Linux Kernel mmap_min_addr低内存区空指针引用漏洞

admin
admin
admin
0
文章
0
评论
2022-07-23 15:24:33 CNNVD漏洞 来源:ZONE.CI 全球网 0 阅读模式

漏洞信息详情

Linux Kernel mmap_min_addr低内存区空指针引用漏洞

  • CNNVD编号:CNNVD-200908-464
  • 危害等级: 中危
  • CVE编号: CVE-2009-2695
  • 漏洞类型: 缓冲区溢出
  • 发布时间: 2009-08-28
  • 威胁类型: 本地
  • 更新时间: 2009-09-01
  • 厂        商: linux
  • 漏洞来源: Eric Paris※ eparis...

漏洞简介

Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Red Hat Enterprise Linux 5.3的selinux-policy软件包提供了SELinux布尔值allow_unconfined_mmap_low,用于控制是否对在不受限制域(如unconfined_t或initrc_t)中所运行的进程应用mmap_min_addr限制。但allow_unconfined_mmap_low布尔值设置没有正确地应用到unconfined_t域,即使设置为关闭仍允许将unconfined_t进程映射到低内存页。本地用户可以利用这个漏洞绕过mmap_min_addr保护机制触发空指针引用,导致内核崩溃或以超级用户权限执行任意指令。

漏洞公告

目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接: Ubuntu Ubuntu Linux 8.10 powerpc Ubuntu linux-doc-2.6.27_2.6.27-15.43_all.deb http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-doc-2.6.27_2 .6.27-15.43_all.deb Ubuntu linux-headers-2.6.27-15_2.6.27-15.43_all.deb http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6. 27-15_2.6.27-15.43_all.deb Ubuntu linux-source-2.6.27_2.6.27-15.43_all.deb http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-source-2.6.2 7_2.6.27-15.43_all.deb Debian Linux 5.0 alpha Debian linux-doc-2.6.26_2.6.26-19lenny1_all.deb http://security.debian.org/pool/updates/main/l/linux-2.6/linux-doc-2.6 .26_2.6.26-19lenny1_all.deb Debian linux-headers-2.6.26-2-all-alpha_2.6.26-19lenny1_alpha.deb http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers -2.6.26-2-all-alpha_2.6.26-19lenny1_alpha.deb Debian linux-headers-2.6.26-2-all_2.6.26-19lenny1_alpha.deb http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers -2.6.26-2-all_2.6.26-19lenny1_alpha.deb Debian linux-headers-2.6.26-2-alpha-generic_2.6.26-19lenny1_alpha.deb http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers -2.6.26-2-alpha-generic_2.6.26-19lenny1_alpha.deb Debian linux-headers-2.6.26-2-alpha-legacy_2.6.26-19lenny1_alpha.deb http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers -2.6.26-2-alpha-legacy_2.6.26-19lenny1_alpha.deb Debian linux-headers-2.6.26-2-alpha-smp_2.6.26-19lenny1_alpha.deb http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers -2.6.26-2-alpha-smp_2.6.26-19lenny1_alpha.deb Debian linux-headers-2.6.26-2-common_2.6.26-19lenny1_alpha.deb http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers -2.6.26-2-common_2.6.26-19lenny1_alpha.deb Debian linux-image-2.6.26-2-alpha-generic_2.6.26-19lenny1_alpha.deb http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2 .6.26-2-alpha-generic_2.6.26-19lenny1_alpha.deb Debian linux-image-2.6.26-2-alpha-legacy_2.6.26-19lenny1_alpha.deb http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2 .6.26-2-alpha-legacy_2.6.26-19lenny1_alpha.deb Debian linux-image-2.6.26-2-alpha-smp_2.6.26-19lenny1_alpha.deb http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2 .6.26-2-alpha-smp_2.6.26-19lenny1_alpha.deb Debian linux-libc-dev_2.6.26-19lenny1_alpha.deb http://security.debian.org/pool/updates/main/l/linux-2.6/linux-libc-de v_2.6.26-19lenny1_alpha.deb Debian linux-manual-2.6.26_2.6.26-19lenny1_all.deb http://security.debian.org/pool/updates/main/l/linux-2.6/linux-manual- 2.6.26_2.6.26-19lenny1_all.deb Debian linux-patch-debian-2.6.26_2.6.26-19lenny1_all.deb http://security.debian.org/pool/updates/main/l/linux-2.6/linux-patch-d ebian-2.6.26_2.6.26-19lenny1_all.deb Debian linux-source-2.6.26_2.6.26-19lenny1_all.deb http://security.debian.org/pool/updates/main/l/linux-2.6/linux-source- 2.6.26_2.6.26-19lenny1_all.deb Debian linux-support-2.6.26-2_2.6.26-19lenny1_all.deb http://security.debian.org/pool/updates/main/l/linux-2.6/linux-support -2.6.26-2_2.6.26-19lenny1_all.deb Debian linux-tree-2.6.26_2.6.26-19lenny1_all.deb http://security.debian.org/pool/updates/main/l/linux-2.6/linux-tree-2. 6.26_2.6.26-19lenny1_all.deb Ubuntu Ubuntu Linux 9.04 sparc Ubuntu linux-doc-2.6.28_2.6.28-16.55_all.deb http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-doc-2.6.28_2 .6.28-16.55_all.deb Ubuntu linux-headers-2.6.28-16_2.6.28-16.55_all.deb http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6. 28-16_2.6.28-16.55_all.deb Ubuntu linux-source-2.6.28_2.6.28-16.55_all.deb http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-source-2.6.2 8_2.6.28-16.55_all.deb Ubuntu Ubuntu Linux 8.10 sparc Ubuntu linux-doc-2.6.27_2.6.27-15.43_all.deb http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-doc-2.6.27_2 .6.27-15.43_all.deb Ubuntu linux-headers-2.6.27-15_2.6.27-15.43_all.deb http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6. 27-15_2.6.27-15.43_all.deb Ubuntu linux-source-2.6.27_2.6.27-15.43_all.deb http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-source-2.6.2 7_2.6.27-15.43_all.deb Ubuntu Ubuntu Linux 9.04 lpia Ubuntu block-modules-2.6.28-16-lpia-di_2.6.28-16.55_lpia.udeb http://ports.ubuntu.com/pool/main/l/linux/block-modules-2.6.28-16-lpia -di_2.6.28-16.55_lpia.udeb Ubuntu crypto-modules-2.6.28-16-lpia-di_2.6.28-16.55_lpia.udeb http://ports.ubuntu.com/pool/main/l/linux/crypto-modules-2.6.28-16-lpi a-di_2.6.28-16.55_lpia.udeb Ubuntu fat-modules-2.6.28-16-lpia-di_2.6.28-16.55_lpia.udeb http://ports.ubuntu.com/pool/main/l/linux/fat-modules-2.6.28-16-lpia-d i_2.6.28-16.55_lpia.udeb Ubuntu fb-modules-2.6.28-16-lpia-di_2.6.28-16.55_lpia.udeb http://ports.ubuntu.com/pool/main/l/linux/fb-modules-2.6.28-16-lpia-di _2.6.28-16.55_lpia.udeb Ubuntu firewire-core-modules-2.6.28-16-lpia-di_2.6.28-16.55_lpia.udeb http://ports.ubuntu.com/pool/main/l/linux/firewire-core-modules-2.6.28 -16-lpia-di_2.6.28-16.55_lpia.udeb Ubuntu floppy-modules-2.6.28-16-lpia-di_2.6.28-16.55_lpia.udeb http://ports.ubuntu.com/pool/main/l/linux/floppy-modules-2.6.28-16-lpi a-di_2.6.28-16.55_lpia.udeb Ubuntu fs-core-modules-2.6.28-16-lpia-di_2.6.28-16.55_lpia.udeb http://ports.ubuntu.com/pool/main/l/linux/fs-core-modules-2.6.28-16-lp ia-di_2.6.28-16.55_lpia.udeb Ubuntu fs-secondary-modules-2.6.28-16-lpia-di_2.6.28-16.55_lpia.udeb http://ports.ubuntu.com/pool/main/l/linux/fs-secondary-modules-2.6.28- 16-lpia-di_2.6.28-16.55_lpia.udeb Ubuntu input-modules-2.6.28-16-lpia-di_2.6.28-16.55_lpia.udeb http://ports.ubuntu.com/pool/main/l/linux/input-modules-2.6.28-16-lpia -di_2.6.28-16.55_lpia.udeb Ubuntu irda-modules-2.6.28-16-lpia-di_2.6.28-16.55_lpia.udeb http://ports.ubuntu.com/pool/main/l/linux/irda-modules-2.6.28-16-lpia- di_2.6.28-16.55_lpia.udeb Ubuntu kernel-image-2.6.28-16-lpia-di_2.6.28-16.55_lpia.udeb http://ports.ubuntu.com/pool/main/l/linux/kernel-image-2.6.28-16-lpia- di_2.6.28-16.55_lpia.udeb Ubuntu linux-doc-2.6.28_2.6.28-16.55_all.deb http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-doc-2.6.28_2 .6.28-16.55_all.deb Ubuntu linux-headers-2.6.28-16-lpia_2.6.28-16.55_lpia.deb http://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.28-16-lpia _2.6.28-16.55_lpia.deb Ubuntu linux-headers-2.6.28-16_2.6.28-16.55_all.deb http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6. 28-16_2.6.28-16.55_all.deb Ubuntu linux-image-2.6.28-16-lpia_2.6.28-16.55_lpia.deb http://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.28-16-lpia_2 .6.28-16.55_lpia.deb Ubuntu linux-libc-dev_2.6.28-16.55_lpia.deb http://ports.ubuntu.com/pool/main/l/linux/linux-libc-dev_2.6.28-16.55_ lpia.deb Ubuntu linux-source-2.6.28_2.6.28-16.55_all.deb http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-source-2.6.2 8_2.6.28-16.55_all.deb Ubuntu md-modules-2.6.28-16-lpia-di_2.6.28-16.55_lpia.udeb http://ports.ubuntu.com/pool/main/l/linux/md-modules-2.6.28-16-lpia-di _2.6.28-16.55_lpia.udeb Ubuntu message-modules-2.6.28-16-lpia-di_2.6.28-16.55_lpia.udeb http://ports.ubuntu.com/pool/main/l/linux/message-modules-2.6.28-16-lp ia-di_2.6.28-16.55_lpia.udeb Ubuntu mouse-modules-2.6.28-16-lpia-di_2.6.28-16.55_lpia.udeb http://ports.ubuntu.com/pool/main/l/linux/mouse-modules-2.6.28-16-lpia -di_2.6.28-16.55_lpia.udeb Ubuntu nfs-modules-2.6.28-16-lpia-di_2.6.28-16.55_lpia.udeb http://ports.ubuntu.com/pool/main/l/linux/nfs-modules-2.6.28-16-lpia-d i_2.6.28-16.55_lpia.udeb Ubuntu nic-modules-2.6.28-16-lpia-di_2.6.28-16.55_lpia.udeb http://ports.ubuntu.com/pool/main/l/linux/nic-modules-2.6.28-16-lpia-d i_2.6.28-16.55_lpia.udeb Ubuntu nic-pcmcia-modules-2.6.28-16-lpia-di_2.6.28-16.55_lpia.udeb http://ports.ubuntu.com/pool/main/l/linux/nic-pcmcia-modules-2.6.28-16 -lpia-di_2.6.28-16.55_lpia.udeb Ubuntu nic-shared-modules-2.6.28-16-lpia-di_2.6.28-16.55_lpia.udeb http://ports.ubuntu.com/pool/main/l/linux/nic-shared-modules-2.6.28-16 -lpia-di_2.6.28-16.55_lpia.udeb Ubuntu nic-usb-modules-2.6.28-16-lpia-di_2.6.28-16.55_lpia.udeb http://ports.ubuntu.com/pool/main/l/linux/nic-usb-modules-2.6.28-16-lp ia-di_2.6.28-16.55_lpia.udeb Ubuntu parport-modules

参考网址

来源: BID 名称: 36051 链接:http://www.securityfocus.com/bid/36051 来源: patchwork.kernel.or 链接:http://patchwork.kernel.org/patch/36649/ 来源: FEDORA 名称: FEDORA-2009-9044 链接:https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01256.HTML 来源: REDHAT 名称: RHSA-2009:1548 链接:https://rhn.redhat.com/errata/RHSA-2009-1548.HTML 来源: REDHAT 名称: RHSA-2009:1540 链接:https://rhn.redhat.com/errata/RHSA-2009-1540.HTML 来源: bugzilla.redhat.com 链接:https://bugzilla.redhat.com/show_bug.cgi?id=517830 来源: bugzilla.redhat.com 链接:https://bugzilla.redhat.com/show_bug.cgi?id=511143 来源: MLIST 名称: [oss-security] 20090817 SELinux and mmap_min_addr behaviour (CVE-2009-2695) 链接:http://www.openwall.com/lists/oss-security/2009/08/17/4 来源: www.kernel.org 链接:http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.31-rc7 来源: MISC 链接:http://twitter.com/spendergrsec/statuses/3303390960 来源: thread.gmane.org 链接:http://thread.gmane.org/gmane.linux.kernel.lsm/9075 来源: SECUNIA 名称: 36501 链接:http://secunia.com/advisories/36501 来源: patchwork.kernel.org 链接:http://patchwork.kernel.org/patch/36650/ 来源: patchwork.kernel.org 链接:http://patchwork.kernel.org/patch/36540/ 来源: patchwork.kernel.org 链接:http://patchwork.kernel.org/patch/36539/ 来源: kbase.redhat.com 链接:http://kbase.redhat.com/faq/docs/DOC-18042 来源: git.kernel.org 链接:http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ab5a91a8364c3d6fc617abc47cc81d162c01d90a 来源: git.kernel.org 链接:http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9c0d90103c7e0eb6e638e5b649e9f6d8d9c1b4b3 来源: git.kernel.org 链接:http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=8cf948e744e0218af604c32edecde10006dc8e9e 来源: git.kernel.org 链接:http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=788084aba2ab7348257597496befcbccabdc98a3 来源: git.kernel.org 链接:http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=1d9959734a1949ea4f2427bd2d8b21ede6b2441c 来源: git.kernel.org 链接:http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=a2551df7ec568d87793d2eea4ca744e86318f205 来源: git.kernel.org 链接:http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=84336d1a77ccd2c06a730ddd38e695c2324a7386 来源: git.kernel.org 链接:http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=7c73875e7dda627040b12c19b01db634fa7f0fd1 来源: git.kernel.org 链接:http://git.kernel.org/?p=linux/kernel/git/jmorris/security-testing-2.6.git;a=commit;h=47d439e9fb8a81a90022cfa785bf1c36c4e2aff6 来源: eparis.livejournal.com 链接:http://eparis.livejournal.com/606.HTML 来源: danwalsh.livejournal.com 链接:http://danwalsh.livejournal.com/30084.HTML

受影响实体

  • Linux Linux_kernel:2.6.16.32  
  • Linux Linux_kernel:2.6.16.33  
  • Linux Linux_kernel:2.6.16.34  
  • Linux Linux_kernel:2.6.16.35  
  • Linux Linux_kernel:2.6.16.36  

补丁

    暂无

weinxin
特别声明
本站(ZONE.CI)所有文章仅供技术研究,若将其信息做其他用途,由用户承担全部法律及连带责任,本站不承担任何法律及连带责任,请遵守中华人民共和国安全法.
ZONE.CI 全球网 | 安全领域涉猎者-乌云独行地带
咨询加Q:999999999
ZONE.CI 全球网 | 安全领域涉猎者-乌云独行地带
ZONE.CI 全球网 安全领域涉猎者-乌云独行地带
获取本源码
售前咨询加Q:120433200
站媒体网仿《知更鸟》模板
获取本源码 zmt6.com
评论:0   参与:  0