正文

Linux Kernel panic函数调用缓冲区溢出漏洞

admin
admin V管理员 /0 评论 /8 阅读
1231
此篇文章发布距今已超过1237天,您需要注意文章的内容或图片是否可用!

漏洞信息详情

Linux Kernel panic函数调用缓冲区溢出漏洞

  • CNNVD编号:CNNVD-200408-150
    • <!--
  • 危害等级: 低危-->
  • 危害等级: 低危
  • CVE编号: CVE-2004-0394
  • 漏洞类型: 缓冲区溢出
  • 发布时间: 2004-08-18
  • 威胁类型: 本地
  • 更新时间: 2005-10-20
  • 厂        商: linux
  • 漏洞来源: .');">Discovery of this ...

漏洞简介

Linux 2.4.x版本中的panic()函数存在“潜在的”缓冲区溢出漏洞。由于功能性恐慌该漏洞可能不被利用。

漏洞公告

Please see the referenced advisories for information on obtaining and applying the appropriate updates. SGI ProPack 2.4

  • SGI patch10074.tar.gz ftp://patches.sgi.com/support/free/security/patches/ProPack/2.4/
Linux kernel 2.4.16
  • Debian kernel-doc-2.4.16_2.4.16-1woody2_all.debDebian GNU/Linux 3.0 alias woody http://security.debian.org/pool/updates/main/k/kernel-source-2.4.16/ke rnel-doc-2.4.16_2.4.16-1woody2_all.deb
  • Debian kernel-doc-2.4.16_2.4.16-1woody3_all.debDebian GNU/Linux 3.0 alias woody http://security.debian.org/pool/updates/main/k/kernel-source-2.4.16/ke rnel-doc-2.4.16_2.4.16-1woody3_all.deb
  • Debian kernel-headers-2.4.16_20040419_arm.debDebian GNU/Linux 3.0 alias woody http://security.debian.org/pool/updates/main/k/kernel-image-2.4.16-net winder/kernel-headers-2.4.16_20040419_arm.deb
  • Debian kernel-headers-2.4.16_20040419woody1_arm.debDebian GNU/Linux 3.0 alias woody http://security.debian.org/pool/updates/main/k/kernel-image-2.4.16-net winder/kernel-headers-2.4.16_20040419woody1_arm.deb
  • Debian kernel-image-2.4.16-lart_20040419_arm.debDebian GNU/Linux 3.0 alias woody http://security.debian.org/pool/updates/main/k/kernel-image-2.4.16-lar t/kernel-image-2.4.16-lart_20040419_arm.deb
  • Debian kernel-image-2.4.16-lart_20040419woody1_arm.debDebian GNU/Linux 3.0 alias woody http://security.debian.org/pool/updates/main/k/kernel-image-2.4.16-lar t/kernel-image-2.4.16-lart_20040419woody1_arm.deb
  • Debian kernel-image-2.4.16-netwinder_20040419_arm.debDebian GNU/Linux 3.0 alias woody http://security.debian.org/pool/updates/main/k/kernel-image-2.4.16-net winder/kernel-image-2.4.16-netwinder_20040419_arm.deb
  • Debian kernel-image-2.4.16-netwinder_20040419woody1_arm.debDebian GNU/Linux 3.0 alias woody http://security.debian.org/pool/updates/main/k/kernel-image-2.4.16-net winder/kernel-image-2.4.16-netwinder_20040419woody1_arm.deb
  • Debian kernel-image-2.4.16-riscpc_20040419_arm.debDebian GNU/Linux 3.0 alias woody http://security.debian.org/pool/updates/main/k/kernel-image-2.4.16-ris cpc/kernel-image-2.4.16-riscpc_20040419_arm.deb
  • Debian kernel-image-2.4.16-riscpc_20040419woody1_arm.debDebian GNU/Linux 3.0 alias woody http://security.debian.org/pool/updates/main/k/kernel-image-2.4.16-ris cpc/kernel-image-2.4.16-riscpc_20040419woody1_arm.deb
  • Debian kernel-patch-2.4.16-arm_20040419_all.debDebian GNU/Linux 3.0 alias woody http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.16-arm /kernel-patch-2.4.16-arm_20040419_all.deb
  • Debian kernel-source-2.4.16_2.4.16-1woody2_all.debDebian GNU/Linux 3.0 alias woody http://security.debian.org/pool/updates/main/k/kernel-source-2.4.16/ke rnel-source-2.4.16_2.4.16-1woody2_all.deb
  • Debian kernel-source-2.4.16_2.4.16-1woody3_all.debDebian GNU/Linux 3.0 alias woody http://security.debian.org/pool/updates/main/k/kernel-source-2.4.16/ke rnel-source-2.4.16_2.4.16-1woody3_all.deb
Linux kernel 2.4.17
  • Debian kernel-headers-2.4.17_2.4.17-0.020226.2.woody3_mips.deb http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-mip s/kernel-headers-2.4.17_2.4.17-0.020226.2.woody3_mips.deb
  • Debian kernel-headers-2.4.17_2.4.17-0.020226.2.woody3_mipsel.deb http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-mip s/kernel-headers-2.4.17_2.4.17-0.020226.2.woody3_mipsel.deb
  • Debian kernel-image-2.4.17-r3k-kn02_2.4.17-0.020226.2.woody3_mipsel.deb http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-mip s/kernel-image-2.4.17-r3k-kn02_2.4.17-0.020226.2.woody3_mipsel.deb
  • Debian kernel-image-2.4.17-r4k-ip22_2.4.17-0.020226.2.woody3_mips.deb http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-mip s/kernel-image-2.4.17-r4k-ip22_2.4.17-0.020226.2.woody3_mips.deb
  • Debian kernel-image-2.4.17-r4k-kn04_2.4.17-0.020226.2.woody3_mipsel.deb http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-mip s/kernel-image-2.4.17-r4k-kn04_2.4.17-0.020226.2.woody3_mipsel.deb
  • Debian kernel-image-2.4.17-r5k-ip22_2.4.17-0.020226.2.woody3_mips.deb http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-mip s/kernel-image-2.4.17-r5k-ip22_2.4.17-0.020226.2.woody3_mips.deb
  • Debian kernel-patch-2.4.17-mips_2.4.17-0.020226.2.woody3_all.deb http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-mip s/kernel-patch-2.4.17-mips_2.4.17-0.020226.2.woody3_all.deb
  • Debian kernel-patch-2.4.17-mips_2.4.17-0.020226.2.woody4_all.debArchitecture Independent.

参考网址

来源: XF 名称: linux-panic-bo(15953) 链接:http://xforce.iss.net/xforce/xfdb/15953 来源: SUSE 名称: SuSE-SA:2004:010 链接:http://www.novell.com/linux/security/advisories/2004_10_kernel.html 来源: ENGARDE 名称: ESA-20040428-004 链接:http://www.linuxsecurity.com/advisories/engarde_advisory-4285.html 来源: GENTOO 名称: GLSA-200407-02 链接:http://security.gentoo.org/glsa/glsa-200407-02.xml 来源: MLIST 名称: [fedora-announce] 20040422 Fedora alert FEDORA-2004-111 (kernel) 链接:http://lwn.net/Articles/81773/ 来源: CONECTIVA 名称: CLA-2004:846 链接:http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000846 来源: SGI 名称: 20040505-01-U 链接:ftp://patches.sgi.com/support/free/security/advisories/20040505-01-U.asc 来源: SGI 名称: 20040504-01-U 链接:ftp://patches.sgi.com/support/free/security/advisories/20040504-01-U.asc 来源: BID 名称: 10233 链接:http://www.securityfocus.com/bid/10233 来源: MANDRAKE 名称: MDKSA-2004:037 链接:http://www.mandriva.com/security/advisories?name=MDKSA-2004:037 来源: DEBIAN 名称: DSA-1082 链接:http://www.debian.org/security/2006/dsa-1082 来源: DEBIAN 名称: DSA-1070 链接:http://www.debian.org/security/2006/dsa-1070 来源: DEBIAN 名称: DSA-1069 链接:http://www.debian.org/security/2006/dsa-1069 来源: DEBIAN 名称: DSA-1067 链接:http://www.debian.org/security/2006/dsa-1067 来源: SECUNIA 名称: 20338 链接:http://secunia.com/advisories/20338 来源: SECUNIA 名称: 20202 链接:http://secunia.com/advisories/20202 来源: SECUNIA 名称: 20163 链接:http://secunia.com/advisories/20163 来源: SECUNIA 名称: 20162 链接:http://secunia.com/advisories/20162

受影响实体

  • Linux Linux_kernel:2.6.20.1  
    <!--
    2000-1-1
    -->

补丁

    暂无