Mandrake Linux Security Advisory : kernel (MDKSA-2004:029)

medium Nessus Plugin ID 14128

Synopsis

The remote Mandrake Linux host is missing one or more security updates.

Description

A vulnerability was found in the R128 DRI driver by Alan Cox. This could allow local privilege escalation. The previous fix, in MDKSA-2004:015 only partially corrected the problem; the full fix is included (CVE-2004-0003).

A local root vulnerability was discovered in the isofs component of the Linux kernel by iDefense. This vulnerability can be triggered by performing a directory listing on a maliciously constructed ISO filesystem, or attempting to access a file via a malformed symlink on such a filesystem (CVE-2004-0109).

An information leak was discovered in the ext3 filesystem code by Solar Designer. It was discovered that when creating or writing to an ext3 filesystem, some amount of other in-memory data gets written to the device. The data is not the file's contents, not something on the same filesystem, or even anything that was previously in a file at all. To obtain this data, a user needs to read the raw device (CVE-2004-0177).

The same vulnerability was also found in the XFS filesystem code (CVE-2004-0133) and the JFS filesystem code (CVE-2004-0181).

Finally, a vulnerability in the OSS code for SoundBlaster 16 devices was discovered by Andreas Kies. It is possible for local users with access to the sound system to crash the machine (CVE-2004-0178).

The provided packages are patched to fix these vulnerabilities. All users are encouraged to upgrade to these updated kernels.

To update your kernel, please follow the directions located at :

http://www.mandrakesecure.net/en/kernelupdate.php

Solution

Update the affected packages.

Plugin Details

Severity: Medium

ID: 14128

File Name: mandrake_MDKSA-2004-029.nasl

Version: 1.20

Type: local

Published: 7/31/2004

Updated: 1/6/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.8

CVSS v2

Risk Factor: Medium

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Information

CPE: p-cpe:/a:mandriva:linux:kernel-2.4.21.0.29mdk, p-cpe:/a:mandriva:linux:kernel-2.4.22.29mdk, p-cpe:/a:mandriva:linux:kernel-2.4.25.3mdk, p-cpe:/a:mandriva:linux:kernel-2.6.3.8mdk, p-cpe:/a:mandriva:linux:kernel-enterprise-2.4.21.0.29mdk, p-cpe:/a:mandriva:linux:kernel-enterprise-2.4.22.29mdk, p-cpe:/a:mandriva:linux:kernel-enterprise-2.4.25.3mdk, p-cpe:/a:mandriva:linux:kernel-enterprise-2.6.3.8mdk, p-cpe:/a:mandriva:linux:kernel-i686-up-4gb-2.4.22.29mdk, p-cpe:/a:mandriva:linux:kernel-i686-up-4gb-2.4.25.3mdk, p-cpe:/a:mandriva:linux:kernel-i686-up-4gb-2.6.3.8mdk, p-cpe:/a:mandriva:linux:kernel-p3-smp-64gb-2.4.22.29mdk, p-cpe:/a:mandriva:linux:kernel-p3-smp-64gb-2.4.25.3mdk, p-cpe:/a:mandriva:linux:kernel-p3-smp-64gb-2.6.3.8mdk, p-cpe:/a:mandriva:linux:kernel-secure-2.4.21.0.29mdk, p-cpe:/a:mandriva:linux:kernel-secure-2.4.22.29mdk, p-cpe:/a:mandriva:linux:kernel-secure-2.6.3.8mdk, p-cpe:/a:mandriva:linux:kernel-smp-2.4.21.0.29mdk, p-cpe:/a:mandriva:linux:kernel-smp-2.4.22.29mdk, p-cpe:/a:mandriva:linux:kernel-smp-2.4.25.3mdk, p-cpe:/a:mandriva:linux:kernel-smp-2.6.3.8mdk, p-cpe:/a:mandriva:linux:kernel-source, p-cpe:/a:mandriva:linux:kernel-source-stripped, cpe:/o:mandrakesoft:mandrake_linux:10.0, cpe:/o:mandrakesoft:mandrake_linux:9.1, cpe:/o:mandrakesoft:mandrake_linux:9.2

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Mandrake/release, Host/Mandrake/rpm-list

Patch Publication Date: 4/14/2004

Reference Information

CVE: CVE-2004-0003, CVE-2004-0109, CVE-2004-0133, CVE-2004-0177, CVE-2004-0178, CVE-2004-0181

MDKSA: 2004:029