Linux Kernel MIPS 进程跟踪进程跟踪本地特权提升漏洞

漏洞信息详情

Linux Kernel MIPS 进程跟踪进程跟踪本地特权提升漏洞

• CNNVD编号：CNNVD-200412-952
• 危害等级： 中危
  
  
• CVE编号：
  CVE-2004-0997
  
• 漏洞类型：
  
  
  未知
  
• 发布时间：
  
  2004-12-31
  
• 威胁类型：
  
  
  本地
  
• 更新时间：
  
  2006-05-31
  
• 厂        商：
  
  linux
• 漏洞来源：
  Discovery is credi…

Linux kernel 2.4.17之前的2.4版本中MIPS汇编码存在未明漏洞。本地用户可以借助未知向量提升特权。

Please see the referenced advisories for information on obtaining and applying the appropriate updates.

Linux kernel 2.4.16

• Debian kernel-doc-2.4.16_2.4.16-1woody2_all.debDebian GNU/Linux 3.0 alias woody
  
  http://security.debian.org/pool/updates/main/k/kernel-source-2.4.16/ke
  rnel-doc-2.4.16_2.4.16-1woody2_all.deb
• Debian kernel-doc-2.4.16_2.4.16-1woody3_all.debDebian GNU/Linux 3.0 alias woody
  
  http://security.debian.org/pool/updates/main/k/kernel-source-2.4.16/ke
  rnel-doc-2.4.16_2.4.16-1woody3_all.deb
• Debian kernel-headers-2.4.16_20040419_arm.debDebian GNU/Linux 3.0 alias woody
  
  http://security.debian.org/pool/updates/main/k/kernel-image-2.4.16-net
  winder/kernel-headers-2.4.16_20040419_arm.deb
• Debian kernel-headers-2.4.16_20040419woody1_arm.debDebian GNU/Linux 3.0 alias woody
  
  http://security.debian.org/pool/updates/main/k/kernel-image-2.4.16-net
  winder/kernel-headers-2.4.16_20040419woody1_arm.deb
• Debian kernel-image-2.4.16-lart_20040419_arm.debDebian GNU/Linux 3.0 alias woody
  
  http://security.debian.org/pool/updates/main/k/kernel-image-2.4.16-lar
  t/kernel-image-2.4.16-lart_20040419_arm.deb
• Debian kernel-image-2.4.16-lart_20040419woody1_arm.debDebian GNU/Linux 3.0 alias woody
  
  http://security.debian.org/pool/updates/main/k/kernel-image-2.4.16-lar
  t/kernel-image-2.4.16-lart_20040419woody1_arm.deb
• Debian kernel-image-2.4.16-netwinder_20040419_arm.debDebian GNU/Linux 3.0 alias woody
  
  http://security.debian.org/pool/updates/main/k/kernel-image-2.4.16-net
  winder/kernel-image-2.4.16-netwinder_20040419_arm.deb
• Debian kernel-image-2.4.16-netwinder_20040419woody1_arm.debDebian GNU/Linux 3.0 alias woody
  
  http://security.debian.org/pool/updates/main/k/kernel-image-2.4.16-net
  winder/kernel-image-2.4.16-netwinder_20040419woody1_arm.deb
• Debian kernel-image-2.4.16-riscpc_20040419_arm.debDebian GNU/Linux 3.0 alias woody
  
  http://security.debian.org/pool/updates/main/k/kernel-image-2.4.16-ris
  cpc/kernel-image-2.4.16-riscpc_20040419_arm.deb
• Debian kernel-image-2.4.16-riscpc_20040419woody1_arm.debDebian GNU/Linux 3.0 alias woody
  
  http://security.debian.org/pool/updates/main/k/kernel-image-2.4.16-ris
  cpc/kernel-image-2.4.16-riscpc_20040419woody1_arm.deb
• Debian kernel-patch-2.4.16-arm_20040419_all.debDebian GNU/Linux 3.0 alias woody
  
  http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.16-arm
  /kernel-patch-2.4.16-arm_20040419_all.deb
• Debian kernel-source-2.4.16_2.4.16-1woody2_all.debDebian GNU/Linux 3.0 alias woody
  
  http://security.debian.org/pool/updates/main/k/kernel-source-2.4.16/ke
  rnel-source-2.4.16_2.4.16-1woody2_all.deb
• Debian kernel-source-2.4.16_2.4.16-1woody3_all.debDebian GNU/Linux 3.0 alias woody
  
  http://security.debian.org/pool/updates/main/k/kernel-source-2.4.16/ke
  rnel-source-2.4.16_2.4.16-1woody3_all.deb

Linux kernel 2.4.18

• Debian kernel-headers-2.4.16_20040204_arm.debARM architecture.
  
  http://security.debian.org/pool/updates/main/k/kernel-image-2.4.16-net
  winder/kernel-headers-2.4.16_20040204_arm.deb
• Debian kernel-headers-2.4.18-sparc_22woody1_all.debDebian GNU/Linux 3.0 alias woody
  
  http://security.debian.org/pool/updates/main/k/kernel-image-sparc-2.4/
  kernel-headers-2.4.18-sparc_22woody1_all.deb
• Debian kernel-image-2.4.16-lart_20040204_arm.debARM architecture.
  
  http://security.debian.org/pool/updates/main/k/kernel-image-2.4.16-lar
  t/kernel-image-2.4.16-lart_20040204_arm.deb
• Debian kernel-image-2.4.16-netwinder_20040204_arm.debARM architecture.
  
  http://security.debian.org/pool/updates/main/k/kernel-image-2.4.16-net
  winder/kernel-image-2.4.16-netwinder_20040204_arm.deb
• Debian kernel-image-2.4.16-riscpc_20040204_arm.debARM architecture.
  
  http://security.debian.org/pool/updates/main/k/kernel-image-2.4.16-ris
  cpc/kernel-image-2.4.16-riscpc_20040204_arm.deb
• Debian kernel-image-2.4.18-sun4u-smp_22woody1_sparc.debDebian GNU/Linux 3.0 alias woody
  
  http://security.debian.org/pool/updates/main/k/kernel-image-sparc-2.4/
  kernel-image-2.4.18-sun4u-smp_22woody1_sparc.deb
• Debian kernel-image-2.4.18-sun4u_22woody1_sparc.debDebian GNU/Linux 3.0 alias woody
  
  http://security.debian.org/pool/updates/main/k/kernel-image-sparc-2.4/
  kernel-image-2.4.18-sun4u_22woody1_sparc.deb

Linux kernel 2.4.19

• Debian kernel-doc-2.4.19_2.4.19-4.woody3_all.debDebian GNU/Linux 3.0 alias woody
  
  http://security.debian.org/pool/updates/main/k/kernel-source-2.4.19/ke
  rnel-doc-2.4.19_2.4.19-4.woody3_all.deb
• Debian kernel-headers-2.4.19-sparc_26woody1_all.debDebian GNU/Linux 3.0 alias woody
  

  参考网址

  来源: DEBIAN
  名称: DSA-1082
  链接:http://www.debian.org/security/2006/dsa-1082

  来源: DEBIAN
  名称: DSA-1070
  链接:http://www.debian.org/security/2006/dsa-1070

  来源: DEBIAN
  名称: DSA-1069
  链接:http://www.debian.org/security/2006/dsa-1069

  来源: DEBIAN
  名称: DSA-1067
  链接:http://www.debian.org/security/2006/dsa-1067

  来源: SECUNIA
  名称: 20202
  链接:http://secunia.com/advisories/20202

  来源: SECUNIA
  名称: 20163
  链接:http://secunia.com/advisories/20163

  来源: SECUNIA
  名称: 20162
  链接:http://secunia.com/advisories/20162

  来源: kernel.debian.net
  链接:http://kernel.debian.net/debian/pool/main/kernel-source-2.4.17/kernel-source-2.4.17_2.4.17-1woody4_ia64.changes

  来源: BID
  名称: 18176
  链接:http://www.securityfocus.com/bid/18176

  来源: svn.debian.org
  链接:http://svn.debian.org/wsvn/kernel/patch-tracking/CVE-2004-0997?op=file&rev=0&sc=0

  来源: SECUNIA
  名称: 20338
  链接:http://secunia.com/advisories/20338