Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | |||
Test ID: | 1.3.6.1.4.1.25623.1.0.841480 |
Category: | Ubuntu Local Security Checks |
Title: | Ubuntu Update for linux-lts-quantal USN-1880-1 |
Summary: | The remote host is missing an update for the 'linux-lts-quantal'; package(s) announced via the referenced advisory. |
Description: | Summary: The remote host is missing an update for the 'linux-lts-quantal' package(s) announced via the referenced advisory. Vulnerability Insight: An information leak was discovered in the Linux kernel when inotify is used to monitor the /dev/ptmx device. A local user could exploit this flaw to discover keystroke timing and potentially discover sensitive information like password length. (CVE-2013-0160) An information leak was discovered in the Linux kernel's tkill and tgkill system calls when used from compat processes. A local user could exploit this flaw to examine potentially sensitive kernel memory. (CVE-2013-2141) A flaw was discovered in the Linux kernel's perf events subsystem for Intel Sandy Bridge and Ivy Bridge processors. A local user could exploit this flaw to cause a denial of service (system crash). (CVE-2013-2146) An information leak was discovered in the Linux kernel's crypto API. A local user could exploit this flaw to examine potentially sensitive information from the kernel's stack memory. (CVE-2013-3076) An information leak was discovered in the Linux kernel's rcvmsg path for ATM (Asynchronous Transfer Mode). A local user could exploit this flaw to examine potentially sensitive information from the kernel's stack memory. (CVE-2013-3222) An information leak was discovered in the Linux kernel's recvmsg path for ax25 address family. A local user could exploit this flaw to examine potentially sensitive information from the kernel's stack memory. (CVE-2013-3223) An information leak was discovered in the Linux kernel's recvmsg path for the bluetooth address family. A local user could exploit this flaw to examine potentially sensitive information from the kernel's stack memory. (CVE-2013-3224) An information leak was discovered in the Linux kernel's bluetooth rfcomm protocol support. A local user could exploit this flaw to examine potentially sensitive information from the kernel's stack memory. (CVE-2013-3225) An information leak was discovered in the Linux kernel's CAIF protocol implementation. A local user could exploit this flaw to examine potentially sensitive information from the kernel's stack memory. (CVE-2013-3227) An information leak was discovered in the Linux kernel's IRDA (infrared) support subsystem. A local user could exploit this flaw to examine potentially sensitive information from the kernel's stack memory. (CVE-2013-3228) An information leak was discovered in the Linux kernel's s390 - z/VM support. A local user could exploit this flaw to examine potentially sensitive information from the kernel's stack memory. (CVE-2013-3229) An information leak was discovered in the Linux kernel' ... Description truncated, please see the referenced URL(s) for more information. Affected Software/OS: linux-lts-quantal on Ubuntu 12.04 LTS Solution: Please Install the Updated Packages. CVSS Score: 4.9 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:N/A:N |
Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2013-0160 http://www.openwall.com/lists/oss-security/2013/01/08/3 SuSE Security Announcement: SUSE-SU-2013:0674 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00018.html SuSE Security Announcement: SUSE-SU-2013:1182 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00016.html SuSE Security Announcement: openSUSE-SU-2013:0395 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00004.html SuSE Security Announcement: openSUSE-SU-2013:0925 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00005.html SuSE Security Announcement: openSUSE-SU-2013:1187 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00018.html http://www.ubuntu.com/usn/USN-2128-1 http://www.ubuntu.com/usn/USN-2129-1 Common Vulnerability Exposure (CVE) ID: CVE-2013-2141 Debian Security Information: DSA-2766 (Google Search) http://www.debian.org/security/2013/dsa-2766 http://www.mandriva.com/security/advisories?name=MDVSA-2013:176 http://www.openwall.com/lists/oss-security/2013/06/04/10 RedHat Security Advisories: RHSA-2013:1801 http://rhn.redhat.com/errata/RHSA-2013-1801.html http://secunia.com/advisories/55055 SuSE Security Announcement: openSUSE-SU-2013:1971 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-12/msg00129.html http://www.ubuntu.com/usn/USN-1899-1 http://www.ubuntu.com/usn/USN-1900-1 Common Vulnerability Exposure (CVE) ID: CVE-2013-2146 http://www.openwall.com/lists/oss-security/2013/06/05/23 RedHat Security Advisories: RHSA-2013:1173 http://rhn.redhat.com/errata/RHSA-2013-1173.html Common Vulnerability Exposure (CVE) ID: CVE-2013-3076 http://lists.fedoraproject.org/pipermail/package-announce/2013-April/103750.html http://lists.fedoraproject.org/pipermail/package-announce/2013-May/104480.html http://www.openwall.com/lists/oss-security/2013/04/14/3 http://www.ubuntu.com/usn/USN-1837-1 Common Vulnerability Exposure (CVE) ID: CVE-2013-3222 https://lkml.org/lkml/2013/4/14/107 RedHat Security Advisories: RHSA-2013:1051 http://rhn.redhat.com/errata/RHSA-2013-1051.html Common Vulnerability Exposure (CVE) ID: CVE-2013-3223 Common Vulnerability Exposure (CVE) ID: CVE-2013-3224 Common Vulnerability Exposure (CVE) ID: CVE-2013-3225 Common Vulnerability Exposure (CVE) ID: CVE-2013-3227 Common Vulnerability Exposure (CVE) ID: CVE-2013-3228 Common Vulnerability Exposure (CVE) ID: CVE-2013-3229 Common Vulnerability Exposure (CVE) ID: CVE-2013-3230 Common Vulnerability Exposure (CVE) ID: CVE-2013-3231 RedHat Security Advisories: RHSA-2013:1645 http://rhn.redhat.com/errata/RHSA-2013-1645.html Common Vulnerability Exposure (CVE) ID: CVE-2013-3232 Common Vulnerability Exposure (CVE) ID: CVE-2013-3233 Common Vulnerability Exposure (CVE) ID: CVE-2013-3234 Common Vulnerability Exposure (CVE) ID: CVE-2013-3235 |
Copyright | Copyright (c) 2013 Greenbone Networks GmbH |
This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |