发布日期：2004-09-02
更新日期：2004-09-03

受影响系统：

Linux kernel 2.6.7
Linux kernel 2.6.6
Linux kernel 2.6.5
Linux kernel 2.6.4
Linux kernel 2.6.3
Linux kernel 2.6.2
Linux kernel 2.6.1-rc2
Linux kernel 2.6.1-rc1
Linux kernel 2.6.1
Linux kernel 2.6
Linux kernel 2.4.9
Linux kernel 2.4.8
Linux kernel 2.4.7
Linux kernel 2.4.6
Linux kernel 2.4.5
Linux kernel 2.4.4
Linux kernel 2.4.3
Linux kernel 2.4.27-pre2
Linux kernel 2.4.27-pre1
Linux kernel 2.4.26
Linux kernel 2.4.25
Linux kernel 2.4.24
Linux kernel 2.4.23
Linux kernel 2.4.22
Linux kernel 2.4.21
Linux kernel 2.4.20
Linux kernel 2.4.2
Linux kernel 2.4.19
Linux kernel 2.4.18
Linux kernel 2.4.17
Linux kernel 2.4.16
Linux kernel 2.4.15
Linux kernel 2.4.14
Linux kernel 2.4.13
Linux kernel 2.4.12
Linux kernel 2.4.11
Linux kernel 2.4.10
Linux kernel 2.4.1
Linux kernel 2.4

描述：

---

Linux Kernel是一款开放源代码的操作系统。

Linux Kernel包含的kNFSd存在整数溢出，远程攻击者可以利用这个漏洞使kNFSd服务程序崩溃。

远程攻击者伪造可信源地址发送包含一个大小超过2^31的写请求包，可导致发生内核问题，造成拒绝服务攻击，目前还不清楚是否能利用来执行任意指令。

<*来源：SuSE Security Advisory
  
  链接：*>

建议：

---

厂商补丁：

S.u.S.E.
--------
S.u.S.E.已经为此发布了一个安全公告（SUSE-SA:2004:028）以及相应补丁:
SUSE-SA:2004:028：kernel

补丁下载：

x86 Platform:

SUSE Linux 9.1:
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-default-2.6.5-7.108.i586.rpm
  73de7e60ca1abfdeabf1050081219c2e
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-bigsmp-2.6.5-7.108.i586.rpm
  825c301e6919fc68c3065070e24789ab
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-smp-2.6.5-7.108.i586.rpm
  203464e930c30a46e701bb965d6c8038
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-source-2.6.5-7.108.i586.rpm
  cd0d39502a1d0ee2ae2c65ade41cbcdf
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-syms-2.6.5-7.108.i586.rpm
  4e74afadaa51847cc43e5efe5ceee2af
source rpm(s):
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/kernel-default-2.6.5-7.108.nosrc.rpm
  144ffe39b42b4d1d15553e03eb72e254
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/kernel-bigsmp-2.6.5-7.108.nosrc.rpm
  9f91e334715b3c76dd994972046d136c
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/kernel-smp-2.6.5-7.108.nosrc.rpm
  c9be908bd5ee616d35599cb6159c692c
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/kernel-source-2.6.5-7.108.src.rpm
  09be5fe9377e17c1d09e15d9174f00ab
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/kernel-syms-2.6.5-7.108.src.rpm
  11acac0fae194cda05afc4f325afc43f



x86-64 Platform:

SUSE Linux 9.1:
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-default-2.6.5-7.108.x86_64.rpm
  dffd2d5f3379fc2f1b9e6b7da9ae2509
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-smp-2.6.5-7.108.x86_64.rpm
  c6e348640d1259870fef0764d8b3f38e
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-source-2.6.5-7.108.x86_64.rpm
  0639c9ebb96cba87fe9d0d0e3f549111
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-syms-2.6.5-7.108.x86_64.rpm
  76f0b22b72ca537ed76e4f3ef84fb0aa
source rpm(s):
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/kernel-default-2.6.5-7.108.nosrc.rpm
  2fa3a5dc925dfb3784d119f77b016f7b
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/kernel-smp-2.6.5-7.108.nosrc.rpm
  a7467d6bd84d34f2d853b788b6f34f5a
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/kernel-source-2.6.5-7.108.src.rpm
  2501201090488ee6833133933bf2bc9d
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/kernel-syms-2.6.5-7.108.src.rpm
  e349531d2d8d115eca6bc6b89b7a0c21

浏览次数：3817
严重程度：0（网友投票）