Title: Linux Kernel ELF Binary Loading Denial Of Service Vulnerability

Severity: HIGH

Description:

The Linux kernel is prone to a denial-of-service vulnerability because it fails to properly handle malformed ELF binaries.

The problem presents itself when an affected kernel uses 'load_elf_binary' to load a maliciously crafted ELF binary. Apparently, the kernel will crash when processing the malicious binary. This issue is reportedly distinct from those outlined in BID 11646 (Linux Kernel BINFMT_ELF Loader Local Privilege Escalation Vulnerabilities).

The information currently available is not sufficient to provide a more in-depth technical description. This BID will be updated as more details are released.

An attacker may leverage this issue to cause the affected kernel to crash, denying service to legitimate users.

Affected Products:

Astaro Security Linux 2.0.0 16
Astaro Security Linux 2.0.0 23
Avaya Converged Communications Server 2.0.0
Avaya Intuity LX
Avaya MN100
Avaya Modular Messaging (MSS) 1.1.0
Avaya Modular Messaging (MSS) 2.0.0
Avaya Network Routing 0.0.0
CRUX CRUX Linux 1.0.0
Caldera OpenLinux Server 3.1.0
Caldera OpenLinux Server 3.1.1
Caldera OpenLinux Workstation 3.1.0
Caldera OpenLinux Workstation 3.1.1
Conectiva Linux 7.0.0
Conectiva Linux 8.0.0
Conectiva Linux 9.0.0
Conectiva Linux Enterprise Edition 1.0.0
Debian Linux 3.0.0
Debian Linux 3.0.0 alpha
Debian Linux 3.0.0 arm
Debian Linux 3.0.0 hppa
Debian Linux 3.0.0 ia-32
Debian Linux 3.0.0 ia-64
Debian Linux 3.0.0 m68k
Debian Linux 3.0.0 mips
Debian Linux 3.0.0 mipsel
Debian Linux 3.0.0 ppc
Debian Linux 3.0.0 s/390
Debian Linux 3.0.0 sparc
Devil-Linux Devil-Linux 1.0.4
Devil-Linux Devil-Linux 1.0.5
F5 iControl Service Manager 1.3.0
F5 iControl Service Manager 1.3.4
F5 iControl Service Manager 1.3.5
F5 iControl Service Manager 1.3.6
Gentoo Linux 1.2.0
Gentoo Linux 1.4.0
Linux kernel 2.4.0
Linux kernel 2.4.0 .0-test1
Linux kernel 2.4.0 .0-test10
Linux kernel 2.4.0 .0-test11
Linux kernel 2.4.0 .0-test12
Linux kernel 2.4.0 .0-test2
Linux kernel 2.4.0 .0-test3
Linux kernel 2.4.0 .0-test4
Linux kernel 2.4.0 .0-test5
Linux kernel 2.4.0 .0-test6
Linux kernel 2.4.0 .0-test7
Linux kernel 2.4.0 .0-test8
Linux kernel 2.4.0 .0-test9
Linux kernel 2.4.1
Linux kernel 2.4.10
Linux kernel 2.4.11
Linux kernel 2.4.12
Linux kernel 2.4.13
Linux kernel 2.4.14
Linux kernel 2.4.15
Linux kernel 2.4.16
Linux kernel 2.4.17
Linux kernel 2.4.18
Linux kernel 2.4.18 pre-1
Linux kernel 2.4.18 pre-2
Linux kernel 2.4.18 pre-3
Linux kernel 2.4.18 pre-4
Linux kernel 2.4.18 pre-5
Linux kernel 2.4.18 pre-6
Linux kernel 2.4.18 pre-7
Linux kernel 2.4.18 pre-8
Linux kernel 2.4.18 x86
Linux kernel 2.4.19
Linux kernel 2.4.19 -pre1
Linux kernel 2.4.19 -pre2
Linux kernel 2.4.19 -pre3
Linux kernel 2.4.19 -pre4
Linux kernel 2.4.19 -pre5
Linux kernel 2.4.19 -pre6
Linux kernel 2.4.2
Linux kernel 2.4.20
Linux kernel 2.4.21
Linux kernel 2.4.21 pre1
Linux kernel 2.4.21 pre4
Linux kernel 2.4.21 pre7
Linux kernel 2.4.22
Linux kernel 2.4.23
Linux kernel 2.4.23 -ow2
Linux kernel 2.4.23 -pre9
Linux kernel 2.4.24
Linux kernel 2.4.24 -ow1
Linux kernel 2.4.25
Linux kernel 2.4.3
Linux kernel 2.4.4
Linux kernel 2.4.5
Linux kernel 2.4.6
Linux kernel 2.4.7
Linux kernel 2.4.8
Linux kernel 2.4.9
MandrakeSoft Corporate Server 2.1.0
MandrakeSoft Corporate Server 2.1.0 x86_64
MandrakeSoft Linux Mandrake 8.0.0
MandrakeSoft Linux Mandrake 8.0.0 ppc
MandrakeSoft Linux Mandrake 8.1.0
MandrakeSoft Linux Mandrake 8.2.0
MandrakeSoft Linux Mandrake 9.0.0
MandrakeSoft Linux Mandrake 9.1.0
MandrakeSoft Linux Mandrake 9.1.0 ppc
MandrakeSoft Linux Mandrake 9.2.0
MandrakeSoft Linux Mandrake 9.2.0 amd64
MandrakeSoft Multi Network Firewall 2.0.0
RedHat Advanced Workstation for the Itanium Processor 2.1.0
RedHat Advanced Workstation for the Itanium Processor 2.1.0 IA64
RedHat Desktop 3.0.0
RedHat Enterprise Linux AS 2.1
RedHat Enterprise Linux AS 2.1 IA64
RedHat Enterprise Linux AS 3
RedHat Enterprise Linux ES 2.1
RedHat Enterprise Linux ES 2.1 IA64
RedHat Enterprise Linux ES 3
RedHat Enterprise Linux WS 2.1
RedHat Enterprise Linux WS 2.1 IA64
RedHat Enterprise Linux WS 3
RedHat Fedora Core1
RedHat Linux 7.1.0
RedHat Linux 7.1.0 alpha
RedHat Linux 7.1.0 i386
RedHat Linux 7.1.0 ia64
RedHat Linux 7.2.0
RedHat Linux 7.2.0 alpha
RedHat Linux 7.2.0 i386
RedHat Linux 7.2.0 ia64
RedHat Linux 7.3.0
RedHat Linux 7.3.0 i386
RedHat Linux 8.0.0
RedHat Linux 9.0.0 i386
S.u.S.E. Linux 7.1.0
S.u.S.E. Linux 7.2.0
S.u.S.E. Linux 7.3.0
S.u.S.E. Linux 8.0.0
S.u.S.E. Linux 8.1.0
S.u.S.E. Linux Connectivity Server
S.u.S.E. Linux Database Server
S.u.S.E. Linux Enterprise Server 7
S.u.S.E. Linux Enterprise Server 8
S.u.S.E. Linux Firewall on CD
S.u.S.E. Linux Office Server
S.u.S.E. Linux Openexchange Server
S.u.S.E. Linux Personal 8.2.0
S.u.S.E. Linux Personal 9.0.0
S.u.S.E. Linux Personal 9.0.0 x86_64
S.u.S.E. SuSE eMail Server 3.1.0
S.u.S.E. SuSE eMail Server III
Slackware Linux -current
Slackware Linux 8.0.0
Slackware Linux 9.0.0
Slackware Linux 9.1.0
Sun Cobalt RaQ 550
Sun Linux 5.0.0
Sun Linux 5.0.3
Sun Linux 5.0.5
Trustix Secure Linux 2.0.0
Turbolinux Turbolinux Server 7.0.0
Turbolinux Turbolinux Server 8.0.0
Turbolinux Turbolinux Workstation 7.0.0
Turbolinux Turbolinux Workstation 8.0.0
WOLK WOLK 4.4.0 s

References:

F5 Software: iControl Services Manager (iSM) version 1.3.7

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.

J-Security Center

Title: Linux Kernel ELF Binary Loading Denial Of Service Vulnerability

Severity: HIGH

Description:

Affected Products:

References: