Re[3]: Upgrade kernela

To: "debian-user-polish@lists.debian.org" <debian-user-polish@lists.debian.org>
Subject: Re[3]: Upgrade kernela
From: amon <amon@mikule.net>
Date: Mon, 9 Jun 2003 13:50:18 +0200
Message-id: <[🔎] 117249073.20030609135018@mikule.net>
Reply-to: amon <amon@mikule.net>
In-reply-to: <[🔎] E19PKhi-0002av-00@f24.test.onet.pl>
References: <[🔎] E19PKhi-0002av-00@f24.test.onet.pl>

Hello gasior79,

Monday, June 09, 2003, 1:20:46 PM, you wrote:

gpop> Cytując za Mattem Zimmermanem z debian-security-announce:

gpop> A number of vulnerabilities have been discovered in the Linux kernel.

gpop> - - CVE-2002-0429: The iBCS routines in arch/i386/kernel/traps.c for
gpop>   Linux kernels 2.4.18 and earlier on x86 systems allow local users to
gpop>   kill arbitrary processes via a a binary compatibility interface
gpop>   (lcall)

gpop> - - CAN-2003-0001: Multiple ethernet Network Interface Card (NIC) device
gpop>   drivers do not pad frames with null bytes, which allows remote
gpop>   attackers to obtain information from previous packets or kernel
gpop>   memory by using malformed packets

gpop> - - CAN-2003-0127: The kernel module loader allows local users to gain
gpop>   root privileges by using ptrace to attach to a child process that is
gpop>   spawned by the kernel

gpop> - - CAN-2003-0244: The route cache implementation in Linux 2.4, and the
gpop>   Netfilter IP conntrack module, allows remote attackers to cause a
gpop>   denial of service (CPU consumption) via packets with forged source
gpop>   addresses that cause a large number of hash table collisions related
gpop>   to the PREROUTING chain

gpop> - - CAN-2003-0246: The ioperm system call in Linux kernel 2.4.20 and
gpop>   earlier does not properly restrict privileges, which allows local
gpop>   users to gain read or write access to certain I/O ports.

gpop> - - CAN-2003-0247: vulnerability in the TTY layer of the Linux kernel
gpop>   2.4 allows attackers to cause a denial of service ("kernel oops")

gpop> - - CAN-2003-0248: The mxcsr code in Linux kernel 2.4 allows attackers
gpop>   to modify CPU state registers via a malformed address.

gpop> - - CAN-2003-0364: The TCP/IP fragment reassembly handling in the Linux
gpop>   kernel 2.4 allows remote attackers to cause a denial of service (CPU
gpop>   consumption) via certain packets that cause a large number of hash
gpop>   table collision.

gpop> Post jest z dzisiejszej nocy, więc pewnie dlatego nie ma jeszcze 
gpop> exploitow :-).


czy oni sie wsciekli? ;-(
no wiec wie ktos cos o jakies lacie? ;-)
grsecurity niezalatwi wszystkiego, przynajmniej watpie.

gpop> Pozdrawiam.
gpop> Maciej Gąsiorowski.

pozdrawiam
jr





-- 
Best regards,
 amon                            mailto:amon@mikule.net

Reply to:

References:
- Re: Re: Upgrade kernela
  - From: gasior79@poczta.onet.pl

Prev by Date: Re[3]: Upgrade kernela
Next by Date: Re: jak wyciąć na iptables skanoanie serwera WWW?
Previous by thread: Re: Upgrade kernela
Next by thread: kernel - nowe zrodelka
Index(es):
- Date
- Thread