Technical Description

Two vulnerabilities have been identified in Linux Kernel, which could be exploited by local attackers to cause a denial of service or gain elevated privileges.

The first issue is caused due to certain x86_64 registers not being zero-extended after ptrace in the 32bit entry path, which could be exploited by malicious users to obtain elevated privileges.

The second vulnerability is caused by an error in the ATM module when loaded with CLIP support while the CLIP module is not loaded yet, which could be exploited by malicious users to panic a vulnerable system, creating a denial of service condition.

Affected Products

Linux Kernel versions prior to 2.4.35.3
Linux Kernel versions prior to 2.6.22.7
Linux Kernel versions prior to 2.6.20.20

Solution

Upgrade to Linux Kernel version 2.4.35.3, 2.6.22.7 or 2.6.20.20 :
http://www.kernel.org

References

http://www.vupen.com/english/advisories/2007/3246
http://kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.35.3
http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.7
http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.20

Credits

Vulnerabilities reported by Wojciech Purczynski and Gilles Espinasse.

ChangeLog

2007-09-24 : Initial release
2007-09-27 : Updated Solution

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.