Description:
Some vulnerabilities have been reported in the Linux Kernel, which can be exploited by malicious, local users and by malicious people to cause a DoS (Denial of Service).
1) An error within the "wait_task_stopped()" function can be exploited to cause a DoS by manipulating the state of a child process while the parent is waiting for the state to change (e.g. the parent is inside "wait()" or "waitpid()").
2) An NULL-pointer dereference error exists within the "tcp_sacktag_write_queue()" function when processing ACK packets. This can be exploited to crash an affected system via specially crafted ACK packets.
The vulnerabilities are reported in versions prior to 2.6.23.8.
Solution:
Update to version 2.6.23.8.
Provided and/or discovered by:
1) Roland McGrath
2) Ilpo Järvinen
Original Advisory:
http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.23.8
