CERT-In Vulnerability Note CIVN-2008-108
Multiple Vulnerabilities in Linux Kernel
Original Issue Date:
July 14, 2008
Severity Rating:
Medium
System Affected
- Linux Kernel versions prior to 2.6.25.10
Overview
Multiple vulnerabilities have been reported in Linux Kernel, which could be exploited by a local attacker to cause a denial of service or potentially gain escalated privileges.
Description
1. Multiple Local Denial-of-Service Vulnerabilities
(CVE-2008-2812)
Multiple NULL-pointer dereference errors exist in
drivers/net/hamradio/6pack.c,
drivers/net/hamradio/mkiss.c,
drivers/net/irda/irtty-sir.c,
drivers/net/ppp_async.c,
drivers/net/ppp_synctty.c,
drivers/net/slip.c,
drivers/net/wan/x25_asy.c, and
drivers/net/wireless/strip.c
when performing tty operations. These can be exploited by a local attacker to crash the kernel or potentially execute arbitrary code with escalated privilege.
2. Linux Kernel x86_64 ptrace Local Memory Corruption Vulnerability (CVE-2008-3077)
An error within the " sys32_ptrace() " function in arch/x86/kernel/ptrace.c in the Linux kernel before 2.6.25.10 on the x86_64 platform can be exploited to overflow the " refcount " field of the " task_struct " structure and trigger multiple use-after-free errors. Successful exploitation of the vulnerability allows a local attacker to cause a denial of service (system crash).
Solution
Upgrade to version 2.6.25.10.
http://www.kernel.org
Vendor Information
Kernel
http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.10
References
SecurityFocus
http://www.securityfocus.com/bid/30076
http://www.securityfocus.com/bid/30077
Secunia
http://secunia.com/advisories/31048/
LWN.net
http://lwn.net/Articles/288473/
CVE Name
CVE-2008-2812
CVE-2008-3077
Disclaimer
The information provided herein is on "as is" basis, without warranty of any kind.
Contact Information
Phone: +91-11-24368572
Postal address
Indian Computer Emergency Response Team (CERT-In)
Ministry of Communications and Information Technology
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003
|
