From Mageia wiki
Jump to: navigation, search

MGASA-2013-0079

Date: March 2nd, 2013
Affected releases: 2
Media: Core, Nonfree


Description:
This updates kernel to upstream stable 3.4.34.

It also fixes the following security issues:

An unprivileged user can send a netlink message resulting in an
out-of-bounds access of the sock_diag_handlers[] array which, in turn,
allows userland to take over control while in kernel mode.
(CVE-2013-1763).

Linux kernel is prone to a local privilege-escalation vulnerability
due to a tmpfs use-after-free error.
Local attackers can exploit the issue to execute arbitrary code with
kernel privileges or to crash the kernel, effectively denying service
to legitimate users (CVE-2013-1767).

Linux kernel built with Edgeport USB serial converter driver io_ti,
is vulnerable to a NULL pointer dereference flaw. It happens if the
device is disconnected while corresponding /dev/ttyUSB? file is in use.
An unprivileged user could use this flaw to crash the system, resulting
DoS (CVE-2013-1774).


Updated Packages:
i586:
cpupower-3.4.34-1.mga2.i586.rpm
cpupower-devel-3.4.34-1.mga2.i586.rpm
kernel-desktop-3.4.34-1.mga2-1-1.mga2.i586.rpm
kernel-desktop586-3.4.34-1.mga2-1-1.mga2.i586.rpm
kernel-desktop586-devel-3.4.34-1.mga2-1-1.mga2.i586.rpm
kernel-desktop586-devel-latest-3.4.34-1.mga2.i586.rpm
kernel-desktop586-latest-3.4.34-1.mga2.i586.rpm
kernel-desktop-devel-3.4.34-1.mga2-1-1.mga2.i586.rpm
kernel-desktop-devel-latest-3.4.34-1.mga2.i586.rpm
kernel-desktop-latest-3.4.34-1.mga2.i586.rpm
kernel-doc-3.4.34-1.mga2.noarch.rpm
kernel-netbook-3.4.34-1.mga2-1-1.mga2.i586.rpm
kernel-netbook-devel-3.4.34-1.mga2-1-1.mga2.i586.rpm
kernel-netbook-devel-latest-3.4.34-1.mga2.i586.rpm
kernel-netbook-latest-3.4.34-1.mga2.i586.rpm
kernel-server-3.4.34-1.mga2-1-1.mga2.i586.rpm
kernel-server-devel-3.4.34-1.mga2-1-1.mga2.i586.rpm
kernel-server-devel-latest-3.4.34-1.mga2.i586.rpm
kernel-server-latest-3.4.34-1.mga2.i586.rpm
kernel-source-3.4.34-1.mga2-1-1.mga2.noarch.rpm
kernel-source-latest-3.4.34-1.mga2.noarch.rpm
perf-3.4.34-1.mga2.i586.rpm
kernel-desktop-3.4.34-1.mga2-debug-1-1.mga2.i586.rpm
kernel-desktop586-3.4.34-1.mga2-debug-1-1.mga2.i586.rpm
kernel-netbook-3.4.34-1.mga2-debug-1-1.mga2.i586.rpm
kernel-server-3.4.34-1.mga2-debug-1-1.mga2.i586.rpm
kernel-userspace-headers-3.4.34-1.mga2.i586.rpm
vboxadditions-kernel-3.4.34-desktop-1.mga2-4.1.24-5.mga2.i586.rpm
vboxadditions-kernel-3.4.34-desktop586-1.mga2-4.1.24-5.mga2.i586.rpm
vboxadditions-kernel-3.4.34-netbook-1.mga2-4.1.24-5.mga2.i586.rpm
vboxadditions-kernel-3.4.34-server-1.mga2-4.1.24-5.mga2.i586.rpm
vboxadditions-kernel-desktop586-latest-4.1.24-5.mga2.i586.rpm
vboxadditions-kernel-desktop-latest-4.1.24-5.mga2.i586.rpm
vboxadditions-kernel-netbook-latest-4.1.24-5.mga2.i586.rpm
vboxadditions-kernel-server-latest-4.1.24-5.mga2.i586.rpm
virtualbox-kernel-3.4.34-desktop-1.mga2-4.1.24-4.mga2.i586.rpm
virtualbox-kernel-3.4.34-desktop586-1.mga2-4.1.24-4.mga2.i586.rpm
virtualbox-kernel-3.4.34-netbook-1.mga2-4.1.24-4.mga2.i586.rpm
virtualbox-kernel-3.4.34-server-1.mga2-4.1.24-4.mga2.i586.rpm
virtualbox-kernel-desktop586-latest-4.1.24-4.mga2.i586.rpm
virtualbox-kernel-desktop-latest-4.1.24-4.mga2.i586.rpm
virtualbox-kernel-netbook-latest-4.1.24-4.mga2.i586.rpm
virtualbox-kernel-server-latest-4.1.24-4.mga2.i586.rpm
xtables-addons-kernel-3.4.34-desktop-1.mga2-1.41-22.mga2.i586.rpm
xtables-addons-kernel-3.4.34-desktop586-1.mga2-1.41-22.mga2.i586.rpm
xtables-addons-kernel-3.4.34-netbook-1.mga2-1.41-22.mga2.i586.rpm
xtables-addons-kernel-3.4.34-server-1.mga2-1.41-22.mga2.i586.rpm
xtables-addons-kernel-desktop586-latest-1.41-22.mga2.i586.rpm
xtables-addons-kernel-desktop-latest-1.41-22.mga2.i586.rpm
xtables-addons-kernel-netbook-latest-1.41-22.mga2.i586.rpm
xtables-addons-kernel-server-latest-1.41-22.mga2.i586.rpm
xtables-addons-kernel-3.4.34-desktop-1.mga2-1.41-22.mga2.x86_64.rpm
xtables-addons-kernel-3.4.34-netbook-1.mga2-1.41-22.mga2.x86_64.rpm
xtables-addons-kernel-3.4.34-server-1.mga2-1.41-22.mga2.x86_64.rpm
xtables-addons-kernel-desktop-latest-1.41-22.mga2.x86_64.rpm
xtables-addons-kernel-netbook-latest-1.41-22.mga2.x86_64.rpm
xtables-addons-kernel-server-latest-1.41-22.mga2.x86_64.rpm

broadcom-wl-kernel-3.4.34-desktop-1.mga2-5.100.82.112-42.mga2.nonfree.i586.rpm
broadcom-wl-kernel-3.4.34-desktop586-1.mga2-5.100.82.112-42.mga2.nonfree.i586.rpm
broadcom-wl-kernel-3.4.34-netbook-1.mga2-5.100.82.112-42.mga2.nonfree.i586.rpm
broadcom-wl-kernel-3.4.34-server-1.mga2-5.100.82.112-42.mga2.nonfree.i586.rpm
broadcom-wl-kernel-desktop586-latest-5.100.82.112-42.mga2.nonfree.i586.rpm
broadcom-wl-kernel-desktop-latest-5.100.82.112-42.mga2.nonfree.i586.rpm
broadcom-wl-kernel-netbook-latest-5.100.82.112-42.mga2.nonfree.i586.rpm
broadcom-wl-kernel-server-latest-5.100.82.112-42.mga2.nonfree.i586.rpm
fglrx-kernel-3.4.34-desktop-1.mga2-8.961-18.mga2.nonfree.i586.rpm
fglrx-kernel-3.4.34-desktop586-1.mga2-8.961-18.mga2.nonfree.i586.rpm
fglrx-kernel-3.4.34-netbook-1.mga2-8.961-18.mga2.nonfree.i586.rpm
fglrx-kernel-3.4.34-server-1.mga2-8.961-18.mga2.nonfree.i586.rpm
fglrx-kernel-desktop586-latest-8.961-18.mga2.nonfree.i586.rpm
fglrx-kernel-desktop-latest-8.961-18.mga2.nonfree.i586.rpm
fglrx-kernel-netbook-latest-8.961-18.mga2.nonfree.i586.rpm
fglrx-kernel-server-latest-8.961-18.mga2.nonfree.i586.rpm
nvidia-current-kernel-3.4.34-desktop-1.mga2-295.71-13.mga2.nonfree.i586.rpm
nvidia-current-kernel-3.4.34-desktop586-1.mga2-295.71-13.mga2.nonfree.i586.rpm
nvidia-current-kernel-3.4.34-netbook-1.mga2-295.71-13.mga2.nonfree.i586.rpm
nvidia-current-kernel-3.4.34-server-1.mga2-295.71-13.mga2.nonfree.i586.rpm
nvidia-current-kernel-desktop586-latest-295.71-13.mga2.nonfree.i586.rpm
nvidia-current-kernel-desktop-latest-295.71-13.mga2.nonfree.i586.rpm
nvidia-current-kernel-netbook-latest-295.71-13.mga2.nonfree.i586.rpm
nvidia-current-kernel-server-latest-295.71-13.mga2.nonfree.i586.rpm


x86_64:
cpupower-3.4.34-1.mga2.x86_64.rpm
cpupower-devel-3.4.34-1.mga2.x86_64.rpm
kernel-desktop-3.4.34-1.mga2-1-1.mga2.x86_64.rpm
kernel-desktop-devel-3.4.34-1.mga2-1-1.mga2.x86_64.rpm
kernel-desktop-devel-latest-3.4.34-1.mga2.x86_64.rpm
kernel-desktop-latest-3.4.34-1.mga2.x86_64.rpm
kernel-doc-3.4.34-1.mga2.noarch.rpm
kernel-netbook-3.4.34-1.mga2-1-1.mga2.x86_64.rpm
kernel-netbook-devel-3.4.34-1.mga2-1-1.mga2.x86_64.rpm
kernel-netbook-devel-latest-3.4.34-1.mga2.x86_64.rpm
kernel-netbook-latest-3.4.34-1.mga2.x86_64.rpm
kernel-server-3.4.34-1.mga2-1-1.mga2.x86_64.rpm
kernel-server-devel-3.4.34-1.mga2-1-1.mga2.x86_64.rpm
kernel-server-devel-latest-3.4.34-1.mga2.x86_64.rpm
kernel-server-latest-3.4.34-1.mga2.x86_64.rpm
kernel-source-3.4.34-1.mga2-1-1.mga2.noarch.rpm
kernel-source-latest-3.4.34-1.mga2.noarch.rpm
perf-3.4.34-1.mga2.x86_64.rpm
kernel-desktop-3.4.34-1.mga2-debug-1-1.mga2.x86_64.rpm
kernel-netbook-3.4.34-1.mga2-debug-1-1.mga2.x86_64.rpm
kernel-server-3.4.34-1.mga2-debug-1-1.mga2.x86_64.rpm
kernel-userspace-headers-3.4.34-1.mga2.x86_64.rpm
vboxadditions-kernel-3.4.34-desktop-1.mga2-4.1.24-5.mga2.x86_64.rpm
vboxadditions-kernel-3.4.34-netbook-1.mga2-4.1.24-5.mga2.x86_64.rpm
vboxadditions-kernel-3.4.34-server-1.mga2-4.1.24-5.mga2.x86_64.rpm
vboxadditions-kernel-desktop-latest-4.1.24-5.mga2.x86_64.rpm
vboxadditions-kernel-netbook-latest-4.1.24-5.mga2.x86_64.rpm
vboxadditions-kernel-server-latest-4.1.24-5.mga2.x86_64.rpm
virtualbox-kernel-3.4.34-desktop-1.mga2-4.1.24-4.mga2.x86_64.rpm
virtualbox-kernel-3.4.34-netbook-1.mga2-4.1.24-4.mga2.x86_64.rpm
virtualbox-kernel-3.4.34-server-1.mga2-4.1.24-4.mga2.x86_64.rpm
virtualbox-kernel-desktop-latest-4.1.24-4.mga2.x86_64.rpm
virtualbox-kernel-netbook-latest-4.1.24-4.mga2.x86_64.rpm
virtualbox-kernel-server-latest-4.1.24-4.mga2.x86_64.rpm

broadcom-wl-kernel-3.4.34-desktop-1.mga2-5.100.82.112-42.mga2.nonfree.x86_64.rpm
broadcom-wl-kernel-3.4.34-netbook-1.mga2-5.100.82.112-42.mga2.nonfree.x86_64.rpm
broadcom-wl-kernel-3.4.34-server-1.mga2-5.100.82.112-42.mga2.nonfree.x86_64.rpm
broadcom-wl-kernel-desktop-latest-5.100.82.112-42.mga2.nonfree.x86_64.rpm
broadcom-wl-kernel-netbook-latest-5.100.82.112-42.mga2.nonfree.x86_64.rpm
broadcom-wl-kernel-server-latest-5.100.82.112-42.mga2.nonfree.x86_64.rpm
fglrx-kernel-3.4.34-desktop-1.mga2-8.961-18.mga2.nonfree.x86_64.rpm
fglrx-kernel-3.4.34-netbook-1.mga2-8.961-18.mga2.nonfree.x86_64.rpm
fglrx-kernel-3.4.34-server-1.mga2-8.961-18.mga2.nonfree.x86_64.rpm
fglrx-kernel-desktop-latest-8.961-18.mga2.nonfree.x86_64.rpm
fglrx-kernel-netbook-latest-8.961-18.mga2.nonfree.x86_64.rpm
fglrx-kernel-server-latest-8.961-18.mga2.nonfree.x86_64.rpm
nvidia-current-kernel-3.4.34-desktop-1.mga2-295.71-13.mga2.nonfree.x86_64.rpm
nvidia-current-kernel-3.4.34-netbook-1.mga2-295.71-13.mga2.nonfree.x86_64.rpm
nvidia-current-kernel-3.4.34-server-1.mga2-295.71-13.mga2.nonfree.x86_64.rpm
nvidia-current-kernel-desktop-latest-295.71-13.mga2.nonfree.x86_64.rpm
nvidia-current-kernel-netbook-latest-295.71-13.mga2.nonfree.x86_64.rpm
nvidia-current-kernel-server-latest-295.71-13.mga2.nonfree.x86_64.rpm


SRPMS:
kernel-3.4.34-1.mga2.src.rpm
kernel-userspace-headers-3.4.34-1.mga2.src.rpm
kmod-vboxadditions-4.1.24-5.mga2.src.rpm
kmod-virtualbox-4.1.24-4.mga2.src.rpm
kmod-xtables-addons-1.41-22.mga2.src.rpm

kmod-broadcom-wl-5.100.82.112-42.mga2.nonfree.src.rpm
kmod-fglrx-8.961-18.mga2.nonfree.src.rpm
kmod-nvidia-current-295.71-13.mga2.nonfree.src.rpm


References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1763
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1767
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1774
http://www.kernel.org/pub/linux/kernel/v3.0/ChangeLog-3.4.33
http://www.kernel.org/pub/linux/kernel/v3.0/ChangeLog-3.4.34
https://bugs.mageia.org/show_bug.cgi?id=9209

Retrieved from "https://wiki.mageia.org/mw-en/index.php?title=Support/Advisories/MGASA-2013-0079&oldid=14971"