CERT-In Advisory CIAD-2010-14
Linux Kernel Denial of Service Vulnerabilities
Original issue date:
March 05, 2010
Systems Affected
- Linux Kernel versions 2.6.32.x
Overview
Two vulnerabilities have been reported in Linux Kernel, which can be exploited by attackers to cause a Denial of Service condition (DoS).
Description
The vulnerability notes released by CERT-In with reference to Linux Kernel Security Updates are given below:
| Title |
Severity |
CERT-In Vulnerability Notes |
| Linux Kernel RTO Remote Denial of Service Vulnerability |
Medium |
CIVN-2010-46:
Linux Kernel RTO Remote Denial of Service Vulnerability
|
| Linux Kernel NFS file Local Denial of Service Vulnerability |
Medium |
CIVN-2010-47:
Linux Kernel NFS file Local Denial of Service Vulnerability |
Solution
Upgrade to Kernel version 2.6.33
http://www.kernel.org/
Vendor Information
kernel.org
http://www.kernel.org/
References
SecurityFocus
http://www.securityfocus.com/bid/38355/
Secunia
http://secunia.com/advisories/38594/
GIT Kernel
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=598856407d4e20ebb4de01a91a93d89325924d43
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9f557cd8073104b39528794d44e129331ded649f
Disclaimer
The information provided herein is on "as is" basis, without warranty of any kind.
Contact Information
Phone: +91-11-24368572
Postal address
Indian Computer Emergency Response Team (CERT-In)
Ministry of Communications and Information Technology
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003
|
