kernel-2.6.18-348.2.AXS3

エラータID: AXSA:2013-124:02

リリース日: 
2013/03/08 Friday - 19:43
題名: 
kernel-2.6.18-348.2.AXS3
影響のあるチャネル: 
Asianux Server 3 for x86_64
Asianux Server 3 for x86
Severity: 
High
Description: 

以下項目について対処しました。

[Security Fix]
- 大量の共有ライブラリを使う32bitバイナリを実行時、これらのライブラリの1つが常に予測可能なアドレスにロードされる問題が検出されました。この欠陥を利用して、アタッカーがASLR(Address Space Layout Randomization)セキュリティ機能を回避する危険性があります。(CVE-2012-1568)

- IPv6フラグメントをオーバーラップすることにより、リモートアタッカーが意図したネットワークの制限を回避する危険性があります。(CVE-2012-4444)

一部CVEの翻訳文はJVNからの引用になります。
http://jvndb.jvn.jp/

解決策: 

パッケージをアップデートしてください。

CVE: 
CVE-2012-5515
The (1) XENMEM_decrease_reservation, (2) XENMEM_populate_physmap, and (3) XENMEM_exchange hypercalls in Xen 4.2 and earlier allow local guest administrators to cause a denial of service (long loop and hang) via a crafted extent_order value.
CVE-2012-4444
The ip6_frag_queue function in net/ipv6/reassembly.c in the Linux kernel before 2.6.36 allows remote attackers to bypass intended network restrictions via overlapping IPv6 fragments.
CVE-2012-1568
The ExecShield feature in a certain Red Hat patch for the Linux kernel in Red Hat Enterprise Linux (RHEL) 5 and 6 and Fedora 15 and 16 does not properly handle use of many shared libraries by a 32-bit executable file, which makes it easier for context-dependent attackers to bypass the ASLR protection mechanism by leveraging a predictable base address for one of these libraries.




追加情報: 

N/A

ダウンロード: 

Asianux Server 3 for x86
  1. kernel-2.6.18-348.2.AXS3.i686.rpm
    MD5: 73cba4384c2d0daca9c4728ade18b360
    SHA-256: aa50b7749dfc820b658796eace2ff0f94b6c56818dfc5ac72ddc8505e5e9cb7d
    Size: 19.79 MB
  2. kernel-devel-2.6.18-348.2.AXS3.i686.rpm
    MD5: 6e6d7c45412ef3f36349cfd25c1d0201
    SHA-256: 958e654e25bec7688f8055341bfe49bde10b0ab832820b5df1dbcff8ad0e7c61
    Size: 6.04 MB
  3. kernel-PAE-2.6.18-348.2.AXS3.i686.rpm
    MD5: 8ee8fc18b5cd55270d25a2c9acfb692a
    SHA-256: 6667d81c7ba63a0d232162851801525faebc1263120697676b65bf8f724471ec
    Size: 19.81 MB
  4. kernel-PAE-devel-2.6.18-348.2.AXS3.i686.rpm
    MD5: 3d10451b9c7f208c09975d18c955f6c2
    SHA-256: 9b8de38133243615a0560b6bf90f7b64022edeba1f222f23060595c896c25808
    Size: 6.05 MB
  5. kernel-xen-2.6.18-348.2.AXS3.i686.rpm
    MD5: ff65de279ad757577fbb354116d50353
    SHA-256: 9f8c1a8cefd6a4a414fafcc7951565b20ce8195f67ba77283400a023d13f977f
    Size: 20.90 MB
  6. kernel-xen-devel-2.6.18-348.2.AXS3.i686.rpm
    MD5: f44afe28bac5f3338c9a48f6452f13e3
    SHA-256: fe3e13b82898726166c7926ea8df4cc8055e96fe4e94a647e1b24c37d16c9153
    Size: 6.05 MB
  7. kernel-doc-2.6.18-348.2.AXS3.noarch.rpm
    MD5: 0b5a0306905ed7e431975d3798abe15d
    SHA-256: fc86d7216348517490ff9f31a94b64d2e45bf0c194a215b0aa51f95c9757e771
    Size: 3.47 MB
  8. kernel-headers-2.6.18-348.2.AXS3.i386.rpm
    MD5: d11d1f8e603f54bcadc715ab12317641
    SHA-256: c457df6e6258db3e69a24f26757c184b97b0d5c87c935c4ac24a2b2f2dd58f61
    Size: 1.44 MB

Asianux Server 3 for x86_64
  1. kernel-2.6.18-348.2.AXS3.x86_64.rpm
    MD5: 1d4c20d078b8de4b3cf6eb97e72cb6a9
    SHA-256: f699714f6f046561af55ef4d31af2fa520d73c677441a9ccf6552d41c2353b4e
    Size: 22.10 MB
  2. kernel-devel-2.6.18-348.2.AXS3.x86_64.rpm
    MD5: fbf64e572f847828153bcbe04c5afb51
    SHA-256: c6dc414039b8555e2c6bcf52312d2a74c4892c248c77e8d96fab0f523e8bb522
    Size: 6.05 MB
  3. kernel-headers-2.6.18-348.2.AXS3.x86_64.rpm
    MD5: 4152c1b0c4864b088cc2c7fdf8443398
    SHA-256: ad1ed5c6bf09d5ff89051298de49ed4101cb4b7e917417ba7a321111f42f8b8d
    Size: 1.48 MB
  4. kernel-xen-2.6.18-348.2.AXS3.x86_64.rpm
    MD5: 400c35bc5d60e975d1cd1a7453fe485f
    SHA-256: c492bf7aa25c4e726e848cebf8406b9ea000e7bf43b632ea69a6a10ac9dc28d3
    Size: 22.96 MB
  5. kernel-xen-devel-2.6.18-348.2.AXS3.x86_64.rpm
    MD5: c77424a97406608633f0542a744ca8be
    SHA-256: 72705956c72393bdf37b697766b0b67e4637384e6e83f66319029d4527be67d2
    Size: 6.05 MB
  6. kernel-doc-2.6.18-348.2.AXS3.noarch.rpm
    MD5: a84705c96304e9d164cdb73f11b00263
    SHA-256: 9776c96e4e1bce2fc2c01a3e13eaaa6c7e1de9ad9b1e388cc8faa3dc974665c1
    Size: 3.47 MB