Updated kernel-linus package fixes multiple security vulnerabilities
Publication date: 16 Jul 2013Modification date: 16 Jul 2013
Type: security
Affected Mageia releases : 3
CVE: CVE-2013-0231 , CVE-2013-2850 , CVE-2013-2852
Description
This kernel-linus update provides the extended stable 3.8.13.4 kernel and fixes the follwing security issues: The pciback_enable_msi function in the PCI backend driver (drivers/xen/pciback/conf_space_capability_msi.c) in Xen for the Linux kernel 2.6.18 and 3.8 allows guest OS users with PCI device access to cause a denial of service via a large number of kernel log messages. (CVE-2013-0231 / XSA-43) Heap-based buffer overflow in the iscsi_add_notunderstood_response function in drivers/target/iscsi/iscsi_target_parameters.c in the iSCSI target subsystem in the Linux kernel through 3.9.4 allows remote attackers to cause a denial of service (memory corruption and OOPS) or possibly execute arbitrary code via a long key that is not properly handled during construction of an error-response packet. A reproduction case requires patching open-iscsi to send overly large keys. Performing discovery in a loop will Oops the remote server. (CVE-2013-2850) Format string vulnerability in the b43_request_firmware function in drivers/net/wireless/b43/main.c in the Broadcom B43 wireless driver in the Linux kernel through 3.9.4 allows local users to gain privileges by leveraging root access and including format string specifiers in an fwpostfix modprobe parameter, leading to improper construction of an error message. (CVE-2013-2852) Other fixes: - enable support for more touchscreens - enable X86_X2APIC, X86_REROUTE_FOR_BROKEN_BOOT_IRQS, FHANDLE - disable COMPAT_VDSO (not needed since glibc-2.3.3) For other fixes in the extended stable update, see the referenced shortlog
References
- http://kernel.ubuntu.com/git?p=ubuntu/linux.git;h=refs/heads/linux-3.8.y;a=shortlog
- https://bugs.mageia.org/show_bug.cgi?id=10698
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0231
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2850
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2852
SRPMS
3/core
- kernel-linus-3.8.13.4-2.mga3