CentOS Bug Tracker
CentOS Bug Tracker

View Issue Details Jump to Notes ] Issue History ] Print ]
IDProjectCategoryView StatusDate SubmittedLast Update
0004518CentOS-5kernelpublic2010-09-20 13:042010-09-21 18:13
Reportertru 
PriorityhighSeveritymajorReproducibilityalways
StatusclosedResolutionfixed 
PlatformOSOS Version
Product Version5.5 
Target VersionFixed in Version 
Summary0004518: CVE-2010-3081
Description1) public exploit (with backdoor) for gaining root on a CentOS-5 x86_64 machine
2) only x86_64 machine are affected from kernel-2.6.18-164 and onward (CentOS-5.4 too)
Additional Informationreference and workaround (looing 32 bits compatibility)

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3081 [^]

uptream:
https://access.redhat.com/kb/docs/DOC-40265 [^]
https://bugzilla.redhat.com/show_bug.cgi?id=634457 [^]
(expect new kernel in the next days)

ksplice:
http://www.ksplice.com/uptrack/cve-2010-3081 [^]
http://blog.ksplice.com/2010/09/cve-2010-3081/ [^]
TagsNo tags attached.
Attached Filespatch file icon linux-2.6.18rh-CVE_2010_3081.patch [^] (4,389 bytes) 2010-09-20 19:55 [Show Content]
patch file icon linux-2.6-security-64-bit-compatibility-mode-stack-pointer-underflow.patch [^] (6,974 bytes) 2010-09-20 19:59 [Show Content]

- Relationships

-  Notes
(0011860)
tru (administrator)
2010-09-20 13:06

a kernel (kernel-2.6.18-194.11.3.el5.CVE_2010_3081) in c5 testing is being built (credits to gmk and mej)
(0011861)
tru (administrator)
2010-09-20 19:58

linux-2.6.18rh-CVE_2010_3081.patch is the included patch, I am also attaching the proposed patch in the upstream bugzilla entry (https://bugzilla.redhat.com/attachment.cgi?id=448317 [^] -> linux-2.6-security-64-bit-compatibility-mode-stack-pointer-underflow.patch)
(0011862)
tru (administrator)
2010-09-20 20:35

c5 testing has been populated, please test and report (success or failure)
(0011863)
tru (administrator)
2010-09-20 20:58

wget http://dev.centos.org/centos/5/CentOS-Testing.repo [^] -O /etc/yum.repos.d/CentOS-Testing.repo
edit the file if needed for priority/... (see wiki.centos.org for more details)
and run
yum --enablerepo=c5-testing update kernel\*
then reboot
(0011864)
kbsingh@karan.org (administrator)
2010-09-20 23:30

we are aware of the limited bandwidth available to the machine and are working to get a couple of mirrors setup
(0011865)
tru (administrator)
2010-09-21 08:26

https://rhn.redhat.com/errata/RHSA-2010-0704.html [^] has been released

the official kernel (kernel-2.6.18-194.11.4.el5.src.rpm) will be pushed as soon as possible
(0011867)
tru (administrator)
2010-09-21 18:13

the patched kernel has been released :)

- Issue History
Date Modified Username Field Change
2010-09-20 13:04 tru New Issue
2010-09-20 13:06 tru Note Added: 0011860
2010-09-20 13:07 tru Status new => confirmed
2010-09-20 19:55 tru File Added: linux-2.6.18rh-CVE_2010_3081.patch
2010-09-20 19:58 tru Note Added: 0011861
2010-09-20 19:59 tru File Added: linux-2.6-security-64-bit-compatibility-mode-stack-pointer-underflow.patch
2010-09-20 20:35 tru Note Added: 0011862
2010-09-20 20:58 tru Note Added: 0011863
2010-09-20 23:30 kbsingh@karan.org Note Added: 0011864
2010-09-21 08:26 tru Note Added: 0011865
2010-09-21 18:13 tru Note Added: 0011867
2010-09-21 18:13 tru Status confirmed => closed
2010-09-21 18:13 tru Resolution open => fixed


Copyright © 2000 - 2014 MantisBT Team
Powered by Mantis Bugtracker