VUPEN Security - Mandriva Security Update Fixes Multiple Kernel Denial of Service Vulnerabilities / Exploit (Security Advisories)

	Contact \| Site en Français

Vulnerabilities & Threats

VUPEN Security Advisories

Linux Security Advisories

Malware Advisories

Security Research

Threat Watch Blog

Zero-Day Monitor

Search Engine

Mailing List & RSS

>> Mandriva Security Update Fixes Multiple Kernel Denial of Service Vulnerabilities

Title : Mandriva Security Update Fixes Multiple Kernel Denial of Service Vulnerabilities
VUPEN ID : VUPEN/ADV-2006-1873
CVE ID : CVE-2006-0744 - CVE-2006-1052 - CVE-2006-1242 - CVE-2006-1522 - CVE-2006-1525 - CVE-2006-1527 - CVE-2006-2071 - CVE-2006-2271 - CVE-2006-2272
Rated as : Moderate Risk

Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2006-05-21

Technical Description

Receive VUPEN Security alerts in a Text format

Receive VUPEN Security alerts in a PDF format

Receive VUPEN Security alerts in an XML format

Receive VUPEN Security notifications by SMS

Mandriva has released updated packages to address multiple vulnerabilities identified in Kernel. These flaws could be exploited by attackers to cause a denial of service, disclose sensitive information, or bypass security restrictions. For additional information, see : VUPEN/ADV-2006-1390 - VUPEN/ADV-2006-1140 - VUPEN/ADV-2006-1307 - VUPEN/ADV-2006-1399 - VUPEN/ADV-2006-1632 - VUPEN/ADV-2006-1391 - VUPEN/ADV-2006-1734

Affected Products

Mandriva Linux 2006.0

Solution

Upgrade the affected packages :

Mandriva Linux 2006.0:
7750a216a241ed6af6d22e25cd06a5c2 2006.0/RPMS/bootsplash-3.1.12-0.2.20060mdk.i586.rpm
ba0b9bcb350d995590f680add39cbc5b 2006.0/RPMS/kernel-2.6.12.21mdk-1-1mdk.i586.rpm
591ab924840be035eba8a94f8d43eb9a 2006.0/RPMS/kernel-BOOT-2.6.12.21mdk-1-1mdk.i586.rpm
200c65b3c9a0daf1409f377a6361cd36 2006.0/RPMS/kernel-i586-up-1GB-2.6.12.21mdk-1-1mdk.i586.rpm
c131b93ce94dd3f99b5911c9af3a4156 2006.0/RPMS/kernel-i686-up-4GB-2.6.12.21mdk-1-1mdk.i586.rpm
3cfdf97e572b8087b3fc695770502fa6 2006.0/RPMS/kernel-smp-2.6.12.21mdk-1-1mdk.i586.rpm
9323571a05fc5d281939c83daf84e375 2006.0/RPMS/kernel-source-2.6-2.6.12-21mdk.i586.rpm
16fbb0c19f1f2b45e40e6547db813db8 2006.0/RPMS/kernel-source-stripped-2.6-2.6.12-21mdk.i586.rpm
a84be259414f8bac67f484b4b02f6a46 2006.0/RPMS/kernel-xbox-2.6.12.21mdk-1-1mdk.i586.rpm
e158c0935ca9f812b06372e2071dba17 2006.0/RPMS/kernel-xen0-2.6.12.21mdk-1-1mdk.i586.rpm
f0d9631ac5fa2a4e991012e2e51ced5f 2006.0/RPMS/kernel-xenU-2.6.12.21mdk-1-1mdk.i586.rpm
728741e920bc860bb6772ed145d3f5c5 2006.0/RPMS/mkinitrd-4.2.17-17.2.20060mdk.i586.rpm
a81220042492360e66b2a546810486d9 2006.0/SRPMS/bootsplash-3.1.12-0.2.20060mdk.src.rpm
5e2460c3d8da16724a5e70a28f3a6192 2006.0/SRPMS/kernel-2.6.12.21mdk-1-1mdk.src.rpm
afc7e77996523c7655fbdcb057da3cff 2006.0/SRPMS/mkinitrd-4.2.17-17.2.20060mdk.src.rpm

Mandriva Linux 2006.0/X86_64:
a0687b63a2027b3f1c378114ee8776b7 x86_64/2006.0/RPMS/bootsplash-3.1.12-0.2.20060mdk.x86_64.rpm
533b60ecaa224ebcf1775da64681c625 x86_64/2006.0/RPMS/kernel-2.6.12.21mdk-1-1mdk.x86_64.rpm
ed40189238ba65b1619010c97e71ae09 x86_64/2006.0/RPMS/kernel-BOOT-2.6.12.21mdk-1-1mdk.x86_64.rpm
a40edd3cfeb70a705951e05515881a59 x86_64/2006.0/RPMS/kernel-smp-2.6.12.21mdk-1-1mdk.x86_64.rpm
2823e60fa1510c2ac269a69921466042 x86_64/2006.0/RPMS/kernel-source-2.6-2.6.12-21mdk.x86_64.rpm
9cd35f648ca8d30b49b38841cc6766db x86_64/2006.0/RPMS/kernel-source-stripped-2.6-2.6.12-21mdk.x86_64.rpm
e87787cd3f30034b40cf0e8eb4301437 x86_64/2006.0/RPMS/mkinitrd-4.2.17-17.2.20060mdk.x86_64.rpm
a81220042492360e66b2a546810486d9 x86_64/2006.0/SRPMS/bootsplash-3.1.12-0.2.20060mdk.src.rpm
5e2460c3d8da16724a5e70a28f3a6192 x86_64/2006.0/SRPMS/kernel-2.6.12.21mdk-1-1mdk.src.rpm
afc7e77996523c7655fbdcb057da3cff x86_64/2006.0/SRPMS/mkinitrd-4.2.17-17.2.20060mdk.src.rpm

References

http://www.vupen.com/english/advisories/2006/1873
http://www.frsirt.com/english/reference/11970

ChangeLog

2006-05-21 : Initial release

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.

Vulnerability Alerting

Free 14-Day Trial

Latest News

>> 2009-06-10

VUPEN Security Research
Discovered Critical Flaws
in Adobe Acrobat and MS
Office Word

>> 2009-06-02

VUPEN Security Research
Discovered Critical Flaws
in ACDSee Products

>> 2009-05-22

VUPEN Discovered Two
Critical Vulnerabilities in
Novell GroupWise 8 / 7

>> 2009-05-12

Microsoft Patched 14
Office PowerPoint Flaws

>> 2009-04-28

Adobe Reader / Acrobat
Vulnerabilities Disclosed

More Informations