kernel-2.6.18-53.22AXS3

エラータID: AXSA:2009-42:04

Release date: 
Tuesday, April 28, 2009 - 14:39
Subject: 
kernel-2.6.18-53.22AXS3
Affected Channels: 
Asianux Server 3 for x86
Asianux Server 3 for x86_64
Severity: 
High
Description: 

The kernel packages contain the Linux kernel, the core of any Linux operating system.
Fixed bugs:
CVE-2008-3528
The error-reporting functionality in (1) fs/ext2/dir.c, (2) fs/ext3/dir.c, and possibly (3) fs/ext4/dir.c in the Linux kernel 2.6.26.5 does not limit the number of printk console messages that report directory corruption, which allows physically proximate attackers to cause a denial of service (temporary system hang) by mounting a filesystem that has corrupted dir->i_size and dir->i_blocks values and performing (a) read or (b) write operations.
NOTES:
there are limited scenarios in which this crosses privilege boundaries.
The ext4 fix is omitted because there is no ext4 in AXS3 SP1 kernel.
CVE-2008-5700
libata in the Linux kernel before 2.6.27.9 does not set minimum timeouts for SG_IO requests, which allows local users to cause a denial of service (Programmed I/O mode on drives) via multiple simultaneous invocations of an unspecified test program.
CVE-2009-0028
The clone system call in the Linux kernel 2.6.28 and earlier allows local users to send arbitrary signals to a parent process from an unprivileged child process by launching an additional child process with the CLONE_PARENT flag, and then letting this new process exit.
CVE-2009-0322
drivers/firmware/dell_rbu.c in the Linux kernel before 2.6.27.13, and 2.6.28.x before 2.6.28.2, allows local users to cause a denial of service (system crash) via a read system call that specifies zero bytes from the (1) image_type or (2) packet_size file in /sys/devices/platform/dell_rbu/.
CVE-2009-0675
The skfp_ioctl function in drivers/net/skfp/skfddi.c in the Linux kernel before 2.6.28.6 permits SKFP_CLR_STATS requests only when the CAP_NET_ADMIN capability is absent, instead of when this capability is present, which allows local users to reset the driver statistics, related to an inverted logic issue.
CVE-2009-0676
The sock_getsockopt function in net/core/sock.c in the Linux kernel before 2.6.28.6 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel memory via an SO_BSDCOMPAT getsockopt request.
Panic problem:
This release also fixes a panic problem introduced with the release of the previous kernel (kernel-2.6.18-53.21AXS3) on Toshiba server (seen on Pentium DC E2160/1.80GHz CPU) and Nehalem CPU.

Solution: 

Update packages.

CVEs: 
CVE-2008-3528
The error-reporting functionality in (1) fs/ext2/dir.c, (2) fs/ext3/dir.c, and possibly (3) fs/ext4/dir.c in the Linux kernel 2.6.26.5 does not limit the number of printk console messages that report directory corruption, which allows physically proximate attackers to cause a denial of service (temporary system hang) by mounting a filesystem that has corrupted dir->i_size and dir->i_blocks values and performing (a) read or (b) write operations. NOTE: there are limited scenarios in which this crosses privilege boundaries.
CVE-2008-5700
libata in the Linux kernel before 2.6.27.9 does not set minimum timeouts for SG_IO requests, which allows local users to cause a denial of service (Programmed I/O mode on drives) via multiple simultaneous invocations of an unspecified test program.
CVE-2009-0028
The clone system call in the Linux kernel 2.6.28 and earlier allows local users to send arbitrary signals to a parent process from an unprivileged child process by launching an additional child process with the CLONE_PARENT flag, and then letting this new process exit.
CVE-2009-0322
drivers/firmware/dell_rbu.c in the Linux kernel before 2.6.27.13, and 2.6.28.x before 2.6.28.2, allows local users to cause a denial of service (system crash) via a read system call that specifies zero bytes from the (1) image_type or (2) packet_size file in /sys/devices/platform/dell_rbu/.
CVE-2009-0675
The skfp_ioctl function in drivers/net/skfp/skfddi.c in the Linux kernel before 2.6.28.6 permits SKFP_CLR_STATS requests only when the CAP_NET_ADMIN capability is absent, instead of when this capability is present, which allows local users to reset the driver statistics, related to an "inverted logic" issue.
CVE-2009-0676
The sock_getsockopt function in net/core/sock.c in the Linux kernel before 2.6.28.6 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel memory via an SO_BSDCOMPAT getsockopt request.




Additional Info: 

N/A

Download: 

SRPMS
  1. kernel-2.6.18-53.22AXS3.src.rpm
    MD5: ed448bc9a01153bfd059be219b862c88
    SHA-256: d6e563de3da9b0f5de0d612ab0fa5cc6787ce6de4e4f3841b236b5d20e8f0403
    Size: 54.86 MB

Asianux Server 3 for x86
  1. kernel-2.6.18-53.22AXS3.i686.rpm
    MD5: d692d17accc9a20d039649f5eba759bf
    SHA-256: 46a23a4397b1e84b5b38ffddd36712cabe86480a2a055df0d9a375ff6b95b0d6
    Size: 13.66 MB
  2. kernel-devel-2.6.18-53.22AXS3.i686.rpm
    MD5: ded906bbc91c44df73df553732e56c9b
    SHA-256: 23928a9ed92030e55e3e963917b084f82ce0bbc2fbcf6a5c182f8af22750bf3a
    Size: 4.87 MB
  3. kernel-PAE-2.6.18-53.22AXS3.i686.rpm
    MD5: 231722d4b54717622771f8083d60b306
    SHA-256: 9a64298e7efe9aa446493900ac054c0eef491d112e2645e1c438fc93f41cabbd
    Size: 13.67 MB
  4. kernel-PAE-devel-2.6.18-53.22AXS3.i686.rpm
    MD5: 6b304ba4dbd38c775cd8be85c1fff745
    SHA-256: 74a99d84ae7f23383a83208b9f478e7cef26379f77d858f184c28ff25235f1d2
    Size: 4.88 MB
  5. kernel-xen-2.6.18-53.22AXS3.i686.rpm
    MD5: cd55fcda1f450674a1d1d0671e0c0f79
    SHA-256: ab9ebd706fd1e0e610421899929829cc327882a608c07e52bf3de99354e42206
    Size: 14.62 MB
  6. kernel-xen-devel-2.6.18-53.22AXS3.i686.rpm
    MD5: a4ed58d493a9f4f28c949fb3665d9452
    SHA-256: 6c0e84f7e8e8d1f15dc9e5e65731d663abe00aec462518265280d8b2d4621e46
    Size: 4.88 MB
  7. kernel-doc-2.6.18-53.22AXS3.noarch.rpm
    MD5: bae69a97be5c8f54da74903899bb8493
    SHA-256: 6e63375af3b3652a61b36064be5cdbf0e8344df633bd816ff7875f445816967c
    Size: 2.82 MB
  8. kernel-headers-2.6.18-53.22AXS3.i386.rpm
    MD5: 37ea0dc6c18638d37e439a81db72ed3b
    SHA-256: a4092f968038237177b232cf08865a9a0066a44bbf56a9895b5cbe210edb0e9f
    Size: 805.73 kB

Asianux Server 3 for x86_64
  1. kernel-2.6.18-53.22AXS3.x86_64.rpm
    MD5: 4f4d90434338ed76974b9617af6d92de
    SHA-256: 6bc0e339589aa495a57ceff69d4587929a73d65ca9e42a06e962fcfbf90d0848
    Size: 15.84 MB
  2. kernel-devel-2.6.18-53.22AXS3.x86_64.rpm
    MD5: a77d17b55d1b5f88307638990e255d78
    SHA-256: 01fda828fcffd2240087bffd20dc92e6929d6b0fceb45a43e8b5ae35fd0d6959
    Size: 5.06 MB
  3. kernel-headers-2.6.18-53.22AXS3.x86_64.rpm
    MD5: bbc89d2aa2a7b584ebd04965e4b76bac
    SHA-256: 43981661077206ef78070b41621eda895514c3dd52d8097bf68b89ecd2352d19
    Size: 845.09 kB
  4. kernel-xen-2.6.18-53.22AXS3.x86_64.rpm
    MD5: 22d39d88ba0dfebb4313eed1f0a3420a
    SHA-256: bc66f8ee3f595d7f0301c2c603e3f468e4a1386a1d8a48a5a1ee76eff38ce882
    Size: 16.49 MB
  5. kernel-xen-devel-2.6.18-53.22AXS3.x86_64.rpm
    MD5: d6bf6f1899f3885a2aa12c8b903499aa
    SHA-256: ee5a3a53dc2f24827f29be18ac455c9387bf935a0b67b3a8c432645dc5598cee
    Size: 5.06 MB
  6. kernel-doc-2.6.18-53.22AXS3.noarch.rpm
    MD5: 9620b133542f7e0d4ee1f4d07f04ca73
    SHA-256: 57cf6c93007c9166349e13d14da7b9d065da3f7a9fd57ef4744df42d9067e87c
    Size: 2.82 MB