[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

USN-1105-1 -- linux vulnerabilities

ID: oval:org.secpod.oval:def:700280Date: (C)2011-04-08   (M)2024-01-02
Class: PATCHFamily: unix




Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. Dan Rosenberg discovered that the socket filters did not correctly initialize structure memory. A local attacker could create malicious filters to read portions of kernel stack memory, leading to a loss of privacy. Dan Rosenberg discovered that certain iovec operations did not calculate page counts correctly. A local attacker could exploit this to crash the system, leading to a denial of service. Dan Rosenberg discovered that the SCSI subsystem did not correctly validate iov segments. A local attacker with access to a SCSI device could send specially crafted requests to crash the system, leading to a denial of service. Dan Rosenberg discovered multiple flaws in the X.25 facilities parsing. If a system was using X.25, a remote attacker could exploit this to crash the system, leading to a denial of service. Alan Cox discovered that the HCI UART driver did not correctly check if a write operation was available. A local attacker could exploit this flaw to gain root privileges. Nelson Elhage discovered that the kernel did not correctly handle process cleanup after triggering a recoverable kernel bug. If a local attacker were able to trigger certain kinds of kernel bugs, they could create a specially crafted process to gain root privileges. Tavis Ormandy discovered that the install_special_mapping function could bypass the mmap_min_addr restriction. A local attacker could exploit this to mmap 4096 bytes below the mmap_min_addr area, possibly improving the chances of performing NULL pointer dereference attacks

Platform:
Ubuntu 8.04
Product:
linux
Reference:
USN-1105-1
CVE-2010-4668
CVE-2010-4346
CVE-2010-4258
CVE-2010-4242
CVE-2010-4164
CVE-2010-4163
CVE-2010-4162
CVE-2010-4158
CVE-2010-4075
CVE    9
CVE-2010-4258
CVE-2010-4346
CVE-2010-4158
CVE-2010-4242
...
CPE    1
cpe:/o:ubuntu:ubuntu_linux:8.04

© SecPod Technologies