VUPEN Security - Mandriva Security Update Fixes Multiple Linux Kernel Local Vulnerabilities / Exploit (Security Advisories)

	Contact \| Site en Français

VUPEN VNS v4.0

Features and Options

Free 14-Day Trial

Partner Program

Receive More Information

Latest Intelligence

VUPEN Security Advisories

Virus and Malware Alerts

VUPEN Security Research

Threat Watch Blog

Zero-Day Monitor

Search Engine

Mailing List & RSS

>> Mandriva Security Update Fixes Multiple Linux Kernel Local Vulnerabilities

Title : Mandriva Security Update Fixes Multiple Linux Kernel Local Vulnerabilities
VUPEN ID : VUPEN/ADV-2006-1076
CVE ID : CVE-2005-2709 - CVE-2005-3044 - CVE-2005-3359 - CVE-2006-0457 - CVE-2006-0554 - CVE-2006-0555 - CVE-2006-0557 - CVE-2006-0741 - CVE-2006-0742
CWE ID : VUPEN VNS Only

CVSS V2 : VUPEN VNS Only

Rated as : Moderate Risk

Remotely Exploitable : No
Locally Exploitable : Yes
Release Date : 2006-03-24

Technical Description

Receive VUPEN Security alerts in a Text format

Receive VUPEN Security alerts in a PDF format

Receive VUPEN Security alerts in an XML format

Mandriva has released updated packages to address multiple vulnerabilities identified in Kernel. These flaws could be exploited by attackers to cause a denial of service of obtain elevated privileges. For additional information, see : VUPEN/ADV-2006-0856 - VUPEN/ADV-2006-0804 - VUPEN/ADV-2006-0804 - VUPEN/ADV-2006-0856

Affected Products

Mandriva Linux 2006.0

Solution

Upgrade the affected packages :

Mandriva Linux 2006.0:
1b218623b306f20afa82d0016d7f2b02 2006.0/RPMS/kernel-2.6.12.18mdk-1-1mdk.i586.rpm
a051bd99d550490b0f878e53e68dad2f 2006.0/RPMS/kernel-BOOT-2.6.12.18mdk-1-1mdk.i586.rpm
2ed8565ec9f4bbf280ee38563cbf5ae9 2006.0/RPMS/kernel-i586-up-1GB-2.6.12.18mdk-1-1mdk.i586.rpm
93f467fbc20508c7cfcc1291c00883a4 2006.0/RPMS/kernel-i686-up-4GB-2.6.12.18mdk-1-1mdk.i586.rpm
6d682e1336225bfe35c145a9b735cee2 2006.0/RPMS/kernel-smp-2.6.12.18mdk-1-1mdk.i586.rpm
e2a7bf396ef80eb13b3b49e49a632d5e 2006.0/RPMS/kernel-source-2.6-2.6.12-18mdk.i586.rpm
61e26ccfa23888a5e877137565bd2e62 2006.0/RPMS/kernel-source-stripped-2.6-2.6.12-18mdk.i586.rpm
d6b3b6357df23337584dcf53d17468d3 2006.0/RPMS/kernel-xbox-2.6.12.18mdk-1-1mdk.i586.rpm
4b6b2309768ff66a5277cd0b2ad6135f 2006.0/RPMS/kernel-xen0-2.6.12.18mdk-1-1mdk.i586.rpm
6ea381cb538e6f845bdf7dd10f15b623 2006.0/RPMS/kernel-xenU-2.6.12.18mdk-1-1mdk.i586.rpm
661bf62bc99323115940fd5a088df875 2006.0/SRPMS/kernel-2.6.12.18mdk-1-1mdk.src.rpm

Mandriva Linux 2006.0/X86_64:
f01f7df9165bc18cecef5c306fadd288 x86_64/2006.0/RPMS/kernel-2.6.12.18mdk-1-1mdk.x86_64.rpm
d1c1a1bd3a95220dbb33dc51a8bf6515 x86_64/2006.0/RPMS/kernel-BOOT-2.6.12.18mdk-1-1mdk.x86_64.rpm
bab61b2878c55528c09c327e8fdbb444 x86_64/2006.0/RPMS/kernel-smp-2.6.12.18mdk-1-1mdk.x86_64.rpm
222a970d935dcd178f943e2cedb96091 x86_64/2006.0/RPMS/kernel-source-2.6-2.6.12-18mdk.x86_64.rpm
2a327a55284339a3cec137b10f55b16d x86_64/2006.0/RPMS/kernel-source-stripped-2.6-2.6.12-18mdk.x86_64.rpm
661bf62bc99323115940fd5a088df875 x86_64/2006.0/SRPMS/kernel-2.6.12.18mdk-1-1mdk.src.rpm

References

http://www.vupen.com/english/advisories/2006/1076
http://archives.mandrivalinux.com/security-announce/2006-03/msg00011.php

ChangeLog

2006-03-24 : Initial release

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time alerts with CVE, CWE, and CVSS when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.

VUPEN Vulnerability
Notification Service

Latest Advisories

>> 2010-03-22

Fw-BofF "configRootDir" and "configDBchoice" File Inclusion Issues

>> 2010-03-22

WebMaid CMS Multiple Parameter File Inclusion Vulnerabilities

>> 2010-03-22

notsoPureEdit "content" Parameter Remote File Inclusion Vulnerability

>> 2010-03-22

4xcms "user" Parameter Processing Remote SQL Injection Vulnerability

>> 2010-03-22

Gift Exchange for Joomla "pkg" Parameter SQL Injection Vulnerability

More Informations