Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:L/AC:L/Au:N/C:C/I:N/A:N)
Производитель ПО
Наименование ПО
Linux Kernel
(Unknown)
Описание
Уязвимость существует в подсистеме netlink в ядре Linux из-за отсутствия инициализации некоторых полей, существующих для выравнивания границ, в структурах. Эксплуатация данной уязвимости позволяет локальному пользователю получить доступ к конфиденциальной информации из памяти ядра, используя функции tc_fill_qdisc, tcf_fill_node, neightbl_fill_info, neightbl_fill_param_info, neigh_fill_info, rtnetlink_fill_ifinfo, rtnetlink_fill_iwinfo, vif_delete, ipmr_destroy_unres, ipmr_cache_alloc_unres, ipmr_cache_resolve, inet6_fill_ifinfo, tca_get_fill, tca_action_flush, tcf_add_notify, tc_dump_action, cbq_dump_police, __nlmsg_put, __rta_fill, __rta_reserve, inet6_fill_prefix, rsvp_dump и cbq_dump_ovl.
Как исправить
Для устранения уязвимости необходимо установить последнюю версию продукта, соответствующую используемой платформе. Необходимую информацию можно получить по адресу:
http://rhn.redhat.com/errata/RHSA-2009-1522.html
http://rhn.redhat.com/errata/RHSA-2009-1522.html
Ссылки
MLIST ([oss-security] 20090917 Re: CVE request: kernel: tc: uninitialised kernel memory leak): http://www.openwall.com/lists/oss-security/2009/09/17/9
MLIST ([oss-security] 20090916 Re: CVE request: kernel: tc: uninitialised kernel memory leak): http://www.openwall.com/lists/oss-security/2009/09/17/1
MLIST ([oss-security] 20090907 Re: CVE request: kernel: tc: uninitialised kernel memory leak): http://www.openwall.com/lists/oss-security/2009/09/07/2
MLIST ([oss-security] 20090906 Re: CVE request: kernel: tc: uninitialised kernel memory leak): http://www.openwall.com/lists/oss-security/2009/09/06/2
MLIST ([oss-security] 20090905 Re: CVE request: kernel: tc: uninitialised kernel memory leak): http://www.openwall.com/lists/oss-security/2009/09/05/2
CONFIRM (http://www.kernel.org/pub/linux/kernel/v2.6/testing/v2.6.13/ChangeLog-2.6.13-rc1): http://www.kernel.org/pub/linux/kernel/v2.6/testing/v2.6.13/ChangeLog-2.6.13-rc1
MLIST ([bk-commits-head] 20050629 [NETLINK]: Missing initializations in dumped data): http://marc.info/?l=git-commits-head&m=112002138324380
CONFIRM (http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=b3563c4fbff906991a1b4ef4609f99cca2a0de6a): http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=b3563c4fbff906991a1b4ef4609f99cca2a0de6a
CONFIRM (http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9ef1d4c7c7aca1cd436612b6ca785b726ffb8ed8): http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9ef1d4c7c7aca1cd436612b6ca785b726ffb8ed8
CONFIRM (http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=8a47077a0b5aa2649751c46e7a27884e6686ccbf): http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=8a47077a0b5aa2649751c46e7a27884e6686ccbf
CONFIRM (http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.4.37.y.git;a=commit;h=3408cce0c2f380884070896420ca566704452fb5): http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.4.37.y.git;a=commit;h=3408cce0c2f380884070896420ca566704452fb5
CONFIRM (http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.4.37.y.git;a=commit;h=30e744716c4a6cc4e8ecaaddf68f20057c03dc8d): http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.4.37.y.git;a=commit;h=30e744716c4a6cc4e8ecaaddf68f20057c03dc8d
CONFIRM (http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.4.37.y.git;a=commit;h=0f3f2328f63c521fe4b435f148687452f98b2349): http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.4.37.y.git;a=commit;h=0f3f2328f63c521fe4b435f148687452f98b2349
CONFIRM (https://bugzilla.redhat.com/show_bug.cgi?id=521601): https://bugzilla.redhat.com/show_bug.cgi?id=521601
REDHAT (RHSA-2009:1522): http://www.redhat.com/support/errata/RHSA-2009-1522.html
CONFIRM (http://www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.37.6): http://www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.37.6
OVAL (oval:org.mitre.oval:def:11744): http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11744
SUSE (SUSE-SA:2009:064): http://lists.opensuse.org/opensuse-security-announce/2009-12/msg00005.html
Источник: CVE
Наименование: CVE-2005-4881
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4881
MLIST ([oss-security] 20090916 Re: CVE request: kernel: tc: uninitialised kernel memory leak): http://www.openwall.com/lists/oss-security/2009/09/17/1
MLIST ([oss-security] 20090907 Re: CVE request: kernel: tc: uninitialised kernel memory leak): http://www.openwall.com/lists/oss-security/2009/09/07/2
MLIST ([oss-security] 20090906 Re: CVE request: kernel: tc: uninitialised kernel memory leak): http://www.openwall.com/lists/oss-security/2009/09/06/2
MLIST ([oss-security] 20090905 Re: CVE request: kernel: tc: uninitialised kernel memory leak): http://www.openwall.com/lists/oss-security/2009/09/05/2
CONFIRM (http://www.kernel.org/pub/linux/kernel/v2.6/testing/v2.6.13/ChangeLog-2.6.13-rc1): http://www.kernel.org/pub/linux/kernel/v2.6/testing/v2.6.13/ChangeLog-2.6.13-rc1
MLIST ([bk-commits-head] 20050629 [NETLINK]: Missing initializations in dumped data): http://marc.info/?l=git-commits-head&m=112002138324380
CONFIRM (http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=b3563c4fbff906991a1b4ef4609f99cca2a0de6a): http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=b3563c4fbff906991a1b4ef4609f99cca2a0de6a
CONFIRM (http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9ef1d4c7c7aca1cd436612b6ca785b726ffb8ed8): http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9ef1d4c7c7aca1cd436612b6ca785b726ffb8ed8
CONFIRM (http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=8a47077a0b5aa2649751c46e7a27884e6686ccbf): http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=8a47077a0b5aa2649751c46e7a27884e6686ccbf
CONFIRM (http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.4.37.y.git;a=commit;h=3408cce0c2f380884070896420ca566704452fb5): http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.4.37.y.git;a=commit;h=3408cce0c2f380884070896420ca566704452fb5
CONFIRM (http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.4.37.y.git;a=commit;h=30e744716c4a6cc4e8ecaaddf68f20057c03dc8d): http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.4.37.y.git;a=commit;h=30e744716c4a6cc4e8ecaaddf68f20057c03dc8d
CONFIRM (http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.4.37.y.git;a=commit;h=0f3f2328f63c521fe4b435f148687452f98b2349): http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.4.37.y.git;a=commit;h=0f3f2328f63c521fe4b435f148687452f98b2349
CONFIRM (https://bugzilla.redhat.com/show_bug.cgi?id=521601): https://bugzilla.redhat.com/show_bug.cgi?id=521601
REDHAT (RHSA-2009:1522): http://www.redhat.com/support/errata/RHSA-2009-1522.html
CONFIRM (http://www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.37.6): http://www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.37.6
OVAL (oval:org.mitre.oval:def:11744): http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11744
SUSE (SUSE-SA:2009:064): http://lists.opensuse.org/opensuse-security-announce/2009-12/msg00005.html
Источник: CVE
Наименование: CVE-2005-4881
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4881