xfocus logo xfocus title
首页 焦点原创 安全文摘 安全工具 安全漏洞 焦点项目 焦点论坛 关于我们
English Version
 最近严重漏洞 
Microsoft RPC接口远程任意代码可执行漏洞
Cisco IOS接口不正确处理IPV4包远程拒绝服务漏洞
Microsoft Windows CreateFile API命名管道权限提升漏洞

Linux Kernel 2.4.18存在安全漏洞


发布时间:2002-08-29
更新时间:2002-08-29
严重程度:
威胁程度:权限提升
错误类型:设计错误
利用方式:服务器模式

BUGTRAQ ID:5539

受影响系统
Linux kernel 2.4.18 pre-8
Linux kernel 2.4.18 pre-7
Linux kernel 2.4.18 pre-6
Linux kernel 2.4.18 pre-5
Linux kernel 2.4.18 pre-4
Linux kernel 2.4.18 pre-3
Linux kernel 2.4.18 pre-2
Linux kernel 2.4.18 pre-1
Linux kernel 2.4.18
   + Astaro Security Linux 2.0 16
   + Astaro Security Linux 2.0 23
   + MandrakeSoft Linux Mandrake 8.0
   + MandrakeSoft Linux Mandrake 8.1
   + MandrakeSoft Linux Mandrake 8.2
   + RedHat Linux 7.3
Linux kernel 2.4.19 -pre6
Linux kernel 2.4.19 -pre5
Linux kernel 2.4.19 -pre4
Linux kernel 2.4.19 -pre3
Linux kernel 2.4.19 -pre2
Linux kernel 2.4.19 -pre1
详细描述
Red Hat的安全报告中声明LINUX KERNEL 2.4.18版本存在漏洞,问题相关于下列设备驱动程序:

stradis
rio500
se401
usbvideo
apm

其次,PROCFS虚拟文件系统也存在问题,可导致内核内存泄露,本地攻击者可以利用这个漏洞进行权限提升攻击。

测试代码


解决方案
升级内核:

Linux kernel 2.4.18 pre-8:
Linux kernel 2.4.18 pre-7:
Linux kernel 2.4.18 pre-6:
Linux kernel 2.4.18 pre-5:
Linux kernel 2.4.18 pre-4:
Linux kernel 2.4.18 pre-3:
Linux kernel 2.4.18 pre-2:
Linux kernel 2.4.18 pre-1:
Linux kernel 2.4.18:

Red Hat RPM kernel-2.4.18-10.src.rpm
ftp://updates.redhat.com/7.3/en/os/SRPMS/kernel-2.4.18-10.src.rpm
Source RPM.

Red Hat RPM kernel-2.4.18-10.athlon.rpm
ftp://updates.redhat.com/7.3/en/os/athlon/kernel-2.4.18-10.athlon.rpm
Optimized for Athlon systems.

Red Hat RPM kernel-smp-2.4.18-10.athlon.rpm
ftp://updates.redhat.com/7.3/en/os/athlon/kernel-smp-2.4.18-10.athlon.rpm
Optimized for SMP Athlon systems.

Red Hat RPM kernel-2.4.18-10.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/kernel-2.4.18-10.i386.rpm
Optimized for i386 systems.

Red Hat RPM kernel-source-2.4.18-10.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/kernel-source-2.4.18-10.i386.rpm

Red Hat RPM kernel-doc-2.4.18-10.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/kernel-doc-2.4.18-10.i386.rpm

Red Hat RPM kernel-BOOT-2.4.18-10.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/kernel-BOOT-2.4.18-10.i386.rpm

Red Hat RPM kernel-2.4.18-10.i586.rpm
ftp://updates.redhat.com/7.3/en/os/i586/kernel-2.4.18-10.i586.rpm
Optimized for i586 systems.

Red Hat RPM kernel-smp-2.4.18-10.i586.rpm
ftp://updates.redhat.com/7.3/en/os/i586/kernel-smp-2.4.18-10.i586.rpm
Optimized for SMP i586 systems.

Red Hat RPM kernel-2.4.18-10.i686.rpm
ftp://updates.redhat.com/7.3/en/os/i686/kernel-2.4.18-10.i686.rpm
Optimized for i686 systems.

Red Hat RPM kernel-smp-2.4.18-10.i686.rpm
ftp://updates.redhat.com/7.3/en/os/i686/kernel-smp-2.4.18-10.i686.rpm
Optimized for SMP i686 systems.

Red Hat RPM kernel-bigmem-2.4.18-10.i686.rpm
ftp://updates.redhat.com/7.3/en/os/i686/kernel-bigmem-2.4.18-10.i686.rpm
Additional package for i686 systems.

Red Hat RPM kernel-debug-2.4.18-10.i686.rpm
ftp://updates.redhat.com/7.3/en/os/i686/kernel-debug-2.4.18-10.i686.rpm
Additional package for i686 systems.

相关信息
Silvio Cesare, Stas Sergeev, Andi Kleen and Solar Designer
参考:http://online.securityfocus.com/advisories/4412
Copyright © 1998-2003 XFOCUS Team. All Rights Reserved