Test ID:	1.3.6.1.4.1.25623.1.0.70934
Category:	Ubuntu Local Security Checks
Title:	Ubuntu USN-1211-1 (linux-image-2.6.38-11-generic)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to linux-image-2.6.38-11-generic announced via advisory USN-1211-1. Details: It was discovered that the /proc filesystem did not correctly handle permission changes when programs executed. A local attacker could hold open files to examine details about programs running with higher privileges, potentially increasing the chances of exploiting additional vulnerabilities. (CVE-2011-1020) Dan Rosenberg discovered that the X.25 Rose network stack did not correctly handle certain fields. If a system was running with Rose enabled, a remote attacker could send specially crafted traffic to gain root privileges. (CVE-2011-1493) Vasiliy Kulikov and Dan Rosenberg discovered that ecryptfs did not correctly check the origin of mount points. A local attacker could exploit this to trick the system into unmounting arbitrary mount points, leading to a denial of service. (CVE-2011-1833) It was discovered that Bluetooth l2cap and rfcomm did not correctly initialize structures. A local attacker could exploit this to read portions of the kernel stack, leading to a loss of privacy. (CVE-2011-2492) It was discovered that GFS2 did not correctly check block sizes. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2011-2689) Fernando Gont discovered that the IPv6 stack used predictable fragment identification numbers. A remote attacker could exploit this to exhaust network resources, leading to a denial of service. (CVE-2011-2699) The performance counter subsystem did not correctly handle certain counters. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2011-2918) Solution: The problem can be corrected by updating your system to the following package versions: Ubuntu 11.04: linux-image-2.6.38-11-generic 2.6.38-11.50 linux-image-2.6.38-11-generic-pae 2.6.38-11.50 linux-image-2.6.38-11-omap 2.6.38-11.50 linux-image-2.6.38-11-powerpc 2.6.38-11.50 linux-image-2.6.38-11-powerpc-smp 2.6.38-11.50 linux-image-2.6.38-11-powerpc64-smp 2.6.38-11.50 linux-image-2.6.38-11-server 2.6.38-11.50 linux-image-2.6.38-11-versatile 2.6.38-11.50 linux-image-2.6.38-11-virtual 2.6.38-11.50 http://www.securityspace.com/smysecure/catid.html?in=USN-1211-1 CVSS Score: 4.9 CVSS Vector: AV:L/AC:L/Au:NR/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1020 20110122 Proc filesystem and SUID-Binaries http://seclists.org/fulldisclosure/2011/Jan/421 43496 http://secunia.com/advisories/43496 46567 http://www.securityfocus.com/bid/46567 8107 http://securityreason.com/securityalert/8107 [linux-kernel] 20110207 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec https://lkml.org/lkml/2011/2/7/414 https://lkml.org/lkml/2011/2/7/474 [linux-kernel] 20110207 [SECURITY] /proc/$pid/ leaks contents across setuid exec https://lkml.org/lkml/2011/2/7/368 [linux-kernel] 20110208 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec https://lkml.org/lkml/2011/2/7/404 https://lkml.org/lkml/2011/2/7/466 [linux-kernel] 20110209 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec https://lkml.org/lkml/2011/2/10/21 https://lkml.org/lkml/2011/2/9/417 [oss-security] 20110224 CVE request: kernel: /proc/$pid/ leaks contents across setuid exec http://openwall.com/lists/oss-security/2011/02/24/18 [oss-security] 20110225 Re: CVE request: kernel: /proc/$pid/ leaks contents across setuid exec http://openwall.com/lists/oss-security/2011/02/25/2 http://www.halfdog.net/Security/2011/SuidBinariesAndProcInterface/ kernel-procpid-security-bypass(65693) https://exchange.xforce.ibmcloud.com/vulnerabilities/65693 Common Vulnerability Exposure (CVE) ID: CVE-2011-1493 SUSE-SU-2015:0812 http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html [oss-security] 20110405 Re: CVE request: kernel: multiple issues in ROSE http://www.openwall.com/lists/oss-security/2011/04/05/19 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=be20250c13f88375345ad99950190685eda51eb8 https://bugzilla.redhat.com/show_bug.cgi?id=770777 https://github.com/torvalds/linux/commit/be20250c13f88375345ad99950190685eda51eb8 Common Vulnerability Exposure (CVE) ID: CVE-2011-1833 SuSE Security Announcement: SUSE-SU-2011:0898 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00009.html http://www.ubuntu.com/usn/USN-1188-1 Common Vulnerability Exposure (CVE) ID: CVE-2011-2492 1025778 http://securitytracker.com/id?1025778 HPSBGN02970 http://marc.info/?l=bugtraq&m=139447903326211&w=2 RHSA-2011:0927 http://rhn.redhat.com/errata/RHSA-2011-0927.html [linux-bluetooth] 20110508 Bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace. http://permalink.gmane.org/gmane.linux.bluez.kernel/12909 [oss-security] 20110624 CVE request: kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace http://www.openwall.com/lists/oss-security/2011/06/24/2 [oss-security] 20110624 Re: CVE request: kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace http://www.openwall.com/lists/oss-security/2011/06/24/3 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8d03e971cf403305217b8e62db3a2e5ad2d6263f http://www.kernel.org/pub/linux/kernel/v3.0/testing/ChangeLog-3.0-rc4 https://bugzilla.redhat.com/show_bug.cgi?id=703019 Common Vulnerability Exposure (CVE) ID: CVE-2011-2689 1025776 http://securitytracker.com/id?1025776 45193 http://secunia.com/advisories/45193 48677 http://www.securityfocus.com/bid/48677 RHSA-2011:1065 http://rhn.redhat.com/errata/RHSA-2011-1065.html [oss-security] 20110713 CVE-2011-2689 kernel: gfs2: make sure fallocate bytes is a multiple of blksize http://www.openwall.com/lists/oss-security/2011/07/13/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6905d9e4dda6112f007e9090bca80507da158e63 http://www.kernel.org/pub/linux/kernel/v3.0/testing/ChangeLog-3.0-rc1 https://bugzilla.redhat.com/show_bug.cgi?id=720861 linux-kernel-gfs2-dos(68557) https://exchange.xforce.ibmcloud.com/vulnerabilities/68557 Common Vulnerability Exposure (CVE) ID: CVE-2011-2699 1027274 http://www.securitytracker.com/id?1027274 MDVSA-2013:150 http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 [oss-security] 20110720 Re: CVE request: kernel: ipv6: make fragment identifications less predictable http://www.openwall.com/lists/oss-security/2011/07/20/5 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=87c48fa3b4630905f98268dde838ee43626a060c http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.1 https://bugzilla.redhat.com/show_bug.cgi?id=723429 https://github.com/torvalds/linux/commit/87c48fa3b4630905f98268dde838ee43626a060c Common Vulnerability Exposure (CVE) ID: CVE-2011-2918 [oss-security] 20110816 Re: CVE request -- kernel: perf: fix software event overflow http://www.openwall.com/lists/oss-security/2011/08/16/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a8b0ca17b80e92faab46ee7179ba9e99ccb61233 https://bugzilla.redhat.com/show_bug.cgi?id=730706 https://github.com/torvalds/linux/commit/a8b0ca17b80e92faab46ee7179ba9e99ccb61233
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.