what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New

Mandriva Linux Security Advisory 2007.171

Mandriva Linux Security Advisory 2007.171
Posted Aug 29, 2007
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Some vulnerabilities have been discovered and corrected in the Linux 2.6 kernel.

tags | advisory, kernel, vulnerability
systems | linux, mandriva
advisories | CVE-2006-5755, CVE-2006-7203, CVE-2007-1496, CVE-2007-1497, CVE-2007-1861, CVE-2007-2172, CVE-2007-2242, CVE-2007-2453, CVE-2007-2525, CVE-2007-2875, CVE-2007-2876
SHA-256 | bd907ca4046ec2b9bc817fc56fcfddf665817aff608e918a3d9bab59365e0a2c

Mandriva Linux Security Advisory 2007.171

Change Mirror Download

Hash: SHA1


Mandriva Linux Security Advisory MDKSA-2007:171

Package : kernel
Date : August 28, 2007
Affected: 2007.0, 2007.1

Problem Description:

Some vulnerabilities were discovered and corrected in the Linux
2.6 kernel:

The Linux kernel did not properly save or restore EFLAGS during a
context switch, or reset the flags when creating new threads, which
allowed local users to cause a denial of service (process crash)

The compat_sys_mount function in fs/compat.c allowed local users
to cause a denial of service (NULL pointer dereference and oops)
by mounting a smbfs file system in compatibility mode (CVE-2006-7203).

The nfnetlink_log function in netfilter allowed an attacker to cause a
denial of service (crash) via unspecified vectors which would trigger
a NULL pointer dereference (CVE-2007-1496).

The nf_conntrack function in netfilter did not set nfctinfo during
reassembly of fragmented packets, which left the default value as
IP_CT_ESTABLISHED and could allow remote attackers to bypass certain
rulesets using IPv6 fragments (CVE-2007-1497).

The netlink functionality did not properly handle NETLINK_FIB_LOOKUP
replies, which allowed a remote attacker to cause a denial of service
(resource consumption) via unspecified vectors, probably related to
infinite recursion (CVE-2007-1861).

A typo in the Linux kernel caused RTA_MAX to be used as an array size
instead of RTN_MAX, which lead to an out of bounds access by certain
functions (CVE-2007-2172).

The IPv6 protocol allowed remote attackers to cause a denial of
service via crafted IPv6 type 0 route headers that create network
amplification between two routers (CVE-2007-2242).

The random number feature did not properly seed pools when there was
no entropy, or used an incorrect cast when extracting entropy, which
could cause the random number generator to provide the same values
after reboots on systems without an entropy source (CVE-2007-2453).

A memory leak in the PPPoE socket implementation allowed local users
to cause a denial of service (memory consumption) by creating a
socket using connect, and releasing it before the PPPIOCGCHAN ioctl
is initialized (CVE-2007-2525).

An integer underflow in the cpuset_tasks_read function, when the cpuset
filesystem is mounted, allowed local users to obtain kernel memory
contents by using a large offset when reading the /dev/cpuset/tasks
file (CVE-2007-2875).

The sctp_new function in netfilter allowed remote attackers to cause
a denial of service by causing certain invalid states that triggered
a NULL pointer dereference (CVE-2007-2876).

In addition to these security fixes, other fixes have been included
such as:

- Fix crash on netfilter when nfnetlink_log is used on certain
hooks on packets forwarded to or from a bridge
- Fixed busy sleep on IPVS which caused high load averages
- Fixed possible race condition on ext[34]_link
- Fixed missing braces in condition block that led to wrong behaviour
in NFS
- Fixed XFS lock deallocation that resulted in oops when unmounting

To update your kernel, please follow the directions located at:




Updated Packages:

Mandriva Linux 2007.0:
d811181ab766c637c1f2c66d6e87e8d6 2007.0/i586/kernel-
1085a0bf3e633334fc89c193d40520c5 2007.0/i586/kernel-doc-
b192fa1b91318b4f821fcd1e9f76a03e 2007.0/i586/kernel-enterprise-
54e08cecf37cacbfc490ae4a3eb803ba 2007.0/i586/kernel-legacy-
60eb7f61d0f91da0396ceb8cc0528a0b 2007.0/i586/kernel-source-
48bbb8ff51313a61e85562f3f5036832 2007.0/i586/kernel-source-stripped-
d6464e0a4512ae194a884a73d6196fc7 2007.0/i586/kernel-xen0-
4264a6f084147f6f401b5320689eab89 2007.0/i586/kernel-xenU-
d6845e3410f8f468b2c1e30ce2a4c4de 2007.0/SRPMS/kernel-

Mandriva Linux 2007.0/X86_64:
16c9da0d48ebe6391382921c10ccac97 2007.0/x86_64/kernel-
56f44a046c471d98d6778153cdee7a80 2007.0/x86_64/kernel-doc-
dea95558e0ada5af5f05abbc0c79aaca 2007.0/x86_64/kernel-source-
de1f522536c1b6615b30269f6824ba18 2007.0/x86_64/kernel-source-stripped-
6001c99297c562f99c827ee123d9379c 2007.0/x86_64/kernel-xen0-
7534d9a0b31ad88e5191d94dcede38f9 2007.0/x86_64/kernel-xenU-
d6845e3410f8f468b2c1e30ce2a4c4de 2007.0/SRPMS/kernel-

Mandriva Linux 2007.1:
7ecc4ad79ff8ba1f28d440aae4bae1e0 2007.1/i586/kernel-
490f409ed0f979718b4491c79e90ca51 2007.1/i586/kernel-doc-
eb01284da75d113ca144c75bdbf7bbd7 2007.1/i586/kernel-doc-latest-2.6.17-15mdv.i586.rpm
f62258545c302e8bd6333fb1b22fdd1c 2007.1/i586/kernel-enterprise-
d22574eaff9ffc7c66a1504bc8f5072e 2007.1/i586/kernel-enterprise-latest-2.6.17-15mdv.i586.rpm
6721155375ef23a8d7fc6f005acb271e 2007.1/i586/kernel-latest-2.6.17-15mdv.i586.rpm
93ec8479cf3b047f1d7b4a209641defe 2007.1/i586/kernel-legacy-
a2036553e6c5688c2d98041d7f784c96 2007.1/i586/kernel-legacy-latest-2.6.17-15mdv.i586.rpm
718543542ed69def4d941d9abf51913c 2007.1/i586/kernel-source-
e808ecec927f34cd276eb0b8d40ae6a8 2007.1/i586/kernel-source-latest-2.6.17-15mdv.i586.rpm
dfca6b82dc93cf8f8a1042c95e45c279 2007.1/i586/kernel-source-stripped-
a289ed33d6e597e7ddaab03fb7c7d726 2007.1/i586/kernel-source-stripped-latest-2.6.17-15mdv.i586.rpm
d7302d839d738503b4fb79e187a7144c 2007.1/i586/kernel-xen0-
09cdb36a943e21a6e26a34879e8a7b94 2007.1/i586/kernel-xen0-latest-2.6.17-15mdv.i586.rpm
baf363280921a090134bbe9e8e646f10 2007.1/i586/kernel-xenU-
90317de9412ace8f3f5d2d29dde72977 2007.1/i586/kernel-xenU-latest-2.6.17-15mdv.i586.rpm
364e7f83e4948ba15c894b4da4642161 2007.1/SRPMS/kernel-

Mandriva Linux 2007.1/X86_64:
4b0a0e1ccbd82e9130243af1bf0a8848 2007.1/x86_64/kernel-
ef962dd6f6c5c6c0a88bf340701f6ba9 2007.1/x86_64/kernel-doc-
2611fb6d342c0c57e68199ae9cff1aad 2007.1/x86_64/kernel-doc-latest-2.6.17-15mdv.x86_64.rpm
002d07f36a0caf770b4e9be713421c1e 2007.1/x86_64/kernel-latest-2.6.17-15mdv.x86_64.rpm
01a245502f9b0dd70bb03b81ab791951 2007.1/x86_64/kernel-source-
cde593c1b74843033072bf39b55aad51 2007.1/x86_64/kernel-source-latest-2.6.17-15mdv.x86_64.rpm
6c80e89a69737f853a5c28a4ef9c26e8 2007.1/x86_64/kernel-source-stripped-
f36ca98ce2f577675e864feec1936d95 2007.1/x86_64/kernel-source-stripped-latest-2.6.17-15mdv.x86_64.rpm
e8f1196c4a6a8c3948327c1fdb2287b3 2007.1/x86_64/kernel-xen0-
01f1acb664885bc6587b6cb96dec3de3 2007.1/x86_64/kernel-xen0-latest-2.6.17-15mdv.x86_64.rpm
6eb46e2f4045b78d1f89f76a9ce04ee5 2007.1/x86_64/kernel-xenU-
bf51ac4bde7a22fb8c5d40fff840ed58 2007.1/x86_64/kernel-xenU-latest-2.6.17-15mdv.x86_64.rpm
364e7f83e4948ba15c894b4da4642161 2007.1/SRPMS/kernel-

To upgrade automatically use MandrivaUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandriva for security. You can obtain the
GPG public key of the Mandriva Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandriva Linux at:


If you want to report vulnerabilities, please contact


Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team
Version: GnuPG v1.4.7 (GNU/Linux)


Login or Register to add favorites

File Archive:

May 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    44 Files
  • 2
    May 2nd
    5 Files
  • 3
    May 3rd
    11 Files
  • 4
    May 4th
    0 Files
  • 5
    May 5th
    0 Files
  • 6
    May 6th
    28 Files
  • 7
    May 7th
    3 Files
  • 8
    May 8th
    4 Files
  • 9
    May 9th
    54 Files
  • 10
    May 10th
    12 Files
  • 11
    May 11th
    0 Files
  • 12
    May 12th
    0 Files
  • 13
    May 13th
    17 Files
  • 14
    May 14th
    11 Files
  • 15
    May 15th
    17 Files
  • 16
    May 16th
    13 Files
  • 17
    May 17th
    22 Files
  • 18
    May 18th
    0 Files
  • 19
    May 19th
    0 Files
  • 20
    May 20th
    17 Files
  • 21
    May 21st
    18 Files
  • 22
    May 22nd
    7 Files
  • 23
    May 23rd
    0 Files
  • 24
    May 24th
    0 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags


packet storm

© 2022 Packet Storm. All rights reserved.

Security Services
Hosting By