The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Vulnerability of Linux kernel: information disclosure via NETROM/ROSE/X25

Synthesis of the vulnerability 

When NETROM/ROSE/X25 is enabled, an attacker can obtain fragments of the kernel memory.
Vulnerable products: Debian, Fedora, Linux, Mandriva Linux, NLD, OES, openSUSE, SLES.
Severity of this weakness: 1/4.
Creation date: 08/04/2009.
Références of this bulletin: BID-34654, CERTA-2002-AVI-235, CVE-2009-1265, DSA-1787-1, DSA-1794-1, DSA-1800-1, FEDORA-2009-5356, FEDORA-2009-5383, MDVSA-2009:119, MDVSA-2009:135, SUSE-SA:2009:028, SUSE-SA:2009:030, SUSE-SA:2009:031, SUSE-SA:2009:032, SUSE-SA:2009:033, SUSE-SU-2011:0928-1, VIGILANCE-VUL-8610.

Description of the vulnerability 

The kernel supports Netrom (Amateur Radio), Rose (Amateur Radio) and X.25 (switched) network protocols.

The same vulnerability impacts these three implementations:
 - function named nr_sendmsg() in net/netrom/af_netrom.c
 - function named rose_sendmsg() in net/rose/af_rose.c
 - function named x25_sendmsg() in net/x25/af_x25.c

Indeed, these functions do not check the message size. If the size is too big, an integer overflow occurs, and the initialized memory area is shorted than the sent memory area.

When NETROM/ROSE/X25 is enabled, an attacker can therefore obtain fragments of the kernel memory.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

This security threat impacts software or systems such as Debian, Fedora, Linux, Mandriva Linux, NLD, OES, openSUSE, SLES.

Our Vigil@nce team determined that the severity of this computer weakness note is low.

The trust level is of type confirmed by the editor, with an origin of intranet client.

An attacker with a expert ability can exploit this computer threat alert.

Solutions for this threat 

Linux kernel: version 2.6.30.
Version 2.6.30 is corrected:
  ftp://ftp.kernel.org/pub/linux/kernel/v2.6/

Linux kernel: version 2.6.29.2.
Version 2.6.29.2 is corrected:
  ftp://ftp.kernel.org/pub/linux/kernel/v2.6/

Linux kernel: version 2.4.37.1.
Version 2.4.37.1 is corrected:
  http://www.kernel.org/pub/linux/kernel/v2.4/

Linux kernel: version 2.6.28.10.
Version 2.6.28.10 is corrected:
  http://www.kernel.org/pub/linux/kernel/v2.6/

Linux kernel: version 2.6.27.22.
Version 2.6.27.22 is corrected:
  http://www.kernel.org/pub/linux/kernel/v2.6/

Linux kernel: patch for NETROM/ROSE/X25.
A patch (patchv2.txt) is available in information sources.
The patchv2 has to be used in order to correct the problem indicated in:
http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git;a=commit;h=cc29c70dd581f85ee7a3e7980fb031f90b90a2ab

Debian 4: new linux-2.6.24 packages.
New packages are available:
  http://security.debian.org/pool/updates/main/l/linux-2.6.24/linux-*-2.6.24_2.6.24-6~etchnhalf.8etch1_*.deb

Debian 4: new linux-2.6 packages.
New packages are available:
  http://security.debian.org/pool/updates/main/l/linux-2.6/*_2.6.18.dfsg.1-24etch1_*.deb

Debian 5: new linux-2.6 packages.
New packages are available:
  http://security.debian.org/pool/updates/main/l/linux-2.6/*-2.6.26_2.6.26-15lenny2_*.deb

Fedora: new kernel packages (26/05/2009).
New packages are available:
  kernel-2.6.27.24-78.2.53.fc9
  kernel-2.6.27.24-170.2.68.fc10

Mandriva 2009.1: new kernel packages.
New packages are available:
Mandriva Linux 2009.1:
  kernel-2.6.29.3-1mnb2

Mandriva: new kernel packages.
New packages are available:
  Mandriva Linux 2009.0: kernel-2.6.27.24-1mnb2

openSUSE 10.3: new kernel packages.
New packages are available:
  http://download.opensuse.org/update/10.3/rpm/*/kernel-*-2.6.22.19-0.3.*.rpm

openSUSE 11.0: new kernel packages.
New packages are available:
  http://download.opensuse.org/update/11.0/rpm/*/kernel-*-2.6.25.20-0.4.*.rpm

openSUSE 11.1, SLE 11: new kernel packages.
New packages are available.

SUSE 9: new kernel packages.
New packages are available.

SUSE LE 9: new kernel packages (23/08/2011).
New packages are available:
http://download.novell.com/patch/finder/?keywords=c05dae2ea95bb787f18166cf12f585e3

SUSE: new kernel packages.
New packages are available, as indicated in information sources.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

Computer vulnerabilities tracking service 

Vigil@nce provides applications vulnerabilities alerts. The Vigil@nce team tracks computer vulnerabilities impacting systems and applications.