Linux Kernel Asynchronous Input/Output Local Denial Of Service Vulnerability
BID:12987
Info
Linux Kernel Asynchronous Input/Output Local Denial Of Service Vulnerability
| Bugtraq ID: | 12987 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2005-0916 |
| Remote: | No |
| Local: | Yes |
| Published: | Apr 04 2005 12:00AM |
| Updated: | Sep 05 2006 10:48PM |
| Credit: | Daniel McNeil is credited with the discovery of this issue. |
| Vulnerable: |
SuSE Linux Enterprise Server 9 S.u.S.E. Novell Linux Desktop 9.0 S.u.S.E. Linux Professional 9.3 x86_64 S.u.S.E. Linux Professional 9.3 S.u.S.E. Linux Professional 9.2 x86_64 S.u.S.E. Linux Professional 9.2 S.u.S.E. Linux Professional 9.1 x86_64 S.u.S.E. Linux Professional 9.1 S.u.S.E. Linux Personal 9.3 x86_64 S.u.S.E. Linux Personal 9.3 S.u.S.E. Linux Personal 9.2 x86_64 S.u.S.E. Linux Personal 9.2 S.u.S.E. Linux Personal 9.1 x86_64 S.u.S.E. Linux Personal 9.1 Linux kernel 2.6.11 .6 Linux kernel 2.6.11 .5 Linux kernel 2.6.11 -rc4 Linux kernel 2.6.11 -rc3 Linux kernel 2.6.11 -rc2 Linux kernel 2.6.11 Linux kernel 2.6.10 rc2 Linux kernel 2.6.10 Linux kernel 2.6.9 Linux kernel 2.6.8 rc3 Linux kernel 2.6.8 rc2 Linux kernel 2.6.8 rc1 Linux kernel 2.6.8 Linux kernel 2.6.7 rc1 Linux kernel 2.6.7 Linux kernel 2.6.6 rc1 Linux kernel 2.6.6 Linux kernel 2.6.5 Linux kernel 2.6.4 Linux kernel 2.6.3 Linux kernel 2.6.2 Linux kernel 2.6.1 -rc2 Linux kernel 2.6.1 -rc1 Linux kernel 2.6.1 Linux kernel 2.6 |
| Not Vulnerable: | |
Discussion
Linux Kernel Asynchronous Input/Output Local Denial Of Service Vulnerability
A local denial-of-service vulnerability affects the Linux kernel because it fails to properly manage input/output resources.
A local attacker may leverage this issue to cause an affected Linux kernel to panic, effectively denying service to legitimate users.
A local denial-of-service vulnerability affects the Linux kernel because it fails to properly manage input/output resources.
A local attacker may leverage this issue to cause an affected Linux kernel to panic, effectively denying service to legitimate users.
Exploit / POC
Linux Kernel Asynchronous Input/Output Local Denial Of Service Vulnerability
The following exploit has been made available:
The following exploit has been made available:
Solution / Fix
Linux Kernel Asynchronous Input/Output Local Denial Of Service Vulnerability
Solution:
SUSU has released advisory SUSE-SA:2005:050, along with fixes to address various issues in the Linux kernel. Please see the referenced advisory for more information.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].
Linux kernel 2.6.11
Linux kernel 2.6.4
Linux kernel 2.6.8
Solution:
SUSU has released advisory SUSE-SA:2005:050, along with fixes to address various issues in the Linux kernel. Please see the referenced advisory for more information.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].
Linux kernel 2.6.11
-
SUSE dprobes-3.6.5-8.3.i586.rpm
SUSE Linux 9.3
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/dprobes-3.6.5-8.3 .i586.rpm -
SUSE Intel-536ep-4.69-10.3.i586.rpm
SUSE Linux 9.3
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/Intel-536ep-4.69- 10.3.i586.rpm -
SUSE kernel-bigsmp-2.6.11.4-21.9.i586.rpm
SUSE Linux 9.3
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-bigsmp-2.6 .11.4-21.9.i586.rpm -
SUSE kernel-bigsmp-2.6.8-24.18.i586.rpm
SUSE Linux 9.2
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-bigsmp-2.6 .8-24.18.i586.rpm -
SUSE kernel-bigsmp-nongpl-2.6.11.4-21.9.i586.rpm
SUSE Linux 9.3
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-bigsmp-non gpl-2.6.11.4-21.9.i586.rpm -
SUSE kernel-default-2.6.11.4-21.9.i586.rpm
SUSE Linux 9.3
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-default-2. 6.11.4-21.9.i586.rpm -
SUSE kernel-default-nongpl-2.6.11.4-21.9.i586.rpm
SUSE Linux 9.3
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-default-no ngpl-2.6.11.4-21.9.i586.rpm -
SUSE kernel-default-nongpl-2.6.11.4-21.9.x86_64.rpm
SUSE Linux 9.3
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kernel-default- nongpl-2.6.11.4-21.9.x86_64.rpm -
SUSE kernel-docs-2.6.11.4-21.9.noarch.rpm
SUSE Linux 9.3
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/noarch/kernel-docs-2.6 .11.4-21.9.noarch.rpm -
SUSE kernel-smp-2.6.11.4-21.9.i586.rpm
SUSE Linux 9.3
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-smp-2.6.11 .4-21.9.i586.rpm -
SUSE kernel-smp-2.6.11.4-21.9.x86_64.rpm
SUSE Linux 9.3
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kernel-smp-2.6. 11.4-21.9.x86_64.rpm -
SUSE kernel-source-2.6.11.4-21.9.x86_64.rpm
SUSE Linux 9.3
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kernel-source-2 .6.11.4-21.9.x86_64.rpm -
SUSE kernel-syms-2.6.11.4-21.9.i586.rpm
SUSE Linux 9.3
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-syms-2.6.1 1.4-21.9.i586.rpm -
SUSE kernel-syms-2.6.11.4-21.9.i586.rpm
SUSE Linux 9.3
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-um-2.6.11. 4-21.9.i586.rpm -
SUSE kernel-syms-2.6.11.4-21.9.x86_64.rpm
SUSE Linux 9.3
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kernel-syms-2.6 .11.4-21.9.x86_64.rpm -
SUSE kernel-xen-2.6.11.4-21.9.i586.rpm
SUSE Linux 9.3
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-xen-2.6.11 .4-21.9.i586.rpm -
SUSE kernel-xen-nongpl-2.6.11.4-21.9.i586.rpm
SUSE Linux 9.3
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-xen-nongpl -2.6.11.4-21.9.i586.rpm
Linux kernel 2.6.4
-
SUSE kernel-bigsmp-2.6.5-7.201.i586.rpm
SUSE Linux 9.1
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-bigsmp-2.6 .5-7.201.i586.rpm -
SUSE kernel-source-2.6.5-7.201.i586.rpm
SUSE Linux 9.1
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-source-2.6 .5-7.201.i586.rpm -
SUSE kernel-source-2.6.5-7.201.x86_64.rpm
SUSE Linux 9.1
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-source -2.6.5-7.201.x86_64.rpm -
SUSE kernel-syms-2.6.5-7.201.i586.rpm
SUSE Linux 9.1
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-syms-2.6.5 -7.201.i586.rpm -
SUSE kernel-syms-2.6.5-7.201.x86_64.rpm
SUSE Linux 9.1
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-syms-2 .6.5-7.201.x86_64.rpm
Linux kernel 2.6.8
-
SUSE kernel-bigsmp-nongpl-2.6.8-24.18.i586.rpm
SUSE Linux 9.2
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-bigsmp-non gpl-2.6.8-24.18.i586.rpm -
SUSE kernel-default-nongpl-2.6.8-24.18.i586.rpm
SUSE Linux 9.2
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-default-no ngpl-2.6.8-24.18.i586.rpm -
SUSE kernel-default-nongpl-2.6.8-24.18.x86_64.rpm
SUSE Linux 9.2
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kernel-default- nongpl-2.6.8-24.18.x86_64.rpm -
SUSE kernel-docs-2.6.8-24.18.noarch.rpm
SUSE Linux 9.2
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/noarch/kernel-docs-2.6 .8-24.18.noarch.rpm -
SUSE kernel-source-2.6.8-24.18.i586.rpm
SUSE Linux 9.2
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-source-2.6 .8-24.18.i586.rpm -
SUSE kernel-source-2.6.8-24.18.x86_64.rpm
SUSE Linux 9.2
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kernel-source-2 .6.8-24.18.x86_64.rpm -
SUSE kernel-syms-2.6.8-24.18.i586.rpm
SUSE Linux 9.2
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-syms-2.6.8 -24.18.i586.rpm -
SUSE kernel-syms-2.6.8-24.18.x86_64.rpm
SUSE Linux 9.2
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kernel-syms-2.6 .8-24.18.x86_64.rpm -
SUSE kernel-um-2.6.8-24.18.i586.rpm
SUSE Linux 9.2
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-um-2.6.8-2 4.18.i586.rpm -
SUSE kernel-um-nongpl-2.6.8-24.18.i586.rpm
SUSE Linux 9.2
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-um-nongpl- 2.6.8-24.18.i586.rpm
References
Linux Kernel Asynchronous Input/Output Local Denial Of Service Vulnerability
References:
References:
- kernel.org Homepage. (Linux Kernel)