kernel-2.6.32-642.6.1.el6
エラータID: AXSA:2016-714:08
リリース日:
2016/10/31 Monday - 12:24
題名:
kernel-2.6.32-642.6.1.el6
影響のあるチャネル:
Asianux Server 4 for x86_64
Asianux Server 4 for x86
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- Linux カーネルの security/keys/key.c における key_reject_and_link 関数は
データ構造を確実に初期化しておらず、ローカルユーザが巧妙に細工された
keyctl request2 コマンドによって、サービス妨害攻撃 (システムクラッシュ) を
引き起こす脆弱性があります。(CVE-2016-4470)
drivers/hid/usbhid/hiddev.c に含まれる hiddev_ioctl_usage 関数には、複数の
ヒープベースのバッファオーバーフローがあり、ローカルユーザにより、
巧妙に細工された (1) HIDIOCGUSAGES または (2) HIDIOCSUSAGES ioctl
呼び出しを介して、サービス拒否 (DoS) 状態にされるなど、不特定の影響
を受ける脆弱性があります。(CVE-2016-5829)
一部CVEの翻訳文はJVNからの引用になります。
http://jvndb.jvn.jp/
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2016-4470
The key_reject_and_link function in security/keys/key.c in the Linux kernel through 4.6.3 does not ensure that a certain data structure is initialized, which allows local users to cause a denial of service (system crash) via vectors involving a crafted keyctl request2 command.
The key_reject_and_link function in security/keys/key.c in the Linux kernel through 4.6.3 does not ensure that a certain data structure is initialized, which allows local users to cause a denial of service (system crash) via vectors involving a crafted keyctl request2 command.
CVE-2016-5829
Multiple heap-based buffer overflows in the hiddev_ioctl_usage function in drivers/hid/usbhid/hiddev.c in the Linux kernel through 4.6.3 allow local users to cause a denial of service or possibly have unspecified other impact via a crafted (1) HIDIOCGUSAGES or (2) HIDIOCSUSAGES ioctl call.
Multiple heap-based buffer overflows in the hiddev_ioctl_usage function in drivers/hid/usbhid/hiddev.c in the Linux kernel through 4.6.3 allow local users to cause a denial of service or possibly have unspecified other impact via a crafted (1) HIDIOCGUSAGES or (2) HIDIOCSUSAGES ioctl call.
追加情報:
N/A
ダウンロード:
SRPMS
- kernel-2.6.32-642.6.1.el6.src.rpm
MD5: f0f38b8a7d6de55665bfbc9c1cbd4170
SHA-256: a55872ac812b67cff8a090565bff4ee70a7d63cce9960a4a1b75ee570b677751
Size: 127.24 MB
Asianux Server 4 for x86
- kernel-2.6.32-642.6.1.el6.i686.rpm
MD5: 14c473fa5a95f828b5bb8f7fc3c86e5f
SHA-256: 798337f99e466a16a1a5d6a6f4d39c7e0bc5d8798b413f9da9f3d7b5fe25ab64
Size: 29.55 MB - kernel-abi-whitelists-2.6.32-642.6.1.el6.noarch.rpm
MD5: 7c19de57d799419029dba7d42e0970da
SHA-256: 0ad4fd95078999c96bdefeedbc058b609a5d026008be779c874abb36df355848
Size: 3.63 MB - kernel-debug-2.6.32-642.6.1.el6.i686.rpm
MD5: 90625a188ebdce4eef716c52714f5233
SHA-256: bd1d9558bb38a13b7be9baf181881db9a7851850cb94d582350012b7e1a46d6d
Size: 30.33 MB - kernel-debug-devel-2.6.32-642.6.1.el6.i686.rpm
MD5: bf98a20e3fbf8435acad143c35f41787
SHA-256: 1416cc95331b03046d3ebcd7c863a9a03c495cf1ce9615d32540033ee30fa472
Size: 10.58 MB - kernel-devel-2.6.32-642.6.1.el6.i686.rpm
MD5: 7888ab90c007097d35d71c65e898eb61
SHA-256: d04722173cce04572df0ec8fe184af3882efe886d08c83c5e090ba2470432582
Size: 10.54 MB - kernel-doc-2.6.32-642.6.1.el6.noarch.rpm
MD5: 53d4eccbea1af93c5dc372b282d2870b
SHA-256: e496466ee6fadf4dcd3cdf9c52149327cae5999cb2a2b4d1d590d26e6d4cb5d6
Size: 12.20 MB - kernel-firmware-2.6.32-642.6.1.el6.noarch.rpm
MD5: 946bb86d303b18eab2e1cd611a84a8d2
SHA-256: eb7d260d0ca5cad0687f277f9838b287066bf267ff9b1381dacc0942a710e61b
Size: 28.06 MB - kernel-headers-2.6.32-642.6.1.el6.i686.rpm
MD5: e51ca0b59834709b0d5c21917cea9e23
SHA-256: 1ba2a2da0d870dce83cfcf0f96a830ce89b64e74f61a8ac6acf26519b41b3879
Size: 4.35 MB - perf-2.6.32-642.6.1.el6.i686.rpm
MD5: 60990c5e58397bf89d7020edbe84e176
SHA-256: 8b59dda9d3c7262bdd9ea673ceebbb87dfcd27f3ebf6d37d364cf9bdd26edb86
Size: 4.58 MB
Asianux Server 4 for x86_64
- kernel-2.6.32-642.6.1.el6.x86_64.rpm
MD5: 59ce001f0ccd5a1c1a28b375fcd8e925
SHA-256: a43a9556cb4ba41c13290c49a0c7c88ef6e052090d6a789aee22e4138ad0da00
Size: 31.85 MB - kernel-abi-whitelists-2.6.32-642.6.1.el6.noarch.rpm
MD5: 18e8a22b2e6fdd8cb3753abf8f8a495a
SHA-256: d0025e80728e9cb1fa3d2a88e001c6ec72361b14b73ecc4657e9367043db3a46
Size: 3.63 MB - kernel-debug-2.6.32-642.6.1.el6.x86_64.rpm
MD5: 12da54a01e508377b20c97439a43fdd2
SHA-256: f8d92df86a7e0b40e8c9fa90687256c30165f7a46bc4c49be6a7ba786f90529a
Size: 32.72 MB - kernel-debug-devel-2.6.32-642.6.1.el6.x86_64.rpm
MD5: a99fe26485cd4e3a1b7b23115be4f93b
SHA-256: 87de39c37bfd19f637886ede883947d8913713dc03abdb6d38e6c259f4d38728
Size: 10.63 MB - kernel-devel-2.6.32-642.6.1.el6.x86_64.rpm
MD5: 5d784b0a42c439bc2bf2ce378d9d8ed6
SHA-256: 21d332c629ecad5f859c240bf2b54c45b79331e371fa6affb5aa79065e17190e
Size: 10.59 MB - kernel-doc-2.6.32-642.6.1.el6.noarch.rpm
MD5: 43b9cac36e4d5ff720a6434681e4f214
SHA-256: a7c2aafbbfc6c975a5dd574d15f9feab2759c63aed15630fd99784bdfbd1679c
Size: 12.20 MB - kernel-firmware-2.6.32-642.6.1.el6.noarch.rpm
MD5: 91879b87de36288a6f0ca55c605420c4
SHA-256: 49bf2c29b1732e1d77797a66d8e5b4ca7b01f2f21f5630ec6bd1e4c4c2d98418
Size: 28.06 MB - kernel-headers-2.6.32-642.6.1.el6.x86_64.rpm
MD5: 1a79c1a6e9a93bff3e6cede46505a230
SHA-256: 8ec4c5fb26f387e66a47955b0384a88b4492bac747fd446dcac94350a7401cbd
Size: 4.35 MB - perf-2.6.32-642.6.1.el6.x86_64.rpm
MD5: c0924e30eabc3492b161db1bdbcdea31
SHA-256: eebdcc2a5434075abc56a8466521146abbd25f1a6e9676350939ae6721b4f50e
Size: 4.55 MB