7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.002 Low
EPSS
Percentile
53.2%
CentOS Errata and Security Advisory CESA-2005:529-01
The Linux kernel handles the basic functions of the operating system.
This is a kernel maintenance update to Red Hat Enterprise Linux 2.1.
The following security issues were corrected:
A flaw between execve() syscall handling and core dumping of ELF-format
executables allowed local unprivileged users to cause a denial of
service (system crash) or possibly gain privileges. The Common
Vulnerabilities and Exposures project has assigned the name CAN-2005-1263
to this issue.
A flaw when freeing a pointer in load_elf_library was discovered. A local
user could potentially use this flaw to cause a denial of service (crash).
(CAN-2005-0749)
The Direct Rendering Manager (DRM) driver did not properly check the DMA
lock, which could allow remote attackers or local users to cause a denial
of service (X Server crash) or possibly modify the video output.
(CAN-2004-1056)
A flaw in the moxa serial driver could allow a local user to perform
privileged operations such as replacing the firmware. (CAN-2005-0504)
The following bug fixes were also made:
Red Hat Enterprise Linux 2.1 users are advised to upgrade their kernels to
the packages associated with their machine configurations as listed in this
erratum.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2005-August/074259.html
Affected packages:
kernel
kernel-BOOT
kernel-debug
kernel-doc
kernel-enterprise
kernel-headers
kernel-smp
kernel-source
kernel-summit
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 2 | athlon | kernel | < 2.4.9-e.65 | kernel-2.4.9-e.65.athlon.rpm |
CentOS | 2 | athlon | kernel-smp | < 2.4.9-e.65 | kernel-smp-2.4.9-e.65.athlon.rpm |
CentOS | 2 | i386 | kernel-boot | < 2.4.9-e.65 | kernel-BOOT-2.4.9-e.65.i386.rpm |
CentOS | 2 | i386 | kernel-doc | < 2.4.9-e.65 | kernel-doc-2.4.9-e.65.i386.rpm |
CentOS | 2 | i386 | kernel-headers | < 2.4.9-e.65 | kernel-headers-2.4.9-e.65.i386.rpm |
CentOS | 2 | i386 | kernel-source | < 2.4.9-e.65 | kernel-source-2.4.9-e.65.i386.rpm |
CentOS | 2 | i686 | kernel | < 2.4.9-e.65 | kernel-2.4.9-e.65.i686.rpm |
CentOS | 2 | i686 | kernel-debug | < 2.4.9-e.65 | kernel-debug-2.4.9-e.65.i686.rpm |
CentOS | 2 | i686 | kernel-enterprise | < 2.4.9-e.65 | kernel-enterprise-2.4.9-e.65.i686.rpm |
CentOS | 2 | i686 | kernel-smp | < 2.4.9-e.65 | kernel-smp-2.4.9-e.65.i686.rpm |