|
|
>> Mandriva Security Update Fixes Kernel Security Bypass and DoS Issues
|
Multiple vulnerabilities have been identified in Mandriva, which could be exploited by attackers or malicious users to bypass security restrictions, disclose sensitive information, cause a denial of service or execute arbitrary code. These issues are caused by errors in Kernel. For additional information, see : VUPEN/ADV-2008-0445 - VUPEN/ADV-2008-1543 - VUPEN/ADV-2008-1770 - VUPEN/ADV-2008-1938
Affected Products
Mandriva Corporate 4.0
Solution
Upgrade the affected packages :
Corporate 4.0:
aca649de138ecacc1118ffeb85a8585a corporate/4.0/i586/kernel-2.6.12.36mdk-1-1mdk.i586.rpm
4fe3d387ed0da34cafd6cce37296b105 corporate/4.0/i586/kernel-BOOT-2.6.12.36mdk-1-1mdk.i586.rpm
d1f4ea6bced7542e9ae13fe587550cef corporate/4.0/i586/kernel-doc-2.6.12.36mdk-1-1mdk.i586.rpm
c8981c9817e8f0cb532f33ae7a7f309a corporate/4.0/i586/kernel-i586-up-1GB-2.6.12.36mdk-1-1mdk.i586.rpm
40b1b582f84d04cbbe7d80c03db8caf7 corporate/4.0/i586/kernel-i686-up-4GB-2.6.12.36mdk-1-1mdk.i586.rpm
d215dccb6a76fa5f783397fddbfc6f14 corporate/4.0/i586/kernel-smp-2.6.12.36mdk-1-1mdk.i586.rpm
b64cf23b05ec50253a05d190b7663ef7 corporate/4.0/i586/kernel-source-2.6.12.36mdk-1-1mdk.i586.rpm
9473bec94760af7a36c9a67714363480 corporate/4.0/i586/kernel-source-stripped-2.6.12.36mdk-1-1mdk.i586.rpm
df75cfb33266eb4a18d75e367a9f0c11 corporate/4.0/i586/kernel-xbox-2.6.12.36mdk-1-1mdk.i586.rpm
cb8bbb9f2daff324ec085ac80b146101 corporate/4.0/i586/kernel-xen0-2.6.12.36mdk-1-1mdk.i586.rpm
d8e3b3c456c8ba162b957d22b6313b14 corporate/4.0/i586/kernel-xenU-2.6.12.36mdk-1-1mdk.i586.rpm
cf443a0b3549d4868171933bb6504d03 corporate/4.0/SRPMS/kernel-2.6.12.36mdk-1-1mdk.src.rpm
Corporate 4.0/X86_64:
181a597366b6c12d437148b9ba4e42da corporate/4.0/x86_64/kernel-2.6.12.36mdk-1-1mdk.x86_64.rpm
4bc50966cf92867ebe5031a271b2f792 corporate/4.0/x86_64/kernel-BOOT-2.6.12.36mdk-1-1mdk.x86_64.rpm
f67a89cd2715ab7444803532d9aa9f5c corporate/4.0/x86_64/kernel-doc-2.6.12.36mdk-1-1mdk.x86_64.rpm
12c6df680e33523ab403d01202e9ffc8 corporate/4.0/x86_64/kernel-smp-2.6.12.36mdk-1-1mdk.x86_64.rpm
ea697bdc33252e1b7fba82352c91b21b corporate/4.0/x86_64/kernel-source-2.6.12.36mdk-1-1mdk.x86_64.rpm
8c1d20d6bc3fb30f7b5a51f97af6419a corporate/4.0/x86_64/kernel-source-stripped-2.6.12.36mdk-1-1mdk.x86_64.rpm
454cafa0ee5243852a1ce9f56f9cfd42 corporate/4.0/x86_64/kernel-xen0-2.6.12.36mdk-1-1mdk.x86_64.rpm
f52a9f3a0ff8f7f1ad7c043ca1d424c4 corporate/4.0/x86_64/kernel-xenU-2.6.12.36mdk-1-1mdk.x86_64.rpm
cf443a0b3549d4868171933bb6504d03 corporate/4.0/SRPMS/kernel-2.6.12.36mdk-1-1mdk.src.rpm
References
http://www.vupen.com/english/advisories/2008/2408
http://archives.mandrivalinux.com/security-announce/2008-08/msg00017.php
ChangeLog
2008-08-20 : Initial release
Vulnerability Management
Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback
If you have additional information or corrections for this security advisory please submit them via our contact form. | |
|
