Web Browser 로는 FTP 접속이 불가능 합니다.

문서번호 : 1291897989
업데이트 : 2010.12.09


상세내용

2.4.37-6 update

  - update 2.4.37.10
  - AF_UNIX: Fix deadlock on connecting to shutdown socket
  - bonding: fix a race condition in calls to slave MII ioctls
  - R8169: Fix compilation error when RTL8169_DEBUG is defined
  - net: Fix 64 bit DMA addressing for 8139cp and r8169
  - fs: pipe.c null pointer dereference
  - net: Make the copy length in af_packet sockopt handler unsigned
  - tty: Mark generic_serial users as BROKEN
  - scsi: fix error with 'scsi remove-single-device' in kernel 2.4.x
  - e1000: enhance frame fragment detection (CVE-2009-4536)
  - jfs: don't allow os2 xattr namespace overlap with others
  - drivers/tun: MTU change for TUN/TAP interfaces
  - net: permanent NUD pins ethernet interfaces when ATM is compiled in.

security issue

  - CVE-2009-4536

    drivers/net/e1000/e1000_main.c in the e1000 driver in the
    Linux kernel 2.6.32.3 and earlier handles Ethernet frames
    that exceed the MTU by processing certain trailing payload
    data as if it were a complete frame, which allows remote
    attackers to bypass packet filters via a large packet with
    a crafted payload. NOTE: this vulnerability exists because
    of an incorrect fix for CVE-2009-1385.


Autoupdates 지원 : Pakcages System
  pkgkernel 이용
  http://annyung.oops.org/?m=pkgadm&p=pkgkernel 참조


update 패키지

  RPMS :

    . kernel-2.4.37-6.i686.rpm
    . kernel-bigmem-2.4.37-6.i686.rpm
    . kernel-PIII-2.4.37-6.i686.rpm
    . kernel-PIV-2.4.37-6.i686.rpm
    . kernel-source-2.4.37-6.i386.rpm
    . kernel-header-2.4.37-6.i386.rpm


  SRPMS :

    . kernel-2.4.37-6.src.rpm


참고 :
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4536