 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.71776 |
| Category: | Ubuntu Local Security Checks |
| Title: | Ubuntu USN-1380-1 (linux-image-2.6.38-13-generic) |
| Summary: | NOSUMMARY |
| Description: | Description: The remote host is missing an update to linux-image-2.6.38-13-generic announced via advisory USN-1380-1. Details: The linux kernel did not properly account for PTE pages when deciding which task to kill in out of memory conditions. A local, unprivileged could exploit this flaw to cause a denial of service. (CVE-2011-2498) A flaw was discovered in the TOMOYO LSM's handling of mount system calls. An unprivileged user could oops the system causing a denial of service. (CVE-2011-2518) A bug was discovered in the Linux kernel's calculation of OOM (Out of memory) scores, that would result in the wrong process being killed. A user could use this to kill the process with the highest OOM score, even if that process belongs to another user or the system. (CVE-2011-4097) A flaw was found in the linux kernels IPv4 IGMP query processing. A remote attacker could exploit this to cause a denial of service. (CVE-2012-0207) Solution: The problem can be corrected by updating your system to the following package versions: Ubuntu 11.04: linux-image-2.6.38-13-generic 2.6.38-13.56 linux-image-2.6.38-13-generic-pae 2.6.38-13.56 linux-image-2.6.38-13-omap 2.6.38-13.56 linux-image-2.6.38-13-powerpc 2.6.38-13.56 linux-image-2.6.38-13-powerpc-smp 2.6.38-13.56 linux-image-2.6.38-13-powerpc64-smp 2.6.38-13.56 linux-image-2.6.38-13-server 2.6.38-13.56 linux-image-2.6.38-13-versatile 2.6.38-13.56 linux-image-2.6.38-13-virtual 2.6.38-13.56 http://www.securityspace.com/smysecure/catid.html?in=USN-1380-1 CVSS Score: 7.8 CVSS Vector: AV:L/AC:L/Au:NR/C:N/I:N/A:C |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2011-2498 http://marc.info/?l=oss-security&m=130923704824984&w=2 https://people.canonical.com/~ubuntu-security/cve/2011/CVE-2011-2498.html https://security-tracker.debian.org/tracker/CVE-2011-2498 https://usn.ubuntu.com/1167-1/ https://www.rapid7.com/db/vulnerabilities/ubuntu-USN-1383-1 Common Vulnerability Exposure (CVE) ID: CVE-2011-2518 HPSBGN02970 http://marc.info/?l=bugtraq&m=139447903326211&w=2 [oss-security] 20110701 Re: CVE request: kernel: tomoyo: oops in tomoyo_mount_acl() http://www.openwall.com/lists/oss-security/2011/07/01/5 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=4e78c724d47e2342aa8fde61f6b8536f662f795f https://github.com/torvalds/linux/commit/4e78c724d47e2342aa8fde61f6b8536f662f795f Common Vulnerability Exposure (CVE) ID: CVE-2011-4097 [oss-security] 20111031 Re: CVE request: kernel: oom: fix integer overflow of points in oom_badness http://www.openwall.com/lists/oss-security/2011/11/01/2 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.1.8 https://bugzilla.redhat.com/show_bug.cgi?id=750399 https://github.com/torvalds/linux/commit/56c6a8a4aadca809e04276eabe5552935c51387f Common Vulnerability Exposure (CVE) ID: CVE-2012-0207 http://www.openwall.com/lists/oss-security/2012/01/10/5 |
| Copyright | Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com |
| This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |