漏洞信息详情
Linux内核 本地拒绝服务漏洞
- CNNVD编号:CNNVD-200508-257
- 危害等级: 低危
- CVE编号: CVE-2005-2099
- 漏洞类型: 资源管理错误
- 发布时间: 2005-08-23
- 威胁类型: 远程
- 更新时间: 2006-06-14
- 厂 商: linux
- 漏洞来源: David Howells repo...
漏洞简介
Linux内核2.6.12.5之前的版本不能正确地删除未正确实例化的密钥环。这使得本地用户或远程攻击者可以借助于具有非空负载的密钥环造成拒绝服务(内核oops),这造成了创建失败,从而导致密钥环破坏者中产生空的解引用。
漏洞公告
目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:
Linux kernel 2.6 -test6
Linux patch-2.6.13-rc6-git1.bz2
http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.13-rc6-git 1.bz2
Linux kernel 2.6 -test1
Linux patch-2.6.13-rc6-git1.bz2
http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.13-rc6-git 1.bz2
Linux kernel 2.6 -test4
Linux patch-2.6.13-rc6-git1.bz2
http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.13-rc6-git 1.bz2
Linux kernel 2.6 -test7
Linux patch-2.6.13-rc6-git1.bz2
http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.13-rc6-git 1.bz2
Linux kernel 2.6 -test9
Linux patch-2.6.13-rc6-git1.bz2
http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.13-rc6-git 1.bz2
Linux kernel 2.6 -test2
Linux patch-2.6.13-rc6-git1.bz2
http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.13-rc6-git 1.bz2
Linux kernel 2.6 -test8
Linux patch-2.6.13-rc6-git1.bz2
http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.13-rc6-git 1.bz2
Linux kernel 2.6 -test11
Linux patch-2.6.13-rc6-git1.bz2
http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.13-rc6-git 1.bz2
Linux kernel 2.6 -test10
Linux patch-2.6.13-rc6-git1.bz2
http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.13-rc6-git 1.bz2
Linux kernel 2.6 -test9-CVS
Linux patch-2.6.13-rc6-git1.bz2
http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.13-rc6-git 1.bz2
Linux kernel 2.6
Linux patch-2.6.13-rc6-git1.bz2
http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.13-rc6-git 1.bz2
Linux kernel 2.6 -test3
Linux patch-2.6.13-rc6-git1.bz2
http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.13-rc6-git 1.bz2
Linux kernel 2.6 .10
Linux patch-2.6.13-rc6-git1.bz2
http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.13-rc6-git 1.bz2
Linux kernel 2.6 -test5
Linux patch-2.6.13-rc6-git1.bz2
http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.13-rc6-git 1.bz2
Linux kernel 2.6.1 -rc1
Linux patch-2.6.13-rc6-git1.bz2
http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.13-rc6-git 1.bz2
Linux kernel 2.6.1 -rc2
Linux patch-2.6.13-rc6-git1.bz2
http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.13-rc6-git 1.bz2
Linux kernel 2.6.1
Linux patch-2.6.13-rc6-git1.bz2
http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.13-rc6-git 1.bz2
Linux kernel 2.6.10 rc2
Linux patch-2.6.13-rc6-git1.bz2
http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.13-rc6-git 1.bz2
Linux kernel 2.6.10
Linux patch-2.6.13-rc6-git1.bz2
http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.13-rc6-git 1.bz2
Linux kernel 2.6.11 -rc3
Linux patch-2.6.13-rc6-git1.bz2
http://kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.13-rc6-git 1.bz2
参考网址
来源: SECUNIA
名称: 16355
链接:http://secunia.com/advisories/16355/
来源: UBUNTU
名称: USN-169-1
链接:http://www.ubuntulinux.org/support/documentation/usn/usn-169-1
来源: BID
名称: 14517
链接:http://www.securityfocus.com/bid/14517
来源: FEDORA
名称: FLSA:157459-3
链接:http://www.securityfocus.com/archive/1/archive/1/427980/100/0/threaded
来源: REDHAT
名称: RHSA-2005:514
链接:http://www.redhat.com/support/errata/RHSA-2005-514.HTML
来源: SECTRACK
名称: 1014644
链接:http://securitytracker.com/id?1014644
来源: SECUNIA
名称: 17073
链接:http://secunia.com/advisories/17073
来源: kernel.org
链接:http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.12.5
来源: MANDRAKE
名称: MDKSA-2005:220
链接:http://frontal2.mandriva.com/security/advisories?name=MDKSA-2005:220
来源: MANDRAKE
名称: MDKSA-2005:220
链接:http://www.mandriva.com/security/advisories?name=MDKSA-2005:220
受影响实体
- Linux Linux_kernel:2.6.11:Rc2
- Linux Linux_kernel:2.6.11:Rc3
- Linux Linux_kernel:2.6.11:Rc4
- Linux Linux_kernel:2.6.11.1
- Linux Linux_kernel:2.6.11.2
补丁
暂无
评论