Advisories

Mandriva Advisories

Package name	kernel
Date	February 24th, 2004
Advisory ID	MDKSA-2004:015
Affected versions	9.0, 9.1, 9.2, MNF8.2, CS2.1
Synopsis	Updated kernel packages fix multiple vulnerabilities

Problem Description

Paul Staretz discovered a flaw in return value checking in the
mremap() function in the Linux kernel, versions 2.4.24 and previous
that could allow a local user to obtain root privileges.

A vulnerability was found in the R128 DRI driver by Alan Cox. This
could allow local privilege escalation.

A flaw in the ncp_lookup() function in the ncpfs code (which is used
to mount NetWare volumes or print to NetWare printers) was found by
Arjen van de Ven that could allow local privilege escalation.

The Vicam USB driver in Linux kernel versions prior to 2.4.25 does
not use the copy_from_user function to access userspace, which crosses
security boundaries. This problem does not affect the Mandrake Linux
9.2 kernel.

Additionally, a ptrace hole that only affects the amd64/x86_64
platform has been corrected.

The provided packages are patched to fix these vulnerabilities. All
users are encouraged to upgrade to these updated kernels.

To update your kernel, please follow the directions located at:

http://www.mandrakesecure.net/en/kernelupdate.php

Updated Packages

Mandrakelinux 9.0

 8502d31939f4e70ed2bd83d7324ee46a  9.0/RPMS/kernel-2.4.19.38mdk-1-1mdk.i586.rpm
dfcf9db165d63227abd1d3c30a9a563f  9.0/RPMS/kernel-enterprise-2.4.19.38mdk-1-1mdk.i586.rpm
cf1abd8aefa0974a5d4ac85aef449fd6  9.0/RPMS/kernel-secure-2.4.19.38mdk-1-1mdk.i586.rpm
fb84e3fc81e4da3aa178d6d87a5977d3  9.0/RPMS/kernel-smp-2.4.19.38mdk-1-1mdk.i586.rpm
70591c2adde3e9ddab653819a385028a  9.0/RPMS/kernel-source-2.4.19-38mdk.i586.rpm
649d838c5a687a6183dfb8aa8ec867d0  9.0/SRPMS/kernel-2.4.19.38mdk-1-1mdk.src.rpm

Mandrakelinux 9.1

 d255b6344a898596f38e0fd7835c9b49  9.1/RPMS/kernel-2.4.21.0.28mdk-1-1mdk.i586.rpm
f96e77bb3de56dd3dd35611ed8d0bb33  9.1/RPMS/kernel-enterprise-2.4.21.0.28mdk-1-1mdk.i586.rpm
612d11bbf85d8f04be22f514c65a2f4e  9.1/RPMS/kernel-secure-2.4.21.0.28mdk-1-1mdk.i586.rpm
f39f9f07d2bed27ebc177b7e2b06ad6f  9.1/RPMS/kernel-smp-2.4.21.0.28mdk-1-1mdk.i586.rpm
b95ccb440b7331aee6219b4483e492ec  9.1/RPMS/kernel-source-2.4.21-0.28mdk.i586.rpm
392e96352e66f67614666441a38105ef  9.1/SRPMS/kernel-2.4.21.0.28mdk-1-1mdk.src.rpm

Mandrakelinux 9.1/PPC

 2ba22a1a3650213c0b153aa9a3e0abc3  ppc/9.1/RPMS/kernel-2.4.21.0.28mdk-1-1mdk.ppc.rpm
26765a33c0f8b88c382dd9527753d9a3  ppc/9.1/RPMS/kernel-enterprise-2.4.21.0.28mdk-1-1mdk.ppc.rpm
d2efabbc7c3421c607d1874b2fab008e  ppc/9.1/RPMS/kernel-smp-2.4.21.0.28mdk-1-1mdk.ppc.rpm
3745b59252ca05572f0f504d983124c9  ppc/9.1/RPMS/kernel-source-2.4.21-0.28mdk.ppc.rpm
392e96352e66f67614666441a38105ef  ppc/9.1/SRPMS/kernel-2.4.21.0.28mdk-1-1mdk.src.rpm

Mandrakelinux 9.2

 5580642b756d2b62c88eba748cc496c0  9.2/RPMS/kernel-2.4.22.28mdk-1-1mdk.i586.rpm
6bdd2872bb7da3cb2e0347f1fa4e506d  9.2/RPMS/kernel-enterprise-2.4.22.28mdk-1-1mdk.i586.rpm
8810a5ad13aba7abd1479eada447cf19  9.2/RPMS/kernel-i686-up-4GB-2.4.22.28mdk-1-1mdk.i586.rpm
d701b8e33edaa18fc181fb35eff8566b  9.2/RPMS/kernel-p3-smp-64GB-2.4.22.28mdk-1-1mdk.i586.rpm
4bdd98cfcaf38a00f4d9f0f7383d1a75  9.2/RPMS/kernel-secure-2.4.22.28mdk-1-1mdk.i586.rpm
e9a6c06e8b9de047d46c41715e74dd52  9.2/RPMS/kernel-smp-2.4.22.28mdk-1-1mdk.i586.rpm
16a2a10e6c046a36c4e6373e4da25836  9.2/RPMS/kernel-source-2.4.22-28mdk.i586.rpm
e06f5be69fbcdeb3dc8b581c265a511c  9.2/SRPMS/kernel-2.4.22.28mdk-1-1mdk.src.rpm

Mandrakelinux 9.2/AMD64

 ced252e4a55290c082729f46e1e74476  amd64/9.2/RPMS/kernel-2.4.22.28mdk-1-1mdk.amd64.rpm
d563da369abbfa3acb8d8769bfd858a8  amd64/9.2/RPMS/kernel-secure-2.4.22.28mdk-1-1mdk.amd64.rpm
a3d12632c59eeb7e9d44de68c6f2e3fd  amd64/9.2/RPMS/kernel-smp-2.4.22.28mdk-1-1mdk.amd64.rpm
63f21edebe2d22ec82f889c9b832ff00  amd64/9.2/RPMS/kernel-source-2.4.22-28mdk.amd64.rpm
e06f5be69fbcdeb3dc8b581c265a511c  amd64/9.2/SRPMS/kernel-2.4.22.28mdk-1-1mdk.src.rpm

Multi Network Firewall 8.2

 8c979e21c7ad91fb87a840d708718b3c  mnf8.2/RPMS/kernel-secure-2.4.19.38mdk-1-1mdk.i586.rpm
649d838c5a687a6183dfb8aa8ec867d0  mnf8.2/SRPMS/kernel-2.4.19.38mdk-1-1mdk.src.rpm

Corporate Server 2.1

 8502d31939f4e70ed2bd83d7324ee46a  corporate/2.1/RPMS/kernel-2.4.19.38mdk-1-1mdk.i586.rpm
dfcf9db165d63227abd1d3c30a9a563f  corporate/2.1/RPMS/kernel-enterprise-2.4.19.38mdk-1-1mdk.i586.rpm
cf1abd8aefa0974a5d4ac85aef449fd6  corporate/2.1/RPMS/kernel-secure-2.4.19.38mdk-1-1mdk.i586.rpm
fb84e3fc81e4da3aa178d6d87a5977d3  corporate/2.1/RPMS/kernel-smp-2.4.19.38mdk-1-1mdk.i586.rpm
70591c2adde3e9ddab653819a385028a  corporate/2.1/RPMS/kernel-source-2.4.19-38mdk.i586.rpm
649d838c5a687a6183dfb8aa8ec867d0  corporate/2.1/SRPMS/kernel-2.4.19.38mdk-1-1mdk.src.rpm

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0003
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0010
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0075
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0077

Upgrade

To upgrade your kernel, view the kernel update instructions. Kernels cannot be upgraded via MandrivaUpdate.

Verification

Please verify the update prior to upgrading to ensure the integrity of the downloaded package. You can do this with the command :

                rpm --checksig package.rpm

You can get the GPG public key of the Mandriva Security Team to verify the GPG signature of each RPM.

URL:

https://mandriva.com/security/advisories

Short link:

https://mandriva.com/content/view/full/1075

Intersites Menu

Mandriva

Tools

Top menu

Advisories

Footer