漏洞信息详情
Linux内核 'vlan_dev.c'拒绝服务漏洞
- CNNVD编号:CNNVD-200508-111
- 危害等级: 低危
- CVE编号: CVE-2005-2548
- 漏洞类型: 资源管理错误
- 发布时间: 2005-08-12
- 威胁类型: 远程
- 更新时间: 2006-06-14
- 厂 商: linux
- 漏洞来源: Peter Sandstrom is...
漏洞简介
Linux内核2.6.8的VLAN代码中的vlan_dev.c远程攻击者可以借助于特定UDP包(导致以错误的参数进行函数调用)造成拒绝服务(空解引用导致的内核oops),正如对snmpd使用snmpwalk命令。
漏洞公告
目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:
Linux kernel 2.6.8 rc1
Mandriva kernel-2.6.8.1.26mdk-1-1mdk.i586.rpm
Mandriva Linux 10.1:
http://www1.mandrivalinux.com/en/ftp.php3
Mandriva kernel-2.6.8.1.26mdk-1-1mdk.x86_64.rpm
Mandriva Linux 10.1/X86_64:
http://www1.mandrivalinux.com/en/ftp.php3
Mandriva kernel-enterprise-2.6.8.1.26mdk-1-1mdk.i586.rpm
Mandriva Linux 10.1:
http://www1.mandrivalinux.com/en/ftp.php3
Mandriva kernel-i586-up-1GB-2.6.8.1.26mdk-1-1mdk.i586.rpm
Mandriva Linux 10.1:
http://www1.mandrivalinux.com/en/ftp.php3
Mandriva kernel-i686-up-64GB-2.6.8.1.26mdk-1-1mdk.i586.rpm
Mandriva Linux 10.1:
http://www1.mandrivalinux.com/en/ftp.php3
Mandriva kernel-secure-2.6.8.1.26mdk-1-1mdk.i586.rpm
Mandriva Linux 10.1:
http://www1.mandrivalinux.com/en/ftp.php3
Mandriva kernel-secure-2.6.8.1.26mdk-1-1mdk.x86_64.rpm
Mandriva Linux 10.1/X86_64:
http://www1.mandrivalinux.com/en/ftp.php3
Mandriva kernel-smp-2.6.8.1.26mdk-1-1mdk.i586.rpm
Mandriva Linux 10.1:
http://www1.mandrivalinux.com/en/ftp.php3
Mandriva kernel-smp-2.6.8.1.26mdk-1-1mdk.x86_64.rpm
Mandriva Linux 10.1/X86_64:
http://www1.mandrivalinux.com/en/ftp.php3
Mandriva kernel-source-2.6-2.6.8.1-26mdk.i586.rpm
Mandriva Linux 10.1:
http://www1.mandrivalinux.com/en/ftp.php3
Mandriva kernel-source-2.6-2.6.8.1-26mdk.x86_64.rpm
Mandriva Linux 10.1/X86_64:
http://www1.mandrivalinux.com/en/ftp.php3
Mandriva kernel-source-stripped-2.6-2.6.8.1-26mdk.i586.rpm
Mandriva Linux 10.1:
http://www1.mandrivalinux.com/en/ftp.php3
Mandriva kernel-source-stripped-2.6-2.6.8.1-26mdk.x86_64.rpm
Mandriva Linux 10.1/X86_64:
http://www1.mandrivalinux.com/en/ftp.php3
参考网址
来源: UBUNTU
名称: USN-169-1
链接:http://www.ubuntulinux.org/support/documentation/usn/usn-169-1
来源: BID
名称: 14611
链接:http://www.securityfocus.com/bid/14611
来源: DEBIAN
名称: DSA-922
链接:http://www.debian.org/security/2005/dsa-922
来源: SECUNIA
名称: 18056
链接:http://secunia.com/advisories/18056
来源: SECUNIA
名称: 17826
链接:http://secunia.com/advisories/17826
来源: lists.osdl.org
链接:http://lists.osdl.org/pipermail/bridge/2004-September/000638.HTML
来源: MANDRAKE
名称: MDKSA-2005:219
链接:http://frontal2.mandriva.com/security/advisories?name=MDKSA-2005:219
来源: bugs.debian.org
链接:http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=309308
来源: MANDRAKE
名称: MDKSA-2005:219
链接:http://www.mandriva.com/security/advisories?name=MDKSA-2005:219
受影响实体
- Linux Linux_kernel:2.6.8
补丁
暂无
评论