关键信息 漏洞概述 漏洞类型: Linux kernel vulnerabilities 发布日期: 23 December 2005 受影响的版本: 5.10, 5.04, 4.10 漏洞详情 1. Loadkeys Command Abuse - 报告人: Rudolf Polzer - 影响: Local users could cause execution of arbitrary commands with the privileges of the target user. The updated kernel restricts the usage of 'loadkeys' to root. (CVE-2005-3257) 2. Ptrace System Call Issue - 影响: A local attacker could exploit this to cause a kernel crash. (CVE-2005-3783) 3. Denial of Service Vulnerability - 影响: A Denial of Service vulnerability was found in the handlers that automatically cleans up and terminates child processes. (CVE-2005-3283) 更新指令 通用更新: - In general, a standard system update will make all the necessary changes. Learn more about how to get the fixes. 具体包版本: - 详见截图中的“Update instructions”部分。 参考链接 CVE-2005-3858 CVE-2005-3857 CVE-2005-3848 CVE-2005-3808 CVE-2005-3806 CVE-2005-3805 CVE-2005-3784 CVE-2005-3783 CVE-2005-3257