Contact | Site en Français               

 


 

Vulnerabilities & Threats
 
  VUPEN Security Advisories
  Linux Security Advisories

  Malware Advisories
  Security Research
  Threat Watch Blog
  Zero-Day Monitor
  Search Engine
  Mailing List & RSS
 
   

>> Fedora Security Update Fixes Kernel Denial of Service and Security Bypass Issues

Title : Fedora Security Update Fixes Kernel Denial of Service and Security Bypass Issues
VUPEN ID : VUPEN/ADV-2007-2182
CVE ID : CVE-2007-2451 - CVE-2007-2453 - CVE-2007-2875 - CVE-2007-2876
Rated as : Moderate Risk 
Remotely Exploitable : No
Locally Exploitable : Yes
Release Date : 2007-06-14

Technical Description    Receive VUPEN Security alerts in a Text format  Receive VUPEN Security alerts in a PDF format  Receive VUPEN Security alerts in an XML format  Receive VUPEN Security notifications by SMS 

Multiple vulnerabilities have been identified in Fedora, which could be exploited by attackers to bypass security restrictions, disclose sensitive information or cause a denial of service. These issues are caused by errors in Kernel. For additional information, see : VUPEN/ADV-2007-2105 - VUPEN/ADV-2007-1987

Affected Products

Fedora 7
Fedora Core 6

Solution

Upgrade the affected packages :

a55769f1883e2ff52e3d8552b936674d0dbdfe26 kernel-doc-2.6.21-1.3228.fc7.noarch.rpm
82914c97d13e190bd65ea2274d80cc36b779c398 kernel-headers-2.6.21-1.3228.fc7.i386.rpm
1ed1b30e05ad86fe8973a357901776715b20d8c8 kernel-PAE-debug-debuginfo-2.6.21-1.3228.fc7.i686.rpm
6ec5cb5508e8dfbca5be6925a4b27aba0eef27a3 kernel-PAE-debug-devel-2.6.21-1.3228.fc7.i686.rpm
48743a6149addd82a5bfc68b763697374409a390 kernel-PAE-2.6.21-1.3228.fc7.i686.rpm
2b2f04e52869da70164a5767d372a20e44072649 kernel-debug-2.6.21-1.3228.fc7.i686.rpm
9d3c9b5e2b4496e5212248c01661bc2a0eddd83f kernel-PAE-debuginfo-2.6.21-1.3228.fc7.i686.rpm
d57d990d7f57ad50dba2ba75f777f996f5053a6a kernel-debug-debuginfo-2.6.21-1.3228.fc7.i686.rpm
1f28ec3084ce8016c6579e0e4dcf4088ac0f37bd kernel-PAE-debug-2.6.21-1.3228.fc7.i686.rpm
06c558dfd7296a300ed95cb67b3be0e205144105 kernel-2.6.21-1.3228.fc7.i686.rpm
1627b8c01fe4cd47221866b633d8c26f217f0267 kernel-PAE-devel-2.6.21-1.3228.fc7.i686.rpm
d1713c346bbd4173c18915a7add0e3ae27dcfeee kernel-devel-2.6.21-1.3228.fc7.i686.rpm
1f12066752ff4d6fd16449f8f43de87bb6a346dd kernel-debug-devel-2.6.21-1.3228.fc7.i686.rpm
2c23357a6e5008cbba6aefbb46c1b4b930bf3b6d kernel-debuginfo-common-2.6.21-1.3228.fc7.i686.rpm
bc498f2f966fd298564b44877f7b1be83a8e6b16 kernel-debuginfo-2.6.21-1.3228.fc7.i686.rpm
793da198e9ab914784d4ab3d96d06b15c73395b1 kernel-kdump-devel-2.6.21-1.3228.fc7.ppc64.rpm
20bbd3b3acb8d9bf14f91fe6c17b70a0c71e76f1 kernel-devel-2.6.21-1.3228.fc7.ppc64.rpm
f145e4854698b3eb6c022651e1b26af95cdd5955 kernel-debuginfo-2.6.21-1.3228.fc7.ppc64.rpm
74474669bc968c045f1a6b45be5d93947cac0af3 kernel-2.6.21-1.3228.fc7.ppc64.rpm
9623f0b751355d3560ddb8fe38581b39be168099 kernel-kdump-2.6.21-1.3228.fc7.ppc64.rpm
3d7dc03b25790d508edd1cb6ba97a86539de8e0c kernel-headers-2.6.21-1.3228.fc7.ppc64.rpm
829d33917c4f54da2e7cf9dd6928cccb2e024113 kernel-debuginfo-common-2.6.21-1.3228.fc7.ppc64.rpm
adb8488feb134bb28863e01df0f61eec2b16d4d9 kernel-kdump-debuginfo-2.6.21-1.3228.fc7.ppc64.rpm
2e9d8caabbde1944ec0c24b1b907a23c06b71d8d kernel-debuginfo-common-2.6.21-1.3228.fc7.i586.rpm
fd1776d36fce7349ee7adac5c3c24ef97fe26259 kernel-2.6.21-1.3228.fc7.i586.rpm
9ba7e6e36800727dfd705656705fb23d7153f73f kernel-debuginfo-2.6.21-1.3228.fc7.i586.rpm
74c201401ca61a5aff99ed836ecedc4b8ba5663f kernel-devel-2.6.21-1.3228.fc7.i586.rpm
9ce6b4274eb8b81158404bfc424f2fa04d98fdef kernel-debuginfo-2.6.21-1.3228.fc7.x86_64.rpm
38cbfdd7f150dc554fb40a0ff19506f1d3e8e9a7 kernel-debuginfo-common-2.6.21-1.3228.fc7.x86_64.rpm
b3fe5e70268d06d549a335b8f7ec5cdfb131e8c8 kernel-headers-2.6.21-1.3228.fc7.x86_64.rpm
fd1f2470a5120e66d4fcc527906544d3b33bc1c2 kernel-kdump-2.6.21-1.3228.fc7.x86_64.rpm
e855ed876c059567921b5d5af6dbe949f0c11b77 kernel-debug-devel-2.6.21-1.3228.fc7.x86_64.rpm
f5093d791dfc938e5ca7267fa126603b9136f081 kernel-kdump-devel-2.6.21-1.3228.fc7.x86_64.rpm
2f87d84cedf0f7d16973e55f828c2fcd74f39a69 kernel-kdump-debuginfo-2.6.21-1.3228.fc7.x86_64.rpm
fc2408db2152c5cb7f59946b09d3adf70cd9bdf6 kernel-2.6.21-1.3228.fc7.x86_64.rpm
8a7725d0a24aa0ed0712a6fb529f7b311b86ec2e kernel-debug-debuginfo-2.6.21-1.3228.fc7.x86_64.rpm
600be76626d89143077390ceb0b51726a50f682b kernel-devel-2.6.21-1.3228.fc7.x86_64.rpm
695af229e393c3ee42fc86cbabf2676075a8bf6e kernel-debug-2.6.21-1.3228.fc7.x86_64.rpm
53b41a93ca964ae98dd0b292255befa321fd36bb kernel-smp-2.6.21-1.3228.fc7.ppc.rpm
f0ce7622447cef602132a62b65f395334d25bd10 kernel-headers-2.6.21-1.3228.fc7.ppc.rpm
85e8380929a0808c9be936174f6264c4c25b9531 kernel-smp-devel-2.6.21-1.3228.fc7.ppc.rpm
56a93625ed3b5e8a5bec5664f581fabe5b8eb9d0 kernel-devel-2.6.21-1.3228.fc7.ppc.rpm
19698c5bd563d69993a2f015fc46df0f011ba653 kernel-2.6.21-1.3228.fc7.ppc.rpm
a325622e985d3880fa20afbb52f4ad3e0e5de7aa kernel-debuginfo-common-2.6.21-1.3228.fc7.ppc.rpm
debd0d4cb5e3ef00834d95ab5683009a5988bdb7 kernel-debuginfo-2.6.21-1.3228.fc7.ppc.rpm
cc4b37bf4e6a67853c7be06a74097095ff04dd62 kernel-smp-debuginfo-2.6.21-1.3228.fc7.ppc.rpm
852655012e7d2f90997f2fb91ab9614d5656b3b8 kernel-2.6.21-1.3228.fc7.src.rpm

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/

0b727e9ed8ccd69d8e5ab2c5c3aecc0d89551f8d SRPMS/kernel-2.6.20-1.2962.fc6.src.rpm
0b727e9ed8ccd69d8e5ab2c5c3aecc0d89551f8d noarch/kernel-2.6.20-1.2962.fc6.src.rpm
130584a7488ef11ff71c54d9e4493f2b09a1d756 ppc/debug/kernel-debuginfo-common-2.6.20-1.2962.fc6.ppc.rpm
4f7eab0951a9c28c68b48a376d34fa9cacbde9d0 ppc/debug/kernel-smp-debuginfo-2.6.20-1.2962.fc6.ppc.rpm
c7b5b26c3bac2b1906fbb51d3a9c069ecc708d0d ppc/debug/kernel-debuginfo-2.6.20-1.2962.fc6.ppc.rpm
b0c0349a33566440a01b980e33012717ecb220b7 ppc/kernel-smp-2.6.20-1.2962.fc6.ppc.rpm
764d9c14085cc0aa1f9e98e3319b69f9a0cff0b1 ppc/kernel-2.6.20-1.2962.fc6.ppc.rpm
64ebfbafc51f8498a5fbe7504d7658388d6a5135 ppc/kernel-headers-2.6.20-1.2962.fc6.ppc.rpm
492cb25659e49bdd64d8225a86e0a2a5fdaf8a97 ppc/kernel-devel-2.6.20-1.2962.fc6.ppc.rpm
e5f10715d27158d6b4fe3520d9bade72089c0f7a ppc/kernel-smp-devel-2.6.20-1.2962.fc6.ppc.rpm
00ec8ffa1427afddb10d953db63422778bfbffc7 ppc/kernel-doc-2.6.20-1.2962.fc6.noarch.rpm
779668a511adeb7144eb5a5de36198d737419336 x86_64/debug/kernel-debuginfo-2.6.20-1.2962.fc6.x86_64.rpm
2e4fa2bb6dbb14a86abf2853a84337849b9e9cf7 x86_64/kernel-debug-2.6.20-1.2962.fc6.x86_64.rpm
9d14d567a433ab3ea248cc6f37db0d9d7fc13437 x86_64/debug/kernel-debug-debuginfo-2.6.20-1.2962.fc6.x86_64.rpm
287450e147c7104c7e92bb715a7e51c6bef66de0 x86_64/kernel-2.6.20-1.2962.fc6.x86_64.rpm
413c6e8b21ec395701ed5b795a797a0256b2fb0c x86_64/debug/kernel-kdump-debuginfo-2.6.20-1.2962.fc6.x86_64.rpm
ca525ac789934d758d630a02771aa09196f257a3 x86_64/kernel-kdump-devel-2.6.20-1.2962.fc6.x86_64.rpm
3b99bc1c02864304056a6a31697fe46e76e3ad5c x86_64/kernel-kdump-2.6.20-1.2962.fc6.x86_64.rpm
f4226c4978bb54ece0f3c69cf170707fdee8e919 x86_64/kernel-xen-devel-2.6.20-1.2962.fc6.x86_64.rpm
c10ef5367abd97ce864106565ee194c02e5dfa3f x86_64/kernel-xen-2.6.20-1.2962.fc6.x86_64.rpm
f3042801fbbd7a5628c01df1158fed64ca08168d x86_64/kernel-debug-devel-2.6.20-1.2962.fc6.x86_64.rpm
0dd0522fe68d629fb99f0b2d763db87a33c9fff6 x86_64/kernel-headers-2.6.20-1.2962.fc6.x86_64.rpm
7d115ffafa1c3b8e16fdc7319fc44a5b719df46c x86_64/debug/kernel-xen-debuginfo-2.6.20-1.2962.fc6.x86_64.rpm
163a1c2c3542f748aecc08a6c9bd15ad875219f5 x86_64/debug/kernel-debuginfo-common-2.6.20-1.2962.fc6.x86_64.rpm
1f6ef82970fc2e6856904dc3af7395f94888e8e3 x86_64/kernel-devel-2.6.20-1.2962.fc6.x86_64.rpm
00ec8ffa1427afddb10d953db63422778bfbffc7 x86_64/kernel-doc-2.6.20-1.2962.fc6.noarch.rpm
ccbb912114f6b0673119235c50d7933a16c9b89d i386/kernel-headers-2.6.20-1.2962.fc6.i386.rpm
f65fdf32a026fda85ece663d79e761171a9c488c i386/debug/kernel-debuginfo-2.6.20-1.2962.fc6.i586.rpm
667d49c585a063b77a202f727e728366f2d843c2 i386/kernel-devel-2.6.20-1.2962.fc6.i586.rpm
9f45b7313520f3f2e68fba48e8076e46e1dcaa0e i386/debug/kernel-debuginfo-common-2.6.20-1.2962.fc6.i586.rpm
1fe5e720d13515e2ef35593495e5fddb24af03d9 i386/kernel-2.6.20-1.2962.fc6.i586.rpm
6d495364cbb48af389a1b39228bf3d4b973c8f2a i386/kernel-kdump-devel-2.6.20-1.2962.fc6.i686.rpm
f6b39ca47e7cd582b2f02caeb677cb15351a546e i386/kernel-PAE-2.6.20-1.2962.fc6.i686.rpm
9762267cfc4f79c758d4aea2268ebb6072f25b0c i386/debug/kernel-debug-debuginfo-2.6.20-1.2962.fc6.i686.rpm
7dddabdc5dbc2d942e47b4c5cf1dd85c4112fdba i386/kernel-debug-2.6.20-1.2962.fc6.i686.rpm
29eb246a30265fd0525f81c75130d4d8428f333b i386/kernel-devel-2.6.20-1.2962.fc6.i686.rpm
6d094d2de13ca86edc2aba458c085c6b8f2f6aa1 i386/debug/kernel-PAE-debuginfo-2.6.20-1.2962.fc6.i686.rpm
39e57a62ebc361698039065b4eff2aa305402d1b i386/kernel-PAE-devel-2.6.20-1.2962.fc6.i686.rpm
b77e1abcd635b47ff327541ff63bf768dfeda6d6 i386/kernel-debug-devel-2.6.20-1.2962.fc6.i686.rpm
0556016acd1d04372e2210f66aad281ccaa948e0 i386/kernel-kdump-2.6.20-1.2962.fc6.i686.rpm
c8ef7e551b4adcae94bbbc250f535492a31937b9 i386/kernel-2.6.20-1.2962.fc6.i686.rpm
6788eceae3b081033be2afc9d882f64288675113 i386/debug/kernel-debuginfo-2.6.20-1.2962.fc6.i686.rpm
1c0fbf3fc5bee908aafc85117c206f7eab2c17e4 i386/debug/kernel-PAE-debug-debuginfo-2.6.20-1.2962.fc6.i686.rpm
db34da6353ff42d1fac6aa6ff21f74b224e9b556 i386/kernel-xen-devel-2.6.20-1.2962.fc6.i686.rpm
826ff2837b4bb78fee92b4bb09584fb3aa94376a i386/kernel-PAE-debug-2.6.20-1.2962.fc6.i686.rpm
bff59dad1479d1c24d440831ad4785d171e5a612 i386/kernel-PAE-debug-devel-2.6.20-1.2962.fc6.i686.rpm
d4e6b38bcfe54c686f4cb799e524101a74b93dae i386/debug/kernel-debuginfo-common-2.6.20-1.2962.fc6.i686.rpm
ae376eb8521926b0a77f95ea6647e90c54996478 i386/debug/kernel-kdump-debuginfo-2.6.20-1.2962.fc6.i686.rpm
5ef7e26da10beed8bdf31326429aadd284f1bf65 i386/debug/kernel-xen-debuginfo-2.6.20-1.2962.fc6.i686.rpm
816a494d677a4f0550a9805b1747067e30eece1d i386/kernel-xen-2.6.20-1.2962.fc6.i686.rpm
00ec8ffa1427afddb10d953db63422778bfbffc7 i386/kernel-doc-2.6.20-1.2962.fc6.noarch.rpm

References

http://www.vupen.com/english/advisories/2007/2182
https://www.redhat.com/archives/fedora-package-announce/2007-June/msg00242.html
https://www.redhat.com/archives/fedora-package-announce/2007-June/msg00544.html

ChangeLog

2007-06-14 : Initial release
2007-07-02 : Updated Solution

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.
 

Vulnerability Alerting

Free 14-Day Trial
 
  Latest News

 

  >> 2009-06-10

     

  VUPEN Security Research
  Discovered Critical Flaws
  in Adobe Acrobat and MS
  Office Word


  >> 2009-06-02

     

  VUPEN Security Research
  Discovered Critical Flaws
  in ACDSee Products


  >> 2009-05-22

     

  VUPEN Discovered Two
  Critical Vulnerabilities in
  Novell GroupWise 8 / 7


  >> 2009-05-12

     

  Microsoft Patched 14
  Office PowerPoint Flaws

 

  >> 2009-04-28

     

  Adobe Reader / Acrobat
  Vulnerabilities Disclosed

 

 

More Informations    
    








Copyright 2003-2009 © VUPEN.COM - Privacy Policy