[Ksplice][Fedora-15-updates] New updates available via Ksplice (FEDORA-2011-16621)
Tim Abbott
tim.abbott at oracle.com
Mon Dec 12 22:49:20 PST 2011
Synopsis: FEDORA-2011-16621 can now be patched using Ksplice
CVEs: CVE-2011-4110 CVE-2011-4131 CVE-2011-4132 CVE-2011-4330
Systems running Fedora 15 can now use Ksplice to patch against the
latest Fedora security update, FEDORA-2011-16621.
INSTALLING THE UPDATES
We recommend that all users of Ksplice Uptrack on Fedora 15 install
these updates. You can install these updates by running:
# /usr/sbin/uptrack-upgrade -y
On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any additional action.
DESCRIPTION
* CVE-2011-4110: Denial of service in kernel key management facilities.
A flaw in the way user-defined key types were handled allowed an
uprivileged local user to crash the system via a NULL pointer
dereference and kernel OOPS.
* CVE-2011-4330: Buffer overflow in hfs.
On a corrupted file system the filename length could be wrong, leading
to a buffer overflow with user-controlled data.
* Integer overflow in xen grant references driver.
On 32-bit systems, a high value of op.count could lead to a series of
integer overflows which could result in memory corruption.
* CVE-2011-4132: Denial of service in Journaling Block Device layer.
A flaw in the way the Journaling Block Device (JBD) layer handled an
invalid log first block value allowed an attacker to mount a malicious
ext3 or ext4 image that would crash the system.
* CVE-2011-4131: Kernel crash in NFSv4.
nfs4_getfacl decoding causes a kernel crash when a server returns more
than 2 GETATTR bitmap words in response to the FATTR4_ACL attribute
request.
* NULL pointer dereference in 802.11 radiotap support.
When receiving failed PLCP frames is enabled, the kernel
will crash when adding a radiotap header to the frame.
SUPPORT
Ksplice support is available at ksplice-support_ww at oracle.com.
More information about the Ksplice-Fedora-15-Updates
mailing list