Mandriva Security

MDVA-2010:054: cacti

This update fixes several bugs in existing package:
- fix rights on configuration file
- fix path for logs
- fix path for rra files
- add new version for rrdtools in cacti wizard

MDVSA-2010:034: kernel

Some vulnerabilities were discovered and corrected in the Linux
2.6 kernel:

Array index error in the gdth_read_event function in
drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows
local users to cause a denial of service or possibly gain privileges
via a negative event index in an IOCTL request. (CVE-2009-3080)

The collect_rx_frame function in drivers/isdn/hisax/hfc_usb.c in the
Linux kernel before 2.6.32-rc7 allows attackers to have an unspecified
impact via a crafted HDLC packet that arrives over ISDN and triggers
a buffer under-read. (CVE-2009-4005)

Additionally, the Linux kernel was updated to the stable release
2.6.27.45.

To update your kernel, please follow the directions located at:

http://www.mandriva.com/en/security/kernelupdate

MDVA-2010:053: mmc-wizard

Remove 64bit templates as mmc packages are noarch now. The updated
packages have been patched to correct this issue.

MDVA-2010:052: microcode_ctl

microcode_ctl is now providing a script to allow updates to retreive
the latest versions of microcodes.

MDVA-2010:051: mmc-web-base

This update removes the disclaimer which incorrectly appears on
initial MMC web page.

MDVA-2010:050: mmc-agent

MMC web interface allows to create isos for user's homes and
shares. With this update, mkisofs has been added as a requirement of
the package.

MDVSA-2010:033: squid

A vulnerability have been discovered and corrected in Squid 2.x,
3.0 through 3.0.STABLE22, and 3.1 through 3.1.0.15, which allows
remote attackers to cause a denial of service (assertion failure)
via a crafted DNS packet that only contains a header (CVE-2010-0308).

This update provides a fix to this vulnerability.

MDVSA-2010:032: rootcerts

It was brought to our attention by Ludwig Nussel at SUSE the md5
collision certificate should not be included. This update removes
the offending certificate.

Packages for 2008.0 are provided for Corporate Desktop 2008.0
customers.

The mozilla nss library has consequently been rebuilt to pickup these
changes and are also being provided.

MDVSA-2010:031: wireshark

This advisory updates Wireshark to the version 1.0.11, which fixes
the following vulnerabilities:

The SMB and SMB2 dissectors could crash (CVE-2009-4377).
The Infiniband dissector could crash on some platforms (CVE-2009-2563).
Several buffer overflows were discovered and fixed in the LWRES
dissector.

MDVSA-2010:030: kernel

Some vulnerabilities were discovered and corrected in the Linux
2.6 kernel:

Array index error in the gdth_read_event function in
drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows
local users to cause a denial of service or possibly gain privileges
via a negative event index in an IOCTL request. (CVE-2009-3080)

The collect_rx_frame function in drivers/isdn/hisax/hfc_usb.c in the
Linux kernel before 2.6.32-rc7 allows attackers to have an unspecified
impact via a crafted HDLC packet that arrives over ISDN and triggers
a buffer under-read. (CVE-2009-4005)

An issue was discovered in 2.6.32.x kernels, which sets unsecure
permission for devtmpfs file system by default. (CVE-2010-0299)

Additionally, it was added support for Atheros AR2427 Wireless
Network Adapter.

To update your kernel, please follow the directions located at:

http://www.mandriva.com/en/security/kernelupdate