Linux Kernel SYSFS PAGE_SIZE Local Denial of Service Vulnerability
BID:17402
Info
Linux Kernel SYSFS PAGE_SIZE Local Denial of Service Vulnerability
| Bugtraq ID: | 17402 |
| Class: | Design Error |
| CVE: |
CVE-2006-1055 |
| Remote: | No |
| Local: | Yes |
| Published: | Apr 07 2006 12:00AM |
| Updated: | Jan 25 2007 04:14PM |
| Credit: | This issue was discovered by Al Viro. |
| Vulnerable: |
Ubuntu Ubuntu Linux 5.10 powerpc Ubuntu Ubuntu Linux 5.10 i386 Ubuntu Ubuntu Linux 5.10 amd64 Ubuntu Ubuntu Linux 5.0 4 powerpc Ubuntu Ubuntu Linux 5.0 4 i386 Ubuntu Ubuntu Linux 5.0 4 amd64 Ubuntu Ubuntu Linux 6.06 LTS powerpc Ubuntu Ubuntu Linux 6.06 LTS i386 Ubuntu Ubuntu Linux 6.06 LTS amd64 Trustix Secure Linux 3.0 Trustix Secure Linux 2.2 SuSE SUSE Linux Enterprise Server 8 SuSE Linux Enterprise Server 9 S.u.S.E. UnitedLinux 1.0 S.u.S.E. Novell Linux Desktop 1.0 S.u.S.E. Linux Professional 10.0 OSS S.u.S.E. Linux Professional 10.0 S.u.S.E. Linux Professional 9.3 x86_64 S.u.S.E. Linux Professional 9.3 S.u.S.E. Linux Professional 9.2 x86_64 S.u.S.E. Linux Professional 9.2 S.u.S.E. Linux Professional 9.1 x86_64 S.u.S.E. Linux Professional 9.1 S.u.S.E. Linux Personal 10.0 OSS S.u.S.E. Linux Personal 9.3 x86_64 S.u.S.E. Linux Personal 9.3 S.u.S.E. Linux Personal 9.2 x86_64 S.u.S.E. Linux Personal 9.2 S.u.S.E. Linux Personal 9.1 x86_64 S.u.S.E. Linux Personal 9.1 S.u.S.E. Linux Enterprise Server for S/390 9.0 S.u.S.E. Linux Enterprise Server for S/390 Redhat Fedora Core5 Linux kernel 2.6.16 .1 Linux kernel 2.6.16 -rc1 Linux kernel 2.6.16 Linux kernel 2.6.15 .6 Linux kernel 2.6.15 .4 Linux kernel 2.6.15 .3 Linux kernel 2.6.15 .2 Linux kernel 2.6.15 .1 Linux kernel 2.6.15 -rc3 Linux kernel 2.6.15 -rc2 Linux kernel 2.6.15 -rc1 Linux kernel 2.6.15 Linux kernel 2.6.14 .5 Linux kernel 2.6.14 .4 Linux kernel 2.6.14 .3 Linux kernel 2.6.14 .2 Linux kernel 2.6.14 .1 Linux kernel 2.6.14 -rc4 Linux kernel 2.6.14 -rc3 Linux kernel 2.6.14 -rc2 Linux kernel 2.6.14 -rc1 Linux kernel 2.6.14 Linux kernel 2.6.13 .4 Linux kernel 2.6.13 .3 Linux kernel 2.6.13 .2 Linux kernel 2.6.13 .1 Linux kernel 2.6.13 -rc7 Linux kernel 2.6.13 -rc6 Linux kernel 2.6.13 -rc4 Linux kernel 2.6.13 -rc1 Linux kernel 2.6.13 Linux kernel 2.6.12 .6 Linux kernel 2.6.12 .5 Linux kernel 2.6.12 .4 Linux kernel 2.6.12 .3 Linux kernel 2.6.12 .2 Linux kernel 2.6.12 .1 Linux kernel 2.6.12 -rc5 Linux kernel 2.6.12 -rc4 Linux kernel 2.6.12 -rc1 Linux kernel 2.6.6 rc1 Linux kernel 2.6.6 Linux kernel 2.6.5 Linux kernel 2.6.4 Linux kernel 2.6.3 Linux kernel 2.6.2 Linux kernel 2.6.15.5 |
| Not Vulnerable: |
Linux kernel 2.6.7 rc1 |
Discussion
Linux Kernel SYSFS PAGE_SIZE Local Denial of Service Vulnerability
Linux kernel is susceptible to a local denial-of-service vulnerability.
This issue arises in SYSFS and allows local attackers to crash the kernel, denying service to legitimate users.
Kernel versions 2.6.12 to versions prior to 2.6.17-rc1 are affected.
Linux kernel is susceptible to a local denial-of-service vulnerability.
This issue arises in SYSFS and allows local attackers to crash the kernel, denying service to legitimate users.
Kernel versions 2.6.12 to versions prior to 2.6.17-rc1 are affected.
Exploit / POC
Linux Kernel SYSFS PAGE_SIZE Local Denial of Service Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Solution / Fix
Linux Kernel SYSFS PAGE_SIZE Local Denial of Service Vulnerability
Solution:
Linux kernel version 2.6.17 RC1 has been released to address this issue.
Please see the references for more information and vendor advisories.
Trustix Secure Linux 2.2
Linux kernel 2.6.13
Linux kernel 2.6.15 .6
Linux kernel 2.6.4
Trustix Secure Linux 3.0
Solution:
Linux kernel version 2.6.17 RC1 has been released to address this issue.
Please see the references for more information and vendor advisories.
Trustix Secure Linux 2.2
-
Trustix clamav-0.88.1-1tr.i586.rpm
TSL 2.2
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix clamav-devel-0.88.1-1tr.i586.rpm
TSL 2.2
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix php4-cli-4.4.2-2tr.i586.rpm
TSL 2.2
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix php4-curl-4.4.2-2tr.i586.rpm
TSL 2.2
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix php4-devel-4.4.2-2tr.i586.rpm
TSL 2.2
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix php4-domxml-4.4.2-2tr.i586.rpm
TSL 2.2
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix php4-exif-4.4.2-2tr.i586.rpm
TSL 2.2
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix php4-fcgi-4.4.2-2tr.i586.rpm
TSL 2.2
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix php4-gd-4.4.2-2tr.i586.rpm
TSL 2.2
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix php4-imap-4.4.2-2tr.i586.rpm
TSL 2.2
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix php4-ldap-4.4.2-2tr.i586.rpm
TSL 2.2
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix php4-mhash-4.4.2-2tr.i586.rpm
TSL 2.2
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix php4-mysql-4.4.2-2tr.i586.rpm
TSL 2.2
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix php4-pgsql-4.4.2-2tr.i586.rpm
TSL 2.2
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix php4-test-4.4.2-2tr.i586.rpm
TSL 2.2
ftp://ftp.trustix.org/pub/trustix/updates
Linux kernel 2.6.13
-
SuSE Intel-536ep-4.69-14.5.i586.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/Intel-536ep-4.69 -14.5.i586.rpm -
SuSE kernel-bigsmp-2.6.13-15.10.i586.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-bigsmp-2. 6.13-15.10.i586.rpm -
SuSE kernel-bigsmp-nongpl-2.6.13-15.10.i586.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-bigsmp-no ngpl-2.6.13-15.10.i586.rpm -
SuSE kernel-default-2.6.13-15.10.i586.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-default-2 .6.13-15.10.i586.rpm -
SuSE kernel-default-nongpl-2.6.13-15.10.i586.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-default-n ongpl-2.6.13-15.10.i586.rpm -
SuSE kernel-smp-2.6.13-15.10.i586.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-smp-2.6.1 3-15.10.i586.rpm -
SuSE kernel-smp-nongpl-2.6.13-15.10.i586.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-smp-nongp l-2.6.13-15.10.i586.rpm -
SuSE kernel-source-2.6.13-15.10.i586.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-source-2. 6.13-15.10.i586.rpm -
SuSE kernel-syms-2.6.13-15.10.i586.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-syms-2.6. 13-15.10.i586.rpm -
SuSE kernel-um-2.6.13-15.10.i586.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-um-2.6.13 -15.10.i586.rpm -
SuSE kernel-um-nongpl-2.6.13-15.10.i586.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-um-nongpl -2.6.13-15.10.i586.rpm -
SuSE kernel-xen-2.6.13-15.10.i586.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-xen-2.6.1 3-15.10.i586.rpm -
SuSE kernel-xen-nongpl-2.6.13-15.10.i586.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/kernel-xen-nongp l-2.6.13-15.10.i586.rpm -
SuSE um-host-kernel-2.6.13-15.10.i586.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/um-host-kernel-2 .6.13-15.10.i586.rpm
Linux kernel 2.6.15 .6
-
RedHat kernel-2.6.16-1.2096_FC5.i586.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-2.6.16-1.2096_FC5.i686.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-2.6.16-1.2096_FC5.ppc.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-2.6.16-1.2096_FC5.x86_64.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-debuginfo-2.6.16-1.2096_FC5.i586.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-debuginfo-2.6.16-1.2096_FC5.i686.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-debuginfo-2.6.16-1.2096_FC5.ppc.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-debuginfo-2.6.16-1.2096_FC5.x86_64.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-devel-2.6.16-1.2096_FC5.i586.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-devel-2.6.16-1.2096_FC5.i686.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-devel-2.6.16-1.2096_FC5.ppc.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-devel-2.6.16-1.2096_FC5.x86_64.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-doc-2.6.16-1.2096_FC5.noarch.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-kdump-2.6.16-1.2096_FC5.i686.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-kdump-2.6.16-1.2096_FC5.x86_64.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-kdump-devel-2.6.16-1.2096_FC5.i686.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-kdump-devel-2.6.16-1.2096_FC5.x86_64.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-smp-2.6.16-1.2096_FC5.i586.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-smp-2.6.16-1.2096_FC5.i686.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-smp-2.6.16-1.2096_FC5.ppc.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-smp-devel-2.6.16-1.2096_FC5.i586.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-smp-devel-2.6.16-1.2096_FC5.i686.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-smp-devel-2.6.16-1.2096_FC5.ppc.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-xen0-2.6.16-1.2096_FC5.i686.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-xen0-2.6.16-1.2096_FC5.x86_64.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-xen0-devel-2.6.16-1.2096_FC5.i686.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-xen0-devel-2.6.16-1.2096_FC5.x86_64.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-xenU-2.6.16-1.2096_FC5.i686.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-xenU-2.6.16-1.2096_FC5.x86_64.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-xenU-devel-2.6.16-1.2096_FC5.i686.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ -
RedHat kernel-xenU-devel-2.6.16-1.2096_FC5.x86_64.rpm
Fedora Core 5
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/
Linux kernel 2.6.4
-
SuSE kernel-bigsmp-2.6.5-7.257.i586.rpm
SUSE LINUX 9.1:
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-bigsmp-2.6 .5-7.257.i586.rpm -
SuSE kernel-default-2.6.5-7.257.i586.rpm
SUSE LINUX 9.1:
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-default-2. 6.5-7.257.i586.rpm -
SuSE kernel-default-2.6.5-7.257.x86_64.rpm
SUSE LINUX 9.1:
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-defaul t-2.6.5-7.257.x86_64.rpm -
SuSE kernel-smp-2.6.5-7.257.i586.rpm
SUSE LINUX 9.1:
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-smp-2.6.5- 7.257.i586.rpm -
SuSE kernel-smp-2.6.5-7.257.x86_64.rpm
SUSE LINUX 9.1:
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-smp-2. 6.5-7.257.x86_64.rpm -
SuSE kernel-source-2.6.5-7.257.i586.rpm
SUSE LINUX 9.1:
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-source-2.6 .5-7.257.i586.rpm -
SuSE kernel-source-2.6.5-7.257.x86_64.rpm
SUSE LINUX 9.1:
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-source -2.6.5-7.257.x86_64.rpm -
SuSE kernel-syms-2.6.5-7.257.i586.rpm
SUSE LINUX 9.1:
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-syms-2.6.5 -7.257.i586.rpm -
SuSE kernel-syms-2.6.5-7.257.x86_64.rpm
SUSE LINUX 9.1:
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-syms-2 .6.5-7.257.x86_64.rpm
Trustix Secure Linux 3.0
-
Trustix clamav-0.88.1-1tr.i586.rpm
TSL 3.0
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix clamav-devel-0.88.1-1tr.i586.rpm
TSL 3.0
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix freeradius-1.1.1-1tr.i586.rpm
TSL 3.0
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix freeradius-devel-1.1.1-1tr.i586.rpm
TSL 3.0
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix freeradius-libs-1.1.1-1tr.i586.rpm
TSL 3.0
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix freeradius-mysql-1.1.1-1tr.i586.rpm
TSL 3.0
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix freeradius-postgresql-1.1.1-1tr.i586.rpm
TSL 3.0
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix kernel-2.6.16.1-2tr.i586.rpm
TSL 3.0
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix kernel-doc-2.6.16.1-2tr.i586.rpm
TSL 3.0
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix kernel-headers-2.6.16.1-2tr.i586.rpm
TSL 3.0
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix kernel-smp-2.6.16.1-2tr.i586.rpm
TSL 3.0
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix kernel-smp-headers-2.6.16.1-2tr.i586.rpm
TSL 3.0
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix kernel-source-2.6.16.1-2tr.i586.rpm
TSL 3.0
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix kernel-utils-2.6.16.1-2tr.i586.rpm
TSL 3.0
ftp://ftp.trustix.org/pub/trustix/updates
References
Linux Kernel SYSFS PAGE_SIZE Local Denial of Service Vulnerability
References:
References:
- [CVE-2006-1055] - Rev 6364 (Debian)
- sysfs: zero terminate sysfs write buffers (Greg Kroah-Hartman