 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.71664 |
| Category: | Ubuntu Local Security Checks |
| Title: | Ubuntu USN-1493-1 (linux-image-2.6.24-31-386) |
| Summary: | NOSUMMARY |
| Description: | Description: The remote host is missing an update to linux-image-2.6.24-31-386 announced via advisory USN-1493-1. Details: Stephan Mueller reported a flaw in the Linux kernel's dl2k network driver's handling of ioctls. An unprivileged local user could leverage this flaw to cause a denial of service. (CVE-2012-2313) Timo Warns reported multiple flaws in the Linux kernel's hfsplus filesystem. An unprivileged local user could exploit these flaws to gain root system priviliges. (CVE-2012-2319) Solution: The problem can be corrected by updating your system to the following package versions: Ubuntu 8.04 LTS: linux-image-2.6.24-31-386 2.6.24-31.102 linux-image-2.6.24-31-generic 2.6.24-31.102 linux-image-2.6.24-31-hppa32 2.6.24-31.102 linux-image-2.6.24-31-hppa64 2.6.24-31.102 linux-image-2.6.24-31-itanium 2.6.24-31.102 linux-image-2.6.24-31-lpia 2.6.24-31.102 linux-image-2.6.24-31-lpiacompat 2.6.24-31.102 linux-image-2.6.24-31-mckinley 2.6.24-31.102 linux-image-2.6.24-31-openvz 2.6.24-31.102 linux-image-2.6.24-31-powerpc 2.6.24-31.102 linux-image-2.6.24-31-powerpc-smp 2.6.24-31.102 linux-image-2.6.24-31-powerpc64-smp 2.6.24-31.102 linux-image-2.6.24-31-rt 2.6.24-31.102 linux-image-2.6.24-31-server 2.6.24-31.102 linux-image-2.6.24-31-sparc64 2.6.24-31.102 linux-image-2.6.24-31-sparc64-smp 2.6.24-31.102 linux-image-2.6.24-31-virtual 2.6.24-31.102 linux-image-2.6.24-31-xen 2.6.24-31.102 http://www.securityspace.com/smysecure/catid.html?in=USN-1493-1 CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:NR/C:C/I:C/A:C |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2012-2313 53965 http://www.securityfocus.com/bid/53965 HPSBGN02970 http://marc.info/?l=bugtraq&m=139447903326211&w=2 RHSA-2012:1174 http://rhn.redhat.com/errata/RHSA-2012-1174.html RHSA-2012:1481 http://rhn.redhat.com/errata/RHSA-2012-1481.html RHSA-2012:1541 http://rhn.redhat.com/errata/RHSA-2012-1541.html RHSA-2012:1589 http://rhn.redhat.com/errata/RHSA-2012-1589.html SUSE-SU-2015:0812 http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html [oss-security] 20120504 Re: CVE Request: more tight ioctl permissions in dl2k driver http://www.openwall.com/lists/oss-security/2012/05/04/8 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1bb57e940e1958e40d51f2078f50c3a96a9b2d75 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.3.7 https://bugzilla.redhat.com/show_bug.cgi?id=818820 https://github.com/torvalds/linux/commit/1bb57e940e1958e40d51f2078f50c3a96a9b2d75 Common Vulnerability Exposure (CVE) ID: CVE-2012-2319 50811 http://secunia.com/advisories/50811 RHSA-2012:1323 http://rhn.redhat.com/errata/RHSA-2012-1323.html RHSA-2012:1347 http://rhn.redhat.com/errata/RHSA-2012-1347.html [oss-security] 20120507 Re: CVE request: Linux kernel: Buffer overflow in HFS plus filesystem http://www.openwall.com/lists/oss-security/2012/05/07/11 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6f24f892871acc47b40dd594c63606a17c714f77 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.3.5 https://bugzilla.redhat.com/show_bug.cgi?id=819471 https://github.com/torvalds/linux/commit/6f24f892871acc47b40dd594c63606a17c714f77 |
| Copyright | Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com |
| This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |