Куда я попал?
BDU:2015-03581
CVSS: 7.8
31.12.2004
Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить доступность защищаемой информации
Множественные уязвимости пакета hostap-modules-2.4.27-4-386 операционной системы Debian GNU/Linux, эксплуатация которых может привести к нарушению доступности защищаемой информации. Эксплуатация уязвимостей может быть осуществлена удаленно
| Статус уязвимости: |
Подтверждена производителем
Уязвимость устранена
|
| Дата выявления: | 31.12.2004 |
| Наличие эксплойта: | Данные уточняются |
| Способ эксплуатации: | Манипулирование структурами данных |
| Способ устранения: | Нет данных |
| Меры по устранению: | Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры: Debian GNU/Linux 3.1: ppc: mips-tools - 2.4.27-10.sarge4.040815-3 kernel-image-2.4.27-powerpc-small - 2.4.27-10sarge6 kernel-image-2.4.27-powerpc-smp - 2.4.27-10sarge6 kernel-image-2.4.27-nubus - 2.4.27-10sarge6 kernel-image-2.4.27-powerpc - 2.4.27-10sarge6 kernel-patch-2.4.27-powerpc - 2.4.27-10sarge6 kernel-patch-2.4.27-nubus - 2.4.27-10sarge6 kernel-headers-2.4.27-powerpc - 2.4.27-10sarge6 kernel-build-2.4.27-apus - 2.4.27-10sarge6 kernel-headers-2.4.27-nubus - 2.4.27-10sarge6 kernel-patch-2.4.27-apus - 2.4.27-10sarge6 kernel-image-2.4.27-apus - 2.4.27-10sarge6 kernel-headers-2.4.27-apus - 2.4.27-10sarge6 kernel-build-2.4.27-powerpc-smp - 2.4.27-10sarge6 kernel-build-2.4.27-nubus - 2.4.27-10sarge6 kernel-build-2.4.27-powerpc - 2.4.27-10sarge6 kernel-build-2.4.27-powerpc-small - 2.4.27-10sarge6 s390x: kernel-image-2.4.27-4-s390-tape - 2.4.27-2sarge6 kernel-image-2.4.27-4-s390x - 2.4.27-2sarge6 kernel-headers-2.4.27-4 - 2.4.27-2sarge6 kernel-headers-2.4-s390 - 2.4.27-1sarge2 kernel-image-2.4-s390x - 2.4.27-1sarge2 mips-tools - 2.4.27-10.sarge4.040815-3 kernel-image-2.4.27-4-s390 - 2.4.27-2sarge6 kernel-image-2.4-s390 - 2.4.27-1sarge2 m68k: kernel-image-2.4.27-amiga - 2.4.27-3sarge6 kernel-image-2.4.27-mac - 2.4.27-3sarge6 kernel-image-2.4.27-mvme16x - 2.4.27-3sarge6 kernel-image-2.4.27-mvme147 - 2.4.27-3sarge6 kernel-image-2.4.27-bvme6000 - 2.4.27-3sarge6 mips-tools - 2.4.27-10.sarge4.040815-3 kernel-image-2.4.27-atari - 2.4.27-3sarge6 kernel-image-2.4.27-q40 - 2.4.27-3sarge6 i686: kernel-image-2.4-k7 - 101sarge2 i2c-2.4.27-4-386 - 2.9.1-1sarge2 kernel-pcmcia-modules-2.4.27-4-k7-smp - 2.4.27-10sarge6 kernel-pcmcia-modules-2.4.27-4-k7 - 2.4.27-10sarge6 kernel-headers-2.4-686 - 101sarge2 i2c-2.4.27-4-k7 - 2.9.1-1sarge2 kernel-image-2.4.27-speakup - 2.4.27-1.1sarge5 kernel-headers-2.4-386 - 101sarge2 hostap-modules-2.6.8-4-686 - 0.3.7-1sarge3 kernel-image-2.4-k7-smp - 101sarge2 mips-tools - 2.4.27-10.sarge4.040815-3 kernel-headers-2.4.27-4-386 - 2.4.27-10sarge6 pcmcia-modules-2.4.27-4-586tsc - 3.2.5+2sarge2 lm-sensors-2.4.27-4-k6 - 2.9.1-1sarge4 kernel-image-2.4.27-4-k7-smp - 2.4.27-10sarge6 kernel-pcmcia-modules-2.4-686 - 101sarge2 kernel-image-2.4.27-4-686 - 2.4.27-10sarge6 pcmcia-modules-2.4.27-4-k6 - 3.2.5+2sarge2 lm-sensors-2.4.27-4-386 - 2.9.1-1sarge4 kernel-headers-2.4-k7-smp - 101sarge2 kernel-image-2.4-586tsc - 101sarge2 lm-sensors-2.4.27-4-686-smp - 2.9.1-1sarge4 libsensors3 - 2.9.1-1sarge4 kernel-headers-2.4.27-4-586tsc - 2.4.27-10sarge6 kernel-headers-2.4.27-4 - 2.4.27-10sarge6 kernel-image-2.4-686 - 101sarge2 kernel-image-2.4-386 - 101sarge2 kernel-headers-2.4-k6 - 101sarge2 kernel-pcmcia-modules-2.4-686-smp - 101sarge2 kernel-pcmcia-modules-2.4-386 - 101sarge2 i2c-2.4.27-4-k7-smp - 2.9.1-1sarge2 i2c-2.4.27-4-686-smp - 2.9.1-1sarge2 i2c-2.4.27-4-686 - 2.9.1-1sarge2 kernel-headers-2.4-586tsc - 101sarge2 hostap-modules-2.6.8-4-686-smp - 0.3.7-1sarge3 hostap-modules-2.4.27-4-k7 - 0.3.7-1sarge3 kernel-headers-2.4-686-smp - 101sarge2 i2c-2.4.27-4-k6 - 2.9.1-1sarge2 kernel-pcmcia-modules-2.4.27-4-686-smp - 2.4.27-10sarge6 hostap-modules-2.4.27-4-586tsc - 0.3.7-1sarge3 hostap-modules-2.4.27-4-686-smp - 0.3.7-1sarge3 kernel-headers-2.4.27-4-686-smp - 2.4.27-10sarge6 kernel-pcmcia-modules-2.4.27-4-586tsc - 2.4.27-10sarge6 kernel-pcmcia-modules-2.4-k7-smp - 101sarge2 kernel-headers-2.4.27-speakup - 2.4.27-1.1sarge5 lm-sensors-2.4.27-4-686 - 2.9.1-1sarge4 hostap-modules-2.4.27-4-386 - 0.3.7-1sarge3 kernel-image-2.4.27-4-k7 - 2.4.27-10sarge6 hostap-modules-2.6.8-4-k7 - 0.3.7-1sarge3 kernel-image-2.4.27-4-686-smp - 2.4.27-10sarge6 hostap-modules-2.6.8-4-k7-smp - 0.3.7-1sarge3 pcmcia-modules-2.4.27-4-k7 - 3.2.5+2sarge2 kernel-headers-2.4.27-4-k6 - 2.4.27-10sarge6 hostap-modules-2.4.27-4-k6 - 0.3.7-1sarge3 hostap-modules-2.6.8-4-386 - 0.3.7-1sarge3 kernel-pcmcia-modules-2.4-k7 - 101sarge2 pcmcia-modules-2.4.27-4-k7-smp - 3.2.5+2sarge2 kernel-headers-2.4.27-4-686 - 2.4.27-10sarge6 pcmcia-modules-2.4.27-4-686 - 3.2.5+2sarge2 lm-sensors-2.4.27-4-k7-smp - 2.9.1-1sarge4 kernel-pcmcia-modules-2.4.27-4-686 - 2.4.27-10sarge6 libsensors-dev - 2.9.1-1sarge4 kernel-pcmcia-modules-2.4-586tsc - 101sarge2 kernel-headers-2.4.27-4-k7 - 2.4.27-10sarge6 kernel-image-2.4.27-4-k6 - 2.4.27-10sarge6 kernel-headers-2.4-k7 - 101sarge2 kernel-pcmcia-modules-2.4-k6 - 101sarge2 kernel-build-2.4.27-4 - 2.4.27-10sarge6 kernel-image-2.4-k6 - 101sarge2 hostap-modules-2.4.27-4-686 - 0.3.7-1sarge3 lm-sensors-2.4.27-4-k7 - 2.9.1-1sarge4 kernel-pcmcia-modules-2.4.27-4-386 - 2.4.27-10sarge6 lm-sensors-2.4.27-4-586tsc - 2.9.1-1sarge4 mindi-kernel - 2.4.27-2sarge5 kernel-pcmcia-modules-2.4.27-4-k6 - 2.4.27-10sarge6 i2c-2.4.27-4-586tsc - 2.9.1-1sarge2 pcmcia-modules-2.4.27-4-686-smp - 3.2.5+2sarge2 kernel-image-2.4-686-smp - 101sarge2 lm-sensors - 2.9.1-1sarge4 kernel-image-2.4.27-4-386 - 2.4.27-10sarge6 sensord - 2.9.1-1sarge4 kernel-headers-2.4.27-4-k7-smp - 2.4.27-10sarge6 hostap-modules-2.4.27-4-k7-smp - 0.3.7-1sarge3 pcmcia-modules-2.4.27-4-386 - 3.2.5+2sarge2 kernel-image-2.4.27-4-586tsc - 2.4.27-10sarge6 hppa: mips-tools - 2.4.27-10.sarge4.040815-3 sparc: kernel-image-2.4-sparc64-smp - 42sarge3 kernel-image-2.4-sparc32-smp - 42sarge3 kernel-image-2.4-sparc32 - 42sarge3 kernel-image-2.4-sparc64 - 42sarge3 kernel-image-2.4.27-4-sparc32-smp - 2.4.27-9sarge6 kernel-headers-2.4.27-4-sparc32 - 2.4.27-9sarge6 kernel-headers-2.4.27-4-sparc64 - 2.4.27-9sarge6 kernel-headers-2.4.27-4-sparc64-smp - 2.4.27-9sarge6 kernel-headers-2.4.27-4 - 2.4.27-9sarge6 kernel-headers-2.4-sparc64-smp - 42sarge3 kernel-headers-2.4.27-4-sparc32-smp - 2.4.27-9sarge6 kernel-image-2.4.27-4-sparc32 - 2.4.27-9sarge6 kernel-headers-2.4-sparc32-smp - 42sarge3 kernel-headers-2.4-sparc64 - 42sarge3 mips-tools - 2.4.27-10.sarge4.040815-3 kernel-build-2.4.27-4 - 2.4.27-9sarge6 kernel-image-2.4.27-4-sparc64 - 2.4.27-9sarge6 kernel-headers-2.4-sparc32 - 42sarge3 kernel-image-2.4.27-4-sparc64-smp - 2.4.27-9sarge6 x86-64: mips-tools - 2.4.27-10.sarge4.040815-3 alpha: kernel-headers-2.4-generic - 101sarge3 kernel-headers-2.4.27-4-generic - 2.4.27-10sarge6 kernel-image-2.4.27-4-smp - 2.4.27-10sarge6 kernel-build-2.4.27-4 - 2.4.27-10sarge6 mips-tools - 2.4.27-10.sarge4.040815-3 kernel-image-2.4-generic - 101sarge3 kernel-headers-2.4.27-4-smp - 2.4.27-10sarge6 kernel-image-2.4-smp - 101sarge3 kernel-headers-2.4-smp - 101sarge3 kernel-image-2.4.27-4-generic - 2.4.27-10sarge6 kernel-headers-2.4.27-4 - 2.4.27-10sarge6 ia64: kernel-image-2.4-mckinley-smp - 2.4.27-10sarge6 kernel-image-2.4.27-4-mckinley-smp - 2.4.27-10sarge6 kernel-headers-2.4.27-4-itanium - 2.4.27-10sarge6 kernel-image-2.4.27-4-mckinley - 2.4.27-10sarge6 kernel-image-2.4.27-4-itanium - 2.4.27-10sarge6 kernel-headers-2.4.27-4-mckinley - 2.4.27-10sarge6 kernel-image-2.4-itanium-smp - 2.4.27-10sarge6 mips-tools - 2.4.27-10.sarge4.040815-3 kernel-headers-2.4.27-4-itanium-smp - 2.4.27-10sarge6 kernel-image-2.4-mckinley - 2.4.27-10sarge6 kernel-headers-2.4.27-4-mckinley-smp - 2.4.27-10sarge6 kernel-image-2.4.27-4-itanium-smp - 2.4.27-10sarge6 kernel-image-2.4-itanium - 2.4.27-10sarge6 kernel-headers-2.4.27-4 - 2.4.27-10sarge6 kernel-build-2.4.27-4 - 2.4.27-10sarge6 mips: kernel-image-2.4.27-r5k-ip22 - 2.4.27-10.sarge4.040815-3 kernel-headers-2.4.27 - 2.4.27-10.sarge4.040815-3 kernel-image-2.4.27-sb1-swarm-bn - 2.4.27-10.sarge4.040815-3 mips-tools - 2.4.27-10.sarge4.040815-3 kernel-image-2.4.27-r4k-ip22 - 2.4.27-10.sarge4.040815-3 noarch: i2c-source - 2.9.1-1sarge2 kernel-doc-2.4.27-speakup - 2.4.27-1.1sarge5 systemimager-server - 3.2.3-6sarge5 kernel-patch-debian-2.4.27 - 2.4.27-10sarge6 kernel-patch-2.4-lm-sensors - 2.9.1-1sarge4 kernel-tree-2.4.27 - 2.4.27-10sarge6 kernel-source-2.4.27 - 2.4.27-10sarge6 systemimager-client - 3.2.3-6sarge5 systemimager-server-flamethrowerd - 3.2.3-6sarge5 systemimager-boot-ia64-standard - 3.2.3-6sarge5 kernel-patch-2.4-i2c - 2.9.1-1sarge2 kernel-doc-2.4.27 - 2.4.27-10sarge6 systemimager-doc - 3.2.3-6sarge5 lm-sensors-source - 2.9.1-1sarge4 systemimager-boot-i386-standard - 3.2.3-6sarge5 systemimager-common - 3.2.3-6sarge5 mipsel: kernel-image-2.4.27-r5k-lasat - 2.4.27-10.sarge4.040815-3 kernel-image-2.4.27-r5k-cobalt - 2.4.27-10.sarge4.040815-3 kernel-headers-2.4.27 - 2.4.27-10.sarge4.040815-3 kernel-image-2.4.27-xxs1500 - 2.4.27-10.sarge4.040815-3 mips-tools - 2.4.27-10.sarge4.040815-3 kernel-image-2.4.27-r4k-kn04 - 2.4.27-10.sarge4.040815-3 kernel-image-2.4.27-r3k-kn02 - 2.4.27-10.sarge4.040815-3 kernel-image-2.4.27-sb1-swarm-bn - 2.4.27-10.sarge4.040815-3 arm: kernel-image-2.4.27-bast - 2.4.27-2sarge6 kernel-image-2.4.27-lart - 2.4.27-2sarge6 kernel-build-2.4.27 - 2.4.27-2sarge6 kernel-image-2.4.27-riscpc - 2.4.27-2sarge6 kernel-headers-2.4.27 - 2.4.27-2sarge6 mips-tools - 2.4.27-10.sarge4.040815-3 kernel-image-2.4.27-netwinder - 2.4.27-2sarge6 kernel-image-2.4.27-riscstation - 2.4.27-2sarge |
Идентификатор типа ошибки
Идентификатор, установленный в соответствии с общим перечнем ошибок CWE
| Идентификатор | Описание |
|---|---|
| CWE-189 | Numeric Error |
Идентификаторы CVE уязвимостей
Идентификатор, базы данных общеизвестных уязвимостей информационной безопасности
| Идентификатор | Описание |
|---|---|
| CVE-2004-2731 | Multiple integer overflows in Sbus PROM driver (drivers/sbus/char/openprom.c) for the Linux kernel 2.4.x up to 2.4.27, 2.6.x... |
| CVE-2006-4814 | The mincore function in the Linux kernel before 2.4.33.6 does not properly lock access to user space, which has unspecified i... |
| CVE-2006-5753 | Unspecified vulnerability in the listxattr system call in Linux kernel, when a "bad inode" is present, allows local users to... |
| CVE-2006-5823 | The zlib_inflate function in Linux kernel 2.6.x allows local users to cause a denial of service (crash) via a malformed files... |
| CVE-2006-6053 | The ext3fs_dirhash function in Linux kernel 2.6.x allows local users to cause a denial of service (crash) via an ext3 stream... |
| CVE-2006-6054 | The ext2 file system code in Linux kernel 2.6.x allows local users to cause a denial of service (crash) via an ext2 stream wi... |
| CVE-2006-6106 | Multiple buffer overflows in the cmtp_recv_interopmsg function in the Bluetooth driver (net/bluetooth/cmtp/capi.c) in the Lin... |
| CVE-2007-1353 | The setsockopt function in the L2CAP and HCI Bluetooth support in the Linux kernel before 2.4.34.3 allows context-dependent a... |
| CVE-2007-1592 | net/ipv6/tcp_ipv6.c in Linux kernel 2.6.x up to 2.6.21-rc3 inadvertently copies the ipv6_fl_socklist from a listening TCP soc... |
| CVE-2007-2172 | A typo in Linux kernel 2.6 before 2.6.21-rc6 and 2.4 before 2.4.35 causes RTA_MAX to be used as an array size instead of RTN_... |
| CVE-2007-2525 | Memory leak in the PPP over Ethernet (PPPoE) socket implementation in the Linux kernel before 2.6.21-git8 allows local users... |
| CVE-2007-3848 | Linux kernel 2.4.35 and other versions allows local users to send arbitrary signals to a child process that is running at hig... |
| CVE-2007-4308 | The (1) aac_cfg_open and (2) aac_compat_ioctl functions in the SCSI layer ioctl path in aacraid in the Linux kernel before 2.... |
| CVE-2007-4311 | The xfer_secondary_pool function in drivers/char/random.c in the Linux kernel 2.4 before 2.4.35 performs reseed operations on... |
| CVE-2007-5093 | The disconnect method in the Philips USB Webcam (pwc) driver in Linux kernel 2.6.x before 2.6.22.6 "relies on user space to c... |
| CVE-2007-6063 | Buffer overflow in the isdn_net_setcfg function in isdn_net.c in Linux kernel 2.6.23 allows local users to have an unknown im... |
| CVE-2007-6151 | The isdn_ioctl function in isdn_common.c in Linux kernel 2.6.23 allows local users to cause a denial of service via a crafted... |
| CVE-2007-6206 | The do_coredump function in fs/exec.c in Linux kernel 2.4.x and 2.6.x up to 2.6.24-rc3, and possibly other versions, does not... |
| CVE-2007-6694 | The chrp_show_cpuinfo function (chrp/setup.c) in Linux kernel 2.4.21 through 2.6.18-53, when running on PowerPC, might allow... |
| CVE-2008-0007 | Linux kernel before 2.6.22.17, when using certain drivers that register a fault handler that does not perform range checks, a... |
CVSS
Система общей оценки уязвимостей
| Оценка | Severity | Версия | Базовый вектор |
|---|---|---|---|
| 7.8 | HIGH | 2.0 | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Идентификаторы других систем описаний уязвимостей
CVE-2004-2731
CVE-2006-4814
CVE-2006-5753
CVE-2006-5823
CVE-2006-6053
CVE-2006-6054
CVE-2006-6106
CVE-2007-1353
CVE-2007-1592
CVE-2007-2172
CVE-2007-2525
CVE-2007-3848
CVE-2007-4308
CVE-2007-4311
CVE-2007-5093
CVE-2007-6063
CVE-2007-6151
CVE-2007-6206
CVE-2007-6694
CVE-2008-0007
DSA-1503
ID:1402392
Мы используем cookie-файлы, чтобы получить статистику, которая помогает нам улучшить сервис для вас с целью персонализации сервисов и предложений. Вы может прочитать подробнее о cookie-файлах или изменить настройки браузера. Продолжая пользоваться сайтом, вы даёте согласие на использование ваших cookie-файлов и соглашаетесь с Политикой обработки персональных данных.