漏洞信息详情
Linux 核心 'isdn_ppp.c' ISDN PPP远程拒绝服务漏洞
- CNNVD编号:CNNVD-200612-632
- 危害等级: 中危
- CVE编号: CVE-2006-5749
- 漏洞类型: 其他
- 发布时间: 2006-12-31
- 威胁类型: 本地
- 更新时间: 2007-01-04
- 厂 商: linux
- 漏洞来源: The vendor reporte...
漏洞简介
Linux 2.4 kernel的2.4.34-rc4之前版本中的drivers/isdn/isdn_ppp.c中的isdn_ppp_ccp_reset_alloc_state函数没有为ISDN PPP CCP复位状态定时器调用init_timer函数,具有未知攻击向量并导致系统崩溃。
漏洞公告
目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:
S.u.S.E. Linux 10.0 ppc
SuSE kernel-default-2.6.16.27-0.9.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/kernel-default-2.6.16. 27-0.9.ppc.rpm
SuSE kernel-iseries64-2.6.16.27-0.9.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/kernel-iseries64-2.6.1 6.27-0.9.ppc.rpm
SuSE kernel-kdump-2.6.16.27-0.9.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/kernel-kdump-2.6.16.27 -0.9.ppc.rpm
SuSE kernel-ppc64-2.6.16.27-0.9.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/kernel-ppc64-2.6.16.27 -0.9.ppc.rpm
SuSE kernel-source-2.6.16.27-0.9.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/kernel-source-2.6.16.2 7-0.9.ppc.rpm
SuSE kernel-syms-2.6.16.27-0.9.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/kernel-syms-2.6.16.27- 0.9.ppc.rpm
SuSE mkinitrd-1.2-106.27.2.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/mkinitrd-1.2-106.27.2. ppc.rpm
SuSE multipath-tools-0.4.6-25.18.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/multipath-tools-0.4.6- 25.18.ppc.rpm
SuSE open-iscsi-0.5.545-9.17.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/open-iscsi-0.5.545-9.1 7.ppc.rpm
SuSE udev-085-30.18.1.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/udev-085-30.18.1.ppc.r pm
S.u.S.E. Linux 10.0 x86
SuSE open-iscsi-0.5.545-9.17.i586.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/open-iscsi-0.5.545-9. 17.i586.rpm
SuSE udev-085-30.18.1.i586.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/udev-085-30.18.1.i586 .rpm
S.u.S.E. Linux 10.1 x86-64
SuSE kernel-debug-2.6.16.27-0.9.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/kernel-debug-2.6.16 .27-0.9.x86_64.rpm
SuSE kernel-default-2.6.16.27-0.9.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/kernel-default-2.6. 16.27-0.9.x86_64.rpm
SuSE kernel-kdump-2.6.16.27-0.9.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/kernel-kdump-2.6.16 .27-0.9.x86_64.rpm
SuSE kernel-smp-2.6.16.27-0.9.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/kernel-smp-2.6.16.2 7-0.9.x86_64.rpm
SuSE kernel-source-2.6.16.27-0.9.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/kernel-source-2.6.1 6.27-0.9.x86_64.rpm
SuSE kernel-syms-2.6.16.27-0.9.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/kernel-syms-2.6.16. 27-0.9.x86_64.rpm
SuSE kernel-xen-2.6.16.27-0.9.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/kernel-xen-2.6.16.2 7-0.9.x86_64.rpm
SuSE kexec-tools-1.101-32.22.1.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/kexec-tools-1.101-3 2.22.1.x86_64.rpm
SuSE mkinitrd-1.2-106.27.2.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/mkinitrd-1.2-106.27 .2.x86_64.rpm
SuSE multipath-tools-0.4.6-25.18.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/multipath-tools-0.4 .6-25.18.x86_64.rpm
SuSE open-iscsi-0.5.545-9.17.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/open-iscsi-0.5.545- 9.17.x86_64.rpm
SuSE udev-085-30.18.1.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/udev-085-30.18.1.x8 6_64.rpm
S.u.S.E. Linux 10.1 x86
SuSE kernel-bigsmp-2.6.16.27-0.9.i586.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/kernel-bigsmp-2.6.16. 27-0.9.i586.rpm
SuSE kernel-debug-2.6.16.27-0.9.i586.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/kernel-debug-2.6.16.2 7-0.9.i586.rpm
SuSE kernel-default-2.6.16.27-0.9.i586.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/kernel-default-2.6.16 .27-0.9.i586.rpm
SuSE kernel-kdump-2.6.16.27-0.9.
参考网址
来源: SECUNIA
名称: 23529
链接:http://secunia.com/advisories/23529
来源: www.kernel.org
链接:http://www.kernel.org/git/?p=linux/kernel/git/wtarreau/linux-2.4.git;a=commitdiff;h=05dca9b77f99d80cf615075624666106d5b61727
来源: www.kernel.org
链接:http://kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.34
来源: UBUNTU
名称: USN-416-1
链接:http://www.ubuntu.com/usn/usn-416-1
来源: TRUSTIX
名称: 2007-0002
链接:http://www.trustix.org/errata/2007/0002/
来源: BID
名称: 21883
链接:http://www.securityfocus.com/bid/21883
来源: BID
名称: 21835
链接:http://www.securityfocus.com/bid/21835
来源: BUGTRAQ
名称: 20070615 rPSA-2007-0124-1 kernel xen
链接:http://www.securityfocus.com/archive/1/471457
来源: SUSE
名称: SUSE-SA:2007:035
链接:http://www.novell.com/linux/security/advisories/2007_35_kernel.HTML
来源: SUSE
名称: SUSE-SA:2007:030
链接:http://www.novell.com/linux/security/advisories/2007_30_kernel.HTML
来源: SUSE
名称: SUSE-SA:2007:021
链接:http://www.novell.com/linux/security/advisories/2007_21_kernel.HTML
来源: SUSE
名称: SUSE-SA:2007:018
链接:http://www.novell.com/linux/security/advisories/2007_18_kernel.HTML
来源: MANDRIVA
名称: MDKSA-2007:040
链接:http://www.mandriva.com/security/advisories?name=MDKSA-2007:040
来源: MANDRIVA
名称: MDKSA-2007:025
链接:http://www.mandriva.com/security/advisories?name=MDKSA-2007:025
来源: MANDRIVA
名称: MDKSA-2007:012
链接:http://www.mandriva.com/security/advisories?name=MDKSA-2007:012
来源: SECUNIA
名称: 25691
链接:http://secunia.com/advisories/25691
来源: SECUNIA
名称: 25683
链接:http://secunia.com/advisories/25683
来源: SECUNIA
名称: 25226
链接:http://secunia.com/advisories/25226
来源: SECUNIA
名称: 24547
链接:http://secunia.com/advisories/24547
来源: SECUNIA
名称: 24100
链接:http://secunia.com/advisories/24100
来源: SECUNIA
名称: 24098
链接:http://secunia.com/advisories/24098
来源: SECUNIA
名称: 23752
链接:http://secunia.com/advisories/23752
来源: SECUNIA
名称: 23609
链接:http://secunia.com/advisories/23609
来源: MANDRIVA
名称: MDKSA-2007:040
链接:http://frontal2.mandriva.com/security/advisories?name=MDKSA-2007:040
来源: MANDRIVA
名称: MDKSA-2007:025
链接:http://frontal2.mandriva.com/security/advisories?name=MDKSA-2007:025
来源: MANDRIVA
名称: MDKSA-2007:012
链接:http://frontal2.mandriva.com/security/advisories?name=MDKSA-2007:012
受影响实体
- Linux Linux_kernel:2.4.34:Rc3
补丁
暂无
![weinxin](http://zone.ci/zone_ci_images/zone.ci.png)
评论