Multiple vulnerabilities have been found in the Linux kernel used by GNU/Linux systems. Patched, or updated versions of these kernels have been released and details are included in this advisory.
Package | sys-kernel/aa-sources on all architectures |
---|---|
Affected versions | < 2.4.23-r2 |
Unaffected versions | = 2.4.23-r2 |
Package | sys-kernel/alpha-sources on all architectures |
---|---|
Affected versions | < 2.4.21-r8 |
Unaffected versions | >= 2.4.21-r8 |
Package | sys-kernel/ck-sources on all architectures |
---|---|
Affected versions | < 2.6.7-r1 |
Unaffected versions | = 2.4.26-r1 >= 2.6.7-r1 |
Package | sys-kernel/compaq-sources on all architectures |
---|---|
Affected versions | < 2.4.9.32.7-r7 |
Unaffected versions | >= 2.4.9.32.7-r7 |
Package | sys-kernel/development-sources on all architectures |
---|---|
Affected versions | < 2.6.7 |
Unaffected versions | >= 2.6.7 |
Package | sys-kernel/gaming-sources on all architectures |
---|---|
Affected versions | < 2.4.20-r14 |
Unaffected versions | >= 2.4.20-r14 |
Package | sys-kernel/gentoo-dev-sources on all architectures |
---|---|
Affected versions | < 2.6.7 |
Unaffected versions | >= 2.6.7 |
Package | sys-kernel/gentoo-sources on all architectures |
---|---|
Affected versions | < 2.4.26-r3 |
Unaffected versions | revision >= 2.4.19-r17 revision >= 2.4.20-r20 revision >= 2.4.22-r12 revision >= 2.4.25-r5 >= 2.4.26-r3 |
Package | sys-kernel/grsec-sources on all architectures |
---|---|
Affected versions | < 2.4.26.2.0-r5 |
Unaffected versions | >= 2.4.26.2.0-r5 |
Package | sys-kernel/gs-sources on all architectures |
---|---|
Affected versions | < 2.4.25_pre7-r7 |
Unaffected versions | >= 2.4.25_pre7-r7 |
Package | sys-kernel/hardened-dev-sources on all architectures |
---|---|
Affected versions | < 2.6.7 |
Unaffected versions | >= 2.6.7 |
Package | sys-kernel/hardened-sources on all architectures |
---|---|
Affected versions | < 2.4.26-r2 |
Unaffected versions | >= 2.4.26-r2 |
Package | sys-kernel/hppa-dev-sources on all architectures |
---|---|
Affected versions | < 2.6.7 |
Unaffected versions | >= 2.6.7 |
Package | sys-kernel/hppa-sources on all architectures |
---|---|
Affected versions | < 2.4.26_p6 |
Unaffected versions | >= 2.4.26_p6 |
Package | sys-kernel/ia64-sources on all architectures |
---|---|
Affected versions | < 2.4.24-r5 |
Unaffected versions | >= 2.4.24-r5 |
Package | sys-kernel/mips-sources on all architectures |
---|---|
Affected versions | < 2.4.26-r3 |
Unaffected versions | >= 2.4.26-r3 |
Package | sys-kernel/mm-sources on all architectures |
---|---|
Affected versions | < 2.6.7-r1 |
Unaffected versions | >= 2.6.7-r1 |
Package | sys-kernel/openmosix-sources on all architectures |
---|---|
Affected versions | < 2.4.22-r10 |
Unaffected versions | >= 2.4.22-r10 |
Package | sys-kernel/pac-sources on all architectures |
---|---|
Affected versions | < 2.4.23-r8 |
Unaffected versions | >= 2.4.23-r8 |
Package | sys-kernel/pegasos-dev-sources on all architectures |
---|---|
Affected versions | < 2.6.7 |
Unaffected versions | >= 2.6.7 |
Package | sys-kernel/pegasos-sources on all architectures |
---|---|
Affected versions | < 2.4.26-r2 |
Unaffected versions | >= 2.4.26-r2 |
Package | sys-kernel/planet-ccrma-sources on all architectures |
---|---|
Affected versions | < 2.4.21-r10 |
Unaffected versions | >= 2.4.21-r10 |
Package | sys-kernel/ppc-sources on all architectures |
---|---|
Affected versions | < 2.4.26-r2 |
Unaffected versions | >= 2.4.26-r2 |
Package | sys-kernel/ppc64-sources on all architectures |
---|---|
Affected versions | < 2.6.7 |
Unaffected versions | >= 2.6.7 |
Package | sys-kernel/rsbac-sources on all architectures |
---|---|
Affected versions | < 2.4.26-r2 |
Unaffected versions | >= 2.4.26-r2 |
Package | sys-kernel/rsbac-dev-sources on all architectures |
---|---|
Affected versions | < 2.6.7-r1 |
Unaffected versions | >= 2.6.7-r1 |
Package | sys-kernel/selinux-sources on all architectures |
---|---|
Affected versions | < 2.4.26-r2 |
Unaffected versions | >= 2.4.26-r2 |
Package | sys-kernel/sparc-sources on all architectures |
---|---|
Affected versions | < 2.4.26-r2 |
Unaffected versions | >= 2.4.26-r2 |
Package | sys-kernel/uclinux-sources on all architectures |
---|---|
Affected versions | < 2.4.26_p0-r2 |
Unaffected versions | >= 2.4.26_p0-r2 |
Package | sys-kernel/usermode-sources on all architectures |
---|---|
Affected versions | < 2.4.26-r2 |
Unaffected versions | revision >= 2.4.24-r5 >= 2.4.26-r2 |
Package | sys-kernel/vserver-sources on all architectures |
---|---|
Affected versions | < 2.0 >= 2.4 < 2.4.26.1.3.9-r2 |
Unaffected versions | >= 2.0 |
Package | sys-kernel/win4lin-sources on all architectures |
---|---|
Affected versions | < 2.4.26-r2 |
Unaffected versions | >= 2.4.26-r2 |
Package | sys-kernel/wolk-sources on all architectures |
---|---|
Affected versions | < 4.14-r3 |
Unaffected versions | revision >= 4.9-r9 revision >= 4.11-r6 >= 4.14-r3 |
Package | sys-kernel/xbox-sources on all architectures |
---|---|
Affected versions | < 2.6.7 |
Unaffected versions | >= 2.6.7 |
Package | sys-kernel/xfs-sources on all architectures |
---|---|
Affected versions | < 2.4.24-r8 |
Unaffected versions | >= 2.4.24-r8 |
Package | sys-kernel/vanilla-sources on all architectures |
---|---|
Affected versions | <= 2.4.26 |
Unaffected versions | >= 2.4.27 |
The Linux kernel is responsible for managing the core aspects of a GNU/Linux system, providing an interface for core system applications as well as providing the essential structure and capability to access hardware that is needed for a running system.
Multiple flaws have been discovered in the Linux kernel. This advisory corrects the following issues:
Arbitrary code with normal non-super-user privileges may be able to exploit any of these vulnerabilities; gaining kernel level access to memory structures and hardware devices. This may be used for further exploitation of the system, to leak sensitive data or to cause a Denial of Service on the affected kernel.
Although users may not be affected by certain vulnerabilities, all kernels are affected by the CAN-2004-0394, CAN-2004-0427 and CAN-2004-0554 issues which have no workaround. As a result, all users are urged to upgrade their kernels to patched versions.
Users are encouraged to upgrade to the latest available sources for their system:
# emerge sync # emerge -pv your-favorite-sources # emerge your-favorite-sources # # Follow usual procedure for compiling and installing a kernel. # # If you use genkernel, run genkernel as you would do normally.