates

NOTE: This advisory is being released as a factual correction to
DSA-336-1. In an administrative error, DSA-336-1 listed several CVE
names which did not, in fact, apply to Linux 2.2.20, and omitted one
vulnerability which was fixed in the updated packages. The packages
are (and were) correct, and remain unchanged. The package changelog
contains the correct information. This advisory provides updated
information only.

A number of vulnerabilities have been discovered in the Linux kernel.

- - CVE-2002-0429: The iBCS routines in arch/i386/kernel/traps.c for
Linux kernels 2.4.18 and earlier on x86 systems allow local users to
kill arbitrary processes via a a binary compatibility interface
(lcall)

- - CAN-2003-0001: Multiple ethernet Network Interface Card (NIC) device
drivers do not pad frames with null bytes, which allows remote
attackers to obtain information from previous packets or kernel
memory by using malformed packets

- - CAN-2003-0127: The kernel module loader allows local users...