Test ID:	1.3.6.1.4.1.25623.1.0.71683
Category:	Ubuntu Local Security Checks
Title:	Ubuntu USN-1452-1 (linux-image-3.0.0-20-generic)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to linux-image-3.0.0-20-generic announced via advisory USN-1452-1. Details: A flaw was found in the Linux kernel's KVM (Kernel Virtual Machine) virtual cpu setup. An unprivileged local user could exploit this flaw to crash the system leading to a denial of service. (CVE-2012-1601) Steve Grubb reported a flaw with Linux fscaps (file system base capabilities) when used to increase the permissions of a process. For application on which fscaps are in use a local attacker can disable address space randomization to make attacking the process with raised privileges easier. (CVE-2012-2123) Solution: The problem can be corrected by updating your system to the following package versions: Ubuntu 11.10: linux-image-3.0.0-20-generic 3.0.0-20.34 linux-image-3.0.0-20-generic-pae 3.0.0-20.34 linux-image-3.0.0-20-omap 3.0.0-20.34 linux-image-3.0.0-20-powerpc 3.0.0-20.34 linux-image-3.0.0-20-powerpc-smp 3.0.0-20.34 linux-image-3.0.0-20-powerpc64-smp 3.0.0-20.34 linux-image-3.0.0-20-server 3.0.0-20.34 linux-image-3.0.0-20-virtual 3.0.0-20.34 http://www.securityspace.com/smysecure/catid.html?in=USN-1452-1 CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:NR/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2012-1601 1026897 http://www.securitytracker.com/id?1026897 49928 http://secunia.com/advisories/49928 DSA-2469 http://www.debian.org/security/2012/dsa-2469 RHSA-2012:0571 http://rhn.redhat.com/errata/RHSA-2012-0571.html RHSA-2012:0676 http://rhn.redhat.com/errata/RHSA-2012-0676.html SUSE-SU-2012:1679 https://www.suse.com/support/update/announcement/2012/suse-su-20121679-1.html [oss-security] 20120329 Re: CVE request -- kernel: kvm: irqchip_in_kernel() and vcpu->arch.apic inconsistency http://www.openwall.com/lists/oss-security/2012/03/30/1 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.3.6 https://bugzilla.redhat.com/show_bug.cgi?id=808199 https://github.com/torvalds/linux/commit/9c895160d25a76c21b65bad141b08e8d4f99afef openSUSE-SU-2013:0925 http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00005.html Common Vulnerability Exposure (CVE) ID: CVE-2012-2123 1027072 http://www.securitytracker.com/id?1027072 53166 http://www.securityfocus.com/bid/53166 RHSA-2012:0670 http://rhn.redhat.com/errata/RHSA-2012-0670.html RHSA-2012:0743 http://rhn.redhat.com/errata/RHSA-2012-0743.html [oss-security] 20120419 Re: CVE request: kernel: fcaps: clear the same personality flags as suid when fcaps are used http://www.openwall.com/lists/oss-security/2012/04/20/6 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d52fc5dde171f030170a6cb78034d166b13c9445 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.3.3 https://bugzilla.redhat.com/show_bug.cgi?id=806722 https://github.com/torvalds/linux/commit/d52fc5dde171f030170a6cb78034d166b13c9445 linux-kernel-fcaps-sec-bypass(75043) https://exchange.xforce.ibmcloud.com/vulnerabilities/75043
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.