Linux Kernel keyctl_join_session_keyring（）函数本地拒绝服务漏洞

发布日期：2009-01-18更新日期：2009-05-11受影响系统：Linux kernel 2.6.x不受影响系统：Linux kernel 2.6.29-rc2-git1描述：--------------------------------------------------------------------------------BUGTRAQ ID: 33339CVE（CAN） ID: CVE-2009-0031Linux Kernel是开放源码操作系统Linux所使用的内核。Linux Kernel的security/keys/keyctl.c文件中的keyctl_join_session_keyring函数存在内存泄漏漏洞，本地用户可以利用kfree相关方式耗尽内核内存，导致拒绝服务的情况。<*来源：Mark J Cox链接：http://www.openwall.com/lists/oss-security/2009/01/19/4http://www.debian.org/security/2009/dsa-1794https://www.redhat.com/support/errata/RHSA-2009-0360.htmlhttps://www.redhat.com/support/errata/RHSA-2009-0331.htmlhttps://www.redhat.com/support/errata/RHSA-2009-0264.html*>建议：--------------------------------------------------------------------------------厂商补丁：Debian------Debian已经为此发布了一个安全公告（DSA-1794-1）以及相应补丁:DSA-1794-1：New Linux 2.6.18 packages fix several vulnerabilities链接：http://www.debian.org/security/2009/dsa-1794补丁下载：Source archives:http://security.debian.org/pool/updates/main/l/linux-2.6/linux-2.6_2.6.18.dfsg.1-24etch2.dscSize/MD5 checksum: 5672 29972a87539a76fb5b146470f7b45c39http://security.debian.org/pool/updates/main/l/linux-2.6/linux-2.6_2.6.18.dfsg.1-24etch1.diff.gzSize/MD5 checksum: 5536652 bf239ac0f2487929933aa0629de64ad7http://security.debian.org/pool/updates/main/l/linux-2.6/linux-2.6_2.6.18.dfsg.1-24etch1.dscSize/MD5 checksum: 5672 b92a0d9b93d8ccf430734e0e3cc2fe87http://security.debian.org/pool/updates/main/l/linux-2.6/linux-2.6_2.6.18.dfsg.1-24etch2.diff.gzSize/MD5 checksum: 5536709 4503d0ff5de1d53b5a672289ed5848f2http://security.debian.org/pool/updates/main/l/linux-2.6/linux-2.6_2.6.18.dfsg.1.orig.tar.gzSize/MD5 checksum: 52225460 6a1ab0948d6b5b453ea0fce0fcc29060http://security.debian.org/pool/updates/main/f/fai-kernels/fai-kernels_1.17+etch.24etch2.dscSize/MD5 checksum: 740 b37bc8f75334963c7f0410c2296e77fbhttp://security.debian.org/pool/updates/main/u/user-mode-linux/user-mode-linux_2.6.18-1um-2etch.24etch2.dscSize/MD5 checksum: 892 68d98e1c77c46035a49ff30831b6dde9http://security.debian.org/pool/updates/main/f/fai-kernels/fai-kernels_1.17+etch.24etch2.tar.gzSize/MD5 checksum: 59036 682c3c14e9ef4e7696db50899a02f0b5http://security.debian.org/pool/updates/main/u/user-mode-linux/user-mode-linux_2.6.18-1um.orig.tar.gzSize/MD5 checksum: 14435 4d10c30313e11a24621f7218c31f3582http://security.debian.org/pool/updates/main/u/user-mode-linux/user-mode-linux_2.6.18-1um-2etch.24etch2.diff.gzSize/MD5 checksum: 20663 9fe6e2b6513767676fb005a00cbb71f6Architecture independent packages:http://security.debian.org/pool/updates/main/l/linux-2.6/linux-doc-2.6.18_2.6.18.dfsg.1-24etch2_all.debSize/MD5 checksum: 3592500 554e5252f25700683aaa6fd5761ef5d8http://security.debian.org/pool/updates/main/l/linux-2.6/linux-tree-2.6.18_2.6.18.dfsg.1-24etch2_all.debSize/MD5 checksum: 58160 ae531496950d99a5b992570a1310c52ehttp://security.debian.org/pool/updates/main/l/linux-2.6/linux-manual-2.6.18_2.6.18.dfsg.1-24etch1_all.debSize/MD5 checksum: 1085412 7e893ac7ae22985cb909b597c2f20e8chttp://security.debian.org/pool/updates/main/l/linux-2.6/linux-patch-debian-2.6.18_2.6.18.dfsg.1-24etch2_all.debSize/MD5 checksum: 1820912 20119b39b0924aa9f3083450c7be8a85http://security.debian.org/pool/updates/main/l/linux-2.6/linux-source-2.6.18_2.6.18.dfsg.1-24etch2_all.debSize/MD5 checksum: 41471594 a7fdc8dfc809e1fc276a7b51795fa8dchttp://security.debian.org/pool/updates/main/l/linux-2.6/linux-support-2.6.18-6_2.6.18.dfsg.1-24etch1_all.debSize/MD5 checksum: 3741774 84b89ad27a37d505a01d762b0747ff2chttp://security.debian.org/pool/updates/main/l/linux-2.6/linux-patch-debian-2.6.18_2.6.18.dfsg.1-24etch1_all.debSize/MD5 checksum: 1820466 586a8e99417e2612b5f3d7369e2f94a9http://security.debian.org/pool/updates/main/l/linux-2.6/linux-manual-2.6.18_2.6.18.dfsg.1-24etch2_all.debSize/MD5 checksum: 1085068 84281a805dae405a8468175d098b7601http://security.debian.org/pool/updates/main/l/linux-2.6/linux-support-2.6.18-6_2.6.18.dfsg.1-24etch2_all.debSize/MD5 checksum: 3742014 7094d10edb64a9abec2edef65928839ehttp://security.debian.org/pool/updates/main/l/linux-2.6/linux-source-2.6.18_2.6.18.dfsg.1-24etch1_all.debSize/MD5 checksum: 41473576 38c60799be708c352ad9255add42ce3bhttp://security.debian.org/pool/updates/main/l/linux-2.6/linux-tree-2.6.18_2.6.18.dfsg.1-24etch1_all.debSize/MD5 checksum: 58106 17a134e707c201d4a77f1e24a5e2769ehttp://security.debian.org/pool/updates/main/l/linux-2.6/linux-doc-2.6.18_2.6.18.dfsg.1-24etch1_all.debSize/MD5 checksum: 3593118 8b74f3ec8d207f6c73572ab96c8c7395alpha architecture （DEC Alpha）http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.18-6-alpha-legacy_2.6.18.dfsg.1-24etch2_alpha.debSize/MD5 checksum: 23473934 cbe30f310450bd925914daca5813749ahttp://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.18-6-alpha-generic_2.6.18.dfsg.1-24etch2_alpha.debSize/MD5 checksum: 23492924 56433c869026af90edf2e676577f8897http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6-all_2.6.18.dfsg.1-24etch1_alpha.debSize/MD5 checksum: 57504 d0f363f4a0afac56901ba09147a7d9c9http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6-alpha-smp_2.6.18.dfsg.1-24etch2_alpha.debSize/MD5 checksum: 270400 4946950b6f7a49f71ad402df8b56f727http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.18-6-alpha-smp_2.6.18.dfsg.1-24etch1_alpha.debSize/MD5 checksum: 23751458 f515ef33090fbd04e9091fd404698bffhttp://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6-alpha-legacy_2.6.18.dfsg.1-24etch2_alpha.debSize/MD5 checksum: 270962 81e7337f510dfa7a573311942a2cb0c4http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6-alpha-generic_2.6.18.dfsg.1-24etch2_alpha.debSize/MD5 checksum: 270810 9dde43cd10c0c76ce7f95ac1b3c48ee8http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6-vserver-alpha_2.6.18.dfsg.1-24etch1_alpha.debSize/MD5 checksum: 266996 ebdea056276a98aa168ec3f2a8d6feadhttp://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.18-6-vserver-alpha_2.6.18.dfsg.1-24etch2_alpha.debSize/MD5 checksum: 23546372 d36aae75dfd73bb920e972ed35c51130http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6_2.6.18.dfsg.1-24etch1_alpha.debSize/MD5 checksum: 2977390 cb91566e47051b087818025c09433686http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6-alpha-legacy_2.6.18.dfsg.1-24etch1_alpha.debSize/MD5 checksum: 266628 2af9e07d8fde05394c77490a56cace39http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.18-6-alpha-legacy_2.6.18.dfsg.1-24etch1_alpha.debSize/MD5 checksum: 23373164 6da0b86b5624545c57003ad4971a8600http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.18-6-alpha-smp_2.6.18.dfsg.1-24etch2_alpha.debSize/MD5 checksum: 23849404 adc61b296e0148d80a36fd5c0cdc398ehttp://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6-vserver_2.6.18.dfsg.1-24etch1_alpha.debSize/MD5 checksum: 3000958 6495ed75388c161aeea3fe3f234649c2http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6-alpha-generic_2.6.18.dfsg.1-24etch1_alpha.debSize/MD5 checksum: 266740 ece7d15d812a818fb941bf066c4cf107http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6-alpha-smp_2.6.18.dfsg.1-24etch1_alpha.debSize/MD5 checksum: 266510 c8fb5396900faa5fe29617e65b5d1340http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6-all-alpha_2.6.18.dfsg.1-24etch2_alpha.debSize/MD5 checksum: 57590 ce8fde6a4c56b444ffc4169e2c91d8c8http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6-vserver_2.6.18.dfsg.1-24etch2_alpha.debSize/MD5 checksum: 3057218 4079ceaeec683727d42aa4f0ff039467http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6-all_2.6.18.dfsg.1-24etch2_alpha.debSize/MD5 checksum: 57556 cfc864cc678ae266f537a5dbf913444dhttp://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.18-6-alpha-generic_2.6.18.dfsg.1-24etch1_alpha.debSize/MD5 checksum: 23392094 bd229c2a4a5139282f8d56dc5d68db3dhttp://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.18-6-vserver-alpha_2.6.18.dfsg.1-24etch1_alpha.debSize/MD5 checksum: 23442694 2cbff8237013489493619b0bd7b5cb76http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6-all-alpha_2.6.18.dfsg.1-24etch1_alpha.debSize/MD5 checksum: 57538 eedeb00fdcab4f08f7bd0817972d4a39http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6_2.6.18.dfsg.1-24etch2_alpha.debSize/MD5 checksum: 3032298 5d8d424009fbb14d6a3d7747bc8f2db3http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6-vserver-alpha_2.6.18.dfsg.1-24etch2_alpha.debSize/MD5 checksum: 271360 1192112c8bad4d8249307d8a04719e0damd64 architecture （AMD x86_64 （AMD64））http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.18-6-amd64_2.6.18.dfsg.1-24etch1_amd64.debSize/MD5 checksum: 16913766 b9bdf3f150eb989e56defbe20a3a54d8http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6-xen-vserver_2.6.18.dfsg.1-24etch2_amd64.debSize/MD5 checksum: 3425782 0f9a61fbd2ddeacddc1a284022d20137http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6-xen-amd64_2.6.18.dfsg.1-24etch1_amd64.debSize/MD5 checksum: 278846 c157673d8bb21376bc6efaf921a37c3dhttp://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6-xen_2.6.18.dfsg.1-24etch1_amd64.debSize/MD5 checksum: 3401184 f7f5fc7c991fc045aaadf74ff0eeb541http://security.debian.org/pool/updates/main/l/linux-2.6/xen-linux-system-2.6.18-6-xen-vserver-amd64_2.6.18.dfsg.1-24etch1_amd64.debSize/MD5 checksum: 57496 27388370e87ce060dc4cc73f7f3564aahttp://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6-all-amd64_2.6.18.dfsg.1-24etch2_amd64.debSize/MD5 checksum: 57584 135a83295850c6cc297f250336b1e336http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6-xen-vserver-amd64_2.6.18.dfsg.1-24etch1_amd64.debSize/MD5 checksum: 279170 ec156e059a46e69c8bd5213c38b81246http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.18-6-all_2.6.18.dfsg.1-24etch1_amd64.debSize/MD5 checksum: 57508 326c436e34be9324a7a7945a75b467f5

通过APF和BFD来加强Linux防火墙安全Linux系统安全加固相关资讯 Linux Kernel Linux漏洞

Linux Kernel 3.14系列结束支持（今 14:24）
Linux kernel 2.6.32 LTS 将于下个（01月31日）
Linux Kernel 4.1.15发布（12/15/2015 20:54:13）

Linux Kernel 开发报告 25 周年版（09月10日）
敲击28次退格键之后：Linux漏洞可（12/18/2015 11:22:28）
Red Hat Linux 修补“libuser”库（07/26/2015 06:39:34）

本文评论查看全部评论（0）

表情：姓名：匿名字数

<button class="layui-btn layui-bg-purple" id="dofav">收藏该网址</button>
        </div>
    </div>
</div>
<div class="copyright">
    <div id="footbar">
        版权所有©石家庄振强科技有限公司2024 <a href="https://beian.miit.gov.cn" target="_blank">冀ICP备08103738号-5</a> <a href="/storage/sitemap.xml">网站地图</a>
    </div>
</div>
<script> var _mtj = _mtj || [];
(function () {
    var mtj = document.createElement("script");
    mtj.src = "https://node12.aizhantj.com:21233/tjjs/?k=p2tceukth5c";
    var s = document.getElementsByTagName("script")[0];
    s.parentNode.insertBefore(mtj, s);
})(); </script>
<script src="/static/lib/layui/layui.js"></script>
<script src="/static/lib/jquery/jquery.js"></script>
<script src="/static/lib/ajax.js"></script>
<script>
    layui.use(function () {
        var layer = layui.layer;
        var $ = layui.jquery;
        $("#dofav").click(function () {
            var artid = $(".article").attr("artid");
            var params={
                artid:artid,
                addtype:'escdns_article',
                t:Math.random()
            };
            if(artid>0){
                ajax.request({
                    method: "/index/article/addfavorite", type: "post", callback: function (res) {
                        layer.msg(res.msg);
                    }
                },params);
            }
        })
    })
</script>
</body>
</html>