libcgroup-0.36.1-6.AXS4.1
エラータID: AXSA:2011-85:01
リリース日:
2011/03/10 Thursday - 15:34
題名:
libcgroup-0.36.1-6.AXS4.1
影響のあるチャネル:
Asianux Server 4 for x86
Asianux Server 4 for x86_64
Severity:
High
Description:
Control groups infrastructure. The tools and library help manipulate, control, administrate and monitor control groups and the associated controllers.
Security issues fixed with this release:
CVE-2011-1006
CVE-2011-1022
No description available at the time of writing, please refer to the CVE links below.
解決策:
Update packages.
CVE:
CVE-2011-1006
Heap-based buffer overflow in the parse_cgroup_spec function in tools/tools-common.c in the Control Group Configuration Library (aka libcgroup or libcg) before 0.37.1 allows local users to gain privileges via a crafted controller list on the command line of an application. NOTE: it is not clear whether this issue crosses privilege boundaries.
Heap-based buffer overflow in the parse_cgroup_spec function in tools/tools-common.c in the Control Group Configuration Library (aka libcgroup or libcg) before 0.37.1 allows local users to gain privileges via a crafted controller list on the command line of an application. NOTE: it is not clear whether this issue crosses privilege boundaries.
CVE-2011-1022
The cgre_receive_netlink_msg function in daemon/cgrulesengd.c in cgrulesengd in the Control Group Configuration Library (aka libcgroup or libcg) before 0.37.1 does not verify that netlink messages originated in the kernel, which allows local users to bypass intended resource restrictions via a crafted message.
The cgre_receive_netlink_msg function in daemon/cgrulesengd.c in cgrulesengd in the Control Group Configuration Library (aka libcgroup or libcg) before 0.37.1 does not verify that netlink messages originated in the kernel, which allows local users to bypass intended resource restrictions via a crafted message.
追加情報:
N/A
ダウンロード:
SRPMS
- libcgroup-0.36.1-6.AXS4.1.src.rpm
MD5: 8f5cf3996810acef5b02476f33e1a7a6
SHA-256: 923fa9be87849458609ec5d22c7a3c714b9d1983b151f30210f01caeba57f3a2
Size: 415.08 kB
Asianux Server 4 for x86
- libcgroup-0.36.1-6.AXS4.1.i686.rpm
MD5: bae0004580946910d450230650651dbf
SHA-256: 4bb34d3e241a72ad62ec953cc2a5f752a3a8203b00d6a601734d028be2dde72e
Size: 92.64 kB - libcgroup-devel-0.36.1-6.AXS4.1.i686.rpm
MD5: 961104049d35cbf7dc7afd2cfecfd48b
SHA-256: dc1ae0f29820149a50b9c81702821ce6f67ae28f883fcd336b5c9fd5c1a0fcab
Size: 30.28 kB
Asianux Server 4 for x86_64
- libcgroup-0.36.1-6.AXS4.1.x86_64.rpm
MD5: 1877cf336348edfecc0aaabc1f9361d5
SHA-256: a3d80ac602420ba559193a1ef453f6bf65bdabb84f4414a68bbd2ca3d0c71335
Size: 93.23 kB - libcgroup-devel-0.36.1-6.AXS4.1.x86_64.rpm
MD5: d6d2b72e63e48de063008bae98424c43
SHA-256: 8ee4b91f2d1c96141044496ef8f920b84c3c18a4ef79aa3aab7eed2260637dd7
Size: 29.84 kB - libcgroup-0.36.1-6.AXS4.1.i686.rpm
MD5: bae0004580946910d450230650651dbf
SHA-256: 4bb34d3e241a72ad62ec953cc2a5f752a3a8203b00d6a601734d028be2dde72e
Size: 92.64 kB - libcgroup-devel-0.36.1-6.AXS4.1.i686.rpm
MD5: 961104049d35cbf7dc7afd2cfecfd48b
SHA-256: dc1ae0f29820149a50b9c81702821ce6f67ae28f883fcd336b5c9fd5c1a0fcab
Size: 30.28 kB