kernel-2.6.18-348.2.AXS3
エラータID: AXSA:2013-124:02
リリース日:
2013/03/08 Friday - 19:43
題名:
kernel-2.6.18-348.2.AXS3
影響のあるチャネル:
Asianux Server 3 for x86_64
Asianux Server 3 for x86
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- 大量の共有ライブラリを使う32bitバイナリを実行時、これらのライブラリの1つが常に予測可能なアドレスにロードされる問題が検出されました。この欠陥を利用して、アタッカーがASLR(Address Space Layout Randomization)セキュリティ機能を回避する危険性があります。(CVE-2012-1568)
- IPv6フラグメントをオーバーラップすることにより、リモートアタッカーが意図したネットワークの制限を回避する危険性があります。(CVE-2012-4444)
一部CVEの翻訳文はJVNからの引用になります。
http://jvndb.jvn.jp/
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2012-5515
The (1) XENMEM_decrease_reservation, (2) XENMEM_populate_physmap, and (3) XENMEM_exchange hypercalls in Xen 4.2 and earlier allow local guest administrators to cause a denial of service (long loop and hang) via a crafted extent_order value.
The (1) XENMEM_decrease_reservation, (2) XENMEM_populate_physmap, and (3) XENMEM_exchange hypercalls in Xen 4.2 and earlier allow local guest administrators to cause a denial of service (long loop and hang) via a crafted extent_order value.
CVE-2012-4444
The ip6_frag_queue function in net/ipv6/reassembly.c in the Linux kernel before 2.6.36 allows remote attackers to bypass intended network restrictions via overlapping IPv6 fragments.
The ip6_frag_queue function in net/ipv6/reassembly.c in the Linux kernel before 2.6.36 allows remote attackers to bypass intended network restrictions via overlapping IPv6 fragments.
CVE-2012-1568
The ExecShield feature in a certain Red Hat patch for the Linux kernel in Red Hat Enterprise Linux (RHEL) 5 and 6 and Fedora 15 and 16 does not properly handle use of many shared libraries by a 32-bit executable file, which makes it easier for context-dependent attackers to bypass the ASLR protection mechanism by leveraging a predictable base address for one of these libraries.
The ExecShield feature in a certain Red Hat patch for the Linux kernel in Red Hat Enterprise Linux (RHEL) 5 and 6 and Fedora 15 and 16 does not properly handle use of many shared libraries by a 32-bit executable file, which makes it easier for context-dependent attackers to bypass the ASLR protection mechanism by leveraging a predictable base address for one of these libraries.
追加情報:
N/A
ダウンロード:
Asianux Server 3 for x86
- kernel-2.6.18-348.2.AXS3.i686.rpm
MD5: 73cba4384c2d0daca9c4728ade18b360
SHA-256: aa50b7749dfc820b658796eace2ff0f94b6c56818dfc5ac72ddc8505e5e9cb7d
Size: 19.79 MB - kernel-devel-2.6.18-348.2.AXS3.i686.rpm
MD5: 6e6d7c45412ef3f36349cfd25c1d0201
SHA-256: 958e654e25bec7688f8055341bfe49bde10b0ab832820b5df1dbcff8ad0e7c61
Size: 6.04 MB - kernel-PAE-2.6.18-348.2.AXS3.i686.rpm
MD5: 8ee8fc18b5cd55270d25a2c9acfb692a
SHA-256: 6667d81c7ba63a0d232162851801525faebc1263120697676b65bf8f724471ec
Size: 19.81 MB - kernel-PAE-devel-2.6.18-348.2.AXS3.i686.rpm
MD5: 3d10451b9c7f208c09975d18c955f6c2
SHA-256: 9b8de38133243615a0560b6bf90f7b64022edeba1f222f23060595c896c25808
Size: 6.05 MB - kernel-xen-2.6.18-348.2.AXS3.i686.rpm
MD5: ff65de279ad757577fbb354116d50353
SHA-256: 9f8c1a8cefd6a4a414fafcc7951565b20ce8195f67ba77283400a023d13f977f
Size: 20.90 MB - kernel-xen-devel-2.6.18-348.2.AXS3.i686.rpm
MD5: f44afe28bac5f3338c9a48f6452f13e3
SHA-256: fe3e13b82898726166c7926ea8df4cc8055e96fe4e94a647e1b24c37d16c9153
Size: 6.05 MB - kernel-doc-2.6.18-348.2.AXS3.noarch.rpm
MD5: 0b5a0306905ed7e431975d3798abe15d
SHA-256: fc86d7216348517490ff9f31a94b64d2e45bf0c194a215b0aa51f95c9757e771
Size: 3.47 MB - kernel-headers-2.6.18-348.2.AXS3.i386.rpm
MD5: d11d1f8e603f54bcadc715ab12317641
SHA-256: c457df6e6258db3e69a24f26757c184b97b0d5c87c935c4ac24a2b2f2dd58f61
Size: 1.44 MB
Asianux Server 3 for x86_64
- kernel-2.6.18-348.2.AXS3.x86_64.rpm
MD5: 1d4c20d078b8de4b3cf6eb97e72cb6a9
SHA-256: f699714f6f046561af55ef4d31af2fa520d73c677441a9ccf6552d41c2353b4e
Size: 22.10 MB - kernel-devel-2.6.18-348.2.AXS3.x86_64.rpm
MD5: fbf64e572f847828153bcbe04c5afb51
SHA-256: c6dc414039b8555e2c6bcf52312d2a74c4892c248c77e8d96fab0f523e8bb522
Size: 6.05 MB - kernel-headers-2.6.18-348.2.AXS3.x86_64.rpm
MD5: 4152c1b0c4864b088cc2c7fdf8443398
SHA-256: ad1ed5c6bf09d5ff89051298de49ed4101cb4b7e917417ba7a321111f42f8b8d
Size: 1.48 MB - kernel-xen-2.6.18-348.2.AXS3.x86_64.rpm
MD5: 400c35bc5d60e975d1cd1a7453fe485f
SHA-256: c492bf7aa25c4e726e848cebf8406b9ea000e7bf43b632ea69a6a10ac9dc28d3
Size: 22.96 MB - kernel-xen-devel-2.6.18-348.2.AXS3.x86_64.rpm
MD5: c77424a97406608633f0542a744ca8be
SHA-256: 72705956c72393bdf37b697766b0b67e4637384e6e83f66319029d4527be67d2
Size: 6.05 MB - kernel-doc-2.6.18-348.2.AXS3.noarch.rpm
MD5: a84705c96304e9d164cdb73f11b00263
SHA-256: 9776c96e4e1bce2fc2c01a3e13eaaa6c7e1de9ad9b1e388cc8faa3dc974665c1
Size: 3.47 MB