kernel-2.6.18-348.4.AXS3
エラータID: AXSA:2013-452:04
リリース日:
2013/05/21 Tuesday - 11:33
題名:
kernel-2.6.18-348.4.AXS3
影響のあるチャネル:
Asianux Server 3 for x86_64
Asianux Server 3 for x86
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- net/xfrm/xfrm_user.c には、特定の構造体を初期化しないため、カーネルメモリから重要な情報を取得することをローカルユーザーに許可する脆弱性が存在します。(CVE-2012-6537)
- net/llc/af_llc.c 内の llc_ui_getname 関数には、特定の環境において不正な戻り値があるため、巧妙に細工されたアプリケーションの初期化されていないポインタの引数の影響により、カーネルスタックメモリから重要な情報を取得することをローカルユーザーに許可する脆弱性が存在します。(CVE-2012-6542)
- ATM の実装には、特定の構造体を適切に初期化していないため、巧妙に細工されたアプリケーションにより、カーネルスタックメモリから重要な情報を取得することをローカルユーザーに許可する脆弱性が存在します。(CVE-2012-6546)
- drivers/net/tun.c 内の __tun_chr_ioctl 関数には、特定の構造体を適切に初期化していないため、巧妙に細工されたアプリケーションにより、カーネルスタックメモリから重要な情報を取得することをローカルユーザーに許可する脆弱性が存在します。(CVE-2012-6547)
- net/xfrm/xfrm_user.c 内の xfrm_state_netlink 関数には、dump_one_state 関数のエラーの状態を適切に処理しないため、権限の取得、またはサービス拒否状態 (NULL ポインタ参照およびシステムクラッシュ) にすることをローカルユーザーに許可する脆弱性が存在します。 (CVE-2013-1826)
一部 CVE の翻訳文は JVN からの引用になります。
http://jvndb.jvn.jp/
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2012-6537
net/xfrm/xfrm_user.c in the Linux kernel before 3.6 does not initialize certain structures, which allows local users to obtain sensitive information from kernel memory by leveraging the CAP_NET_ADMIN capability.
net/xfrm/xfrm_user.c in the Linux kernel before 3.6 does not initialize certain structures, which allows local users to obtain sensitive information from kernel memory by leveraging the CAP_NET_ADMIN capability.
CVE-2012-6542
The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that leverages an uninitialized pointer argument.
The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that leverages an uninitialized pointer argument.
CVE-2012-6546
The ATM implementation in the Linux kernel before 3.6 does not initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a crafted application.
The ATM implementation in the Linux kernel before 3.6 does not initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a crafted application.
CVE-2012-6547
The __tun_chr_ioctl function in drivers/net/tun.c in the Linux kernel before 3.6 does not initialize a certain structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted application.
The __tun_chr_ioctl function in drivers/net/tun.c in the Linux kernel before 3.6 does not initialize a certain structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted application.
CVE-2013-0216
The Xen netback functionality in the Linux kernel before 3.7.8 allows guest OS users to cause a denial of service (loop) by triggering ring pointer corruption.
The Xen netback functionality in the Linux kernel before 3.7.8 allows guest OS users to cause a denial of service (loop) by triggering ring pointer corruption.
CVE-2013-0231
The pciback_enable_msi function in the PCI backend driver (drivers/xen/pciback/conf_space_capability_msi.c) in Xen for the Linux kernel 2.6.18 and 3.8 allows guest OS users with PCI device access to cause a denial of service via a large number of kernel log messages. NOTE: some of these details are obtained from third party information.
The pciback_enable_msi function in the PCI backend driver (drivers/xen/pciback/conf_space_capability_msi.c) in Xen for the Linux kernel 2.6.18 and 3.8 allows guest OS users with PCI device access to cause a denial of service via a large number of kernel log messages. NOTE: some of these details are obtained from third party information.
CVE-2013-1826
The xfrm_state_netlink function in net/xfrm/xfrm_user.c in the Linux kernel before 3.5.7 does not properly handle error conditions in dump_one_state function calls, which allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) by leveraging the CAP_NET_ADMIN capability.
The xfrm_state_netlink function in net/xfrm/xfrm_user.c in the Linux kernel before 3.5.7 does not properly handle error conditions in dump_one_state function calls, which allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) by leveraging the CAP_NET_ADMIN capability.
追加情報:
N/A
ダウンロード:
SRPMS
- kernel-2.6.18-348.4.AXS3.src.rpm
MD5: 181f11253096e32c8c319490b383c6dc
SHA-256: 34e4cccaec40185ec4e3f732144b18cfb0d9078dcad2e60f7ac593467cb03110
Size: 65.85 MB
Asianux Server 3 for x86
- kernel-2.6.18-348.4.AXS3.i686.rpm
MD5: d2fe9688e66c119639e6cf86093380e0
SHA-256: ff3e977da39debb4d3cfb6a6b312eb443d224a76ad162e9ec93e057204a64f81
Size: 19.80 MB - kernel-devel-2.6.18-348.4.AXS3.i686.rpm
MD5: 27e7276fbe35fef78d4e9251ea5ce6fa
SHA-256: 58d3a27f44d5c203d5a3f599823d303af02eecee78c11bf78a59eac68960c34c
Size: 6.05 MB - kernel-doc-2.6.18-348.4.AXS3.noarch.rpm
MD5: 86ba4f13a0f374b568f86b0d97fc3e13
SHA-256: 806ad1054bf5c5b7f0a201a02059dd479a7bd8ca1b1ff4d622a19febacf85026
Size: 3.48 MB - kernel-headers-2.6.18-348.4.AXS3.i386.rpm
MD5: 5ea5e00b6523b13cb397a59dc111c5b2
SHA-256: 68d981bbae7d18170c490934c7058385fc0f63bb1696ad2f67cbc131fa993da4
Size: 1.45 MB - kernel-PAE-2.6.18-348.4.AXS3.i686.rpm
MD5: 044984a6d9e3d206fa1eb03c29cc3898
SHA-256: c8d514d9b75fac4a88bcea9cf4030b518367143ebc40ad0bc45f42a5ff16b237
Size: 19.82 MB - kernel-PAE-devel-2.6.18-348.4.AXS3.i686.rpm
MD5: 68b7f2e3ab6da10b7f25d3c563950af4
SHA-256: 8f1239bbe8f8d78aabfcc6f8786238ad8fe3118e521ab0076ba5b5919d3bd66b
Size: 6.05 MB - kernel-xen-2.6.18-348.4.AXS3.i686.rpm
MD5: 4b9e98658fae955379b9b517c22b11d2
SHA-256: cdfb1529da193e1121be4a6cd27d35dbae8949b20df04933b41c7f7c3f3098d3
Size: 20.91 MB - kernel-xen-devel-2.6.18-348.4.AXS3.i686.rpm
MD5: 87335ce1cefa28751c586ae69fd252fe
SHA-256: c7c4e87a0dad9ec037af476440b9048be0ed6f567e051db7dd2f111d1549742f
Size: 6.05 MB
Asianux Server 3 for x86_64
- kernel-2.6.18-348.4.AXS3.x86_64.rpm
MD5: af2ff04b6886baf4a00841988f83c997
SHA-256: 4e9580dbc6d4728218b6c26921a6faa09d7a420fccc0c7b63bb21bcbae7b1d65
Size: 22.11 MB - kernel-devel-2.6.18-348.4.AXS3.x86_64.rpm
MD5: 29f29e99e2280b86c89632408500e2ae
SHA-256: 334c756192b9a23c7ab50d259b2032cfeaea7f971fc2f4c6c17f163f02a1e1fa
Size: 6.05 MB - kernel-doc-2.6.18-348.4.AXS3.noarch.rpm
MD5: a0f0f8b4dc5e78cabb6fecbfe8e8f2db
SHA-256: 6df134126198d1836f2de21cbefb0e1f8a826004c1eb77f1bd22049d72a72b98
Size: 3.48 MB - kernel-headers-2.6.18-348.4.AXS3.x86_64.rpm
MD5: c142b514cbbc5193f806cc04dc27704a
SHA-256: 14eaa95f63c3a4646888ac73d53035ff9f689e8fdc20195260c8d3b91e7d289e
Size: 1.48 MB - kernel-xen-2.6.18-348.4.AXS3.x86_64.rpm
MD5: 2e10e97211b6bddeee7277cc301419a2
SHA-256: bc89030befe9e042df4b9888983a409c7d4a122e6ef54bc374b14aac6d76cd1a
Size: 22.97 MB - kernel-xen-devel-2.6.18-348.4.AXS3.x86_64.rpm
MD5: 47effef57b6f8cba1e609a13ef131a52
SHA-256: 85266894eac53313a0088a86be9cede5d88d3fd107cccbbdeae513d3b3ddb83f
Size: 6.05 MB