Multiple Linux 2.4 Kernel Vulnerabilities
Debian has released an advisory (DSA 423-1) that addresses the issues that are described in this BID for the IA-64 architecture. Further details regarding obtaining and applying fixes can be found in the referenced advisory.
Debian has also released an updated advisory (DSA 358-2) with updated i386 and alpha fixes to correct an issues with the previous fixes. Details on obtaining and applying fixes can be found in the referenced advisory.
Red Hat has released an advisory (RHSA-2003:238-01) that addresses these issues. Details on obtaining and applying fixes can be found in the attached advisory.
Conectiva has released an advisory (CLSA-2003:712) that provides kernel updates for CLEE. Please see the attached advisory for details for obtaining and applying updates.
SuSE has released advisory SuSE-SA:2003:034 to address this issue. Specific update information has been made available. Refer to the referenced advisory for additional details.
Red Hat has released an advisory (RHSA-2003:198-16) containing updated IA64 fixes for Red Hat Enterprise Linux AS (v. 2.1) and Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor. These fixes are only available through the Red Hat Network which can be found at http://rhn.redhat.com/.
Red Hat has also released an advisory (RHSA-2003-239) containing kernel fixes for Red Hat Enterprise Linux AS, ES, and WS(v. 2.1). These fixes are also only available through the Red Hat Network which can be found at http://rhn.redhat.com/.
Turbolinux has released an advisory with fixes in order to address this and other issues.
RHBA-2003:263-05 (for non-Enterprise Red Hat distributions) has been released to address unrelated bugs but provides Kernel updates that include more recent fixes for this and other security vulnerabilities.
Conectiva has released a security advisory (CLA-2003:796) containing fixes to address issues with STP protocol and the kernel RPC code in Conectiva Linux 8.