·¢²¼ÈÕÆÚ£º2008-02-08
¸üÐÂÈÕÆÚ£º2008-02-21
ÊÜÓ°Ïìϵͳ£º
Linux kernel 2.6.22 - 2.6.24
²»ÊÜÓ°Ïìϵͳ£º
Linux kernel 2.6.24.1
ÃèÊö£º
BUGTRAQ ID: 27796
CVE(CAN) ID: CVE-2008-0010
Linux KernelÊÇ¿ª·ÅÔ´Âë²Ù×÷ϵͳLinuxËùʹÓõÄÄںˡ£
Linux KernelµÄʵÏÖÉÏ´æÔÚ©¶´£¬±¾µØ¹¥»÷Õß¿ÉÄÜÀûÓôË©¶´»ñÈ¡ÄÚºËÄÚ´æµÄÃô¸ÐÐÅÏ¢¡£
Linux KernelµÄfs/splice.cÎļþÖеÄcopy_from_user_mmap_sem()º¯Êýδ¾ÑéÖ¤Óû§ÌṩµÄÖ¸Õë±ãʹÓÃ__copy_from_user_inatomic()¿½±´ÁËÓû§½ø³ÌÄÚ´æÖеÄÊý¾Ý£º
---8<--- fs/splice.c:1188 ---8<---
partial = __copy_from_user_inatomic(dst, src, n);
---8<--- fs/splice.c:1188 ---8<---
Õâ¿ÉÄÜÔÊÐí±¾µØ¹¥»÷Õßͨ¹ýÌØÖƵÄvmsplice()ϵͳµ÷ÓöÁÈ¡ÈÎÒâÄÚºËÄÚ´æ¡£
³§É̲¹¶¡£º
Debian
DebianÒѾΪ´Ë·¢²¼ÁËÒ»¸ö°²È«¹«¸æ£¨DSA-1494-2£©ÒÔ¼°ÏàÓ¦²¹¶¡:
DSA-1494-2£ºNew linux-2.6 packages fix privilege escalation
Á´½Ó£ºhttp://www.debian.org/security/2008/dsa-1494
²¹¶¡°²×°·½·¨£º
1. ÊÖ¹¤°²×°²¹¶¡°ü£º
Ê×ÏÈ£¬Ê¹ÓÃÏÂÃæµÄÃüÁîÀ´ÏÂÔز¹¶¡Èí¼þ£º
# wget url (urlÊDz¹¶¡ÏÂÔØÁ´½ÓµØÖ·)
È»ºó£¬Ê¹ÓÃÏÂÃæµÄÃüÁîÀ´°²×°²¹¶¡£º
# dpkg -i file.deb (fileÊÇÏàÓ¦µÄ²¹¶¡Ãû)
2. ʹÓÃapt-get×Ô¶¯°²×°²¹¶¡°ü£º
Ê×ÏÈ£¬Ê¹ÓÃÏÂÃæµÄÃüÁî¸üÐÂÄÚ²¿Êý¾Ý¿â£º
# apt-get update
È»ºó£¬Ê¹ÓÃÏÂÃæµÄÃüÁî°²×°¸üÐÂÈí¼þ°ü£º
# apt-get upgrade
Linux
Ä¿Ç°³§ÉÌÒѾ·¢²¼ÁËÉý¼¶²¹¶¡ÒÔÐÞ¸´Õâ¸ö°²È«ÎÊÌ⣬Çëµ½³§É̵ÄÖ÷Ò³ÏÂÔØ£º
http://www.kernel.org/pub/linux/kernel/v2.6/patch-2.6.24.1.bz2
