Detections
Analytics
Mandriva Linux Security Advisory : kernel (MDVSA-2010:247)
high Nessus Plugin ID 50981
Language:
Synopsis
The remote Mandriva Linux host is missing one or more security updates.Description
A vulnerability was discovered and corrected in the Linux 2.6 kernel :The compat_alloc_user_space functions in include/asm/compat.h files in the Linux kernel before 2.6.36-rc4-git2 on 64-bit platforms do not properly allocate the userspace memory required for the 32-bit compatibility layer, which allows local users to gain privileges by leveraging the ability of the compat_mc_getsockopt function (aka the MCAST_MSFILTER getsockopt support) to control a certain length value, related to a stack pointer underflow issue, as exploited in the wild in September 2010. (CVE-2010-3081)
The IA32 system call emulation functionality in arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.36-rc4-git2 on the x86_64 platform does not zero extend the %eax register after the 32-bit entry path to ptrace is used, which allows local users to gain privileges by triggering an out-of-bounds access to the system call table using the %rax register. NOTE: this vulnerability exists because of a CVE-2007-4573 regression. (CVE-2010-3301)
Integer overflow in the ext4_ext_get_blocks function in fs/ext4/extents.c in the Linux kernel before 2.6.34 allows local users to cause a denial of service (BUG and system crash) via a write operation on the last block of a large file, followed by a sync operation. (CVE-2010-3015)
Additionally, the kernel has been updated to the stable version 2.6.31.14. A timeout bug in bnx2 has been fixed. Muting and unmuting on VT1812/VT2002P now should work correctly. A fix for ACL decoding on NFS was added. Rebooting on Dell Precision WorkStation T7400 was corrected. Read balancing with RAID0 and RAID1 on drives larger then 2TB was also fixed. A more detailed description is available in the package changelog and related tickets.
Thanks to Thomas Backlund and Herton Ronaldo Krzesinski for contributions in this update.
To update your kernel, please follow the directions located at :
http://www.mandriva.com/en/security/kernelupdate
Solution
Update the affected packages.Plugin Details
Severity: High
ID: 50981
File Name: mandriva_MDVSA-2010-247.nasl
Version: 1.24
Type: local
Family: Mandriva Local Security Checks
Published: 12/6/2010
Updated: 1/6/2021
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Critical
Score: 9.6
CVSS v2
Risk Factor: High
Base Score: 7.2
Temporal Score: 5.6
Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: p-cpe:/a:mandriva:linux:nvidia-current-kernel-2.6.31.14-server-1mnb, p-cpe:/a:mandriva:linux:hsfmodem-kernel-desktop-latest, p-cpe:/a:mandriva:linux:madwifi-kernel-server-latest, p-cpe:/a:mandriva:linux:kernel-desktop586-devel-2.6.31.14-1mnb, p-cpe:/a:mandriva:linux:squashfs-lzma-kernel-2.6.31.14-server-1mnb, p-cpe:/a:mandriva:linux:vboxadditions-kernel-server-latest, p-cpe:/a:mandriva:linux:slmodem-kernel-2.6.31.14-desktop-1mnb, p-cpe:/a:mandriva:linux:hsfmodem-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:nvidia-current-kernel-server-latest, p-cpe:/a:mandriva:linux:nvidia96xx-kernel-2.6.31.14-desktop586-1mnb, p-cpe:/a:mandriva:linux:lirc-kernel-desktop-latest, p-cpe:/a:mandriva:linux:nvidia96xx-kernel-2.6.31.14-server-1mnb, p-cpe:/a:mandriva:linux:nvidia173-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:kernel-desktop586-devel-latest, p-cpe:/a:mandriva:linux:nvidia173-kernel-desktop-latest, p-cpe:/a:mandriva:linux:broadcom-wl-kernel-2.6.31.14-desktop586-1mnb, p-cpe:/a:mandriva:linux:lirc-kernel-2.6.31.14-desktop586-1mnb, p-cpe:/a:mandriva:linux:fglrx-kernel-2.6.31.14-server-1mnb, p-cpe:/a:mandriva:linux:vboxadditions-kernel-2.6.31.14-server-1mnb, p-cpe:/a:mandriva:linux:vboxadditions-kernel-desktop-latest, p-cpe:/a:mandriva:linux:slmodem-kernel-2.6.31.14-server-1mnb, p-cpe:/a:mandriva:linux:lzma-kernel-2.6.31.14-desktop586-1mnb, p-cpe:/a:mandriva:linux:fglrx-kernel-server-latest, p-cpe:/a:mandriva:linux:broadcom-wl-kernel-desktop-latest, p-cpe:/a:mandriva:linux:libafs-kernel-2.6.31.14-server-1mnb, p-cpe:/a:mandriva:linux:madwifi-kernel-desktop-latest, p-cpe:/a:mandriva:linux:libafs-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:vpnclient-kernel-server-latest, p-cpe:/a:mandriva:linux:fglrx-kernel-2.6.31.14-desktop586-1mnb, p-cpe:/a:mandriva:linux:hcfpcimodem-kernel-server-latest, p-cpe:/a:mandriva:linux:lzma-kernel-desktop-latest, p-cpe:/a:mandriva:linux:nvidia96xx-kernel-server-latest, p-cpe:/a:mandriva:linux:vboxadditions-kernel-2.6.31.14-desktop586-1mnb, p-cpe:/a:mandriva:linux:virtualbox-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:virtualbox-kernel-server-latest, p-cpe:/a:mandriva:linux:madwifi-kernel-2.6.31.14-desktop586-1mnb, p-cpe:/a:mandriva:linux:vpnclient-kernel-desktop-latest, p-cpe:/a:mandriva:linux:hcfpcimodem-kernel-2.6.31.14-server-1mnb, p-cpe:/a:mandriva:linux:kernel-desktop-latest, p-cpe:/a:mandriva:linux:lirc-kernel-2.6.31.14-desktop-1mnb, p-cpe:/a:mandriva:linux:lirc-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:madwifi-kernel-2.6.31.14-desktop-1mnb, p-cpe:/a:mandriva:linux:nvidia173-kernel-2.6.31.14-desktop586-1mnb, p-cpe:/a:mandriva:linux:nvidia96xx-kernel-2.6.31.14-desktop-1mnb, p-cpe:/a:mandriva:linux:vboxadditions-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:em8300-kernel-desktop-latest, p-cpe:/a:mandriva:linux:kernel-server-devel-2.6.31.14-1mnb, p-cpe:/a:mandriva:linux:libafs-kernel-server-latest, p-cpe:/a:mandriva:linux:kernel-desktop586-latest, p-cpe:/a:mandriva:linux:vpnclient-kernel-2.6.31.14-server-1mnb, p-cpe:/a:mandriva:linux:virtualbox-kernel-desktop-latest, p-cpe:/a:mandriva:linux:hsfmodem-kernel-2.6.31.14-desktop-1mnb, p-cpe:/a:mandriva:linux:kernel-server-2.6.31.14-1mnb, p-cpe:/a:mandriva:linux:lirc-kernel-2.6.31.14-server-1mnb, p-cpe:/a:mandriva:linux:nvidia96xx-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:kernel-doc, p-cpe:/a:mandriva:linux:madwifi-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:fglrx-kernel-desktop-latest, p-cpe:/a:mandriva:linux:hcfpcimodem-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:kernel-source-latest, p-cpe:/a:mandriva:linux:kernel-desktop-2.6.31.14-1mnb, p-cpe:/a:mandriva:linux:lzma-kernel-2.6.31.14-server-1mnb, p-cpe:/a:mandriva:linux:em8300-kernel-2.6.31.14-server-1mnb, p-cpe:/a:mandriva:linux:squashfs-lzma-kernel-server-latest, p-cpe:/a:mandriva:linux:vpnclient-kernel-2.6.31.14-desktop586-1mnb, p-cpe:/a:mandriva:linux:lzma-kernel-2.6.31.14-desktop-1mnb, p-cpe:/a:mandriva:linux:hcfpcimodem-kernel-desktop-latest, p-cpe:/a:mandriva:linux:lirc-kernel-server-latest, p-cpe:/a:mandriva:linux:nvidia-current-kernel-2.6.31.14-desktop-1mnb, p-cpe:/a:mandriva:linux:slmodem-kernel-desktop-latest, p-cpe:/a:mandriva:linux:libafs-kernel-2.6.31.14-desktop-1mnb, p-cpe:/a:mandriva:linux:virtualbox-kernel-2.6.31.14-desktop586-1mnb, p-cpe:/a:mandriva:linux:em8300-kernel-server-latest, p-cpe:/a:mandriva:linux:hcfpcimodem-kernel-2.6.31.14-desktop586-1mnb, p-cpe:/a:mandriva:linux:nvidia173-kernel-server-latest, p-cpe:/a:mandriva:linux:nvidia173-kernel-2.6.31.14-server-1mnb, p-cpe:/a:mandriva:linux:kernel-desktop586-2.6.31.14-1mnb, p-cpe:/a:mandriva:linux:kernel-desktop-devel-latest, p-cpe:/a:mandriva:linux:kernel-server-devel-latest, p-cpe:/a:mandriva:linux:nvidia-current-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:hcfpcimodem-kernel-2.6.31.14-desktop-1mnb, p-cpe:/a:mandriva:linux:squashfs-lzma-kernel-desktop-latest, p-cpe:/a:mandriva:linux:nvidia-current-kernel-desktop-latest, p-cpe:/a:mandriva:linux:kernel-server-latest, p-cpe:/a:mandriva:linux:lzma-kernel-server-latest, p-cpe:/a:mandriva:linux:vpnclient-kernel-2.6.31.14-desktop-1mnb, p-cpe:/a:mandriva:linux:nvidia173-kernel-2.6.31.14-desktop-1mnb, p-cpe:/a:mandriva:linux:squashfs-lzma-kernel-2.6.31.14-desktop-1mnb, p-cpe:/a:mandriva:linux:vpnclient-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:em8300-kernel-2.6.31.14-desktop586-1mnb, p-cpe:/a:mandriva:linux:virtualbox-kernel-2.6.31.14-desktop-1mnb, p-cpe:/a:mandriva:linux:fglrx-kernel-2.6.31.14-desktop-1mnb, p-cpe:/a:mandriva:linux:nvidia96xx-kernel-desktop-latest, p-cpe:/a:mandriva:linux:kernel-source-2.6.31.14-1mnb, p-cpe:/a:mandriva:linux:vboxadditions-kernel-2.6.31.14-desktop-1mnb, p-cpe:/a:mandriva:linux:broadcom-wl-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:nvidia-current-kernel-2.6.31.14-desktop586-1mnb, p-cpe:/a:mandriva:linux:madwifi-kernel-2.6.31.14-server-1mnb, p-cpe:/a:mandriva:linux:em8300-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:libafs-kernel-desktop-latest, p-cpe:/a:mandriva:linux:lzma-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:virtualbox-kernel-2.6.31.14-server-1mnb, p-cpe:/a:mandriva:linux:slmodem-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:squashfs-lzma-kernel-2.6.31.14-desktop586-1mnb, p-cpe:/a:mandriva:linux:em8300-kernel-2.6.31.14-desktop-1mnb, p-cpe:/a:mandriva:linux:kernel-2.6.31.14-1mnb, cpe:/o:mandriva:linux:2010.0, p-cpe:/a:mandriva:linux:hsfmodem-kernel-2.6.31.14-desktop586-1mnb, p-cpe:/a:mandriva:linux:kernel-desktop-devel-2.6.31.14-1mnb, p-cpe:/a:mandriva:linux:broadcom-wl-kernel-2.6.31.14-desktop-1mnb, p-cpe:/a:mandriva:linux:hsfmodem-kernel-server-latest, p-cpe:/a:mandriva:linux:broadcom-wl-kernel-server-latest, p-cpe:/a:mandriva:linux:slmodem-kernel-2.6.31.14-desktop586-1mnb, p-cpe:/a:mandriva:linux:broadcom-wl-kernel-2.6.31.14-server-1mnb, p-cpe:/a:mandriva:linux:libafs-kernel-2.6.31.14-desktop586-1mnb, p-cpe:/a:mandriva:linux:squashfs-lzma-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:slmodem-kernel-server-latest, p-cpe:/a:mandriva:linux:fglrx-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:hsfmodem-kernel-2.6.31.14-server-1mnb
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Mandrake/release, Host/Mandrake/rpm-list
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 12/3/2010
Exploitable With
Core Impact
Reference Information
CVE: CVE-2010-3015, CVE-2010-3081, CVE-2010-3301
MDVSA: 2010:247