NSFOCUS绿盟科技

首页 -> 安全研究

安全研究

安全漏洞

Linux Kernel NFSACL协议XDR数据远程拒绝服务漏洞

发布日期：2005-08-05
更新日期：2005-08-05

受影响系统：

S.u.S.E. Linux 9.3
S.u.S.E. Linux 9.2

描述：

BUGTRAQ  ID: 14470
CVE(CAN) ID: CVE-2005-2500

Linux Kernel是Linux操作系统所使用的内核。

Linux Kernel在处理nfsacl协议的XDR数据时存在拒绝服务漏洞。

目前更多细节不详，但据推测攻击者可以创建包含有很大字符值的畸形XDR数据导致Kernel内存破坏。

<*来源：SUSE Security Announcement

  链接：http://www.novell.com/linux/security/advisories/2005_44_kernel.html
*>

建议：

厂商补丁：

S.u.S.E.
--------
S.u.S.E.已经为此发布了一个安全公告（SUSE-SA:2005:044）以及相应补丁:
SUSE-SA:2005:044：several kernel security problems
链接：http://www.novell.com/linux/security/advisories/2005_44_kernel.html

补丁下载：

x86 Platform:

   SUSE Linux 9.3:
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/Intel-536ep-4.69-10.2.i586.rpm
          05a238ad052efca5071097cdc915df17
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/dprobes-3.6.5-8.3.i586.rpm
          bfeb0c950feeaa75c79a4a57cc87f551
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-bigsmp-2.6.11.4-21.8.i586.rpm
          ebf02e94b3c2ec1026a55e25373f8116
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-bigsmp-nongpl-2.6.11.4-21.8.i586.rpm
          542f4ccc7e75110569e10ab477d31dc5
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-default-2.6.11.4-21.8.i586.rpm
          72dd929e09d816a765465bc9c3ab9ce3
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-default-nongpl-2.6.11.4-21.8.i586.rpm
          656b7c959ee5306740cc8f22ce6d82a7
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-smp-2.6.11.4-21.8.i586.rpm
          42582b11fffd615eb29670e4f85601ee
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-smp-nongpl-2.6.11.4-21.8.i586.rpm
          73d4f9dca2fb4dda5f696a085e7b2055
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-source-2.6.11.4-21.8.i586.rpm
          d3a123fcfdbd7325fd8df02010d8092a
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-syms-2.6.11.4-21.8.i586.rpm
          e1d4701ada55009074f0716b52de3c71
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-um-2.6.11.4-21.8.i586.rpm
          94b16ac6039c5acf9ed6839bd3a42e5e
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-um-nongpl-2.6.11.4-21.8.i586.rpm
          2be56cc3c69f259e1bc1069a80886d00
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-xen-2.6.11.4-21.8.i586.rpm
          2d1da7bd73fe7b7281b6f3da75866f1e
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/kernel-xen-nongpl-2.6.11.4-21.8.i586.rpm
          5188ad0125447cb5dc7d9d890661aff6
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/ltmodem-8.31a10-7.2.i586.rpm
          dc2f268a8d34608a398a072b0828894d
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/um-host-install-initrd-1.0-50.2.i586.rpm
          bea2f498ef755159877132808fcc67b4
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/um-host-kernel-2.6.11.4-21.8.i586.rpm
          4e43301928440f85de5416becaf4dd80
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/noarch/kernel-docs-2.6.11.4-21.8.noarch.rpm
          0d1daffc2d7e0d94f994ee260be87cc4

   SUSE Linux 9.2:
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/Intel-536ep-4.69-5.10.i586.rpm
          0d8d7462b5d396c9aeec58879f41ace3
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-bigsmp-2.6.8-24.17.i586.rpm
          0eaaa279a6dd6b9e1a01be9a05d978fb
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-bigsmp-nongpl-2.6.8-24.17.i586.rpm
          e3653101d73a0bede0ac40b4fa29d9dc
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-default-2.6.8-24.17.i586.rpm
          f795ecb51ef90a0bb241ea4e6bbc3bba
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-default-nongpl-2.6.8-24.17.i586.rpm
          e322aa000bed8e34db575a0db6bd72a7
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-smp-2.6.8-24.17.i586.rpm
          6ae5087a6026c40d8abc1e5d3c9d79ed
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-smp-nongpl-2.6.8-24.17.i586.rpm
          07ab3b8e2fe7566efe7745042e36b869
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-source-2.6.8-24.17.i586.rpm
          bc27ddec86fab10c92a626ccc9b52125
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-syms-2.6.8-24.17.i586.rpm
          9996748f30aa51f3f7edc2bb57bf33f0
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-um-2.6.8-24.17.i586.rpm
          ec997c83e8b8f5ff1237b824333a03a6
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/kernel-um-nongpl-2.6.8-24.17.i586.rpm
          73f6f4c7b2573612d7bdc218900bd259
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/ltmodem-8.31a8-6.10.i586.rpm
          8bb6fb7a7bb16d5dcfa546eb166cd0a5
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/um-host-install-initrd-1.0-48.9.i586.rpm
          5e94647cfa4a9ea1bb051160ce469a8d
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/um-host-kernel-2.6.8-24.17.i586.rpm
          a724edf0312eac59fe79620e83c4875b
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/noarch/kernel-docs-2.6.8-24.17.noarch.rpm
          a0a2b0320011b726a8333566986c0adf

   SUSE Linux 9.1:
   ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-bigsmp-2.6.5-7.193.i586.rpm
          cc7d96f52dd7c0764c692dc13fd53cec
   ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-default-2.6.5-7.193.i586.rpm
          e386360521fb20a2e538fbfbded5a811
   ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-smp-2.6.5-7.193.i586.rpm
          d7af0f43d7f7244715ce0b08c801e949
   ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-source-2.6.5-7.193.i586.rpm
          cbd5fe9db7294b3f59b22e7b4305c68d
   ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-syms-2.6.5-7.193.i586.rpm
          b09fc2db0298d8cddc7f563f5c70c72a
   ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/ltmodem-2.6.2-38.17.i586.rpm
          6bede3ceed177c7d878fc7da3f86a324
   ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/mkinitrd-1.2-27.12.i586.rpm
          c1cf2903606be5a12bad9f1eab2eae81
   ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/noarch/kernel-docs-2.6.5-7.193.noarch.rpm
          77f4fe83be8c81f88117ec52521ffe81
   source rpm(s):
   ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/kernel-bigsmp-2.6.5-7.193.nosrc.rpm
          3a1b93dc227e264b3dd4facbfa14e1ef
   ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/kernel-default-2.6.5-7.193.nosrc.rpm
          cfea9bd165db64ced6293308812ea4ee
   ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/kernel-docs-2.6.5-7.193.src.rpm
          6a92646a4271ccf3478a10ea1926de6d
   ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/kernel-smp-2.6.5-7.193.nosrc.rpm
          bc2ee08fd05f1bc8d60b49d767f0f513
   ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/kernel-source-2.6.5-7.193.src.rpm
          1a3a88bc0618b78353de3e2947f28979
   ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/kernel-syms-2.6.5-7.193.src.rpm
          e7f672c81b506567857e90ddfd820c7f
   ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/ltmodem-2.6.2-38.17.src.rpm
          89687a12bb4c32f724f2297fc503af7d
   ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/mkinitrd-1.2-27.12.src.rpm
          53003b04f9b047e9e9b23f0e93d7750f

   SUSE Linux 9.0:
   ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/Intel-536ep-4.62-26.i586.rpm
          1bae954d54dc935445c4d759ec4781c6
   ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/Intel-v92ham-4.53-26.i586.rpm
          f33a23b16531dbb31e86235aecea5af0
   ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/k_athlon-2.4.21-297.i586.rpm
          f36353243bc41416484ac3b83b99cf54
   ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/k_deflt-2.4.21-297.i586.rpm
          9c38ed804c03d68e9140b048efed0d1b
   ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/k_smp-2.4.21-297.i586.rpm
          f0adf768e915c3af251828b7b31fc9aa
   ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/k_smp4G-2.4.21-297.i586.rpm
          5a13e58bb1210a4e908655eb176c0fb8
   ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/k_um-2.4.21-297.i586.rpm
          6d48fec139aadda5d471cf4c7e1b9f0b
   ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/kernel-source-2.4.21-297.i586.rpm
          e3768ecf5b9ac848976cabef5fb3809a
   ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/ltmodem-8.26a-215.i586.rpm
          3fd2674fce2a1d50072dc22f254872bc
   source rpm(s):
   ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/src/Intel-536ep-4.62-26.src.rpm
          359859f0c2cb8f827adb1dcdb37e07a5
   ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/src/Intel-v92ham-4.53-26.src.rpm
          c44cc10e6d607229244ec17cdc6e3684
   ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/src/k_athlon-2.4.21-297.src.rpm
          fc16ff423a1e61efe5bf540f6238540a
   ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/src/k_deflt-2.4.21-297.src.rpm
          704de65cefa1879236ef9e422ca15829
   ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/src/k_smp-2.4.21-297.src.rpm
          bc6d49efe5f3586ee387440ab8549fab
   ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/src/k_smp4G-2.4.21-297.src.rpm
          09833f9243a18d534e2c436a97253b45
   ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/src/k_um-2.4.21-297.src.rpm
          8ac4b4cf7dd9c8fb231c5039e53f1cfd
   ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/src/kernel-source-2.4.21-297.src.rpm
          11151763f415842946ee60325ee01d3c
   ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/src/ltmodem-8.26a-215.src.rpm
          febc3670da245f8d78bb89a006765d35

   x86-64 Platform:

   SUSE Linux 9.3:
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kernel-default-2.6.11.4-21.8.x86_64.rpm
          cfaefcc7e6a70ab33b14407f1b65f80a
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kernel-default-nongpl-2.6.11.4-21.8.x86_64.rpm
          31c72377eea1d62a1e7acd59549e92ec
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kernel-smp-2.6.11.4-21.8.x86_64.rpm
          e28191a62427f1804ce96ad3ff84e65f
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kernel-smp-nongpl-2.6.11.4-21.8.x86_64.rpm
          99078de1a8b126aa7f10dcffee178d15
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kernel-source-2.6.11.4-21.8.x86_64.rpm
          76a2eabf1217625e7daf12140b2eec13
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/kernel-syms-2.6.11.4-21.8.x86_64.rpm
          f608f35bdb90e29f8b2f7b0d9ebe55ad
   source rpm(s):
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/kernel-default-2.6.11.4-21.8.nosrc.rpm
          0026116fa23db0619bec4c1cad7131bc
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/kernel-smp-2.6.11.4-21.8.nosrc.rpm
          687dc52d024ef4c29e0d8215ec06f43f
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/kernel-source-2.6.11.4-21.8.src.rpm
          d66859bc79ced127079cee1a58227d90
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/kernel-syms-2.6.11.4-21.8.src.rpm
          2df4bab28340ed5beea7cc641b37996f

   SUSE Linux 9.2:
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kernel-default-2.6.8-24.17.x86_64.rpm
          c25dff3ebb63aa965967c3134b46044c
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kernel-default-nongpl-2.6.8-24.17.x86_64.rpm
          2f431403b235eb60cb5aac4e2cfb0129
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kernel-smp-2.6.8-24.17.x86_64.rpm
          c26d75ff5551d8cf96e9d0c76e103eed
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kernel-smp-nongpl-2.6.8-24.17.x86_64.rpm
          4651a609fe14cb138d1338baf037a446
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kernel-source-2.6.8-24.17.x86_64.rpm
          79d4e5e9943057b18363964c106ed68b
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/kernel-syms-2.6.8-24.17.x86_64.rpm
          9087ce46d4533afc3665d9270ccb15d4
   source rpm(s):
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/src/kernel-default-2.6.8-24.17.nosrc.rpm
          93789c90324bd74589d188ca28bb90fb
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/src/kernel-smp-2.6.8-24.17.nosrc.rpm
          cd29ff98ea1e4966e9ef9728f31550c0
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/src/kernel-source-2.6.8-24.17.src.rpm
          0fd3efc9a17a8a6dd4ba4412f156001d
   ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/src/kernel-syms-2.6.8-24.17.src.rpm
          ca8ed47420d9dd89e632934f9ea3c7e3

   SUSE Linux 9.1:
   ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/noarch/kernel-docs-2.6.5-7.193.noarch.rpm
          9e55e1c6ad4224a6aba51f7e8e741f64
   ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-default-2.6.5-7.193.x86_64.rpm
          8f11a22c99a750c75dab36e76f4a2258
   ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-smp-2.6.5-7.193.x86_64.rpm
          1c5ac7a96d946e7102b81f2899be001b
   ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-source-2.6.5-7.193.x86_64.rpm
          808e3ee17e3be2e3eab1f2570326690a
   ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-syms-2.6.5-7.193.x86_64.rpm
          a62089a8df14b58353cd35ff554f47fb
   ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/mkinitrd-1.2-27.12.x86_64.rpm
          31fbf23ab758e9a7b1253e15aae2bf50
   source rpm(s):
   ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/kernel-default-2.6.5-7.193.nosrc.rpm
          d6284bac1d04f9bc4b6133a2a2af527c
   ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/kernel-docs-2.6.5-7.193.src.rpm
          51c2c136a047595ff3e16b5b9e7e6718
   ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/kernel-smp-2.6.5-7.193.nosrc.rpm
          8672f0b590d95373fec4aefb6a065161
   ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/kernel-source-2.6.5-7.193.src.rpm
          5e47cb20a39df305cb8055e40ed57b51
   ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/kernel-syms-2.6.5-7.193.src.rpm
          6291bb3e37b8ae990e7c2b1454bfd407
   ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/mkinitrd-1.2-27.12.src.rpm
          58e7f56bf7dcc95db8b893775a7b5322

   SUSE Linux 9.0:
   ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/k_deflt-2.4.21-297.x86_64.rpm
          f91b1ea439a0d2246b66c38c401b6356
   ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/k_smp-2.4.21-297.x86_64.rpm
          d35d0e61e2fc4573364f1d796957c684
   ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/kernel-source-2.4.21-297.x86_64.rpm
          e60dc4818a39287185fe1bd90611e0ed
   source rpm(s):
   ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/src/k_deflt-2.4.21-297.src.rpm
          ec45006a680174e5fb1335efebedc63b
   ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/src/k_smp-2.4.21-297.src.rpm
          f2ada5581d73c90298150b29e870527b
   ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/src/kernel-source-2.4.21-297.src.rpm
          f57382aa59ae24eda94255eb52edb4b6

浏览次数：4622
严重程度：0（网友投票）

本安全漏洞由绿盟科技翻译整理，版权所有，未经许可，不得转载
绿盟科技给您安全的保障

关于我们: 公司介绍; 公司荣誉; 公司新闻

联系我们: 公司总部; 分支机构; 海外机构

快速链接: 绿盟云; 绿盟威胁情报中心NTI; 技术博客