Oval Definition:oval:org.mitre.oval:def:13503
Revision Date:2014-06-23Version:20
Title:DSA-1749-1 linux-2.6 -- denial of service/privilege escalation/sensitive memory leak
Description:Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-0029 Christian Borntraeger discovered an issue effecting the alpha, mips, powerpc, s390 and sparc64 architectures that allows local users to cause a denial of service or potentially gain elevated privileges. CVE-2009-0031 Vegard Nossum discovered a memory leak in the keyctl subsystem that allows local users to cause a denial of service by consuming all of kernel memory. CVE-2009-0065 Wei Yongjun discovered a memory overflow in the SCTP implementation that can be triggered by remote users. CVE-2009-0269 Duane Griffin provided a fix for an issue in the eCryptfs subsystem which allows local users to cause a denial of service. CVE-2009-0322 Pavel Roskin provided a fix for an issue in the dell_rbu driver that allows a local user to cause a denial of service by reading 0 byts from a sysfs entry. CVE-2009-0676 Clement LECIGNE discovered a bug in the sock_getsockopt function that may result in leaking sensitive kernel memory. CVE-2009-0675 Roel Kluin discovered inverted logic in the skfddi driver that permits local, unprivileged users to reset the driver statistics. CVE-2009-0745 Peter Kerwien discovered an issue in the ext4 filesystem that allows local users to cause a denial of service during a resize operation. CVE-2009-0746 Sami Liedes reported an issue in the ext4 filesystem that allows local users to cause a denial of service when accessing a specially crafted corrupt filesystem. CVE-2009-0747 David Maciejak reported an issue in the ext4 filesystem that allows local users to cause a denial of service when mounting a specially crafted corrupt filesystem. CVE-2009-0748 David Maciejak reported an additional issue in the ext4 filesystem that allows local users to cause a denial of service when mounting a specially crafted corrupt filesystem. For the stable distribution, these problems have been fixed in version 2.6.26-13lenny2. For the oldstable distribution, these problems, where applicable, will be fixed in future updates to linux-2.6 and linux-2.6.24. We recommend that you upgrade your linux-2.6 packages.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2009-0029
CVE-2009-0031
CVE-2009-0065
CVE-2009-0269
CVE-2009-0322
CVE-2009-0675
CVE-2009-0676
CVE-2009-0745
CVE-2009-0746
CVE-2009-0747
CVE-2009-0748
DSA-1749-1
Platform(s):Debian GNU/Linux 5.0
Product(s):linux-2.6
Definition Synopsis
  • Debian GNU/Linux 5.0 is installed
  • AND Architecture section
  • Architecture independent section
  • Installed architecture is all
  • AND Packages section
  • linux-doc-2.6.26 DPKG is earlier than 2.6.26-13lenny2
  • OR linux-tree-2.6.26 DPKG is earlier than 2.6.26-13lenny2
  • OR linux-patch-debian-2.6.26 DPKG is earlier than 2.6.26-13lenny2
  • OR linux-source-2.6.26 DPKG is earlier than 2.6.26-13lenny2
  • OR linux-support-2.6.26-1 DPKG is earlier than 2.6.26-13lenny2
  • OR linux-manual-2.6.26 DPKG is earlier than 2.6.26-13lenny2
  • OR Architecture depended section
  • Installed architecture is s390
  • AND Packages section
  • linux-headers-2.6.26-1-all DPKG is earlier than 2.6.26-13lenny2
  • OR linux-image-2.6.26-1-vserver-s390x DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-common DPKG is earlier than 2.6.26-13lenny2
  • OR linux-image-2.6.26-1-s390 DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-all-s390 DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-common-vserver DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-vserver-s390x DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-s390x DPKG is earlier than 2.6.26-13lenny2
  • OR linux-libc-dev DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-s390 DPKG is earlier than 2.6.26-13lenny2
  • OR linux-image-2.6.26-1-s390-tape DPKG is earlier than 2.6.26-13lenny2
  • OR linux-image-2.6.26-1-s390x DPKG is earlier than 2.6.26-13lenny2
  • OR Architecture depended section
  • Installed architecture is amd64
  • AND Packages section
  • linux-headers-2.6.26-1-vserver-amd64 DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-all DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-all-amd64 DPKG is earlier than 2.6.26-13lenny2
  • OR linux-image-2.6.26-1-vserver-amd64 DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-common DPKG is earlier than 2.6.26-13lenny2
  • OR linux-image-2.6.26-1-openvz-amd64 DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-amd64 DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-openvz-amd64 DPKG is earlier than 2.6.26-13lenny2
  • OR linux-modules-2.6.26-1-xen-amd64 DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-common-vserver DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-xen-amd64 DPKG is earlier than 2.6.26-13lenny2
  • OR linux-image-2.6.26-1-amd64 DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-common-openvz DPKG is earlier than 2.6.26-13lenny2
  • OR linux-libc-dev DPKG is earlier than 2.6.26-13lenny2
  • OR linux-image-2.6.26-1-xen-amd64 DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-common-xen DPKG is earlier than 2.6.26-13lenny2
  • OR xen-linux-system-2.6.26-1-xen-amd64 DPKG is earlier than 2.6.26-13lenny2
  • OR Supported platform section
  • Installed architecture is hppa
  • AND Packages section
  • linux-headers-2.6.26-1-parisc64 DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-all-hppa DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-common DPKG is earlier than 2.6.26-13lenny2
  • OR linux-image-2.6.26-1-parisc DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-all DPKG is earlier than 2.6.26-13lenny2
  • OR linux-image-2.6.26-1-parisc64-smp DPKG is earlier than 2.6.26-13lenny2
  • OR linux-image-2.6.26-1-parisc64 DPKG is earlier than 2.6.26-13lenny2
  • OR linux-image-2.6.26-1-parisc-smp DPKG is earlier than 2.6.26-13lenny2
  • OR linux-libc-dev DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-parisc DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-parisc64-smp DPKG is earlier than 2.6.26-13lenny2
  • OR linux-headers-2.6.26-1-parisc-smp DPKG is earlier than 2.6.26-13lenny2
  • BACK