[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

DESA 2007-011: linux-2.6 - several vulnerabilities



- --------------------------------------------------------------------------
Debian-Edu/Skolelinux Security Advisory DESA 2007-011
http://www.skolelinux.org/security/                      Morten Werner Olsen
September 28th, 2007             debian-edu-security@lists.alioth.debian.org
- --------------------------------------------------------------------------

Package             : linux-2.6
Vulnerability       : several vulnerabilities
Problem-Type        : local
Need reboot         : yes
Debian-Edu-specific : no
CVE ID              : CVE-2007-3731 CVE-2007-3739 CVE-2007-3740 CVE-2007-4573
DSA ID              : DSA-1378


Several vulnerabilities have been found in the Linux kernel. If you
want the details, please take a look at the DSA's from Debian:

 http://www.debian.org/security/2007/dsa-1378

We recommend that you upgrade your kernel packages to the new 2.6.18
version built for Debian (immidiately if you are running x86_64 or the
amd64 flavour of the kernel).

Upgrade Instructions
- --------------------

Make sure 'deb http://security.debian.org/debian etch/updates main' or
similar is present in your /etc/apt/sources.list and run 'aptitude update' 
to update your package lists.

Find which flavour of the kernel you are running with the command
'uname -r' (examples: 386, 586tsc, 686, 686-smp, k6, k7, k7-smp).

To upgrade, run this command replacing <flavour> with yours:

  aptitude install linux-image-2.6.18-5-<flavour>

Remember that you have to reboot your computers after upgrading this
package. If you are unfamiliar with kernel upgrades, please visit our
mini-HOWTO on this subject:

  http://www.skolelinux.org/security/kernel-upgrade

- --------------------------------------------------------------------------
For apt-get: deb htp://ftp.debian.org/debian/ sarge main

Mailing lists: debian-edu-announce@lists.debian.org,
               debian-edu@lists.debian.org, linuxiskolen@skolelinux.no,
               user@skolelinux.de, admin-discuss@skolelinux.org
Package info: `apt-cache show <pkg>'

Note: This DESA is the last one going to all the mailinglists above,
      from now on DESA's will only be sent to
      debian-edu-announce@lists.debian.org.

Attachment: pgpFLhI7MI7Qb.pgp
Description: PGP signature


Reply to: