安全研究

安全漏洞
SuSE Linux Kernel HbaApiNode不安全文件权限本地拒绝服务漏洞

发布日期:2004-05-03
更新日期:2004-05-12

受影响系统:
S.u.S.E. Linux Enterprise Server 8
S.u.S.E. Linux 9.0
S.u.S.E. Linux 8.1
描述:
BUGTRAQ  ID: 10279
CVE(CAN) ID: CVE-2004-0587

SuSE是一款开放源代码Linux系统。

SuSE Linux kernel由于对'/proc/scsi/qla2300/HbaApiNode'文件权限设置不正确,本地攻击者可以利用这个漏洞对系统进行拒绝服务攻击。

目前没有详细漏洞细节提供。

<*来源:SuSE advisory
  
  链接:*>

建议:
厂商补丁:

S.u.S.E.
--------
S.u.S.E.已经为此发布了一个安全公告(SuSE-SA:2004:010)以及相应补丁:
SuSE-SA:2004:010:kernel
链接:

补丁下载:

Intel i386 Platform:

SuSE-9.1:
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-default-2.6.4-54.3.i586.rpm
  8a5b723168ff272c728f07e731d20a99
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-smp-2.6.4-54.3.i586.rpm
  c36d4b4314c9a9143f99f15ed77f0e76
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-bigsmp-2.6.4-54.3.i586.rpm
  d8937c364a9361bdf17716d2f495579f
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-syms-2.6.4-54.3.i586.rpm
  38b3fc612e3db19f5d610cc0e8a32a6b
patch rpm(s):
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-default-2.6.4-54.3.i586.patch.rpm
  c92c36168cae880b2161f10a09330a48
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-smp-2.6.4-54.3.i586.patch.rpm
  7e97b26abc8275b8a7bb13f2d7c8db40
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-bigsmp-2.6.4-54.3.i586.patch.rpm
  9804fe860e724c92e1bb2eeeec78ccb0
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-syms-2.6.4-54.3.i586.patch.rpm
  ac83a16e1f531aafe3ffe9f438ce1d78
source rpm(s):
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/kernel-source-2.6.4-54.3.src.rpm
  065e5a4753dad819fabc6093ab8d08a2

SuSE-9.0:
ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/k_deflt-2.4.21-215.i586.rpm
  257bcaaa30ab31fcb60d777f2e71fd1d
ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/k_athlon-2.4.21-215.i586.rpm
  7aecd6db43bfa1d8ec2006697e3d839a
ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/k_smp-2.4.21-215.i586.rpm
  4c7bead1a476101fea816f22749b6d6e
source rpm(s):
ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/src/kernel-source-2.4.21-215.src.rpm
  4ce70dbb529bd750d08b5bd4d9e4d0be

SuSE-8.2:
ftp://ftp.suse.com/pub/suse/i386/update/8.2/rpm/i586/k_deflt-2.4.20-111.i586.rpm
  f10a9313b6c62f13b9c19e9939bd3131
ftp://ftp.suse.com/pub/suse/i386/update/8.2/rpm/i586/k_athlon-2.4.20-111.i586.rpm
  521a2e74121271d5c8bf24de1f2103f0
ftp://ftp.suse.com/pub/suse/i386/update/8.2/rpm/i586/k_smp-2.4.20-111.i586.rpm
  1af79925bbe45f9f18d52cbd906120a6
ftp://ftp.suse.com/pub/suse/i386/update/8.2/rpm/i586/k_psmp-2.4.20-111.i586.rpm
  dd4f1b0c2ee5562d88befd4bf49d872c
source rpm(s):
ftp://ftp.suse.com/pub/suse/i386/update/8.2/rpm/src/kernel-source-2.4.20.SuSE-111.src.rpm
  26b97b48cbff358c0045e3b63ce182a9

SuSE-8.1:
ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/i586/k_deflt-2.4.21-215.i586.rpm
  61b56678254e46c7e54e8fb93ec2bee1
ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/i586/k_athlon-2.4.21-215.i586.rpm
  17c0a31f07d11865ac1c565987d9cd74
ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/i586/k_smp-2.4.21-215.i586.rpm
  e3838161492ebae56e6459770450fde0
ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/i586/k_psmp-2.4.21-215.i586.rpm
  9c15362446d844474cdd5d4d376d7379
source rpm(s):
ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/src/kernel-source-2.4.21-215.src.rpm
  099872db790919c4cbca6ed082d3f32b

SuSE-8.0:
ftp://ftp.suse.com/pub/suse/i386/update/8.0/images/k_deflt-2.4.18-293.i386.rpm
  69650d40b281fbe0e9783b52f1739d64
ftp://ftp.suse.com/pub/suse/i386/update/8.0/images/k_smp-2.4.18-293.i386.rpm
  4600c955d7fb9fe55b5f8dc2e8c66cd0
ftp://ftp.suse.com/pub/suse/i386/update/8.0/images/k_psmp-2.4.18-293.i386.rpm
  f689c0895e39ede08ca1c16bcecbdfa2
ftp://ftp.suse.com/pub/suse/i386/update/8.0/images/k_i386-2.4.18-293.i386.rpm
  6b418c46b6fc224f99bed1c4416284bc
source rpm(s):
ftp://ftp.suse.com/pub/suse/i386/update/8.0/zq1/kernel-source-2.4.18.SuSE-293.nosrc.rpm
  9aafaa025c017550763d0189d2badcc6


Opteron x86_64 Platform:

SuSE-9.1:
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-default-2.6.4-54.3.x86_64.rpm
  783e77719cc89fa4c6e936ad0704b812
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-smp-2.6.4-54.3.x86_64.rpm
  141b1be8d3fb310dfeb41e081653ab14
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-syms-2.6.4-54.3.x86_64.rpm
  f6459ecda22ec7bdce955d1f838b3091
patch rpm(s):
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-default-2.6.4-54.3.x86_64.patch.rpm
  5897174544fce8f9fbcb57744f31be4e
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-smp-2.6.4-54.3.x86_64.patch.rpm
  6b9118c300ecc0fffa5561bedad6dc5c
source rpm(s):
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/kernel-syms-2.6.4-54.3.src.rpm
  f53b07bfebc02269952289c292c73ea4
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/kernel-source-2.6.4-54.3.src.rpm
  8172de94d883e43d1108e11fbb330238

SuSE-9.0:
ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/k_deflt-2.4.21-215.x86_64.rpm
  be6ffff869c95680054c45308784d387
ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/k_smp-2.4.21-215.x86_64.rpm
  f1a9c5a4696b22287553b69a5f44f0a5
source rpm(s):
ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/src/kernel-source-2.4.21-215.src.rpm
  e932240340d4d1cc5ac3784102754a4e

浏览次数:4069
严重程度:0(网友投票)
本安全漏洞由绿盟科技翻译整理,版权所有,未经许可,不得转载
绿盟科技给您安全的保障