Scientific Linux: CVE-2005-2974 Critical: PostgreSQL Service Disruption

Date: Tue, 30 May 2006 17:49:09 -0500
Reply-To: Connie Sieh 
Sender: Security Errata for Scientific Linux
 
From: Connie Sieh 
Subject: Re: ERRATA for "kernel" on SL 40,41,42,43 i386 x86_64 now
 available
Comments: To: scientific 
In-Reply-To: 

Here are the GFS rpms that are dependent on the kernel

i386:
 cman-kernel-2.6.9-43.8.3.i686.rpm
 cman-kernel-hugemem-2.6.9-43.8.3.i686.rpm
 cman-kernel-smp-2.6.9-43.8.3.i686.rpm
 cman-kernheaders-2.6.9-43.8.3.i686.rpm
 dlm-kernel-2.6.9-41.7.1.i686.rpm
 dlm-kernel-hugemem-2.6.9-41.7.1.i686.rpm
 dlm-kernel-smp-2.6.9-41.7.1.i686.rpm
 dlm-kernheaders-2.6.9-41.7.1.i686.rpm
 fence-1.32.25-1.i686.rpm
 GFS-kernel-2.6.9-49.1.1.i686.rpm
 GFS-kernel-hugemem-2.6.9-49.1.1.i686.rpm
 GFS-kernel-smp-2.6.9-49.1.1.i686.rpm
 GFS-kernheaders-2.6.9-49.1.1.i686.rpm
 gnbd-kernel-2.6.9-9.31.1.i686.rpm
 gnbd-kernel-hugemem-2.6.9-9.31.1.i686.rpm
 gnbd-kernel-smp-2.6.9-9.31.1.i686.rpm
 gnbd-kernheaders-2.6.9-9.31.1.i686.rpm

x86_64:
 cman-kernel-2.6.9-43.8.3.x86_64.rpm
 cman-kernel-smp-2.6.9-43.8.3.x86_64.rpm
 cman-kernheaders-2.6.9-43.8.3.x86_64.rpm
 dlm-kernel-2.6.9-41.7.1.x86_64.rpm
 dlm-kernel-smp-2.6.9-41.7.1.x86_64.rpm
 dlm-kernheaders-2.6.9-41.7.1.x86_64.rpm
 fence-1.32.25-1.x86_64.rpm
 GFS-kernel-2.6.9-49.1.1.x86_64.rpm
 GFS-kernel-smp-2.6.9-49.1.1.x86_64.rpm
 GFS-kernheaders-2.6.9-49.1.1.x86_64.rpm
 gnbd-kernel-2.6.9-9.31.1.x86_64.rpm
 gnbd-kernel-smp-2.6.9-9.31.1.x86_64.rpm
 gnbd-kernheaders-2.6.9-9.31.1.x86_64.rpm

-Connie Sieh
-Troy Dawson

On Thu, 25 May 2006, Connie Sieh wrote:

> On Thu, 25 May 2006, Connie Sieh wrote:
>
> > The ERRATA for SL 40,41,42,43 i386 x86_64 are now available from:
> > > >
> > Synopsis: Updated kernel packages that fix several security issues in the
> > Scientific Linux 4x kernel are now available
> >
> > Severity: important
> >
> > Issued on: 2006-05-24
> >
> > Problem Description:
> >
> > 	Issue in the IPv6 implementation that allowed a local user to cause a
> > 	denial of service (infinite loop and crash) (CVE-2005-2973, important)
> >
> > 	Issue in the bridge implementation that allowed a remote user to
> > 	cause forwarding of spoofed packets via poisoning of the forwarding
> > 	table with already dropped frames (CVE-2005-3272, moderate)
> >
> > 	Isuue in the atm module that allowed a local user to cause a denial
> > 	of service (panic) via certain socket calls (CVE-2005-3359, important)
> >
> > 	Issue in the NFS client implementation that allowed a local user to
> > 	cause a denial of service (panic) via O_DIRECT writes (CVE-2006-0555,
> > 	important)
> >
> > 	A difference in "sysretq" operation of EM64T (as opposed to Opteron)
> > 	processors that allowed a local user to cause a denial of service
> > 	(crash) upon return from certain system calls (CVE-2006-0741 and
> > 	CVE-2006-0744, important)
> >
> > 	Issue in the keyring implementation that allowed a local user to
> > 	cause a denial of service (OOPS) (CVE-2006-1522, important)
> >
> > 	Issue in IP routing implementation that allowed a local user to cause
> > 	a denial of service (panic) via a request for a route for a multicast IP
> > 	(CVE-2006-1525, important)
> >
> > 	Issue in the SCTP-netfilter implementation that allowed a remote user
> > 	to cause a denial of service (infinite loop) (CVE-2006-1527, important)
> >
> > 	Issue in the sg driver that allowed a local user to cause a denial of
> > 	service (crash) via a dio transfer to memory mapped (mmap) IO space
> > 	(CVE-2006-1528, important)
> >
> > 	Issue in the threading implementation that allowed a local user to
> > 	cause a denial of service (panic) (CVE-2006-1855, important)
> >
> > 	Two missing LSM hooks that allowed a local user to bypass the LSM by
> > 	using readv() or writev() (CVE-2006-1856, moderate)
> >
> > 	Issue in the virtual memory implementation that allowed local user to
> > 	cause a denial of service (panic) by using the lsof command
> > 	(CVE-2006-1862, important)
> >
> > 	A directory traversal vulnerability in smbfs that allowed a local user
> > 	to escape chroot restrictions for an SMB-mounted filesystem via "..\\"
> > 	sequences (CVE-2006-1864, moderate)
> >
> > 	Issue in the ECNE chunk handling of SCTP that allowed a remote user
> > 	to cause a denial of service (panic) (CVE-2006-2271, moderate)
> >
> > 	Issue in the handling of COOKIE_ECHO and HEARTBEAT control chunks of
> > 	SCTP that allowed a remote user to cause a denial of service (panic)
> > 	(CVE-2006-2272, moderate)
> >
> > 	Issue in the handling of DATA fragments of SCTP that allowed a remote
> > 	user to cause a denial of service (infinite recursion and crash)
> > 	(CVE-2006-2274, moderate)
> >
> >
> > CVEs: CVE-2005-2973 CVE-2005-3272 CVE-2005-3359 CVE-2006-0555 CVE-2006-0741
> > CVE-2006-0744 CVE-2006-1522 CVE-2006-1525 CVE-2006-1527 CVE-2006-1528
> > CVE-2006-1855 CVE-2006-1856 CVE-2006-1862 CVE-2006-1864 CVE-2006-2271
> > CVE-2006-2272 CVE-2006-2274
> >
> > SRPMS
> > 	kernel-2.6.9-34.0.1.EL.src.rpm
> >
> > Arch: i386
> > 	kernel-2.6.9-34.0.1.EL.i686.rpm
> > 	kernel-devel-2.6.9-34.0.1.EL.i686.rpm
> > 	kernel-doc-2.6.9-34.0.1.EL.noarch.rpm
> > 	kernel-hugemem-2.6.9-34.0.1.EL.i686.rpm
> > 	kernel-hugemem-devel-2.6.9-34.0.1.EL.i686.rpm
> > 	kernel-smp-2.6.9-34.0.1.EL.i686.rpm
> > 	kernel-smp-devel-2.6.9-34.0.1.EL.i686.rpm
> >
> > Dependencies:
> >
> > 	kernel-module-openafs-2.6.9-34.0.1.EL-1.4.0-8.SL.i686.rpm
> > 	kernel-module-openafs-2.6.9-34.0.1.ELsmp-1.4.0-8.SL.i686.rpm
>
> Arch: x86_64
> kernel-2.6.9-34.0.1.EL.x86_64.rpm
> kernel-devel-2.6.9-34.0.1.EL.x86_64.rpm
> kernel-largesmp-2.6.9-34.0.1.EL.x86_64.rpm
> kernel-largesmp-devel-2.6.9-34.0.1.EL.x86_64.rpm
> kernel-smp-2.6.9-34.0.1.EL.x86_64.rpm
> kernel-smp-devel-2.6.9-34.0.1.EL.x86_64.rpm
>
> Dependencies:
>
> 	kernel-module-openafs-2.6.9-34.0.1.EL-1.4.0-8.SL.x86_64.rpm
> kernel-module-openafs-2.6.9-34.0.1.ELsmp-1.4.0-8.SL.x86_64.rpm
>
> >
> > -Connie Sieh
> > -Troy Dawson
> >
>
> -Connie Sieh
>
lastline