[SECURITY] [DSA 441-1] New Linux 2.4.17 packages fix local root exploit (mips+mipsel)

From: Martin Schulze (joey_at_infodrom.org)
Date: 02/18/04

  • Next message: Gadi Evron: "OT: reports of a Trojan horse in the Arrow project" 
    Date: Wed, 18 Feb 2004 16:29:54 +0100 (CET)
To: bugtraq@securityfocus.com

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1

    - --------------------------------------------------------------------------
    Debian Security Advisory DSA 441-1 security@debian.org
    http://www.debian.org/security/ Martin Schulze
    February 18th, 2004 http://www.debian.org/security/faq
    - --------------------------------------------------------------------------

    Package : kernel-patch-2.4.17-mips
    Vulnerability : missing function return value check
    Problem-Type : local
    Debian-specific: no
    CVE ID : CAN-2004-0077

    Paul Starzetz and Wojciech Purczynski of isec.pl discovered a critical
    security vulnerability in the memory management code of Linux inside
    the mremap(2) system call. Due to missing function return value check
    of internal functions a local attacker can gain root privileges.

    For the stable distribution (woody) this problem has been fixed in
    version 2.4.17-0.020226.2.woody5 for mips and mipsel kernel images.

    Other architectures will probably mentioned in a separate advisory or
    are not affected (m68k).

    For the unstable distribution (sid) this problem will be fixed soon
    with the next upload of a 2.4.19 kernel image and in version
    2.4.22-0.030928.3 for 2.4.22 for the mips and mipsel architectures.

    This problem is also fixed in the upstream version of Linux 2.4.25 and
    2.6.3.

    We recommend that you upgrade your Linux kernel packages immediately.

    Upgrade Instructions
    - --------------------

    wget url
            will fetch the file for you
    dpkg -i file.deb
            will install the referenced file.

    If you are using the apt-get package manager, use the line for
    sources.list as given below:

    apt-get update
            will update the internal database
    apt-get upgrade
            will install corrected packages

    You may use an automated update by adding the resources from the
    footer to the proper configuration.

    Debian GNU/Linux 3.0 alias woody
    - --------------------------------

      Source archives:

        http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-mips/kernel-patch-2.4.17-mips_2.4.17-0.020226.2.woody5.dsc
          Size/MD5 checksum: 786 b96d0f387a948cf64a07e6d6c5102b30
        http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-mips/kernel-patch-2.4.17-mips_2.4.17-0.020226.2.woody5.tar.gz Size/MD5 checksum: 1138658 dc1df0219c33c0de14ffd22ea8585ad5

      Architecture independent components:

        http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-mips/kernel-patch-2.4.17-mips_2.4.17-0.020226.2.woody5_all.deb
          Size/MD5 checksum: 1138888 ba735096447ec98541c3d35838348e95

      Big endian MIPS architecture:

        http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-mips/kernel-headers-2.4.17_2.4.17-0.020226.2.woody5_mips.deb
          Size/MD5 checksum: 3475886 0e2394ed3cee2a7dafa2d75a7a2042e6
        http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-mips/kernel-image-2.4.17-r4k-ip22_2.4.17-0.020226.2.woody5_mips.deb
          Size/MD5 checksum: 2042458 1585029d1c0b32ce770a29d74b3720f8
        http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-mips/kernel-image-2.4.17-r5k-ip22_2.4.17-0.020226.2.woody5_mips.deb
          Size/MD5 checksum: 2042414 83894b6f444b63c57a34051be23f8e04

      Little endian MIPS architecture:

        http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-mips/kernel-headers-2.4.17_2.4.17-0.020226.2.woody5_mipsel.deb
          Size/MD5 checksum: 3474568 099f3c8bc36668123c2414aa861805c0
        http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-mips/kernel-image-2.4.17-r3k-kn02_2.4.17-0.020226.2.woody5_mipsel.deb
          Size/MD5 checksum: 2197826 defe3a975447f16b14f5d52b61991458
        http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-mips/kernel-image-2.4.17-r4k-kn04_2.4.17-0.020226.2.woody5_mipsel.deb
          Size/MD5 checksum: 2193704 89fc943ed1530fd0da6ca7a0303acb93
        http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-mips/mips-tools_2.4.17-0.020226.2.woody5_mipsel.deb
          Size/MD5 checksum: 15114 65e08c5c4f432a537641b6b3a76a3c42

      These files will probably be moved into the stable distribution on
      its next revision.

    - ---------------------------------------------------------------------------------
    For apt-get: deb http://security.debian.org/ stable/updates main
    For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
    Mailing list: debian-security-announce@lists.debian.org
    Package info: `apt-cache show <pkg>' and http://packages.debian.org/>

    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v1.2.4 (GNU/Linux)

    iD8DBQFAM4TyW5ql+IAeqTIRAjFfAKCcLvFs46ANIjAfNGN1g1lYCizZ2ACeJMl8
    NKniEaKX2hBjRHeZ+0LS0Ro=
    =7KpS
    -----END PGP SIGNATURE-----

  • Next message: Gadi Evron: "OT: reports of a Trojan horse in the Arrow project"

    Relevant Pages
    Loading