• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Linux Kernel IOPERM System Call I/O Port Access Vulnerability

Solution:
Mandrake Linux have released a security advisory (MDKSA-2003:074) to address this issue. Further details regarding downloading and applying these fixes can be found in the referenced advisory. Fixes are linked below.

Mandrake has issued a kernel upgrade that is patched. Please see the advisory linked to in the reference section (MDKSA-2003:066-1) for further information.

Red Hat has released advisory RHSA-2003:172-00 and fixes to address this issue. See referenced advisory for additional details.

EnGarde has released an advisory. Information about obtaining fixes can be found in the referenced advisory (ESA-20030515-017).

Conectiva has released advisory CLSA-2003:657 to address this issue.

Red Hat Linux has released a new advisory RHSA-2003:187-01. Affected users are advised to upgrade to newer kernel packages. Further information is available in the referenced advisory.

Debian has issued a kernel upgrade that is patched. Please see the advisories linked to in the reference section (DSA-311-1 and DSA 312-1) for URLs to fixes.

Debian has released a new advisory DSA 332-1. Information about obtaining and applying fixes can be found in the referenced advisory.

Debian has announced in DSA 336-2 that advisory DSA 336-1 does not address this issue.

Conectiva has released advisory CLA-2003:701 to address this issue. See referenced advisory for additional details and fix information.

Gentoo has released advisory 200308-01 to address this issue. Affected users are advised to execute the following commands:

emerge sync
emerge gentoo-sources
emerge clean

RHBA-2003:263-05 (for non-Enterprise Red Hat distributions) has been released to address unrelated bugs but provides Kernel updates that include more recent fixes for this and other security vulnerabilities.

Conectiva has released a security advisory (CLA-2003:796) containing fixes to address this issue in Conectiva Linux 8.

Debian has released DSA 442-1 to provide fixes for s390 platforms. Please see the attached advisory for further information.


RedHat kernel-bigmem-2.4.18-14.i686.rpm

• Red Hat kernel-bigmem-2.4.20-20.8.i686.rpm
  ftp://updates.redhat.com/8.0/en/os/i686/kernel-bigmem-2.4.20-20.8.i686 .rpm

RedHat kernel-2.4.20-8.athlon.rpm

• Red Hat kernel-2.4.20-20.9.athlon.rpm
  ftp://updates.redhat.com/9/en/os/athlon/kernel-2.4.20-20.9.athlon.rpm

RedHat kernel-source-2.4.2-2.i386.rpm

• Red Hat kernel-source-2.4.20-20.7.i386.rpm
  ftp://updates.redhat.com/7.1/en/os/i386/kernel-source-2.4.20-20.7.i386 .rpm

RedHat kernel-2.4.20-8.i586.rpm

• Red Hat kernel-2.4.20-20.9.i386.rpm
  ftp://updates.redhat.com/9/en/os/i386/kernel-2.4.20-20.9.i386.rpm


• Red Hat kernel-2.4.20-20.9.i586.rpm
  ftp://updates.redhat.com/9/en/os/i586/kernel-2.4.20-20.9.i586.rpm

RedHat kernel-2.4.7-10.i686.rpm

• Red Hat kernel-2.4.20-20.7.i686.rpm
  ftp://updates.redhat.com/7.2/en/os/i686/kernel-2.4.20-20.7.i686.rpm


• Red Hat kernel-bigmem-2.4.20-20.7.i686.rpm
  ftp://updates.redhat.com/7.2/en/os/i686/kernel-bigmem-2.4.20-20.7.i686 .rpm

RedHat kernel-bigmem-2.4.20-8.i686.rpm

• Red Hat kernel-bigmem-2.4.20-20.9.i686.rpm
  ftp://updates.redhat.com/9/en/os/i686/kernel-bigmem-2.4.20-20.9.i686.r pm

RedHat kernel-source-2.4.20-8.i386.rpm

• Red Hat kernel-source-2.4.20-20.9.i386.rpm
  ftp://updates.redhat.com/9/en/os/i386/kernel-source-2.4.20-20.9.i386.r pm

RedHat kernel-BOOT-2.4.18-3.i386.rpm

• Red Hat kernel-BOOT-2.4.20-20.7.i386.rpm
  ftp://updates.redhat.com/7.3/en/os/i386/kernel-BOOT-2.4.20-20.7.i386.r pm

RedHat kernel-doc-2.4.18-14.i386.rpm

• Red Hat kernel-doc-2.4.20-20.8.i386.rpm
  ftp://updates.redhat.com/8.0/en/os/i386/kernel-doc-2.4.20-20.8.i386.rp m

RedHat kernel-2.4.18-3.athlon.rpm

• Red Hat kernel-2.4.20-20.7.athlon.rpm
  ftp://updates.redhat.com/7.3/en/os/athlon/kernel-2.4.20-20.7.athlon.rp m

RedHat kernel-bigmem-2.4.18-3.i686.rpm

• Red Hat kernel-bigmem-2.4.20-20.7.i686.rpm
  ftp://updates.redhat.com/7.3/en/os/i686/kernel-bigmem-2.4.20-20.7.i686 .rpm

RedHat kernel-source-2.4.7-10.i386.rpm

• Red Hat kernel-source-2.4.20-20.7.i386.rpm
  ftp://updates.redhat.com/7.2/en/os/i386/kernel-source-2.4.20-20.7.i386 .rpm

RedHat kernel-2.4.18-14.i586.rpm

• Red Hat kernel-2.4.20-20.8.i386.rpm
  ftp://updates.redhat.com/8.0/en/os/i386/kernel-2.4.20-20.8.i386.rpm


• Red Hat kernel-2.4.20-20.8.i586.rpm
  ftp://updates.redhat.com/8.0/en/os/i586/kernel-2.4.20-20.8.i586.rpm

RedHat kernel-BOOT-2.4.18-14.i386.rpm

• Red Hat kernel-BOOT-2.4.20-20.8.i386.rpm
  ftp://updates.redhat.com/8.0/en/os/i386/kernel-BOOT-2.4.20-20.8.i386.r pm

RedHat kernel-2.4.2-2.i686.rpm

• Red Hat kernel-2.4.20-20.7.i686.rpm
  ftp://updates.redhat.com/7.1/en/os/i686/kernel-2.4.20-20.7.i686.rpm


• Red Hat kernel-bigmem-2.4.20-20.7.i686.rpm
  ftp://updates.redhat.com/7.1/en/os/i686/kernel-bigmem-2.4.20-20.7.i686 .rpm

RedHat kernel-doc-2.4.7-10.i386.rpm

• Red Hat kernel-doc-2.4.20-20.7.i386.rpm
  ftp://updates.redhat.com/7.2/en/os/i386/kernel-doc-2.4.20-20.7.i386.rp m

RedHat kernel-2.4.18-3.i686.rpm

• Red Hat kernel-2.4.20-20.7.i686.rpm
  ftp://updates.redhat.com/7.3/en/os/i686/kernel-2.4.20-20.7.i686.rpm

RedHat kernel-2.4.2-2.i386.rpm

• Red Hat kernel-2.4.20-20.7.athlon.rpm
  ftp://updates.redhat.com/7.1/en/os/athlon/kernel-2.4.20-20.7.athlon.rp m


• Red Hat kernel-2.4.20-20.7.i386.rpm
  ftp://updates.redhat.com/7.1/en/os/i386/kernel-2.4.20-20.7.i386.rpm

MandrakeSoft Corporate Server 2.1

• Mandrake kernel-2.4.19.35mdk-1-1mdk.i586.rpm
  Corporate Server 2.1corporate/2.1/RPMS/kernel-2.4.19.35mdk-1-1mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-2.4.19.35mdk-1-1mdk.src.rpm
  Corporate Server 2.1corporate/2.1/SRPMS/kernel-2.4.19.35mdk-1-1mdk.src.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-BOOT-2.4.19.35mdk-1-1mdk.i586.rpm
  Corporate Server 2.1corporate/2.1/RPMS/kernel-BOOT-2.4.19.35mdk-1-1mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-enterprise-2.4.19.35mdk-1-1mdk.i586.rpm
  Corporate Server 2.1corporate/2.1/RPMS/kernel-enterprise-2.4.19.35mdk-1-1mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-secure-2.4.19.35mdk-1-1mdk.i586.rpm
  Corporate Server 2.1corporate/2.1/RPMS/kernel-secure-2.4.19.35mdk-1-1mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-smp-2.4.19.35mdk-1-1mdk.i586.rpm
  Corporate Server 2.1corporate/2.1/RPMS/kernel-smp-2.4.19.35mdk-1-1mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-source-2.4.19-35mdk.i586.rpm
  Corporate Server 2.1corporate/2.1/RPMS/kernel-source-2.4.19-35mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php

Linux kernel 2.4.17

• Debian kernel-headers-2.4.17_2.4.17-2.woody.3_s390.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/k/kernel-image-2.4.17-s39 0/kernel-headers-2.4.17_2.4.17-2.woody.3_s390.deb


• Debian kernel-image-2.4.17-s390_2.4.17-2.woody.3_s390.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/k/kernel-image-2.4.17-s39 0/kernel-image-2.4.17-s390_2.4.17-2.woody.3_s390.deb


• Debian kernel-patch-2.4.17-s390_0.0.20020816-0.woody.2_all.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.17-s39 0/kernel-patch-2.4.17-s390_0.0.20020816-0.woody.2_all.deb

Linux kernel 2.4.20

• Red Hat kernel-2.4.20-9.athlon.rpm
  ftp://updates.redhat.com/9/en/os/athlon/kernel-2.4.20-9.athlon.rpm


• Red Hat kernel-2.4.20-9.i586.rpm
  ftp://updates.redhat.com/9/en/os/i586/kernel-2.4.20-9.i586.rpm


• Red Hat kernel-2.4.20-9.i686.rpm
  ftp://updates.redhat.com/9/en/os/i686/kernel-2.4.20-9.i686.rpm

Linux kernel 2.4.21 pre4

• Mandrake kernel-2.4.21.0.18mdk-1-1mdk.i586.rpm
  ftp://ftp.planetmirror.com/pub/Mandrake/updates/9.1/RPMS/


• Mandrake kernel-2.4.21.0.18mdk-1-1mdk.src.rpm
  ftp://ftp.planetmirror.com/pub/Mandrake/updates/9.1/RPMS/


• Mandrake kernel-BOOT-2.4.21.0.18mdk-1-1mdk.i586.rpm
  ftp://ftp.planetmirror.com/pub/Mandrake/updates/9.1/RPMS/


• Mandrake kernel-doc-2.4.21-0.18mdk.i586.rpm
  ftp://ftp.planetmirror.com/pub/Mandrake/updates/9.1/RPMS/


• Mandrake kernel-enterprise-2.4.21.0.18mdk-1-1mdk.i586.rpm
  ftp://ftp.planetmirror.com/pub/Mandrake/updates/9.1/RPMS/


• Mandrake kernel-secure-2.4.21.0.18mdk-1-1mdk.i586.rpm
  ftp://ftp.planetmirror.com/pub/Mandrake/updates/9.1/RPMS/


• Mandrake kernel-smp-2.4.21.0.18mdk-1-1mdk.i586.rpm
  ftp://ftp.planetmirror.com/pub/Mandrake/updates/9.1/RPMS/


• Mandrake kernel-source-2.4.21-0.18mdk.i586.rpm
  ftp://ftp.planetmirror.com/pub/Mandrake/updates/9.1/RPMS/

Sun Linux 5.0

• Sun Sun_Linux_5.0.6_update1.tar.bz2
  ftp://ftp.cobalt.sun.com/pub/products/sunlinux/5.0/en/updates/i386/upd ate_5_0_6/Sun_Linux_5.0.6_update1.tar.bz2

Sun Linux 5.0.5

• Sun Sun_Linux_5.0.6_update1.tar.bz2
  ftp://ftp.cobalt.sun.com/pub/products/sunlinux/5.0/en/updates/i386/upd ate_5_0_6/Sun_Linux_5.0.6_update1.tar.bz2

MandrakeSoft Linux Mandrake 8.2 ppc

• Mandrake kernel-2.4.19.35mdk-1-1mdk.ppc.rpm
  Mandrake Linux 8.2/PPCppc/8.2/RPMS/kernel-2.4.19.35mdk-1-1mdk.ppc.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-2.4.19.35mdk-1-1mdk.src.rpm
  Mandrake Linux 8.2/PPCppc/8.2/SRPMS/kernel-2.4.19.35mdk-1-1mdk.src.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-doc-2.4.19-35mdk.ppc.rpm
  Mandrake Linux 8.2/PPCppc/8.2/RPMS/kernel-doc-2.4.19-35mdk.ppc.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-enterprise-2.4.19.35mdk-1-1mdk.ppc.rpm
  Mandrake Linux 8.2/PPCppc/8.2/RPMS/kernel-enterprise-2.4.19.35mdk-1-1mdk.ppc.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-smp-2.4.19.35mdk-1-1mdk.ppc.rpm
  Mandrake Linux 8.2/PPCppc/8.2/RPMS/kernel-smp-2.4.19.35mdk-1-1mdk.ppc.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-source-2.4.19-35mdk.ppc.rpm
  Mandrake Linux 8.2/PPCppc/8.2/RPMS/kernel-source-2.4.19-35mdk.ppc.rpm
  http://www.mandrakesecure.net/en/ftp.php

MandrakeSoft Linux Mandrake 9.0

• Mandrake kernel-2.4.19.35mdk-1-1mdk.i586.rpm
  Mandrake Linux 9.09.0/RPMS/kernel-2.4.19.35mdk-1-1mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-2.4.19.35mdk-1-1mdk.src.rpm
  Mandrake Linux 9.09.0/SRPMS/kernel-2.4.19.35mdk-1-1mdk.src.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-BOOT-2.4.19.35mdk-1-1mdk.i586.rpm
  Mandrake Linux 9.09.0/RPMS/kernel-BOOT-2.4.19.35mdk-1-1mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-doc-2.4.19-35mdk.i586.rpm
  Mandrake Linux 9.09.0/RPMS/kernel-doc-2.4.19-35mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-enterprise-2.4.19.35mdk-1-1mdk.i586.rpm
  Mandrake Linux 9.09.0/RPMS/kernel-enterprise-2.4.19.35mdk-1-1mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-secure-2.4.19.35mdk-1-1mdk.i586.rpm
  Mandrake Linux 9.09.0/RPMS/kernel-secure-2.4.19.35mdk-1-1mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-smp-2.4.19.35mdk-1-1mdk.i586.rpm
  Mandrake Linux 9.09.0/RPMS/kernel-smp-2.4.19.35mdk-1-1mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-source-2.4.19-35mdk.i586.rpm
  Mandrake Linux 9.09.0/RPMS/kernel-source-2.4.19-35mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php

MandrakeSoft Linux Mandrake 9.1

• Mandrake kernel-2.4.21.0.24mdk-1-1mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-BOOT-2.4.21.0.25mdk-1-1mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-doc-2.4.21-0.25mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-enterprise-2.4.21.0.25mdk-1-1mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-secure-2.4.21.0.24mdk-1-1mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-smp-2.4.21.0.24mdk-1-1mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-source-2.4.21-0.25mdk.i586.rpm
  http://www.mandrakesecure.net/en/ftp.php