BDU:2015-00882

Опубликовано: 01 янв. 2015

Источник: fstec

CVSS2: 7.2

EPSS Низкий

Описание

Множественные уязвимости пакета linux-patch-debian-2.6.24 операционной системы Debian GNU/Linux, эксплуатация которых может привести к нарушению конфиденциальности, целостности и доступности защищаемой информации.

Вендор

Сообщество свободного программного обеспечения

Наименование ПО

Debian GNU/Linux

Версия ПО

до 4 (Debian GNU/Linux)

Тип ПО

Операционная система

Операционные системы и аппаратные платформы

Уровень опасности уязвимости

Высокий уровень опасности (базовая оценка CVSS 2.0 составляет 7,2)

Возможные меры по устранению уязвимости

Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:

Debian GNU/Linux 4:

ppc:

linux-image-2.6.24-etchnhalf.1-powerpc-smp - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-all-powerpc - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-common - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-powerpc - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-powerpc-miboot - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-powerpc - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-powerpc64 - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-powerpc64 - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-powerpc-smp - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-powerpc-miboot - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-all - 2.6.24-6~etchnhalf.6

s390x:

linux-headers-2.6.24-etchnhalf.1-all-s390 - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-all - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-s390x - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-s390 - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-s390 - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-s390-tape - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-common - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-s390x - 2.6.24-6~etchnhalf.6

i686:

linux-image-2.6.24-etchnhalf.1-686 - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-686 - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-686-bigmem - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-486 - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-all-i386 - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-686-bigmem - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-amd64 - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-common - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-all - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-486 - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-amd64 - 2.6.24-6~etchnhalf.6

hppa:

linux-headers-2.6.24-etchnhalf.1-parisc - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-parisc-smp - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-parisc - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-parisc64 - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-all - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-parisc-smp - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-common - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-all-hppa - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-parisc64 - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-parisc64-smp - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-parisc64-smp - 2.6.24-6~etchnhalf.6

sparc:

linux-headers-2.6.24-etchnhalf.1-all-sparc - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-common - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-sparc64-smp - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-sparc64 - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-sparc64 - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-sparc64-smp - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-all - 2.6.24-6~etchnhalf.6

x86-64:

linux-headers-2.6.24-etchnhalf.1-amd64 - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-common - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-all - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-all-amd64 - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-amd64 - 2.6.24-6~etchnhalf.6

ia64:

linux-headers-2.6.24-etchnhalf.1-all - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-mckinley - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-itanium - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-all-ia64 - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-itanium - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-common - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-mckinley - 2.6.24-6~etchnhalf.6

alpha:

linux-headers-2.6.24-etchnhalf.1-alpha-generic - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-all - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-all-alpha - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-alpha-legacy - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-common - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-alpha-smp - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-alpha-smp - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-alpha-generic - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-alpha-legacy - 2.6.24-6~etchnhalf.6

noarch:

linux-patch-debian-2.6.24 - 2.6.24-6~etchnhalf.6

linux-support-2.6.24-etchnhalf.1 - 2.6.24-6~etchnhalf.6

linux-doc-2.6.24 - 2.6.24-6~etchnhalf.6

linux-tree-2.6.24 - 2.6.24-6~etchnhalf.6

linux-manual-2.6.24 - 2.6.24-6~etchnhalf.6

linux-source-2.6.24 - 2.6.24-6~etchnhalf.6

mipsel:

linux-headers-2.6.24-etchnhalf.1-sb1a-bcm91480b - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-r5k-cobalt - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-sb1a-bcm91480b - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-4kc-malta - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-all-mipsel - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-r5k-cobalt - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-common - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-5kc-malta - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-all - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-sb1-bcm91250a - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-sb1-bcm91250a - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-4kc-malta - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-5kc-malta - 2.6.24-6~etchnhalf.6

arm:

linux-headers-2.6.24-etchnhalf.1-all - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-common - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-footbridge - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-ixp4xx - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-footbridge - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-all-arm - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-ixp4xx - 2.6.24-6~etchnhalf.6

linux-headers-2.6.24-etchnhalf.1-iop32x - 2.6.24-6~etchnhalf.6

linux-image-2.6.24-etchnhalf.1-iop32x - 2.6.24-6~etchnhalf.6

Статус уязвимости

Подтверждена производителем

Наличие эксплойта

Данные уточняются

Информация об устранении

Уязвимость устранена

Ссылки на источники

Идентификаторы других систем описаний уязвимостей

EPSS

Процентиль: 27%

0.00091

Низкий

7.2 High

CVSS2

Связанные уязвимости

CVE-2008-3831

ubuntu

больше 16 лет назад

The i915 driver in (1) drivers/char/drm/i915_dma.c in the Linux kernel 2.6.24 on Debian GNU/Linux and (2) sys/dev/pci/drm/i915_drv.c in OpenBSD does not restrict the DRM_I915_HWS_ADDR ioctl to the Direct Rendering Manager (DRM) master, which allows local users to cause a denial of service (memory corruption) via a crafted ioctl call, related to absence of the DRM_MASTER and DRM_ROOT_ONLY flags in the ioctl's configuration.