Test ID:	1.3.6.1.4.1.25623.1.0.70886
Category:	Ubuntu Local Security Checks
Title:	Ubuntu USN-1167-1 (linux-image-2.6.38-10-generic)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to linux-image-2.6.38-10-generic announced via advisory USN-1167-1. Details: Dan Rosenberg discovered that the Linux kernel TIPC implementation contained multiple integer signedness errors. A local attacker could exploit this to gain root privileges. (CVE-2010-3859) Dan Rosenberg discovered that the CAN protocol on 64bit systems did not correctly calculate the size of certain buffers. A local attacker could exploit this to crash the system or possibly execute arbitrary code as the root user. (CVE-2010-3874) Vasiliy Kulikov discovered that the Linux kernel X.25 implementation did not correctly clear kernel memory. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-3875) Vasiliy Kulikov discovered that the Linux kernel sockets implementation did not properly initialize certain structures. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-3876) Vasiliy Kulikov discovered that the TIPC interface did not correctly initialize certain structures. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. (CVE-2010-3877) Nelson Elhage discovered that the Linux kernel IPv4 implementation did not properly audit certain bytecodes in netlink messages. A local attacker could exploit this to cause the kernel to hang, leading to a denial of service. (CVE-2010-3880) Dan Rosenberg discovered that the socket filters did not correctly initialize structure memory. A local attacker could create malicious filters to read portions of kernel stack memory, leading to a loss of privacy. (CVE-2010-4158) Dan Rosenberg discovered that certain iovec operations did not calculate page counts correctly. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2010-4162) Dan Rosenberg discovered that the SCSI subsystem did not correctly validate iov segments. A local attacker with access to a SCSI device could send specially crafted requests to crash the system, leading to a denial of service. (CVE-2010-4163, CVE-2010-4668) Dan Rosenberg discovered multiple flaws in the X.25 facilities parsing. If a system was using X.25, a remote attacker could exploit this to crash the system, leading to a denial of service. (CVE-2010-4164) Steve Chen discovered that setsockopt did not correctly check MSS values. A local attacker could make a specially crafted socket call to crash the system, leading to a denial of service. (CVE-2010-4165) Dave Jones discovered that the mprotect system call did not correctly handle merged VMAs. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2010-4169) Dan Rosenberg discovered that the RDS protocol did not correctly check ioctl arguments. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2010-4175) Brad Spengler discovered that the kernel did not correctly account for userspace memory allocations during exec() calls. A local attacker could exploit this to consume all system memory, leading to a denial of service. (CVE-2010-4243) It was discovered that multithreaded exec did not handle CPU timers correctly. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2010-4248) Vegard Nossum discovered that memory garbage collection was not handled correctly for active sockets. A local attacker could exploit this to allocate all available kernel memory, leading to a denial of service. (CVE-2010-4249) It was discovered that named pipes did not correctly handle certain fcntl calls. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2010-4256) Nelson Elhage discovered that the kernel did not correctly handle process cleanup after triggering a recoverable kernel bug. If a local attacker were able to trigger certain kinds of kernel bugs, they could create a specially crafted process to gain root privileges. (CVE-2010-4258) Nelson Elhage discovered that Econet did not correctly handle AUN packets over UDP. A local attacker could send specially crafted traffic to crash the system, leading to a denial of service. (CVE-2010-4342) Tavis Ormandy discovered that the install_special_mapping function could bypass the mmap_min_addr restriction. A local attacker could exploit this to mmap 4096 bytes below the mmap_min_addr area, possibly improving the chances of performing NULL pointer dereference attacks. (CVE-2010-4346) Dan Rosenberg discovered that the OSS subsystem did not handle name termination correctly. A local attacker could exploit this crash the system or gain root privileges. (CVE-2010-4527) Dan Rosenberg discovered that IRDA did not correctly check the size of buffers. On non-x86 systems, a local attacker could exploit this to read kernel heap memory, leading to a loss of privacy. (CVE-2010-4529) Dan Rosenburg discovered that the CAN subsystem leaked kernel addresses into the /proc filesystem. A local attacker could use this to increase the chances of a successful memory corruption exploit. (CVE-2010-4565) Dan Carpenter discovered that the Infiniband driver did not correctly handle certain requests. A local user could exploit this to crash the system or potentially gain root privileges. (CVE-2010-4649, CVE-2011-1044) Goldwyn Rodrigues discovered that the OCFS2 filesystem did not correctly clear memory when writing certain file holes. A local attacker could exploit this to read uninitialized data from the disk, leading to a loss of privacy. (CVE-2011-0463) Dan Carpenter discovered that the TTPCI DVB driver did not check certain values during an ioctl. If the dvb-ttpci module was loaded, a local attacker could exploit this to crash the system, leading to a denial of service, or possibly gain root privileges. (CVE-2011-0521) Jens Kuehnel discovered that the InfiniBand driver contained a race condition. On systems using InfiniBand, a local attacker could send specially crafted requests to crash the system, leading to a denial of service. (CVE-2011-0695) Dan Rosenberg discovered that XFS did not correctly initialize memory. A local attacker could make crafted ioctl calls to leak portions of kernel stack memory, leading to a loss of privacy. (CVE-2011-0711) Rafael Dominguez Vega discovered that the caiaq Native Instruments USB driver did not correctly validate string lengths. A local attacker with physical access could plug in a specially crafted USB device to crash the system or potentially gain root privileges. (CVE-2011-0712) Kees Cook reported that /proc/pid/stat did not correctly filter certain memory locations. A local attacker could determine the memory layout of processes in an attempt to increase the chances of a successful memory corruption exploit. (CVE-2011-0726) It was discoverd that transparent huge page support did not correctly handle temporary stacks. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2011-0999) Timo Warns discovered that MAC partition parsing routines did not correctly calculate block counts. A local attacker with physical access could plug in a specially crafted block device to crash the system or potentially gain root privileges. (CVE-2011-1010) Timo Warns discovered that LDM partition parsing routines did not correctly calculate block counts. A local attacker with physical access could plug in a specially crafted block device to crash the system, leading to a denial of service. (CVE-2011-1012) Matthiew Herrb discovered that the drm modeset interface did not correctly handle a signed comparison. A local attacker could exploit this to crash the system or possibly gain root privileges. (CVE-2011-1013) Marek Ol??k discovered that the Radeon GPU drivers did not correctly validate certain registers. On systems with specific hardware, a local attacker could exploit this to write to arbitrary video memory. (CVE-2011-1016) Timo Warns discovered that the LDM disk partition handling code did not correctly handle certain values. By inserting a specially crafted disk device, a local attacker could exploit this to gain root privileges. (CVE-2011-1017) Vasiliy Kulikov discovered that the CAP_SYS_MODULE capability was not needed to load kernel modules. A local attacker with the CAP_NET_ADMIN capability could load existing kernel modules, possibly increasing the attack surface available on the system. (CVE-2011-1019) It was discovered that the key-based DNS resolver did not correctly handle certain error states. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2011-1076) Nelson Elhage discovered that the epoll subsystem did not correctly handle certain structures. A local attacker could create malicious requests that would hang the system, leading to a denial of service. (CVE-2011-1082) Nelson Elhage discovered that the epoll subsystem did not correctly handle certain structures. A local attacker could create malicious requests that would consume large amounts of CPU, leading to a denial of service. (CVE-2011-1083) Neil Horman discovered that NFSv4 did not correctly handle certain orders of operation with ACL data. A remote attacker with access to an NFSv4 mount could exploit this to crash the system, leading to a denial of service. (CVE-2011-1090) Timo Warns discovered that OSF partition parsing routines did not correctly clear memory. A local attacker with physical access could plug in a specially crafted block device to read kernel memory, leading to a loss of privacy. (CVE-2011-1163) Dan Rosenberg discovered that some ALSA drivers did not correctly check the adapter index during ioctl calls. If this driver was loaded, a local attacker could make a specially crafted ioctl call to gain root privileges. (CVE-2011-1169) Vasiliy Kulikov discovered that the netfilter code did not check certain strings copied from userspace. A local attacker with netfilter access could exploit this to read kernel memory or crash the system, leading to a denial of service. (CVE-2011-1170, CVE-2011-1171, CVE-2011-1172, CVE-2011-2534) Vasiliy Kulikov discovered that the Acorn Universal Networking driver did not correctly initialize memory. A remote attacker could send specially crafted traffic to read kernel stack memory, leading to a loss of privacy. (CVE-2011-1173) Julien Tinnes discovered that the kernel did not correctly validate the signal structure from tkill(). A local attacker could exploit this to send signals to arbitrary threads, possibly bypassing expected restrictions. (CVE-2011-1182) Dan Rosenberg discovered that MPT devices did not correctly validate certain values in ioctl calls. If these drivers were loaded, a local attacker could exploit this to read arbitrary kernel memory, leading to a loss of privacy. (CVE-2011-1494, CVE-2011-1495) Tavis Ormandy discovered that the pidmap function did not correctly handle large requests. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2011-1593) Oliver Hartkopp and Dave Jones discovered that the CAN network driver did not correctly validate certain socket structures. If this driver was loaded, a local attacker could crash the system, leading to a denial of service. (CVE-2011-1598, CVE-2011-1748) Vasiliy Kulikov discovered that the AGP driver did not check certain ioctl values. A local attacker with access to the video subsystem could exploit this to crash the system, leading to a denial of service, or possibly gain root privileges. (CVE-2011-1745, CVE-2011-2022) Vasiliy Kulikov discovered that the AGP driver did not check the size of certain memory allocations. A local attacker with access to the video subsystem could exploit this to run the system out of memory, leading to a denial of service. (CVE-2011-1746, CVE-2011-1747) Dan Rosenberg discovered that the DCCP stack did not correctly handle certain packet structures. A remote attacker could exploit this to crash the system, leading to a denial of service. (CVE-2011-1770) Solution: The problem can be corrected by updating your system to the following package versions: Ubuntu 11.04: linux-image-2.6.38-10-generic 2.6.38-10.46 linux-image-2.6.38-10-generic-pae 2.6.38-10.46 linux-image-2.6.38-10-omap 2.6.38-10.46 linux-image-2.6.38-10-powerpc 2.6.38-10.46 linux-image-2.6.38-10-powerpc-smp 2.6.38-10.46 linux-image-2.6.38-10-powerpc64-smp 2.6.38-10.46 linux-image-2.6.38-10-server 2.6.38-10.46 linux-image-2.6.38-10-versatile 2.6.38-10.46 linux-image-2.6.38-10-virtual 2.6.38-10.46 http://www.securityspace.com/smysecure/catid.html?in=USN-1167-1 CVSS Score: 7.8 CVSS Vector: AV:L/AC:L/Au:NR/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-3859 20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console http://www.securityfocus.com/archive/1/520102/100/0/threaded 42789 http://secunia.com/advisories/42789 42963 http://secunia.com/advisories/42963 44354 http://www.securityfocus.com/bid/44354 46397 http://secunia.com/advisories/46397 ADV-2011-0024 http://www.vupen.com/english/advisories/2011/0024 ADV-2011-0168 http://www.vupen.com/english/advisories/2011/0168 DSA-2126 http://www.debian.org/security/2010/dsa-2126 MDVSA-2011:029 http://www.mandriva.com/security/advisories?name=MDVSA-2011:029 RHSA-2011:0004 http://www.redhat.com/support/errata/RHSA-2011-0004.html RHSA-2011:0162 http://www.redhat.com/support/errata/RHSA-2011-0162.html [netdev] 20101021 TIPC security issues http://marc.info/?l=linux-netdev&m=128770476511716&w=2 [netdev] 20101027 Re: [PATCH 1/4] tipc: Fix bugs in tipc_msg_calc_data_size() http://www.spinics.net/lists/netdev/msg145248.html [netdev] 20101027 [PATCH 0/4] RFC: tipc int vs size_t fixes http://www.spinics.net/lists/netdev/msg145247.html [netdev] 20101027 [PATCH 1/4] tipc: Fix bugs in tipc_msg_calc_data_size() http://www.spinics.net/lists/netdev/msg145263.html [netdev] 20101027 [PATCH 2/4] tipc: Fix bugs in tipc_msg_build() http://www.spinics.net/lists/netdev/msg145265.html [netdev] 20101027 [PATCH 3/4] tipc: Update arguments to use size_t for iovec array sizes http://www.spinics.net/lists/netdev/msg145262.html [netdev] 20101027 [PATCH 4/4] tipc: Fix bugs in sending of large amounts of byte-stream data http://www.spinics.net/lists/netdev/msg145264.html [netdev] 20101028 Re: [PATCH 2/4] tipc: Fix bugs in tipc_msg_build() http://www.spinics.net/lists/netdev/msg145352.html [oss-security] 20101022 CVE request: kernel: heap overflow in TIPC http://www.openwall.com/lists/oss-security/2010/10/22/2 [oss-security] 20101022 Re: CVE request: kernel: heap overflow in TIPC http://www.openwall.com/lists/oss-security/2010/10/22/5 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=253eacc070b114c2ec1f81b067d2fed7305467b0 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8acfe468b0384e834a303f08ebc4953d72fb690a http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36.2 http://www.vmware.com/security/advisories/VMSA-2011-0012.html https://bugzilla.redhat.com/show_bug.cgi?id=645867 Common Vulnerability Exposure (CVE) ID: CVE-2010-3874 42745 http://secunia.com/advisories/42745 42778 http://secunia.com/advisories/42778 42801 http://secunia.com/advisories/42801 42890 http://secunia.com/advisories/42890 42932 http://secunia.com/advisories/42932 ADV-2010-3321 http://www.vupen.com/english/advisories/2010/3321 ADV-2011-0012 http://www.vupen.com/english/advisories/2011/0012 ADV-2011-0124 http://www.vupen.com/english/advisories/2011/0124 ADV-2011-0298 http://www.vupen.com/english/advisories/2011/0298 FEDORA-2010-18983 http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052513.html RHSA-2010:0958 http://www.redhat.com/support/errata/RHSA-2010-0958.html RHSA-2011:0007 http://www.redhat.com/support/errata/RHSA-2011-0007.html SUSE-SA:2011:001 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00000.html SUSE-SA:2011:002 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00001.html SUSE-SA:2011:004 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00004.html SUSE-SA:2011:007 http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html [netdev] 20101102 [SECURITY] CAN info leak/minor heap overflow http://www.spinics.net/lists/netdev/msg145791.html [netdev] 20101110 can-bcm: fix minor heap overflow http://www.spinics.net/lists/netdev/msg146469.html [oss-security] 20101103 CVE request: kernel: CAN information leak http://openwall.com/lists/oss-security/2010/11/03/3 [oss-security] 20101104 Re: CVE request: kernel: CAN information leak http://openwall.com/lists/oss-security/2010/11/04/4 [oss-security] 20101220 CVE request: kernel: CAN information leak, 2nd attempt http://openwall.com/lists/oss-security/2010/12/20/2 [oss-security] 20101220 Re: CVE request: kernel: CAN information leak, 2nd attempt http://openwall.com/lists/oss-security/2010/12/20/3 http://openwall.com/lists/oss-security/2010/12/20/4 http://openwall.com/lists/oss-security/2010/12/20/5 http://openwall.com/lists/oss-security/2010/12/21/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=0597d1b99fcfc2c0eada09a698f85ed413d4ba84 https://bugzilla.redhat.com/show_bug.cgi?id=649695 Common Vulnerability Exposure (CVE) ID: CVE-2010-3875 44630 http://www.securityfocus.com/bid/44630 MDVSA-2011:051 http://www.mandriva.com/security/advisories?name=MDVSA-2011:051 [netdev] 20101031 [PATCH 1/3] net: ax25: fix information leak to userland http://marc.info/?l=linux-netdev&m=128854507120898&w=2 [oss-security] 20101102 CVE request: kernel stack infoleaks http://openwall.com/lists/oss-security/2010/11/02/7 [oss-security] 20101104 Re: CVE request: kernel stack infoleaks http://openwall.com/lists/oss-security/2010/11/04/5 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fe10ae53384e48c51996941b7720ee16995cbcb7 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.37-rc2 https://bugzilla.redhat.com/show_bug.cgi?id=649713 Common Vulnerability Exposure (CVE) ID: CVE-2010-3876 [netdev] 20101031 [PATCH 2/3] net: packet: fix information leak to userland http://marc.info/?l=linux-netdev&m=128854507220908&w=2 [oss-security] 20101102 Re: CVE request: kernel stack infoleaks http://openwall.com/lists/oss-security/2010/11/02/10 http://openwall.com/lists/oss-security/2010/11/02/12 http://openwall.com/lists/oss-security/2010/11/02/9 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=67286640f638f5ad41a946b9a3dc75327950248f https://bugzilla.redhat.com/show_bug.cgi?id=649715 Common Vulnerability Exposure (CVE) ID: CVE-2010-3877 42884 http://secunia.com/advisories/42884 RHSA-2011:0017 http://www.redhat.com/support/errata/RHSA-2011-0017.html [netdev] 20101031 [PATCH 3/3] net: tipc: fix information leak to userland http://marc.info/?l=linux-netdev&m=128854507420917&w=2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=88f8a5e3e7defccd3925cabb1ee4d3994e5cdb52 https://bugzilla.redhat.com/show_bug.cgi?id=649717 kernel-getname-info-disc(64578) https://exchange.xforce.ibmcloud.com/vulnerabilities/64578 Common Vulnerability Exposure (CVE) ID: CVE-2010-3880 42126 http://secunia.com/advisories/42126 44665 http://www.securityfocus.com/bid/44665 [netdev] 20101103 [PATCH 2/2] inet_diag: Make sure we actually run the same bytecode we audited. http://www.spinics.net/lists/netdev/msg145899.html [oss-security] 20101104 CVE request: kernel: logic error in INET_DIAG bytecode auditing http://openwall.com/lists/oss-security/2010/11/04/9 [oss-security] 20101105 Re: CVE request: kernel: logic error in INET_DIAG bytecode auditing http://openwall.com/lists/oss-security/2010/11/05/3 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=22e76c849d505d87c5ecf3d3e6742a65f0ff4860 https://bugzilla.redhat.com/show_bug.cgi?id=651264 Common Vulnerability Exposure (CVE) ID: CVE-2010-4158 20101109 Kernel 0-day http://lists.grok.org.uk/pipermail/full-disclosure/2010-November/077321.html http://www.securityfocus.com/archive/1/514705 20101118 Re: Kernel 0-day http://www.securityfocus.com/archive/1/514845 43291 http://secunia.com/advisories/43291 44758 http://www.securityfocus.com/bid/44758 ADV-2011-0375 http://www.vupen.com/english/advisories/2011/0375 SUSE-SA:2010:060 http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00004.html SUSE-SA:2011:008 http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00002.html [netdev] 20101109 [PATCH] Prevent reading uninitialized memory with socket filters http://www.spinics.net/lists/netdev/msg146361.html http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=57fe93b374a6b8711995c2d466c502af9f3a08bb https://bugzilla.redhat.com/show_bug.cgi?id=651698 Common Vulnerability Exposure (CVE) ID: CVE-2010-4162 44793 http://www.securityfocus.com/bid/44793 [oss-security] 20101110 CVE request: kernel: Multiple DoS issues in block layer http://openwall.com/lists/oss-security/2010/11/10/18 [oss-security] 20101112 Re: CVE request: kernel: Multiple DoS issues in block layer http://openwall.com/lists/oss-security/2010/11/12/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=cb4644cac4a2797afc847e6c92736664d4b0ea34 https://bugzilla.redhat.com/show_bug.cgi?id=652529 Common Vulnerability Exposure (CVE) ID: CVE-2010-4163 [oss-security] 20101129 Re: CVE request: kernel: Multiple DoS issues in block layer http://openwall.com/lists/oss-security/2010/11/29/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=9284bcf4e335e5f18a8bc7b26461c33ab60d0689 https://bugzilla.redhat.com/show_bug.cgi?id=652957 Common Vulnerability Exposure (CVE) ID: CVE-2010-4668 BugTraq ID: 45660 http://www.securityfocus.com/bid/45660 http://lkml.org/lkml/2010/11/29/70 http://lkml.org/lkml/2010/11/29/68 http://openwall.com/lists/oss-security/2010/11/30/4 http://openwall.com/lists/oss-security/2010/11/30/7 XForce ISS Database: linux-blkrqmapuseriov-dos(64496) https://exchange.xforce.ibmcloud.com/vulnerabilities/64496 Common Vulnerability Exposure (CVE) ID: CVE-2010-4164 45055 http://www.securityfocus.com/bid/45055 [netdev] 20101111 [SECURITY] [PATCH] Prevent crashing when parsing bad X.25 http://marc.info/?l=linux-netdev&m=128951543005554&w=2 [oss-security] 20101111 CVE request: kernel: remote DoS in X.25 http://openwall.com/lists/oss-security/2010/11/11/2 [oss-security] 20101112 Re: CVE request: kernel: remote DoS in X.25 http://openwall.com/lists/oss-security/2010/11/12/3 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=5ef41308f94dcbb3b7afc56cdef1c2ba53fa5d2f https://bugzilla.redhat.com/show_bug.cgi?id=652517 Common Vulnerability Exposure (CVE) ID: CVE-2010-4165 44830 http://www.securityfocus.com/bid/44830 69241 http://www.osvdb.org/69241 8111 http://securityreason.com/securityalert/8111 8123 http://securityreason.com/securityalert/8123 [netdev] 20101110 Re: possible kernel oops from user MSS http://www.spinics.net/lists/netdev/msg146495.html [netdev] 20101110 possible kernel oops from user MSS http://www.spinics.net/lists/netdev/msg146405.html [oss-security] 20101112 CVE request: kernel: possible kernel oops from user MSS http://www.openwall.com/lists/oss-security/2010/11/12/1 [oss-security] 20101112 Re: CVE request: kernel: possible kernel oops from user MSS http://www.openwall.com/lists/oss-security/2010/11/12/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7a1abd08d52fdeddb3e9a5a33f2f15cc6a5674d2 https://bugzilla.redhat.com/show_bug.cgi?id=652508 Common Vulnerability Exposure (CVE) ID: CVE-2010-4169 44861 http://www.securityfocus.com/bid/44861 [oss-security] 20101115 CVE request: kernel: perf bug http://marc.info/?l=oss-security&m=128979684911295&w=2 [oss-security] 20101115 Re: CVE request: kernel: perf bug http://marc.info/?l=oss-security&m=128984344103497&w=2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=63bfd7384b119409685a17d5c58f0b56e5dc03da https://bugzilla.redhat.com/show_bug.cgi?id=651671 kernel-perfeventmmap-dos(63316) https://exchange.xforce.ibmcloud.com/vulnerabilities/63316 Common Vulnerability Exposure (CVE) ID: CVE-2010-4175 44921 http://www.securityfocus.com/bid/44921 [linux-netdev] 20101117 [PATCH] Integer overflow in RDS cmsg handling http://marc.info/?l=linux-netdev&m=129001184803080&w=2 [oss-security] 20101117 CVE request: kernel: integer overflow in RDS http://www.openwall.com/lists/oss-security/2010/11/17/8 [oss-security] 20101118 Re: CVE request: kernel: integer overflow in RDS http://www.openwall.com/lists/oss-security/2010/11/18/1 kernel-rdscmsgrdmaargs-dos(64618) https://exchange.xforce.ibmcloud.com/vulnerabilities/64618 Common Vulnerability Exposure (CVE) ID: CVE-2010-4243 15619 http://www.exploit-db.com/exploits/15619 45004 http://www.securityfocus.com/bid/45004 [linux-kernel] 20100827 [PATCH] exec argument expansion can inappropriately trigger OOM-killer http://lkml.org/lkml/2010/8/27/429 [linux-kernel] 20100830 Re: [PATCH] exec argument expansion can inappropriately trigger OOM-killer http://lkml.org/lkml/2010/8/29/206 http://lkml.org/lkml/2010/8/30/138 http://lkml.org/lkml/2010/8/30/378 [linux-kernel] 20101130 [PATCH 1/2] exec: make argv/envp memory visible to oom-killer http://linux.derkeiler.com/Mailing-Lists/Kernel/2010-11/msg13278.html [oss-security] 20101122 CVE request: kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads http://openwall.com/lists/oss-security/2010/11/22/6 [oss-security] 20101122 Re: CVE request: kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads http://openwall.com/lists/oss-security/2010/11/22/15 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=3c77f845722158206a7209c45ccddc264d19319c http://grsecurity.net/~spender/64bit_dos.c http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.37 https://bugzilla.redhat.com/show_bug.cgi?id=625688 linux-kernel-execve-dos(64700) https://exchange.xforce.ibmcloud.com/vulnerabilities/64700 Common Vulnerability Exposure (CVE) ID: CVE-2010-4248 45028 http://www.securityfocus.com/bid/45028 [oss-security] 20101123 CVE request: kernel: posix-cpu-timers: workaround to suppress the problems with mt exec http://www.openwall.com/lists/oss-security/2010/11/23/2 [oss-security] 20101124 Re: CVE request: kernel: posix-cpu-timers: workaround to suppress the problems with mt exec http://www.openwall.com/lists/oss-security/2010/11/24/9 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=e0a70217107e6f9844628120412cb27bb4cea194 https://bugzilla.redhat.com/show_bug.cgi?id=656264 Common Vulnerability Exposure (CVE) ID: CVE-2010-4249 15622 http://www.exploit-db.com/exploits/15622/ 42354 http://secunia.com/advisories/42354 45037 http://www.securityfocus.com/bid/45037 [linux-kernel] 20101123 Unix socket local DOS (OOM) http://lkml.org/lkml/2010/11/23/395 [linux-kernel] 20101124 [PATCH net-next-2.6] scm: lower SCM_MAX_FD http://lkml.org/lkml/2010/11/23/450 [linux-kernel] 20101125 Simple kernel attack using socketpair. easy, 100% reproductiblle, works under guest. no way to protect :( http://lkml.org/lkml/2010/11/25/8 [netdev] 20101124 [PATCH] af_unix: limit unix_tot_inflight http://marc.info/?l=linux-netdev&m=129059035929046&w=2 [oss-security] 20101124 CVE request: kernel: unix socket local dos http://www.openwall.com/lists/oss-security/2010/11/24/2 [oss-security] 20101124 Re: CVE request: kernel: unix socket local dos http://www.openwall.com/lists/oss-security/2010/11/24/10 http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git%3Ba=commit%3Bh=9915672d41273f5b77f1b3c29b391ffb7732b84b http://www.kernel.org/pub/linux/kernel/v2.6/next/patch-v2.6.37-rc3-next-20101125.bz2 https://bugzilla.redhat.com/show_bug.cgi?id=656756 Common Vulnerability Exposure (CVE) ID: CVE-2010-4256 [oss-security] 20101130 CVE request: kernel: pipe_fcntl local DoS http://openwall.com/lists/oss-security/2010/11/30/6 [oss-security] 20101130 Re: CVE request: kernel: pipe_fcntl local DoS http://openwall.com/lists/oss-security/2010/11/30/9 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c66fb347946ebdd5b10908866ecc9fa05ee2cf3d Common Vulnerability Exposure (CVE) ID: CVE-2010-4258 20101207 Linux kernel exploit http://archives.neohapsis.com/archives/fulldisclosure/2010-12/0086.html 43056 http://secunia.com/advisories/43056 ADV-2011-0213 http://www.vupen.com/english/advisories/2011/0213 SUSE-SA:2011:005 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00007.html [linux-kernel] 20101201 Re: [PATCH v2] do_exit(): Make sure we run with get_fs() == USER_DS. https://lkml.org/lkml/2010/12/1/543 [linux-kernel] 20101201 [PATCH v2] do_exit(): Make sure we run with get_fs() == USER_DS. http://marc.info/?l=linux-kernel&m=129117048916957&w=2 [oss-security] 20101202 CVE request: kernel: failure to revert address limit override in OOPS error path http://openwall.com/lists/oss-security/2010/12/02/2 [oss-security] 20101202 Re: CVE request: kernel: failure to revert address limit override in OOPS error path http://openwall.com/lists/oss-security/2010/12/02/7 [oss-security] 20101202 Re: kernel: Dangerous interaction between clear_child_tid, set_fs(), and kernel oopses http://openwall.com/lists/oss-security/2010/12/02/4 [oss-security] 20101202 kernel: Dangerous interaction between clear_child_tid, set_fs(), and kernel oopses http://openwall.com/lists/oss-security/2010/12/02/3 [oss-security] 20101208 Re: kernel: Dangerous interaction between clear_child_tid, set_fs(), and kernel oopses http://openwall.com/lists/oss-security/2010/12/08/4 http://openwall.com/lists/oss-security/2010/12/08/5 http://openwall.com/lists/oss-security/2010/12/08/9 [oss-security] 20101209 Re: kernel: Dangerous interaction between clear_child_tid, set_fs(), and kernel oopses http://openwall.com/lists/oss-security/2010/12/09/14 http://openwall.com/lists/oss-security/2010/12/09/4 http://blog.nelhage.com/2010/12/cve-2010-4258-from-dos-to-privesc/ http://code.google.com/p/chromium-os/issues/detail?id=10234 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=33dd94ae1ccbfb7bf0fb6c692bc3d1c4269e6177 http://googlechromereleases.blogspot.com/2011/01/chrome-os-beta-channel-update.html https://bugzilla.redhat.com/show_bug.cgi?id=659567 Common Vulnerability Exposure (CVE) ID: CVE-2010-4342 45321 http://www.securityfocus.com/bid/45321 [netdev] 20101209 NULL dereference in econet AUN-over-UDP receive http://marc.info/?l=linux-netdev&m=129185496013580&w=2 [netdev] 20101209 Re: NULL dereference in econet AUN-over-UDP receive http://marc.info/?l=linux-netdev&m=129186011218615&w=2 [oss-security] 20101208 CVE request: kernel: NULL pointer dereference in AF_ECONET http://openwall.com/lists/oss-security/2010/12/09/1 [oss-security] 20101209 Re: CVE request: kernel: NULL pointer dereference in AF_ECONET http://openwall.com/lists/oss-security/2010/12/09/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=4e085e76cbe558b79b54cbab772f61185879bc64 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.37-rc6 Common Vulnerability Exposure (CVE) ID: CVE-2010-4346 42570 http://secunia.com/advisories/42570 45323 http://www.securityfocus.com/bid/45323 [linux-kernel] 20101209 [PATCH] install_special_mapping skips security_file_mmap check. https://lkml.org/lkml/2010/12/9/222 [oss-security] 20101209 Re: [taviso@cmpxchg8b.com: [PATCH] install_special_mapping skips security_file_mmap check.] http://openwall.com/lists/oss-security/2010/12/09/13 [oss-security] 20101209 [taviso@cmpxchg8b.com: [PATCH] install_special_mapping skips security_file_mmap check.] http://openwall.com/lists/oss-security/2010/12/09/12 [oss-security] 20101210 Re: Subject: CVE request: kernel: install_special_mapping skips security_file_mmap check http://openwall.com/lists/oss-security/2010/12/10/3 [oss-security] 20101210 Subject: CVE request: kernel: install_special_mapping skips security_file_mmap check http://openwall.com/lists/oss-security/2010/12/10/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=462e635e5b73ba9a4c03913b77138cd57ce4b050 https://bugzilla.redhat.com/show_bug.cgi?id=662189 Common Vulnerability Exposure (CVE) ID: CVE-2010-4527 42765 http://secunia.com/advisories/42765 45629 http://www.securityfocus.com/bid/45629 [oss-security] 20101230 CVE request: kernel: buffer overflow in OSS load_mixer_volumes http://openwall.com/lists/oss-security/2010/12/31/1 [oss-security] 20101231 Re: CVE request: kernel: buffer overflow in OSS load_mixer_volumes http://openwall.com/lists/oss-security/2010/12/31/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d81a12bc29ae4038770e05dce4ab7f26fd5880fb http://xorl.wordpress.com/2011/01/09/cve-2010-4527-linux-kernel-oss-sound-card-driver-buffer-overflow/ https://bugzilla.redhat.com/show_bug.cgi?id=667615 Common Vulnerability Exposure (CVE) ID: CVE-2010-4529 BugTraq ID: 45556 http://www.securityfocus.com/bid/45556 http://www.spinics.net/lists/netdev/msg150842.html http://openwall.com/lists/oss-security/2010/12/23/1 http://openwall.com/lists/oss-security/2011/01/03/1 http://secunia.com/advisories/42684 SuSE Security Announcement: SUSE-SA:2011:008 (Google Search) Common Vulnerability Exposure (CVE) ID: CVE-2010-4565 BugTraq ID: 44661 http://www.securityfocus.com/bid/44661 https://bugzilla.redhat.com/show_bug.cgi?id=664544 http://www.spinics.net/lists/netdev/msg145796.html http://www.spinics.net/lists/netdev/msg146270.html http://www.spinics.net/lists/netdev/msg146468.html Common Vulnerability Exposure (CVE) ID: CVE-2010-4649 46073 http://www.securityfocus.com/bid/46073 RHSA-2011:0927 http://rhn.redhat.com/errata/RHSA-2011-0927.html http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7182afea8d1afd432a17c18162cc3fd441d0da93 https://bugzilla.redhat.com/show_bug.cgi?id=667916 Common Vulnerability Exposure (CVE) ID: CVE-2011-1044 BugTraq ID: 46488 http://www.securityfocus.com/bid/46488 RedHat Security Advisories: RHSA-2011:0927 XForce ISS Database: kernel-ibuverbspollcq-info-disclosure(65563) https://exchange.xforce.ibmcloud.com/vulnerabilities/65563 Common Vulnerability Exposure (CVE) ID: CVE-2011-0463 http://oss.oracle.com/pipermail/ocfs2-devel/2011-February/007846.html http://secunia.com/advisories/43966 http://www.ubuntu.com/usn/USN-1146-1 Common Vulnerability Exposure (CVE) ID: CVE-2011-0521 1025195 http://www.securitytracker.com/id?1025195 43009 http://secunia.com/advisories/43009 45986 http://www.securityfocus.com/bid/45986 [oss-security] 20110125 Linux kernel av7110 negative array offset http://openwall.com/lists/oss-security/2011/01/24/2 [oss-security] 20110125 Re: Linux kernel av7110 negative array offset http://openwall.com/lists/oss-security/2011/01/25/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=cb26a24ee9706473f31d34cc259f4dcf45cd0644 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.38-rc2 kernel-av7110ca-privilege-escalation(64988) https://exchange.xforce.ibmcloud.com/vulnerabilities/64988 Common Vulnerability Exposure (CVE) ID: CVE-2011-0695 43693 http://secunia.com/advisories/43693 46839 http://www.securityfocus.com/bid/46839 USN-1146-1 [linux-rdma] 20110223 [PATCH 1/2] rdma/cm: Fix crash in request handlers http://www.spinics.net/lists/linux-rdma/msg07447.html [linux-rdma] 20110223 [PATCH 2/2] ib/cm: Bump reference count on cm_id before invoking callback http://www.spinics.net/lists/linux-rdma/msg07448.html [oss-security] 20110311 CVE-2011-0695 kernel: panic in ib_cm:cm_work_handler http://www.openwall.com/lists/oss-security/2011/03/11/1 kernel-infiniband-dos(66056) https://exchange.xforce.ibmcloud.com/vulnerabilities/66056 Common Vulnerability Exposure (CVE) ID: CVE-2011-0711 46417 http://www.securityfocus.com/bid/46417 70950 http://osvdb.org/70950 [oss-security] 20110216 CVE request - kernel: xfs infoleak http://openwall.com/lists/oss-security/2011/02/16/4 [oss-security] 20110216 Re: CVE request - kernel: xfs infoleak http://openwall.com/lists/oss-security/2011/02/16/10 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=3a3675b7f23f83ca8c67c9c2b6edf707fd28d1ba http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.38-rc6-git3.log https://bugzilla.redhat.com/show_bug.cgi?id=677260 https://patchwork.kernel.org/patch/555461/ Common Vulnerability Exposure (CVE) ID: CVE-2011-0712 46419 http://www.securityfocus.com/bid/46419 [oss-security] 20110216 Re: kernel: ALSA: caiaq - Fix possible string-buffer overflow http://www.openwall.com/lists/oss-security/2011/02/16/11 http://www.openwall.com/lists/oss-security/2011/02/16/12 [oss-security] 20110216 kernel: ALSA: caiaq - Fix possible string-buffer overflow http://www.openwall.com/lists/oss-security/2011/02/16/5 http://git.kernel.org/?p=linux/kernel/git/tiwai/sound-2.6.git%3Ba=commit%3Bh=eaae55dac6b64c0616046436b294e69fc5311581 http://www.kernel.org/pub/linux/kernel/v2.6/next/patch-v2.6.38-rc4-next-20110215.bz2 https://bugzilla.redhat.com/show_bug.cgi?id=677881 kernel-usbdevice-bo(65461) https://exchange.xforce.ibmcloud.com/vulnerabilities/65461 Common Vulnerability Exposure (CVE) ID: CVE-2011-0726 BugTraq ID: 47791 http://www.securityfocus.com/bid/47791 https://lkml.org/lkml/2011/3/11/380 http://www.spinics.net/lists/mm-commits/msg82726.html RedHat Security Advisories: RHSA-2011:0833 http://rhn.redhat.com/errata/RHSA-2011-0833.html Common Vulnerability Exposure (CVE) ID: CVE-2011-0999 46442 http://www.securityfocus.com/bid/46442 [oss-security] 20110217 CVE request - kernel: thp: prevent hugepages during args/env copying into the user stack http://openwall.com/lists/oss-security/2011/02/17/3 [oss-security] 20110217 Re: CVE request - kernel: thp: prevent hugepages during args/env copying into the user stack http://openwall.com/lists/oss-security/2011/02/17/6 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a7d6e4ecdb7648478ddec76d30d87d03d6e22b31 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.38-rc5 https://bugzilla.redhat.com/show_bug.cgi?id=678209 kernel-hugepages-dos(65535) https://exchange.xforce.ibmcloud.com/vulnerabilities/65535 Common Vulnerability Exposure (CVE) ID: CVE-2011-1010 1025126 http://www.securitytracker.com/id?1025126 20110223 [PRE-SA-2011-01] Multiple Linux kernel vulnerabilities in partition handling code of LDM and MAC partition tables http://www.securityfocus.com/archive/1/516615/100/0/threaded 46492 http://www.securityfocus.com/bid/46492 8115 http://securityreason.com/securityalert/8115 [oss-security] 20110222 CVE request: kernel: fs/partitions: validate map_count in mac partition tables http://openwall.com/lists/oss-security/2011/02/22/3 [oss-security] 20110222 Re: CVE request: kernel: fs/partitions: validate map_count in mac partition tables http://openwall.com/lists/oss-security/2011/02/22/11 http://openwall.com/lists/oss-security/2011/02/22/15 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fa7ea87a057958a8b7926c1a60a3ca6d696328ed http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.37.2 http://www.pre-cert.de/advisories/PRE-SA-2011-01.txt https://bugzilla.redhat.com/show_bug.cgi?id=679282 kernel-map-dos(65643) https://exchange.xforce.ibmcloud.com/vulnerabilities/65643 Common Vulnerability Exposure (CVE) ID: CVE-2011-1012 1025127 http://www.securitytracker.com/id?1025127 46512 http://www.securityfocus.com/bid/46512 [mm-commits] 20110222 + ldm-corrupted-partition-table-can-cause-kernel-oops.patch added to -mm tree http://www.spinics.net/lists/mm-commits/msg82429.html [oss-security] 20110223 CVE request: kernel: Corrupted LDM partition table issues http://openwall.com/lists/oss-security/2011/02/23/4 [oss-security] 20110223 Re: CVE request: kernel: Corrupted LDM partition table issues http://openwall.com/lists/oss-security/2011/02/23/21 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=294f6cf48666825d23c9372ef37631232746e40d http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.38-rc6-git6.log Common Vulnerability Exposure (CVE) ID: CVE-2011-1013 47639 http://www.securityfocus.com/bid/47639 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1922756124ddd53846877416d92ba4a802bc658f http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38 http://www.openbsd.org/cgi-bin/cvsweb/src/sys/dev/pci/drm/drm_irq.c http://www.openbsd.org/cgi-bin/cvsweb/src/sys/dev/pci/drm/drm_irq.c.diff?r1=1.41%3Br2=1.42%3Bf=h https://bugzilla.redhat.com/show_bug.cgi?id=679925 kernel-drmioctl-priv-escalation(67199) https://exchange.xforce.ibmcloud.com/vulnerabilities/67199 Common Vulnerability Exposure (CVE) ID: CVE-2011-1016 46557 http://www.securityfocus.com/bid/46557 [oss-security] 20110224 CVE request: kernel: drm/radeon/kms: check AA resolve registers on r300 http://openwall.com/lists/oss-security/2011/02/24/3 [oss-security] 20110224 Re: CVE request: kernel: drm/radeon/kms: check AA resolve registers on r300 http://openwall.com/lists/oss-security/2011/02/24/11 [oss-security] 20110225 Re: CVE request: kernel: drm/radeon/kms: check AA resolve registers on r300 http://openwall.com/lists/oss-security/2011/02/25/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fff1ce4dc6113b6fdc4e3a815ca5fd229408f8ef https://bugzilla.redhat.com/show_bug.cgi?id=680000 kernel-atiradeon-sec-bypass(65691) https://exchange.xforce.ibmcloud.com/vulnerabilities/65691 Common Vulnerability Exposure (CVE) ID: CVE-2011-1017 BugTraq ID: 46512 Bugtraq: 20110223 [PRE-SA-2011-01] Multiple Linux kernel vulnerabilities in partition handling code of LDM and MAC partition tables (Google Search) http://openwall.com/lists/oss-security/2011/02/23/16 http://openwall.com/lists/oss-security/2011/02/24/4 http://openwall.com/lists/oss-security/2011/02/24/14 http://securitytracker.com/id?1025128 http://secunia.com/advisories/43716 http://secunia.com/advisories/43738 Common Vulnerability Exposure (CVE) ID: CVE-2011-1019 [oss-security] 20110225 Re: CVE request: kernel: CAP_SYS_MODULE bypass via CAP_NET_ADMIN http://www.openwall.com/lists/oss-security/2011/02/25/1 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8909c9ad8ff03611c9c96c9a92656213e4bb495b https://bugzilla.redhat.com/show_bug.cgi?id=680360 https://github.com/torvalds/linux/commit/8909c9ad8ff03611c9c96c9a92656213e4bb495b Common Vulnerability Exposure (CVE) ID: CVE-2011-1076 1025162 http://securitytracker.com/id?1025162 [oss-security] 20110304 CVE-2011-1076 kernel: DNS: Fix a NULL pointer deref when trying to read an error key http://openwall.com/lists/oss-security/2011/03/04/13 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1362fa078dae16776cd439791c6605b224ea6171 Common Vulnerability Exposure (CVE) ID: CVE-2011-1082 [linux-kernel] 20110205 [PATCH] epoll: Prevent deadlock through unsafe ->f_op->poll() calls. https://lkml.org/lkml/2011/2/5/220 [oss-security] 20110301 CVE request: kernel: Multiple DoS issues in epoll http://openwall.com/lists/oss-security/2011/03/02/1 [oss-security] 20110302 Re: CVE request: kernel: Multiple DoS issues in epoll http://openwall.com/lists/oss-security/2011/03/02/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=22bacca48a1755f79b7e0f192ddb9fbb7fc6e64e https://bugzilla.redhat.com/show_bug.cgi?id=681575 Common Vulnerability Exposure (CVE) ID: CVE-2011-1083 43522 http://secunia.com/advisories/43522 48115 http://secunia.com/advisories/48115 48410 http://secunia.com/advisories/48410 48898 http://secunia.com/advisories/48898 48964 http://secunia.com/advisories/48964 71265 http://www.osvdb.org/71265 RHSA-2012:0862 http://rhn.redhat.com/errata/RHSA-2012-0862.html SUSE-SU-2012:0554 http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00021.html SUSE-SU-2012:0616 http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00013.html [linux-kernel] 20110225 [PATCH] optimize epoll loop detection http://article.gmane.org/gmane.linux.kernel/1105744 [linux-kernel] 20110226 Re: [PATCH] optimize epoll loop detection http://article.gmane.org/gmane.linux.kernel/1105888 [linux-kernel] 20110228 Re: [PATCH] optimize epoll loop detection http://article.gmane.org/gmane.linux.kernel/1106686 https://bugzilla.redhat.com/show_bug.cgi?id=681578 Common Vulnerability Exposure (CVE) ID: CVE-2011-1090 1025336 http://securitytracker.com/id?1025336 SUSE-SU-2015:0812 http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html [oss-security] 20110307 CVE request - kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab http://openwall.com/lists/oss-security/2011/03/07/2 [oss-security] 20110307 Re: CVE request - kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab http://openwall.com/lists/oss-security/2011/03/07/12 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=e9e3d724e2145f5039b423c290ce2b2c3d8f94bc https://bugzilla.redhat.com/show_bug.cgi?id=682641 Common Vulnerability Exposure (CVE) ID: CVE-2011-1163 1025225 http://securitytracker.com/id?1025225 20110317 [PRE-SA-2011-02] Information disclosure vulnerability in the OSF partition handling code of the Linux kernel http://www.securityfocus.com/archive/1/517050 46878 http://www.securityfocus.com/bid/46878 8189 http://securityreason.com/securityalert/8189 RHSA-2011:0833 [mm-commits] 20110314 + fs-partitions-osfc-corrupted-osf-partition-table-can-cause-information-disclosure.patch added to -mm tree http://www.spinics.net/lists/mm-commits/msg82737.html [oss-security] 20110315 CVE Request: kernel: fs/partitions: Corrupted OSF partition table can cause information disclosure http://openwall.com/lists/oss-security/2011/03/15/9 [oss-security] 20110315 Re: CVE Request: kernel: fs/partitions: Corrupted OSF partition table can cause information disclosure http://openwall.com/lists/oss-security/2011/03/15/14 http://downloads.avaya.com/css/P8/documents/100145416 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1eafbfeb7bdf59cfe173304c76188f3fd5f1fd05 http://www.pre-cert.de/advisories/PRE-SA-2011-02.txt https://bugzilla.redhat.com/show_bug.cgi?id=688021 Common Vulnerability Exposure (CVE) ID: CVE-2011-1169 [oss-security] 20110318 CVE request: kernel: AudioScience HPI driver http://openwall.com/lists/oss-security/2011/03/18/1 [oss-security] 20110318 Re: CVE request: kernel: AudioScience HPI driver http://openwall.com/lists/oss-security/2011/03/18/2 http://git.kernel.org/?p=linux/kernel/git/tiwai/sound-2.6.git%3Ba=commit%3Bh=4a122c10fbfe9020df469f0f669da129c5757671 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38.1 https://bugzilla.redhat.com/show_bug.cgi?id=688898 Common Vulnerability Exposure (CVE) ID: CVE-2011-1170 8278 http://securityreason.com/securityalert/8278 8282 http://securityreason.com/securityalert/8282 [netfilter-devel] 20110310 [PATCH] ipv4: netfilter: arp_tables: fix infoleak to userspace http://marc.info/?l=netfilter-devel&m=129978081009955&w=2 [oss-security] 20110318 CVE request: kernel: netfilter & econet infoleaks http://www.openwall.com/lists/oss-security/2011/03/18/15 [oss-security] 20110321 Re: CVE request: kernel: netfilter & econet infoleaks http://www.openwall.com/lists/oss-security/2011/03/21/1 http://www.openwall.com/lists/oss-security/2011/03/21/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=42eab94fff18cb1091d3501cd284d6bd6cc9c143 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39 https://bugzilla.redhat.com/show_bug.cgi?id=689321 Common Vulnerability Exposure (CVE) ID: CVE-2011-1171 8283 http://securityreason.com/securityalert/8283 [linux-kernel] 20110310 [PATCH] ipv4: netfilter: ip_tables: fix infoleak to userspace http://marc.info/?l=linux-kernel&m=129978077609894&w=2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=78b79876761b86653df89c48a7010b5cbd41a84a https://bugzilla.redhat.com/show_bug.cgi?id=689327 Common Vulnerability Exposure (CVE) ID: CVE-2011-1172 [linux-kernel] 20110310 [PATCH] ipv6: netfilter: ip6_tables: fix infoleak to userspace http://marc.info/?l=linux-kernel&m=129978086410061&w=2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6a8ab060779779de8aea92ce3337ca348f973f54 https://bugzilla.redhat.com/show_bug.cgi?id=689345 Common Vulnerability Exposure (CVE) ID: CVE-2011-2534 BugTraq ID: 46921 http://www.securityfocus.com/bid/46921 http://marc.info/?l=netfilter-devel&m=130036157327564&w=2 http://marc.info/?l=netfilter&m=129978077509888&w=2 http://securityreason.com/securityalert/8284 Common Vulnerability Exposure (CVE) ID: CVE-2011-1173 8279 http://securityreason.com/securityalert/8279 [netdev] 20110317 [PATCH] econet: 4 byte infoleak to the network http://marc.info/?l=linux-netdev&m=130036203528021&w=2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=67c5c6cb8129c595f21e88254a3fc6b3b841ae8e https://bugzilla.redhat.com/show_bug.cgi?id=591815#c14 Common Vulnerability Exposure (CVE) ID: CVE-2011-1182 [oss-security] 20110323 Re: Linux kernel signal spoofing vulnerability (CVE request) http://www.openwall.com/lists/oss-security/2011/03/23/2 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=da48524eb20662618854bb3df2db01fc65f3070c https://bugzilla.redhat.com/show_bug.cgi?id=690028 https://github.com/torvalds/linux/commit/da48524eb20662618854bb3df2db01fc65f3070c Common Vulnerability Exposure (CVE) ID: CVE-2011-1494 47185 http://www.securityfocus.com/bid/47185 [linux-kernel] 20110405 [PATCH] drivers/scsi/mpt2sas: prevent heap overflows and unchecked reads http://lkml.org/lkml/2011/4/5/327 [oss-security] 20110405 CVE request: kernel: two issues in mpt2sas http://openwall.com/lists/oss-security/2011/04/05/32 [oss-security] 20110406 Re: CVE request: kernel: two issues in mpt2sas http://openwall.com/lists/oss-security/2011/04/06/2 https://bugzilla.redhat.com/show_bug.cgi?id=694021 https://patchwork.kernel.org/patch/688021/ Common Vulnerability Exposure (CVE) ID: CVE-2011-1495 Common Vulnerability Exposure (CVE) ID: CVE-2011-1593 1025420 http://securitytracker.com/id?1025420 44164 http://secunia.com/advisories/44164 47497 http://www.securityfocus.com/bid/47497 [linux-kernel] 20110418 Re: Kernel panic (NULL ptr deref?) in find_ge_pid()/next_pidmap() (via sys_getdents or sys_readdir) http://groups.google.com/group/fa.linux.kernel/msg/4a28ecb7f755a88d?dmode=source [oss-security] 20110419 CVE request -- kernel: proc: signedness issue in next_pidmap() http://openwall.com/lists/oss-security/2011/04/19/1 [oss-security] 20110420 Re: CVE request -- kernel: proc: signedness issue in next_pidmap() http://openwall.com/lists/oss-security/2011/04/20/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c78193e9c7bcbf25b8237ad0dec82f805c4ea69b http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d8bdc59f215e62098bc5b4256fd9928bf27053a1 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38.4 https://bugzilla.redhat.com/show_bug.cgi?id=697822 kernel-nextpidmap-dos(66876) https://exchange.xforce.ibmcloud.com/vulnerabilities/66876 Common Vulnerability Exposure (CVE) ID: CVE-2011-1598 47503 http://www.securityfocus.com/bid/47503 [netdev] 20110420 Add missing socket check in can/bcm release. http://permalink.gmane.org/gmane.linux.network/192898 [oss-security] 20110420 CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/20/2 [oss-security] 20110420 Re: CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/20/6 [oss-security] 20110421 Re: CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/20/7 http://openwall.com/lists/oss-security/2011/04/21/1 http://openwall.com/lists/oss-security/2011/04/21/2 http://openwall.com/lists/oss-security/2011/04/21/7 [oss-security] 20110422 Re: CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/22/2 [oss-security] 20110425 Re: CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/25/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c6914a6f261aca0c9f715f883a353ae7ff51fe83 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.39-rc6 https://bugzilla.redhat.com/show_bug.cgi?id=698057 Common Vulnerability Exposure (CVE) ID: CVE-2011-1748 47835 http://www.securityfocus.com/bid/47835 [netdev] 20110420 [PATCH v2] can: add missing socket check in can/raw release http://permalink.gmane.org/gmane.linux.network/192974 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=10022a6c66e199d8f61d9044543f38785713cbbd Common Vulnerability Exposure (CVE) ID: CVE-2011-1745 47534 http://www.securityfocus.com/bid/47534 [linux-kernel] 20110414 [PATCH] char: agp: fix arbitrary kernel memory writes https://lkml.org/lkml/2011/4/14/293 [oss-security] 20110421 CVE request: kernel: buffer overflow and DoS issues in agp http://openwall.com/lists/oss-security/2011/04/21/4 [oss-security] 20110422 Re: CVE request: kernel: buffer overflow and DoS issues in agp http://openwall.com/lists/oss-security/2011/04/22/7 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=194b3da873fd334ef183806db751473512af29ce http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38.5 https://bugzilla.redhat.com/show_bug.cgi?id=698996 Common Vulnerability Exposure (CVE) ID: CVE-2011-2022 BugTraq ID: 47843 http://www.securityfocus.com/bid/47843 Common Vulnerability Exposure (CVE) ID: CVE-2011-1746 47535 http://www.securityfocus.com/bid/47535 [linux-kernel] 20110414 [PATCH] char: agp: fix OOM and buffer overflow https://lkml.org/lkml/2011/4/14/294 [linux-kernel] 20110419 Re: [PATCH] char: agp: fix OOM and buffer overflow https://lkml.org/lkml/2011/4/19/400 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b522f02184b413955f3bc952e3776ce41edc6355 https://bugzilla.redhat.com/show_bug.cgi?id=698998 Common Vulnerability Exposure (CVE) ID: CVE-2011-1747 1025441 http://securitytracker.com/id?1025441 47832 http://www.securityfocus.com/bid/47832 http://openwall.com/lists/oss-security/2011/04/22/10 http://openwall.com/lists/oss-security/2011/04/22/11 http://openwall.com/lists/oss-security/2011/04/22/8 http://openwall.com/lists/oss-security/2011/04/22/9 https://bugzilla.redhat.com/show_bug.cgi?id=698999 Common Vulnerability Exposure (CVE) ID: CVE-2011-1770 1025592 http://www.securitytracker.com/id?1025592 44932 http://secunia.com/advisories/44932 47769 http://www.securityfocus.com/bid/47769 8286 http://securityreason.com/securityalert/8286 FEDORA-2011-7551 http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061366.html FEDORA-2011-7823 http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061236.html [linux-kernel] 20110506 Re: [PATCH] dccp: handle invalid feature options length http://marc.info/?l=linux-kernel&m=130469305815140&w=2 [linux-kernel] 20110506 [PATCH] dccp: handle invalid feature options length http://marc.info/?l=linux-kernel&m=130468845209036&w=2 http://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.33/ChangeLog-2.6.33.14 https://bugzilla.redhat.com/show_bug.cgi?id=703011
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.