Total Security - totalsecurity.com.br
Vulnerabilidades múltiplas no Kernel 2.4 do Linux
A Red Hat liberou informações de vulnerabilidades múltiplas existentes no Kernel 2.4 do Linux. Se explorada essa vulnerabilidade poderia expor informações sigilosas para atacantes locais, permitir ataques de DoS ou permitir usuários locais a ganhar privilégios elevados.
Solução
A Debian informou em seu advisory (DSA 423-1) a correção pra essa vulnerabilidade.
A Debian também liberou uma atualização do advisory (DSA 358-2) com atualizações i386 e correções alpha para corrigir uma vulnerabilidade encontrada na correção anterior. Detalhes para obter e aplicar a correção pode ser encontrado no advisory referenciado.
A Red Hat liberou um advisory (RHSA-2003:238-01) que corrige essas vulnerabilidades. Detalhes para obter e aplicar a correção pode ser encontrado no advisory anexado.
A Conectiva liberou um advisory (CLSA-2003:712) que fornece atualizações do Kernel para CLEE. Por favor veja o advisory anexado para obter detalhes e aplicar a atualização.
SuSE liberou um advisory (SuSE-SA:2003:034 para corrigir essa vulnerabilidade. Informações específicas da atualização também está dísponivel. Consulte o advisory citado para detalhes adicionais.
A Red Hat também liberou um advisory (RHSA-2003-239) contendo correções do kernel para o Red Hat Enterprise Linux AS, ES e WS(v. 2.1). Essas correções estão disponíveis somente no Red Hat Network que pode ser encontrada em http://rhn.redhat.com/.
Turbolinux também liberou um advisory com correções para essa vulnerabilidade.
Conectiva liberou um advisory de segurança (CLA-2003:796) contendo correções para versões com protocolos STP e códigos RPC do kernel no Conectiva Linux 8.
Linux kernel 2.4.20:
Red Hat Patch kernel-2.4.20-9.athlon.rpm
ftp://updates.redhat.com/9/en/os/athlon/kernel-2.4.20-9.athlon.rpm
Red Hat Patch kernel-2.4.20-9.i586.rpm
ftp://updates.redhat.com/9/en/os/i586/kernel-2.4.20-9.i586.rpm
Red Hat Patch kernel-2.4.20-9.i686.rpm
ftp://updates.redhat.com/9/en/os/i686/kernel-2.4.20-9.i686.rpm
RedHat kernel-2.4.20-8.athlon.rpm :
Red Hat Upgrade kernel-2.4.20-20.9.athlon.rpm
ftp://updates.redhat.com/9/en/os/athlon/kernel-2.4.20-20.9.athlon.rpm
RedHat kernel-2.4.20-8.i586.rpm :
Red Hat Upgrade kernel-2.4.20-20.9.i386.rpm
ftp://updates.redhat.com/9/en/os/i386/kernel-2.4.20-20.9.i386.rpm
Red Hat Upgrade kernel-2.4.20-20.9.i586.rpm
ftp://updates.redhat.com/9/en/os/i586/kernel-2.4.20-20.9.i586.rpm
RedHat kernel-2.4.20-8.i686.rpm :
Red Hat Upgrade kernel-2.4.20-20.9.i686.rpm
ftp://updates.redhat.com/9/en/os/i686/kernel-2.4.20-20.9.i686.rpm
RedHat kernel-BOOT-2.4.20-8.i386.rpm :
Red Hat Upgrade kernel-BOOT-2.4.20-20.9.i386.rpm
ftp://updates.redhat.com/9/en/os/i386/kernel-BOOT-2.4.20-20.9.i386.rpm
RedHat kernel-bigmem-2.4.20-8.i686.rpm :
Red Hat Upgrade kernel-bigmem-2.4.20-20.9.i686.rpm
ftp://updates.redhat.com/9/en/os/i686/kernel-bigmem-2.4.20-20.9.i686.rpm
RedHat kernel-doc-2.4.20-8.i386.rpm :
Red Hat Upgrade kernel-doc-2.4.20-20.9.i386.rpm
ftp://updates.redhat.com/9/en/os/i386/kernel-doc-2.4.20-20.9.i386.rpm
RedHat kernel-source-2.4.20-8.i386.rpm :
Red Hat Upgrade kernel-source-2.4.20-20.9.i386.rpm
ftp://updates.redhat.com/9/en/os/i386/kernel-source-2.4.20-20.9.i386.rpm
RedHat kernel-2.4.18-14.athlon.rpm :
Red Hat Upgrade kernel-2.4.20-20.8.athlon.rpm
ftp://updates.redhat.com/8.0/en/os/athlon/kernel-2.4.20-20.8.athlon.rpm
RedHat kernel-2.4.18-14.i586.rpm :
Red Hat Upgrade kernel-2.4.20-20.8.i386.rpm
ftp://updates.redhat.com/8.0/en/os/i386/kernel-2.4.20-20.8.i386.rpm
Red Hat Upgrade kernel-2.4.20-20.8.i586.rpm
ftp://updates.redhat.com/8.0/en/os/i586/kernel-2.4.20-20.8.i586.rpm
RedHat kernel-2.4.18-14.i686.rpm :
Red Hat Upgrade kernel-2.4.20-20.8.i686.rpm
ftp://updates.redhat.com/8.0/en/os/i686/kernel-2.4.20-20.8.i686.rpm
RedHat kernel-BOOT-2.4.18-14.i386.rpm :
Red Hat Upgrade kernel-BOOT-2.4.20-20.8.i386.rpm
ftp://updates.redhat.com/8.0/en/os/i386/kernel-BOOT-2.4.20-20.8.i386.rpm
RedHat kernel-bigmem-2.4.18-14.i686.rpm :
Red Hat Upgrade kernel-bigmem-2.4.20-20.8.i686.rpm
ftp://updates.redhat.com/8.0/en/os/i686/kernel-bigmem-2.4.20-20.8.i686.rpm
RedHat kernel-doc-2.4.18-14.i386.rpm :
Red Hat Upgrade kernel-doc-2.4.20-20.8.i386.rpm
ftp://updates.redhat.com/8.0/en/os/i386/kernel-doc-2.4.20-20.8.i386.rpm
RedHat kernel-source-2.4.18-14.i386.rpm :
Red Hat Upgrade kernel-source-2.4.20-20.8.i386.rpm
ftp://updates.redhat.com/8.0/en/os/i386/kernel-source-2.4.20-20.8.i386.rpm
RedHat kernel-2.4.18-3.athlon.rpm :
Red Hat Upgrade kernel-2.4.20-20.7.athlon.rpm
ftp://updates.redhat.com/7.3/en/os/athlon/kernel-2.4.20-20.7.athlon.rpm
RedHat kernel-2.4.18-3.i386.rpm :
Red Hat Upgrade kernel-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/kernel-2.4.20-20.7.i386.rpm
Red Hat Upgrade kernel-2.4.20-20.7.i586.rpm
ftp://updates.redhat.com/7.3/en/os/i586/kernel-2.4.20-20.7.i586.rpm
RedHat kernel-2.4.18-3.i686.rpm :
Red Hat Upgrade kernel-2.4.20-20.7.i686.rpm
ftp://updates.redhat.com/7.3/en/os/i686/kernel-2.4.20-20.7.i686.rpm
RedHat kernel-BOOT-2.4.18-3.i386.rpm :
Red Hat Upgrade kernel-BOOT-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/kernel-BOOT-2.4.20-20.7.i386.rpm
RedHat kernel-bigmem-2.4.18-3.i686.rpm :
Red Hat Upgrade kernel-bigmem-2.4.20-20.7.i686.rpm
ftp://updates.redhat.com/7.3/en/os/i686/kernel-bigmem-2.4.20-20.7.i686.rpm
RedHat kernel-doc-2.4.18-3.i386.rpm :
Red Hat Upgrade kernel-doc-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/kernel-doc-2.4.20-20.7.i386.rpm
RedHat kernel-2.4.2-2.i586.rpm :
Red Hat Upgrade kernel-2.4.20-20.7.athlon.rpm
ftp://updates.redhat.com/7.1/en/os/athlon/kernel-2.4.20-20.7.athlon.rpm
Red Hat Upgrade kernel-2.4.20-20.7.i586.rpm
ftp://updates.redhat.com/7.1/en/os/i586/kernel-2.4.20-20.7.i586.rpm
RedHat kernel-2.4.2-2.i686.rpm :
Red Hat Upgrade kernel-2.4.20-20.7.i686.rpm
ftp://updates.redhat.com/7.1/en/os/i686/kernel-2.4.20-20.7.i686.rpm
Red Hat Upgrade kernel-bigmem-2.4.20-20.7.i686.rpm
ftp://updates.redhat.com/7.1/en/os/i686/kernel-bigmem-2.4.20-20.7.i686.rpm
RedHat kernel-BOOT-2.4.2-2.i386.rpm :
Red Hat Upgrade kernel-BOOT-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/kernel-BOOT-2.4.20-20.7.i386.rpm
RedHat kernel-doc-2.4.2-2.i386.rpm :
Red Hat Upgrade kernel-doc-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/kernel-doc-2.4.20-20.7.i386.rpm
RedHat kernel-source-2.4.2-2.i386.rpm :
Red Hat Upgrade kernel-source-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/kernel-source-2.4.20-20.7.i386.rpm
RedHat kernel-2.4.2-2.i386.rpm :
Red Hat Upgrade kernel-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/kernel-2.4.20-20.7.i386.rpm
RedHat kernel-2.4.7-10.athlon.rpm :
Red Hat Upgrade kernel-2.4.20-20.7.athlon.rpm
ftp://updates.redhat.com/7.2/en/os/athlon/kernel-2.4.20-20.7.athlon.rpm
RedHat kernel-2.4.7-10.i386.rpm :
Red Hat Upgrade kernel-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/kernel-2.4.20-20.7.i386.rpm
Red Hat Upgrade kernel-2.4.20-20.7.i586.rpm
ftp://updates.redhat.com/7.2/en/os/i586/kernel-2.4.20-20.7.i586.rpm
RedHat kernel-2.4.7-10.i686.rpm :
Red Hat Upgrade kernel-2.4.20-20.7.i686.rpm
ftp://updates.redhat.com/7.2/en/os/i686/kernel-2.4.20-20.7.i686.rpm
Red Hat Upgrade kernel-bigmem-2.4.20-20.7.i686.rpm
ftp://updates.redhat.com/7.2/en/os/i686/kernel-bigmem-2.4.20-20.7.i686.rpm
RedHat kernel-BOOT-2.4.7-10.i386.rpm :
Red Hat Upgrade kernel-BOOT-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/kernel-BOOT-2.4.20-20.7.i386.rpm
RedHat kernel-doc-2.4.7-10.i386.rpm :
Red Hat Upgrade kernel-doc-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/kernel-doc-2.4.20-20.7.i386.rpm
RedHat kernel-source-2.4.7-10.i386.rpm :
Red Hat Upgrade kernel-source-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/kernel-source-2.4.20-20.7.i386.rpm
Fonte: GuerraDigital
Solução
A Debian informou em seu advisory (DSA 423-1) a correção pra essa vulnerabilidade.
A Debian também liberou uma atualização do advisory (DSA 358-2) com atualizações i386 e correções alpha para corrigir uma vulnerabilidade encontrada na correção anterior. Detalhes para obter e aplicar a correção pode ser encontrado no advisory referenciado.
A Red Hat liberou um advisory (RHSA-2003:238-01) que corrige essas vulnerabilidades. Detalhes para obter e aplicar a correção pode ser encontrado no advisory anexado.
A Conectiva liberou um advisory (CLSA-2003:712) que fornece atualizações do Kernel para CLEE. Por favor veja o advisory anexado para obter detalhes e aplicar a atualização.
SuSE liberou um advisory (SuSE-SA:2003:034 para corrigir essa vulnerabilidade. Informações específicas da atualização também está dísponivel. Consulte o advisory citado para detalhes adicionais.
A Red Hat também liberou um advisory (RHSA-2003-239) contendo correções do kernel para o Red Hat Enterprise Linux AS, ES e WS(v. 2.1). Essas correções estão disponíveis somente no Red Hat Network que pode ser encontrada em http://rhn.redhat.com/.
Turbolinux também liberou um advisory com correções para essa vulnerabilidade.
Conectiva liberou um advisory de segurança (CLA-2003:796) contendo correções para versões com protocolos STP e códigos RPC do kernel no Conectiva Linux 8.
Linux kernel 2.4.20:
Red Hat Patch kernel-2.4.20-9.athlon.rpm
ftp://updates.redhat.com/9/en/os/athlon/kernel-2.4.20-9.athlon.rpm
Red Hat Patch kernel-2.4.20-9.i586.rpm
ftp://updates.redhat.com/9/en/os/i586/kernel-2.4.20-9.i586.rpm
Red Hat Patch kernel-2.4.20-9.i686.rpm
ftp://updates.redhat.com/9/en/os/i686/kernel-2.4.20-9.i686.rpm
RedHat kernel-2.4.20-8.athlon.rpm :
Red Hat Upgrade kernel-2.4.20-20.9.athlon.rpm
ftp://updates.redhat.com/9/en/os/athlon/kernel-2.4.20-20.9.athlon.rpm
RedHat kernel-2.4.20-8.i586.rpm :
Red Hat Upgrade kernel-2.4.20-20.9.i386.rpm
ftp://updates.redhat.com/9/en/os/i386/kernel-2.4.20-20.9.i386.rpm
Red Hat Upgrade kernel-2.4.20-20.9.i586.rpm
ftp://updates.redhat.com/9/en/os/i586/kernel-2.4.20-20.9.i586.rpm
RedHat kernel-2.4.20-8.i686.rpm :
Red Hat Upgrade kernel-2.4.20-20.9.i686.rpm
ftp://updates.redhat.com/9/en/os/i686/kernel-2.4.20-20.9.i686.rpm
RedHat kernel-BOOT-2.4.20-8.i386.rpm :
Red Hat Upgrade kernel-BOOT-2.4.20-20.9.i386.rpm
ftp://updates.redhat.com/9/en/os/i386/kernel-BOOT-2.4.20-20.9.i386.rpm
RedHat kernel-bigmem-2.4.20-8.i686.rpm :
Red Hat Upgrade kernel-bigmem-2.4.20-20.9.i686.rpm
ftp://updates.redhat.com/9/en/os/i686/kernel-bigmem-2.4.20-20.9.i686.rpm
RedHat kernel-doc-2.4.20-8.i386.rpm :
Red Hat Upgrade kernel-doc-2.4.20-20.9.i386.rpm
ftp://updates.redhat.com/9/en/os/i386/kernel-doc-2.4.20-20.9.i386.rpm
RedHat kernel-source-2.4.20-8.i386.rpm :
Red Hat Upgrade kernel-source-2.4.20-20.9.i386.rpm
ftp://updates.redhat.com/9/en/os/i386/kernel-source-2.4.20-20.9.i386.rpm
RedHat kernel-2.4.18-14.athlon.rpm :
Red Hat Upgrade kernel-2.4.20-20.8.athlon.rpm
ftp://updates.redhat.com/8.0/en/os/athlon/kernel-2.4.20-20.8.athlon.rpm
RedHat kernel-2.4.18-14.i586.rpm :
Red Hat Upgrade kernel-2.4.20-20.8.i386.rpm
ftp://updates.redhat.com/8.0/en/os/i386/kernel-2.4.20-20.8.i386.rpm
Red Hat Upgrade kernel-2.4.20-20.8.i586.rpm
ftp://updates.redhat.com/8.0/en/os/i586/kernel-2.4.20-20.8.i586.rpm
RedHat kernel-2.4.18-14.i686.rpm :
Red Hat Upgrade kernel-2.4.20-20.8.i686.rpm
ftp://updates.redhat.com/8.0/en/os/i686/kernel-2.4.20-20.8.i686.rpm
RedHat kernel-BOOT-2.4.18-14.i386.rpm :
Red Hat Upgrade kernel-BOOT-2.4.20-20.8.i386.rpm
ftp://updates.redhat.com/8.0/en/os/i386/kernel-BOOT-2.4.20-20.8.i386.rpm
RedHat kernel-bigmem-2.4.18-14.i686.rpm :
Red Hat Upgrade kernel-bigmem-2.4.20-20.8.i686.rpm
ftp://updates.redhat.com/8.0/en/os/i686/kernel-bigmem-2.4.20-20.8.i686.rpm
RedHat kernel-doc-2.4.18-14.i386.rpm :
Red Hat Upgrade kernel-doc-2.4.20-20.8.i386.rpm
ftp://updates.redhat.com/8.0/en/os/i386/kernel-doc-2.4.20-20.8.i386.rpm
RedHat kernel-source-2.4.18-14.i386.rpm :
Red Hat Upgrade kernel-source-2.4.20-20.8.i386.rpm
ftp://updates.redhat.com/8.0/en/os/i386/kernel-source-2.4.20-20.8.i386.rpm
RedHat kernel-2.4.18-3.athlon.rpm :
Red Hat Upgrade kernel-2.4.20-20.7.athlon.rpm
ftp://updates.redhat.com/7.3/en/os/athlon/kernel-2.4.20-20.7.athlon.rpm
RedHat kernel-2.4.18-3.i386.rpm :
Red Hat Upgrade kernel-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/kernel-2.4.20-20.7.i386.rpm
Red Hat Upgrade kernel-2.4.20-20.7.i586.rpm
ftp://updates.redhat.com/7.3/en/os/i586/kernel-2.4.20-20.7.i586.rpm
RedHat kernel-2.4.18-3.i686.rpm :
Red Hat Upgrade kernel-2.4.20-20.7.i686.rpm
ftp://updates.redhat.com/7.3/en/os/i686/kernel-2.4.20-20.7.i686.rpm
RedHat kernel-BOOT-2.4.18-3.i386.rpm :
Red Hat Upgrade kernel-BOOT-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/kernel-BOOT-2.4.20-20.7.i386.rpm
RedHat kernel-bigmem-2.4.18-3.i686.rpm :
Red Hat Upgrade kernel-bigmem-2.4.20-20.7.i686.rpm
ftp://updates.redhat.com/7.3/en/os/i686/kernel-bigmem-2.4.20-20.7.i686.rpm
RedHat kernel-doc-2.4.18-3.i386.rpm :
Red Hat Upgrade kernel-doc-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/kernel-doc-2.4.20-20.7.i386.rpm
RedHat kernel-2.4.2-2.i586.rpm :
Red Hat Upgrade kernel-2.4.20-20.7.athlon.rpm
ftp://updates.redhat.com/7.1/en/os/athlon/kernel-2.4.20-20.7.athlon.rpm
Red Hat Upgrade kernel-2.4.20-20.7.i586.rpm
ftp://updates.redhat.com/7.1/en/os/i586/kernel-2.4.20-20.7.i586.rpm
RedHat kernel-2.4.2-2.i686.rpm :
Red Hat Upgrade kernel-2.4.20-20.7.i686.rpm
ftp://updates.redhat.com/7.1/en/os/i686/kernel-2.4.20-20.7.i686.rpm
Red Hat Upgrade kernel-bigmem-2.4.20-20.7.i686.rpm
ftp://updates.redhat.com/7.1/en/os/i686/kernel-bigmem-2.4.20-20.7.i686.rpm
RedHat kernel-BOOT-2.4.2-2.i386.rpm :
Red Hat Upgrade kernel-BOOT-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/kernel-BOOT-2.4.20-20.7.i386.rpm
RedHat kernel-doc-2.4.2-2.i386.rpm :
Red Hat Upgrade kernel-doc-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/kernel-doc-2.4.20-20.7.i386.rpm
RedHat kernel-source-2.4.2-2.i386.rpm :
Red Hat Upgrade kernel-source-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/kernel-source-2.4.20-20.7.i386.rpm
RedHat kernel-2.4.2-2.i386.rpm :
Red Hat Upgrade kernel-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/kernel-2.4.20-20.7.i386.rpm
RedHat kernel-2.4.7-10.athlon.rpm :
Red Hat Upgrade kernel-2.4.20-20.7.athlon.rpm
ftp://updates.redhat.com/7.2/en/os/athlon/kernel-2.4.20-20.7.athlon.rpm
RedHat kernel-2.4.7-10.i386.rpm :
Red Hat Upgrade kernel-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/kernel-2.4.20-20.7.i386.rpm
Red Hat Upgrade kernel-2.4.20-20.7.i586.rpm
ftp://updates.redhat.com/7.2/en/os/i586/kernel-2.4.20-20.7.i586.rpm
RedHat kernel-2.4.7-10.i686.rpm :
Red Hat Upgrade kernel-2.4.20-20.7.i686.rpm
ftp://updates.redhat.com/7.2/en/os/i686/kernel-2.4.20-20.7.i686.rpm
Red Hat Upgrade kernel-bigmem-2.4.20-20.7.i686.rpm
ftp://updates.redhat.com/7.2/en/os/i686/kernel-bigmem-2.4.20-20.7.i686.rpm
RedHat kernel-BOOT-2.4.7-10.i386.rpm :
Red Hat Upgrade kernel-BOOT-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/kernel-BOOT-2.4.20-20.7.i386.rpm
RedHat kernel-doc-2.4.7-10.i386.rpm :
Red Hat Upgrade kernel-doc-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/kernel-doc-2.4.20-20.7.i386.rpm
RedHat kernel-source-2.4.7-10.i386.rpm :
Red Hat Upgrade kernel-source-2.4.20-20.7.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/kernel-source-2.4.20-20.7.i386.rpm
Fonte: GuerraDigital
URL Fonte: https://totalsecurity.com.br/noticia/386/visualizar/
Comentários