Mandriva Linux Security Advisory : kernel (MDVSA-2010:172)

high Nessus Plugin ID 49190

Language:

Synopsis

The remote Mandriva Linux host is missing one or more security updates.

Description

Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel :

Buffer overflow in the ecryptfs_uid_hash macro in fs/ecryptfs/messaging.c in the eCryptfs subsystem in the Linux kernel before 2.6.35 might allow local users to gain privileges or cause a denial of service (system crash) via unspecified vectors.
(CVE-2010-2492)

The DNS resolution functionality in the CIFS implementation in the Linux kernel before 2.6.35, when CONFIG_CIFS_DFS_UPCALL is enabled, relies on a user's keyring for the dns_resolver upcall in the cifs.upcall userspace helper, which allows local users to spoof the results of DNS queries and perform arbitrary CIFS mounts via vectors involving an add_key call, related to a cache stuffing issue and MS-DFS referrals. (CVE-2010-2524)

The do_anonymous_page function in mm/memory.c in the Linux kernel before 2.6.27.52, 2.6.32.x before 2.6.32.19, 2.6.34.x before 2.6.34.4, and 2.6.35.x before 2.6.35.2 does not properly separate the stack and the heap, which allows context-dependent attackers to execute arbitrary code by writing to the bottom page of a shared memory segment, as demonstrated by a memory-exhaustion attack against the X.Org X server. (CVE-2010-2240)

Integer overflow in the ext4_ext_get_blocks function in fs/ext4/extents.c in the Linux kernel before 2.6.34 allows local users to cause a denial of service (BUG and system crash) via a write operation on the last block of a large file, followed by a sync operation. (CVE-2010-3015)

To update your kernel, please follow the directions located at :

http://www.mandriva.com/en/security/kernelupdate

Solution

Update the affected packages.

See Also

https://qa.mandriva.com/53220

https://qa.mandriva.com/60727

https://qa.mandriva.com/60946

https://qa.mandriva.com/60948

Plugin Details

Severity: High

ID: 49190

File Name: mandriva_MDVSA-2010-172.nasl

Version: 1.12

Type: local

Published: 9/12/2010

Updated: 1/6/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 7.2

Temporal Score: 6.3

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:mandriva:linux:hsfmodem-kernel-desktop-latest, p-cpe:/a:mandriva:linux:hsfmodem-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:hsfmodem-kernel-server-latest, p-cpe:/a:mandriva:linux:kernel-2.6.33.7-1mnb, p-cpe:/a:mandriva:linux:kernel-desktop-2.6.33.7-1mnb, p-cpe:/a:mandriva:linux:kernel-desktop-devel-2.6.33.7-1mnb, p-cpe:/a:mandriva:linux:kernel-desktop-devel-latest, p-cpe:/a:mandriva:linux:kernel-desktop-latest, p-cpe:/a:mandriva:linux:kernel-desktop586-2.6.33.7-1mnb, p-cpe:/a:mandriva:linux:kernel-desktop586-devel-2.6.33.7-1mnb, p-cpe:/a:mandriva:linux:kernel-desktop586-devel-latest, p-cpe:/a:mandriva:linux:kernel-desktop586-latest, p-cpe:/a:mandriva:linux:kernel-doc, p-cpe:/a:mandriva:linux:kernel-server-2.6.33.7-1mnb, p-cpe:/a:mandriva:linux:kernel-server-devel-2.6.33.7-1mnb, p-cpe:/a:mandriva:linux:kernel-server-devel-latest, p-cpe:/a:mandriva:linux:kernel-server-latest, p-cpe:/a:mandriva:linux:broadcom-wl-kernel-2.6.33.7-desktop-1mnb, p-cpe:/a:mandriva:linux:broadcom-wl-kernel-2.6.33.7-desktop586-1mnb, p-cpe:/a:mandriva:linux:broadcom-wl-kernel-2.6.33.7-server-1mnb, p-cpe:/a:mandriva:linux:broadcom-wl-kernel-desktop-latest, p-cpe:/a:mandriva:linux:broadcom-wl-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:broadcom-wl-kernel-server-latest, p-cpe:/a:mandriva:linux:em8300-kernel-2.6.33.7-desktop-1mnb, p-cpe:/a:mandriva:linux:em8300-kernel-2.6.33.7-desktop586-1mnb, p-cpe:/a:mandriva:linux:em8300-kernel-2.6.33.7-server-1mnb, p-cpe:/a:mandriva:linux:em8300-kernel-desktop-latest, p-cpe:/a:mandriva:linux:em8300-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:em8300-kernel-server-latest, p-cpe:/a:mandriva:linux:fglrx-kernel-2.6.33.7-desktop-1mnb, p-cpe:/a:mandriva:linux:fglrx-kernel-2.6.33.7-desktop586-1mnb, p-cpe:/a:mandriva:linux:fglrx-kernel-2.6.33.7-server-1mnb, p-cpe:/a:mandriva:linux:fglrx-kernel-desktop-latest, p-cpe:/a:mandriva:linux:fglrx-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:fglrx-kernel-server-latest, p-cpe:/a:mandriva:linux:hcfpcimodem-kernel-2.6.33.7-desktop-1mnb, p-cpe:/a:mandriva:linux:hcfpcimodem-kernel-2.6.33.7-desktop586-1mnb, p-cpe:/a:mandriva:linux:hcfpcimodem-kernel-2.6.33.7-server-1mnb, p-cpe:/a:mandriva:linux:hcfpcimodem-kernel-desktop-latest, p-cpe:/a:mandriva:linux:hcfpcimodem-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:hcfpcimodem-kernel-server-latest, p-cpe:/a:mandriva:linux:hsfmodem-kernel-2.6.33.7-desktop-1mnb, p-cpe:/a:mandriva:linux:hsfmodem-kernel-2.6.33.7-desktop586-1mnb, p-cpe:/a:mandriva:linux:hsfmodem-kernel-2.6.33.7-server-1mnb, p-cpe:/a:mandriva:linux:madwifi-kernel-server-latest, p-cpe:/a:mandriva:linux:nvidia-current-kernel-2.6.33.7-desktop-1mnb, p-cpe:/a:mandriva:linux:nvidia-current-kernel-2.6.33.7-desktop586-1mnb, p-cpe:/a:mandriva:linux:nvidia-current-kernel-2.6.33.7-server-1mnb, p-cpe:/a:mandriva:linux:nvidia-current-kernel-desktop-latest, p-cpe:/a:mandriva:linux:nvidia-current-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:nvidia-current-kernel-server-latest, p-cpe:/a:mandriva:linux:nvidia173-kernel-2.6.33.7-desktop-1mnb, p-cpe:/a:mandriva:linux:nvidia173-kernel-2.6.33.7-desktop586-1mnb, p-cpe:/a:mandriva:linux:nvidia173-kernel-2.6.33.7-server-1mnb, p-cpe:/a:mandriva:linux:nvidia173-kernel-desktop-latest, p-cpe:/a:mandriva:linux:nvidia173-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:nvidia173-kernel-server-latest, p-cpe:/a:mandriva:linux:nvidia96xx-kernel-2.6.33.7-desktop-1mnb, p-cpe:/a:mandriva:linux:nvidia96xx-kernel-2.6.33.7-desktop586-1mnb, p-cpe:/a:mandriva:linux:nvidia96xx-kernel-2.6.33.7-server-1mnb, p-cpe:/a:mandriva:linux:kernel-source-2.6.33.7-1mnb, p-cpe:/a:mandriva:linux:kernel-source-latest, p-cpe:/a:mandriva:linux:libafs-kernel-2.6.33.7-desktop-1mnb, p-cpe:/a:mandriva:linux:libafs-kernel-2.6.33.7-desktop586-1mnb, p-cpe:/a:mandriva:linux:libafs-kernel-2.6.33.7-server-1mnb, p-cpe:/a:mandriva:linux:libafs-kernel-desktop-latest, p-cpe:/a:mandriva:linux:libafs-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:libafs-kernel-server-latest, p-cpe:/a:mandriva:linux:lirc-kernel-2.6.33.7-desktop-1mnb, p-cpe:/a:mandriva:linux:lirc-kernel-2.6.33.7-desktop586-1mnb, p-cpe:/a:mandriva:linux:lirc-kernel-2.6.33.7-server-1mnb, p-cpe:/a:mandriva:linux:lirc-kernel-desktop-latest, p-cpe:/a:mandriva:linux:lirc-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:lirc-kernel-server-latest, p-cpe:/a:mandriva:linux:lzma-kernel-2.6.33.7-desktop-1mnb, p-cpe:/a:mandriva:linux:lzma-kernel-2.6.33.7-desktop586-1mnb, p-cpe:/a:mandriva:linux:lzma-kernel-2.6.33.7-server-1mnb, p-cpe:/a:mandriva:linux:lzma-kernel-desktop-latest, p-cpe:/a:mandriva:linux:lzma-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:lzma-kernel-server-latest, p-cpe:/a:mandriva:linux:madwifi-kernel-2.6.33.7-desktop-1mnb, p-cpe:/a:mandriva:linux:madwifi-kernel-2.6.33.7-desktop586-1mnb, p-cpe:/a:mandriva:linux:madwifi-kernel-2.6.33.7-server-1mnb, p-cpe:/a:mandriva:linux:madwifi-kernel-desktop-latest, p-cpe:/a:mandriva:linux:madwifi-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:nvidia96xx-kernel-desktop-latest, p-cpe:/a:mandriva:linux:nvidia96xx-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:nvidia96xx-kernel-server-latest, p-cpe:/a:mandriva:linux:slmodem-kernel-2.6.33.7-desktop-1mnb, p-cpe:/a:mandriva:linux:slmodem-kernel-2.6.33.7-desktop586-1mnb, p-cpe:/a:mandriva:linux:slmodem-kernel-2.6.33.7-server-1mnb, p-cpe:/a:mandriva:linux:slmodem-kernel-desktop-latest, p-cpe:/a:mandriva:linux:slmodem-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:slmodem-kernel-server-latest, p-cpe:/a:mandriva:linux:squashfs-lzma-kernel-2.6.33.7-desktop-1mnb, p-cpe:/a:mandriva:linux:squashfs-lzma-kernel-2.6.33.7-desktop586-1mnb, p-cpe:/a:mandriva:linux:squashfs-lzma-kernel-2.6.33.7-server-1mnb, p-cpe:/a:mandriva:linux:squashfs-lzma-kernel-desktop-latest, p-cpe:/a:mandriva:linux:squashfs-lzma-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:squashfs-lzma-kernel-server-latest, p-cpe:/a:mandriva:linux:vboxadditions-kernel-2.6.33.7-desktop-1mnb, p-cpe:/a:mandriva:linux:vboxadditions-kernel-2.6.33.7-desktop586-1mnb, p-cpe:/a:mandriva:linux:vboxadditions-kernel-2.6.33.7-server-1mnb, p-cpe:/a:mandriva:linux:vboxadditions-kernel-desktop-latest, p-cpe:/a:mandriva:linux:vboxadditions-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:vboxadditions-kernel-server-latest, p-cpe:/a:mandriva:linux:virtualbox-kernel-2.6.33.7-desktop-1mnb, p-cpe:/a:mandriva:linux:virtualbox-kernel-2.6.33.7-desktop586-1mnb, p-cpe:/a:mandriva:linux:virtualbox-kernel-2.6.33.7-server-1mnb, p-cpe:/a:mandriva:linux:virtualbox-kernel-desktop-latest, p-cpe:/a:mandriva:linux:virtualbox-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:virtualbox-kernel-server-latest, p-cpe:/a:mandriva:linux:vpnclient-kernel-2.6.33.7-desktop-1mnb, p-cpe:/a:mandriva:linux:vpnclient-kernel-2.6.33.7-desktop586-1mnb, p-cpe:/a:mandriva:linux:vpnclient-kernel-2.6.33.7-server-1mnb, p-cpe:/a:mandriva:linux:vpnclient-kernel-desktop-latest, p-cpe:/a:mandriva:linux:vpnclient-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:vpnclient-kernel-server-latest, cpe:/o:mandriva:linux:2010.1

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Mandrake/release, Host/Mandrake/rpm-list

Exploit Ease: No known exploits are available

Patch Publication Date: 9/9/2010

Reference Information

CVE: CVE-2010-2240, CVE-2010-2492, CVE-2010-2524, CVE-2010-3015

BID: 41904, 42237, 42477, 42505

MDVSA: 2010:172