LISTSERV - SCIENTIFIC-LINUX-ERRATA Archives

SCIENTIFIC-LINUX-ERRATA Archives

May 2006

SCIENTIFIC-LINUX-ERRATA@LISTSERV.FNAL.GOV

	LISTSERV Archives
	SCIENTIFIC-LINUX-ERRATA Home
	SCIENTIFIC-LINUX-ERRATA May 2006

	Log In
	Register

	Subscribe or Unsubscribe

	Search Archives

Options:	Use Monospaced Font Show Text Part by Default Show All Mail Headers
Message:	[<< First] [< Prev] [Next >] [Last >>]
Topic:	[<< First] [< Prev] [Next >] [Last >>]
Author:	[<< First] [< Prev] [Next >] [Last >>]

Subject:	Re: ERRATA for "kernel" on SL 40,41,42,43 i386 x86_64 now available
From:	Connie Sieh <[log in to unmask]>
Reply To:	Connie Sieh <[log in to unmask]>
Date:	Thu, 25 May 2006 18:40:38 -0500
Content-Type:	TEXT/PLAIN
Parts/Attachments:	TEXT/PLAIN (115 lines)

On Thu, 25 May 2006, Connie Sieh wrote:

> The ERRATA for SL 40,41,42,43 i386 x86_64 are now available from:
> ftp://ftp.scientificlinux.org/linux/scientific/40,41,42,43/i386/errata/SL/RPMS/
> 
> Synopsis:  Updated kernel packages that fix several security issues in the 
>            Scientific Linux 4x kernel are now available
> 
> Severity: important
> 
> Issued on: 2006-05-24
> 
> Problem Description:
> 
> 	Issue in the IPv6 implementation that allowed a local user to cause a
> 	denial of service (infinite loop and crash) (CVE-2005-2973, important)
> 
> 	Issue in the bridge implementation that allowed a remote user to
> 	cause forwarding of spoofed packets via poisoning of the forwarding
> 	table with already dropped frames (CVE-2005-3272, moderate)
> 
> 	Isuue in the atm module that allowed a local user to cause a denial
> 	of service (panic) via certain socket calls (CVE-2005-3359, important)
> 
> 	Issue in the NFS client implementation that allowed a local user to
> 	cause a denial of service (panic) via O_DIRECT writes (CVE-2006-0555,
> 	important)
> 
> 	A difference in "sysretq" operation of EM64T (as opposed to Opteron)
> 	processors that allowed a local user to cause a denial of service
> 	(crash) upon return from certain system calls (CVE-2006-0741 and
> 	CVE-2006-0744, important)
> 
> 	Issue in the keyring implementation that allowed a local user to
> 	cause a denial of service (OOPS) (CVE-2006-1522, important)
> 
> 	Issue in IP routing implementation that allowed a local user to cause
> 	a denial of service (panic) via a request for a route for a multicast IP
> 	(CVE-2006-1525, important)
> 
> 	Issue in the SCTP-netfilter implementation that allowed a remote user
> 	to cause a denial of service (infinite loop) (CVE-2006-1527, important)
> 
> 	Issue in the sg driver that allowed a local user to cause a denial of
> 	service (crash) via a dio transfer to memory mapped (mmap) IO space
> 	(CVE-2006-1528, important)
> 
> 	Issue in the threading implementation that allowed a local user to
> 	cause a denial of service (panic) (CVE-2006-1855, important)
> 
> 	Two missing LSM hooks that allowed a local user to bypass the LSM by
> 	using readv() or writev() (CVE-2006-1856, moderate)
> 
> 	Issue in the virtual memory implementation that allowed local user to
> 	cause a denial of service (panic) by using the lsof command
> 	(CVE-2006-1862, important)
> 
> 	A directory traversal vulnerability in smbfs that allowed a local user
> 	to escape chroot restrictions for an SMB-mounted filesystem via "..\\"
> 	sequences (CVE-2006-1864, moderate)
> 
>  	Issue in the ECNE chunk handling of SCTP that allowed a remote user
> 	to cause a denial of service (panic) (CVE-2006-2271, moderate)
> 
> 	Issue in the handling of COOKIE_ECHO and HEARTBEAT control chunks of
> 	SCTP that allowed a remote user to cause a denial of service (panic)
> 	(CVE-2006-2272, moderate)
> 
> 	Issue in the handling of DATA fragments of SCTP that allowed a remote
> 	user to cause a denial of service (infinite recursion and crash)
> 	(CVE-2006-2274, moderate)
> 
> 
> CVEs:   CVE-2005-2973 CVE-2005-3272 CVE-2005-3359 CVE-2006-0555 CVE-2006-0741 
>         CVE-2006-0744 CVE-2006-1522 CVE-2006-1525 CVE-2006-1527 CVE-2006-1528 
>         CVE-2006-1855 CVE-2006-1856 CVE-2006-1862 CVE-2006-1864 CVE-2006-2271
>         CVE-2006-2272 CVE-2006-2274
> 
> SRPMS
> 	kernel-2.6.9-34.0.1.EL.src.rpm
> 
> Arch: i386
> 	kernel-2.6.9-34.0.1.EL.i686.rpm
> 	kernel-devel-2.6.9-34.0.1.EL.i686.rpm
> 	kernel-doc-2.6.9-34.0.1.EL.noarch.rpm
> 	kernel-hugemem-2.6.9-34.0.1.EL.i686.rpm
> 	kernel-hugemem-devel-2.6.9-34.0.1.EL.i686.rpm
> 	kernel-smp-2.6.9-34.0.1.EL.i686.rpm
> 	kernel-smp-devel-2.6.9-34.0.1.EL.i686.rpm
> 
> Dependencies:
> 
> 	kernel-module-openafs-2.6.9-34.0.1.EL-1.4.0-8.SL.i686.rpm
> 	kernel-module-openafs-2.6.9-34.0.1.ELsmp-1.4.0-8.SL.i686.rpm

Arch: x86_64
        kernel-2.6.9-34.0.1.EL.x86_64.rpm
        kernel-devel-2.6.9-34.0.1.EL.x86_64.rpm
        kernel-largesmp-2.6.9-34.0.1.EL.x86_64.rpm
        kernel-largesmp-devel-2.6.9-34.0.1.EL.x86_64.rpm
        kernel-smp-2.6.9-34.0.1.EL.x86_64.rpm
        kernel-smp-devel-2.6.9-34.0.1.EL.x86_64.rpm

Dependencies:

	kernel-module-openafs-2.6.9-34.0.1.EL-1.4.0-8.SL.x86_64.rpm
        kernel-module-openafs-2.6.9-34.0.1.ELsmp-1.4.0-8.SL.x86_64.rpm

> 
> -Connie Sieh
> -Troy Dawson
> 

-Connie Sieh

ATOM RSS1 RSS2

LISTSERV.FNAL.GOV