Mandriva Linux Security Advisory : kernel (MDVSA-2009:148)

High Nessus Plugin ID 48149

New! Vulnerability Priority Rating (VPR)

Tenable calculates a dynamic VPR for every vulnerability. VPR combines vulnerability information with threat intelligence and machine learning algorithms to predict which vulnerabilities are most likely to be exploited in attacks. Read more about what VPR is and how it's different from CVSS.

VPR Score: 5.9

Synopsis

The remote Mandriva Linux host is missing one or more security updates.

Description

Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel :

Buffer overflow in the RTL8169 NIC driver (drivers/net/r8169.c) in the Linux kernel before 2.6.30 allows remote attackers to cause a denial of service (kernel memory corruption and crash) via a long packet.
(CVE-2009-1389)

The inode double locking code in fs/ocfs2/file.c in the Linux kernel 2.6.30 before 2.6.30-rc3, 2.6.27 before 2.6.27.24, 2.6.29 before 2.6.29.4, and possibly other versions down to 2.6.19 allows local users to cause a denial of service (prevention of file creation and removal) via a series of splice system calls that trigger a deadlock between the generic_file_splice_write, splice_from_pipe, and ocfs2_file_splice_write functions. (CVE-2009-1961)

The nfs_permission function in fs/nfs/dir.c in the NFS client implementation in the Linux kernel 2.6.29.3 and earlier, when atomic_open is available, does not check execute (aka EXEC or MAY_EXEC) permission bits, which allows local users to bypass permissions and execute files, as demonstrated by files on an NFSv4 fileserver. (CVE-2009-1630)

Integer underflow in the e1000_clean_rx_irq function in drivers/net/e1000/e1000_main.c in the e1000 driver in the Linux kernel before 2.6.30-rc8, the e1000e driver in the Linux kernel, and Intel Wired Ethernet (aka e1000) before 7.5.5 allows remote attackers to cause a denial of service (panic) via a crafted frame size.
(CVE-2009-1385)

Multiple buffer overflows in the cifs subsystem in the Linux kernel before 2.6.29.4 allow remote CIFS servers to cause a denial of service (memory corruption) and possibly have unspecified other impact via (1) a malformed Unicode string, related to Unicode string area alignment in fs/cifs/sess.c; or (2) long Unicode characters, related to fs/cifs/cifssmb.c and the cifs_readdir function in fs/cifs/readdir.c.
(CVE-2009-1633)

Additionally, the kernel package was updated to the Linux upstream stable version 2.6.29.6.

To update your kernel, please follow the directions located at :

http://www.mandriva.com/en/security/kernelupdate

Solution

Update the affected packages.

Plugin Details

Severity: High

ID: 48149

File Name: mandriva_MDVSA-2009-148.nasl

Version: 1.15

Type: local

Published: 2010/07/30

Updated: 2019/08/02

Dependencies: 12634

Risk Information

Risk Factor: High

VPR Score: 5.9

CVSS v2.0

Base Score: 7.8

Temporal Score: 6.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Temporal Vector: CVSS2#E:POC/RL:OF/RC:C

Vulnerability Information

CPE: p-cpe:/a:mandriva:linux:alsa_raoppcm-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:alsa_raoppcm-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:alsa_raoppcm-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:alsa_raoppcm-kernel-desktop-latest, p-cpe:/a:mandriva:linux:alsa_raoppcm-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:alsa_raoppcm-kernel-server-latest, p-cpe:/a:mandriva:linux:broadcom-wl-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:broadcom-wl-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:broadcom-wl-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:broadcom-wl-kernel-desktop-latest, p-cpe:/a:mandriva:linux:broadcom-wl-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:broadcom-wl-kernel-server-latest, p-cpe:/a:mandriva:linux:em8300-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:em8300-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:em8300-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:em8300-kernel-desktop-latest, p-cpe:/a:mandriva:linux:em8300-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:em8300-kernel-server-latest, p-cpe:/a:mandriva:linux:fcpci-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:fcpci-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:fcpci-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:fcpci-kernel-desktop-latest, p-cpe:/a:mandriva:linux:fcpci-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:fcpci-kernel-server-latest, p-cpe:/a:mandriva:linux:fglrx-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:fglrx-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:fglrx-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:fglrx-kernel-desktop-latest, p-cpe:/a:mandriva:linux:fglrx-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:fglrx-kernel-server-latest, p-cpe:/a:mandriva:linux:hcfpcimodem-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:hcfpcimodem-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:hcfpcimodem-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:hcfpcimodem-kernel-desktop-latest, p-cpe:/a:mandriva:linux:hcfpcimodem-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:hcfpcimodem-kernel-server-latest, p-cpe:/a:mandriva:linux:hsfmodem-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:hsfmodem-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:hsfmodem-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:hsfmodem-kernel-desktop-latest, p-cpe:/a:mandriva:linux:hsfmodem-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:hsfmodem-kernel-server-latest, p-cpe:/a:mandriva:linux:hso-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:hso-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:hso-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:hso-kernel-desktop-latest, p-cpe:/a:mandriva:linux:hso-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:hso-kernel-server-latest, p-cpe:/a:mandriva:linux:kernel-2.6.29.6-1mnb, p-cpe:/a:mandriva:linux:kernel-desktop-2.6.29.6-1mnb, p-cpe:/a:mandriva:linux:kernel-desktop-devel-2.6.29.6-1mnb, p-cpe:/a:mandriva:linux:kernel-desktop-devel-latest, p-cpe:/a:mandriva:linux:kernel-desktop-latest, p-cpe:/a:mandriva:linux:kernel-desktop586-2.6.29.6-1mnb, p-cpe:/a:mandriva:linux:kernel-desktop586-devel-2.6.29.6-1mnb, p-cpe:/a:mandriva:linux:kernel-desktop586-devel-latest, p-cpe:/a:mandriva:linux:kernel-desktop586-latest, p-cpe:/a:mandriva:linux:kernel-doc, p-cpe:/a:mandriva:linux:kernel-server-2.6.29.6-1mnb, p-cpe:/a:mandriva:linux:kernel-server-devel-2.6.29.6-1mnb, p-cpe:/a:mandriva:linux:kernel-server-devel-latest, p-cpe:/a:mandriva:linux:kernel-server-latest, p-cpe:/a:mandriva:linux:kernel-source-2.6.29.6-1mnb, p-cpe:/a:mandriva:linux:kernel-source-latest, p-cpe:/a:mandriva:linux:kqemu-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:kqemu-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:kqemu-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:kqemu-kernel-desktop-latest, p-cpe:/a:mandriva:linux:kqemu-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:kqemu-kernel-server-latest, p-cpe:/a:mandriva:linux:libafs-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:libafs-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:libafs-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:libafs-kernel-desktop-latest, p-cpe:/a:mandriva:linux:libafs-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:libafs-kernel-server-latest, p-cpe:/a:mandriva:linux:lirc-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:lirc-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:lirc-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:lirc-kernel-desktop-latest, p-cpe:/a:mandriva:linux:lirc-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:lirc-kernel-server-latest, p-cpe:/a:mandriva:linux:lzma-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:lzma-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:lzma-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:lzma-kernel-desktop-latest, p-cpe:/a:mandriva:linux:lzma-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:lzma-kernel-server-latest, p-cpe:/a:mandriva:linux:madwifi-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:madwifi-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:madwifi-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:madwifi-kernel-desktop-latest, p-cpe:/a:mandriva:linux:madwifi-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:madwifi-kernel-server-latest, p-cpe:/a:mandriva:linux:netfilter-rtsp-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:netfilter-rtsp-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:netfilter-rtsp-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:netfilter-rtsp-kernel-desktop-latest, p-cpe:/a:mandriva:linux:netfilter-rtsp-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:netfilter-rtsp-kernel-server-latest, p-cpe:/a:mandriva:linux:nouveau-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:nouveau-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:nouveau-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:nouveau-kernel-desktop-latest, p-cpe:/a:mandriva:linux:nouveau-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:nouveau-kernel-server-latest, p-cpe:/a:mandriva:linux:nvidia-current-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:nvidia-current-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:nvidia-current-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:nvidia-current-kernel-desktop-latest, p-cpe:/a:mandriva:linux:nvidia-current-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:nvidia-current-kernel-server-latest, p-cpe:/a:mandriva:linux:nvidia173-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:nvidia173-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:nvidia173-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:nvidia173-kernel-desktop-latest, p-cpe:/a:mandriva:linux:nvidia173-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:nvidia173-kernel-server-latest, p-cpe:/a:mandriva:linux:nvidia96xx-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:nvidia96xx-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:nvidia96xx-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:nvidia96xx-kernel-desktop-latest, p-cpe:/a:mandriva:linux:nvidia96xx-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:nvidia96xx-kernel-server-latest, p-cpe:/a:mandriva:linux:opencbm-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:opencbm-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:opencbm-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:opencbm-kernel-desktop-latest, p-cpe:/a:mandriva:linux:opencbm-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:opencbm-kernel-server-latest, p-cpe:/a:mandriva:linux:rt2870-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:rt2870-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:rt2870-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:rt2870-kernel-desktop-latest, p-cpe:/a:mandriva:linux:rt2870-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:rt2870-kernel-server-latest, p-cpe:/a:mandriva:linux:slmodem-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:slmodem-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:slmodem-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:slmodem-kernel-desktop-latest, p-cpe:/a:mandriva:linux:slmodem-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:slmodem-kernel-server-latest, p-cpe:/a:mandriva:linux:squashfs-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:squashfs-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:squashfs-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:squashfs-kernel-desktop-latest, p-cpe:/a:mandriva:linux:squashfs-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:squashfs-kernel-server-latest, p-cpe:/a:mandriva:linux:squashfs-lzma-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:squashfs-lzma-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:squashfs-lzma-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:squashfs-lzma-kernel-desktop-latest, p-cpe:/a:mandriva:linux:squashfs-lzma-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:squashfs-lzma-kernel-server-latest, p-cpe:/a:mandriva:linux:syntek-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:syntek-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:syntek-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:syntek-kernel-desktop-latest, p-cpe:/a:mandriva:linux:syntek-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:syntek-kernel-server-latest, p-cpe:/a:mandriva:linux:tp_smapi-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:tp_smapi-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:tp_smapi-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:tp_smapi-kernel-desktop-latest, p-cpe:/a:mandriva:linux:tp_smapi-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:tp_smapi-kernel-server-latest, p-cpe:/a:mandriva:linux:vboxadditions-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:vboxadditions-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:vboxadditions-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:vboxadditions-kernel-desktop-latest, p-cpe:/a:mandriva:linux:vboxadditions-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:vboxadditions-kernel-server-latest, p-cpe:/a:mandriva:linux:vhba-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:vhba-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:vhba-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:vhba-kernel-desktop-latest, p-cpe:/a:mandriva:linux:vhba-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:vhba-kernel-server-latest, p-cpe:/a:mandriva:linux:virtualbox-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:virtualbox-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:virtualbox-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:virtualbox-kernel-desktop-latest, p-cpe:/a:mandriva:linux:virtualbox-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:virtualbox-kernel-server-latest, p-cpe:/a:mandriva:linux:vpnclient-kernel-2.6.29.6-desktop-1mnb, p-cpe:/a:mandriva:linux:vpnclient-kernel-2.6.29.6-desktop586-1mnb, p-cpe:/a:mandriva:linux:vpnclient-kernel-2.6.29.6-server-1mnb, p-cpe:/a:mandriva:linux:vpnclient-kernel-desktop-latest, p-cpe:/a:mandriva:linux:vpnclient-kernel-desktop586-latest, p-cpe:/a:mandriva:linux:vpnclient-kernel-server-latest, cpe:/o:mandriva:linux:2009.1

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Mandrake/release, Host/Mandrake/rpm-list

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2009/07/07

Reference Information

CVE: CVE-2009-1385, CVE-2009-1389, CVE-2009-1630, CVE-2009-1633, CVE-2009-1961

BID: 34612, 34934, 35143, 35185, 35281

MDVSA: 2009:148

CWE: 119, 189, 264, 362