[security] security updates
Lorenzo Iannuzzi
nakis a libero.it
Mer 5 Maggio 2004 11:09:51 CEST
http://lwn.net/Articles/83389/
SUSE Security Announcement
Various vulnerabilities have been fixed in the newly available kernel
updates. The updates consist of fixes for the following vulnerabilities:
- The do_fork() memory leak, which could lead to a local DoS attack.
All kernels except for SLES7 are affected.
- The setsockopt() MCAST buffer overflow which allows local attackers
to execute arbitrary code with root privileges. Only SLES8 based
products and SL 8.1 and SL 9.0 kernels are affected by this bug.
- The misuse of the fb_copy_cmap() function which could also allow
local attackers to execute arbitrary code with root privileges.
Only the SL 9.1 kernel is affected.
- The integer overflow in the cpufreq_procctl() function.
Only the SL 9.1 kernel is affected.
- The wrong permissions on /proc/scsi/qla2300/HbaApiNode which allow
local attackers to start DoS attacks. SLES8 kernels and SL 8.1 and
9.0 kernels are affected.
- A buffer overflow in panic(). Although there seems no way to trigger
this bug, it has been fixed.
http://www.apple.com/support/security/security_updates.html
Security Update 2004-05-03 is now available and contains security
enhancements for the following:
CoreFoundation: Fixes CAN-2004-0428 to improve the handling of an
environment variable. Credit to aaron a vtty.com for reporting this
issue.
Apache 2: Fixes CAN-2003-0020, CAN-2004-0113 and CAN-2004-0174 by
updating to Apache 2 to version 2.0.49.
RAdmin: Fixes CAN-2004-0429 to improve the handling of large requests
AppleFileServer: Fixes CAN-2004-0430 to improve the handling of long
passwords. Credit to Dave G. from @stake for reporting this issue.
IPSec: Fixes CAN-2004-0155 and CAN-2004-0403 to improve the security
of VPN tunnels. IPSec in Mac OS X is not vulnerable to
CAN-2004-0392.
--
Ciao e alla prossima!
Lorenzo
Maggiori informazioni sulla lista
security