1. Forum
  2. Usenet
  3. LINUX.DEBIAN.ANNOUNCE.SEC

  • [SECURITY] [DSA 2240-1] linux-2.6 security update (2/2)

    From dann frazier@1:229/2 to All on Wed May 25 07:50:02 2011
    [continued from previous message]

    Radio X.25 PLP (Rose) protocol. A remote user can cause a denial of service
    by providing specially crafted facilities fields.

    CVE-2011-1494

    Dan Rosenberg reported an issue in the /dev/mpt2ctl interface provided by
    the driver for LSI MPT Fusion SAS 2.0 controllers. Local users can obtain
    elevated privileges by specially crafted ioctl calls. On default Debian
    installations this is not exploitable as this interface is only accessible
    to root.

    CVE-2011-1495

    Dan Rosenberg reported two additional issues in the /dev/mpt2ctl interface
    provided by the driver for LSI MPT Fusion SAS 2.0 controllers. Local users
    can obtain elevated privileges and ready arbitrary kernel memory by using
    specially crafted ioctl calls. On default Debian installations this is not
    exploitable as this interface is only accessible to root.

    CVE-2011-1585

    Jeff Layton reported an issue in the Common Internet File System (CIFS).
    Local users can bypass authentication requirements for shares that are
    already mounted by another user.

    CVE-2011-1593

    Robert Swiecki reported a signednes issue in the next_pidmap() function,
    which can be exploited my local users to cause a denial of service.

    CVE-2011-1598

    Dave Jones reported an issue in the Broadcast Manager Controller Area
    Network (CAN/BCM) protocol that may allow local users to cause a NULL
    pointer dereference, resulting in a denial of service.

    CVE-2011-1745

    Vasiliy Kulikov reported an issue in the Linux support for AGP devices.
    Local users can obtain elevated privileges or cause a denial of service due
    to missing bounds checking in the AGPIOC_BIND ioctl. On default Debian
    installations, this is exploitable only by users in the video group.

    CVE-2011-1746

    Vasiliy Kulikov reported an issue in the Linux support for AGP devices.
    Local users can obtain elevated privileges or cause a denial of service due
    to missing bounds checking in the agp_allocate_memory and
    agp_create_user_memory. On default Debian installations, this is exploitable
    only by users in the video group.

    CVE-2011-1748

    Oliver Kartkopp reported an issue in the Controller Area Network (CAN) raw
    socket implementation which permits ocal users to cause a NULL pointer
    dereference, resulting in a denial of service.

    CVE-2011-1759

    Dan Rosenberg reported an issue in the support for executing "old ABI"
    binaries on ARM processors. Local users can obtain elevated privileges due
    to insufficient bounds checking in the semtimedop system call.

    CVE-2011-1767

    Alexecy Dobriyan reported an issue in the GRE over IP implementation.
    Remote users can cause a denial of service by sending a packet during module
    initialization.

    CVE-2011-1770

    Dan Rosenberg reported an issue in the Datagram Congestion Control Protocol
    (DCCP). Remote users can cause a denial of service or potentially obtain
    access to sensitive kernel memory.

    CVE-2011-1776

    Timo Warns reported an issue in the Linux implementation for GUID
    partitions. Users with physical access can gain access to sensitive kernel
    memory by adding a storage device with a specially crafted corrupted invalid
    partition table.

    CVE-2011-2022

    Vasiliy Kulikov reported an issue in the Linux support for AGP devices.
    Local users can obtain elevated privileges or cause a denial of service due
    to missing bounds checking in the AGPIOC_UNBIND ioctl. On default Debian
    installations, this is exploitable only by users in the video group.

    This update also includes changes queued for the next point release of
    Debian 6.0, which also fix various non-security issues. These additional changes are described in the package changelog which can be viewed at:

    http://packages.debian.org/changelogs/pool/main/l/linux-2.6/linux-2.6_2.6.32-34/changelog

    For the stable distribution (squeeze), this problem has been fixed in version 2.6.32-34squeeze1. Updates for issues impacting the oldstable distribution (lenny) will be available soon.

    The following matrix lists additional source packages that were rebuilt for compatibility with or to take advantage of this update:

    Debian 6.0 (squeeze)
    user-mode-linux 2.6.32-1um-4+34squeeze1

    We recommend that you upgrade your linux-2.6 and user-mode-linux packages.

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: http://www.debian.org/security/

    Mailing list: [email protected]
    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v1.4.11 (GNU/Linux)

    iQIcBAEBAgAGBQJN3I4aAAoJEBv4PF5U/IZAaa4P/j+l40Mp6naHByZt3jpwNWSA RN/jkkrYnYNDyT7crB+/DOdu84zalYa2KqfffOd/faV9+NSCBayjJ5c+FvVgeTay Il8elfcWP/uK0BXJn2xVb7YAsLpIe0HRlhxe72ZqcT4Yxo1/IBnEpUS56JRd2tlA k7x7dbj+smlzlM4qiXQy1F6LNyDqoGDUKNohQHUoyQ5dGq/gdi3C7EnUs4Nx9vjK RU1HUWLXB4qm7JpoK6o3u6Hpe0ynZm74tYvTi0XhayGXGevaBvIQuEWqhY6gZF1P v6a5gvBQC2pRIQXAVUbAhjoXpuF5jahTgicLdJanDqLfhefQ3qV11Ahvui2lzZuT iKbMVGzO/azPLzskH8YNBq6drFPX2ZqRsxGmrTdzEtLWnJCN6nBBe4kF6C3z5T1A 1ez4/F+OhNl2wnimq3CxiyfXun9WWs6IlULpqsKgJjE4bItg5a8+zTYGjkhQxX+X fPzO1xZCtQK4i+59Ejs5FwIfps0fA0m8c1Z5bnIaj4Q+0X5sJt2kwws8yrQKoOH1 eKGOgRqM70rOnyW/TQtXDGnTC4+vCCv89UjZUpG+sxZtWUxeh8CL2scUyceTeSNC IS2+EgvilN+a3hQlYJH4YNshmQCtJDp7qMTLaXLHM9hoV1L383nbJV4AtrFlcsCO KRI5f0ds95H6TsEoTSmO
    =gx2x
    -----END PGP SIGNATURE-----


    --
    To UNSUBSCRIBE, email to [email protected]
    with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: http://lists.debian.org/[email protected]

    --- SoupGate-Win32 v1.05
    * Origin: you cannot sedate... all the things you hate (1:229/2)