Mandriva Linux Security Advisory : kernel (MDVSA-2008:234)

This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.

Synopsis :

The remote Mandriva Linux host is missing one or more security

Description :

Some vulnerabilities were discovered and corrected in the Linux 2.6
kernel :

Buffer overflow in the hfsplus_find_cat function in
fs/hfsplus/catalog.c in the Linux kernel before 2.6.28-rc1 allows
attackers to cause a denial of service (memory corruption or system
crash) via an hfsplus filesystem image with an invalid catalog
namelength field, related to the hfsplus_cat_build_key_uni function.

The hfsplus_block_allocate function in fs/hfsplus/bitmap.c in the
Linux kernel before 2.6.28-rc1 does not check a certain return value
from the read_mapping_page function before calling kmap, which allows
attackers to cause a denial of service (system crash) via a crafted
hfsplus filesystem image. (CVE-2008-4934)

The __scm_destroy function in net/core/scm.c in the Linux kernel, 2.6.26, and earlier makes indirect recursive calls to itself
through calls to the fput function, which allows local users to cause
a denial of service (panic) via vectors related to sending an
SCM_RIGHTS message through a UNIX domain socket and closing file
descriptors. (CVE-2008-5029)

Additionaly, support for a broadcom bluetooth dongle was added to
btusb driver, an eeepc shutdown hang caused by snd-hda-intel was
fixed, a Realtek auto-mute bug was fixed, the pcspkr driver was
reenabled, an acpi brightness setting issue on some laptops was fixed,
sata_nv (NVidia) driver bugs were fixed, horizontal mousewheel
scrolling with Logitech V150 mouse was fixed, and more. Check the
changelog and related bugs for more details.

This kernel also fixes the driver for Intel G45/GM45 video chipsets,
in a way requiring also an updated Xorg driver, which is also being
provided in this update.

To update your kernel, please follow the directions located at :

See also :

Solution :

Update the affected packages.

Risk factor :

High / CVSS Base Score : 7.8

Family: Mandriva Local Security Checks

Nessus Plugin ID: 38027 (mandriva_MDVSA-2008-234.nasl)

Bugtraq ID:

CVE ID: CVE-2008-4933

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now