Sicherheit: Zwei Probleme in Linux

Lesezeichen hinzufügen

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--===============8211332577615240009==
Content-Type: multipart/signed; micalg=pgp-sha512;
protocol="application/pgp-signature";
boundary="gREUPFnsCrFK7DgR23MKgnDAwF14JQ8ud"

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--gREUPFnsCrFK7DgR23MKgnDAwF14JQ8ud
Content-Type: text/plain; charset=utf-
Content-Transfer-Encoding: quoted-printable

==========================================================================
Ubuntu Security Notice USN-2416-1
November 25, 2014

linux-ec2 vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 10.04 LTS

Summary:

Several security issues were fixed in the kernel.

Software Description:
- linux-ec2: Linux kernel for EC2

Details:

Don Bailey discovered a flaw in the LZO decompress algorithm used by the
Linux kernel. An attacker could exploit this flaw to cause a denial of
service (memory corruption or OOPS). (CVE-2014-4608)

Andy Lutomirski discovered that the Linux kernel was not checking the
CAP_SYS_ADMIN when remounting filesystems to read-only. A local user could
exploit this flaw to cause a denial of service (loss of writability).
(CVE-2014-7975)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 10.04 LTS:
linux-image-2.6.32-372-ec2 2.6.32-372.89

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed. If
you use linux-restricted-modules, you have to update that package as
well to get modules which work with the new kernel version. Unless you
manually uninstalled the standard kernel metapackages (e.g. linux-generic,
linux-server, linux-powerpc), a standard system upgrade will automatically
perform this as well.

References:
http://www.ubuntu.com/usn/usn-2416-1
CVE-2014-4608, CVE-2014-7975

Package Information:
https://launchpad.net/ubuntu/+source/linux-ec2/2.6.32-372.89

--gREUPFnsCrFK7DgR23MKgnDAwF14JQ8ud
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=mqGa
-----END PGP SIGNATURE-----

--gREUPFnsCrFK7DgR23MKgnDAwF14JQ8ud--

--===============8211332577615240009==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

--
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

--===============8211332577615240009==--