Security Advisory New kernel 2.2 packages fix local vulnerabilities

Advisory: RHSA-2002:210-06
Type: Security Advisory
Severity: N/A
Issued on: 2002-09-23
Last updated on: 2002-10-10
Affected Products: Red Hat Linux 6.2
Red Hat Linux 7.0
OVAL: N/A

Details

Some potential local security vulnerabilities were found in the kernel
during code audits; these have been fixed in the 2.2.22 kernel.

The Linux kernel handles the basic functions of the operating system. A
security code audit of the 2.2 kernel found a number of possible local
security vulnerabilities. These vulnerabilities could allow a local user
to obtain elevated (root) privileges.

Red Hat Linux 6.2 and 7.0 shipped with the 2.2 kernel and are both
vulnerable to these issues.

All Red Hat Linux users using the 2.2 kernel should upgrade to the errata
pacakages contaning the 2.2.22 kernel which are not vulnerable to these issues.

Many thanks to Silvio Cesare and Solar Designer for their work in
discovering these issues.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

The procedure for upgrading the kernel is documented at:

http://www.redhat.com/support/docs/howto/kernel-upgrade/kernel-upgrade.html

Please read the directions for your architecture carefully before
proceeding with the kernel upgrade.

Please note that this update is also available via Red Hat Network. Many
people find this to be an easier way to apply updates. To use Red Hat
Network, launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system. Note that you need to select the kernel
explicitly on default configurations of up2date.

Updated packages

Red Hat Linux 6.2
SRPMS:
kernel-2.2.22-6.2.2.src.rpm
File outdated by:  RHSA-2003:088		     17d2896d2f7fb9b6fb63128593e44cf7
 
Alpha:
ftp://updates.redhat.com/6.2/en/os/alpha/kernel-2.2.22-6.2.2.alpha.rpm
Missing file		     934a473b6149c31aab29ffeb55d1bb33
ftp://updates.redhat.com/6.2/en/os/alpha/kernel-BOOT-2.2.22-6.2.2.alpha.rpm
Missing file		     3078540160bbcb03a9b087b8d3f02797
ftp://updates.redhat.com/6.2/en/os/alpha/kernel-doc-2.2.22-6.2.2.alpha.rpm
Missing file		     78ad15c3d6e79f40906f660f337a41cf
ftp://updates.redhat.com/6.2/en/os/alpha/kernel-enterprise-2.2.22-6.2.2.alpha.rpm
Missing file		     df17f26a164abb1cc432a1601553c32c
ftp://updates.redhat.com/6.2/en/os/alpha/kernel-headers-2.2.22-6.2.2.alpha.rpm
Missing file		     87d00fcd2b047605c3e6b2fcb2ed3550
ftp://updates.redhat.com/6.2/en/os/alpha/kernel-jensen-2.2.22-6.2.2.alpha.rpm
Missing file		     f1357fd71e421012e86d57f5b8403b49
ftp://updates.redhat.com/6.2/en/os/alpha/kernel-smp-2.2.22-6.2.2.alpha.rpm
Missing file		     d9848588d5b399e2e46dabef9dfa56a2
ftp://updates.redhat.com/6.2/en/os/alpha/kernel-source-2.2.22-6.2.2.alpha.rpm
Missing file		     2492a5eafc3a5369ee021f31acddc161
ftp://updates.redhat.com/6.2/en/os/alpha/kernel-utils-2.2.22-6.2.2.alpha.rpm
Missing file		     f7866cc49775c8cc041a99630a8ccd8f
 
IA-32:
kernel-2.2.22-6.2.2.i386.rpm
File outdated by:  RHSA-2003:088		     a8ed8ef5a2ab223ae3686b6c9332979d
kernel-2.2.22-6.2.2.i586.rpm
File outdated by:  RHSA-2003:088		     0b7f92ce29dff3dc44cef4cf5e7b739a
kernel-2.2.22-6.2.2.i686.rpm
File outdated by:  RHSA-2003:088		     256c8301d5ee1ddfe1835f52106fc8ae
kernel-BOOT-2.2.22-6.2.2.i386.rpm
File outdated by:  RHSA-2003:088		     415ee4e472766ff19818aa8f93959e06
kernel-doc-2.2.22-6.2.2.i386.rpm
File outdated by:  RHSA-2003:088		     f08d05768682829b67a96837135f5b3e
kernel-enterprise-2.2.22-6.2.2.i686.rpm
File outdated by:  RHSA-2003:088		     9c5e0a7ef930677409e17b6874b0a64c
kernel-headers-2.2.22-6.2.2.i386.rpm
File outdated by:  RHSA-2003:088		     e0e5f8eaaa90337287056ecdf61a1b85
kernel-ibcs-2.2.22-6.2.2.i386.rpm
File outdated by:  RHSA-2003:088		     6f1c7eee03bdce33b41c45882786a90c
kernel-pcmcia-cs-2.2.22-6.2.2.i386.rpm
File outdated by:  RHSA-2003:088		     7fbb23912a3fff7d67bfff2fbb0e28af
kernel-smp-2.2.22-6.2.2.i386.rpm
File outdated by:  RHSA-2003:088		     d64f7291e28cbeef5606d66f33deb741
kernel-smp-2.2.22-6.2.2.i586.rpm
File outdated by:  RHSA-2003:088		     ddc59fcecc7d8c78f072bcb24cc81cc9
kernel-smp-2.2.22-6.2.2.i686.rpm
File outdated by:  RHSA-2003:088		     aa50bde6dbcfdccd105b094fb2a64b3e
kernel-source-2.2.22-6.2.2.i386.rpm
File outdated by:  RHSA-2003:088		     a1daa9363e733e772e3d14821cc39379
kernel-utils-2.2.22-6.2.2.i386.rpm
File outdated by:  RHSA-2003:088		     265b166a208ad120483e90b0ddb1e150
 
Red Hat Linux 7.0
SRPMS:
kernel-2.2.22-7.0.2.src.rpm
File outdated by:  RHSA-2003:088		     14c7af0e8c0d2eb4459e53457c711f6d
 
Alpha:
ftp://updates.redhat.com/7.0/en/os/alpha/kernel-2.2.22-7.0.2.alpha.rpm
Missing file		     33b15c03cedaf29c677c11a4014c6fe0
ftp://updates.redhat.com/7.0/en/os/alpha/kernel-BOOT-2.2.22-7.0.2.alpha.rpm
Missing file		     d0384d7a4b6537aad8f998e121fdc413
ftp://updates.redhat.com/7.0/en/os/alpha/kernel-doc-2.2.22-7.0.2.alpha.rpm
Missing file		     e1efc88a783d30235ee9772ec09e65da
ftp://updates.redhat.com/7.0/en/os/alpha/kernel-enterprise-2.2.22-7.0.2.alpha.rpm
Missing file		     bacb622d69236a51609495cb6613ff37
ftp://updates.redhat.com/7.0/en/os/alpha/kernel-jensen-2.2.22-7.0.2.alpha.rpm
Missing file		     836ffa5d2975669d1e81e66586d48733
ftp://updates.redhat.com/7.0/en/os/alpha/kernel-smp-2.2.22-7.0.2.alpha.rpm
Missing file		     fc0ebba88dbbdf0af7ac00fda9f6dc64
ftp://updates.redhat.com/7.0/en/os/alpha/kernel-source-2.2.22-7.0.2.alpha.rpm
Missing file		     8bc6b2708e152fec14e9b1a1de0adfe1
ftp://updates.redhat.com/7.0/en/os/alpha/kernel-utils-2.2.22-7.0.2.alpha.rpm
Missing file		     fdb3a29828d1f7b5a2592940a11f2cb6
 
IA-32:
kernel-2.2.22-7.0.2.i386.rpm
File outdated by:  RHSA-2003:088		     c561988f01540db372bc01b8ae0c77d2
kernel-2.2.22-7.0.2.i586.rpm
File outdated by:  RHSA-2003:088		     3c5b3eb12bafd6b17763822194d662b6
kernel-2.2.22-7.0.2.i686.rpm
File outdated by:  RHSA-2003:088		     815ea0a611884d4285d3e60ec64b689b
kernel-BOOT-2.2.22-7.0.2.i386.rpm
File outdated by:  RHSA-2003:088		     9d045b22d45c579b7482f6d748bc840a
kernel-doc-2.2.22-7.0.2.i386.rpm
File outdated by:  RHSA-2003:088		     1865fbcf74b3f91c0d2d57f1753b4a47
kernel-enterprise-2.2.22-7.0.2.i686.rpm
File outdated by:  RHSA-2003:088		     16d4f5bbc2360d2fdb6a662d0cf9b9cb
kernel-ibcs-2.2.22-7.0.2.i386.rpm
File outdated by:  RHSA-2003:088		     3d3c946eba48ced9b4b652335e674786
kernel-pcmcia-cs-2.2.22-7.0.2.i386.rpm
File outdated by:  RHSA-2003:088		     e840ba8a42aabb575b5be7f76d03315f
kernel-smp-2.2.22-7.0.2.i386.rpm
File outdated by:  RHSA-2003:088		     179b363e1de74a4fc221efa8c65eb756
kernel-smp-2.2.22-7.0.2.i586.rpm
File outdated by:  RHSA-2003:088		     d6ec7ae5f3f2b08df563c26f8143ec16
kernel-smp-2.2.22-7.0.2.i686.rpm
File outdated by:  RHSA-2003:088		     bc678bf0ce41901831fc585387a6d4d1
kernel-source-2.2.22-7.0.2.i386.rpm
File outdated by:  RHSA-2003:088		     24f087e27a87b1023bde1095e7319207
kernel-utils-2.2.22-7.0.2.i386.rpm
File outdated by:  RHSA-2003:088		     fb444ec4b89b911f08da0560d779836a
 

References

http://www.kernel.org/pub/linux/kernel/v2.2/ChangeLog-2.2.22

Keywords

elevated, kernel, local, root

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/