USN-1054-1 -- linux, linux-ec2 vulnerabilitiesID: oval:org.secpod.oval:def:700229 | Date: (C)2011-02-18 (M)2024-02-19 |
Class: PATCH | Family: unix |
Gleb Napatov discovered that KVM did not correctly check certain privileged operations. A local attacker with access to a guest kernel could exploit this to crash the host system, leading to a denial of service. Steve Chen discovered that setsockopt did not correctly check MSS values. A local attacker could make a specially crafted socket call to crash the system, leading to a denial of service. Dave Jones discovered that the mprotect system call did not correctly handle merged VMAs. A local attacker could exploit this to crash the system, leading to a denial of service. Vegard Nossum discovered that memory garbage collection was not handled correctly for active sockets. A local attacker could exploit this to allocate all available kernel memory, leading to a denial of service
Platform: |
Ubuntu 10.10 |
Ubuntu 10.04 |