A
Anonymous
Gast
Und zwar gibt es ein Update auf
2.6.5-7.75
2.6.5-7.75
Und nu?LinuxTeddy schrieb:Und zwar gibt es ein Update auf
2.6.5-7.75
SUSE Security Announcement
Package: kernel
Announcement-ID: SuSE-SA:2004:017
Date: Wednesday, Jun 16th 2004 15:20 MEST
Affected products: 8.0, 8.1, 8.2, 9.0, 9.1
SuSE Linux Database Server,
SuSE eMail Server III, 3.1
SuSE Linux Enterprise Server 7, 8
SuSE Linux Firewall on CD/Admin host
SuSE Linux Connectivity Server
SuSE Linux Office Server
Vulnerability Type: local denial-of-service attack
Severity (1-10): 4
SUSE default package: no
Cross References: CAN-2004-0554
Content of this advisory:
1) security vulnerability resolved:
- floating point exception causes system crash
problem description, discussion, solution and upgrade information
[snip]
1) problem description, brief discussion, solution, upgrade information
The Linux kernel is vulnerable to a local denial-of-service attack. By using a C program it is possible to trigger a floating point exception that puts the kernel into an unusable state. To execute this attack a malicious user needs shell access to the victim's machine.
The severity of this bug is considered low because local denial-of-service attacks are hard to prevent in general. Additionally the bug is limited to x86 and x86_64 architecture.