原始的RedHat9(kernel-2.4.20-8)在單處理器系統上執行:
service named stop
之後,會出現無法清理named進程的問題,rndc調用也會失敗(日志會有顯示)。
解決辦法:
推薦辦法:用up2date執行全部的系統更新。
臨時辦法:僅升級內核至2.4.20-9(當前最新2.4.20-20.9)。
RedHat相關說明:
https://rhn.redhat.com/network/errata/details/index.pxt?eid=1576
Synopsis
Updated 2.4 kernel fixes USB storage
Issued: 2003-04-08
Updated: 2003-04-08
Topic
Updated kernel packages for Red Hat Linux 9 are now available.
The kernel package version 2.4.20-6 has a security hole in ptrace.
Using USB CD-ROMs on some ServerWorks systems can hang older versions
of the kernel.
Description
The Linux kernel handles the basic functions of the operating system.
A vulnerability in ptrace handling has been found in version 2.4.20-6
of the kernel. This vulnerability makes it possible for local users to
gain elevated (root) privileges without authorization. This vulnerability
is fixed in kernel-2.4.20-8 and kernel-2.4.20-9.
Please note this vulnerability only affects Red Hat Linux 9 boxed sets
manufactured for distribution within the United States. The part numbers,
which can be found on the bottom flap of the box, are RHF0120US and
RHF0121US. Copies of Red Hat Linux 9 oBTained through other means (sUCh as
from Red Hat Network, FTP, or international boxed sets) already contain
kernel-2.4.20-8 and are therefore not vulnerable to this issue.
An NPTL support defect in the kernel causes bind not to restart on
uniprocessor systems; this bug has been fixed in kernel-2.4.20-9.
USB mass storage devices (in particular, USB CD-ROMs) and the ohci driver
sometimes causes system hangs; this defect has been fixed.
Additionally, support for the tg3, e100, and e1000 drivers has been added.
Affected Channels
Red Hat Linux 9 i386
Fixes
(none)
KeyWords
bind, cdrom, netdump, ptrace, storage, usb
CVEs
CAN-2003-0127
References
(none)
Notes
(none)
本版相關討論:
http://www.linuxforum.net/forum/showthreaded.PHP?Cat=&Board=dns&Number=446758&page=0&view=eXPanded&sb=5&o=&fpart=